wy8

Member
  • Content Count

    8
  • Joined

  • Last visited

Community Reputation

0 Neutral

About wy8

  • Rank
    New Member
  1. It's ok Emsisoft sent me a working download link by e-mail I performed allready a smart scan, it found 6 objects (no risk) I don't know for sure if the download problem had anything to do with the browser, I use IE11 now, I have Chrome also All my other downloads are working fine usually
  2. I am a bit new with the latest Emsisoft software but they have good reviews for sure, so I wanted to try out for example that free Emsisoft Emergency Kit once for home purposes and perform a full scan of my pc but it didn't work! They always say: 'If download doesn't start immediately' click 'here (link) but that doesn't work either, it keep showing a turning indicator and one get simply sucked into an eternal loop or something like that. Maybe I did not follow exactly the right procedure possibly. Any tips should be welcome.
  3. Ja, alles kits, stel je voor ik heb al een hele dag kunnen surfen zonder pestkopperij, 't zal nog even wennen worden 8 - )
  4. Hier het rapport log van a2scan, ziet er goed uit, geen meldingen, bedankt Maxstar. Emsisoft Anti-Malware - Versie 7.0 Laatste Update: 4/12/2012 17:21:27 Scaninstellingen: Scantype: Diepe scan Objecten: Rootkits, Geheugen, Sporen, C:\, D:\, G:\ Detecteer riskware: Uit Scan archieven: Aan ADS Scan: Aan Bestandsextensiefilter: Uit Geavanceerde cache: Aan Directe schijftoegang: Uit Scan gestart: 5/12/2012 0:03:30 Gescand 524832 Gevonden 0 Scan geëindigd: 5/12/2012 3:03:58 Scantijd: 3:00:28
  5. dag Maxstar, hier het zoek.exe rapport log Zoek.exe Version 3.0.0.4 Updated 03-December-2012 Tool run by WALTERF10 on ma 03/12/2012 at 23:30:59,15. Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x86 Running in: Normal Mode Internet Access Detected ==== FireFox Fix ====================== ProfilePath: C:\Users\WALTERF10\AppData\Roaming\Mozilla\Firefox\Profiles\jt0qor0m.default ---- Lines conduit removed from prefs.js ---- ---- Lines conduit modified from prefs.js ---- ---- Lines conduit removed from user.js ---- ---- Lines blabbers.com removed from prefs.js ---- ---- Lines blabbers.com modified from prefs.js ---- user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"[email protected]\":{\"descriptor\":\"C:\\\\Program Files\\\\Mozilla Firefox\\\\extensions\\\\[email protected]\",\"mtime\":1327184781768},\"{20a82645-c095-46ed-80e3-08825760534b}\":{\"descriptor\":\"C:\\\\Windows\\\\Microsoft.NET\\\\Framework\\\\v3.5\\\\Windows Presentation Foundation\\\\DotNetAssistantExtension\",\"mtime\":1327184954834}}},{\"name\":\"app-global\",\"addons\":{\"[email protected]\":{\"descriptor\":\"C:\\\\Program Files\\\\Mozilla Firefox\\\\extensions\\\\[email protected]\",\"mtime\":1327184781768},\"{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\":{\"descriptor\":\"C:\\\\Program Files\\\\Mozilla Firefox\\\\extensions\\\\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\",\"mtime\":1335112488224},\"{972ce4c6-7e08-4474-a285-3208198ce6fd}\":{\"descriptor\":\"C:\\\\Program Files\\\\Mozilla Firefox\\\\extensions\\\\{972ce4c6-7e08-4474-a285-3208198ce6fd}\",\"mtime\":1346848783833},\"{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\":{\"descriptor\":\"C:\\\\Program Files\\\\Mozilla Firefox\\\\extensions\\\\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}\",\"mtime\":1340314402718},\"{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\":{\"descriptor\":\"C:\\\\Program Files\\\\Mozilla Firefox\\\\extensions\\\\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}\",\"mtime\":1346659727959},\"{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}\":{\"descriptor\":\"C:\\\\Program Files\\\\Mozilla Firefox\\\\extensions\\\\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}\",\"mtime\":1350812155675}}},{\"name\":\"app-profile\",\"addons\":{\"[email protected]\":{\"descriptor\":\"C:\\\\Users\\\\WALTERF10\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\jt0qor0m.default\\\\extensions\\\\[email protected]\",\"mtime\":1346848856099},\"[email protected]\":{\"descriptor\":\"C:\\\\Users\\\\WALTERF10\\\\AppData\\\\Roaming\\\\Mozilla\\\\Firefox\\\\Profiles\\\\jt0qor0m.default\\\\extensions\\\\[email protected]\",\"mtime\":1335123577202}}}]"); ---- Lines blabbers.com removed from user.js ---- ---- FireFox user.js and prefs.js backups ---- user_20120312_2333_.backup prefs_20120312_2333_.backup ==== Registry Fix Code ====================== Windows Registry Editor Version 5.00 [-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{30F9B915-B755-4826-820B-08FBA6BD249D}"=- [-HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}] ==== Deleting Files \ Folders ====================== "c:\program files\Conduit" deleted "C:\Program Files\Conduit" deleted "C:\Program Files\ConduitEngine" deleted "C:\Users\WALTERF10\AppData\Local\Ilivid Player" deleted "C:\Users\WALTERF10\AppData\LocalLow\Conduit" deleted "C:\Users\WALTERF10\AppData\Roaming\Mozilla\Firefox\Profiles\jt0qor0m.default\extensions\[email protected]" deleted "C:\Users\WALTERF10\AppData\Roaming\Mozilla\Firefox\Profiles\jt0qor0m.default\extensions\[email protected]" deleted ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2012-12-03 01:10:09 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe 2012-12-03 01:10:08 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe 2012-12-03 01:10:08 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe 2012-12-03 01:10:08 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe 2012-12-03 01:10:08 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe 2012-11-28 02:18:26 35B3D34B6B4663F196969356528A4092 290816 ----a-w- C:\Windows\RTKVADDA.EXE 2012-11-28 02:15:36 C9BA70A77A1BB142E215CA0A63B0AB8B 1694 ----a-w- C:\Windows\RtDefLvl.ini 2012-11-28 02:15:34 C8612E58FB7FCFA5EEA4E39F7B8CBC17 1826816 ----a-w- C:\Windows\SkyTel.exe 2012-11-28 02:15:34 9195C6308E6BBD798A1505D8D6367B65 1196032 ----a-w- C:\Windows\RtlUpd.exe 2012-11-28 02:15:31 E6CB83FF2C098C6FFCF2D43A4AAC9B54 6139904 ----a-w- C:\Windows\RtHDVCpl.exe 2012-11-28 02:15:24 B165E696B76ADA4D6C290B23E1750943 520192 ----a-w- C:\Windows\RtlExUpd.dll 2012-11-28 01:55:36 6A714E92C31CC703F292299C6E5BF1EB 553 ----a-w- C:\Windows\USetup.iss 2012-11-27 23:44:57 2D65F8DB74C36819896CF809E4375F0A 315392 ----a-w- C:\Windows\HideWin.exe ====== C:\Users\WALTER~1\AppData\Local\Temp ==== 2012-12-03 08:42:07 B2994EC6452DBD04E57828EEFEDFB93C 204800 ----a-w- C:\Users\WALTER~1\AppData\Local\Temp\RtkBtMnt.exe ====== C:\Windows\system32 ===== 2012-11-28 02:15:35 E5639080A7FFA5F03642F4D4CDB1E9CE 339968 ----a-w- C:\Windows\System32\SRSTSXT.dll 2012-11-28 02:15:35 E5276EFBB30760127EEE4C33732B4987 1777664 ----a-w- C:\Windows\System32\WavesLib.dll 2012-11-28 02:15:35 E067361E60FCAE24790B88135895F3C8 135168 ----a-w- C:\Windows\System32\SRSWOW.dll 2012-11-28 02:15:35 BA21C4B843B4B1DD787A660E17589F4D 185776 ----a-w- C:\Windows\System32\SRSTSHD.dll 2012-11-28 02:15:34 F58D0EC79EB61BD56D37A8123F88009E 532480 ----a-w- C:\Windows\System32\RTSndMgr.cpl 2012-11-28 02:15:34 1B8ADDE7421C12DBDF8AF58E2014CE62 167936 ----a-w- C:\Windows\System32\SRSHP360.dll 2012-11-28 02:15:33 E0416CC2779A20741D27A6EFE92F6C8E 694784 ----a-w- C:\Windows\System32\RtkPgExt.dll 2012-11-28 02:15:32 3F322FCEBC2F02E1613C811F49766613 285216 ----a-w- C:\Windows\System32\RtkApoApi.dll 2012-11-28 02:15:31 7CF199602D9CD57F308BC1553E0BBBA6 159744 ----a-w- C:\Windows\System32\MaxxAudioAPO20.dll 2012-11-28 02:15:31 26AE7FE6953D584D349A91A72849A771 126976 ----a-w- C:\Windows\System32\MaxxAudioAPO.dll 2012-11-28 02:15:31 25BD41102251FE8311A2A201176267E9 1933312 ----a-w- C:\Windows\System32\MaxxAudioEQ.dll 2012-11-28 02:15:30 74FB121811543D1645694ABA578C81C3 143360 ----a-w- C:\Windows\System32\FMAPO.dll 2012-11-27 23:46:05 9E4FB6F31115A5264B6ADD509D476249 2172928 ----a-w- C:\Windows\System32\RtkAPO.dll 2012-11-21 13:39:58 A9970042BE512C7981B36E689C5F3F9F 1461992 ----a-w- C:\Windows\System32\WdfCoInstaller01009.dll 2012-11-21 13:39:50 FFDB4F445586CEB3025ECE8DD734C71D 18440 ----a-w- C:\Windows\System32\tccoinst.dll ====== C:\Windows\system32\drivers ===== 2012-11-28 02:15:33 219CA9A36D6DE2EC04F958C907673436 2134424 ----a-w- C:\Windows\System32\drivers\RTKVHDA.sys 2012-11-21 13:51:05 DF282FE0D05CFA1115ED29D670195A15 7477760 ----a-w- C:\Windows\System32\drivers\NETwNx32.sys 2012-11-21 13:42:28 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\System32\drivers\Msft_User_tcwbf_01_09_00.Wdf 2012-11-21 13:42:28 D41D8CD98F00B204E9800998ECF8427E 0 ---ha-w- C:\Windows\System32\drivers\Msft_Kernel_WinUSB_01009.Wdf 2012-11-18 00:24:29 772A6EC587CB8826DF055762E872412F 190976 ----a-w- C:\Windows\System32\drivers\RtsUStor.sys 2012-11-11 10:36:33 77F9F9A199B87FE3F852E12F5419240B 149352 ----a-w- C:\Windows\System32\drivers\nvhda32v.sys 2012-11-11 10:36:32 0A1B502CBC8230DA74BEFBAADDB58916 10837352 ----a-w- C:\Windows\System32\drivers\nvlddmkm.