windows bevriest ( Nieuwe laptop)

[halsie]

En hier is weer het log.

Ik vermoed toch dat het meer of een driver probleem is en misschien zelfs wel een hardware probleem..:S

ComboFix 11-09-24.04 - Nick 25-09-2011 16:28:42.2.8 - x64

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.8140.6281 [GMT 2:00]

Gestart vanuit: c:\users\Nick\Downloads\ICS_Ds64.exe

AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}

SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

---- Voorgaande Run -------

.

c:\programdata\Roaming

.

.

(((((((((((((((((((( Bestanden Gemaakt van 2011-08-25 to 2011-09-25 ))))))))))))))))))))))))))))))

.

.

2011-09-25 14:33 . 2011-09-25 14:33 -------- d-----w- c:\users\Default\AppData\Local\temp

2011-09-25 12:44 . 2011-09-25 12:44 -------- d-----w- c:\program files (x86)\SystemRequirementsLab

2011-09-25 12:08 . 2011-09-25 14:26 69000 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DB933029-2D1B-4EC7-80F3-AC9BE6EBB6C3}\offreg.dll

2011-09-24 15:56 . 2011-09-13 00:26 9049936 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DB933029-2D1B-4EC7-80F3-AC9BE6EBB6C3}\mpengine.dll

2011-09-24 14:41 . 2011-09-24 14:42 -------- d-----w- c:\program files (x86)\EnterImage

2011-09-24 14:02 . 2009-08-23 05:02 120336 ----a-w- c:\windows\system32\drivers\AtiHdmi.sys

2011-09-24 13:57 . 2011-09-24 13:57 -------- d-----w- c:\program files (x86)\Common Files\Intel Corporation

2011-09-24 13:49 . 2011-09-24 13:49 -------- d-----w- c:\windows\SysWow64\sda

2011-09-24 13:49 . 2010-10-29 21:11 9888360 ----a-w- c:\windows\SysWow64\RtsUStoricon.dll

2011-09-24 13:49 . 2010-10-29 21:11 422504 ----a-w- c:\windows\system32\RtsUStor.dll

2011-09-24 13:47 . 2011-05-20 07:53 557848 ----a-w- c:\windows\system32\drivers\iaStor.sys

2011-09-24 13:44 . 2011-08-24 01:57 74272 ----a-w- c:\windows\system32\RtNicProp64.dll

2011-09-24 13:44 . 2011-08-24 01:57 565352 ----a-w- c:\windows\system32\drivers\Rt64win7.sys

2011-09-24 13:43 . 2011-09-24 13:43 -------- d-----w- c:\program files\Common Files\ATI Technologies

2011-09-24 13:43 . 2011-09-24 13:43 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies

2011-09-24 13:35 . 2011-09-24 13:35 -------- d-----w- c:\program files (x86)\Driver-Soft

2011-09-24 13:30 . 2011-09-24 13:30 -------- d-----w- c:\program files (x86)\Driver Robot

2011-09-24 13:30 . 2011-09-24 13:30 -------- d-----w- c:\programdata\IObit

2011-09-24 13:28 . 2011-09-24 13:30 -------- d-----w- c:\program files (x86)\IObit

2011-09-24 12:44 . 2011-09-24 12:44 41272 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys

2011-09-24 12:01 . 2011-09-24 12:01 -------- d-----w- c:\programdata\Malwarebytes

2011-09-24 12:01 . 2011-08-31 15:00 25416 ----a-w- c:\windows\system32\drivers\mbam.sys

2011-09-24 12:01 . 2011-09-24 12:01 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware

2011-09-23 10:03 . 2011-09-23 10:03 -------- d-----w- c:\program files (x86)\Trend Micro

2011-09-22 19:54 . 2011-09-22 19:54 -------- d-----w- c:\program files\Speccy

2011-09-22 17:35 . 2009-02-21 02:32 106496 ----a-w- c:\windows\DreamAquarium.scr

2011-09-22 17:35 . 2011-09-22 17:38 -------- d-----w- c:\program files (x86)\Dream Aquarium

2011-09-22 17:22 . 2011-09-22 17:22 -------- d-----w- c:\program files (x86)\Marine Aquarium

2011-09-22 12:26 . 2009-05-18 11:17 34152 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys

2011-09-22 12:26 . 2008-04-17 10:12 126312 ----a-w- c:\windows\system32\GEARAspi64.dll

2011-09-22 12:25 . 2011-09-22 12:25 -------- d-----w- c:\program files (x86)\QuickTime

2011-09-22 12:25 . 2011-09-22 12:25 -------- d-----w- c:\program files (x86)\Apple Software Update

2011-09-22 12:25 . 2011-09-22 12:25 -------- d-----w- c:\program files\Common Files\Apple

2011-09-22 12:25 . 2011-09-22 12:25 -------- d-----w- c:\program files\Bonjour

2011-09-22 12:25 . 2011-09-22 12:25 -------- d-----w- c:\program files (x86)\Bonjour

2011-09-22 12:25 . 2011-09-22 12:29 -------- d-----w- c:\programdata\Apple

2011-09-22 12:25 . 2011-09-22 12:26 -------- d-----w- c:\program files (x86)\Common Files\Apple

2011-09-21 22:37 . 2011-09-21 22:37 -------- d-----w- C:\AMD

2011-09-21 22:21 . 2011-09-21 22:21 -------- d-----w- c:\programdata\ATI

2011-09-21 22:21 . 2011-09-21 22:21 -------- d-----w- c:\program files (x86)\AMD APP

2011-09-21 22:19 . 2011-09-21 22:19 -------- d-----w- C:\ATI

2011-09-20 22:12 . 2011-09-20 22:12 -------- d-----w- c:\program files (x86)\MSXML 4.0

2011-09-20 22:10 . 2011-09-13 00:26 9049936 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll

2011-09-20 10:57 . 2011-09-20 10:57 -------- d-----w- c:\programdata\regid.1986-12.com.adobe

2011-09-20 10:55 . 2011-09-20 10:57 -------- d-----w- c:\program files\Common Files\Adobe

2011-09-20 10:54 . 2011-09-20 10:54 -------- d-----w- c:\program files (x86)\Adobe Media Player

2011-09-20 10:52 . 2011-09-20 10:52 -------- d-----w- c:\program files (x86)\Common Files\Adobe AIR

2011-09-20 10:50 . 2011-09-20 10:56 -------- d-----w- c:\program files (x86)\Common Files\Adobe

2011-09-20 10:38 . 2004-03-29 14:23 90112 ----a-w- c:\windows\unvise32.exe

2011-09-20 10:38 . 2011-09-20 10:38 -------- d-----w- c:\program files (x86)\LooksBuilderSE

2011-09-20 10:35 . 2011-09-20 10:35 -------- d-----w- c:\program files (x86)\Common Files\Pinnacle

2011-09-20 10:31 . 2011-09-20 10:37 -------- d-----w- c:\program files (x86)\Avid

2011-09-20 10:31 . 2011-09-20 10:31 -------- d-----w- c:\program files (x86)\Common Files\Pegasus Imaging

2011-09-20 10:31 . 2011-09-20 10:31 -------- d-----w- c:\program files (x86)\Pinnacle

2011-09-20 10:26 . 2011-09-20 10:43 -------- d-----w- c:\programdata\Pinnacle

2011-09-20 10:24 . 2008-10-27 08:04 518480 ----a-w- c:\windows\system32\XAudio2_3.dll

2011-09-20 10:20 . 2011-09-20 10:20 -------- d-----w- c:\program files (x86)\Elaborate Bytes

2011-09-19 22:12 . 2011-09-19 22:17 -------- d-----w- c:\programdata\Nero

2011-09-19 22:11 . 2011-09-19 22:12 -------- d-----w- c:\program files (x86)\Common Files\Nero

2011-09-19 22:11 . 2011-09-19 22:17 -------- d-----w- c:\program files (x86)\Nero

2011-09-19 22:04 . 2009-09-04 15:29 1974616 ----a-w- c:\windows\SysWow64\D3DCompiler_42.dll

2011-09-19 22:04 . 2009-09-04 15:29 1892184 ----a-w- c:\windows\SysWow64\D3DX9_42.dll

2011-09-19 22:04 . 2008-10-15 04:22 4379984 ----a-w- c:\windows\SysWow64\D3DX9_40.dll

2011-09-19 22:04 . 2007-07-19 16:14 3727720 ----a-w- c:\windows\SysWow64\d3dx9_35.dll

2011-09-19 22:04 . 2007-05-16 14:45 3497832 ----a-w- c:\windows\SysWow64\d3dx9_34.dll

2011-09-19 21:56 . 2011-09-25 14:26 151552 ----a-w- c:\windows\KMSEmulator.exe

2011-09-19 21:56 . 2011-09-19 22:07 -------- d-----w- c:\windows\AutoKMS

2011-09-19 21:52 . 2011-09-19 21:52 -------- d-----w- c:\program files\Microsoft Synchronization Services

2011-09-19 21:51 . 2011-09-19 21:51 -------- d-----w- c:\program files\Microsoft Sync Framework

2011-09-19 21:51 . 2011-09-19 21:51 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition

2011-09-19 21:50 . 2011-09-19 21:50 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 8

2011-09-19 21:50 . 2011-09-19 21:50 -------- d-----w- c:\program files\Microsoft Analysis Services

2011-09-19 21:50 . 2011-09-19 21:50 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services

2011-09-19 21:49 . 2011-09-23 10:57 -------- d-----w- c:\programdata\Microsoft Help

2011-09-19 21:49 . 2011-09-19 21:49 -------- d-----r- C:\MSOCache

2011-09-19 21:39 . 2011-09-19 21:39 -------- d-----w- c:\program files (x86)\CyberLink

2011-09-19 21:01 . 2011-09-19 21:01 -------- d-----w- c:\users\Public\CyberLink

2011-09-19 20:50 . 2011-09-19 20:50 -------- d-----w- c:\programdata\PDVD

2011-09-19 20:50 . 2011-09-19 21:35 -------- d-----w- c:\programdata\CyberLink

2011-09-19 20:48 . 2011-09-19 20:48 -------- d-----w- c:\programdata\install_clap

2011-09-19 17:53 . 2011-09-22 12:12 -------- d-----w- c:\program files (x86)\BitTorrent

2011-09-19 17:37 . 2011-09-19 17:39 -------- d-----w- C:\System Recovery

2011-09-19 16:31 . 2011-09-25 14:26 -------- d-----w- c:\windows\SMINST

2011-09-19 16:31 . 2007-03-19 13:03 241664 ----a-w- c:\windows\SysWow64\HPEvents.dll

2011-09-19 16:31 . 2006-10-13 13:15 499712 ----a-w- c:\windows\SysWow64\msvcp71.dll

2011-09-19 16:31 . 2006-10-13 13:15 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll

2011-09-19 16:31 . 2005-10-10 09:03 266240 ----a-w- c:\windows\SysWow64\ShellvRTF64.dll

2011-09-19 16:31 . 2003-03-19 02:03 544768 ----a-w- c:\windows\SysWow64\msvcr71d.dll

2011-09-19 16:31 . 2002-09-20 18:42 122880 ----a-w- c:\windows\SysWow64\ShellvRTF.dll

2011-09-19 16:30 . 2011-09-19 16:30 -------- d-----w- c:\program files (x86)\Common Files\InstallShield

2011-09-19 16:02 . 2011-09-19 16:02 -------- d-----w- c:\program files (x86)\VideoLAN

2011-09-19 15:57 . 2011-09-19 15:57 -------- d-----w- c:\programdata\LightScribe

2011-09-19 15:49 . 2011-09-19 15:50 -------- d-----w- c:\programdata\Hewlett-Packard

2011-09-19 15:48 . 2011-09-19 15:48 -------- d-----w- c:\programdata\{D3B41B92-9BC2-43EB-916A-4FA9E8191837}

2011-09-19 15:34 . 2011-09-19 15:34 -------- d-----w- c:\program files\IDT

2011-09-19 15:22 . 2011-09-19 15:22 601424 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{FEA082E2-851F-4D4F-803D-3DCBB7D1723D}\gapaengine.dll

2011-09-19 15:21 . 2011-09-19 15:22 -------- d-----w- c:\program files (x86)\Microsoft Security Client

2011-09-19 15:21 . 2011-09-19 15:22 -------- d-----w- c:\program files\Microsoft Security Client

2011-09-19 14:41 . 2011-09-19 14:41 -------- d-----w- C:\HP

2011-09-19 14:25 . 2011-09-19 14:25 -------- d-----w- c:\windows\nl

2011-09-19 14:23 . 2011-09-19 14:23 -------- d-----w- c:\program files (x86)\Microsoft SQL Server Compact Edition

2011-09-19 14:21 . 2011-09-22 12:26 -------- dc----w- c:\windows\system32\DRVSTORE

2011-09-19 14:21 . 2011-09-19 14:26 -------- d-----w- c:\program files (x86)\Windows Live

2011-09-19 14:21 . 2011-05-13 13:37 48488 ----a-w- c:\windows\system32\drivers\fssfltr.sys

2011-09-19 14:21 . 2011-09-19 14:21 -------- d-----w- c:\windows\PCHEALTH

2011-09-19 14:21 . 2011-09-19 14:21 -------- d-----w- c:\program files\Windows Live

