Ga naar inhoud

logje nakijken alstublieft

rustycc

Door rustycc
in Archief Windows Algemeen

 Delen

Aanbevolen berichten

rustycc Meewerkend lid

rustycc

Geplaatst:
  • Auteur
Geplaatst:

het scannen in veilige modus is geslaagd!

log:

ComboFix 10-12-21.03 - Nick 24/12/2010 15:01:37.3.4 - x64 MINIMAL

Microsoft Windows 7 Home Premium 6.1.7600.0.1252.32.1043.18.3957.2981 [GMT 1:00]

Gestart vanuit: c:\users\Nick\Desktop\ComboFix.exe

AV: avast! antivirus *Enabled/Outdated* {C37D8F93-0602-E43C-40AA-47DAD597F308}

SP: avast! antivirus *Enabled/Outdated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

c:\programdata\PCDr\5744\Downloads\5a6257cc-a15e-41eb-b891-52f7e087b40f.dll

c:\programdata\PCDr\5744\Downloads\c229b02b-4e01-43e4-9587-37961f6873bc.dll

c:\programdata\PCDr\5744\Downloads\d242df42-c817-4c92-8e27-a770772ec980.dll

c:\programdata\PCDr\5744\Downloads\ef253e79-80d5-4656-b429-008ec2e1d22e.dll

c:\users\Nick\AppData\Roaming\inst.exe

c:\windows\SysWow64\~.inf

E:\Autorun.inf

E:\install.exe

.

(((((((((((((((((((( Bestanden Gemaakt van 2010-11-24 to 2010-12-24 ))))))))))))))))))))))))))))))

.

2010-12-24 14:09 . 2010-12-24 14:09 -------- d-----w- c:\users\Nick - kopie\AppData\Local\temp

2010-12-24 14:09 . 2010-12-24 14:09 -------- d-----w- c:\users\Default\AppData\Local\temp

2010-12-23 21:21 . 2009-11-24 23:49 27216 ----a-w- c:\windows\system32\drivers\aswRdr.sys

2010-12-23 21:21 . 2009-11-24 23:47 97480 ----a-w- c:\windows\system32\AvastSS.scr

2010-12-23 21:21 . 2009-11-24 23:50 89680 ----a-w- c:\windows\system32\drivers\aswSP.sys

2010-12-23 21:21 . 2009-11-24 23:50 22096 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys

2010-12-23 21:21 . 2009-11-24 23:49 65616 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys

2010-12-23 21:20 . 2009-11-24 23:54 1280480 ----a-w- c:\windows\SysWow64\aswBoot.exe

2010-12-23 21:20 . 2004-01-09 09:13 380928 ----a-w- c:\windows\SysWow64\actskin4.ocx

2010-12-23 21:16 . 2010-11-16 11:01 8199504 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E1351574-5617-42FC-9E95-A7F01763C4DB}\mpengine.dll

2010-12-23 21:16 . 2010-10-19 09:41 270720 ------w- c:\windows\system32\MpSigStub.exe

2010-12-23 21:03 . 2010-12-23 21:10 -------- d-----w- c:\program files (x86)\PowerStrip

2010-12-23 20:04 . 2010-12-23 20:04 -------- d-----w- c:\program files\Common Files\ATI Technologies

2010-12-23 20:04 . 2010-12-23 20:04 -------- d-----w- c:\program files (x86)\ATI Stream

2010-12-23 20:01 . 2010-12-23 20:03 -------- d-----w- c:\program files\ATI Technologies

2010-12-23 20:01 . 2010-12-23 20:01 -------- d-----w- c:\program files\ATI

2010-12-23 20:01 . 2010-12-23 20:01 -------- d-----w- C:\ATI

2010-12-23 17:50 . 2009-11-24 23:49 53840 ----a-w- c:\windows\system32\drivers\aswTdi.sys

2010-12-23 17:49 . 2010-12-23 17:49 -------- d-----w- c:\program files\Alwil Software

2010-12-23 17:21 . 2010-12-23 17:22 -------- d-----w- C:\Python27

2010-12-23 17:20 . 2010-12-23 17:22 -------- d-----w- C:\tmp

2010-12-23 17:16 . 2010-12-23 17:16 -------- d-----w- c:\users\Nick\AppData\Roaming\Blender Foundation

2010-12-23 17:16 . 2010-12-23 17:16 -------- d-----w- c:\program files (x86)\Blender Foundation

2010-12-23 15:03 . 2001-04-18 10:32 205848 ----a-w- c:\windows\SysWow64\Threed32.ocx

2010-12-23 15:03 . 2000-12-05 23:00 109248 ----a-w- c:\windows\SysWow64\MSWINSCK.OCX

2010-12-23 15:03 . 2000-07-14 23:00 101888 ----a-w- c:\windows\SysWow64\VB6STKIT.DLL

2010-12-23 15:03 . 2010-12-23 15:03 -------- d-----w- c:\program files (x86)\Plustech Inc

2010-12-23 15:03 . 2001-08-27 14:12 19490 ----a-w- c:\windows\SysWow64\IPCFLT.VXD

2010-12-22 14:24 . 2010-12-22 15:57 -------- d-----w- c:\users\Nick\AppData\Local\Rockstar Games

2010-12-22 14:23 . 2010-12-22 14:23 -------- d--h--r- c:\users\Nick\AppData\Roaming\SecuROM

2010-12-22 14:23 . 2010-12-22 14:23 -------- d-sh--w- c:\programdata\SecuROM

2010-12-22 14:19 . 2009-09-04 16:29 453456 ----a-w- c:\windows\SysWow64\d3dx10_42.dll

2010-12-22 14:19 . 2009-09-04 16:29 1892184 ----a-w- c:\windows\SysWow64\D3DX9_42.dll

2010-12-22 13:30 . 2007-10-22 02:37 17928 ----a-w- c:\windows\SysWow64\X3DAudio1_2.dll

2010-12-22 13:29 . 2008-03-05 14:56 3786760 ----a-w- c:\windows\SysWow64\D3DX9_37.dll

2010-12-22 13:29 . 2008-03-05 14:56 1420824 ----a-w- c:\windows\SysWow64\D3DCompiler_37.dll

2010-12-22 13:29 . 2008-02-05 22:07 462864 ----a-w- c:\windows\SysWow64\d3dx10_37.dll

2010-12-22 13:29 . 2007-04-04 17:53 81768 ----a-w- c:\windows\SysWow64\xinput1_3.dll

2010-12-22 13:29 . 2010-12-24 11:18 -------- d-----w- c:\program files (x86)\Microsoft Games for Windows - LIVE

2010-12-22 13:29 . 2010-12-22 13:29 -------- d-----w- c:\windows\SysWow64\xlive

2010-12-22 12:54 . 2010-12-22 15:56 -------- d-----w- c:\program files (x86)\Rockstar Games

2010-12-19 14:52 . 2010-12-19 14:52 -------- d-----w- c:\users\Nick\.file_store_32

2010-12-18 22:53 . 2010-12-18 23:32 -------- d-----w- c:\users\Nick\AppData\Roaming\Vso

2010-12-18 22:53 . 2010-12-18 22:53 82816 ----a-w- c:\windows\system32\drivers\pcouffin.sys

2010-12-18 22:53 . 2010-12-18 22:53 82816 ----a-w- c:\users\Nick\AppData\Roaming\pcouffin.sys

2010-12-18 22:53 . 2009-09-02 20:58 626688 ----a-w- c:\windows\SysWow64\vp7vfw.dll

2010-12-18 22:53 . 2009-09-02 20:58 65602 ----a-w- c:\windows\SysWow64\cook3260.dll

2010-12-18 22:53 . 2009-09-02 20:58 217127 ----a-w- c:\windows\SysWow64\drv43260.dll

2010-12-18 22:53 . 2009-09-02 20:58 208935 ----a-w- c:\windows\SysWow64\drv33260.dll

2010-12-18 22:53 . 2009-09-02 20:58 176165 ----a-w- c:\windows\SysWow64\drv23260.dll

2010-12-18 22:53 . 2009-09-02 20:58 102439 ----a-w- c:\windows\SysWow64\sipr3260.dll

2010-12-18 22:53 . 2009-09-02 20:57 1184984 ----a-w- c:\windows\SysWow64\wvc1dmod.dll

2010-12-18 22:53 . 2010-12-18 22:53 -------- d-----w- c:\program files (x86)\VSO

2010-12-18 22:33 . 2010-12-21 13:44 -------- d-----w- c:\users\Nick\AppData\Roaming\PrimoPDF

2010-12-18 22:32 . 2009-12-21 01:42 90624 ----a-w- c:\windows\system32\Primomonnt.dll

2010-12-18 22:32 . 2010-12-18 22:32 -------- d-----w- c:\program files (x86)\Nitro PDF

2010-12-18 22:22 . 2010-12-18 22:43 14931113 ----a-w- c:\windows\SysWow64\~.tmp

2010-12-16 21:26 . 2010-12-16 21:26 -------- d-----w- c:\windows\SysWow64\Adobe

2010-12-16 21:25 . 2010-12-16 21:25 -------- d-----w- c:\program files\Google

2010-12-16 21:25 . 2010-12-16 21:25 -------- d-----w- c:\program files (x86)\Google

2010-12-16 18:11 . 2010-12-16 18:11 -------- d-----w- c:\users\Nick\AppData\Local\Stardock

2010-12-16 18:11 . 2010-12-16 18:11 -------- d-----w- c:\program files (x86)\Thoosje

2010-12-14 14:40 . 2010-12-14 14:41 -------- d-----w- c:\program files\Dell Support Center

2010-12-14 14:36 . 2010-12-14 14:38 -------- d-----w- c:\users\Nick\AppData\Roaming\PCDr

2010-12-14 14:05 . 2010-12-16 11:55 -------- d-----w- c:\program files (x86)\Online Games Downloader

2010-12-14 14:05 . 2010-12-14 14:05 -------- d-----w- c:\users\Nick\AppData\Roaming\Online Games Downloader

2010-12-12 14:46 . 2010-12-16 21:25 -------- d-----w- c:\users\Nick\AppData\Local\Google

2010-12-10 21:59 . 2010-12-10 21:59 -------- d-----w- c:\users\Nick\AppData\Local\Apps

2010-12-10 21:59 . 2010-12-12 14:46 -------- d-----w- c:\users\Nick\AppData\Local\Deployment

2010-12-10 12:45 . 2010-12-10 12:45 -------- d-----w- c:\users\Nick\.slash_file_store_32

2010-12-09 15:39 . 2010-12-13 13:01 -------- d-----w- c:\programdata\Spybot - Search & Destroy

2010-12-09 15:39 . 2010-12-09 15:39 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy

2010-12-09 14:03 . 2010-12-09 14:03 -------- d-----w- c:\users\Nick\AppData\Roaming\Malwarebytes

2010-12-09 14:03 . 2010-12-09 14:03 -------- d-----w- c:\programdata\Malwarebytes

2010-12-09 14:03 . 2010-11-29 16:42 38224 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys

2010-12-09 14:03 . 2010-11-29 16:42 24152 ----a-w- c:\windows\system32\drivers\mbam.sys

2010-12-09 14:03 . 2010-12-09 14:03 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware

2010-12-08 21:40 . 2010-12-11 15:51 -------- d-----w- c:\users\Nick\AppData\Roaming\Bandoo

2010-12-08 21:25 . 2010-12-09 10:35 -------- d-----w- c:\programdata\Bandoo

2010-12-08 21:25 . 2010-12-08 21:25 -------- d-----w- c:\programdata\Fun4IM

2010-12-08 21:25 . 2010-12-15 11:13 -------- d-----w- c:\program files (x86)\Fun4IM

2010-12-08 14:53 . 2010-12-08 14:53 -------- d-----w- c:\users\Nick\AppData\Roaming\BabylonToolbar

2010-12-08 14:53 . 2010-12-08 14:53 -------- d-----w- c:\users\Nick\AppData\Local\Conduit

2010-12-08 14:52 . 2010-12-08 14:53 -------- d-----w- c:\users\Nick\AppData\Local\DVDVideoSoftTB

2010-12-08 14:52 . 2010-12-08 14:56 -------- d-----w- c:\users\Nick\AppData\Roaming\Cashfiesta

2010-12-08 14:33 . 2010-12-08 14:33 466456 ----a-w- c:\windows\system32\wrap_oal.dll

2010-12-08 14:33 . 2010-12-08 14:33 444952 ----a-w- c:\windows\SysWow64\wrap_oal.dll

2010-12-08 14:33 . 2010-12-08 14:33 122904 ----a-w- c:\windows\system32\OpenAL32.dll

2010-12-08 14:33 . 2010-12-08 14:33 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll

2010-12-08 14:33 . 2010-12-08 14:33 -------- d-----w- c:\program files (x86)\OpenAL

2010-12-07 17:32 . 2010-12-07 17:33 -------- d-----w- c:\users\Nick\AppData\Roaming\Easy Macro Recorder

2010-12-02 19:38 . 2005-04-15 18:58 1071088 ----a-w- c:\windows\SysWow64\MSCOMCTL.OCX

2010-12-02 19:38 . 2005-03-11 23:07 87040 ----a-w- c:\windows\system32\pdfcmnnt.dll

2010-12-02 19:38 . 2004-03-08 23:00 662288 ----a-w- c:\windows\SysWow64\MSCOMCT2.OCX

2010-12-02 19:38 . 1998-06-23 23:00 137000 ----a-w- c:\windows\SysWow64\MSMAPI32.OCX

2010-12-02 19:38 . 2010-12-02 19:38 -------- d-----w- c:\program files (x86)\PDFCreator

2010-12-02 19:38 . 1998-07-05 23:00 23552 ----a-w- c:\windows\SysWow64\MSMPIDE.DLL

2010-12-02 19:06 . 2010-12-02 19:07 -------- d-----w- c:\program files (x86)\TuneUpMedia

2010-12-02 19:06 . 2010-12-19 19:58 -------- d-----w- c:\users\Nick\AppData\Roaming\TuneUpMedia

2010-12-02 19:06 . 2010-12-19 19:58 -------- d-----w- c:\programdata\TuneUpMedia

2010-12-02 18:58 . 2010-12-02 18:58 -------- d-----w- c:\users\Nick\AppData\Roaming\tidysongs16

2010-12-01 12:42 . 2010-12-01 12:42 -------- d-----w- c:\users\Nick\AppData\Roaming\Download Manager

2010-12-01 12:14 . 2010-12-01 12:14 -------- d-----w- c:\program files (x86)\Movie Maker 2.6

2010-12-01 12:04 . 2010-12-01 12:04 -------- d-----w- c:\program files (x86)\CamStudio

2010-12-01 11:59 . 2010-12-01 12:00 -------- d-----w- C:\Fraps

2010-11-30 23:14 . 2010-12-11 16:42 -------- d-----w- c:\users\Nick\AppData\Local\Diagnostics

2010-11-27 16:19 . 2010-11-27 16:19 2978816 ----a-w- c:\windows\system32\python27.dll

2010-11-25 20:09 . 2010-11-25 20:09 -------- d-----w- c:\users\Nick\AppData\Roaming\U3

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-12-21 12:00 . 2010-10-27 17:50 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll

2010-12-21 12:00 . 2010-10-27 17:50 704320 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll

2010-11-24 11:46 . 2010-11-24 11:46 388096 ----a-r- c:\users\Nick\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

2010-11-15 16:53 . 2010-11-15 16:53 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll

2010-11-15 16:53 . 2010-11-15 16:53 704320 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll

2010-11-06 14:03 . 2010-10-16 15:02 103736 ----a-w- c:\windows\SysWow64\PnkBstrB.exe

2010-10-26 18:31 . 2010-10-04 20:21 521448 ----a-w- c:\windows\system32\deployJava1.dll

2010-10-25 19:33 . 2010-10-17 11:23 233960 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr

2010-10-19 19:54 . 2003-03-18 18:14 499712 ----a-w- c:\windows\SysWow64\msvcp71.dll

2010-10-19 19:54 . 2003-02-21 02:42 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll

2010-10-17 10:36 . 2010-10-16 15:02 75064 ----a-w- c:\windows\SysWow64\PnkBstrA.exe

2010-10-14 15:53 . 2010-10-14 15:53 438272 ----a-w- c:\windows\NEXON_EU_DownloaderUpdater.exe

2010-10-14 00:36 . 2010-10-14 00:36 15451288 ----a-w- c:\windows\SysWow64\xlive.dll

2010-10-14 00:36 . 2010-10-14 00:36 13642904 ----a-w- c:\windows\SysWow64\xlivefnt.dll

2010-10-10 18:56 . 2010-10-10 18:56 81920 ----a-w- c:\windows\SysWow64\bsrgvas.dll

2010-10-10 18:56 . 2010-10-10 18:56 692224 ----a-w- c:\windows\SysWow64\bsrmgcv.dll

2010-10-10 18:56 . 2010-10-10 18:56 192512 ----a-w- c:\windows\SysWow64\bsrmgps.dll