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2012-11-22 22:01:20 -------- d-----w- C:\Program Files\MyAshampoo 2012-11-21 19:25:06 -------- d-----w- C:\Program Files\FileZilla FTP Client 2012-11-21 15:13:55 -------- d-----w- C:\Program Files\Common Files\Skype 2012-11-21 13:41:13 -------- d-----w- C:\Program Files\AuthenTec ======= C: ===== ====== C:\Users\WALTERF10\AppData\Roaming ====== 2012-12-03 01:42:37 -------- d-----w- C:\users\WALTERF10\AppData\Local\temp 2012-12-03 01:42:37 -------- d-----w- C:\users\UpdatusUser\AppData\Local\temp 2012-12-03 01:42:37 -------- d-----w- C:\users\Public\AppData\Local\temp 2012-12-03 01:42:37 -------- d-----w- C:\users\Default\AppData\Local\temp 2012-11-30 09:53:58 -------- d-----w- C:\users\WALTERF10\AppData\Local\Apple 2012-11-30 09:53:40 -------- d-----w- C:\users\WALTERF10\AppData\Local\Apple Computer 2012-11-21 01:27:34 D41D8CD98F00B204E9800998ECF8427E 0 ----a-w- C:\users\WALTERF10\AppData\Local\Phonebook.txt 2012-11-20 21:49:01 00DF9DE08191F4AB4A75BFA093A8BF8C 302 ----a-w- C:\users\WALTERF10\AppData\Local\config.ini 2012-11-20 09:09:00 -------- d-----w- C:\users\WALTERF10\AppData\Local\Adobe 2012-11-14 19:04:17 -------- d-----w- C:\users\WALTERF10\AppData\Roaming\InnovativeSolutions 2012-11-12 21:33:07 -------- d-----w- C:\users\WALTERF10\AppData\Local\PC_Drivers_Headquarters 2012-11-11 23:11:15 -------- d-----w- C:\users\WALTERF10\AppData\Roaming\InstallShield 2012-11-11 10:42:49 -------- d-sh--we C:\users\UpdatusUser\AppData\Local\Temporary Internet Files 2012-11-11 10:42:49 -------- d-sh--we C:\users\UpdatusUser\AppData\Local\Geschiedenis 2012-11-11 10:42:49 -------- d-sh--we C:\users\UpdatusUser\AppData\Local\Application Data 2012-11-11 10:42:46 -------- d-s---w- C:\users\UpdatusUser\AppData\Roaming\Microsoft 2012-11-11 10:42:46 -------- d-----w- C:\users\UpdatusUser\AppData\Roaming\Media Center Programs 2012-11-11 10:42:46 -------- d-----w- C:\users\UpdatusUser\AppData\Roaming\Acer GameZone Console 2012-11-11 10:42:46 -------- d-----w- C:\users\UpdatusUser\AppData\Local\Microsoft Help 2012-11-11 10:42:46 -------- d-----w- C:\users\UpdatusUser\AppData\Local\Microsoft ====== C:\Users\WALTERF10 ====== 2012-11-30 10:12:11 -------- d-----w- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1 2012-11-12 21:33:12 -------- d-----w- C:\ProgramData\UAB 2012-11-11 20:16:25 -------- d-----w- C:\ProgramData\Mozilla 2012-11-11 10:42:55 -------- d-----w- C:\Users\UpdatusUser\Searches 2012-11-11 10:42:55 -------- d-----w- C:\Users\UpdatusUser\Contacts 2012-11-11 10:42:49 6FC234AD3752E1267B34FB12BCD6718B 20 --sh--w- C:\Users\UpdatusUser\ntuser.ini 2012-11-11 10:42:49 -------- d-sh--we C:\Users\UpdatusUser\Sjablonen 2012-11-11 10:42:49 -------- d-sh--we C:\Users\UpdatusUser\SendTo 2012-11-11 10:42:49 -------- d-sh--we C:\Users\UpdatusUser\Recent 2012-11-11 10:42:49 -------- d-sh--we C:\Users\UpdatusUser\Netwerkprinteromgeving 2012-11-11 10:42:49 -------- d-sh--we C:\Users\UpdatusUser\NetHood 2012-11-11 10:42:49 -------- d-sh--we C:\Users\UpdatusUser\Mijn documenten 2012-11-11 10:42:49 -------- d-sh--we C:\Users\UpdatusUser\Menu Start 2012-11-11 10:42:49 -------- d-sh--we C:\Users\UpdatusUser\Local Settings 2012-11-11 10:42:49 -------- d-sh--we C:\Users\UpdatusUser\Cookies 2012-11-11 10:42:49 -------- d-sh--we C:\Users\UpdatusUser\Application Data 2012-11-11 10:42:46 -------- d--h--w- C:\Users\UpdatusUser\AppData 2012-11-11 10:42:46 -------- d-----r- C:\Users\UpdatusUser\Downloads 2012-11-11 10:42:46 -------- d-----r- C:\Users\UpdatusUser\Documents 2012-11-11 10:42:46 -------- d-----r- C:\Users\UpdatusUser\Desktop 2012-11-11 10:42:45 -------- d-----w- C:\Users\UpdatusUser\video 2012-11-11 10:42:45 -------- d-----w- C:\Users\UpdatusUser\Saved Games 2012-11-11 10:42:45 -------- d-----w- C:\Users\UpdatusUser\Roaming 2012-11-11 10:42:45 -------- d-----r- C:\Users\UpdatusUser\Videos 2012-11-11 10:42:45 -------- d-----r- C:\Users\UpdatusUser\Pictures 2012-11-11 10:42:45 -------- d-----r- C:\Users\UpdatusUser\Music 2012-11-11 10:42:45 -------- d-----r- C:\Users\UpdatusUser\Links 2012-11-11 10:42:45 -------- d-----r- C:\Users\UpdatusUser\Favorites 2012-11-11 10:39:02 -------- d-----w- C:\ProgramData\NVIDIA Corporation ====== C: exe-files == 2012-12-03 08:42:07 B2994EC6452DBD04E57828EEFEDFB93C 204800 ----a-w- C:\Users\WALTERF10\AppData\Local\temp\RtkBtMnt.exe 2012-12-03 01:10:09 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe 2012-12-03 01:10:08 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe 2012-12-03 01:10:08 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe 2012-12-03 01:10:08 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe 2012-12-03 01:10:08 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe 2012-12-01 22:36:53 AC457F498FE79EAA3E7037BDFC098F15 18381992 ----a-w- C:\Users\WALTERF10\Diverse Software\Canon\UCP103Setup.exe 2012-12-01 14:49:43 EBC984F0CE40E0DAF0454D806EC2A7EC 2213976 ----a-w- C:\Users\WALTERF10\Diverse Software\Kasperski - TDSKiller\tdsskiller3\TDSSKiller3\TDSSKiller.exe 2012-11-30 17:34:33 BC86BBB57CCDCF919F311C9E8EBF0DB3 670712 ----a-w- C:\Users\WALTERF10\AppData\Local\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\23.0.1271.95\23.0.1271.95_23.0.1271.91_chrome_updater.exe 2012-11-30 10:17:50 28E5C78ADC06AF2A4DB3AB8093C2F6C1 76688 ----a-w- C:\ProgramData\Apple\Installer Cache\iCloud Control Panel 2.1.0.39\SetupAdmin.exe 2012-11-29 10:17:44 C98D45BFAC440CF5AE88B25049F939D3 1082889 ----a-w- C:\Program Files\Innovative Solutions\DriverMax\unins000.exe 2012-11-29 10:14:58 58909B3E10038B5DF4AE830521A2C44A 7875488 ----a-w- C:\Users\WALTERF10\Diverse Software\DriverMax\drivermax.exe 2012-11-28 23:49:26 4AFFDCAADCB1DBBFFAF06C7F82E7F6FC 421776 ----a-w- C:\Program Files\iTunes\iTunesHelper.exe 2012-11-28 15:39:08 7C93824D4ADC0B0758305BB649A6F0F0 2981264 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\AppleOutlookDAVConfig.exe 2012-11-28 15:37:26 EBACE0B24B2FF493C7BF57A3072E328C 30608 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\PhotoStream.exe 2012-11-28 15:37:22 2DB2458382058044FBB6F5686882AFCB 59280 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams.exe 2012-11-28 15:37:22 2669F4649655EE3947C8F626B698F7E5 59280 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader.exe 2012-11-28 15:37:16 F01214D2113086F5E71C73821670DF14 59280 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\BookmarkDAV_client.exe 2012-11-28 15:26:58 D2B6CE5D9C68B513B2F9251E63BAF226 145296 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.exe 2012-11-28 15:26:58 43F95CA51643DBF309E84B69DEBE8235 145296 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\EReporter.exe 2012-11-28 15:23:06 EF6807C50ED8C9C5E0330B73DE908EED 14736 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudWeb.exe 2012-11-28 15:23:06 8F322278791F1E25ABAE9E660FD02B40 59280 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.exe 2012-11-28 13:13:42 4428E5A3F19F1BD7430CF8DC40F21C6E 14224 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\WebKit2WebProcess.exe 2012-11-28 13:13:24 5DBDC85A9AB1C338E82DB4F118C04D6E 13712 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe 2012-11-28 13:13:16 C26B09276755E0698B31CF0BAE0BF182 59280 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe 2012-11-28 02:18:26 35B3D34B6B4663F196969356528A4092 290816 ----a-w- C:\Windows\RTKVADDA.EXE 2012-11-28 02:15:35 43C3571EADA5BC1EDEAD7CA22AD66F30 49152 ------w- C:\Program Files\Realtek\Audio\InstallShield\ChCfg.exe 2012-11-28 02:15:34 C8612E58FB7FCFA5EEA4E39F7B8CBC17 1826816 ----a-w- C:\Windows\SkyTel.exe 2012-11-28 02:15:34 C8612E58FB7FCFA5EEA4E39F7B8CBC17 1826816 ------w- C:\Program Files\Realtek\Audio\InstallShield\SkyTel.exe 2012-11-28 02:15:34 9195C6308E6BBD798A1505D8D6367B65 1196032 ----a-w- C:\Windows\RtlUpd.exe 2012-11-28 02:15:34 9195C6308E6BBD798A1505D8D6367B65 1196032 ------w- C:\Program Files\Realtek\Audio\InstallShield\RtlUpd.exe 2012-11-28 02:15:33 CAC09E3F84B3021DAB57DAC3136380A3 233472 ------w- C:\Program Files\Realtek\Audio\InstallShield\RtkSmbus.exe 2012-11-28 02:15:32 7300539EC5B6E9EA8AC09E13DC4D88AA 98304 ------w- C:\Program Files\Realtek\Audio\InstallShield\RtkAudioService.exe 2012-11-28 02:15:31 E6CB83FF2C098C6FFCF2D43A4AAC9B54 6139904 ----a-w- C:\Windows\RtHDVCpl.exe 2012-11-28 02:15:31 E6CB83FF2C098C6FFCF2D43A4AAC9B54 6139904 ------w- C:\Program Files\Realtek\Audio\InstallShield\RtHDVCpl.exe 2012-11-28 02:15:30 B6D7239E7AF6D1B64C790A28067DC6E5 73728 ------w- C:\Program Files\Realtek\Audio\InstallShield\AERTSrv.exe 2012-11-28 02:15:30 49B3D2077199C44C1F3BBB16B4094AE6 121064 ----a-w- C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\setup.exe 2012-11-27 23:44:57 2D65F8DB74C36819896CF809E4375F0A 315392 ----a-w- C:\Windows\HideWin.exe 2012-11-27 23:19:33 C8612E58FB7FCFA5EEA4E39F7B8CBC17 1826816 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\WDM\SkyTel.exe 2012-11-27 23:19:33 0D034E8C4F88C5B2B0C1AF3CF438CC4F 86016 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\WDM\SoundMan.exe 2012-11-27 23:19:32 9195C6308E6BBD798A1505D8D6367B65 1196032 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\WDM\RtlUpd.exe 2012-11-27 23:19:32 205DD3FD7398AEC45B044AB905EFDF18 1364480 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\WDM\RtlUpd64.exe 