2011-09-19 14:20 . 2011-09-19 17:51 -------- d-----w- c:\program files (x86)\Microsoft

2011-09-19 14:20 . 2009-09-04 15:44 69464 ----a-w- c:\windows\SysWow64\XAPOFX1_3.dll

2011-09-19 14:20 . 2009-09-04 15:44 515416 ----a-w- c:\windows\SysWow64\XAudio2_5.dll

2011-09-19 14:20 . 2009-09-04 15:29 453456 ----a-w- c:\windows\SysWow64\d3dx10_42.dll

2011-09-19 14:20 . 2009-09-04 15:29 523088 ----a-w- c:\windows\system32\d3dx10_42.dll

2011-09-19 14:19 . 2006-11-29 11:06 4398360 ----a-w- c:\windows\system32\d3dx9_32.dll

2011-09-19 14:19 . 2006-11-29 11:06 3426072 ----a-w- c:\windows\SysWow64\d3dx9_32.dll

2011-09-19 14:19 . 2011-09-19 15:04 -------- d-----w- c:\program files (x86)\Microsoft Silverlight

2011-09-19 14:18 . 2011-09-19 14:18 -------- d-----w- c:\program files (x86)\Common Files\Windows Live

2011-09-19 14:14 . 2011-09-19 14:14 -------- d-----w- c:\program files (x86)\Common Files\Intel

2011-09-19 14:12 . 2011-09-19 14:12 0 ----a-w- c:\windows\ativpsrm.bin

2011-09-19 14:12 . 2011-09-19 14:14 -------- d-----w- c:\program files (x86)\ATI Technologies

2011-09-19 14:12 . 2011-09-21 22:21 -------- d-----w- c:\program files\ATI Technologies

2011-09-19 14:12 . 2011-09-19 14:12 -------- d-----w- c:\program files\ATI

2011-09-19 14:12 . 2011-09-19 14:12 -------- dc-h--w- c:\programdata\{345977C2-5084-446C-9181-6AB4FF7DBA08}

2011-09-19 14:12 . 2011-09-19 14:12 -------- d-----w- c:\program files\Stardock

2011-09-19 14:11 . 2011-09-19 14:11 -------- d-----w- c:\programdata\Stardock

2011-09-19 14:11 . 2011-09-19 14:11 -------- d-----w- c:\program files (x86)\Common Files\Stardock

2011-09-19 14:11 . 2010-09-15 09:08 53904 ----a-w- c:\windows\system32\wbload.dll

.

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2011-09-19 15:13 . 2009-07-13 23:57 20702720 ----a-w- c:\windows\system32\imageres.dll

2011-09-19 14:21 . 2011-03-28 16:36 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

2011-08-24 01:57 . 2010-01-05 14:39 107552 ----a-w- c:\windows\system32\RTNUninst64.dll

2011-07-28 22:23 . 2011-07-28 22:23 9980416 ----a-w- c:\windows\system32\drivers\atikmdag.sys

2011-07-28 22:09 . 2011-07-28 22:09 23921664 ----a-w- c:\windows\system32\atio6axx.dll

2011-07-28 21:44 . 2011-07-28 21:44 18388480 ----a-w- c:\windows\SysWow64\atioglxx.dll

2011-07-28 21:40 . 2011-07-28 21:40 151552 ----a-w- c:\windows\system32\atiapfxx.exe

2011-07-28 21:40 . 2011-03-31 03:31 726528 ----a-w- c:\windows\SysWow64\aticfx32.dll

2011-07-28 21:39 . 2011-03-31 03:30 852992 ----a-w- c:\windows\system32\aticfx64.dll

2011-07-28 21:36 . 2011-07-28 21:36 462848 ----a-w- c:\windows\system32\ATIDEMGX.dll

2011-07-28 21:36 . 2011-07-28 21:36 485376 ----a-w- c:\windows\system32\atieclxx.exe

2011-07-28 21:35 . 2011-07-28 21:35 204288 ----a-w- c:\windows\system32\atiesrxx.exe

2011-07-28 21:34 . 2011-07-28 21:34 120320 ----a-w- c:\windows\system32\atitmm64.dll

2011-07-28 21:34 . 2011-07-28 21:34 423424 ----a-w- c:\windows\system32\atipdl64.dll

2011-07-28 21:33 . 2011-07-28 21:33 356352 ----a-w- c:\windows\SysWow64\atipdlxx.dll

2011-07-28 21:33 . 2011-07-28 21:33 278528 ----a-w- c:\windows\SysWow64\Oemdspif.dll

2011-07-28 21:33 . 2011-07-28 21:33 21504 ----a-w- c:\windows\system32\atimuixx.dll

2011-07-28 21:33 . 2011-07-28 21:33 59392 ----a-w- c:\windows\system32\atiedu64.dll

2011-07-28 21:33 . 2011-07-28 21:33 43520 ----a-w- c:\windows\SysWow64\ati2edxx.dll

2011-07-28 21:30 . 2011-03-31 03:21 4198912 ----a-w- c:\windows\SysWow64\atidxx32.dll

2011-07-28 21:20 . 2011-03-31 03:13 4943360 ----a-w- c:\windows\system32\atidxx64.dll

2011-07-28 21:12 . 2011-07-28 21:12 1113088 ----a-w- c:\windows\system32\atiumd6v.dll

2011-07-28 21:11 . 2011-07-28 21:11 1828864 ----a-w- c:\windows\SysWow64\atiumdmv.dll

2011-07-28 21:11 . 2011-03-31 02:59 3871744 ----a-w- c:\windows\system32\atiumd6a.dll

2011-07-28 21:11 . 2011-07-28 21:11 51200 ----a-w- c:\windows\system32\aticalrt64.dll

2011-07-28 21:11 . 2011-07-28 21:11 46080 ----a-w- c:\windows\SysWow64\aticalrt.dll

2011-07-28 21:11 . 2011-07-28 21:11 44544 ----a-w- c:\windows\system32\aticalcl64.dll

2011-07-28 21:11 . 2011-07-28 21:11 44032 ----a-w- c:\windows\SysWow64\aticalcl.dll

2011-07-28 21:10 . 2011-07-28 21:10 9644544 ----a-w- c:\windows\system32\aticaldd64.dll

2011-07-28 21:09 . 2011-03-31 03:03 4256768 ----a-w- c:\windows\SysWow64\atiumdag.dll

2011-07-28 21:07 . 2011-07-28 21:07 8247296 ----a-w- c:\windows\SysWow64\aticaldd.dll

2011-07-28 21:03 . 2011-03-31 02:51 4056064 ----a-w- c:\windows\SysWow64\atiumdva.dll

2011-07-28 21:02 . 2011-03-31 02:58 5399040 ----a-w- c:\windows\system32\atiumd64.dll

2011-07-28 21:01 . 2011-03-31 02:53 58880 ----a-w- c:\windows\system32\coinst.dll

2011-07-28 20:54 . 2011-07-28 20:54 378368 ----a-w- c:\windows\system32\atiadlxx.dll

2011-07-28 20:54 . 2011-07-28 20:54 266240 ----a-w- c:\windows\SysWow64\atiadlxy.dll

2011-07-28 20:54 . 2011-07-28 20:54 15360 ----a-w- c:\windows\system32\atig6pxx.dll

2011-07-28 20:54 . 2011-07-28 20:54 13312 ----a-w- c:\windows\SysWow64\atiglpxx.dll

2011-07-28 20:54 . 2011-07-28 20:54 13312 ----a-w- c:\windows\system32\atiglpxx.dll

2011-07-28 20:54 . 2011-07-28 20:54 39936 ----a-w- c:\windows\system32\atig6txx.dll

2011-07-28 20:54 . 2011-07-28 20:54 32768 ----a-w- c:\windows\SysWow64\atigktxx.dll

2011-07-28 20:54 . 2011-07-28 20:54 309248 ----a-w- c:\windows\system32\drivers\atikmpag.sys

2011-07-28 20:53 . 2011-03-31 02:50 40960 ----a-w- c:\windows\system32\atiuxp64.dll

2011-07-28 20:53 . 2011-03-31 02:50 31744 ----a-w- c:\windows\SysWow64\atiuxpag.dll

2011-07-28 20:53 . 2011-03-31 02:50 38912 ----a-w- c:\windows\system32\atiu9p64.dll

2011-07-28 20:53 . 2011-03-31 02:49 29184 ----a-w- c:\windows\SysWow64\atiu9pag.dll

2011-07-28 20:52 . 2011-07-28 20:52 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll

2011-07-28 20:51 . 2011-07-28 20:51 53760 ----a-w- c:\windows\system32\atimpc64.dll

2011-07-28 20:51 . 2011-07-28 20:51 53760 ----a-w- c:\windows\system32\amdpcom64.dll

2011-07-28 20:51 . 2011-07-28 20:51 52736 ----a-w- c:\windows\SysWow64\atimpc32.dll

2011-07-28 20:51 . 2011-07-28 20:51 52736 ----a-w- c:\windows\SysWow64\amdpcom32.dll

2011-07-28 15:49 . 2011-07-28 15:49 60416 ----a-w- c:\windows\system32\OVDecode64.dll

2011-07-28 15:49 . 2011-07-28 15:49 53760 ----a-w- c:\windows\SysWow64\OVDecode.dll

2011-07-28 15:48 . 2011-07-28 15:48 51200 ----a-w- c:\windows\system32\OpenCL.dll

2011-07-28 15:48 . 2011-07-28 15:48 43520 ----a-w- c:\windows\SysWow64\OpenCL.dll

2011-07-28 15:48 . 2011-07-28 15:48 16552960 ----a-w- c:\windows\system32\amdocl64.dll

2011-07-28 15:48 . 2011-07-28 15:48 13555712 ----a-w- c:\windows\SysWow64\amdocl.dll

2011-07-16 04:26 . 2011-09-19 13:27 44032 ----a-w- c:\windows\apppatch\acwow64.dll

2011-07-12 09:34 . 2011-07-12 09:34 96104 ----a-w- c:\windows\system32\dns-sd.exe

2011-07-12 09:34 . 2011-07-12 09:34 85864 ----a-w- c:\windows\system32\dnssd.dll

2011-07-12 09:34 . 2011-07-12 09:34 61288 ----a-w- c:\windows\system32\jdns_sd.dll

2011-07-12 09:34 . 2011-07-12 09:34 212840 ----a-w- c:\windows\system32\dnssdX.dll

2011-07-12 09:20 . 2011-07-12 09:20 83816 ----a-w- c:\windows\SysWow64\dns-sd.exe

2011-07-12 09:20 . 2011-07-12 09:20 73064 ----a-w- c:\windows\SysWow64\dnssd.dll

2011-07-12 09:20 . 2011-07-12 09:20 50536 ----a-w- c:\windows\SysWow64\jdns_sd.dll

2011-07-12 09:20 . 2011-07-12 09:20 178536 ----a-w- c:\windows\SysWow64\dnssdX.dll

2011-07-05 16:37 . 2011-07-05 16:37 94208 ----a-w- c:\windows\SysWow64\QuickTimeVR.qtx

2011-07-05 16:37 . 2011-07-05 16:37 69632 ----a-w- c:\windows\SysWow64\QuickTime.qts

.

.

((((((((((((((((((((((((((((( SnapShot@2011-09-25_12.53.07 )))))))))))))))))))))))))))))))))))))))))

.

- 2009-07-14 05:10 . 2011-09-25 12:35 24690 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin

+ 2009-07-14 05:10 . 2011-09-25 14:28 24690 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin

+ 2011-09-18 21:34 . 2011-09-25 14:28 5174 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-4153062535-237700957-4286186150-1000_UserData.bin

- 2011-09-25 12:08 . 2011-09-25 12:33 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat

+ 2011-09-25 12:08 . 2011-09-25 14:26 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat

- 2011-09-25 12:08 . 2011-09-25 12:33 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat

+ 2011-09-25 12:08 . 2011-09-25 14:26 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat

+ 2010-11-21 16:48 . 2011-09-25 14:31 703664 c:\windows\system32\perfh013.dat

- 2010-11-21 16:48 . 2011-09-25 12:44 703664 c:\windows\system32\perfh013.dat

- 2009-07-14 02:36 . 2011-09-25 12:44 618108 c:\windows\system32\perfh009.dat

+ 2009-07-14 02:36 . 2011-09-25 14:31 618108 c:\windows\system32\perfh009.dat

+ 2010-11-21 16:48 . 2011-09-25 14:31 134564 c:\windows\system32\perfc013.dat

- 2010-11-21 16:48 . 2011-09-25 12:44 134564 c:\windows\system32\perfc013.dat

+ 2009-07-14 02:36 . 2011-09-25 14:31 107388 c:\windows\system32\perfc009.dat

- 2009-07-14 02:36 . 2011-09-25 12:44 107388 c:\windows\system32\perfc009.dat

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"msnmsgr"="c:\program files (x86)\Windows Live\Messenger\msnmsgr.exe" [2011-05-13 4283256]

"BitTorrent"="c:\program files (x86)\BitTorrent\BitTorrent.exe" [2011-09-19 4992880]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"IAStorIcon"="c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" [2011-05-20 284440]

"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2011-04-14 113288]

"HP Quick Launch"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2011-06-14 587320]

"HPOSD"="c:\program files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe" [2011-06-13 336440]

"RemoteControl11"="c:\program files (x86)\CyberLink\PowerDVD11\PDVD11Serv.exe" [2011-09-14 230696]

"NBAgent"="c:\program files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" [2010-03-26 1234216]

"VirtualCloneDrive"="c:\program files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" [2011-03-07 89456]

"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]

"AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]

"HP CoolSense"="c:\program files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" [2011-03-11 1502776]

"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-07-28 336384]

"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-07-05 421888]

"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2011-08-18 421736]

"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]

"TaskTray"="" [bU]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]

"ST Recovery Launcher"="c:\windows\SMINST\launcher.exe" [2007-03-09 44168]

.