2010-10-10 18:56 . 2010-10-10 18:56 585728 ----a-w- c:\windows\SysWow64\bsratswf.dll

2010-10-10 18:56 . 2010-10-10 18:56 147456 ----a-w- c:\windows\SysWow64\bsratwmv.dll

2010-10-10 15:26 . 2010-10-10 15:26 5632 ----a-w- c:\windows\system32\bbchlp.dll

2010-10-10 15:26 . 2010-10-10 15:26 4608 ----a-w- c:\windows\system32\drivers\bbcap.sys

2010-10-10 15:26 . 2010-10-10 15:26 37376 ----a-w- c:\windows\system32\bbcap.dll

2010-10-08 16:02 . 2010-10-08 17:32 11371536 ---ha-w- c:\users\Nick - kopie\AppData\Roaming\LoJackSetup.exe

2010-10-08 16:02 . 2010-10-08 15:54 11371536 ---ha-w- c:\users\Nick\AppData\Roaming\LoJackSetup.exe

2010-10-04 23:08 . 2010-10-04 23:08 982600 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys

2010-10-04 23:08 . 2010-10-04 23:08 144384 ----a-w- c:\windows\system32\cdd.dll

2010-10-04 23:07 . 2010-10-04 23:07 228864 ----a-w- c:\windows\system32\drivers\1394ohci.sys

2010-10-04 23:07 . 2010-10-04 23:07 613888 ----a-w- c:\windows\system32\psisdecd.dll

2010-10-04 23:07 . 2010-10-04 23:07 465408 ----a-w- c:\windows\SysWow64\psisdecd.dll

2010-10-04 23:07 . 2010-10-04 23:07 1736608 ----a-w- c:\windows\system32\ntdll.dll

2010-10-04 23:07 . 2010-10-04 23:07 1289528 ----a-w- c:\windows\SysWow64\ntdll.dll

2010-10-04 23:07 . 2010-10-04 23:07 410504 ----a-w- c:\windows\system32\drivers\iaStorV.sys

2010-10-04 23:07 . 2010-10-04 23:07 27016 ----a-w- c:\windows\system32\drivers\amdxata.sys

2010-10-04 23:07 . 2010-10-04 23:07 2566144 ----a-w- c:\windows\system32\esent.dll

2010-10-04 23:07 . 2010-10-04 23:07 187264 ----a-w- c:\windows\system32\drivers\storport.sys

2010-10-04 23:07 . 2010-10-04 23:07 1686016 ----a-w- c:\windows\SysWow64\esent.dll

2010-10-04 23:07 . 2010-10-04 23:07 166280 ----a-w- c:\windows\system32\drivers\nvstor.sys

2010-10-04 23:07 . 2010-10-04 23:07 1657216 ----a-w- c:\windows\system32\drivers\ntfs.sys

2010-10-04 23:07 . 2010-10-04 23:07 148352 ----a-w- c:\windows\system32\drivers\nvraid.sys

2010-10-04 23:07 . 2010-10-04 23:07 107912 ----a-w- c:\windows\system32\drivers\amdsata.sys

2010-10-04 23:07 . 2010-10-04 23:07 84992 ----a-w- c:\windows\system32\asycfilt.dll

2010-10-04 23:07 . 2010-10-04 23:07 70656 ----a-w- c:\windows\SysWow64\fontsub.dll

2010-10-04 23:07 . 2010-10-04 23:07 67584 ----a-w- c:\windows\SysWow64\asycfilt.dll

2010-10-04 23:07 . 2010-10-04 23:07 334424 ----a-w- c:\windows\system32\drivers\acpi.sys

2010-10-04 23:07 . 2010-10-04 23:07 100864 ----a-w- c:\windows\system32\fontsub.dll

2010-10-04 23:07 . 2010-10-04 23:07 96768 ----a-w- c:\windows\SysWow64\sspicli.dll

2010-10-04 23:07 . 2010-10-04 23:07 22016 ----a-w- c:\windows\SysWow64\secur32.dll

2010-10-04 23:07 . 2010-10-04 23:07 153160 ----a-w- c:\windows\system32\drivers\ksecpkg.sys

2010-10-04 23:07 . 2010-10-04 23:07 1446912 ----a-w- c:\windows\system32\lsasrv.dll

2010-10-04 23:07 . 2010-10-04 23:07 976896 ----a-w- c:\windows\system32\inetcomm.dll

2010-10-04 23:07 . 2010-10-04 23:07 740864 ----a-w- c:\windows\SysWow64\inetcomm.dll

2010-10-04 23:07 . 2010-10-04 23:07 612352 ----a-w- c:\windows\system32\vbscript.dll

2010-10-04 23:07 . 2010-10-04 23:07 427520 ----a-w- c:\windows\SysWow64\vbscript.dll

2010-10-04 23:07 . 2010-10-04 23:07 286720 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys

2010-10-04 23:07 . 2010-10-04 23:07 157696 ----a-w- c:\windows\system32\drivers\mrxsmb.sys

2010-10-04 23:07 . 2010-10-04 23:07 14336 ----a-w- c:\windows\system32\drivers\sffp_sd.sys

2010-10-04 23:07 . 2010-10-04 23:07 125952 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys

2010-10-04 23:07 . 2010-10-04 23:07 220672 ----a-w- c:\windows\system32\wintrust.dll

2010-10-04 23:07 . 2010-10-04 23:07 172032 ----a-w- c:\windows\SysWow64\wintrust.dll

2010-10-04 23:07 . 2010-10-04 23:07 139264 ----a-w- c:\windows\system32\cabview.dll

2010-10-04 23:07 . 2010-10-04 23:07 132608 ----a-w- c:\windows\SysWow64\cabview.dll

2010-10-04 23:07 . 2010-10-04 23:07 7680 ----a-w- c:\windows\SysWow64\instnm.exe

2010-10-04 23:07 . 2010-10-04 23:07 5120 ----a-w- c:\windows\SysWow64\wow32.dll

2010-10-04 23:07 . 2010-10-04 23:07 44032 ----a-w- c:\windows\apppatch\acwow64.dll

2010-10-04 23:07 . 2010-10-04 23:07 376832 ----a-w- c:\windows\system32\mfds.dll

2010-10-04 23:07 . 2010-10-04 23:07 292864 ----a-w- c:\windows\SysWow64\mfds.dll

2010-10-04 23:07 . 2010-10-04 23:07 25600 ----a-w- c:\windows\SysWow64\setup16.exe

2010-10-04 23:07 . 2010-10-04 23:07 243712 ----a-w- c:\windows\system32\drivers\ks.sys

2010-10-04 23:07 . 2010-10-04 23:07 243200 ----a-w- c:\windows\system32\wow64.dll

2010-10-04 23:07 . 2010-10-04 23:07 2048 ----a-w- c:\windows\SysWow64\user.exe

2010-10-04 23:07 . 2010-10-04 23:07 184832 ----a-w- c:\windows\system32\drivers\usbvideo.sys

2010-10-04 23:07 . 2010-10-04 23:07 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll

2010-10-04 23:07 . 2010-10-04 23:07 85504 ----a-w- c:\windows\SysWow64\secproc_ssp.dll

2010-10-04 23:07 . 2010-10-04 23:07 306688 ----a-w- c:\windows\system32\RMActivate_ssp.exe

2010-10-04 23:07 . 2010-10-04 23:07 280064 ----a-w- c:\windows\SysWow64\RMActivate_ssp.exe

2010-10-04 23:07 . 2010-10-04 23:07 121856 ----a-w- c:\windows\system32\secproc_ssp.dll

2010-10-04 23:07 . 2010-10-04 23:07 85504 ----a-w- c:\windows\SysWow64\secproc_ssp_isv.dll

2010-10-04 23:07 . 2010-10-04 23:07 78848 ----a-w- c:\windows\system32\WUDFSvc.dll

2010-10-04 23:07 . 2010-10-04 23:07 687616 ----a-w- c:\windows\system32\WUDFx.dll

2010-10-04 23:07 . 2010-10-04 23:07 514560 ----a-w- c:\windows\SysWow64\qdvd.dll

2010-10-04 23:07 . 2010-10-04 23:07 44544 ----a-w- c:\windows\system32\WUDFCoinstaller.dll

2010-10-04 23:07 . 2010-10-04 23:07 424960 ----a-w- c:\windows\system32\secproc.dll

2010-10-04 23:07 . 2010-10-04 23:07 422912 ----a-w- c:\windows\system32\secproc_isv.dll

2010-10-04 23:07 . 2010-10-04 23:07 369152 ----a-w- c:\windows\SysWow64\secproc.dll

2010-10-04 23:07 . 2010-10-04 23:07 366592 ----a-w- c:\windows\system32\qdvd.dll

2010-10-04 23:07 . 2010-10-04 23:07 365568 ----a-w- c:\windows\SysWow64\secproc_isv.dll

2010-10-04 23:07 . 2010-10-04 23:07 357888 ----a-w- c:\windows\system32\RMActivate_isv.exe

2010-10-04 23:07 . 2010-10-04 23:07 356352 ----a-w- c:\windows\system32\RMActivate.exe

2010-10-04 23:07 . 2010-10-04 23:07 324608 ----a-w- c:\windows\SysWow64\RMActivate_isv.exe

2010-10-04 23:07 . 2010-10-04 23:07 320512 ----a-w- c:\windows\SysWow64\RMActivate.exe

2010-10-04 23:07 . 2010-10-04 23:07 305152 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe

2010-10-04 23:07 . 2010-10-04 23:07 277504 ----a-w- c:\windows\SysWow64\RMActivate_ssp_isv.exe

2010-10-04 23:07 . 2010-10-04 23:07 228864 ----a-w- c:\windows\system32\WUDFHost.exe

2010-10-04 23:07 . 2010-10-04 23:07 183808 ----a-w- c:\windows\system32\WUDFPlatform.dll

2010-10-04 23:07 . 2010-10-04 23:07 172544 ----a-w- c:\windows\system32\drivers\WUDFRd.sys

2010-10-04 23:07 . 2010-10-04 23:07 121856 ----a-w- c:\windows\system32\secproc_ssp_isv.dll

2010-10-04 23:07 . 2010-10-04 23:07 112640 ----a-w- c:\windows\system32\drivers\WUDFPf.sys

2010-10-04 23:07 . 2010-10-04 23:07 389632 ----a-w- c:\windows\system32\winlogon.exe

2010-10-04 23:07 . 2010-10-04 23:07 2870272 ----a-w- c:\windows\explorer.exe

2010-10-04 23:07 . 2010-10-04 23:07 2614272 ----a-w- c:\windows\SysWow64\explorer.exe

.

((((((((((((((((((((((((((((( SnapShot@2010-12-15_23.52.23 )))))))))))))))))))))))))))))))))))))))))

.

+ 2010-04-27 13:45 . 2010-04-27 13:45 72856 c:\windows\SysWOW64\xliveinstallhost.exe

+ 2010-12-22 13:30 . 2006-07-28 08:30 62744 c:\windows\SysWOW64\xinput1_2.dll

- 2010-10-16 15:07 . 2006-07-28 07:30 62744 c:\windows\SysWOW64\xinput1_2.dll

+ 2010-12-22 13:30 . 2006-03-31 11:39 62672 c:\windows\SysWOW64\xinput1_1.dll

- 2010-10-16 15:07 . 2006-03-31 10:39 62672 c:\windows\SysWOW64\xinput1_1.dll

+ 2010-12-22 14:21 . 2008-10-15 06:03 70992 c:\windows\SysWOW64\XAPOFX1_2.dll

+ 2010-12-22 14:21 . 2008-07-30 05:20 68616 c:\windows\SysWOW64\XAPOFX1_1.dll

+ 2010-12-22 13:31 . 2008-05-30 13:17 65032 c:\windows\SysWOW64\XAPOFX1_0.dll

+ 2010-12-22 14:21 . 2009-03-16 13:18 22360 c:\windows\SysWOW64\X3DAudio1_6.dll

+ 2010-12-22 14:21 . 2008-10-15 06:03 23376 c:\windows\SysWOW64\X3DAudio1_5.dll

+ 2010-12-22 13:31 . 2008-05-30 13:17 25608 c:\windows\SysWOW64\X3DAudio1_4.dll

+ 2010-12-22 13:31 . 2008-03-05 15:00 25608 c:\windows\SysWOW64\X3DAudio1_3.dll

- 2010-10-16 15:08 . 2007-03-05 10:42 15128 c:\windows\SysWOW64\x3daudio1_1.dll

+ 2010-12-22 13:30 . 2007-03-05 11:42 15128 c:\windows\SysWOW64\x3daudio1_1.dll

+ 2010-12-22 13:30 . 2006-02-03 07:41 14032 c:\windows\SysWOW64\x3daudio1_0.dll

- 2010-10-16 15:07 . 2006-02-03 06:41 14032 c:\windows\SysWOW64\x3daudio1_0.dll

+ 2010-12-17 15:00 . 2010-11-04 05:49 67072 c:\windows\SysWOW64\mshtmled.dll

- 2010-10-14 10:09 . 2010-09-08 04:28 67072 c:\windows\SysWOW64\mshtmled.dll

- 2010-10-14 10:09 . 2010-09-08 04:25 12800 c:\windows\SysWOW64\msfeedssync.exe

+ 2010-12-17 15:00 . 2010-11-04 05:46 12800 c:\windows\SysWOW64\msfeedssync.exe

+ 2010-12-17 15:00 . 2010-11-04 05:49 64512 c:\windows\SysWOW64\msfeedsbs.dll

- 2010-10-14 10:09 . 2010-09-08 04:28 64512 c:\windows\SysWOW64\msfeedsbs.dll

- 2010-10-14 10:09 . 2010-09-08 04:30 68608 c:\windows\SysWOW64\migration\WininetPlugin.dll

+ 2010-12-17 15:00 . 2010-11-04 05:52 68608 c:\windows\SysWOW64\migration\WininetPlugin.dll

+ 2010-12-17 15:00 . 2010-11-04 05:48 44544 c:\windows\SysWOW64\licmgr10.dll

- 2010-10-14 10:09 . 2010-09-08 04:28 44544 c:\windows\SysWOW64\licmgr10.dll

- 2010-10-14 10:09 . 2010-09-08 04:28 48128 c:\windows\SysWOW64\jsproxy.dll

+ 2010-12-17 15:00 . 2010-11-04 05:48 48128 c:\windows\SysWOW64\jsproxy.dll

- 2010-10-09 15:06 . 2010-12-06 20:07 69224 c:\windows\SysWOW64\GDIPFONTCACHEV1.DAT

+ 2010-10-09 15:06 . 2010-12-23 21:20 69224 c:\windows\SysWOW64\GDIPFONTCACHEV1.DAT

+ 2010-12-24 13:57 . 2010-12-24 13:57 13306 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\SoftGrid Client\Icon Cache\icon_ex.dat

- 2010-12-14 23:04 . 2010-12-14 23:04 13306 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\SoftGrid Client\Icon Cache\icon_ex.dat

+ 2009-07-14 04:54 . 2010-12-24 13:53 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

- 2009-07-14 04:54 . 2010-12-15 10:32 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

+ 2009-07-14 04:54 . 2010-12-24 13:53 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat

- 2009-07-14 04:54 . 2010-12-15 10:32 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat

+ 2009-07-14 04:54 . 2010-12-24 13:53 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

- 2009-07-14 04:54 . 2010-12-15 10:32 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

+ 2010-12-17 15:00 . 2010-10-20 04:54 34304 c:\windows\SysWOW64\atmlib.dll

- 2010-10-04 23:07 . 2010-10-04 23:07 34304 c:\windows\SysWOW64\atmlib.dll

+ 2010-12-16 21:26 . 2010-12-16 21:26 87710 c:\windows\SysWOW64\Adobe\Shockwave 11\uninstaller.exe

+ 2010-10-22 11:56 . 2010-10-22 11:56 94208 c:\windows\SysWOW64\Adobe\Shockwave 11\SwMenu.dll

+ 2010-10-22 11:46 . 2010-10-22 11:46 79488 c:\windows\SysWOW64\Adobe\Shockwave 11\gtapi.dll

+ 2010-10-22 12:05 . 2010-10-22 12:05 65816 c:\windows\SysWOW64\Adobe\Director\SWDNLD.EXE