2012-11-27 23:19:31 C1E3CF28AAA41F1F1E3AA9D110D9447C 9715200 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\WDM\RTLCPL.exe 2012-11-27 23:19:28 9E1CADE5FDD67B40A8610BE9CB2B882C 2165760 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\WDM\MicCal.exe 2012-11-27 23:19:28 8002F63F810D35DF46F88D1A1408694D 37376 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\WDM\CPLUtl64.exe 2012-11-27 23:19:28 07C0A803658AAD1A235DC656AF81563D 16862208 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\WDM\RTHDCPL.exe 2012-11-27 23:19:27 EC05E964058693D1F71D1B5506B5CF09 2808832 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\WDM\AlcWzrd.exe 2012-11-27 23:19:27 C8612E58FB7FCFA5EEA4E39F7B8CBC17 1826816 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\Vista64\SkyTel.exe 2012-11-27 23:19:27 8B4CBBA1EA526830C7F97E7822E2493A 69632 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\WDM\Alcmtr.exe 2012-11-27 23:19:27 205DD3FD7398AEC45B044AB905EFDF18 1364480 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\Vista64\RtlUpd64.exe 2012-11-27 23:19:26 88A897A96EAC35B9D7D43EB72FA82A63 321536 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\Vista64\RtkSmbus.exe 2012-11-27 23:19:26 5C0134F5EDD2ABDE636E99F15A1FCC97 131584 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\Vista64\RtkAudioService.exe 2012-11-27 23:19:25 0D7A11395C0A33D9E7587CDB9866EFAD 86016 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\Vista64\AERTSr64.exe 2012-11-27 23:19:25 0A7D447ED6E6040EE377E166B3E4F202 6291456 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\Vista64\RAVCpl64.exe 2012-11-27 23:19:24 C8612E58FB7FCFA5EEA4E39F7B8CBC17 1826816 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\Vista\SkyTel.exe 2012-11-27 23:19:24 9195C6308E6BBD798A1505D8D6367B65 1196032 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\Vista\RtlUpd.exe 2012-11-27 23:19:23 CAC09E3F84B3021DAB57DAC3136380A3 233472 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\Vista\RtkSmbus.exe 2012-11-27 23:19:23 7300539EC5B6E9EA8AC09E13DC4D88AA 98304 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\Vista\RtkAudioService.exe 2012-11-27 23:19:22 E6CB83FF2C098C6FFCF2D43A4AAC9B54 6139904 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\Vista\RtHDVCpl.exe 2012-11-27 23:19:22 B6D7239E7AF6D1B64C790A28067DC6E5 73728 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\Vista\AERTSrv.exe 2012-11-27 23:19:21 BD548A47E139C3B9DA85A007017ABB56 774360 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\MSHDQFE\Win2K_XP\us\kb888111xpsp1.exe 2012-11-27 23:19:21 A7389CC256D192A4E0EFF572143C323B 771288 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\MSHDQFE\Win2K3\us\kb888111srvrtm.exe 2012-11-27 23:19:21 6F909BCB550F0CCAA5D1877B9293BF1F 742104 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\MSHDQFE\Win2K_XP\us\kb888111w2ksp4.exe 2012-11-27 23:19:21 49B3D2077199C44C1F3BBB16B4094AE6 121064 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\Setup.exe 2012-11-27 23:19:21 4665583BC4608E833239DF3B19C28E58 720088 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\MSHDQFE\Win2K_XP\us\kb888111xpsp2.exe 2012-11-27 23:19:21 25C1F045FA646C7713BD3988A7BCF332 23552 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\SetCDfmt.exe 2012-11-27 23:19:20 FFD2FD19CEFD6F0DB95D8153A6A70272 53248 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\Config\AzMixerSel.exe 2012-11-27 23:19:20 43C3571EADA5BC1EDEAD7CA22AD66F30 49152 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\ChCfg.exe 2012-11-27 23:19:20 3D383081EE62055B2C1EEF9A6618C473 409088 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\AP\x64_WinVista\RTKVAA64.EXE 2012-11-27 23:19:20 35B3D34B6B4663F196969356528A4092 290816 ----a-w- C:\Users\WALTERF10\Diverse Software\Realtek - Acer - driver HDAudio 5704 download\Audio_Realtek_6.0.1.5704_VistaX86\Audio_Realtek_6.0.1.5704_VistaX86\AP\WinVista\RTKVADDA.EXE 2012-11-27 13:56:26 4ADCFEE16EE9978F06157634669D36FB 602112 ----a-w- C:\Users\WALTERF10\Diverse Software\OldtimerGeeksTogo - OTL\OTL.exe 2012-11-27 13:44:15 98EB464D1E7245B18EF31EA1FD40446F 1813936 ------w- C:\Users\WALTERF10\Bureaublad\EEK\Run\a2cmd.exe 2012-11-27 13:44:09 3D7E47A121A58F7E1E639419E7CB28C0 1153912 ------w- C:\Users\WALTERF10\Bureaublad\EEK\Run\BlitzBlank.exe 2012-11-27 13:44:03 59900A239E2E57EA6635ED984B31FE6C 3754368 ------w- C:\Users\WALTERF10\Bureaublad\EEK\Run\a2HiJackFree.exe 2012-11-27 13:44:00 6B74CD3C871F728CDAF887E8ECBFE8F4 1593776 ------w- C:\Users\WALTERF10\Bureaublad\EEK\start.exe 2012-11-27 13:43:22 CED673EA43E811BBE0164EBFDE68935D 4041136 ------w- C:\Users\WALTERF10\Bureaublad\EEK\Run\a2emergencykit.exe === C: other files == 2012-12-01 22:41:56 947CF0E8B7B5A92B30093D28FB9D761F 389120 ----a-w- C:\Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Uninstall\UnInstaller\UIxCoreInstallLib.dll 2012-12-01 22:41:56 947CF0E8B7B5A92B30093D28FB9D761F 389120 ----a-w- C:\Program Files\Common Files\Canon_Inc_IC\UniversalInstaller\Install\UIxCoreInstallLib.dll 2012-11-30 11:45:17 B7C89F6B84D1267241BE0801AF0BFECC 117136 ----a-w- C:\Program Files\iTunes\iTunesMiniPlayer.dll 2012-11-30 10:14:30 F456FAF670105C3D2D9240096CF58341 50064 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\nl.lproj\iTunesHelperLocalized.dll 2012-11-30 06:48:16 8D17259951408CCDDA338A85C460472F 657 ----a-w- C:\ProgramData\Spybot - Search & Destroy\Recovery\FraudCodecx2.zip 2012-11-29 10:21:14 1AE4A74A52944E05B40049260A0E9833 5406323 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\20578ce76c02957d0a651f6fdd0355b3.zip 2012-11-29 10:21:11 7B2626415EAF46E4212BBDA011C000EB 66946 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\400a638723721dd63623c1971e17000c.zip 2012-11-29 10:21:04 A046FDDAE6619CE99287229CCF97A8D1 2370652 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\667aeb3189a65e520d6552bd123e6364.zip 2012-11-29 10:20:59 F621B7C304868E8156564C910A09BFFC 2960547 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\4b2bd0c4390eef33ad68aa4d5f5a7dc7.zip 2012-11-29 10:20:40 5AD06A0BC41E84B929814A7A172417F5 11610614 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\629ce60d6a7cce562ae136042cb5a236.zip 2012-11-29 10:20:17 A87E97C394A5C7AC2399AC8615FC93E8 3743036 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\b2d523f99758d07bbf934560cb09d35a.zip 2012-11-29 10:20:12 B956791A7D551457F69C6EE2A49C6C55 16264 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\682236a4f95e76fa8aaceb83f84da885.zip 2012-11-29 10:20:12 3F3DBC9B04DF712BB5F5A39DF2F633D7 16270 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\e1add9dbb8e646b305592d928a0eef42.zip 2012-11-29 10:20:11 CFD5BCAEB1938B0424E9747E43CB82AD 16946 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\6d8e540bc6a047dd7c111441ffdcecea.zip 2012-11-29 10:20:10 F850FB850FEBCD0812241EB5863D0257 16943 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\6a878022d32cea54f095eb0c7a01b925.zip 2012-11-29 10:20:10 9B13C31F39C98B9D85E8174847C9AFF6 16936 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\7f462a7167fc1a898c6788123bec7462.zip 2012-11-29 10:20:09 35FA1FCE7DE779188C732BC58FBC6223 16438 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\06a2ede9d43743eb77aeb0e1c90053e8.zip 2012-11-29 10:20:09 1BF567F3C1B5A792324FD29936C59442 16442 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\38720a3125011699c74277ed113a01e9.zip 2012-11-29 10:20:08 67D1EF64C7F984176AF4B5E7D195BD7E 16568 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\7246b68ecf7f72468eb7c42e8e1bd050.zip 2012-11-29 10:20:07 9808A2A4B79D9E99660F76F78F7DE7DC 16568 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\daf1759f430e460d96ecd8cf219d62d8.zip 2012-11-29 10:20:06 8F54B7D8424FB74E7F034D5B3DCD738C 16568 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\8f7498f4e64abf54c2c1b93c642809f6.zip 2012-11-29 10:20:06 23A0CE36DC5805D7435CAD4B8F513FD6 16569 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\7e14c5790290d975654caffaee47fed0.zip 2012-11-29 10:20:04 72EDF11B0FA38A05F1F47CD3BFF985FE 16568 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\3eb73b28cf3dacbb660cfa7bd2bacb0f.zip 2012-11-29 10:20:03 7355900F3C5783906458929B5A9E9C56 16564 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\1db6cd61b8f6fdc65acb9fc09034cacc.zip 2012-11-29 10:20:01 571A4395797601C0F2288EFC66B0925D 16446 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\64d7e912db1dbd75b56f7a4572d56ac1.zip 2012-11-29 10:20:00 A69D760BC000069150FA841AECD9F765 16990 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\a56befe2f5e31c31cfa702f995a8afd2.zip 2012-11-29 10:20:00 5680B92517E58B8821E6878F459DD60B 17027 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\ce7288ba2ddb919511e806176d08d44f.zip 2012-11-29 10:19:58 BF161EC8E65142AD3FA4FF9030E47EDB 84010 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\c8469cc48cd6c413cc6fce53a3049e70.zip 2012-11-29 10:19:54 1E4561F65BB9259606B18C2C360E93DA 47952 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\4d31991e19fd0c91b85213ef86804fe0.zip 2012-11-29 10:18:59 54C781A27B73094640C213A71ED98B91 112344464 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\e88094668bc42d11aa8e4fab61500789.zip 2012-11-29 10:18:25 2EDA78652CF3960E4F44FAADFF809B9A 1886663 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\56b43074fa76d4154218ad34d0301a91.zip 2012-11-29 10:18:15 7D9F68EF4F02B50581C56F013F20A317 9859893 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\9dd9040fd84a061a6250ff9b40efc2db.zip 2012-11-29 10:18:08 B4946164AD51F12D9E8055C28763F01D 607018 ----a-w- C:\Users\WALTERF10\AppData\Local\Innovative Solutions\DriverMax\Agent\Uploads\010b888dbcce9f03581a1d173ab9a5a1.zip 2012-11-28 23:49:26 A7146C0C90D7BA0F251AC073E655D4D2 48528 ----a-w- C:\Program Files\iTunes\iTunesHelper.Resources\iTunesHelper.dll 2012-11-28 23:49:26 7B845BFE314509D08AB5865CB141E332 156560 ----a-w- C:\Program Files\iTunes\iTunesHelper.dll 2012-11-28 15:39:16 FBA1D03DBF44C14E920DD7E909D5F1F8 80784 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\ro.