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\

Stardock MyColors.lnk - c:\program files (x86)\Stardock\MyColors\SDDelayedLaunch.exe [2010-8-3 11520]

.

c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

IconPackager.lnk - c:\program files (x86)\Stardock\MyColors\IconPackager.exe [2010-8-3 1387688]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 0 (0x0)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableLUA"= 0 (0x0)

"EnableUIADesktopToggle"= 0 (0x0)

"PromptOnSecureDesktop"= 0 (0x0)

"EnableLinkedConnections"= 1 (0x1)

.

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]

Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

@="Service"

.

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-06-21 85560]

R2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-07-21 103992]

R3 cpudrv64;cpudrv64;c:\program files (x86)\SystemRequirementsLab\cpudrv64.sys [2009-12-18 17864]

R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536]

R3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [x]

R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2011-01-05 340240]

R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]

R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-04-27 288272]

R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]

R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]

R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]

R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [x]

R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x]

R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]

S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]

S2 {329F96B6-DF1E-4328-BFDA-39EA953C1312};Power Control [2011/09/19 23:40];c:\program files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl [2011-08-25 11:06 148976]

S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe [2009-03-02 89600]

S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]

S2 CLHNServiceForPowerDVD;CLHNServiceForPowerDVD;c:\program files (x86)\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe [2011-08-24 83240]

S2 CyberLink PowerDVD 11.0 Monitor Service;CyberLink PowerDVD 11.0 Monitor Service;c:\program files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe [2011-08-26 75048]

S2 CyberLink PowerDVD 11.0 Service;CyberLink PowerDVD 11.0 Service;c:\program files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe [2011-08-26 292136]

S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-07-05 227384]

S2 HPWMISVC;HPWMISVC;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2011-06-14 26680]

S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-05-20 13592]

S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]

S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]

S2 ntk_PowerDVD;ntk_PowerDVD;c:\program files (x86)\CyberLink\PowerDVD11\Kernel\DMP\ntk_PowerDVD_64.sys [2011-08-24 75248]

S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-01-31 2656280]

S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]

S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]

S3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys [x]

S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]

S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [x]

S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys [x]

S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]

S3 MEIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]

S3 NETwNs64;___ Intel® Wireless WiFi Link 5000 Series adapter stuurprogramma onder Windows 7 64 Bit;c:\windows\system32\DRIVERS\NETwNs64.sys [x]

S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [x]

S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [x]

S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]

S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [x]

S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]

S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]

.

.

Inhoud van de 'Gedeelde Taken' map

.

2011-09-25 c:\windows\Tasks\AutoKMS.job

- c:\windows\AutoKMS\AutoKMS.exe [2011-09-19 21:56]

.

2011-09-25 c:\windows\Tasks\AutoKMSDaily.job

- c:\windows\AutoKMS\AutoKMS.exe [2011-09-19 21:56]

.

2011-09-24 c:\windows\Tasks\Driver Robot.job

- c:\program files (x86)\Driver Robot\1.2.0.5\DriverRobot.exe [2011-09-24 15:29]

.

.

--------- x86-64 -----------

.

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IntelWireless"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-01-05 1933584]

"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2010-07-21 8192]

"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [bU]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-01-27 167960]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-01-27 391704]

"Persistence"="c:\windows\system32\igfxpers.exe" [2011-01-27 418328]

"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 1436736]

"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2011-03-03 1128448]

"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]

"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]

.

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]

"{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "c:\program files\Stardock\Fences Pro\FencesMenu64.dll" [2010-12-03 464744]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"LoadAppInit_DLLs"=0x0

.

------- Bijkomende Scan -------

.

uLocal Page = c:\windows\system32\blank.htm

uStart Page = hxxp://www.google.nl/

mLocal Page = c:\windows\SysWOW64\blank.htm

uInternet Settings,ProxyOverride = *.local

IE: Afbeelding verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

IE: Pagina verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

TCP: DhcpNameServer = 213.46.228.196 62.179.104.196 192.168.1.1

.

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\{329F96B6-DF1E-4328-BFDA-39EA953C1312}]

"ImagePath"="\??\c:\program files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl"

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

.

[HKEY_USERS\S-1-5-21-4153062535-237700957-4286186150-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="WindowsLiveMail.Email.1"

.

[HKEY_USERS\S-1-5-21-4153062535-237700957-4286186150-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="WindowsLiveMail.VCard.1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10w_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10w_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.10"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]

@Denied: (A 2) (Everyone)

@="IFlashBroker4"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Voltooingstijd: 2011-09-25 16:35:27

ComboFix-quarantined-files.txt 2011-09-25 14:35

.

Pre-Run: 623.134.035.968 bytes beschikbaar

Post-Run: 623.120.912.384 bytes beschikbaar

.

- - End Of File - - 529F2261F6C606307B10386714D791CE

[Asus]

Je hebt Combofix uitgevoerd, maar niet zoals gevraagd :

* BELANGRIJK !!! Sla ComboFix.exe op je Bureaublad op

Combofix werd gestart vanuit je map downloads en niet vanop je bureaublad :

Gestart vanuit: c:\users\Nick\Downloads\ICS_Ds64.exe

[halsie]

Je hebt helemaal gelijk heb ik over het hoofd gezien..:$ gelijk een nieuwe gemaakt...

ComboFix 11-09-24.04 - Nick 25-09-2011 18:29:56.3.8 - x64

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.8140.6065 [GMT 2:00]

Gestart vanuit: c:\users\Nick\Desktop\ICS_Ds64.exe

AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}

SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

(((((((((((((((((((( Bestanden Gemaakt van 2011-08-25 to 2011-09-25 ))))))))))))))))))))))))))))))

.

.

2011-09-25 16:33 . 2011-09-25 16:33 -------- d-----w- c:\users\Default\AppData\Local\temp

2011-09-25 12:44 . 2011-09-25 12:44 -------- d-----w- c:\program files (x86)\SystemRequirementsLab

2011-09-25 12:08 . 2011-09-25 14:26 69000 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DB933029-2D1B-4EC7-80F3-AC9BE6EBB6C3}\offreg.dll

2011-09-24 15:56 . 2011-09-13 00:26 9049936 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DB933029-2D1B-4EC7-80F3-AC9BE6EBB6C3}\mpengine.dll

2011-09-24 14:41 . 2011-09-24 14:42 -------- d-----w- c:\program files (x86)\EnterImage

2011-09-24 14:02 . 2009-08-23 05:02 120336 ----a-w- c:\windows\system32\drivers\AtiHdmi.sys

2011-09-24 13:57 . 2011-09-24 13:57 -------- d-----w- c:\program files (x86)\Common Files\Intel Corporation

2011-09-24 13:49 . 2011-09-24 13:49 -------- d-----w- c:\windows\SysWow64\sda

2011-09-24 13:49 . 2010-10-29 21:11 9888360 ----a-w- c:\windows\SysWow64\RtsUStoricon.dll

2011-09-24 13:49 . 2010-10-29 21:11 422504 ----a-w- c:\windows\system32\RtsUStor.dll

2011-09-24 13:47 . 2011-05-20 07:53 557848 ----a-w- c:\windows\system32\drivers\iaStor.sys

2011-09-24 13:44 . 2011-08-24 01:57 74272 ----a-w- c:\windows\system32\RtNicProp64.dll

2011-09-24 13:44 . 2011-08-24 01:57 565352 ----a-w- c:\windows\system32\drivers\Rt64win7.sys

2011-09-24 13:43 . 2011-09-24 13:43 -------- d-----w- c:\program files\Common Files\ATI Technologies

2011-09-24 13:43 . 2011-09-24 13:43 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies

2011-09-24 13:35 . 2011-09-24 13:35 -------- d-----w- c:\program files (x86)\Driver-Soft

2011-09-24 13:30 . 2011-09-24 13:30 -------- d-----w- c:\program files (x86)\Driver Robot

2011-09-24 13:30 . 2011-09-24 13:30 -------- d-----w- c:\programdata\IObit

2011-09-24 13:28 . 2011-09-24 13:30 -------- d-----w- c:\program files (x86)\IObit

2011-09-24 12:44 . 2011-09-24 12:44 41272 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys

2011-09-24 12:01 . 2011-09-24 12:01 -------- d-----w- c:\programdata\Malwarebytes

2011-09-24 12:01 . 2011-08-31 15:00 25416 ----a-w- c:\windows\system32\drivers\mbam.sys

2011-09-24 12:01 . 2011-09-24 12:01 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware

2011-09-23 10:03 . 2011-09-23 10:03 -------- d-----w- c:\program files (x86)\Trend Micro

2011-09-22 19:54 . 2011-09-22 19:54 -------- d-----w- c:\program files\Speccy

2011-09-22 17:35 . 2009-02-21 02:32 106496 ----a-w- c:\windows\DreamAquarium.scr

2011-09-22 17:35 . 2011-09-22 17:38 -------- d-----w- c:\program files (x86)\Dream Aquarium

2011-09-22 17:22 . 2011-09-22 17:22 -------- d-----w- c:\program files (x86)\Marine Aquarium

2011-09-22 12:26 . 2009-05-18 11:17 34152 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys

2011-09-22 12:26 . 2008-04-17 10:12 126312 ----a-w- c:\windows\system32\GEARAspi64.dll

2011-09-22 12:25 . 2011-09-22 12:25 -------- d-----w- c:\program files (x86)\QuickTime

2011-09-22 12:25 . 2011-09-22 12:25 -------- d-----w- c:\program files (x86)\Apple Software Update

2011-09-22 12:25 . 2011-09-22 12:25 -------- d-----w- c:\program files\Common Files\Apple

2011-09-22 12:25 . 2011-09-22 12:25 -------- d-----w- c:\program files\Bonjour

2011-09-22 12:25 . 2011-09-22 12:25 -------- d-----w- c:\program files (x86)\Bonjour

2011-09-22 12:25 . 2011-09-22 12:29 -------- d-----w- c:\programdata\Apple

2011-09-22 12:25 . 2011-09-22 12:26 -------- d-----w- c:\program files (x86)\Common Files\Apple

2011-09-21 22:37 . 2011-09-21 22:37 -------- d-----w- C:\AMD

2011-09-21 22:21 . 2011-09-21 22:21 -------- d-----w- c:\programdata\ATI

2011-09-21 22:21 . 2011-09-21 22:21 -------- d-----w- c:\program files (x86)\AMD APP

2011-09-21 22:19 . 2011-09-21 22:19 -------- d-----w- C:\ATI

2011-09-20 22:12 . 2011-09-20 22:12 -------- d-----w- c:\program files (x86)\MSXML 4.0

2011-09-20 22:10 . 2011-09-13 00:26 9049936 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll

2011-09-20 10:57 . 2011-09-20 10:57 -------- d-----w- c:\programdata\regid.1986-12.com.adobe

2011-09-20 10:55 . 2011-09-20 10:57 -------- d-----w- c:\program files\Common Files\Adobe

2011-09-20 10:54 . 2011-09-20 10:54 -------- d-----w- c:\program files (x86)\Adobe Media Player

2011-09-20 10:52 . 2011-09-20 10:52 -------- d-----w- c:\program files (x86)\Common Files\Adobe AIR

2011-09-20 10:50 . 2011-09-20 10:56 -------- d-----w- c:\program files (x86)\Common Files\Adobe

2011-09-20 10:38 . 2004-03-29 14:23 90112 ----a-w- c:\windows\unvise32.exe

2011-09-20 10:38 . 2011-09-20 10:38 -------- d-----w- c:\program files (x86)\LooksBuilderSE

2011-09-20 10:35 . 2011-09-20 10:35 -------- d-----w- c:\program files (x86)\Common Files\Pinnacle

2011-09-20 10:31 . 2011-09-20 10:37 -------- d-----w- c:\program files (x86)\Avid

2011-09-20 10:31 . 2011-09-20 10:31 -------- d-----w- c:\program files (x86)\Common Files\Pegasus Imaging

2011-09-20 10:31 . 2011-09-20 10:31 -------- d-----w- c:\program files (x86)\Pinnacle

2011-09-20 10:26 . 2011-09-20 10:43 -------- d-----w- c:\programdata\Pinnacle

2011-09-20 10:24 . 2008-10-27 08:04 518480 ----a-w- c:\windows\system32\XAudio2_3.dll

2011-09-20 10:20 . 2011-09-20 10:20 -------- d-----w- c:\program files (x86)\Elaborate Bytes

2011-09-19 22:12 . 2011-09-19 22:17 -------- d-----w- c:\programdata\Nero

2011-09-19 22:11 . 2011-09-19 22:12 -------- d-----w- c:\program files (x86)\Common Files\Nero