- 2010-10-16 15:07 . 2006-07-28 07:31 83736 c:\windows\system32\xinput1_2.dll

+ 2010-12-22 13:30 . 2006-07-28 08:31 83736 c:\windows\system32\xinput1_2.dll

- 2010-10-16 15:07 . 2006-03-31 10:39 83664 c:\windows\system32\xinput1_1.dll

+ 2010-12-22 13:30 . 2006-03-31 11:39 83664 c:\windows\system32\xinput1_1.dll

+ 2010-12-22 14:21 . 2009-03-16 13:18 73544 c:\windows\system32\XAPOFX1_3.dll

+ 2010-12-22 14:21 . 2008-10-15 06:03 74576 c:\windows\system32\XAPOFX1_2.dll

+ 2010-12-22 14:21 . 2008-07-30 05:20 72200 c:\windows\system32\XAPOFX1_1.dll

+ 2010-12-22 13:31 . 2008-05-30 13:17 68104 c:\windows\system32\XAPOFX1_0.dll

+ 2010-12-22 14:21 . 2009-03-16 13:18 24920 c:\windows\system32\X3DAudio1_6.dll

+ 2010-12-22 14:21 . 2008-10-15 06:03 25936 c:\windows\system32\X3DAudio1_5.dll

+ 2010-12-22 13:31 . 2008-05-30 13:16 28168 c:\windows\system32\X3DAudio1_4.dll

+ 2010-12-22 13:31 . 2008-03-05 15:00 28168 c:\windows\system32\X3DAudio1_3.dll

+ 2010-12-22 13:30 . 2007-10-22 02:37 21000 c:\windows\system32\X3DAudio1_2.dll

+ 2010-12-22 13:30 . 2007-03-05 11:42 17688 c:\windows\system32\x3daudio1_1.dll

- 2010-10-16 15:08 . 2007-03-05 10:42 17688 c:\windows\system32\x3daudio1_1.dll

+ 2010-12-22 13:30 . 2006-02-03 07:41 16592 c:\windows\system32\x3daudio1_0.dll

- 2010-10-16 15:07 . 2006-02-03 06:41 16592 c:\windows\system32\x3daudio1_0.dll

+ 2010-10-04 20:45 . 2010-12-23 21:24 55274 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin

+ 2009-07-14 05:10 . 2010-12-24 13:54 30918 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin

+ 2010-10-09 10:03 . 2010-12-24 13:54 13480 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-4178540460-591320363-475560934-1000_UserData.bin

- 2010-10-14 10:09 . 2010-09-08 05:35 97280 c:\windows\system32\mshtmled.dll

+ 2010-12-17 15:00 . 2010-11-04 06:32 97280 c:\windows\system32\mshtmled.dll

+ 2010-12-17 15:00 . 2010-11-04 06:28 12288 c:\windows\system32\msfeedssync.exe

- 2010-10-14 10:09 . 2010-09-08 05:31 12288 c:\windows\system32\msfeedssync.exe

+ 2010-12-17 15:00 . 2010-11-04 06:32 82944 c:\windows\system32\msfeedsbs.dll

- 2010-10-14 10:09 . 2010-09-08 05:35 82944 c:\windows\system32\msfeedsbs.dll

- 2010-10-14 10:09 . 2010-09-08 05:36 95232 c:\windows\system32\migration\WininetPlugin.dll

+ 2010-12-17 15:00 . 2010-11-04 06:35 95232 c:\windows\system32\migration\WininetPlugin.dll

+ 2010-12-17 15:00 . 2010-11-04 06:31 57856 c:\windows\system32\licmgr10.dll

- 2010-10-14 10:09 . 2010-09-08 05:34 57856 c:\windows\system32\licmgr10.dll

+ 2010-12-17 15:00 . 2010-11-04 06:31 64512 c:\windows\system32\jsproxy.dll

- 2010-10-14 10:09 . 2010-09-08 05:34 64512 c:\windows\system32\jsproxy.dll

+ 2010-12-14 14:36 . 2010-12-17 15:09 69224 c:\windows\system32\GDIPFONTCACHEV1.DAT

- 2010-12-14 14:36 . 2010-12-14 14:36 69224 c:\windows\system32\GDIPFONTCACHEV1.DAT

- 2009-07-14 05:30 . 2010-11-18 21:14 86016 c:\windows\system32\DriverStore\infpub.dat

+ 2009-07-14 05:30 . 2010-12-18 22:54 86016 c:\windows\system32\DriverStore\infpub.dat

+ 2010-12-18 22:53 . 2010-12-18 22:53 82816 c:\windows\system32\DriverStore\FileRepository\pcouffin.inf_amd64_neutral_666aa9544c69fafd\pcouffin.sys

+ 2010-10-08 14:47 . 2010-12-24 13:56 49152 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

- 2010-10-08 14:47 . 2010-12-15 22:56 49152 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

- 2010-10-08 14:47 . 2010-12-15 22:56 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat

+ 2010-10-08 14:47 . 2010-12-24 13:56 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat

+ 2009-07-14 04:54 . 2010-12-24 13:56 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

- 2009-07-14 04:54 . 2010-12-15 22:56 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

+ 2010-12-17 15:00 . 2010-10-20 05:20 46080 c:\windows\system32\atmlib.dll

- 2010-10-04 23:07 . 2010-10-04 23:07 46080 c:\windows\system32\atmlib.dll

- 2010-10-09 14:41 . 2010-12-15 10:33 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

+ 2010-10-09 14:41 . 2010-12-24 13:53 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

- 2009-07-14 04:46 . 2010-11-25 18:13 80672 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat

+ 2009-07-14 04:46 . 2010-12-23 19:54 80672 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat

- 2010-10-27 17:49 . 2010-12-15 19:27 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\Temporary Internet Files\Content.IE5\index.dat

+ 2010-10-27 17:49 . 2010-12-23 20:16 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\Temporary Internet Files\Content.IE5\index.dat

+ 2010-10-27 17:49 . 2010-12-23 20:16 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\History\History.IE5\index.dat

- 2010-10-27 17:49 . 2010-12-15 19:27 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\History\History.IE5\index.dat

- 2010-10-27 17:49 . 2010-12-15 19:27 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\Cookies\index.dat

+ 2010-10-27 17:49 . 2010-12-23 20:16 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\Cookies\index.dat

+ 2010-10-09 14:41 . 2010-12-24 13:53 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat

- 2010-10-09 14:41 . 2010-12-15 19:27 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat

- 2010-10-09 14:41 . 2010-12-15 10:33 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

+ 2010-10-09 14:41 . 2010-12-24 13:53 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

+ 2010-10-08 14:53 . 2010-12-24 13:53 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

- 2010-10-08 14:53 . 2010-12-15 10:33 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

+ 2010-10-08 14:53 . 2010-12-24 13:53 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

- 2010-10-08 14:53 . 2010-12-15 10:33 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

+ 2010-10-16 15:07 . 2005-03-18 15:23 12800 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Diagnostics.dll

- 2010-10-16 15:07 . 2005-03-18 14:23 12800 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Diagnostics.dll

- 2010-10-16 15:07 . 2005-03-18 14:23 53248 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.AudioVideoPlayback.dll

+ 2010-10-16 15:07 . 2005-03-18 15:23 53248 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.AudioVideoPlayback.dll

+ 2010-12-16 21:25 . 2010-12-16 21:25 28160 c:\windows\Installer\2dee2b.msi

+ 2010-12-18 16:30 . 2010-12-18 16:30 25088 c:\windows\Installer\141f276.msi

+ 2010-12-17 18:37 . 2010-12-17 18:37 75104 c:\windows\Installer\{95140000-00AF-0413-0000-0000000FF1CE}\ppvwicon.exe

- 2010-11-10 19:14 . 2010-11-10 19:14 75104 c:\windows\Installer\{95140000-00AF-0413-0000-0000000FF1CE}\ppvwicon.exe

+ 2010-10-10 16:52 . 2010-12-16 15:15 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll

- 2010-10-10 16:52 . 2010-10-10 21:17 49152 c:\windows\Installer\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}\ConfigIcon.dll

+ 2010-12-24 11:18 . 2010-12-24 11:18 83136 c:\windows\Installer\{86A4C6D9-29EE-4719-AFA1-BA3341862B83}\GameForWindowsLiveDash.exe

+ 2010-12-23 17:22 . 2010-12-23 17:22 98304 c:\windows\Installer\{32939827-D8E5-470A-B126-870DB3C69FD0}\python_icon.exe

+ 2010-12-22 14:21 . 2010-12-22 14:21 12800 c:\windows\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll

- 2010-10-16 15:07 . 2010-10-16 15:07 12800 c:\windows\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll

+ 2010-12-22 14:21 . 2010-12-22 14:21 53248 c:\windows\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll

- 2010-10-16 15:07 . 2010-10-16 15:07 53248 c:\windows\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll

+ 2010-12-17 15:00 . 2010-10-27 04:32 2048 c:\windows\SysWOW64\tzres.dll

- 2010-10-09 10:22 . 2010-06-19 06:15 2048 c:\windows\SysWOW64\tzres.dll

+ 2010-10-22 11:57 . 2010-10-22 11:57 9216 c:\windows\SysWOW64\Adobe\Shockwave 11\DynaPlayer.dll

+ 2010-12-17 15:00 . 2010-10-27 05:06 2048 c:\windows\system32\tzres.dll

- 2010-10-09 10:22 . 2010-06-19 06:48 2048 c:\windows\system32\tzres.dll

- 2010-12-15 10:31 . 2010-12-15 10:31 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat

+ 2010-12-24 13:58 . 2010-12-24 13:58 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat

+ 2010-12-24 13:58 . 2010-12-24 13:58 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat

- 2010-12-15 10:31 . 2010-12-15 10:31 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat

+ 2010-04-27 13:45 . 2010-04-27 13:45 187544 c:\windows\SysWOW64\xliveinstall.dll

+ 2008-10-22 03:55 . 2008-10-22 03:55 134144 c:\windows\SysWOW64\xlive\sqmapi.dll

+ 2010-12-22 14:21 . 2009-03-16 13:18 517448 c:\windows\SysWOW64\XAudio2_4.dll

+ 2010-12-22 14:21 . 2008-10-15 06:03 514384 c:\windows\SysWOW64\XAudio2_3.dll

+ 2010-12-22 14:21 . 2008-07-30 05:20 509448 c:\windows\SysWOW64\XAudio2_2.dll

+ 2010-12-22 13:31 . 2008-05-30 13:19 507400 c:\windows\SysWOW64\XAudio2_1.dll

+ 2010-12-22 13:31 . 2008-03-05 15:03 479752 c:\windows\SysWOW64\XAudio2_0.dll

+ 2010-12-22 14:21 . 2009-03-16 13:18 235352 c:\windows\SysWOW64\xactengine3_4.dll

+ 2010-12-22 14:21 . 2008-10-15 06:03 235856 c:\windows\SysWOW64\xactengine3_3.dll

+ 2010-12-22 14:21 . 2008-07-30 05:20 238088 c:\windows\SysWOW64\xactengine3_2.dll

+ 2010-12-22 13:31 . 2008-05-30 13:18 238088 c:\windows\SysWOW64\xactengine3_1.dll

+ 2010-12-22 13:31 . 2008-03-05 15:03 238088 c:\windows\SysWOW64\xactengine3_0.dll

+ 2010-12-22 13:31 . 2007-07-19 23:57 267112 c:\windows\SysWOW64\xactengine2_9.dll

- 2010-10-16 15:08 . 2007-05-31 17:30 266088 c:\windows\SysWOW64\xactengine2_8.dll

+ 2010-12-22 13:30 . 2007-06-20 19:46 266088 c:\windows\SysWOW64\xactengine2_8.dll

+ 2010-12-22 13:30 . 2007-04-04 17:55 261480 c:\windows\SysWOW64\xactengine2_7.dll

- 2010-10-16 15:08 . 2007-04-04 16:55 261480 c:\windows\SysWOW64\xactengine2_7.dll

+ 2010-12-22 13:30 . 2007-01-24 14:27 255848 c:\windows\SysWOW64\xactengine2_6.dll

- 2010-10-16 15:08 . 2007-01-24 13:27 255848 c:\windows\SysWOW64\xactengine2_6.dll

+ 2010-12-22 13:30 . 2006-12-08 11:02 251672 c:\windows\SysWOW64\xactengine2_5.dll

- 2010-10-16 15:08 . 2006-12-08 10:02 251672 c:\windows\SysWOW64\xactengine2_5.dll

+ 2010-12-22 13:30 . 2006-09-28 15:05 237848 c:\windows\SysWOW64\xactengine2_4.dll

- 2010-10-16 15:08 . 2006-09-28 14:05 237848 c:\windows\SysWOW64\xactengine2_4.dll

- 2010-10-16 15:07 . 2006-07-28 07:30 236824 c:\windows\SysWOW64\xactengine2_3.dll

+ 2010-12-22 13:30 . 2006-07-28 08:30 236824 c:\windows\SysWOW64\xactengine2_3.dll

- 2010-10-16 15:07 . 2006-05-31 05:24 230168 c:\windows\SysWOW64\xactengine2_2.dll

+ 2010-12-22 13:30 . 2006-05-31 06:24 230168 c:\windows\SysWOW64\xactengine2_2.dll

+ 2010-12-22 13:31 . 2007-10-22 02:39 267272 c:\windows\SysWOW64\xactengine2_10.dll

+ 2010-12-22 13:30 . 2006-03-31 11:39 229584 c:\windows\SysWOW64\xactengine2_1.dll

- 2010-10-16 15:07 . 2006-03-31 10:39 229584 c:\windows\SysWOW64\xactengine2_1.dll

- 2010-10-16 15:07 . 2006-02-03 06:42 230096 c:\windows\SysWOW64\xactengine2_0.dll

+ 2010-12-22 13:30 . 2006-02-03 07:42 230096 c:\windows\SysWOW64\xactengine2_0.dll

+ 2010-12-17 15:00 . 2010-11-04 05:52 978944 c:\windows\SysWOW64\wininet.dll

+ 2010-12-17 15:00 . 2010-10-16 04:36 314368 c:\windows\SysWOW64\webio.dll

+ 2010-12-17 15:00 . 2010-11-02 04:40 496128 c:\windows\SysWOW64\taskschd.dll

- 2009-07-13 23:30 . 2009-07-14 01:16 496128 c:\windows\SysWOW64\taskschd.dll

+ 2010-12-17 15:00 . 2010-11-02 04:34 192000 c:\windows\SysWOW64\taskeng.exe

+ 2010-12-17 15:00 . 2010-11-02 04:40 305152 c:\windows\SysWOW64\taskcomp.dll

+ 2010-12-17 15:00 . 2010-11-02 04:34 179712 c:\windows\SysWOW64\schtasks.exe

+ 2010-12-17 15:00 . 2010-11-04 05:49 606208 c:\windows\SysWOW64\mstime.dll

- 2010-10-14 10:09 . 2010-09-08 04:28 606208 c:\windows\SysWOW64\mstime.dll

- 2010-10-14 10:09 . 2010-09-08 04:28 599040 c:\windows\SysWOW64\msfeeds.dll

+ 2010-12-17 15:00 . 2010-11-04 05:49 599040 c:\windows\SysWOW64\msfeeds.dll

+ 2010-12-11 10:06 . 2010-12-16 21:25 233936 c:\windows\SysWOW64\Macromed\Flash\FlashUtil10l_ActiveX.exe

- 2010-12-11 10:06 . 2010-12-11 10:06 233936 c:\windows\SysWOW64\Macromed\Flash\FlashUtil10l_ActiveX.exe

- 2010-12-11 10:06 . 2010-12-11 10:06 311248 c:\windows\SysWOW64\Macromed\Flash\FlashUtil10l_ActiveX.dll

+ 2010-12-11 10:06 . 2010-12-16 21:25 311248 c:\windows\SysWOW64\Macromed\Flash\FlashUtil10l_ActiveX.dll

- 2010-10-14 10:09 . 2010-09-08 04:28 176640 c:\windows\SysWOW64\ieui.dll

+ 2010-12-17 15:00 . 2010-11-04 05:48 176640 c:\windows\SysWOW64\ieui.dll

+ 2010-12-17 15:00 . 2010-11-04 05:48 185856 c:\windows\SysWOW64\iepeers.dll

- 2010-10-14 10:09 . 2010-09-08 04:28 185856 c:\windows\SysWOW64\iepeers.dll

- 2010-10-14 10:09 . 2010-09-08 04:27 381440 c:\windows\SysWOW64\iedkcs32.dll

+ 2010-12-17 15:00 . 2010-11-04 05:48 381440 c:\windows\SysWOW64\iedkcs32.dll

+ 2010-12-22 14:21 . 2008-10-15 05:22 452440 c:\windows\SysWOW64\d3dx10_40.dll

+ 2010-12-22 14:21 . 2008-07-10 10:01 467984 c:\windows\SysWOW64\d3dx10_39.dll

+ 2010-12-22 13:31 . 2008-05-30 13:11 467984 c:\windows\SysWOW64\d3dx10_38.dll

+ 2010-12-22 13:31 . 2007-10-02 08:56 444776 c:\windows\SysWOW64\d3dx10_36.dll

+ 2010-12-22 13:30 . 2007-07-19 17:14 444776 c:\windows\SysWOW64\d3dx10_35.dll

+ 2010-12-22 13:30 . 2007-05-16 15:45 443752 c:\windows\SysWOW64\d3dx10_34.dll

- 2010-10-16 15:08 . 2007-05-16 14:45 443752 c:\windows\SysWOW64\d3dx10_34.dll

+ 2010-12-22 13:30 . 2007-03-15 15:57 443752 c:\windows\SysWOW64\d3dx10_33.dll

- 2010-10-16 15:08 . 2007-03-15 14:57 443752 c:\windows\SysWOW64\d3dx10_33.dll

+ 2010-12-22 13:30 . 2006-11-29 12:06 440080 c:\windows\SysWOW64\d3dx10.dll

- 2010-10-16 15:08 . 2006-11-29 11:06 440080 c:\windows\SysWOW64\d3dx10.dll

- 2010-10-08 14:59 . 2010-12-14 12:26 262144 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat