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 FB7AA64385D9F7D2B703474EC894F285 80784 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\pt_PT.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 E9327B3AD05E4B3FDB3567456168A281 82832 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\fr.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 E73D57321A6AD147C917AD97D93309F8 76176 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\cs.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 E6020D2D0E4353F586DDE870DD2C0DD2 77200 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\uk.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 DB11BDFBB9FC4635BAC4C04363A75B5B 82832 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\ca.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 CDFBB74A4BD85767239B2833AE918597 75664 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\tr.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 CCA8A47E5F234E51E3E0D06DBD59C859 81296 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\hu.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 C67549C980F8CD3373ECC76CBAA03764 83856 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\de.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 C3D69059ED4E0D3BAE8CAD055359010B 76176 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\hr.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 B283C6629086AE4B331A1866B02BD53C 80784 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\nl.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 A78B06C9EFEB419BFB63AE4C7E2F26CE 80272 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\pt.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 A1357B1D1B3E794C121BF099A0CF5E41 86416 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\el.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 8902E1946FA54205CC48139AB00F0CC1 74640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\da.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 8629346AB49C61AAE16D4CCA71605B0C 78224 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\ru.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 7D5D0C3EC61F8ED577B9251B6BBA790E 55696 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\ja.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 71E87DA4D6845BD1204F6AA18B70E48B 80784 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\es.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 6AB57A11BE88F35B27F81823B39791EF 46992 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\zh_CN.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 5D78AD2D755957D6EE4DE9DB1599BE52 54160 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\ko.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 570BDC01BD6388C0953A0632AA0F1D8B 81296 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\pl.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 55F0F1BD89AF16B6DFF7BFD28EAE9260 46992 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\zh_TW.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 395710D507FB4F87B295900777B6B498 67472 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\he.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 37F5F0E9DF8F6FC5F04E57DABDD913A4 76176 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\sv.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 2FC368802BED2F9DDC208F8181EAC0AA 79760 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\it.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 2A8A9656833EF9AA212A7E7309794738 76688 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\fi.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 21EF6831B7CB707188D17024EA355775 77200 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\sk.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 1648A26B4345AF4FEF87AFB449B14CB2 72592 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\th.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 0E61DBFBD5A3BEEDBEB916B3968E9098 70032 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\ar.lproj\APLZODLocalized.dll 2012-11-28 15:39:16 00267F7C803016C5CD508CB9CE700661 76176 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\nb.lproj\APLZODLocalized.dll 2012-11-28 15:39:12 B2C608DA322715D2EF7CB15CAF655B48 72080 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD.resources\en.lproj\APLZODLocalized.dll 2012-11-28 15:39:08 146D24F17B700FC41C5244BE5CD742BE 3661200 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\APLZOD32.dll 2012-11-28 15:37:34 E5266697A1FD528BE61D7646930E33E5 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\pt.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 CD31C650226FA166DDACBEA5900B8AE6 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\ca.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 CB36DBC44DE78C25E8EAAD2EC4378524 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\th.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 CACCA6FCECF89314E0132D5BACBA5F33 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\tr.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 C258B96D123BCB136F902F2B3941F977 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\hr.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 BB2D9A1480E0DB6A2442F4EDA3FE25BC 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\cs.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 B363FAC9E7EA9A51896639A68B081B3A 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\nb.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 A670A862E00ED261C07DA030A2888D99 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\da.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 A47AA44F26ED46F95A75CA4B4670F70A 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\zh_CN.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 A039FB07EE1A14FBFDE3B79A90895660 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\es.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 9D6C0F9A116383E622044ED2350A32F3 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\el.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 98E935847D4C5189F983864E3B91E8C0 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\uk.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 8783607E86810C4C1B0D643A146FCD6E 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\zh_TW.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 81B30C39C94CEA891567A4A2D1B448EE 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\hu.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 804DDE67BA976EB7D3AFC40CF0864D13 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\de.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 7597D1AB3D4AD71DA7212C49C7E56FE3 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\ro.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 6F971176C3C3997C48AAA936E41F6FF8 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\ar.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 6EFEB14BBB8B16A229B14082BF178E6B 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\sk.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 69D2146F05503D5E9229C460AB4DB9F9 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\he.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 695D4A838C8DE351C8246A7A28597BAF 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\ko.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 690994C94F7C90B0C3FEFF4244835A4E 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\fi.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 658A2C8745D2D5E2DC691D3667AB7CC4 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\ru.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 589ECF8ADC41BACD9D4DE5D437F2A7C2 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\pt_PT.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 53A17F698DDA97063FECED330D53D974 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\pl.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 50DC61BB2247559D83186FF21D580B5B 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\it.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 4C596718CA7F54987E12CBBFC039E874 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\fr.