2011-09-19 22:11 . 2011-09-19 22:17 -------- d-----w- c:\program files (x86)\Nero

2011-09-19 22:04 . 2009-09-04 15:29 1974616 ----a-w- c:\windows\SysWow64\D3DCompiler_42.dll

2011-09-19 22:04 . 2009-09-04 15:29 1892184 ----a-w- c:\windows\SysWow64\D3DX9_42.dll

2011-09-19 22:04 . 2008-10-15 04:22 4379984 ----a-w- c:\windows\SysWow64\D3DX9_40.dll

2011-09-19 22:04 . 2007-07-19 16:14 3727720 ----a-w- c:\windows\SysWow64\d3dx9_35.dll

2011-09-19 22:04 . 2007-05-16 14:45 3497832 ----a-w- c:\windows\SysWow64\d3dx9_34.dll

2011-09-19 21:56 . 2011-09-25 14:26 151552 ----a-w- c:\windows\KMSEmulator.exe

2011-09-19 21:56 . 2011-09-19 22:07 -------- d-----w- c:\windows\AutoKMS

2011-09-19 21:52 . 2011-09-19 21:52 -------- d-----w- c:\program files\Microsoft Synchronization Services

2011-09-19 21:51 . 2011-09-19 21:51 -------- d-----w- c:\program files\Microsoft Sync Framework

2011-09-19 21:51 . 2011-09-19 21:51 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition

2011-09-19 21:50 . 2011-09-19 21:50 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 8

2011-09-19 21:50 . 2011-09-19 21:50 -------- d-----w- c:\program files\Microsoft Analysis Services

2011-09-19 21:50 . 2011-09-19 21:50 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services

2011-09-19 21:49 . 2011-09-23 10:57 -------- d-----w- c:\programdata\Microsoft Help

2011-09-19 21:49 . 2011-09-19 21:49 -------- d-----r- C:\MSOCache

2011-09-19 21:39 . 2011-09-19 21:39 -------- d-----w- c:\program files (x86)\CyberLink

2011-09-19 21:01 . 2011-09-19 21:01 -------- d-----w- c:\users\Public\CyberLink

2011-09-19 20:50 . 2011-09-19 20:50 -------- d-----w- c:\programdata\PDVD

2011-09-19 20:50 . 2011-09-19 21:35 -------- d-----w- c:\programdata\CyberLink

2011-09-19 20:48 . 2011-09-19 20:48 -------- d-----w- c:\programdata\install_clap

2011-09-19 17:53 . 2011-09-22 12:12 -------- d-----w- c:\program files (x86)\BitTorrent

2011-09-19 17:37 . 2011-09-19 17:39 -------- d-----w- C:\System Recovery

2011-09-19 16:31 . 2011-09-25 14:26 -------- d-----w- c:\windows\SMINST

2011-09-19 16:31 . 2007-03-19 13:03 241664 ----a-w- c:\windows\SysWow64\HPEvents.dll

2011-09-19 16:31 . 2006-10-13 13:15 499712 ----a-w- c:\windows\SysWow64\msvcp71.dll

2011-09-19 16:31 . 2006-10-13 13:15 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll

2011-09-19 16:31 . 2005-10-10 09:03 266240 ----a-w- c:\windows\SysWow64\ShellvRTF64.dll

2011-09-19 16:31 . 2003-03-19 02:03 544768 ----a-w- c:\windows\SysWow64\msvcr71d.dll

2011-09-19 16:31 . 2002-09-20 18:42 122880 ----a-w- c:\windows\SysWow64\ShellvRTF.dll

2011-09-19 16:30 . 2011-09-19 16:30 -------- d-----w- c:\program files (x86)\Common Files\InstallShield

2011-09-19 16:02 . 2011-09-19 16:02 -------- d-----w- c:\program files (x86)\VideoLAN

2011-09-19 15:57 . 2011-09-19 15:57 -------- d-----w- c:\programdata\LightScribe

2011-09-19 15:49 . 2011-09-19 15:50 -------- d-----w- c:\programdata\Hewlett-Packard

2011-09-19 15:48 . 2011-09-19 15:48 -------- d-----w- c:\programdata\{D3B41B92-9BC2-43EB-916A-4FA9E8191837}

2011-09-19 15:34 . 2011-09-19 15:34 -------- d-----w- c:\program files\IDT

2011-09-19 15:22 . 2011-09-19 15:22 601424 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{FEA082E2-851F-4D4F-803D-3DCBB7D1723D}\gapaengine.dll

2011-09-19 15:21 . 2011-09-19 15:22 -------- d-----w- c:\program files (x86)\Microsoft Security Client

2011-09-19 15:21 . 2011-09-19 15:22 -------- d-----w- c:\program files\Microsoft Security Client

2011-09-19 14:41 . 2011-09-19 14:41 -------- d-----w- C:\HP

2011-09-19 14:25 . 2011-09-19 14:25 -------- d-----w- c:\windows\nl

2011-09-19 14:23 . 2011-09-19 14:23 -------- d-----w- c:\program files (x86)\Microsoft SQL Server Compact Edition

2011-09-19 14:21 . 2011-09-22 12:26 -------- dc----w- c:\windows\system32\DRVSTORE

2011-09-19 14:21 . 2011-09-19 14:26 -------- d-----w- c:\program files (x86)\Windows Live

2011-09-19 14:21 . 2011-05-13 13:37 48488 ----a-w- c:\windows\system32\drivers\fssfltr.sys

2011-09-19 14:21 . 2011-09-19 14:21 -------- d-----w- c:\windows\PCHEALTH

2011-09-19 14:21 . 2011-09-19 14:21 -------- d-----w- c:\program files\Windows Live

2011-09-19 14:20 . 2011-09-19 17:51 -------- d-----w- c:\program files (x86)\Microsoft

2011-09-19 14:20 . 2009-09-04 15:44 69464 ----a-w- c:\windows\SysWow64\XAPOFX1_3.dll

2011-09-19 14:20 . 2009-09-04 15:44 515416 ----a-w- c:\windows\SysWow64\XAudio2_5.dll

2011-09-19 14:20 . 2009-09-04 15:29 453456 ----a-w- c:\windows\SysWow64\d3dx10_42.dll

2011-09-19 14:20 . 2009-09-04 15:29 523088 ----a-w- c:\windows\system32\d3dx10_42.dll

2011-09-19 14:19 . 2006-11-29 11:06 4398360 ----a-w- c:\windows\system32\d3dx9_32.dll

2011-09-19 14:19 . 2006-11-29 11:06 3426072 ----a-w- c:\windows\SysWow64\d3dx9_32.dll

2011-09-19 14:19 . 2011-09-19 15:04 -------- d-----w- c:\program files (x86)\Microsoft Silverlight

2011-09-19 14:18 . 2011-09-19 14:18 -------- d-----w- c:\program files (x86)\Common Files\Windows Live

2011-09-19 14:14 . 2011-09-19 14:14 -------- d-----w- c:\program files (x86)\Common Files\Intel

2011-09-19 14:12 . 2011-09-19 14:12 0 ----a-w- c:\windows\ativpsrm.bin

2011-09-19 14:12 . 2011-09-19 14:14 -------- d-----w- c:\program files (x86)\ATI Technologies

2011-09-19 14:12 . 2011-09-21 22:21 -------- d-----w- c:\program files\ATI Technologies

2011-09-19 14:12 . 2011-09-19 14:12 -------- d-----w- c:\program files\ATI

2011-09-19 14:12 . 2011-09-19 14:12 -------- dc-h--w- c:\programdata\{345977C2-5084-446C-9181-6AB4FF7DBA08}

2011-09-19 14:12 . 2011-09-19 14:12 -------- d-----w- c:\program files\Stardock

2011-09-19 14:11 . 2011-09-19 14:11 -------- d-----w- c:\programdata\Stardock

2011-09-19 14:11 . 2011-09-19 14:11 -------- d-----w- c:\program files (x86)\Common Files\Stardock

2011-09-19 14:11 . 2010-09-15 09:08 53904 ----a-w- c:\windows\system32\wbload.dll

.

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2011-09-19 15:13 . 2009-07-13 23:57 20702720 ----a-w- c:\windows\system32\imageres.dll

2011-09-19 14:21 . 2011-03-28 16:36 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

2011-08-24 01:57 . 2010-01-05 14:39 107552 ----a-w- c:\windows\system32\RTNUninst64.dll

2011-07-28 22:23 . 2011-07-28 22:23 9980416 ----a-w- c:\windows\system32\drivers\atikmdag.sys

2011-07-28 22:09 . 2011-07-28 22:09 23921664 ----a-w- c:\windows\system32\atio6axx.dll

2011-07-28 21:44 . 2011-07-28 21:44 18388480 ----a-w- c:\windows\SysWow64\atioglxx.dll

2011-07-28 21:40 . 2011-07-28 21:40 151552 ----a-w- c:\windows\system32\atiapfxx.exe

2011-07-28 21:40 . 2011-03-31 03:31 726528 ----a-w- c:\windows\SysWow64\aticfx32.dll

2011-07-28 21:39 . 2011-03-31 03:30 852992 ----a-w- c:\windows\system32\aticfx64.dll

2011-07-28 21:36 . 2011-07-28 21:36 462848 ----a-w- c:\windows\system32\ATIDEMGX.dll

2011-07-28 21:36 . 2011-07-28 21:36 485376 ----a-w- c:\windows\system32\atieclxx.exe

2011-07-28 21:35 . 2011-07-28 21:35 204288 ----a-w- c:\windows\system32\atiesrxx.exe

2011-07-28 21:34 . 2011-07-28 21:34 120320 ----a-w- c:\windows\system32\atitmm64.dll

2011-07-28 21:34 . 2011-07-28 21:34 423424 ----a-w- c:\windows\system32\atipdl64.dll

2011-07-28 21:33 . 2011-07-28 21:33 356352 ----a-w- c:\windows\SysWow64\atipdlxx.dll

2011-07-28 21:33 . 2011-07-28 21:33 278528 ----a-w- c:\windows\SysWow64\Oemdspif.dll

2011-07-28 21:33 . 2011-07-28 21:33 21504 ----a-w- c:\windows\system32\atimuixx.dll

2011-07-28 21:33 . 2011-07-28 21:33 59392 ----a-w- c:\windows\system32\atiedu64.dll

2011-07-28 21:33 . 2011-07-28 21:33 43520 ----a-w- c:\windows\SysWow64\ati2edxx.dll

2011-07-28 21:30 . 2011-03-31 03:21 4198912 ----a-w- c:\windows\SysWow64\atidxx32.dll

2011-07-28 21:20 . 2011-03-31 03:13 4943360 ----a-w- c:\windows\system32\atidxx64.dll

2011-07-28 21:12 . 2011-07-28 21:12 1113088 ----a-w- c:\windows\system32\atiumd6v.dll

2011-07-28 21:11 . 2011-07-28 21:11 1828864 ----a-w- c:\windows\SysWow64\atiumdmv.dll

2011-07-28 21:11 . 2011-03-31 02:59 3871744 ----a-w- c:\windows\system32\atiumd6a.dll

2011-07-28 21:11 . 2011-07-28 21:11 51200 ----a-w- c:\windows\system32\aticalrt64.dll

2011-07-28 21:11 . 2011-07-28 21:11 46080 ----a-w- c:\windows\SysWow64\aticalrt.dll

2011-07-28 21:11 . 2011-07-28 21:11 44544 ----a-w- c:\windows\system32\aticalcl64.dll

2011-07-28 21:11 . 2011-07-28 21:11 44032 ----a-w- c:\windows\SysWow64\aticalcl.dll

2011-07-28 21:10 . 2011-07-28 21:10 9644544 ----a-w- c:\windows\system32\aticaldd64.dll

2011-07-28 21:09 . 2011-03-31 03:03 4256768 ----a-w- c:\windows\SysWow64\atiumdag.dll

2011-07-28 21:07 . 2011-07-28 21:07 8247296 ----a-w- c:\windows\SysWow64\aticaldd.dll

2011-07-28 21:03 . 2011-03-31 02:51 4056064 ----a-w- c:\windows\SysWow64\atiumdva.dll

2011-07-28 21:02 . 2011-03-31 02:58 5399040 ----a-w- c:\windows\system32\atiumd64.dll

2011-07-28 21:01 . 2011-03-31 02:53 58880 ----a-w- c:\windows\system32\coinst.dll

2011-07-28 20:54 . 2011-07-28 20:54 378368 ----a-w- c:\windows\system32\atiadlxx.dll

2011-07-28 20:54 . 2011-07-28 20:54 266240 ----a-w- c:\windows\SysWow64\atiadlxy.dll

2011-07-28 20:54 . 2011-07-28 20:54 15360 ----a-w- c:\windows\system32\atig6pxx.dll

2011-07-28 20:54 . 2011-07-28 20:54 13312 ----a-w- c:\windows\SysWow64\atiglpxx.dll

2011-07-28 20:54 . 2011-07-28 20:54 13312 ----a-w- c:\windows\system32\atiglpxx.dll

2011-07-28 20:54 . 2011-07-28 20:54 39936 ----a-w- c:\windows\system32\atig6txx.dll