+ 2010-10-08 14:59 . 2010-12-24 13:52 262144 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat

+ 2010-12-22 13:31 . 2010-12-22 13:31 178800 c:\windows\SysWOW64\CmdLineExt_x64.dll

+ 2010-12-17 15:00 . 2010-10-20 02:58 294400 c:\windows\SysWOW64\atmfd.dll

+ 2010-10-22 11:56 . 2010-10-22 11:56 114688 c:\windows\SysWOW64\Adobe\Shockwave 11\SwInit.exe

+ 2010-10-22 12:05 . 2010-10-22 12:05 467224 c:\windows\SysWOW64\Adobe\Shockwave 11\SwHelper_1159615.exe

+ 2010-10-22 11:46 . 2010-10-22 11:46 136568 c:\windows\SysWOW64\Adobe\Shockwave 11\SCC.dll

+ 2010-10-22 11:58 . 2010-10-22 11:58 446464 c:\windows\SysWOW64\Adobe\Shockwave 11\Proj.dll

+ 2010-10-22 11:57 . 2010-10-22 11:57 372736 c:\windows\SysWOW64\Adobe\Shockwave 11\Plugin.dll

+ 2010-10-22 11:46 . 2010-10-22 11:46 810496 c:\windows\SysWOW64\Adobe\Shockwave 11\gi.dll

+ 2010-10-22 11:56 . 2010-10-22 11:56 503808 c:\windows\SysWOW64\Adobe\Shockwave 11\Control.dll

+ 2010-10-22 12:05 . 2010-10-22 12:05 213272 c:\windows\SysWOW64\Adobe\Director\SwDir.dll

+ 2010-10-22 11:57 . 2010-10-22 11:57 131072 c:\windows\SysWOW64\Adobe\Director\np32dsw.dll

+ 2010-12-22 13:30 . 2007-04-04 17:54 107368 c:\windows\system32\xinput1_3.dll

- 2010-10-16 15:08 . 2007-04-04 16:54 107368 c:\windows\system32\xinput1_3.dll

+ 2010-12-22 14:21 . 2009-03-16 13:18 521560 c:\windows\system32\XAudio2_4.dll

+ 2010-12-22 14:21 . 2008-10-15 06:03 518480 c:\windows\system32\XAudio2_3.dll

+ 2010-12-22 14:21 . 2008-07-30 05:20 513544 c:\windows\system32\XAudio2_2.dll

+ 2010-12-22 13:31 . 2008-05-30 13:19 511496 c:\windows\system32\XAudio2_1.dll

+ 2010-12-22 13:31 . 2008-03-05 15:04 489480 c:\windows\system32\XAudio2_0.dll

+ 2010-12-22 14:21 . 2009-03-16 13:18 174936 c:\windows\system32\xactengine3_4.dll

+ 2010-12-22 14:21 . 2008-10-15 06:03 175440 c:\windows\system32\xactengine3_3.dll

+ 2010-12-22 14:21 . 2008-07-30 05:20 177672 c:\windows\system32\xactengine3_2.dll

+ 2010-12-22 13:31 . 2008-05-30 13:18 177672 c:\windows\system32\xactengine3_1.dll

+ 2010-12-22 13:31 . 2008-03-05 15:03 177672 c:\windows\system32\xactengine3_0.dll

+ 2010-12-22 13:31 . 2007-07-19 23:57 411496 c:\windows\system32\xactengine2_9.dll

- 2010-10-16 15:08 . 2007-05-31 17:30 409960 c:\windows\system32\xactengine2_8.dll

+ 2010-12-22 13:30 . 2007-06-20 19:49 409960 c:\windows\system32\xactengine2_8.dll

+ 2010-12-22 13:30 . 2007-04-04 17:55 403304 c:\windows\system32\xactengine2_7.dll

- 2010-10-16 15:08 . 2007-04-04 16:55 403304 c:\windows\system32\xactengine2_7.dll

- 2010-10-16 15:08 . 2007-01-24 13:27 393576 c:\windows\system32\xactengine2_6.dll

+ 2010-12-22 13:30 . 2007-01-24 14:27 393576 c:\windows\system32\xactengine2_6.dll

+ 2010-12-22 13:30 . 2006-12-08 11:00 390424 c:\windows\system32\xactengine2_5.dll

- 2010-10-16 15:08 . 2006-12-08 10:00 390424 c:\windows\system32\xactengine2_5.dll

+ 2010-12-22 13:30 . 2006-09-28 15:04 364824 c:\windows\system32\xactengine2_4.dll

- 2010-10-16 15:08 . 2006-09-28 14:04 364824 c:\windows\system32\xactengine2_4.dll

+ 2010-12-22 13:30 . 2006-07-28 08:30 363288 c:\windows\system32\xactengine2_3.dll

- 2010-10-16 15:07 . 2006-07-28 07:30 363288 c:\windows\system32\xactengine2_3.dll

+ 2010-12-22 13:30 . 2006-05-31 06:22 354072 c:\windows\system32\xactengine2_2.dll

- 2010-10-16 15:07 . 2006-05-31 05:22 354072 c:\windows\system32\xactengine2_2.dll

+ 2010-12-22 13:31 . 2007-10-22 02:40 411656 c:\windows\system32\xactengine2_10.dll

- 2010-10-16 15:07 . 2006-03-31 10:40 352464 c:\windows\system32\xactengine2_1.dll

+ 2010-12-22 13:30 . 2006-03-31 11:40 352464 c:\windows\system32\xactengine2_1.dll

+ 2010-12-22 13:30 . 2006-02-03 07:42 355536 c:\windows\system32\xactengine2_0.dll

- 2010-10-16 15:07 . 2006-02-03 06:42 355536 c:\windows\system32\xactengine2_0.dll

+ 2010-12-17 15:00 . 2010-11-02 05:18 524288 c:\windows\system32\wmicmiplugin.dll

+ 2010-12-17 15:00 . 2010-10-16 05:19 395776 c:\windows\system32\webio.dll

+ 2010-10-23 15:26 . 2010-12-22 12:47 134332 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S4.bin

+ 2010-10-08 16:23 . 2010-12-24 12:23 314616 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin

+ 2010-12-17 15:00 . 2010-11-02 05:10 464384 c:\windows\system32\taskeng.exe

+ 2010-12-17 15:00 . 2010-11-02 05:17 473600 c:\windows\system32\taskcomp.dll

- 2009-07-13 23:47 . 2009-07-14 01:41 473600 c:\windows\system32\taskcomp.dll

+ 2010-12-18 22:32 . 2009-12-21 01:42 733696 c:\windows\system32\spool\drivers\x64\pscript5.dll

+ 2010-12-18 22:32 . 2009-12-21 01:42 237568 c:\windows\system32\spool\drivers\x64\ps5ui.dll

- 2010-12-02 19:38 . 2005-03-24 07:23 733696 c:\windows\system32\spool\drivers\x64\3\PSCRIPT5.DLL

+ 2010-12-02 19:38 . 2009-12-21 01:42 733696 c:\windows\system32\spool\drivers\x64\3\pscript5.dll

+ 2010-12-02 19:38 . 2009-12-21 01:42 237568 c:\windows\system32\spool\drivers\x64\3\ps5ui.dll

- 2010-12-02 19:38 . 2005-03-24 07:23 237568 c:\windows\system32\spool\drivers\x64\3\PS5UI.DLL

+ 2010-12-17 15:00 . 2010-11-02 05:10 285696 c:\windows\system32\schtasks.exe

+ 2009-09-22 18:28 . 2010-12-23 21:27 743944 c:\windows\system32\perfh013.dat

- 2009-09-22 18:28 . 2010-12-13 12:11 743944 c:\windows\system32\perfh013.dat

+ 2009-07-14 02:36 . 2010-12-23 21:27 652750 c:\windows\system32\perfh009.dat

- 2009-07-14 02:36 . 2010-12-13 12:11 652750 c:\windows\system32\perfh009.dat

- 2009-09-22 18:28 . 2010-12-13 12:11 152770 c:\windows\system32\perfc013.dat

+ 2009-09-22 18:28 . 2010-12-23 21:27 152770 c:\windows\system32\perfc013.dat

+ 2009-07-14 02:36 . 2010-12-23 21:27 121424 c:\windows\system32\perfc009.dat

- 2009-07-14 02:36 . 2010-12-13 12:11 121424 c:\windows\system32\perfc009.dat

+ 2010-12-17 15:00 . 2010-11-04 06:32 703488 c:\windows\system32\msfeeds.dll

+ 2010-12-17 15:00 . 2010-11-04 06:31 247808 c:\windows\system32\ieui.dll

- 2010-10-14 10:09 . 2010-09-08 05:34 247808 c:\windows\system32\ieui.dll

- 2010-10-14 10:09 . 2010-09-08 05:34 256000 c:\windows\system32\iepeers.dll

+ 2010-12-17 15:00 . 2010-11-04 06:31 256000 c:\windows\system32\iepeers.dll

+ 2010-12-17 15:00 . 2010-11-04 06:31 445952 c:\windows\system32\iedkcs32.dll

- 2010-10-14 10:09 . 2010-09-08 05:34 445952 c:\windows\system32\iedkcs32.dll

- 2009-07-14 05:30 . 2010-11-18 21:14 143360 c:\windows\system32\DriverStore\infstrng.dat

+ 2009-07-14 05:30 . 2010-12-18 22:54 143360 c:\windows\system32\DriverStore\infstrng.dat

- 2009-07-14 05:30 . 2010-11-18 21:14 143360 c:\windows\system32\DriverStore\infstor.dat

+ 2009-07-14 05:30 . 2010-12-18 22:54 143360 c:\windows\system32\DriverStore\infstor.dat

+ 2010-12-22 14:21 . 2009-03-09 14:27 520544 c:\windows\system32\d3dx10_41.dll

+ 2010-12-22 14:21 . 2008-10-15 05:22 519000 c:\windows\system32\d3dx10_40.dll

+ 2010-12-22 14:21 . 2008-07-10 10:00 540688 c:\windows\system32\d3dx10_39.dll

+ 2010-12-22 13:31 . 2008-05-30 13:11 540688 c:\windows\system32\d3dx10_38.dll

+ 2010-12-22 13:31 . 2008-02-05 22:07 529424 c:\windows\system32\d3dx10_37.dll

+ 2010-12-22 13:31 . 2007-10-02 08:56 508264 c:\windows\system32\d3dx10_36.dll

+ 2010-12-22 13:30 . 2007-07-19 17:14 508264 c:\windows\system32\d3dx10_35.dll

+ 2010-12-22 13:30 . 2007-05-16 15:45 506728 c:\windows\system32\d3dx10_34.dll

- 2010-10-16 15:08 . 2007-05-16 14:45 506728 c:\windows\system32\d3dx10_34.dll

- 2010-10-16 15:08 . 2007-03-15 14:57 506728 c:\windows\system32\d3dx10_33.dll

+ 2010-12-22 13:30 . 2007-03-15 15:57 506728 c:\windows\system32\d3dx10_33.dll

+ 2010-12-22 13:30 . 2006-11-29 12:06 469264 c:\windows\system32\d3dx10.dll

- 2010-10-16 15:08 . 2006-11-29 11:06 469264 c:\windows\system32\d3dx10.dll

+ 2010-12-17 15:00 . 2010-10-16 05:23 112000 c:\windows\system32\consent.exe

+ 2009-07-14 05:12 . 2010-12-24 11:25 245760 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat

- 2009-07-14 05:12 . 2010-12-15 12:39 245760 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat

+ 2010-12-17 15:00 . 2010-10-20 03:05 367104 c:\windows\system32\atmfd.dll

+ 2010-10-08 19:48 . 2010-12-23 17:33 884152 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat

+ 2009-07-14 05:01 . 2010-12-24 13:57 387188 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat

- 2009-07-14 05:01 . 2010-12-14 23:04 387188 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat

+ 2010-10-16 15:07 . 2006-03-31 10:27 578560 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2911.0\Microsoft.DirectX.Direct3DX.dll

- 2010-10-16 15:07 . 2006-03-31 09:27 578560 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2911.0\Microsoft.DirectX.Direct3DX.dll

+ 2010-10-16 15:07 . 2006-02-03 06:40 578560 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2910.0\Microsoft.DirectX.Direct3DX.dll

- 2010-10-16 15:07 . 2006-02-03 05:40 578560 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2910.0\Microsoft.DirectX.Direct3DX.dll

- 2010-10-16 15:07 . 2005-12-05 15:20 577536 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2909.0\Microsoft.DirectX.Direct3DX.dll

+ 2010-10-16 15:07 . 2005-12-05 16:20 577536 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2909.0\Microsoft.DirectX.Direct3DX.dll

- 2010-10-16 15:07 . 2005-09-28 12:11 577536 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2908.0\Microsoft.DirectX.Direct3DX.dll

+ 2010-10-16 15:07 . 2005-09-28 13:11 577536 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2908.0\Microsoft.DirectX.Direct3DX.dll

- 2010-10-16 15:07 . 2005-07-22 15:21 577024 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2907.0\Microsoft.DirectX.Direct3DX.dll

+ 2010-10-16 15:07 . 2005-07-22 16:21 577024 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2907.0\Microsoft.DirectX.Direct3DX.dll

+ 2010-10-16 15:07 . 2005-05-26 14:15 576000 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2906.0\Microsoft.DirectX.Direct3DX.dll

- 2010-10-16 15:07 . 2005-05-26 13:15 576000 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2906.0\Microsoft.DirectX.Direct3DX.dll

+ 2010-10-16 15:07 . 2005-03-18 16:23 567296 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2905.0\Microsoft.DirectX.Direct3DX.dll

- 2010-10-16 15:07 . 2005-03-18 15:23 567296 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2905.0\Microsoft.DirectX.Direct3DX.dll

+ 2010-10-16 15:07 . 2005-02-05 18:32 563712 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2904.0\Microsoft.DirectX.Direct3DX.dll

- 2010-10-16 15:07 . 2005-02-05 17:32 563712 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2904.0\Microsoft.DirectX.Direct3DX.dll

- 2010-10-16 15:07 . 2005-03-18 14:23 223232 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.dll

+ 2010-10-16 15:07 . 2005-03-18 15:23 223232 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.dll

- 2010-10-16 15:07 . 2005-03-18 14:23 178176 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectSound.dll

+ 2010-10-16 15:07 . 2005-03-18 15:23 178176 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectSound.dll

- 2010-10-16 15:07 . 2005-03-18 14:23 364544 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectPlay.dll

+ 2010-10-16 15:07 . 2005-03-18 15:23 364544 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectPlay.dll

- 2010-10-16 15:07 . 2005-03-18 14:23 159232 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectInput.dll

+ 2010-10-16 15:07 . 2005-03-18 15:23 159232 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectInput.dll

+ 2010-10-16 15:07 . 2005-03-18 15:23 145920 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectDraw.dll

- 2010-10-16 15:07 . 2005-03-18 14:23 145920 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectDraw.dll

- 2010-10-16 15:07 . 2005-03-18 14:23 473600 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Direct3D.dll

+ 2010-10-16 15:07 . 2005-03-18 15:23 473600 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Direct3D.dll

+ 2010-12-22 14:21 . 2010-12-22 14:21 223232 c:\windows\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll

- 2010-10-16 15:07 . 2010-10-16 15:07 223232 c:\windows\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll

+ 2010-12-22 14:21 . 2010-12-22 14:21 178176 c:\windows\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll

- 2010-10-16 15:07 . 2010-10-16 15:07 178176 c:\windows\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll

- 2010-10-16 15:07 . 2010-10-16 15:07 364544 c:\windows\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll

+ 2010-12-22 14:21 . 2010-12-22 14:21 364544 c:\windows\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll

+ 2010-12-22 14:21 . 2010-12-22 14:21 159232 c:\windows\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll

- 2010-10-16 15:07 . 2010-10-16 15:07 159232 c:\windows\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll

+ 2010-12-22 14:21 . 2010-12-22 14:21 145920 c:\windows\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll

- 2010-10-16 15:07 . 2010-10-16 15:07 145920 c:\windows\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll

- 2010-10-16 15:07 . 2010-10-16 15:07 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

+ 2010-12-22 14:21 . 2010-12-22 14:21 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

- 2010-10-16 15:07 . 2010-10-16 15:07 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

+ 2010-12-22 14:21 . 2010-12-22 14:21 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

+ 2010-12-22 14:21 . 2010-12-22 14:21 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

- 2010-10-16 15:07 . 2010-10-16 15:07 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

- 2010-10-16 15:07 . 2010-10-16 15:07 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