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 47BDBE965185DDB3225842C72D92A254 116624 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\nl.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 3ED39F1656038F10D63CCAB693DAB18C 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\sv.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:34 2589C1984014C6C5224A7F3DB29037C3 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\ja.lproj\iCloudServicesLocalized.dll 2012-11-28 15:37:30 BC732E27FED6ED522F933FE247384C71 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\uk.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:30 ABAF4F6D309AEEC09B10F77090029328 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\tr.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:30 55F3D50AFD67C4A672EDA3397B93E3B4 706448 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\zh_TW.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:30 4846246ACC8ED1ADF471FC091A619366 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\GenerationalStorage.dll 2012-11-28 15:37:30 0E1414FBAD61A61F2757F48ACAED1AB8 706448 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\zh_CN.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 F5DFB982E9F7E1A4786172604C8241CE 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\hu.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 F4A95626382653CFCB236B8B2FD40957 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\pt.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 EF0AC8EBA0FF4C5635D4A2D7F0AAC247 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\ro.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 E39F4DA610AFDB4413E3EA4B6229C4EF 710544 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\ko.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 C4E1E6F0D4C83E841BF439772E78DC08 710544 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\fi.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 C14598328359D15BBB3200ED816E4617 710544 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\ja.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 B75507C338B4F07588677C6AC9755DF4 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\ru.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 9E93B70089E914685187FB8EF9D033E5 710544 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\ar.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 96BE90F4018FDE3D4CE515C0E368319C 1488784 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\de.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 8C252573CFB4577B29C4199BC3DB7FB1 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\sk.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 86C60F1DD6B273335FD5C578AB1606CF 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\es.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 849BC1A24EC3F7D691715FD02A0B6A68 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\cs.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 7F51F847A49D7F80CF379BD48BBEC7DD 1488784 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\pl.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 75812584DA8DAA3F822FE27174DD87D5 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\it.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 6D3FAF69A0A3DAC3412D6A3A5407CED5 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\ca.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 647FE77017E4F4A8D0C08B183536F484 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\nl.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 5416221E4F451AE4406AA6FA841397B1 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\pt_PT.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 464C43BE83E3C628078E11117E225CD5 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\hr.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 3C0E5AA446CA305CEF8E9DB9362BA208 710544 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\he.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 3174054FD1C6B458B839509E4F22B39D 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\el.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 2C480CE47D02857E47A879B57A69A67B 710544 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\nb.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 141EAC62286A187FD19E14639EB9F231 714640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\fr.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 12104678B807617AA51C2B4A4065E3A5 710544 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\da.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 10E6925E959683BAD28F149EF6762400 710544 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\sv.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:28 01B111C122444CA4A7C793F41895A00F 710544 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\th.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:26 11CE269567F25E2048926CC3AAB35679 710544 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.resources\en.lproj\ShellStreamsLocalized.dll 2012-11-28 15:37:22 FC630B6804CE57491B1F7E7F425AA805 657296 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ShellStreams.dll 2012-11-28 15:37:22 C120C1A7CC099F9E15E6961A87DCD96D 21392 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreamsPS.dll 2012-11-28 15:37:22 BE6B2854E457F38C7E5DABA5BF50992E 919440 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreamsDownloader_main.dll 2012-11-28 15:37:22 2771A37219466E574942946A364C22E8 1447824 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ApplePhotoStreams_main.dll 2012-11-28 15:37:20 F15A367DE60346A7240BD06D69903461 223120 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\zh_TW.lproj\iCloudLocalized.dll 2012-11-28 15:37:20 EDA7040CF54DEEDD982082EF4A3B8CB3 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\hu.lproj\iCloudLocalized.dll 2012-11-28 15:37:20 EDA14411EBE8C59F5E145DDF49744375 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\sk.lproj\iCloudLocalized.dll 2012-11-28 15:37:20 A4FB5276715D8FACF917A256730289E5 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\uk.lproj\iCloudLocalized.dll 2012-11-28 15:37:20 7F6E0608FE1FC6EFB800C09011CA93B2 415632 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\zh_CN.lproj\iCloudLocalized.dll 2012-11-28 15:37:20 78240BD8BF409EC8054716F8C78419D4 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\sv.lproj\iCloudLocalized.dll 2012-11-28 15:37:20 72CEA80A5F14FB201D47BC9124C26237 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\nl.lproj\iCloudLocalized.dll 2012-11-28 15:37:20 68631D232782ABA18C8C4728B1D9C625 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\nb.lproj\iCloudLocalized.dll 2012-11-28 15:37:20 5C66BCE7A041A4B1064C8599216AB200 223120 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\ko.lproj\iCloudLocalized.dll 2012-11-28 15:37:20 52B2B2BA92242B2B7EABD5AC9039B7CD 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\pl.lproj\iCloudLocalized.dll 2012-11-28 15:37:20 30C49F79CEEEE6EA0134F658A1175F1D 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\th.lproj\iCloudLocalized.dll 2012-11-28 15:37:20 2829E7C8712DBEDA16E067A0C66488DF 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\pt.lproj\iCloudLocalized.dll 2012-11-28 15:37:20 254600FEFB8F31EEDF2B747D911D2B6D 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\pt_PT.lproj\iCloudLocalized.dll 2012-11-28 15:37:20 250BEB10C71B1AAEC72817F626B52B89 223120 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\ja.lproj\iCloudLocalized.dll 2012-11-28 15:37:20 1477FA257C54DE9F791C7384F86485AE 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\ru.lproj\iCloudLocalized.dll 2012-11-28 15:37:20 0A2715848AC0514C99DF2B758B65F90E 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\it.lproj\iCloudLocalized.dll 2012-11-28 15:37:20 083B535A302DFF89A2D0A47C5F826A81 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\tr.lproj\iCloudLocalized.dll 2012-11-28 15:37:20 033A201AE413E039D1AFCE268DF8849A 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\ro.lproj\iCloudLocalized.dll 2012-11-28 15:37:18 FE7D73C83C19B1994D89301C0544D38D 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\ar.lproj\iCloudLocalized.dll 2012-11-28 15:37:18 F8493B2048F8D53095E605AC84147C7E 423824 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\ca.lproj\iCloudLocalized.dll 2012-11-28 15:37:18 C888A7CDE00F1492D8CA9334175A06B7 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\fr.lproj\iCloudLocalized.dll 2012-11-28 15:37:18 C5FEE40D79F5AAFE26D242AC2EF7D47D 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\he.lproj\iCloudLocalized.dll 2012-11-28 15:37:18 AB92FDF7965D5F1268E4949CDD5FB245 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\cs.lproj\iCloudLocalized.dll 2012-11-28 15:37:18 A05AD986C44A539AB9F815219AB399BE 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\hr.lproj\iCloudLocalized.dll 2012-11-28 15:37:18 8E6A050C399E36F36DEC6CBC1028B1A2 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\el.lproj\iCloudLocalized.dll 2012-11-28 15:37:18 