2011-07-28 20:54 . 2011-07-28 20:54 32768 ----a-w- c:\windows\SysWow64\atigktxx.dll

2011-07-28 20:54 . 2011-07-28 20:54 309248 ----a-w- c:\windows\system32\drivers\atikmpag.sys

2011-07-28 20:53 . 2011-03-31 02:50 40960 ----a-w- c:\windows\system32\atiuxp64.dll

2011-07-28 20:53 . 2011-03-31 02:50 31744 ----a-w- c:\windows\SysWow64\atiuxpag.dll

2011-07-28 20:53 . 2011-03-31 02:50 38912 ----a-w- c:\windows\system32\atiu9p64.dll

2011-07-28 20:53 . 2011-03-31 02:49 29184 ----a-w- c:\windows\SysWow64\atiu9pag.dll

2011-07-28 20:52 . 2011-07-28 20:52 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll

2011-07-28 20:51 . 2011-07-28 20:51 53760 ----a-w- c:\windows\system32\atimpc64.dll

2011-07-28 20:51 . 2011-07-28 20:51 53760 ----a-w- c:\windows\system32\amdpcom64.dll

2011-07-28 20:51 . 2011-07-28 20:51 52736 ----a-w- c:\windows\SysWow64\atimpc32.dll

2011-07-28 20:51 . 2011-07-28 20:51 52736 ----a-w- c:\windows\SysWow64\amdpcom32.dll

2011-07-28 15:49 . 2011-07-28 15:49 60416 ----a-w- c:\windows\system32\OVDecode64.dll

2011-07-28 15:49 . 2011-07-28 15:49 53760 ----a-w- c:\windows\SysWow64\OVDecode.dll

2011-07-28 15:48 . 2011-07-28 15:48 51200 ----a-w- c:\windows\system32\OpenCL.dll

2011-07-28 15:48 . 2011-07-28 15:48 43520 ----a-w- c:\windows\SysWow64\OpenCL.dll

2011-07-28 15:48 . 2011-07-28 15:48 16552960 ----a-w- c:\windows\system32\amdocl64.dll

2011-07-28 15:48 . 2011-07-28 15:48 13555712 ----a-w- c:\windows\SysWow64\amdocl.dll

2011-07-16 04:26 . 2011-09-19 13:27 44032 ----a-w- c:\windows\apppatch\acwow64.dll

2011-07-12 09:34 . 2011-07-12 09:34 96104 ----a-w- c:\windows\system32\dns-sd.exe

2011-07-12 09:34 . 2011-07-12 09:34 85864 ----a-w- c:\windows\system32\dnssd.dll

2011-07-12 09:34 . 2011-07-12 09:34 61288 ----a-w- c:\windows\system32\jdns_sd.dll

2011-07-12 09:34 . 2011-07-12 09:34 212840 ----a-w- c:\windows\system32\dnssdX.dll

2011-07-12 09:20 . 2011-07-12 09:20 83816 ----a-w- c:\windows\SysWow64\dns-sd.exe

2011-07-12 09:20 . 2011-07-12 09:20 73064 ----a-w- c:\windows\SysWow64\dnssd.dll

2011-07-12 09:20 . 2011-07-12 09:20 50536 ----a-w- c:\windows\SysWow64\jdns_sd.dll

2011-07-12 09:20 . 2011-07-12 09:20 178536 ----a-w- c:\windows\SysWow64\dnssdX.dll

2011-07-05 16:37 . 2011-07-05 16:37 94208 ----a-w- c:\windows\SysWow64\QuickTimeVR.qtx

2011-07-05 16:37 . 2011-07-05 16:37 69632 ----a-w- c:\windows\SysWow64\QuickTime.qts

.

.

((((((((((((((((((((((((((((( SnapShot@2011-09-25_12.53.07 )))))))))))))))))))))))))))))))))))))))))

.

- 2009-07-14 05:10 . 2011-09-25 12:35 24690 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin

+ 2009-07-14 05:10 . 2011-09-25 14:28 24690 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin

+ 2011-09-21 22:20 . 2011-09-25 15:00 88102 c:\windows\Installer\{8D0A0350-B509-B362-4827-63E4C6520E7B}\NewShortcut5_3B1A0823966A48909E77539C330FBF6E.exe

- 2011-09-21 22:20 . 2011-09-24 13:41 88102 c:\windows\Installer\{8D0A0350-B509-B362-4827-63E4C6520E7B}\NewShortcut5_3B1A0823966A48909E77539C330FBF6E.exe

+ 2011-09-21 22:20 . 2011-09-25 15:00 88102 c:\windows\Installer\{8D0A0350-B509-B362-4827-63E4C6520E7B}\NewShortcut4_3B1A0823966A48909E77539C330FBF6E.exe

- 2011-09-21 22:20 . 2011-09-24 13:41 88102 c:\windows\Installer\{8D0A0350-B509-B362-4827-63E4C6520E7B}\NewShortcut4_3B1A0823966A48909E77539C330FBF6E.exe

+ 2011-09-21 22:20 . 2011-09-25 15:00 88102 c:\windows\Installer\{8D0A0350-B509-B362-4827-63E4C6520E7B}\NewShortcut3_3B1A0823966A48909E77539C330FBF6E.exe

- 2011-09-21 22:20 . 2011-09-24 13:41 88102 c:\windows\Installer\{8D0A0350-B509-B362-4827-63E4C6520E7B}\NewShortcut3_3B1A0823966A48909E77539C330FBF6E.exe

+ 2011-09-21 22:20 . 2011-09-25 15:00 88102 c:\windows\Installer\{8D0A0350-B509-B362-4827-63E4C6520E7B}\NewShortcut2_3B1A0823966A48909E77539C330FBF6E.exe

- 2011-09-21 22:20 . 2011-09-24 13:41 88102 c:\windows\Installer\{8D0A0350-B509-B362-4827-63E4C6520E7B}\NewShortcut2_3B1A0823966A48909E77539C330FBF6E.exe

+ 2011-09-24 13:41 . 2011-09-25 15:00 88102 c:\windows\Installer\{8D0A0350-B509-B362-4827-63E4C6520E7B}\ARPPRODUCTICON.exe

- 2011-09-24 13:41 . 2011-09-24 13:41 88102 c:\windows\Installer\{8D0A0350-B509-B362-4827-63E4C6520E7B}\ARPPRODUCTICON.exe

+ 2011-09-25 15:00 . 2011-09-25 15:00 88102 c:\windows\Installer\{1F4748E6-E093-FA89-7999-737F48C4767F}\ARPPRODUCTICON.exe

- 2011-09-24 13:41 . 2011-09-24 13:41 88102 c:\windows\Installer\{1F4748E6-E093-FA89-7999-737F48C4767F}\ARPPRODUCTICON.exe

+ 2011-09-18 21:34 . 2011-09-25 14:28 5174 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-4153062535-237700957-4286186150-1000_UserData.bin

- 2011-09-25 12:08 . 2011-09-25 12:33 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat

+ 2011-09-25 12:08 . 2011-09-25 14:26 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat

+ 2011-09-25 12:08 . 2011-09-25 14:26 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat

- 2011-09-25 12:08 . 2011-09-25 12:33 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat

- 2010-11-21 16:48 . 2011-09-25 12:44 703664 c:\windows\system32\perfh013.dat

+ 2010-11-21 16:48 . 2011-09-25 14:31 703664 c:\windows\system32\perfh013.dat

+ 2009-07-14 02:36 . 2011-09-25 14:31 618108 c:\windows\system32\perfh009.dat

- 2009-07-14 02:36 . 2011-09-25 12:44 618108 c:\windows\system32\perfh009.dat

- 2010-11-21 16:48 . 2011-09-25 12:44 134564 c:\windows\system32\perfc013.dat

+ 2010-11-21 16:48 . 2011-09-25 14:31 134564 c:\windows\system32\perfc013.dat

+ 2009-07-14 02:36 . 2011-09-25 14:31 107388 c:\windows\system32\perfc009.dat

- 2009-07-14 02:36 . 2011-09-25 12:44 107388 c:\windows\system32\perfc009.dat

+ 2011-08-10 14:40 . 2011-08-10 14:40 622592 c:\windows\Installer\1f86d5.msi

+ 2011-08-10 14:44 . 2011-08-10 14:44 6771712 c:\windows\Installer\1f86e2.msi

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"msnmsgr"="c:\program files (x86)\Windows Live\Messenger\msnmsgr.exe" [2011-05-13 4283256]

"BitTorrent"="c:\program files (x86)\BitTorrent\BitTorrent.exe" [2011-09-19 4992880]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"IAStorIcon"="c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" [2011-05-20 284440]

"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2011-04-14 113288]

"HP Quick Launch"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2011-06-14 587320]

"HPOSD"="c:\program files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe" [2011-06-13 336440]

"RemoteControl11"="c:\program files (x86)\CyberLink\PowerDVD11\PDVD11Serv.exe" [2011-09-14 230696]

"NBAgent"="c:\program files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" [2010-03-26 1234216]

"VirtualCloneDrive"="c:\program files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" [2011-03-07 89456]

"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]

"AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]

"HP CoolSense"="c:\program files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" [2011-03-11 1502776]

"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-07-28 336384]

"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-07-05 421888]

"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2011-08-18 421736]

"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]

"TaskTray"="" [bU]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]

"ST Recovery Launcher"="c:\windows\SMINST\launcher.exe" [2007-03-09 44168]

.

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\

Stardock MyColors.lnk - c:\program files (x86)\Stardock\MyColors\SDDelayedLaunch.exe [2010-8-3 11520]

.

c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

IconPackager.lnk - c:\program files (x86)\Stardock\MyColors\IconPackager.exe [2010-8-3 1387688]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 0 (0x0)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableLUA"= 0 (0x0)

"EnableUIADesktopToggle"= 0 (0x0)

"PromptOnSecureDesktop"= 0 (0x0)

"EnableLinkedConnections"= 1 (0x1)

.

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]

Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

@="Service"

.

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-06-21 85560]

R2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-07-21 103992]

R3 cpudrv64;cpudrv64;c:\program files (x86)\SystemRequirementsLab\cpudrv64.sys [2009-12-18 17864]

R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536]

R3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [x]

R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2011-01-05 340240]

R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]

R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-04-27 288272]

R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]

R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]

R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]

R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [x]

R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x]

R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]

S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]

S2 {329F96B6-DF1E-4328-BFDA-39EA953C1312};Power Control [2011/09/19 23:40];c:\program files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl [2011-08-25 11:06 148976]

S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe [2009-03-02 89600]

S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]

S2 CLHNServiceForPowerDVD;CLHNServiceForPowerDVD;c:\program files (x86)\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe [2011-08-24 83240]

S2 CyberLink PowerDVD 11.0 Monitor Service;CyberLink PowerDVD 11.0 Monitor Service;c:\program files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe [2011-08-26 75048]

S2 CyberLink PowerDVD 11.0 Service;CyberLink PowerDVD 11.0 Service;c:\program files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe [2011-08-26 292136]

S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-07-05 227384]

S2 HPWMISVC;HPWMISVC;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2011-06-14 26680]

S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-05-20 13592]

S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]

S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]

S2 ntk_PowerDVD;ntk_PowerDVD;c:\program files (x86)\CyberLink\PowerDVD11\Kernel\DMP\ntk_PowerDVD_64.sys [2011-08-24 75248]

S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-01-31 2656280]

S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]

S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]

S3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys [x]

S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]

S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [x]

S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys [x]

S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]

S3 MEIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]

S3 NETwNs64;___ Intel® Wireless WiFi Link 5000 Series adapter stuurprogramma onder Windows 7 64 Bit;c:\windows\system32\DRIVERS\NETwNs64.sys [x]

S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [x]

S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [x]

S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]

S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [x]

S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]

S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]

.

.

--- Andere Services/Drivers In Geheugen ---

.

*NewlyCreated* - CPUZ135

*Deregistered* - cpuz135

.

Inhoud van de 'Gedeelde Taken' map

.

2011-09-25 c:\windows\Tasks\AutoKMS.job

- c:\windows\AutoKMS\AutoKMS.exe [2011-09-19 21:56]

.

2011-09-25 c:\windows\Tasks\AutoKMSDaily.job

- c:\windows\AutoKMS\AutoKMS.exe [2011-09-19 21:56]

.

2011-09-24 c:\windows\Tasks\Driver Robot.job

- c:\program files (x86)\Driver Robot\1.2.0.5\DriverRobot.exe [2011-09-24 15:29]

.

.

--------- x86-64 -----------

.

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IntelWireless"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-01-05 1933584]

"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2010-07-21 8192]

"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [bU]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-01-27 167960]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-01-27 391704]

"Persistence"="c:\windows\system32\igfxpers.exe" [2011-01-27 418328]

"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 1436736]

"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2011-03-03 1128448]

"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]

"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]

.

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]

"{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "c:\program files\Stardock\Fences Pro\FencesMenu64.dll" [2010-12-03 464744]

.

------- Bijkomende Scan -------

.

uLocal Page = c:\windows\system32\blank.htm

uStart Page = hxxp://www.google.nl/

mLocal Page = c:\windows\SysWOW64\blank.htm

uInternet Settings,ProxyOverride = *.local

IE: Afbeelding verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

IE: Pagina verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

TCP: DhcpNameServer = 213.46.228.196 62.179.104.196 192.168.1.1

.