+ 2010-12-22 14:21 . 2010-12-22 14:21 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

- 2010-10-16 15:07 . 2010-10-16 15:07 577024 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

+ 2010-12-22 14:21 . 2010-12-22 14:21 577024 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

- 2010-10-16 15:07 . 2010-10-16 15:07 576000 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

+ 2010-12-22 14:21 . 2010-12-22 14:21 576000 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

+ 2010-12-22 14:21 . 2010-12-22 14:21 567296 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

- 2010-10-16 15:07 . 2010-10-16 15:07 567296 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

- 2010-10-16 15:07 . 2010-10-16 15:07 563712 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

+ 2010-12-22 14:21 . 2010-12-22 14:21 563712 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

- 2010-10-16 15:07 . 2010-10-16 15:07 473600 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll

+ 2010-12-22 14:21 . 2010-12-22 14:21 473600 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll

- 2010-10-14 10:09 . 2010-09-08 04:30 1226752 c:\windows\SysWOW64\urlmon.dll

+ 2010-12-17 15:00 . 2010-11-04 05:52 1226752 c:\windows\SysWOW64\urlmon.dll

+ 2010-12-17 15:00 . 2010-11-04 05:49 5978112 c:\windows\SysWOW64\mshtml.dll

+ 2010-12-17 15:00 . 2010-11-04 05:48 2063360 c:\windows\SysWOW64\iertutil.dll

+ 2010-12-22 14:21 . 2009-03-09 14:27 4178264 c:\windows\SysWOW64\D3DX9_41.dll

+ 2010-12-22 14:21 . 2008-10-15 05:22 4379984 c:\windows\SysWOW64\D3DX9_40.dll

+ 2010-12-22 14:21 . 2008-07-10 10:00 3851784 c:\windows\SysWOW64\D3DX9_39.dll

+ 2010-12-22 13:31 . 2008-05-30 13:11 3850760 c:\windows\SysWOW64\D3DX9_38.dll

+ 2010-12-22 13:31 . 2007-10-12 14:14 3734536 c:\windows\SysWOW64\d3dx9_36.dll

+ 2010-12-22 13:30 . 2007-07-19 17:14 3727720 c:\windows\SysWOW64\d3dx9_35.dll

- 2010-10-16 15:08 . 2007-05-16 14:45 3497832 c:\windows\SysWOW64\d3dx9_34.dll

+ 2010-12-22 13:30 . 2007-05-16 15:45 3497832 c:\windows\SysWOW64\d3dx9_34.dll

+ 2010-12-22 13:30 . 2007-03-12 15:42 3495784 c:\windows\SysWOW64\d3dx9_33.dll

- 2010-10-16 15:08 . 2007-03-12 14:42 3495784 c:\windows\SysWOW64\d3dx9_33.dll

- 2010-10-16 15:08 . 2006-09-28 14:05 2414360 c:\windows\SysWOW64\d3dx9_31.dll

+ 2010-12-22 13:30 . 2006-09-28 15:05 2414360 c:\windows\SysWOW64\d3dx9_31.dll

- 2010-10-16 15:07 . 2006-03-31 10:40 2388176 c:\windows\SysWOW64\d3dx9_30.dll

+ 2010-12-22 13:30 . 2006-03-31 11:40 2388176 c:\windows\SysWOW64\d3dx9_30.dll

+ 2010-12-22 13:30 . 2006-02-03 07:43 2332368 c:\windows\SysWOW64\d3dx9_29.dll

- 2010-10-16 15:07 . 2006-02-03 06:43 2332368 c:\windows\SysWOW64\d3dx9_29.dll

+ 2010-12-22 13:30 . 2005-12-05 17:09 2323664 c:\windows\SysWOW64\d3dx9_28.dll

- 2010-10-16 15:07 . 2005-12-05 16:09 2323664 c:\windows\SysWOW64\d3dx9_28.dll

+ 2010-12-22 13:30 . 2005-07-22 18:59 2319568 c:\windows\SysWOW64\d3dx9_27.dll

- 2010-10-16 15:07 . 2005-07-22 17:59 2319568 c:\windows\SysWOW64\d3dx9_27.dll

+ 2010-12-22 13:30 . 2005-05-26 14:34 2297552 c:\windows\SysWOW64\d3dx9_26.dll

- 2010-10-16 15:07 . 2005-05-26 13:34 2297552 c:\windows\SysWOW64\d3dx9_26.dll

- 2010-10-16 15:07 . 2005-03-18 15:19 2337488 c:\windows\SysWOW64\d3dx9_25.dll

+ 2010-12-22 13:30 . 2005-03-18 16:19 2337488 c:\windows\SysWOW64\d3dx9_25.dll

+ 2010-12-22 13:30 . 2005-02-05 18:45 2222800 c:\windows\SysWOW64\d3dx9_24.dll

- 2010-10-16 15:07 . 2005-02-05 17:45 2222800 c:\windows\SysWOW64\d3dx9_24.dll

+ 2010-12-22 14:21 . 2008-10-15 05:22 2036576 c:\windows\SysWOW64\D3DCompiler_40.dll

+ 2010-12-22 14:21 . 2008-07-10 10:00 1493528 c:\windows\SysWOW64\D3DCompiler_39.dll

+ 2010-12-22 13:31 . 2008-05-30 13:11 1491992 c:\windows\SysWOW64\D3DCompiler_38.dll

+ 2010-12-22 13:31 . 2007-10-12 14:14 1374232 c:\windows\SysWOW64\D3DCompiler_36.dll

+ 2010-12-22 13:30 . 2007-07-19 17:14 1358192 c:\windows\SysWOW64\D3DCompiler_35.dll

- 2010-10-16 15:08 . 2007-05-16 14:45 1124720 c:\windows\SysWOW64\D3DCompiler_34.dll

+ 2010-12-22 13:30 . 2007-05-16 15:45 1124720 c:\windows\SysWOW64\D3DCompiler_34.dll

+ 2010-12-22 13:30 . 2007-03-12 15:42 1123696 c:\windows\SysWOW64\D3DCompiler_33.dll

- 2010-10-16 15:08 . 2007-03-12 14:42 1123696 c:\windows\SysWOW64\D3DCompiler_33.dll

+ 2010-10-22 11:49 . 2010-10-22 11:49 1011712 c:\windows\SysWOW64\Adobe\Shockwave 11\iml32.dll

+ 2010-10-22 11:46 . 2010-10-22 11:46 2224816 c:\windows\SysWOW64\Adobe\Shockwave 11\gt.exe

+ 2010-10-22 11:51 . 2010-10-22 11:51 1802240 c:\windows\SysWOW64\Adobe\Shockwave 11\dirapi.dll

+ 2010-12-17 15:00 . 2010-11-04 06:35 1194496 c:\windows\system32\wininet.dll

+ 2010-12-17 15:00 . 2010-10-20 03:09 3124224 c:\windows\system32\win32k.sys

- 2010-10-14 10:09 . 2010-09-08 05:36 1495040 c:\windows\system32\urlmon.dll

+ 2010-12-17 15:00 . 2010-11-04 06:35 1495040 c:\windows\system32\urlmon.dll

+ 2010-12-17 15:00 . 2010-11-02 05:17 1169408 c:\windows\system32\taskschd.dll

+ 2010-12-17 15:00 . 2010-11-02 05:16 1114624 c:\windows\system32\schedsvc.dll

+ 2010-12-17 15:00 . 2010-11-04 06:32 1026560 c:\windows\system32\mstime.dll

+ 2010-12-17 15:00 . 2010-11-04 06:32 9306624 c:\windows\system32\mshtml.dll

+ 2010-12-17 15:00 . 2010-11-04 06:31 2447872 c:\windows\system32\iertutil.dll

- 2009-07-14 04:45 . 2010-11-24 11:14 4872496 c:\windows\system32\FNTCACHE.DAT

+ 2009-07-14 04:45 . 2010-12-18 10:40 4872496 c:\windows\system32\FNTCACHE.DAT

+ 2010-12-22 14:21 . 2009-03-09 14:27 5425496 c:\windows\system32\D3DX9_41.dll

+ 2010-12-22 14:21 . 2008-10-15 05:22 5631312 c:\windows\system32\D3DX9_40.dll

+ 2010-12-22 14:21 . 2008-07-10 10:00 4992520 c:\windows\system32\D3DX9_39.dll

+ 2010-12-22 13:31 . 2008-05-30 13:11 4991496 c:\windows\system32\D3DX9_38.dll

+ 2010-12-22 13:31 . 2008-03-05 14:56 4910088 c:\windows\system32\D3DX9_37.dll

+ 2010-12-22 13:31 . 2007-10-12 14:14 5081608 c:\windows\system32\d3dx9_36.dll

+ 2010-12-22 13:30 . 2007-07-19 17:14 5073256 c:\windows\system32\d3dx9_35.dll

+ 2010-12-22 13:30 . 2007-05-16 15:45 4496232 c:\windows\system32\d3dx9_34.dll

- 2010-10-16 15:08 . 2007-05-16 14:45 4496232 c:\windows\system32\d3dx9_34.dll

+ 2010-12-22 13:30 . 2007-03-12 15:42 4494184 c:\windows\system32\d3dx9_33.dll

- 2010-10-16 15:08 . 2007-03-12 14:42 4494184 c:\windows\system32\d3dx9_33.dll

+ 2010-12-22 13:30 . 2006-09-28 15:05 3977496 c:\windows\system32\d3dx9_31.dll

- 2010-10-16 15:08 . 2006-09-28 14:05 3977496 c:\windows\system32\d3dx9_31.dll

+ 2010-12-22 13:30 . 2006-03-31 11:41 3927248 c:\windows\system32\d3dx9_30.dll

- 2010-10-16 15:07 . 2006-03-31 10:41 3927248 c:\windows\system32\d3dx9_30.dll

+ 2010-12-22 13:30 . 2006-02-03 07:43 3830992 c:\windows\system32\d3dx9_29.dll

- 2010-10-16 15:07 . 2006-02-03 06:43 3830992 c:\windows\system32\d3dx9_29.dll

- 2010-10-16 15:07 . 2005-12-05 16:09 3815120 c:\windows\system32\d3dx9_28.dll

+ 2010-12-22 13:30 . 2005-12-05 17:09 3815120 c:\windows\system32\d3dx9_28.dll

+ 2010-12-22 13:30 . 2005-07-22 18:59 3807440 c:\windows\system32\d3dx9_27.dll

- 2010-10-16 15:07 . 2005-07-22 17:59 3807440 c:\windows\system32\d3dx9_27.dll

- 2010-10-16 15:07 . 2005-05-26 13:34 3767504 c:\windows\system32\d3dx9_26.dll

+ 2010-12-22 13:30 . 2005-05-26 14:34 3767504 c:\windows\system32\d3dx9_26.dll

+ 2010-12-22 13:30 . 2005-03-18 16:19 3823312 c:\windows\system32\d3dx9_25.dll

- 2010-10-16 15:07 . 2005-03-18 15:19 3823312 c:\windows\system32\d3dx9_25.dll

+ 2010-12-22 13:30 . 2005-02-05 18:45 3544272 c:\windows\system32\d3dx9_24.dll

- 2010-10-16 15:07 . 2005-02-05 17:45 3544272 c:\windows\system32\d3dx9_24.dll

+ 2010-12-22 14:21 . 2009-03-09 14:27 2430312 c:\windows\system32\D3DCompiler_41.dll

+ 2010-12-22 14:21 . 2008-10-15 05:22 2605920 c:\windows\system32\D3DCompiler_40.dll

+ 2010-12-22 14:21 . 2008-07-10 10:00 1942552 c:\windows\system32\D3DCompiler_39.dll

+ 2010-12-22 13:31 . 2008-05-30 13:11 1941528 c:\windows\system32\D3DCompiler_38.dll

+ 2010-12-22 13:31 . 2008-03-05 14:56 1860120 c:\windows\system32\D3DCompiler_37.dll

+ 2010-12-22 13:31 . 2007-10-12 14:14 2006552 c:\windows\system32\D3DCompiler_36.dll

+ 2010-12-22 13:30 . 2007-07-19 17:14 1985904 c:\windows\system32\D3DCompiler_35.dll

- 2010-10-16 15:08 . 2007-05-16 14:45 1401200 c:\windows\system32\D3DCompiler_34.dll

+ 2010-12-22 13:30 . 2007-05-16 15:45 1401200 c:\windows\system32\D3DCompiler_34.dll

- 2010-10-16 15:08 . 2007-03-12 14:42 1400176 c:\windows\system32\D3DCompiler_33.dll

+ 2010-12-22 13:30 . 2007-03-12 15:42 1400176 c:\windows\system32\D3DCompiler_33.dll

- 2009-07-14 04:45 . 2010-11-24 20:46 3802522 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat

+ 2009-07-14 04:45 . 2010-12-18 10:42 3802522 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat

+ 2010-10-16 15:07 . 2004-12-01 14:53 2846720 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2903.0\Microsoft.DirectX.Direct3DX.dll

- 2010-10-16 15:07 . 2004-12-01 13:53 2846720 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2903.0\Microsoft.DirectX.Direct3DX.dll

+ 2010-10-16 15:07 . 2004-09-29 11:38 2676224 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Direct3DX.dll

- 2010-10-16 15:07 . 2004-09-29 10:38 2676224 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Direct3DX.dll

+ 2010-11-11 11:54 . 2010-11-11 11:54 1121792 c:\windows\Installer\cd8b78.msp

+ 2010-11-06 01:42 . 2010-11-06 01:42 3379200 c:\windows\Installer\4990b.msi

+ 2010-05-17 16:37 . 2010-05-17 16:37 1133568 c:\windows\Installer\1236b16.msi

+ 2010-03-01 03:20 . 2010-03-01 03:20 2102656 c:\windows\Installer\$PatchCache$\Managed\00004159FA0031400000000000F01FEC\14.0.4763\GKPOWERPOINT.DLL

- 2010-10-16 15:07 . 2010-10-16 15:07 2846720 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

+ 2010-12-22 14:21 . 2010-12-22 14:21 2846720 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

- 2010-10-16 15:07 . 2010-10-16 15:07 2676224 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

+ 2010-12-22 14:21 . 2010-12-22 14:21 2676224 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

+ 2010-12-17 15:00 . 2010-11-04 05:48 10989056 c:\windows\SysWOW64\ieframe.dll

+ 2009-07-14 02:34 . 2010-12-18 10:39 10223616 c:\windows\system32\SMI\Store\Machine\schema.dat

- 2009-07-14 02:34 . 2010-10-14 14:50 10223616 c:\windows\system32\SMI\Store\Machine\SCHEMA.DAT

+ 2010-11-02 10:01 . 2010-12-17 18:37 39298504 c:\windows\system32\MRT.exe

- 2010-10-14 10:09 . 2010-09-08 05:34 12369408 c:\windows\system32\ieframe.dll

+ 2010-12-17 15:00 . 2010-11-04 06:31 12369408 c:\windows\system32\ieframe.dll

+ 2010-10-10 21:18 . 2010-12-24 13:57 13387445 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-4178540460-591320363-475560934-1000-8192.dat

+ 2010-12-16 15:15 . 2010-12-16 15:15 20304384 c:\windows\Installer\f953f8.msp

+ 2010-10-14 00:46 . 2010-10-14 00:46 21713408 c:\windows\Installer\f3a5bf.msi

+ 2010-12-23 17:21 . 2010-12-23 17:21 16333824 c:\windows\Installer\13c6a21.msi

.

-- Snapshot teruggezet naar huidige datum --

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"msnmsgr"="c:\program files (x86)\Windows Live\Messenger\msnmsgr.exe" [2010-09-22 4240760]

"Google Update"="c:\users\Nick\AppData\Local\Google\Update\GoogleUpdate.exe" [2010-12-12 136176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]

"GrpConv"="grpconv -o" [X]

"Launcher"="c:\program files (x86)\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe" [2010-07-21 165184]

c:\users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

Dell Dock.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-16 1324384]

c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

Dell Dock First Run.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-16 1324384]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]

"mixer5"=wdmaud.drv

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]

Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

@=""

R1 aswSP;avast! Self Protection; [x]

R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]

R2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208]

R2 aksdf;aksdf;c:\windows\system32\DRIVERS\aksdf.sys [2006-12-13 65024]

R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-01-23 202752]

R2 aswFsBlk;aswFsBlk;c:\windows\system32\DRIVERS\aswFsBlk.sys [2009-11-24 22096]

R2 aswMonFlt;aswMonFlt;c:\windows\system32\DRIVERS\aswMonFlt.sys [2009-11-24 65616]

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

R2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2010-02-28 821664]

R2 DockLoginService;Dock Login Service;c:\program files\Dell\DellDock\DockLogin.exe [2009-06-09 155648]

R2 Fun4IM Coordinator;Fun4IM Coordinator;c:\progra~2\Fun4IM\Bandoo.exe [2010-08-23 1938880]

R2 gupdate;Google Updateservice (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-16 136176]

R2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2010-04-23 483688]

R2 SftService;SoftThinks Agent Service;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2010-08-20 689472]

R2 TeamViewer5;TeamViewer 5;c:\program files (x86)\TeamViewer\Version5\TeamViewer_Service.exe [2010-10-19 2011944]

R2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2009-11-02 13784]

R2 UNS;Intel® Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2009-10-01 2320920]

R3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [2010-01-23 6233088]

R3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-01-23 161280]

R3 bbcap;bb_capture_driver;c:\windows\system32\DRIVERS\bbcap.sys [2010-10-10 4608]

R3 BcmVWL;Broadcom Virtual Wireless;c:\windows\system32\DRIVERS\bcmvwl64.sys [2010-02-02 20984]

R3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [2010-03-31 53800]

R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2010-03-31 35104]

R3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys [2009-06-15 172704]

R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2010-10-19 1038088]

R3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2009-10-26 151936]

R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [2009-12-22 74280]

R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]

R3 PCDSRVC{1E208CE0-FB7451FF-06020101}_0;PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\dell support center\pcdsrvc_x64.pkms [2010-11-18 25072]

R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-05-07 245792]

R3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [2010-04-23 721768]

R3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [2010-04-23 269672]

R3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [2010-04-23 25960]

R3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [2010-04-23 22376]

R3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2010-04-23 209768]

R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

R3 TurboBoost;TurboBoost;c:\program files\Intel\TurboBoost\TurboBoost.exe [2009-11-02 126352]

R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2010-04-19 50688]

R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-10-09 1255736]

S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]

S3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]

.