7697AEF298EBD5D84647994EBF0888DA 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\es.lproj\iCloudLocalized.dll 2012-11-28 15:37:18 6C90B6B0BCE8AB1BC682A64EAEBC29FA 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\da.lproj\iCloudLocalized.dll 2012-11-28 15:37:18 5CF747C506423C6535D95B6287B3F754 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\fi.lproj\iCloudLocalized.dll 2012-11-28 15:37:18 2189CE9CEDFBDD6F43E27B06652CABED 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\de.lproj\iCloudLocalized.dll 2012-11-28 15:37:16 FC72FB645CD3A06D4CFD67DA9663D2C1 71568 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\AppleSafariBookmarkMMProvider.dll 2012-11-28 15:37:16 F880FA8E1ECDF46FA652AA9A22E82849 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\InternetExplorerBookmarkDAV.dll 2012-11-28 15:37:16 1FD1D143474D70D68FB5A0D8D435F251 255888 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\BookmarkDAV_client_main.dll 2012-11-28 15:37:16 0B3C266387FE2DCA55862DFE9ABE24D7 71568 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\AppleIEBookmarkMMProvider.dll 2012-11-28 15:27:02 E6F3DC88C16C96F1C89D757A52833286 202640 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\LibRainfall.dll 2012-11-28 15:27:00 B96941814AC50F0D68D91C5497FA1633 518032 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\CoreDAV.dll 2012-11-28 15:26:58 E1D017950B5EB2F49B610F069CB64E2A 468880 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud_main.dll 2012-11-28 15:26:58 CCF7A1FD7376E28156B52F809CC73E2B 227216 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloud.resources\en.lproj\iCloudLocalized.dll 2012-11-28 15:26:58 4B91F892F851B0DBC99D44990AB14BCA 71568 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\EReporter_main.dll 2012-11-28 15:23:08 2B690E516651483F8B2DB04EF297A763 268176 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\mmcs.dll 2012-11-28 15:23:06 D3B712EF75F6E054C33B2F6772CF63F8 112528 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices.resources\en.lproj\iCloudServicesLocalized.dll 2012-11-28 15:23:06 C33127902A9B110D37D6DF4E03E35677 178064 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\iCloudServices_main.dll 2012-11-28 15:22:02 34DAF6F827192A55B2D98524DF206CB8 141200 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\AOSKit.dll 2012-11-28 15:14:24 DAC1C8457B507A789B0505B062849FBC 137104 ----a-w- C:\Program Files\Common Files\Apple\Internet Services\ChunkingLibrary.dll 2012-11-28 13:13:52 D6B466289A85F1C0A9641CEE3441E6F3 16784 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\YSUtilities.dll 2012-11-28 13:13:52 64894527838C86454E2F378FF39FA336 38800 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll 2012-11-28 13:13:52 42005C56D4BC5511B5C5D2103FE1151A 863632 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\WebKitQuartzCoreAdditions.dll 2012-11-28 13:13:34 2A4D5764DCA987F255669EEC5E4B8B13 9996176 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\WebKit.dll 2012-11-28 13:13:32 22C359D22AF4400D5CF064726D7303E1 2369424 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\VideoToolbox.dll 2012-11-28 13:13:30 87FF5B81BC831D2A8B8487D2FC1A9A46 4974480 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\MediaToolbox.dll 2012-11-28 13:13:30 78865ABC5F5D13190F8B35BD9044714A 124816 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll 2012-11-28 13:13:30 45BB1649BB64B755D52C051509741277 60816 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\QTMovieWin.dll 2012-11-28 13:13:30 3687E37869B69040657E0CE3F5DB58AA 329616 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\libtidy.dll 2012-11-28 13:13:28 FF9831030678C7B6D70BAC00F68F8976 43408 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll 2012-11-28 13:13:24 55E78456E49AAAB5E973D1FCAF4A8207 1292176 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\CoreVideo.dll 2012-11-28 13:13:22 EB94C96B8964BBF9C9CF3C8F49645727 354192 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\CoreMedia.dll 2012-11-28 13:13:22 0596623E58BF98B4E5ED79B730CCFEAF 563088 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\CoreText.dll 2012-11-28 13:13:20 EF8CD3C64EE9C08980D6D06CCCE46C68 1079184 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll 2012-11-28 13:13:18 D420904DDF2619DA2A96371B0D4670C9 4986768 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\CoreAudioToolbox.dll 2012-11-28 13:13:16 F6FD367C9EAAEDF90CD7A7952AE0B336 75664 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll 2012-11-28 13:13:16 AC3C81118A310B2697ABFCE51AE7222B 39824 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\ApplePushService.dll 2012-11-28 13:13:16 5112FBD9885D79A9FC73BDE9B1EF9334 677776 ----a-w- C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll 2012-11-28 02:19:03 8FB0768375046EA47EC26922794811D6 368640 ----a-w- C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\_setup.dll 2012-11-28 02:15:35 E5639080A7FFA5F03642F4D4CDB1E9CE 339968 ------w- C:\Program Files\Realtek\Audio\InstallShield\SRSTSXT.dll 2012-11-28 02:15:35 E5276EFBB30760127EEE4C33732B4987 1777664 ------w- C:\Program Files\Realtek\Audio\InstallShield\WavesLib.dll 2012-11-28 02:15:35 E067361E60FCAE24790B88135895F3C8 135168 ------w- C:\Program Files\Realtek\Audio\InstallShield\SRSWOW.dll 2012-11-28 02:15:35 BA21C4B843B4B1DD787A660E17589F4D 185776 ------w- C:\Program Files\Realtek\Audio\InstallShield\SRSTSHD.dll 2012-11-28 02:15:34 1B8ADDE7421C12DBDF8AF58E2014CE62 167936 ------w- C:\Program Files\Realtek\Audio\InstallShield\SRSHP360.dll 2012-11-28 02:15:34 05229A9335934A9414C9EE1696B11F2C 131072 ------w- C:\Program Files\Realtek\Audio\InstallShield\RtlCPAPI.dll 2012-11-28 02:15:33 E0416CC2779A20741D27A6EFE92F6C8E 694784 ------w- C:\Program Files\Realtek\Audio\InstallShield\RtkPgExt.dll 2012-11-28 02:15:33 219CA9A36D6DE2EC04F958C907673436 2134424 ------w- C:\Program Files\Realtek\Audio\InstallShield\RTKVHDA.sys 2012-11-28 02:15:32 9E4FB6F31115A5264B6ADD509D476249 2172928 ------w- C:\Program Files\Realtek\Audio\InstallShield\RtkAPO.dll 2012-11-28 02:15:32 91267646E2052279BDEDBD1A4D40F5CD 31232 ------w- C:\Program Files\Realtek\Audio\InstallShield\RtkCoInst.dll 2012-11-28 02:15:32 3F322FCEBC2F02E1613C811F49766613 285216 ------w- C:\Program Files\Realtek\Audio\InstallShield\RtkApoApi.dll 2012-11-28 02:15:31 7CF199602D9CD57F308BC1553E0BBBA6 159744 ------w- C:\Program Files\Realtek\Audio\InstallShield\MaxxAudioAPO20.dll 2012-11-28 02:15:31 26AE7FE6953D584D349A91A72849A771 126976 ------w- C:\Program Files\Realtek\Audio\InstallShield\MaxxAudioAPO.dll 2012-11-28 02:15:31 25BD41102251FE8311A2A201176267E9 1933312 ------w- C:\Program Files\Realtek\Audio\InstallShield\MaxxAudioEQ.dll 2012-11-28 02:15:31 03C717DD2D4F743E13A51628FF290068 536576 ------w- C:\Program Files\Realtek\Audio\InstallShield\RTCOMDLL.dll 2012-11-28 02:15:30 74FB121811543D1645694ABA578C81C3 143360 ------w- C:\Program Files\Realtek\Audio\InstallShield\FMAPO.dll 2012-11-28 02:15:30 338C49810268BB6D638EB3237888CB55 87040 ------w- C:\Program Files\Realtek\Audio\InstallShield\AERTARen.dll 2012-11-28 02:15:30 0D66189F666409FBE82DFBB3732185B8 137216 ------w- C:\Program Files\Realtek\Audio\InstallShield\AERTACap.dll 2012-11-27 13:44:11 AEF53C9AFF3688876D476F36288A56D2 1009192 ------w- C:\Users\WALTERF10\Bureaublad\EEK\Run\a2engine.dll 2012-11-27 13:43:55 3044D0F3FEB9FFE8BC953D8F34B5B504 23208 ------w- C:\Users\WALTERF10\Bureaublad\EEK\Run\a2ddax64.sys 2012-11-27 13:43:54 04A7FC260B47D3D00B1E2CBFC664A803 1884608 ------w- C:\Users\WALTERF10\Bureaublad\EEK\Run\a2framework.dll 2012-11-27 13:43:48 4E6C4FB949FB4D0952F718EF9D87C204 2366400 ------w- C:\Users\WALTERF10\Bureaublad\EEK\Run\quarantine.dll 2012-11-27 13:43:43 EC4D3CEF7D1DCF9DCD98A94BDE71E244 2958776 ------w- C:\Users\WALTERF10\Bureaublad\EEK\Run\a2update.dll 2012-11-27 13:43:42 ADF9F919E10832746ED516230420F749 56224 ------w- C:\Users\WALTERF10\Bureaublad\EEK\Run\avxdisk.dll 2012-11-27 13:43:39 1755023407FDE00D9916505A557569D5 113904 ------w- C:\Users\WALTERF10\Bureaublad\EEK\Run\bdcore.dll 2012-11-27 13:43:36 91A5B1985EFADC296720FC36E55C7A5B 56 ------w- C:\Users\WALTERF10\Bureaublad\EEK\EmergencyKitScanner.bat 2012-11-27 13:43:34 A4FF89CC4A3D5D5446789ED5695A9574 1416640 ------w- C:\Users\WALTERF10\Bureaublad\EEK\Run\resource.dll 2012-11-27 13:43:30 F7EABCA8375EA2DC6F35C4BCA4757515 17904 ------w- C:\Users\WALTERF10\Bureaublad\EEK\Run\a2ddax86.sys 2012-11-27 13:43:24 11686738DD11317DC31FA064CE6FB476 583616 ------w- C:\Users\WALTERF10\Bureaublad\EEK\Run\a2mor.dll 2012-11-27 13:43:22 8B5B86249D663FA50D4CA86497EC4F35 60 ------w- C:\Users\WALTERF10\Bureaublad\EEK\CommandlineScanner.bat ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-4050318300-1184478440-624751174-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Driver Detective"="C:\Program Files\PC Drivers HeadQuarters\Driver Detective\DriversHQ.DriverDetective.Client.exe /applicationMode:systemTray /showWelcome:false" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" "DriverMax"="C:\Program Files\Innovative Solutions\DriverMax\drivermax.exe -agent" "MobileDocuments"="C:\Program Files\Common Files\Apple\Internet