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\{329F96B6-DF1E-4328-BFDA-39EA953C1312}]

"ImagePath"="\??\c:\program files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl"

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

.

[HKEY_USERS\S-1-5-21-4153062535-237700957-4286186150-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="WindowsLiveMail.Email.1"

.

[HKEY_USERS\S-1-5-21-4153062535-237700957-4286186150-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="WindowsLiveMail.VCard.1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10w_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10w_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.10"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]

@Denied: (A 2) (Everyone)

@="IFlashBroker4"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Voltooingstijd: 2011-09-25 18:34:52

ComboFix-quarantined-files.txt 2011-09-25 16:34

ComboFix2.txt 2011-09-25 14:35

.

Pre-Run: 623.056.896.000 bytes beschikbaar

Post-Run: 622.789.967.872 bytes beschikbaar

.

- - End Of File - - D3B2A3C0B6949ED7DB5524DA9FA04530

[halsie]

het lijkt veel voor te komen als ik op een link klik op internet dan opent hij hem niet (geen internet?) en paar seconden later slaat hij dan vast.. dit is al een paar keer gebeurd heb al nieuwe drivers gedownload van me wirreles lan maar maakt geen verschil.

Maar ook toen ik toenstrax gewoon een film aan het kijken was sloeg hij vast.

Dacht miss kunnen jullie hier wat mee.

groetjes Nick

[kweezie wabbit]

Ik zie hier verwijzingen naar IOBIT maar geen actieve onderdelen.

Heb je IOBIT (advanced system care) ooit geinstalleerd en daarna weer verwijderd ofzo?

IOBIT onderdelen zijn niet echt effectief en vormen soms een veiligheidsrisico. Er zijn andere programma's en tools die beter en veiliger zijn dan IOBIT advanced system care.

Als IOBIT nog geinstalleerd is, kan je deze dus beter verwijderen.

Ik zie ook dat KMS keygenerator actief is op je systeem.

Waar heb je die voor nodig (gehad)?

De KMS keygenerator wordt gebruikt om illegaal verkregen software te installeren en vormt een ernstig veiligheidsrisico. Ik raad je dan ook aan om deze zo snel mogelijk te verwijderen.

Nadat je IOBIT en KMS keygenerator verwijderd hebt, maak je een nieuw logje met combofix en plaats dit in een volgend bericht.

[halsie]

Goede morgen!

Ik denk dat iobit is geinstalleerd door mijn collega omdat hij het vermoeden had dat het aan een driver probleem lag heb dit programma later zelf weer verwijderd want vertrouwde het niet..

Wat zou eventueel wel een goed programma zijn die kijkt of de drivers in orde zijn en geen conflicten veroorzaken?

Maar beide bestanden zijn geinstalleerd na het probleem!

En de KMS keygenerator die heb ik gebruikt omdat me vriendin ineens dringent office nodig had en ik erachter kwam dat mijne was verlopen.

Ik heb nu beide bestanden verwijderd en zal strax na me slaap (kom net uit me nachtdienst) weer een nieuwe scan gaan maken.

Bedankt voor je tijd wederom! P.s sloeg net zelfs op tilt tijdens het typen van een bericht op het forum

mvg Nick

26 september 2011 aangepast door halsie

[halsie]

ComboFix 11-09-26.01 - Nick 26-09-2011 16:38:55.5.8 - x64

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.8140.5931 [GMT 2:00]

Gestart vanuit: c:\users\Nick\Desktop\ICS_Ds64.exe

AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}

SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

(((((((((((((((((((( Bestanden Gemaakt van 2011-08-26 to 2011-09-26 ))))))))))))))))))))))))))))))

.

.

2011-09-26 14:42 . 2011-09-26 14:42 -------- d-----w- c:\users\Default\AppData\Local\temp

2011-09-26 14:21 . 2011-09-26 14:21 69000 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{152C8599-556D-4AFD-B90C-A42A8901C88B}\offreg.dll

2011-09-25 19:08 . 2011-09-13 00:26 9049936 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{152C8599-556D-4AFD-B90C-A42A8901C88B}\mpengine.dll

2011-09-25 18:03 . 2011-09-25 18:03 -------- d-----w- c:\windows\Sun

2011-09-25 18:03 . 2011-09-25 18:03 -------- d-----w- c:\program files (x86)\Common Files\Java

2011-09-25 18:02 . 2011-09-25 18:02 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll

2011-09-25 18:02 . 2011-09-25 18:02 -------- d-----w- c:\program files (x86)\Java

2011-09-25 12:44 . 2011-09-25 12:44 -------- d-----w- c:\program files (x86)\SystemRequirementsLab

2011-09-24 14:41 . 2011-09-24 14:42 -------- d-----w- c:\program files (x86)\EnterImage

2011-09-24 14:02 . 2009-08-23 05:02 120336 ----a-w- c:\windows\system32\drivers\AtiHdmi.sys

2011-09-24 13:57 . 2011-09-24 13:57 -------- d-----w- c:\program files (x86)\Common Files\Intel Corporation

2011-09-24 13:49 . 2011-09-24 13:49 -------- d-----w- c:\windows\SysWow64\sda

2011-09-24 13:49 . 2010-10-29 21:11 9888360 ----a-w- c:\windows\SysWow64\RtsUStoricon.dll

2011-09-24 13:49 . 2010-10-29 21:11 422504 ----a-w- c:\windows\system32\RtsUStor.dll

2011-09-24 13:47 . 2011-05-20 07:53 557848 ----a-w- c:\windows\system32\drivers\iaStor.sys

2011-09-24 13:44 . 2011-08-24 01:57 74272 ----a-w- c:\windows\system32\RtNicProp64.dll

2011-09-24 13:44 . 2011-08-24 01:57 565352 ----a-w- c:\windows\system32\drivers\Rt64win7.sys

2011-09-24 13:43 . 2011-09-24 13:43 -------- d-----w- c:\program files\Common Files\ATI Technologies

2011-09-24 13:43 . 2011-09-24 13:43 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies

2011-09-24 13:35 . 2011-09-24 13:35 -------- d-----w- c:\program files (x86)\Driver-Soft

2011-09-24 13:30 . 2011-09-24 13:30 -------- d-----w- c:\program files (x86)\Driver Robot

2011-09-24 12:44 . 2011-09-24 12:44 41272 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys

2011-09-24 12:01 . 2011-09-24 12:01 -------- d-----w- c:\programdata\Malwarebytes

2011-09-24 12:01 . 2011-08-31 15:00 25416 ----a-w- c:\windows\system32\drivers\mbam.sys

2011-09-24 12:01 . 2011-09-24 12:01 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware

2011-09-23 10:03 . 2011-09-23 10:03 -------- d-----w- c:\program files (x86)\Trend Micro

2011-09-22 19:54 . 2011-09-22 19:54 -------- d-----w- c:\program files\Speccy

2011-09-22 17:35 . 2009-02-21 02:32 106496 ----a-w- c:\windows\DreamAquarium.scr

2011-09-22 17:35 . 2011-09-22 17:38 -------- d-----w- c:\program files (x86)\Dream Aquarium

2011-09-22 17:22 . 2011-09-22 17:22 -------- d-----w- c:\program files (x86)\Marine Aquarium

2011-09-22 12:26 . 2009-05-18 11:17 34152 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys

2011-09-22 12:26 . 2008-04-17 10:12 126312 ----a-w- c:\windows\system32\GEARAspi64.dll

2011-09-22 12:25 . 2011-09-22 12:25 -------- d-----w- c:\program files (x86)\QuickTime

2011-09-22 12:25 . 2011-09-22 12:25 -------- d-----w- c:\program files (x86)\Apple Software Update

2011-09-22 12:25 . 2011-09-22 12:25 -------- d-----w- c:\program files\Common Files\Apple

2011-09-22 12:25 . 2011-09-22 12:25 -------- d-----w- c:\program files\Bonjour

2011-09-22 12:25 . 2011-09-22 12:25 -------- d-----w- c:\program files (x86)\Bonjour

2011-09-22 12:25 . 2011-09-22 12:29 -------- d-----w- c:\programdata\Apple

2011-09-22 12:25 . 2011-09-22 12:26 -------- d-----w- c:\program files (x86)\Common Files\Apple

2011-09-21 22:37 . 2011-09-21 22:37 -------- d-----w- C:\AMD

2011-09-21 22:21 . 2011-09-21 22:21 -------- d-----w- c:\programdata\ATI

2011-09-21 22:21 . 2011-09-21 22:21 -------- d-----w- c:\program files (x86)\AMD APP

2011-09-21 22:19 . 2011-09-21 22:19 -------- d-----w- C:\ATI

2011-09-20 22:12 . 2011-09-20 22:12 -------- d-----w- c:\program files (x86)\MSXML 4.0

2011-09-20 22:10 . 2011-09-13 00:26 9049936 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll

2011-09-20 10:57 . 2011-09-20 10:57 -------- d-----w- c:\programdata\regid.1986-12.com.adobe

2011-09-20 10:55 . 2011-09-20 10:57 -------- d-----w- c:\program files\Common Files\Adobe

2011-09-20 10:54 . 2011-09-20 10:54 -------- d-----w- c:\program files (x86)\Adobe Media Player

2011-09-20 10:52 . 2011-09-20 10:52 -------- d-----w- c:\program files (x86)\Common Files\Adobe AIR

2011-09-20 10:50 . 2011-09-20 10:56 -------- d-----w- c:\program files (x86)\Common Files\Adobe

2011-09-20 10:38 . 2004-03-29 14:23 90112 ----a-w- c:\windows\unvise32.exe

2011-09-20 10:38 . 2011-09-20 10:38 -------- d-----w- c:\program files (x86)\LooksBuilderSE

2011-09-20 10:35 . 2011-09-20 10:35 -------- d-----w- c:\program files (x86)\Common Files\Pinnacle

2011-09-20 10:31 . 2011-09-20 10:37 -------- d-----w- c:\program files (x86)\Avid

2011-09-20 10:31 . 2011-09-20 10:31 -------- d-----w- c:\program files (x86)\Common Files\Pegasus Imaging

2011-09-20 10:31 . 2011-09-20 10:31 -------- d-----w- c:\program files (x86)\Pinnacle

2011-09-20 10:26 . 2011-09-20 10:43 -------- d-----w- c:\programdata\Pinnacle

2011-09-20 10:24 . 2008-10-27 08:04 518480 ----a-w- c:\windows\system32\XAudio2_3.dll

2011-09-20 10:20 . 2011-09-20 10:20 -------- d-----w- c:\program files (x86)\Elaborate Bytes

2011-09-19 22:12 . 2011-09-19 22:17 -------- d-----w- c:\programdata\Nero

2011-09-19 22:11 . 2011-09-19 22:12 -------- d-----w- c:\program files (x86)\Common Files\Nero

2011-09-19 22:11 . 2011-09-19 22:17 -------- d-----w- c:\program files (x86)\Nero

2011-09-19 22:04 . 2009-09-04 15:29 1974616 ----a-w- c:\windows\SysWow64\D3DCompiler_42.dll

2011-09-19 22:04 . 2009-09-04 15:29 1892184 ----a-w- c:\windows\SysWow64\D3DX9_42.dll

2011-09-19 22:04 . 2008-10-15 04:22 4379984 ----a-w- c:\windows\SysWow64\D3DX9_40.dll

2011-09-19 22:04 . 2007-07-19 16:14 3727720 ----a-w- c:\windows\SysWow64\d3dx9_35.dll

2011-09-19 22:04 . 2007-05-16 14:45 3497832 ----a-w- c:\windows\SysWow64\d3dx9_34.dll

2011-09-19 21:52 . 2011-09-19 21:52 -------- d-----w- c:\program files\Microsoft Synchronization Services

2011-09-19 21:51 . 2011-09-19 21:51 -------- d-----w- c:\program files\Microsoft Sync Framework

2011-09-19 21:51 . 2011-09-19 21:51 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition

2011-09-19 21:50 . 2011-09-19 21:50 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 8

2011-09-19 21:50 . 2011-09-19 21:50 -------- d-----w- c:\program files\Microsoft Analysis Services

2011-09-19 21:50 . 2011-09-19 21:50 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services

2011-09-19 21:49 . 2011-09-23 10:57 -------- d-----w- c:\programdata\Microsoft Help

2011-09-19 21:49 . 2011-09-19 21:49 -------- d-----r- C:\MSOCache

2011-09-19 21:39 . 2011-09-19 21:39 -------- d-----w- c:\program files (x86)\CyberLink

2011-09-19 21:01 . 2011-09-19 21:01 -------- d-----w- c:\users\Public\CyberLink

2011-09-19 20:50 . 2011-09-19 20:50 -------- d-----w- c:\programdata\PDVD

2011-09-19 20:50 . 2011-09-19 21:35 -------- d-----w- c:\programdata\CyberLink

2011-09-19 20:48 . 2011-09-19 20:48 -------- d-----w- c:\programdata\install_clap

2011-09-19 17:53 . 2011-09-22 12:12 -------- d-----w- c:\program files (x86)\BitTorrent