Inhoud van de 'Gedeelde Taken' map

2010-12-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-16 21:25]

2010-12-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-16 21:25]

2010-12-23 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4178540460-591320363-475560934-1000Core.job

- c:\users\Nick\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-12 14:46]

2010-12-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4178540460-591320363-475560934-1000UA.job

- c:\users\Nick\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-12 14:46]

2010-12-15 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job

- c:\program files\Dell Support Center\uaclauncher.exe [2010-11-18 15:13]

2010-12-24 c:\windows\Tasks\SystemToolsDailyTest.job

- c:\program files\Dell Support Center\pcdrcui.exe [2010-11-18 15:13]

.

--------- x86-64 -----------

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1TortoiseNormal]

@="{C5994560-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994560-53D9-4125-87C9-F193FC689CB2}]

2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2TortoiseModified]

@="{C5994561-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994561-53D9-4125-87C9-F193FC689CB2}]

2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\3TortoiseConflict]

@="{C5994562-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994562-53D9-4125-87C9-F193FC689CB2}]

2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\4TortoiseLocked]

@="{C5994563-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994563-53D9-4125-87C9-F193FC689CB2}]

2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\5TortoiseReadOnly]

@="{C5994564-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994564-53D9-4125-87C9-F193FC689CB2}]

2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\6TortoiseDeleted]

@="{C5994565-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994565-53D9-4125-87C9-F193FC689CB2}]

2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\7TortoiseAdded]

@="{C5994566-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994566-53D9-4125-87C9-F193FC689CB2}]

2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\8TortoiseIgnored]

@="{C5994567-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994567-53D9-4125-87C9-F193FC689CB2}]

2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\9TortoiseUnversioned]

@="{C5994568-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994568-53D9-4125-87C9-F193FC689CB2}]

2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe" [bU]

"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-04-14 10144288]

"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-02-22 500208]

.

------- Bijkomende Scan -------

.

uLocal Page = c:\windows\system32\blank.htm

uStart Page = hxxp://www.google.be/

uInternet Settings,ProxyOverride = *.local

IE: Afbeelding verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

IE: Formulieren opslaan - file://c:\program files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html

IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html

IE: Invul Formulieren - file://c:\program files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html

IE: Menu aanpassen - file://c:\program files (x86)\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html

IE: Pagina verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

FF - ProfilePath - c:\users\Nick\AppData\Roaming\Mozilla\Firefox\Profiles\9ombjp9c.default\

FF - prefs.js: browser.search.selectedEngine - Web Search

FF - prefs.js: browser.startup.homepage - hxxp://www.google.be/firefox?client=firefox-a&rls=org.mozilla:nl:official

FF - prefs.js: keyword.URL - hxxp://www.searchqu.com/web?src=ffb&systemid=402&q=

FF - prefs.js: network.proxy.type - 0

FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}

FF - Ext: Babylon: ffxtlbr@babylon.com - %profile%\extensions\ffxtlbr@babylon.com

FF - Ext: DVDVideoSoftTB Toolbar: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - %profile%\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}

FF - Ext: DVDVideoSoft Menu: {ACAA314B-EEBA-48e4-AD47-84E31C44796C} - %profile%\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}

FF - Ext: Bandoo for Firefox: firefox@bandoo.com - %profile%\extensions\firefox@bandoo.com

FF - Ext: RealPlayer Browser Record Plugin: {ABDE892B-13A8-4d1b-88E6-365A6E755758} - c:\programdata\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext

FF - Ext: AI Roboform Toolbar for Firefox: {22119944-ED35-4ab1-910B-E619EA06A115} - c:\program files (x86)\Siber Systems\AI RoboForm\Firefox

.

- - - - ORPHANS VERWIJDERD - - - -

Toolbar-Locked - (no file)

Wow6432Node-HKCU-Run-RGSC - c:\program files (x86)\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe

Wow6432Node-HKLM-Run-IP Changer 2.0 - c:\program files (x86)\Plustech Inc.\IP Changer 2.0\yourapp.Exe

Wow6432Node-HKLM-RunOnce-<NO NAME> - (no file)

WebBrowser-{872B5B88-9DB5-4310-BDD0-AC189557E5F5} - (no file)

AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe

AddRemove-Easy Macro Recorder_is1 - c:\program files (x86)\Easy Macro Recorder\unins000.exe

AddRemove-{119E2FCB-5CDD-4C24-BCB2-56A824E2BF0A}_is1 - c:\program files (x86)\Manic Digger\unins000.exe

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\PCDSRVC{1E208CE0-FB7451FF-06020101}_0]

"ImagePath"="\??\c:\program files\dell support center\pcdsrvc_x64.pkms"

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

[HKEY_USERS\S-1-5-21-4178540460-591320363-475560934-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="WindowsLiveMail.Email.1"

[HKEY_USERS\S-1-5-21-4178540460-591320363-475560934-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="WindowsLiveMail.VCard.1"

[HKEY_USERS\S-1-5-21-4178540460-591320363-475560934-1000\Software\SecuROM\License information*]

"datasecu"=hex:b0,03,d0,a7,96,44,eb,62,a6,b3,a8,9e,ed,90,7d,4d,f4,ba,8a,7a,6d,

86,d9,28,14,26,30,3f,04,ac,a3,06,09,11,be,c6,7f,b6,04,5e,fc,c6,a0,c2,52,97,\

"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]

"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx"

"ThreadingModel"="Apartment"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.10"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx"

"ThreadingModel"="Apartment"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]

@Denied: (A 2) (Everyone)

@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Voltooingstijd: 2010-12-24 15:11:33

ComboFix-quarantined-files.txt 2010-12-24 14:11

ComboFix2.txt 2010-12-15 23:54

Pre-Run: 170.918.354.944 bytes beschikbaar

Post-Run: 170.446.630.912 bytes beschikbaar

- - End Of File - - 5EB7D8392BFB1A747792DFFC2B9D62E9

als er komt ook op dat catalyst control centre niet meer werkt wanneer ik hem terug opnieuw opstart.

Link naar reactie
Delen op andere sites
  • Reacties 24
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Populaire dagen

Beste reacties in dit topic

Populaire dagen

Geplaatste afbeeldingen

kape Grootmeester

kape

Geplaatst:
Geplaatst:

Open een kladblokbestand.

Kopieer en plak daarin de onderstaande vetgedrukte tekst.

Folder::

c:\users\Nick\AppData\Roaming\Bandoo

c:\programdata\Bandoo

c:\programdata\Fun4IM

c:\program files (x86)\Fun4IM

c:\users\Nick\AppData\Roaming\BabylonToolbar

c:\users\Nick\AppData\Local\Conduit

c:\users\Nick\AppData\Local\DVDVideoSoftTB

c:\users\Nick\AppData\Roaming\Cashfiesta

Driver::

Fun4IM Coordinator

FireFox::

FF - ProfilePath - c:\users\Nick\AppData\Roaming\Mozilla\Firefox\Profiles\9ombjp9c.default\

FF - prefs.js: keyword.URL –

Sla dit bestand op je bureaublad op als CFScript.txt.

Sleep CFScript.txt in ComboFix.exe

Dit zal ComboFix doen herstarten. Start opnieuw op als dat gevraagd wordt.

Post na herstart de inhoud van de Combofix.txt in je volgende bericht samen met een nieuw logje van HijackThis.

Link naar reactie
Delen op andere sites
rustycc Meewerkend lid

rustycc

Geplaatst:
  • Auteur
Geplaatst:

ik heb de computer terug in veilige modus laten opstarten en sleepte het kladblokbestand CFScript.txt in combofix.

dit is het logje van combofix:

ComboFix 10-12-24.01 - Nick 27/12/2010 11:48:07.4.4 - x64 MINIMAL

Microsoft Windows 7 Home Premium 6.1.7600.0.1252.32.1043.18.3957.3023 [GMT 1:00]

Gestart vanuit: c:\users\Nick\Desktop\ComboFix.exe

gebruikte Opdracht switches :: c:\users\Nick\Desktop\CFScript.txt

AV: avast! antivirus *Enabled/Outdated* {C37D8F93-0602-E43C-40AA-47DAD597F308}

SP: avast! antivirus *Enabled/Outdated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

* Nieuw herstelpunt werd aangemaakt

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

c:\program files (x86)\Fun4IM

c:\program files (x86)\Fun4IM\Bandoo.exe

c:\program files (x86)\Fun4IM\CrashRpt.dll

c:\programdata\Bandoo

c:\programdata\Bandoo\config.xml

c:\programdata\Bandoo\CrashReportInfo.xml

c:\programdata\Bandoo\MostlyUsed.xml

c:\programdata\Bandoo\Repository\14963.dat

c:\programdata\Bandoo\Repository\17581.dat

c:\programdata\Bandoo\Repository\31959.xml

c:\programdata\Bandoo\Repository\3579.xml

c:\programdata\Bandoo\Repository\39708.dat

c:\programdata\Bandoo\Repository\49885.dat

c:\programdata\Bandoo\Repository\63669.xml

c:\programdata\Bandoo\Repository\64915.xml

c:\programdata\Bandoo\WPSubsystems.xml

c:\programdata\Fun4IM

c:\programdata\Fun4IM\WPSubsystems.xml

c:\users\Nick\AppData\Local\Conduit

c:\users\Nick\AppData\Local\DVDVideoSoftTB

c:\users\Nick\AppData\Local\DVDVideoSoftTB\CacheIcons\http___storage_conduit_com_50_226_CT2269050_Images_634067677527028750_png.png

c:\users\Nick\AppData\Local\DVDVideoSoftTB\CacheIcons\http___storage_conduit_com_50_226_CT2269050_Images_634084057716610000_png.png

c:\users\Nick\AppData\Local\DVDVideoSoftTB\CacheIcons\http___storage_conduit_com_50_226_CT2269050_Images_634084057907391250_png.png

c:\users\Nick\AppData\Local\DVDVideoSoftTB\CacheIcons\http___storage_conduit_com_50_226_CT2269050_Images_634084059408641250_png.png

c:\users\Nick\AppData\Local\DVDVideoSoftTB\CacheIcons\http___storage_conduit_com_50_226_CT2269050_Images_634084059786610000_png.png

c:\users\Nick\AppData\Local\DVDVideoSoftTB\CacheIcons\http___storage_conduit_com_50_226_CT2269050_Images_634084060140360000_png.png

c:\users\Nick\AppData\Local\DVDVideoSoftTB\CacheIcons\http___storage_conduit_com_50_226_CT2269050_Images_634084060404266250_png.png

c:\users\Nick\AppData\Local\DVDVideoSoftTB\CacheIcons\http___storage_conduit_com_50_226_CT2269050_Images_634157541077528750_png.png

c:\users\Nick\AppData\Local\DVDVideoSoftTB\CacheIcons\http___storage_conduit_com_50_226_CT2269050_Images_634262976368243750_png.png

c:\users\Nick\AppData\Local\DVDVideoSoftTB\CacheIcons\http___storage_conduit_com_50_226_CT2269050_Images_634265435748037500_png.png

c:\users\Nick\AppData\Local\DVDVideoSoftTB\CacheIcons\http___storage_conduit_com_50_226_CT2269050_Images_SearchActivationButton-go_but20_gif-General-633937242465431250_gif.gif

c:\users\Nick\AppData\Local\DVDVideoSoftTB\CacheIcons\http___storage_conduit_com_images_ClientImages_radio_gif.gif

c:\users\Nick\AppData\Local\DVDVideoSoftTB\LocalSettings.txt

c:\users\Nick\AppData\Roaming\BabylonToolbar

c:\users\Nick\AppData\Roaming\Bandoo

c:\users\Nick\AppData\Roaming\Bandoo\plugins.ini

c:\users\Nick\AppData\Roaming\Cashfiesta

c:\users\Nick\AppData\Roaming\Cashfiesta\cache\DE7C99A159A2403C7B5ED5138840F31F

c:\users\Nick\AppData\Roaming\Cashfiesta\vitallica.dat

c:\users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OpenOffice.org 3.2 .lnk

.

((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

.

-------\Service_Fun4IM Coordinator

(((((((((((((((((((( Bestanden Gemaakt van 2010-11-27 to 2010-12-27 ))))))))))))))))))))))))))))))

.

2010-12-27 10:55 . 2010-12-27 10:55 -------- d-----w- c:\users\Nick - kopie\AppData\Local\temp

2010-12-27 10:55 . 2010-12-27 10:55 -------- d-----w- c:\users\Default\AppData\Local\temp

2010-12-25 19:12 . 2010-12-25 19:12 -------- d-----w- c:\programdata\Codemasters

2010-12-25 10:52 . 2010-11-16 11:01 8199504 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{8D5E7E9B-2424-409B-9AEB-8380D125EA9C}\mpengine.dll

2010-12-24 14:29 . 2004-03-08 23:00 212240 ----a-w- c:\windows\SysWow64\RICHTX32.OCX

2010-12-24 14:29 . 2006-10-10 17:47 36921 ----a-w- c:\windows\SysWow64\hcwutl32.dll

2010-12-23 21:20 . 2009-11-24 23:54 1280480 ----a-w- c:\windows\SysWow64\aswBoot.exe

2010-12-23 21:20 . 2004-01-09 09:13 380928 ----a-w- c:\windows\SysWow64\actskin4.ocx

2010-12-23 20:04 . 2010-12-23 20:04 -------- d-----w- c:\program files\Common Files\ATI Technologies

2010-12-23 20:01 . 2010-12-23 20:03 -------- d-----w- c:\program files\ATI Technologies

2010-12-23 20:01 . 2010-12-23 20:01 -------- d-----w- c:\program files\ATI

2010-12-23 20:01 . 2010-12-23 20:01 -------- d-----w- C:\ATI

2010-12-23 17:49 . 2010-12-23 17:49 -------- d-----w- c:\program files\Alwil Software

2010-12-23 17:21 . 2010-12-23 17:22 -------- d-----w- C:\Python27

2010-12-23 17:20 . 2010-12-26 16:57 -------- d-----w- C:\tmp

2010-12-23 17:16 . 2010-12-23 17:16 -------- d-----w- c:\users\Nick\AppData\Roaming\Blender Foundation

2010-12-23 15:03 . 2001-04-18 10:32 205848 ----a-w- c:\windows\SysWow64\Threed32.ocx

2010-12-23 15:03 . 2000-12-05 23:00 109248 ----a-w- c:\windows\SysWow64\MSWINSCK.OCX

2010-12-23 15:03 . 2000-07-14 23:00 101888 ----a-w- c:\windows\SysWow64\VB6STKIT.DLL

2010-12-23 15:03 . 2001-08-27 14:12 19490 ----a-w- c:\windows\SysWow64\IPCFLT.VXD

2010-12-22 14:24 . 2010-12-22 15:57 -------- d-----w- c:\users\Nick\AppData\Local\Rockstar Games

2010-12-22 14:23 . 2010-12-22 14:23 -------- d--h--r- c:\users\Nick\AppData\Roaming\SecuROM

2010-12-22 14:23 . 2010-12-22 14:23 -------- d-sh--w- c:\programdata\SecuROM

2010-12-22 14:19 . 2009-09-04 16:29 453456 ----a-w- c:\windows\SysWow64\d3dx10_42.dll

2010-12-22 14:19 . 2009-09-04 16:29 1892184 ----a-w- c:\windows\SysWow64\D3DX9_42.dll

2010-12-22 13:30 . 2007-10-22 02:37 17928 ----a-w- c:\windows\SysWow64\X3DAudio1_2.dll