Services\ubd.exe" "AutoStartNPSAgent"="C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe" "DriverMax"="C:\Program Files\Innovative Solutions\DriverMax\drivermax.exe -agent" "SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" "MobileDocuments"="C:\Program Files\Common Files\Apple\Internet Services\ubd.exe" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" "answerdome"="C:\Program Files\Innovative Solutions\AnswerDome\answerdome.exe" [HKEY_USERS\S-1-5-21-4050318300-1184478440-624751174-1003\Software\Microsoft\Windows\CurrentVersion\Run] "WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter" "Driver Detective"="C:\Program Files\PC Drivers HeadQuarters\Driver Detective\DriversHQ.DriverDetective.Client.exe /applicationMode:systemTray /showWelcome:false" "DriverMax"="C:\Program Files\Innovative Solutions\DriverMax\drivermax.exe -agent" "DriverMax_RESTART"="C:\Program Files\Innovative Solutions\DriverMax\drivermax.exe -RESTART" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" "AutoStartNPSAgent"="C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe" "DriverMax"="C:\Program Files\Innovative Solutions\DriverMax\drivermax.exe -agent" "SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" "MobileDocuments"="C:\Program Files\Common Files\Apple\Internet Services\ubd.exe" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" "answerdome"="C:\Program Files\Innovative Solutions\AnswerDome\answerdome.exe" "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" "eAudio"="C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe" "ePower_DMC"="C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe" "IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe" "WarReg_PopUp"="C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exe" "LManager"="C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE" "CanonSolutionMenu"="C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon" "APSDaemon"="C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" "BrMfcWnd"="C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN" "QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe -atboottime" "emsisoft anti-malware"="c:\program files\emsisoft anti-malware\a2guard.exe /d=60" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" "RtHDVCpl"="RtHDVCpl.exe" "Skytel"="Skytel.exe" "iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" "Ashampoo HDD-Control 2 Guard"="C:\Program Files\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Guard.exe" "IndexSearch"="C:\Program Files\ScanSoft\PaperPort\IndexSearch.exe" "PaperPort PTD"="C:\Program Files\ScanSoft\PaperPort\pptd40nt.exe" "SSBkgdUpdate"="C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe -Embedding -boot" "FilmFanatic Browser Plugin Loader"="C:\PROGRA~1\FILMFA~2\bar\1.bin\pabrmon.exe" "FilmFanatic Search Scope Monitor"="C:\PROGRA~1\FILMFA~2\bar\1.bin\pasrchmn.exe /m=2 /w /h" "eDataSecurity Loader"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe" "Ashampoo Core Tuner"="C:\Program Files\Ashampoo\Ashampoo Core Tuner\autostarter.exe" "vProt"="C:\Program Files\AVG Secure Search\vprot.exe" "PLFSetL"="C:\Windows\PLFSetL.exe" "PLFSetI"="C:\Windows\PLFSetI.exe" "Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide" "ControlCenter3"="C:\Program Files\Brother\ControlCenter3\brctrcen.exe /autorun" "Browser companion helper"="C:\Program Files\BrowserCompanion\BCHelper.exe /T=3 /CHI=gmdfpnpdmnjaffhcdbobdjpolhpacaem" "Malwarebytes' Anti-Malware (reboot)"="C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe /runcleanupscript" "MSC"="C:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Driver Detective"="C:\Program Files\PC Drivers HeadQuarters\Driver Detective\DriversHQ.DriverDetective.Client.exe /applicationMode:systemTray /showWelcome:false" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" "DriverMax"="C:\Program Files\Innovative Solutions\DriverMax\drivermax.exe -agent" "MobileDocuments"="C:\Program Files\Common Files\Apple\Internet Services\ubd.exe" "AutoStartNPSAgent"="C:\Program Files\Samsung\Samsung New PC Studio\NPSAgent.exe" "DriverMax"="C:\Program Files\Innovative Solutions\DriverMax\drivermax.exe -agent" "SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" "MobileDocuments"="C:\Program Files\Common Files\Apple\Internet Services\ubd.exe" "WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" "answerdome"="C:\Program Files\Innovative Solutions\AnswerDome\answerdome.exe" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Acronis Scheduler2Service] "command"="\"C:\\Program Files\\Common Files\\Acronis\\Schedule2\\schedhlp.exe\"" "hkey"="HKLM" "item"="Acronis Scheduler2Service" "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ArcadeDeluxeAgent] "command"="\"C:\\Program Files\\Acer Arcade Deluxe\\Acer Arcade Deluxe\\ArcadeDeluxeAgent.exe\"" "hkey"="HKLM" "item"="ArcadeDeluxeAgent" "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\AshSnap] "command"="C:\\Program Files\\Ashampoo\\Ashampoo Snap 5\\ashsnap.exe" "hkey"="HKCU" "item"="AshSnap" "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CanonSolutionMenu] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="CanonSolutionMenu" "hkey"="HKLM" "command"="C:\\Program Files\\Canon\\SolutionMenu\\CNSLMAIN.exe /logon" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\CLMLServer] "command"="\"C:\\Program Files\\Acer Arcade Deluxe\\Acer Arcade Deluxe\\Kernel\\CLML\\CLMLSvc.exe\"" "hkey"="HKLM" "item"="CLMLServer" "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\eDataSecurity Loader] "command"="C:\\Program Files\\Acer\\Empowering Technology\\eDataSecurity\\x86\\eDSloader.exe" "hkey"="HKLM" "item"="eDataSecurity Loader" "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Google Desktop Search] "command"="\"C:\\Program Files\\Google\\Google Desktop Search\\GoogleDesktop.exe\" /startup" "hkey"="HKLM" "item"="Google Desktop Search" "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Malwarebytes' Anti-Malware] "command"="\"C:\\Program Files\\Malwarebytes' Anti-Malware\\mbamgui.exe\" /starttray" "hkey"="HKLM" "item"="Malwarebytes' Anti-Malware" "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvCplDaemon] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NvCplDaemon" "hkey"="HKLM" "command"="RUNDLL32.EXE C:\\Windows\\system32\\NvCpl.dll,NvStartup" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\NvMediaCenter] "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" "item"="NvMediaCenter" "hkey"="HKLM" "command"="RUNDLL32.EXE C:\\Windows\\system32\\NvMcTray.dll,NvTaskbarInit" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PLFSetL] "command"="C:\\Windows\\PLFSetL.exe" "hkey"="HKLM" "item"="PLFSetL" "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PPort11reminder] "command"="\"C:\\Program Files\\ScanSoft\\PaperPort\\Ereg\\Ereg.exe\" -r \"C:\\ProgramData\\ScanSoft\\PaperPort\\11\\Config\\Ereg\\Ereg.ini\"" "hkey"="HKLM" "item"="PPort11reminder" "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\SAOB Monitor] "command"="C:\\Program Files\\Acronis\\TrueImageHome\\OnlineBackupStandalone\\TrueImageMonitor.exe" "hkey"="HKLM" "item"="SAOB Monitor" "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TrueImageMonitor.exe] "command"="\"C:\\Program Files\\Acronis\\TrueImageHome\\TrueImageMonitor.exe\"" "hkey"="HKLM" "item"="TrueImageMonitor.exe" "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Windows Defender] "command"="%ProgramFiles%\\Windows Defender\\MSASCui.exe -hide" "hkey"="HKLM" "item"="Windows Defender" "key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Acer VCM.lnk] "backup"="C:\\Windows\\pss\\Acer VCM.lnk.CommonStartup" "backupExtension"=".CommonStartup" "command"="C:\\Program Files\\Acer\\Acer VCM\\AcerVCM.exe " "item"="Acer VCM" "path"="C:\\ProgramData\\Microsoft\\Windows\\Start Menu\\Programs\\Startup\\Acer VCM.lnk" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Ashampoo MouseTracer.lnk] "backup"="C:\\Windows\\pss\\Ashampoo MouseTracer.lnk.CommonStartup" "backupExtension"=".CommonStartup" "item"="Ashampoo MouseTracer" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\AHDDC2] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Apple Mobile Device] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\BBUpdate] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\BUNAgentSvc] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\CLHNService] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\MobilityService] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\NTIBackupSvc] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\NTISchedulerSvc] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Secunia PSI Agent] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\XAudioService] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-] "QuickTime Task"="\"C:\\Program Files\\QuickTime\\QTTask.exe\" -atboottime" "iTunesHelper"="\"C:\\Program Files\\iTunes\\iTunesHelper.exe\"" "Adobe ARM"="\"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"" "SunJavaUpdateSched"="\"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\"" "PlayMovie"="\"C:\\Program