2011-09-19 17:37 . 2011-09-19 17:39 -------- d-----w- C:\System Recovery

2011-09-19 16:31 . 2011-09-26 14:22 -------- d-----w- c:\windows\SMINST

2011-09-19 16:31 . 2007-03-19 13:03 241664 ----a-w- c:\windows\SysWow64\HPEvents.dll

2011-09-19 16:31 . 2006-10-13 13:15 499712 ----a-w- c:\windows\SysWow64\msvcp71.dll

2011-09-19 16:31 . 2006-10-13 13:15 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll

2011-09-19 16:31 . 2005-10-10 09:03 266240 ----a-w- c:\windows\SysWow64\ShellvRTF64.dll

2011-09-19 16:31 . 2003-03-19 02:03 544768 ----a-w- c:\windows\SysWow64\msvcr71d.dll

2011-09-19 16:31 . 2002-09-20 18:42 122880 ----a-w- c:\windows\SysWow64\ShellvRTF.dll

2011-09-19 16:30 . 2011-09-19 16:30 -------- d-----w- c:\program files (x86)\Common Files\InstallShield

2011-09-19 16:02 . 2011-09-19 16:02 -------- d-----w- c:\program files (x86)\VideoLAN

2011-09-19 15:57 . 2011-09-19 15:57 -------- d-----w- c:\programdata\LightScribe

2011-09-19 15:49 . 2011-09-19 15:50 -------- d-----w- c:\programdata\Hewlett-Packard

2011-09-19 15:48 . 2011-09-19 15:48 -------- d-----w- c:\programdata\{D3B41B92-9BC2-43EB-916A-4FA9E8191837}

2011-09-19 15:34 . 2011-09-19 15:34 -------- d-----w- c:\program files\IDT

2011-09-19 15:22 . 2011-09-19 15:22 601424 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{FEA082E2-851F-4D4F-803D-3DCBB7D1723D}\gapaengine.dll

2011-09-19 15:21 . 2011-09-19 15:22 -------- d-----w- c:\program files (x86)\Microsoft Security Client

2011-09-19 15:21 . 2011-09-19 15:22 -------- d-----w- c:\program files\Microsoft Security Client

2011-09-19 14:41 . 2011-09-19 14:41 -------- d-----w- C:\HP

2011-09-19 14:25 . 2011-09-19 14:25 -------- d-----w- c:\windows\nl

2011-09-19 14:23 . 2011-09-19 14:23 -------- d-----w- c:\program files (x86)\Microsoft SQL Server Compact Edition

2011-09-19 14:21 . 2011-09-22 12:26 -------- dc----w- c:\windows\system32\DRVSTORE

2011-09-19 14:21 . 2011-09-19 14:26 -------- d-----w- c:\program files (x86)\Windows Live

2011-09-19 14:21 . 2011-05-13 13:37 48488 ----a-w- c:\windows\system32\drivers\fssfltr.sys

2011-09-19 14:21 . 2011-09-19 14:21 -------- d-----w- c:\windows\PCHEALTH

2011-09-19 14:21 . 2011-09-19 14:21 -------- d-----w- c:\program files\Windows Live

2011-09-19 14:20 . 2011-09-19 17:51 -------- d-----w- c:\program files (x86)\Microsoft

2011-09-19 14:20 . 2009-09-04 15:44 69464 ----a-w- c:\windows\SysWow64\XAPOFX1_3.dll

2011-09-19 14:20 . 2009-09-04 15:44 515416 ----a-w- c:\windows\SysWow64\XAudio2_5.dll

2011-09-19 14:20 . 2009-09-04 15:29 453456 ----a-w- c:\windows\SysWow64\d3dx10_42.dll

2011-09-19 14:20 . 2009-09-04 15:29 523088 ----a-w- c:\windows\system32\d3dx10_42.dll

2011-09-19 14:19 . 2006-11-29 11:06 4398360 ----a-w- c:\windows\system32\d3dx9_32.dll

2011-09-19 14:19 . 2006-11-29 11:06 3426072 ----a-w- c:\windows\SysWow64\d3dx9_32.dll

2011-09-19 14:19 . 2011-09-19 15:04 -------- d-----w- c:\program files (x86)\Microsoft Silverlight

2011-09-19 14:18 . 2011-09-19 14:18 -------- d-----w- c:\program files (x86)\Common Files\Windows Live

2011-09-19 14:14 . 2011-09-19 14:14 -------- d-----w- c:\program files (x86)\Common Files\Intel

2011-09-19 14:12 . 2011-09-19 14:12 0 ----a-w- c:\windows\ativpsrm.bin

2011-09-19 14:12 . 2011-09-19 14:14 -------- d-----w- c:\program files (x86)\ATI Technologies

2011-09-19 14:12 . 2011-09-21 22:21 -------- d-----w- c:\program files\ATI Technologies

2011-09-19 14:12 . 2011-09-19 14:12 -------- d-----w- c:\program files\ATI

2011-09-19 14:12 . 2011-09-19 14:12 -------- dc-h--w- c:\programdata\{345977C2-5084-446C-9181-6AB4FF7DBA08}

2011-09-19 14:12 . 2011-09-19 14:12 -------- d-----w- c:\program files\Stardock

2011-09-19 14:11 . 2011-09-19 14:11 -------- d-----w- c:\programdata\Stardock

2011-09-19 14:11 . 2011-09-19 14:11 -------- d-----w- c:\program files (x86)\Common Files\Stardock

2011-09-19 14:11 . 2010-09-15 09:08 53904 ----a-w- c:\windows\system32\wbload.dll

.

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2011-09-19 15:13 . 2009-07-13 23:57 20702720 ----a-w- c:\windows\system32\imageres.dll

2011-09-19 14:21 . 2011-03-28 16:36 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

2011-08-24 01:57 . 2010-01-05 14:39 107552 ----a-w- c:\windows\system32\RTNUninst64.dll

2011-07-28 22:23 . 2011-07-28 22:23 9980416 ----a-w- c:\windows\system32\drivers\atikmdag.sys

2011-07-28 22:09 . 2011-07-28 22:09 23921664 ----a-w- c:\windows\system32\atio6axx.dll

2011-07-28 21:44 . 2011-07-28 21:44 18388480 ----a-w- c:\windows\SysWow64\atioglxx.dll

2011-07-28 21:40 . 2011-07-28 21:40 151552 ----a-w- c:\windows\system32\atiapfxx.exe

2011-07-28 21:40 . 2011-03-31 03:31 726528 ----a-w- c:\windows\SysWow64\aticfx32.dll

2011-07-28 21:39 . 2011-03-31 03:30 852992 ----a-w- c:\windows\system32\aticfx64.dll

2011-07-28 21:36 . 2011-07-28 21:36 462848 ----a-w- c:\windows\system32\ATIDEMGX.dll

2011-07-28 21:36 . 2011-07-28 21:36 485376 ----a-w- c:\windows\system32\atieclxx.exe

2011-07-28 21:35 . 2011-07-28 21:35 204288 ----a-w- c:\windows\system32\atiesrxx.exe

2011-07-28 21:34 . 2011-07-28 21:34 120320 ----a-w- c:\windows\system32\atitmm64.dll

2011-07-28 21:34 . 2011-07-28 21:34 423424 ----a-w- c:\windows\system32\atipdl64.dll

2011-07-28 21:33 . 2011-07-28 21:33 356352 ----a-w- c:\windows\SysWow64\atipdlxx.dll

2011-07-28 21:33 . 2011-07-28 21:33 278528 ----a-w- c:\windows\SysWow64\Oemdspif.dll

2011-07-28 21:33 . 2011-07-28 21:33 21504 ----a-w- c:\windows\system32\atimuixx.dll

2011-07-28 21:33 . 2011-07-28 21:33 59392 ----a-w- c:\windows\system32\atiedu64.dll

2011-07-28 21:33 . 2011-07-28 21:33 43520 ----a-w- c:\windows\SysWow64\ati2edxx.dll

2011-07-28 21:30 . 2011-03-31 03:21 4198912 ----a-w- c:\windows\SysWow64\atidxx32.dll

2011-07-28 21:20 . 2011-03-31 03:13 4943360 ----a-w- c:\windows\system32\atidxx64.dll

2011-07-28 21:12 . 2011-07-28 21:12 1113088 ----a-w- c:\windows\system32\atiumd6v.dll

2011-07-28 21:11 . 2011-07-28 21:11 1828864 ----a-w- c:\windows\SysWow64\atiumdmv.dll

2011-07-28 21:11 . 2011-03-31 02:59 3871744 ----a-w- c:\windows\system32\atiumd6a.dll

2011-07-28 21:11 . 2011-07-28 21:11 51200 ----a-w- c:\windows\system32\aticalrt64.dll

2011-07-28 21:11 . 2011-07-28 21:11 46080 ----a-w- c:\windows\SysWow64\aticalrt.dll

2011-07-28 21:11 . 2011-07-28 21:11 44544 ----a-w- c:\windows\system32\aticalcl64.dll

2011-07-28 21:11 . 2011-07-28 21:11 44032 ----a-w- c:\windows\SysWow64\aticalcl.dll

2011-07-28 21:10 . 2011-07-28 21:10 9644544 ----a-w- c:\windows\system32\aticaldd64.dll

2011-07-28 21:09 . 2011-03-31 03:03 4256768 ----a-w- c:\windows\SysWow64\atiumdag.dll

2011-07-28 21:07 . 2011-07-28 21:07 8247296 ----a-w- c:\windows\SysWow64\aticaldd.dll

2011-07-28 21:03 . 2011-03-31 02:51 4056064 ----a-w- c:\windows\SysWow64\atiumdva.dll

2011-07-28 21:02 . 2011-03-31 02:58 5399040 ----a-w- c:\windows\system32\atiumd64.dll

2011-07-28 21:01 . 2011-03-31 02:53 58880 ----a-w- c:\windows\system32\coinst.dll

2011-07-28 20:54 . 2011-07-28 20:54 378368 ----a-w- c:\windows\system32\atiadlxx.dll

2011-07-28 20:54 . 2011-07-28 20:54 266240 ----a-w- c:\windows\SysWow64\atiadlxy.dll

2011-07-28 20:54 . 2011-07-28 20:54 15360 ----a-w- c:\windows\system32\atig6pxx.dll

2011-07-28 20:54 . 2011-07-28 20:54 13312 ----a-w- c:\windows\SysWow64\atiglpxx.dll

2011-07-28 20:54 . 2011-07-28 20:54 13312 ----a-w- c:\windows\system32\atiglpxx.dll

2011-07-28 20:54 . 2011-07-28 20:54 39936 ----a-w- c:\windows\system32\atig6txx.dll

2011-07-28 20:54 . 2011-07-28 20:54 32768 ----a-w- c:\windows\SysWow64\atigktxx.dll

2011-07-28 20:54 . 2011-07-28 20:54 309248 ----a-w- c:\windows\system32\drivers\atikmpag.sys

2011-07-28 20:53 . 2011-03-31 02:50 40960 ----a-w- c:\windows\system32\atiuxp64.dll

2011-07-28 20:53 . 2011-03-31 02:50 31744 ----a-w- c:\windows\SysWow64\atiuxpag.dll

2011-07-28 20:53 . 2011-03-31 02:50 38912 ----a-w- c:\windows\system32\atiu9p64.dll

2011-07-28 20:53 . 2011-03-31 02:49 29184 ----a-w- c:\windows\SysWow64\atiu9pag.dll

2011-07-28 20:52 . 2011-07-28 20:52 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll

2011-07-28 20:51 . 2011-07-28 20:51 53760 ----a-w- c:\windows\system32\atimpc64.dll

2011-07-28 20:51 . 2011-07-28 20:51 53760 ----a-w- c:\windows\system32\amdpcom64.dll

2011-07-28 20:51 . 2011-07-28 20:51 52736 ----a-w- c:\windows\SysWow64\atimpc32.dll

2011-07-28 20:51 . 2011-07-28 20:51 52736 ----a-w- c:\windows\SysWow64\amdpcom32.dll

2011-07-28 15:49 . 2011-07-28 15:49 60416 ----a-w- c:\windows\system32\OVDecode64.dll

2011-07-28 15:49 . 2011-07-28 15:49 53760 ----a-w- c:\windows\SysWow64\OVDecode.dll

2011-07-28 15:48 . 2011-07-28 15:48 51200 ----a-w- c:\windows\system32\OpenCL.dll

2011-07-28 15:48 . 2011-07-28 15:48 43520 ----a-w- c:\windows\SysWow64\OpenCL.dll

2011-07-28 15:48 . 2011-07-28 15:48 16552960 ----a-w- c:\windows\system32\amdocl64.dll

2011-07-28 15:48 . 2011-07-28 15:48 13555712 ----a-w- c:\windows\SysWow64\amdocl.dll

2011-07-16 04:26 . 2011-09-19 13:27 44032 ----a-w- c:\windows\apppatch\acwow64.dll

2011-07-12 09:34 . 2011-07-12 09:34 96104 ----a-w- c:\windows\system32\dns-sd.exe

2011-07-12 09:34 . 2011-07-12 09:34 85864 ----a-w- c:\windows\system32\dnssd.dll

2011-07-12 09:34 . 2011-07-12 09:34 61288 ----a-w- c:\windows\system32\jdns_sd.dll

2011-07-12 09:34 . 2011-07-12 09:34 212840 ----a-w- c:\windows\system32\dnssdX.dll

2011-07-12 09:20 . 2011-07-12 09:20 83816 ----a-w- c:\windows\SysWow64\dns-sd.exe

2011-07-12 09:20 . 2011-07-12 09:20 73064 ----a-w- c:\windows\SysWow64\dnssd.dll

2011-07-12 09:20 . 2011-07-12 09:20 50536 ----a-w- c:\windows\SysWow64\jdns_sd.dll

2011-07-12 09:20 . 2011-07-12 09:20 178536 ----a-w- c:\windows\SysWow64\dnssdX.dll

2011-07-05 16:37 . 2011-07-05 16:37 94208 ----a-w- c:\windows\SysWow64\QuickTimeVR.qtx

2011-07-05 16:37 . 2011-07-05 16:37 69632 ----a-w- c:\windows\SysWow64\QuickTime.qts

.