2010-12-22 13:29 . 2008-03-05 14:56 3786760 ----a-w- c:\windows\SysWow64\D3DX9_37.dll

2010-12-22 13:29 . 2008-03-05 14:56 1420824 ----a-w- c:\windows\SysWow64\D3DCompiler_37.dll

2010-12-22 13:29 . 2008-02-05 22:07 462864 ----a-w- c:\windows\SysWow64\d3dx10_37.dll

2010-12-22 13:29 . 2007-04-04 17:53 81768 ----a-w- c:\windows\SysWow64\xinput1_3.dll

2010-12-22 13:29 . 2010-12-22 13:29 -------- d-----w- c:\windows\SysWow64\xlive

2010-12-19 14:52 . 2010-12-19 14:52 -------- d-----w- c:\users\Nick\.file_store_32

2010-12-18 22:53 . 2010-12-18 23:32 -------- d-----w- c:\users\Nick\AppData\Roaming\Vso

2010-12-18 22:53 . 2010-12-18 22:53 82816 ----a-w- c:\users\Nick\AppData\Roaming\pcouffin.sys

2010-12-18 22:53 . 2009-09-02 20:58 626688 ----a-w- c:\windows\SysWow64\vp7vfw.dll

2010-12-18 22:53 . 2009-09-02 20:58 65602 ----a-w- c:\windows\SysWow64\cook3260.dll

2010-12-18 22:53 . 2009-09-02 20:58 217127 ----a-w- c:\windows\SysWow64\drv43260.dll

2010-12-18 22:53 . 2009-09-02 20:58 208935 ----a-w- c:\windows\SysWow64\drv33260.dll

2010-12-18 22:53 . 2009-09-02 20:58 176165 ----a-w- c:\windows\SysWow64\drv23260.dll

2010-12-18 22:53 . 2009-09-02 20:58 102439 ----a-w- c:\windows\SysWow64\sipr3260.dll

2010-12-18 22:53 . 2009-09-02 20:57 1184984 ----a-w- c:\windows\SysWow64\wvc1dmod.dll

2010-12-18 22:33 . 2010-12-21 13:44 -------- d-----w- c:\users\Nick\AppData\Roaming\PrimoPDF

2010-12-18 22:22 . 2010-12-18 22:43 14931113 ----a-w- c:\windows\SysWow64\~.tmp

2010-12-16 21:26 . 2010-12-16 21:26 -------- d-----w- c:\windows\SysWow64\Adobe

2010-12-16 21:25 . 2010-12-16 21:25 -------- d-----w- c:\program files\Google

2010-12-16 18:11 . 2010-12-16 18:11 -------- d-----w- c:\users\Nick\AppData\Local\Stardock

2010-12-14 14:40 . 2010-12-14 14:41 -------- d-----w- c:\program files\Dell Support Center

2010-12-14 14:36 . 2010-12-14 14:38 -------- d-----w- c:\users\Nick\AppData\Roaming\PCDr

2010-12-14 14:05 . 2010-12-14 14:05 -------- d-----w- c:\users\Nick\AppData\Roaming\Online Games Downloader

2010-12-12 14:46 . 2010-12-26 00:14 -------- d-----w- c:\users\Nick\AppData\Local\Google

2010-12-10 21:59 . 2010-12-10 21:59 -------- d-----w- c:\users\Nick\AppData\Local\Apps

2010-12-10 21:59 . 2010-12-12 14:46 -------- d-----w- c:\users\Nick\AppData\Local\Deployment

2010-12-10 12:45 . 2010-12-10 12:45 -------- d-----w- c:\users\Nick\.slash_file_store_32

2010-12-09 15:39 . 2010-12-13 13:01 -------- d-----w- c:\programdata\Spybot - Search & Destroy

2010-12-09 14:03 . 2010-12-09 14:03 -------- d-----w- c:\users\Nick\AppData\Roaming\Malwarebytes

2010-12-09 14:03 . 2010-12-09 14:03 -------- d-----w- c:\programdata\Malwarebytes

2010-12-09 14:03 . 2010-11-29 16:42 38224 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys

2010-12-08 14:33 . 2010-12-08 14:33 444952 ----a-w- c:\windows\SysWow64\wrap_oal.dll

2010-12-08 14:33 . 2010-12-08 14:33 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll

2010-12-07 17:32 . 2010-12-07 17:33 -------- d-----w- c:\users\Nick\AppData\Roaming\Easy Macro Recorder

2010-12-02 19:38 . 2005-04-15 18:58 1071088 ----a-w- c:\windows\SysWow64\MSCOMCTL.OCX

2010-12-02 19:38 . 2004-03-08 23:00 662288 ----a-w- c:\windows\SysWow64\MSCOMCT2.OCX

2010-12-02 19:38 . 1998-06-23 23:00 137000 ----a-w- c:\windows\SysWow64\MSMAPI32.OCX

2010-12-02 19:38 . 1998-07-05 23:00 23552 ----a-w- c:\windows\SysWow64\MSMPIDE.DLL

2010-12-02 19:06 . 2010-12-26 14:17 -------- d-----w- c:\users\Nick\AppData\Roaming\TuneUpMedia

2010-12-02 19:06 . 2010-12-26 14:17 -------- d-----w- c:\programdata\TuneUpMedia

2010-12-02 18:58 . 2010-12-02 18:58 -------- d-----w- c:\users\Nick\AppData\Roaming\tidysongs16

2010-12-01 12:42 . 2010-12-01 12:42 -------- d-----w- c:\users\Nick\AppData\Roaming\Download Manager

2010-12-01 11:59 . 2010-12-01 12:00 -------- d-----w- C:\Fraps

2010-11-30 23:14 . 2010-12-11 16:42 -------- d-----w- c:\users\Nick\AppData\Local\Diagnostics

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-12-26 10:37 . 2010-10-27 17:50 704320 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll

2010-12-21 12:00 . 2010-10-27 17:50 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll

2010-11-24 11:46 . 2010-11-24 11:46 388096 ----a-r- c:\users\Nick\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

2010-11-15 16:53 . 2010-11-15 16:53 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll

2010-11-15 16:53 . 2010-11-15 16:53 704320 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll

2010-11-06 14:03 . 2010-10-16 15:02 103736 ----a-w- c:\windows\SysWow64\PnkBstrB.exe

2010-10-25 19:33 . 2010-10-17 11:23 233960 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr

2010-10-19 19:54 . 2003-03-18 18:14 499712 ----a-w- c:\windows\SysWow64\msvcp71.dll

2010-10-19 19:54 . 2003-02-21 02:42 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll

2010-10-17 10:36 . 2010-10-16 15:02 75064 ----a-w- c:\windows\SysWow64\PnkBstrA.exe

2010-10-14 15:53 . 2010-10-14 15:53 438272 ----a-w- c:\windows\NEXON_EU_DownloaderUpdater.exe

2010-10-14 00:36 . 2010-10-14 00:36 15451288 ----a-w- c:\windows\SysWow64\xlive.dll

2010-10-14 00:36 . 2010-10-14 00:36 13642904 ----a-w- c:\windows\SysWow64\xlivefnt.dll

2010-10-10 18:56 . 2010-10-10 18:56 81920 ----a-w- c:\windows\SysWow64\bsrgvas.dll

2010-10-10 18:56 . 2010-10-10 18:56 692224 ----a-w- c:\windows\SysWow64\bsrmgcv.dll

2010-10-10 18:56 . 2010-10-10 18:56 192512 ----a-w- c:\windows\SysWow64\bsrmgps.dll

2010-10-10 18:56 . 2010-10-10 18:56 585728 ----a-w- c:\windows\SysWow64\bsratswf.dll

2010-10-10 18:56 . 2010-10-10 18:56 147456 ----a-w- c:\windows\SysWow64\bsratwmv.dll

2010-10-08 16:02 . 2010-10-08 17:32 11371536 ---ha-w- c:\users\Nick - kopie\AppData\Roaming\LoJackSetup.exe

2010-10-08 16:02 . 2010-10-08 15:54 11371536 ---ha-w- c:\users\Nick\AppData\Roaming\LoJackSetup.exe

2010-10-04 23:07 . 2010-10-04 23:07 465408 ----a-w- c:\windows\SysWow64\psisdecd.dll

2010-10-04 23:07 . 2010-10-04 23:07 1289528 ----a-w- c:\windows\SysWow64\ntdll.dll

2010-10-04 23:07 . 2010-10-04 23:07 1686016 ----a-w- c:\windows\SysWow64\esent.dll

2010-10-04 23:07 . 2010-10-04 23:07 70656 ----a-w- c:\windows\SysWow64\fontsub.dll

2010-10-04 23:07 . 2010-10-04 23:07 67584 ----a-w- c:\windows\SysWow64\asycfilt.dll

2010-10-04 23:07 . 2010-10-04 23:07 96768 ----a-w- c:\windows\SysWow64\sspicli.dll

2010-10-04 23:07 . 2010-10-04 23:07 22016 ----a-w- c:\windows\SysWow64\secur32.dll

2010-10-04 23:07 . 2010-10-04 23:07 740864 ----a-w- c:\windows\SysWow64\inetcomm.dll

2010-10-04 23:07 . 2010-10-04 23:07 427520 ----a-w- c:\windows\SysWow64\vbscript.dll

2010-10-04 23:07 . 2010-10-04 23:07 172032 ----a-w- c:\windows\SysWow64\wintrust.dll

2010-10-04 23:07 . 2010-10-04 23:07 132608 ----a-w- c:\windows\SysWow64\cabview.dll

2010-10-04 23:07 . 2010-10-04 23:07 7680 ----a-w- c:\windows\SysWow64\instnm.exe

2010-10-04 23:07 . 2010-10-04 23:07 5120 ----a-w- c:\windows\SysWow64\wow32.dll

2010-10-04 23:07 . 2010-10-04 23:07 44032 ----a-w- c:\windows\apppatch\acwow64.dll

2010-10-04 23:07 . 2010-10-04 23:07 292864 ----a-w- c:\windows\SysWow64\mfds.dll

2010-10-04 23:07 . 2010-10-04 23:07 25600 ----a-w- c:\windows\SysWow64\setup16.exe

2010-10-04 23:07 . 2010-10-04 23:07 2048 ----a-w- c:\windows\SysWow64\user.exe

2010-10-04 23:07 . 2010-10-04 23:07 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll

2010-10-04 23:07 . 2010-10-04 23:07 85504 ----a-w- c:\windows\SysWow64\secproc_ssp.dll

2010-10-04 23:07 . 2010-10-04 23:07 280064 ----a-w- c:\windows\SysWow64\RMActivate_ssp.exe

2010-10-04 23:07 . 2010-10-04 23:07 85504 ----a-w- c:\windows\SysWow64\secproc_ssp_isv.dll

2010-10-04 23:07 . 2010-10-04 23:07 514560 ----a-w- c:\windows\SysWow64\qdvd.dll

2010-10-04 23:07 . 2010-10-04 23:07 369152 ----a-w- c:\windows\SysWow64\secproc.dll

2010-10-04 23:07 . 2010-10-04 23:07 365568 ----a-w- c:\windows\SysWow64\secproc_isv.dll

2010-10-04 23:07 . 2010-10-04 23:07 324608 ----a-w- c:\windows\SysWow64\RMActivate_isv.exe

2010-10-04 23:07 . 2010-10-04 23:07 320512 ----a-w- c:\windows\SysWow64\RMActivate.exe

2010-10-04 23:07 . 2010-10-04 23:07 277504 ----a-w- c:\windows\SysWow64\RMActivate_ssp_isv.exe

2010-10-04 23:07 . 2010-10-04 23:07 2870272 ----a-w- c:\windows\explorer.exe

2010-10-04 23:07 . 2010-10-04 23:07 2614272 ----a-w- c:\windows\SysWow64\explorer.exe

2010-10-04 23:07 . 2010-10-04 23:07 91648 ----a-w- c:\windows\SysWow64\avifil32.dll

2010-10-04 23:07 . 2010-10-04 23:07 84480 ----a-w- c:\windows\SysWow64\mciavi32.dll

2010-10-04 23:07 . 2010-10-04 23:07 50176 ----a-w- c:\windows\SysWow64\iyuv_32.dll

2010-10-04 23:07 . 2010-10-04 23:07 31744 ----a-w- c:\windows\SysWow64\msvidc32.dll

2010-10-04 23:07 . 2010-10-04 23:07 22016 ----a-w- c:\windows\SysWow64\msyuv.dll

2010-10-04 23:07 . 2010-10-04 23:07 13312 ----a-w- c:\windows\SysWow64\msrle32.dll

2010-10-04 23:07 . 2010-10-04 23:07 1328640 ----a-w- c:\windows\SysWow64\quartz.dll

2010-10-04 23:07 . 2010-10-04 23:07 12288 ----a-w- c:\windows\SysWow64\tsbyuv.dll

2010-10-04 23:07 . 2010-10-04 23:07 488448 ----a-w- c:\windows\SysWow64\evr.dll

2010-10-04 23:07 . 2010-10-04 23:07 86528 ----a-w- c:\windows\SysWow64\isoburn.exe

2010-10-04 23:07 . 2010-10-04 23:07 1320960 ----a-w- c:\windows\SysWow64\CertEnroll.dll

2010-10-04 23:07 . 2010-10-04 23:07 34816 ----a-w- c:\windows\SysWow64\msasn1.dll

2010-10-04 23:07 . 2010-10-04 23:07 257024 ----a-w- c:\windows\SysWow64\msv1_0.dll

.

((((((((((((((((((((((((((((( SnapShot_2010-12-24_14.10.00 )))))))))))))))))))))))))))))))))))))))))

.

+ 2010-10-09 15:06 . 2010-12-25 19:05 69224 c:\windows\SysWOW64\GDIPFONTCACHEV1.DAT

- 2010-10-09 15:06 . 2010-12-23 21:20 69224 c:\windows\SysWOW64\GDIPFONTCACHEV1.DAT

- 2010-12-24 13:57 . 2010-12-24 13:57 13306 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\SoftGrid Client\Icon Cache\icon_ex.dat

+ 2010-12-27 10:44 . 2010-12-27 10:44 13306 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\SoftGrid Client\Icon Cache\icon_ex.dat

- 2009-07-14 04:54 . 2010-12-24 13:53 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

+ 2009-07-14 04:54 . 2010-12-27 09:46 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

+ 2009-07-14 04:54 . 2010-12-27 09:46 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat

- 2009-07-14 04:54 . 2010-12-24 13:53 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat

+ 2009-07-14 04:54 . 2010-12-27 09:46 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

- 2009-07-14 04:54 . 2010-12-24 13:53 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

+ 2010-10-04 20:45 . 2010-12-26 10:35 58744 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin

+ 2009-07-14 05:10 . 2010-12-26 10:35 31140 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin

+ 2010-10-09 10:03 . 2010-12-26 10:35 14166 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-4178540460-591320363-475560934-1000_UserData.bin

- 2010-12-14 14:36 . 2010-12-17 15:09 69224 c:\windows\system32\GDIPFONTCACHEV1.DAT

+ 2010-12-14 14:36 . 2010-12-26 10:49 69224 c:\windows\system32\GDIPFONTCACHEV1.DAT

- 2009-07-14 05:30 . 2010-12-18 22:54 86016 c:\windows\system32\DriverStore\infpub.dat

+ 2009-07-14 05:30 . 2010-12-24 14:30 86016 c:\windows\system32\DriverStore\infpub.dat

+ 2010-12-24 14:30 . 2009-03-31 11:58 39936 c:\windows\system32\DriverStore\FileRepository\hcw72b64.inf_amd64_neutral_b7826ab7b4d8f4bd\Driver72\64bit\hcw72Co.dll

+ 2010-12-24 14:30 . 2009-03-31 11:58 37504 c:\windows\system32\DriverStore\FileRepository\hcw72b64.inf_amd64_neutral_b7826ab7b4d8f4bd\Driver72\64bit\hcw72ADFilter.sys

- 2010-10-08 14:47 . 2010-12-24 13:56 49152 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

+ 2010-10-08 14:47 . 2010-12-27 10:22 49152 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

- 2010-10-08 14:47 . 2010-12-24 13:56 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat

+ 2010-10-08 14:47 . 2010-12-27 10:22 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat

+ 2009-07-14 04:54 . 2010-12-27 10:22 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

- 2009-07-14 04:54 . 2010-12-24 13:56 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

- 2010-10-09 14:41 . 2010-12-24 13:53 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

+ 2010-10-09 14:41 . 2010-12-27 09:48 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

+ 2010-10-27 17:49 . 2010-12-26 10:37 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\Temporary Internet Files\Content.IE5\index.dat

- 2010-10-27 17:49 . 2010-12-23 20:16 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\Temporary Internet Files\Content.IE5\index.dat

+ 2010-10-27 17:49 . 2010-12-26 10:37 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\History\History.IE5\index.dat

- 2010-10-27 17:49 . 2010-12-23 20:16 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\History\History.IE5\index.dat