.

((((((((((((((((((((((((((((( SnapShot@2011-09-25_12.53.07 )))))))))))))))))))))))))))))))))))))))))

.

+ 2010-11-21 03:09 . 2011-09-26 14:24 43150 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin

+ 2009-07-14 05:10 . 2011-09-26 14:24 24882 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin

+ 2011-09-21 22:20 . 2011-09-25 15:00 88102 c:\windows\Installer\{8D0A0350-B509-B362-4827-63E4C6520E7B}\NewShortcut5_3B1A0823966A48909E77539C330FBF6E.exe

- 2011-09-21 22:20 . 2011-09-24 13:41 88102 c:\windows\Installer\{8D0A0350-B509-B362-4827-63E4C6520E7B}\NewShortcut5_3B1A0823966A48909E77539C330FBF6E.exe

+ 2011-09-21 22:20 . 2011-09-25 15:00 88102 c:\windows\Installer\{8D0A0350-B509-B362-4827-63E4C6520E7B}\NewShortcut4_3B1A0823966A48909E77539C330FBF6E.exe

- 2011-09-21 22:20 . 2011-09-24 13:41 88102 c:\windows\Installer\{8D0A0350-B509-B362-4827-63E4C6520E7B}\NewShortcut4_3B1A0823966A48909E77539C330FBF6E.exe

- 2011-09-21 22:20 . 2011-09-24 13:41 88102 c:\windows\Installer\{8D0A0350-B509-B362-4827-63E4C6520E7B}\NewShortcut3_3B1A0823966A48909E77539C330FBF6E.exe

+ 2011-09-21 22:20 . 2011-09-25 15:00 88102 c:\windows\Installer\{8D0A0350-B509-B362-4827-63E4C6520E7B}\NewShortcut3_3B1A0823966A48909E77539C330FBF6E.exe

+ 2011-09-21 22:20 . 2011-09-25 15:00 88102 c:\windows\Installer\{8D0A0350-B509-B362-4827-63E4C6520E7B}\NewShortcut2_3B1A0823966A48909E77539C330FBF6E.exe

- 2011-09-21 22:20 . 2011-09-24 13:41 88102 c:\windows\Installer\{8D0A0350-B509-B362-4827-63E4C6520E7B}\NewShortcut2_3B1A0823966A48909E77539C330FBF6E.exe

+ 2011-09-24 13:41 . 2011-09-25 15:00 88102 c:\windows\Installer\{8D0A0350-B509-B362-4827-63E4C6520E7B}\ARPPRODUCTICON.exe

- 2011-09-24 13:41 . 2011-09-24 13:41 88102 c:\windows\Installer\{8D0A0350-B509-B362-4827-63E4C6520E7B}\ARPPRODUCTICON.exe

+ 2011-09-25 15:00 . 2011-09-25 15:00 88102 c:\windows\Installer\{1F4748E6-E093-FA89-7999-737F48C4767F}\ARPPRODUCTICON.exe

- 2011-09-24 13:41 . 2011-09-24 13:41 88102 c:\windows\Installer\{1F4748E6-E093-FA89-7999-737F48C4767F}\ARPPRODUCTICON.exe

+ 2011-09-18 21:34 . 2011-09-26 14:24 5278 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-4153062535-237700957-4286186150-1000_UserData.bin

+ 2011-09-26 14:21 . 2011-09-26 14:21 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat

- 2011-09-25 12:08 . 2011-09-25 12:33 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat

+ 2011-09-26 14:21 . 2011-09-26 14:21 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat

- 2011-09-25 12:08 . 2011-09-25 12:33 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat

+ 2011-09-25 18:02 . 2011-09-25 18:02 157472 c:\windows\SysWOW64\javaws.exe

+ 2011-09-25 18:02 . 2011-09-25 18:02 145184 c:\windows\SysWOW64\javaw.exe

+ 2011-09-25 18:02 . 2011-09-25 18:02 145184 c:\windows\SysWOW64\java.exe

- 2010-11-21 16:48 . 2011-09-25 12:44 703664 c:\windows\system32\perfh013.dat

+ 2010-11-21 16:48 . 2011-09-26 14:27 703664 c:\windows\system32\perfh013.dat

+ 2009-07-14 02:36 . 2011-09-26 14:27 618108 c:\windows\system32\perfh009.dat

- 2009-07-14 02:36 . 2011-09-25 12:44 618108 c:\windows\system32\perfh009.dat

- 2010-11-21 16:48 . 2011-09-25 12:44 134564 c:\windows\system32\perfc013.dat

+ 2010-11-21 16:48 . 2011-09-26 14:27 134564 c:\windows\system32\perfc013.dat

+ 2009-07-14 02:36 . 2011-09-26 14:27 107388 c:\windows\system32\perfc009.dat

- 2009-07-14 02:36 . 2011-09-25 12:44 107388 c:\windows\system32\perfc009.dat

- 2009-07-14 05:01 . 2011-09-24 18:48 503464 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat

+ 2009-07-14 05:01 . 2011-09-26 05:25 503464 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat

+ 2011-09-25 18:02 . 2011-09-25 18:02 207360 c:\windows\Installer\c68bab.msi

+ 2011-08-10 14:40 . 2011-08-10 14:40 622592 c:\windows\Installer\1f86d5.msi

- 2011-09-19 14:59 . 2011-09-24 18:48 1572504 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat

+ 2011-09-19 14:59 . 2011-09-26 05:25 1572504 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat

+ 2011-09-19 14:59 . 2011-09-26 05:25 5547432 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-4153062535-237700957-4286186150-1000-12288.dat

+ 2011-08-10 14:44 . 2011-08-10 14:44 6771712 c:\windows\Installer\1f86e2.msi

+ 2011-09-25 18:02 . 2011-09-25 18:02 12866048 c:\windows\Installer\c68ba3.msi

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"msnmsgr"="c:\program files (x86)\Windows Live\Messenger\msnmsgr.exe" [2011-05-13 4283256]

"BitTorrent"="c:\program files (x86)\BitTorrent\BitTorrent.exe" [2011-09-19 4992880]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"IAStorIcon"="c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" [2011-05-20 284440]

"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2011-04-14 113288]

"HP Quick Launch"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2011-06-14 587320]

"HPOSD"="c:\program files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe" [2011-06-13 336440]

"RemoteControl11"="c:\program files (x86)\CyberLink\PowerDVD11\PDVD11Serv.exe" [2011-09-14 230696]

"NBAgent"="c:\program files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" [2010-03-26 1234216]

"VirtualCloneDrive"="c:\program files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" [2011-03-07 89456]

"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]

"AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]

"HP CoolSense"="c:\program files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" [2011-03-11 1502776]

"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-07-28 336384]

"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2011-07-05 421888]

"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2011-08-18 421736]

"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]

"TaskTray"="" [bU]

"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]

"ST Recovery Launcher"="c:\windows\SMINST\launcher.exe" [2007-03-09 44168]

.

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\

Stardock MyColors.lnk - c:\program files (x86)\Stardock\MyColors\SDDelayedLaunch.exe [2010-8-3 11520]

.

c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

IconPackager.lnk - c:\program files (x86)\Stardock\MyColors\IconPackager.exe [2010-8-3 1387688]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 0 (0x0)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableLUA"= 0 (0x0)

"EnableUIADesktopToggle"= 0 (0x0)

"PromptOnSecureDesktop"= 0 (0x0)

"EnableLinkedConnections"= 1 (0x1)

.

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]

Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

@="Service"

.

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

R3 cpudrv64;cpudrv64;c:\program files (x86)\SystemRequirementsLab\cpudrv64.sys [2009-12-18 17864]

R3 cpuz135;cpuz135;c:\users\Nick\AppData\Local\Temp\cpuz135\cpuz135_x64.sys [x]

R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536]

R3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [x]

R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2011-01-05 340240]

R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]

R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-04-27 288272]

R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]

R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]

R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]

R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [x]

R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x]

R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]

S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]

S2 {329F96B6-DF1E-4328-BFDA-39EA953C1312};Power Control [2011/09/19 23:40];c:\program files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl [2011-08-25 11:06 148976]

S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe [2009-03-02 89600]

S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]

S2 CLHNServiceForPowerDVD;CLHNServiceForPowerDVD;c:\program files (x86)\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe [2011-08-24 83240]

S2 CyberLink PowerDVD 11.0 Monitor Service;CyberLink PowerDVD 11.0 Monitor Service;c:\program files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe [2011-08-26 75048]

S2 CyberLink PowerDVD 11.0 Service;CyberLink PowerDVD 11.0 Service;c:\program files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe [2011-08-26 292136]

S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-06-21 85560]

S2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-07-21 103992]

S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-07-05 227384]

S2 HPWMISVC;HPWMISVC;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2011-06-14 26680]

S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-05-20 13592]

S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]

S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]

S2 ntk_PowerDVD;ntk_PowerDVD;c:\program files (x86)\CyberLink\PowerDVD11\Kernel\DMP\ntk_PowerDVD_64.sys [2011-08-24 75248]

S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-01-31 2656280]

S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]

S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]

S3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys [x]

S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]

S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [x]

S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys [x]

S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]

S3 MEIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]

S3 NETwNs64;___ Intel® Wireless WiFi Link 5000 Series adapter stuurprogramma onder Windows 7 64 Bit;c:\windows\system32\DRIVERS\NETwNs64.sys [x]

S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [x]

S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [x]

S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]

S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [x]

S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]

S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]

.

.

Inhoud van de 'Gedeelde Taken' map

.

2011-09-24 c:\windows\Tasks\Driver Robot.job

- c:\program files (x86)\Driver Robot\1.2.0.5\DriverRobot.exe [2011-09-24 15:29]

.

.

--------- x86-64 -----------

.

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IntelWireless"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-01-05 1933584]

"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2010-07-21 8192]

"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [bU]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-01-27 167960]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-01-27 391704]

"Persistence"="c:\windows\system32\igfxpers.exe" [2011-01-27 418328]

"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 1436736]

"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2011-03-03 1128448]

"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]

"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]

.

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]

"{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "c:\program files\Stardock\Fences Pro\FencesMenu64.dll" [2010-12-03 464744]

.

------- Bijkomende Scan -------

.

uLocal Page = c:\windows\system32\blank.htm

uStart Page = hxxp://www.google.nl/

mLocal Page = c:\windows\SysWOW64\blank.htm

uInternet Settings,ProxyOverride = *.local

IE: Afbeelding verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

IE: Pagina verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

TCP: DhcpNameServer = 213.46.228.196 62.179.104.196 192.168.1.1

.

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\{329F96B6-DF1E-4328-BFDA-39EA953C1312}]

"ImagePath"="\??\c:\program files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl"

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

.

[HKEY_USERS\S-1-5-21-4153062535-237700957-4286186150-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="WindowsLiveMail.Email.1"

.

[HKEY_USERS\S-1-5-21-4153062535-237700957-4286186150-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]

@Denied: (2) (LocalSystem)

"Progid"="WindowsLiveMail.VCard.1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10w_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10w_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.10"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]

@Denied: (A 2) (Everyone)

@="IFlashBroker4"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Voltooingstijd: 2011-09-26 16:44:00

ComboFix-quarantined-files.txt 2011-09-26 14:43

ComboFix2.txt 2011-09-26 14:37

ComboFix3.txt 2011-09-25 16:34

ComboFix4.txt 2011-09-25 14:35

.

Pre-Run: 628.234.674.176 bytes beschikbaar

Post-Run: 628.178.083.840 bytes beschikbaar

.

- - End Of File - - 8CD762F78F31BAB0015E138DD42E34A6

[halsie]

De computer was weer vastgeslagen ik had me prestaties geopend was benieuwd of er misschien een piek zou wezen maar denk dat er niets bijzonders op te zien is,

Dit is dus het moment dat de computer vast sloeg.

M.v.g Nick

26 september 2011 aangepast door halsie

[Gast correos]

Hallo Halsie,

De inspanningen van de grote kanonnen wil 'k hier niet mee doorkruisen,maar heb je al eens geprobeerd te werken zonder accu en enkel op netstroom?

Amicale groeten.

Correos.

[halsie]

Ik zit eigenlijk gewoon altijd aan het stroom.

Maar heb ook een 2e acu erbij geleverd gekregen en heb ik ook al een keer er in gehad en ook dit had geen resultaat! bedankt voor het meedenken!

groetjes nick