+ 2010-10-27 17:49 . 2010-12-26 10:37 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\Cookies\index.dat

- 2010-10-27 17:49 . 2010-12-23 20:16 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Temp\Cookies\index.dat

- 2010-10-09 14:41 . 2010-12-24 13:53 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat

+ 2010-10-09 14:41 . 2010-12-27 09:48 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat

- 2010-10-09 14:41 . 2010-12-24 13:53 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

+ 2010-10-09 14:41 . 2010-12-27 09:48 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

+ 2010-10-08 14:53 . 2010-12-27 09:48 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

- 2010-10-08 14:53 . 2010-12-24 13:53 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

- 2010-10-08 14:53 . 2010-12-24 13:53 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

+ 2010-10-08 14:53 . 2010-12-27 09:48 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

- 2010-12-24 13:58 . 2010-12-24 13:58 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat

+ 2010-12-27 10:56 . 2010-12-27 10:56 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat

+ 2010-12-27 10:56 . 2010-12-27 10:56 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat

- 2010-12-24 13:58 . 2010-12-24 13:58 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat

- 2010-10-08 14:59 . 2010-12-24 13:52 262144 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat

+ 2010-10-08 14:59 . 2010-12-27 09:47 262144 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat

+ 2010-10-08 16:23 . 2010-12-26 20:06 321146 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin

- 2009-09-22 18:28 . 2010-12-23 21:27 743944 c:\windows\system32\perfh013.dat

+ 2009-09-22 18:28 . 2010-12-26 22:15 743944 c:\windows\system32\perfh013.dat

+ 2009-07-14 02:36 . 2010-12-26 22:15 652750 c:\windows\system32\perfh009.dat

- 2009-07-14 02:36 . 2010-12-23 21:27 652750 c:\windows\system32\perfh009.dat

+ 2009-09-22 18:28 . 2010-12-26 22:15 152770 c:\windows\system32\perfc013.dat

- 2009-09-22 18:28 . 2010-12-23 21:27 152770 c:\windows\system32\perfc013.dat

+ 2009-07-14 02:36 . 2010-12-26 22:15 121424 c:\windows\system32\perfc009.dat

- 2009-07-14 02:36 . 2010-12-23 21:27 121424 c:\windows\system32\perfc009.dat

+ 2009-07-14 05:30 . 2010-12-24 14:30 143360 c:\windows\system32\DriverStore\infstrng.dat

- 2009-07-14 05:30 . 2010-12-18 22:54 143360 c:\windows\system32\DriverStore\infstrng.dat

+ 2009-07-14 05:30 . 2010-12-24 14:30 143360 c:\windows\system32\DriverStore\infstor.dat

- 2009-07-14 05:30 . 2010-12-18 22:54 143360 c:\windows\system32\DriverStore\infstor.dat

- 2010-10-08 19:48 . 2010-12-23 17:33 884152 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat

+ 2010-10-08 19:48 . 2010-12-26 22:18 884152 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat

- 2009-07-14 05:01 . 2010-12-24 13:57 387188 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat

+ 2009-07-14 05:01 . 2010-12-27 10:44 387188 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat

+ 2010-12-24 14:30 . 2009-03-31 12:06 1592448 c:\windows\system32\DriverStore\FileRepository\hcw72b64.inf_amd64_neutral_b7826ab7b4d8f4bd\Driver72\64bit\hcw72DTV.sys

+ 2010-12-24 14:30 . 2009-03-31 12:02 1597056 c:\windows\system32\DriverStore\FileRepository\hcw72b64.inf_amd64_neutral_b7826ab7b4d8f4bd\Driver72\64bit\hcw72ATV.sys

+ 2009-07-22 10:32 . 2009-07-22 10:32 2485760 c:\windows\Installer\aa48b.msi

- 2010-10-10 21:18 . 2010-12-24 13:57 13387445 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-4178540460-591320363-475560934-1000-8192.dat

+ 2010-10-10 21:18 . 2010-12-27 10:44 13387445 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-4178540460-591320363-475560934-1000-8192.dat

.

-- Snapshot teruggezet naar huidige datum --

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"msnmsgr"="c:\program files (x86)\Windows Live\Messenger\msnmsgr.exe" [2010-09-22 4240760]

"Google Update"="c:\users\Nick\AppData\Local\Google\Update\GoogleUpdate.exe" [2010-12-12 136176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"TkBellExe"="c:\program files (x86)\Common Files\Real\Update_OB\realsched.exe" [2010-10-19 202256]

"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-01-22 98304]

"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2010-09-08 421888]

"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2010-09-24 421160]

"Desktop Disc Tool"="c:\program files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe" [2009-10-15 498160]

"Dell Webcam Central"="c:\program files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" [2009-06-24 409744]

"AdobeCS4ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]

"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]

"IP Changer 2.0"="c:\program files (x86)\Plustech Inc.\IP Changer 2.0\yourapp.Exe" [bU]

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]

"GrpConv"="grpconv -o" [X]

"Launcher"="c:\program files (x86)\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe" [2010-07-21 165184]

c:\users\Nick\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

Dell Dock.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-16 1324384]

LimeWire On Startup.lnk - c:\program files (x86)\LimeWire\LimeWire.exe [N/A]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\

Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-12-29 1082656]

c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

Dell Dock First Run.lnk - c:\program files\Dell\DellDock\DellDock.exe [2009-12-16 1324384]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]

"mixer5"=wdmaud.drv

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]

Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

@=""

R1 aswSP;avast! Self Protection; [x]

R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]

R2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208]

R2 aksdf;aksdf;c:\windows\system32\DRIVERS\aksdf.sys [2006-12-13 65024]

R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-01-23 202752]

R2 aswFsBlk;aswFsBlk;c:\windows\system32\DRIVERS\aswFsBlk.sys [2009-11-24 22096]

R2 aswMonFlt;aswMonFlt;c:\windows\system32\DRIVERS\aswMonFlt.sys [2009-11-24 65616]

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

R2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2010-02-28 821664]

R2 DockLoginService;Dock Login Service;c:\program files\Dell\DellDock\DockLogin.exe [2009-06-09 155648]

R2 gupdate;Google Updateservice (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-16 136176]

R2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2010-04-23 483688]

R2 SftService;SoftThinks Agent Service;c:\program files (x86)\Dell DataSafe Local Backup\sftservice.EXE [2010-08-20 689472]

R2 TeamViewer5;TeamViewer 5;c:\program files (x86)\TeamViewer\Version5\TeamViewer_Service.exe [2010-10-19 2011944]

R2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2009-11-02 13784]

R2 UNS;Intel® Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2009-10-01 2320920]

R3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [2010-01-23 6233088]

R3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-01-23 161280]

R3 bbcap;bb_capture_driver;c:\windows\system32\DRIVERS\bbcap.sys [2010-10-10 4608]

R3 BcmVWL;Broadcom Virtual Wireless;c:\windows\system32\DRIVERS\bcmvwl64.sys [2010-02-02 20984]

R3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [2010-03-31 53800]

R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2010-03-31 35104]

R3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys [2009-06-15 172704]

R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2010-10-19 1038088]

R3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2009-10-26 151936]

R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [2009-12-22 74280]

R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]

R3 PCDSRVC{1E208CE0-FB7451FF-06020101}_0;PCDSRVC{1E208CE0-FB7451FF-06020101}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\dell support center\pcdsrvc_x64.pkms [2010-11-18 25072]

R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-05-07 245792]

R3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [2010-04-23 721768]

R3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [2010-04-23 269672]

R3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [2010-04-23 25960]

R3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [2010-04-23 22376]

R3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2010-04-23 209768]

R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

R3 TurboBoost;TurboBoost;c:\program files\Intel\TurboBoost\TurboBoost.exe [2009-11-02 126352]

R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2010-04-19 50688]

R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-10-09 1255736]

S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2009-07-09 55280]

S3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]

.

Inhoud van de 'Gedeelde Taken' map

2010-12-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-16 21:25]

2010-12-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-16 21:25]

2010-12-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4178540460-591320363-475560934-1000Core.job

- c:\users\Nick\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-12 14:46]

2010-12-27 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4178540460-591320363-475560934-1000UA.job

- c:\users\Nick\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-12 14:46]

2010-12-25 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job

- c:\program files\Dell Support Center\uaclauncher.exe [2010-11-18 15:13]

2010-12-27 c:\windows\Tasks\SystemToolsDailyTest.job

- c:\program files\Dell Support Center\pcdrcui.exe [2010-11-18 15:13]

.

--------- x86-64 -----------

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1TortoiseNormal]

@="{C5994560-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994560-53D9-4125-87C9-F193FC689CB2}]

2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2TortoiseModified]

@="{C5994561-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994561-53D9-4125-87C9-F193FC689CB2}]

2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\3TortoiseConflict]

@="{C5994562-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994562-53D9-4125-87C9-F193FC689CB2}]

2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\4TortoiseLocked]

@="{C5994563-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994563-53D9-4125-87C9-F193FC689CB2}]

2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\5TortoiseReadOnly]

@="{C5994564-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994564-53D9-4125-87C9-F193FC689CB2}]

2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\6TortoiseDeleted]

@="{C5994565-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994565-53D9-4125-87C9-F193FC689CB2}]

2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\7TortoiseAdded]

@="{C5994566-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994566-53D9-4125-87C9-F193FC689CB2}]

2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\8TortoiseIgnored]

@="{C5994567-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994567-53D9-4125-87C9-F193FC689CB2}]

2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\9TortoiseUnversioned]

@="{C5994568-53D9-4125-87C9-F193FC689CB2}"

[HKEY_CLASSES_ROOT\CLSID\{C5994568-53D9-4125-87C9-F193FC689CB2}]

2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"combofix"="c:\combofix\CF24907.cfxxe" [X]

"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe" [bU]

"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-04-14 10144288]

"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-02-22 500208]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

"combofix"="c:\combofix\CF24907.cfxxe" [X]

.

------- Bijkomende Scan -------

.

uLocal Page = c:\windows\system32\blank.htm

uStart Page = hxxp://www.google.be/

uInternet Settings,ProxyOverride = *.local

IE: Afbeelding verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

IE: Formulieren opslaan - file://c:\program files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html

IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html

IE: Invul Formulieren - file://c:\program files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html

IE: Menu aanpassen - file://c:\program files (x86)\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html

IE: Pagina verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

FF - ProfilePath - c:\users\Nick\AppData\Roaming\Mozilla\Firefox\Profiles\9ombjp9c.default\

FF - prefs.js: browser.search.selectedEngine - Web Search

FF - prefs.js: browser.startup.homepage - hxxp://www.google.be/firefox?client=firefox-a&rls=org.mozilla:nl:official

FF - prefs.js: keyword.URL - hxxp://www.searchqu.com/web?src=ffb&systemid=402&q=

FF - prefs.js: network.proxy.type - 0

FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}

FF - Ext: Java Console: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}

FF - Ext: Babylon: ffxtlbr@babylon.com - %profile%\extensions\ffxtlbr@babylon.com

FF - Ext: DVDVideoSoftTB Toolbar: {872b5b88-9db5-4310-bdd0-ac189557e5f5} - %profile%\extensions\{872b5b88-9db5-4310-bdd0-ac189557e5f5}

FF - Ext: DVDVideoSoft Menu: {ACAA314B-EEBA-48e4-AD47-84E31C44796C} - %profile%\extensions\{ACAA314B-EEBA-48e4-AD47-84E31C44796C}

FF - Ext: Bandoo for Firefox: firefox@bandoo.com - %profile%\extensions\firefox@bandoo.com

FF - Ext: RealPlayer Browser Record Plugin: {ABDE892B-13A8-4d1b-88E6-365A6E755758} - c:\programdata\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext

FF - Ext: AI Roboform Toolbar for Firefox: {22119944-ED35-4ab1-910B-E619EA06A115} - c:\program files (x86)\Siber Systems\AI RoboForm\Firefox

.

- - - - ORPHANS VERWIJDERD - - - -

Toolbar-Locked - (no file)

Wow6432Node-HKCU-Run-Window Hide Tool - c:\users\Nick\Desktop\Window Hide Tool\Window Hide Tool.exe

Wow6432Node-HKLM-Run-BabylonToolbar - c:\program files (x86)\BabylonToolbar\BabylonToolbar\1.4.15.13\BabylonToolbarsrv.exe

Wow6432Node-HKLM-Run-Babylon Client - c:\program files (x86)\Babylon\Babylon-Pro\Babylon.exe

Wow6432Node-HKLM-RunOnce-<NO NAME> - (no file)

WebBrowser-{872B5B88-9DB5-4310-BDD0-AC189557E5F5} - (no file)

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\PCDSRVC{1E208CE0-FB7451FF-06020101}_0]

"ImagePath"="\??\c:\program files\dell support center\pcdsrvc_x64.pkms"

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

[HKEY_USERS\S-1-5-21-4178540460-591320363-475560934-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="WindowsLiveMail.Email.1"

[HKEY_USERS\S-1-5-21-4178540460-591320363-475560934-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="WindowsLiveMail.VCard.1"

[HKEY_USERS\S-1-5-21-4178540460-591320363-475560934-1000\Software\SecuROM\License information*]

"datasecu"=hex:b7,8a,e7,d7,e2,b5,cb,26,e9,0d,76,8d,18,e6,09,44,77,b0,b7,29,63,

49,e8,ae,ca,e5,6a,94,14,38,7c,73,4e,b6,27,50,36,44,58,e5,b1,10,96,cd,70,79,\

"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]

"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx"

"ThreadingModel"="Apartment"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.10"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx"

"ThreadingModel"="Apartment"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10l.ocx, 1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]

@Denied: (A 2) (Everyone)

@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Voltooingstijd: 2010-12-27 12:01:35 - machine werd herstart

ComboFix-quarantined-files.txt 2010-12-27 11:01

ComboFix2.txt 2010-12-24 14:11

ComboFix3.txt 2010-12-15 23:54

Pre-Run: 76.575.993.856 bytes beschikbaar

Post-Run: 76.391.546.880 bytes beschikbaar

- - End Of File - - 9DAB6AC5E84103717FE0A41CE529529E

dit is het logje van hijackthis:

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 12:06:05, on 27/12/2010

Platform: Windows 7 (WinNT 6.00.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16700)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe

C:\Users\Nick\AppData\Local\Google\Update\GoogleUpdate.exe

C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe

c:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe

C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe

C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe

C:\Program Files (x86)\Roxio\Roxio Burn\Roxio Burn.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Blender Foundation\Blender\blender.exe

C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe

C:\Users\Nick\Downloads\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files (x86)\Common Files\Real\Update_OB\realsched.exe" -osboot

O4 - HKLM\..\Run: [startCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [Desktop Disc Tool] "C:\Program Files (x86)\Roxio\Roxio Burn\RoxioBurnLauncher.exe"

O4 - HKLM\..\Run: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2

O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [iP Changer 2.0] C:\Program Files (x86)\Plustech Inc.\IP Changer 2.0\yourapp.Exe

O4 - HKLM\..\RunOnce: [Launcher] C:\Program Files (x86)\Dell DataSafe Local Backup\Components\Scheduler\Launcher.exe

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [Google Update] "C:\Users\Nick\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - .DEFAULT User Startup: Dell Dock First Run.lnk = C:\Program Files\Dell\DellDock\DellDock.exe (User 'Default user')

O4 - Startup: Dell Dock.lnk = C:\Program Files\Dell\DellDock\DellDock.exe

O4 - Startup: LimeWire On Startup.lnk = C:\Program Files (x86)\LimeWire\LimeWire.exe

O4 - Global Startup: Bluetooth.lnk = ?

O8 - Extra context menu item: Afbeelding verzenden naar &Bluetooth-apparaat... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

O8 - Extra context menu item: Formulieren opslaan - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html

O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html

O8 - Extra context menu item: Invul Formulieren - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html

O8 - Extra context menu item: Menu aanpassen - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html

O8 - Extra context menu item: Pagina verzenden naar &Bluetooth-apparaat... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Formulier Invullen - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html

O9 - Extra 'Tools' menuitem: Invul Formulieren - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComFillForms.html

O9 - Extra button: Opslaan - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html

O9 - Extra 'Tools' menuitem: Formulieren opslaan - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files (x86)\Siber Systems\AI RoboForm\RoboFormComSavePass.html

O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra button: Verzenden naar Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra 'Tools' menuitem: Verzenden naar &Bluetooth-apparaat... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe

O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe

O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe

O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - c:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

O23 - Service: Dock Login Service (DockLoginService) - Stardock Corporation - C:\Program Files\Dell\DellDock\DockLogin.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe

O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: SoftThinks Agent Service (SftService) - SoftThinks SAS - C:\Program Files (x86)\Dell DataSafe Local Backup\sftservice.EXE

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version5\TeamViewer_Service.exe

O23 - Service: TurboBoost - Intel® Corporation - C:\Program Files\Intel\TurboBoost\TurboBoost.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 13963 bytes

bedankt!

Link naar reactie
Delen op andere sites
Gast
Dit topic is nu gesloten voor nieuwe reacties.
 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.