Files\\Acer Arcade Deluxe\\PlayMovie\\PMVService.exe\"" ==== Task Scheduler Jobs ====================== C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4050318300-1184478440-624751174-1000Core.job --a------ C:\Users\WALTERF10\AppData\Local\Google\Update\GoogleUpdate.exe [18/11/2011 00:08] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4050318300-1184478440-624751174-1000UA.job --a------ C:\Users\WALTERF10\AppData\Local\Google\Update\GoogleUpdate.exe [18/11/2011 00:08] ==== Firefox Extensions ====================== ProfilePath: C:\Users\WALTERF10\AppData\Roaming\Mozilla\Firefox\Profiles\jt0qor0m.default - Belgium eID - C:\Program Files\Mozilla Firefox\extensions\[email protected] - Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} - Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} - Java Console - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} - Woordenboek Nederlands - %ProfilePath%\extensions\[email protected] - MyAshampoo Community Toolbar - %ProfilePath%\extensions\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} AppDir: C:\Program Files\Mozilla Firefox - Belgium eID - %AppDir%\extensions\[email protected] - Skype Click to Call - %AppDir%\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} - Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} - Java Console - %AppDir%\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} - Java Console - %AppDir%\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} - Java Console - %AppDir%\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} ==== Firefox Plugins ====================== Profilepath: C:\Users\WALTERF10\AppData\Roaming\Mozilla\Firefox\Profiles\jt0qor0m.default 86AB3794B94C1A54AEC884B2C02DF402 - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll - Java Platform SE 6 U37 3E21E80D10E1033D9C137440554FF724 - C:\Windows\system32\npdeployJava1.dll - Java Deployment Toolkit 6.0.370.6 586FDC4E02623EE228EC35B9604AE5F2 - C:\Users\WALTERF10\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll - Google Update 7A0771ED4C1897A1774FE1D1B73E9838 - C:\Windows\system32\Macromed\Flash\NPSWF32.dll - Shockwave Flash AF87C7A3D391F5F5534167546D7DDE30 - C:\Program Files\QuickTime\Plugins\npqtplugin7.dll - QuickTime Plug-in 7.7.3 2034E977759F4EB2226914BFC58F2758 - C:\Program Files\QuickTime\Plugins\npqtplugin6.dll - QuickTime Plug-in 7.7.3 B14417814FCA3A5D4AB170E1823D5484 - C:\Program Files\QuickTime\Plugins\npqtplugin5.dll - QuickTime Plug-in 7.7.3 3EFF190EC0E333DFBD2F5499858044B6 - C:\Program Files\QuickTime\Plugins\npqtplugin4.dll - QuickTime Plug-in 7.7.3 C4EB1B18B39BD2F76A64F75D01DEAB61 - C:\Program Files\QuickTime\Plugins\npqtplugin3.dll - QuickTime Plug-in 7.7.3 45CC6EFE643FCB97D986BBE2D21E2491 - C:\Program Files\QuickTime\Plugins\npqtplugin2.dll - QuickTime Plug-in 7.7.3 9FCA15CC38F2E2C6F5E722ED0E1A9E7A - C:\Program Files\QuickTime\Plugins\npqtplugin.dll - QuickTime Plug-in 7.7.3 DAD55CEF682EAE6FA7B4C9487563A496 - C:\Windows\system32\Adobe\Director\np32dsw_1166636.dll - Shockwave for Director / Shockwave for Director 3F9F8E0F93D6FA7B7552077A3DF171DE - C:\Program Files\VideoLAN\VLC\npvlc.dll - VLC Web Plugin 7EC56424E3E77EBF4BF5E0798175E4E5 - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll - Adobe Acrobat 711A2E6A55EC7BFD59B5F649D58B704B - C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll - Silverlight Plug-In C517E5EA7CEE783F3681F62D2A362E5B - C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll - Windows Live? Photo Gallery 4676A8E1EE37E71486717ECD1E61C17B - C:\Windows\system32\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director FB9CA6BF794D81F533B633F40D7E8EC1 - C:\Program Files\DNA\plugins\npbtdna.dll - DNA Plug-in 64151C0799431E0304AE1BD6202131A7 - C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll - iTunes Application Detector 2494DF4E270CCBFDECF6CB250FC68505 - C:\Program Files\Canon\Uploader for CANON iMAGE GATEWAY Plugin\npUploaderForCiG.dll - Uploader for CANON iMAGE GATEWAY Plugin 438F1FC8521A29B6BBB09CD7BBFE979F - C:\Program Files\Canon\APU\npCCBPLFirefox.dll - CANON iMAGE GATEWAY Album Plugin Utility AB87EEFFD18F2BAAFC274E7075EA6C67 - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation 7D894ED61EF0505277D8A476D7DF43F1 - C:\Program Files\Adobe\Reader 10.0\Reader\browser\nppdf32.dll - Adobe Acrobat 21A55BABD31DA624449F06A591AE73ED - C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrlui.dll - Microsoft ® Silverlight DFCAB29E8FD38F95650CC1E203E8D318 - C:\Windows\system32\npmproxy.dll - Microsoft® Windows® Operating System
  6. hallo, hieronder het gevraagde combofix report log: ComboFix 12-12-02.01 - WALTERF10 03/12/2012 2:14.7.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.32.1043.18.3066.1997 [GMT 1:00] Gestart vanuit: c:\users\WALTERF10\Diverse Software\Bleepingcomputer - ComboFix_exe\ComboFix.exe AV: Emsisoft Anti-Malware *Disabled/Updated* {8504DEEF-CC04-1F76-2137-F1A5F4A659DA} SP: Emsisoft Anti-Malware *Disabled/Updated* {3E653F0B-EA3E-10F8-1B87-CAD78F211367} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\users\Public\sdelevURL.tmp c:\windows\system32\drivers\etc\hosts.ics . . (((((((((((((((((((( Bestanden Gemaakt van 2012-11-03 to 2012-12-03 )))))))))))))))))))))))))))))) . . 2012-12-03 01:33 . 2012-12-03 01:37 -------- d-----w- c:\users\WALTERF10\AppData\Local\temp 2012-12-03 01:33 . 2012-12-03 01:33 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-11-30 10:12 . 2012-11-30 10:16 -------- d-----w- c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1 2012-11-30 09:53 . 2012-11-30 09:53 -------- d-----w- c:\users\WALTERF10\AppData\Local\Apple 2012-11-30 09:53 . 2012-11-30 09:53 -------- d-----w- c:\users\WALTERF10\AppData\Local\Apple Computer 2012-11-28 02:18 . 2008-03-13 16:48 290816 ----a-w- c:\windows\RTKVADDA.EXE 2012-11-27 23:46 . 2008-05-07 15:17 2172928 ----a-w- c:\windows\system32\RtkAPO.dll 2012-11-27 23:44 . 2012-11-27 23:44 315392 ----a-w- c:\windows\HideWin.exe 2012-11-27 17:07 . 2012-11-08 18:00 6812136 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{95A2B66C-CAFE-4DC2-A8AA-3A122B56A5B1}\mpengine.dll 2012-11-22 22:01 . 2012-11-22 22:01 -------- d-----w- c:\program files\Conduit 2012-11-22 22:01 . 2012-11-22 22:01 -------- d-----w- c:\program files\MyAshampoo 2012-11-21 19:25 . 2012-11-21 19:25 -------- d-----w- c:\program files\FileZilla FTP Client 2012-11-21 15:13 . 2012-11-21 15:13 -------- d-----w- c:\program files\Common Files\Skype 2012-11-21 13:51 . 2012-01-23 14:33 7477760 ----a-w- c:\windows\system32\drivers\NETwNx32.sys 2012-11-21 13:41 . 2012-11-21 13:41 -------- d-----w- c:\program files\AuthenTec 2012-11-21 13:39 . 2012-08-08 11:16 1461992 ----a-w- c:\windows\system32\WdfCoInstaller01009.dll 2012-11-21 13:39 . 2012-08-08 11:16 812560 ----a-w- c:\windows\system32\drivers\UMDF\tcwbf.dll 2012-11-21 13:39 . 2012-08-08 11:16 18440 ----a-w- c:\windows\system32\tccoinst.dll 2012-11-20 09:09 . 2012-11-20 09:09 -------- d-----w- c:\users\WALTERF10\AppData\Local\Adobe 2012-11-18 00:24 . 2012-08-29 16:47 190976 ----a-w- c:\windows\system32\drivers\RtsUStor.sys 2012-11-15 20:20 . 2012-09-25 16:19 75776 ----a-w- c:\windows\system32\synceng.dll 2012-11-15 20:19 . 2012-10-12 14:29 2047488 ----a-w- c:\windows\system32\win32k.sys 2012-11-14 19:04 . 2012-11-14 19:04 -------- d-----w- c:\users\WALTERF10\AppData\Roaming\InnovativeSolutions 2012-11-12 21:33 . 2012-11-14 00:52 -------- d-----w- c:\programdata\UAB 2012-11-12 21:33 . 2012-11-12 21:33 -------- d-----w- c:\users\WALTERF10\AppData\Local\PC_Drivers_Headquarters 2012-11-11 23:11 . 2012-11-11 23:11 -------- d-----w- c:\users\WALTERF10\AppData\Roaming\InstallShield 2012-11-11 16:53 . 2012-10-12 05:56 6918632 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{BD566623-3D9C-4410-821C-6B9838426A5B}\mpengine.dll 2012-11-11 10:42 . 2012-11-21 00:36 -------- d-----w- c:\users\UpdatusUser 2012-11-11 10:41 . 2012-10-02 19:29 645992 ----a-w- c:\windows\system32\nvvsvc.exe 2012-11-11 10:41 . 2012-10-02 19:29 62312 ----a-w- c:\windows\system32\nvshext.dll 2012-11-11 10:41 . 2012-10-02 19:29 2557288 ----a-w- c:\windows\system32\nvsvcr.dll 2012-11-11 10:41 . 2012-10-02 19:29 108392 ----a-w- c:\windows\system32\nvmctray.dll 2012-11-11 10:41 . 2012-10-02 19:29 2853224 ----a-w- c:\windows\system32\nvsvc.dll 2012-11-11 10:41 . 2012-10-02 19:28 3965288 ----a-w- c:\windows\system32\nvcpl.dll 2012-11-11 10:39 . 2012-10-02 22:20 52584 ----a-w- c:\windows\system32\OpenCL.dll 2012-11-11 10:39 . 2012-11-11 10:39 -------- d-----w- c:\programdata\NVIDIA Corporation 2012-11-11 10:33 . 2012-11-11 10:33 -------- d-----w- C:\NVIDIA 2012-11-11 10:11 . 2008-06-20 03:27 446464 ----a-w- c:\windows\system32\nvuninst.exe . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-11-28 02:15 . 2008-08-12 10:12 319456 ----a-w- c:\windows\DIFxAPI.dll 2012-11-13 14:31 . 2012-04-01 06:29 697272 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2012-11-13 14:31 . 2012-02-11 18:53 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-11-12 22:07 . 2008-08-12 10:05 53248 ----a-w- c:\windows\system32\CSVer.dll 2012-10-25 02:12 . 2012-10-25 02:12 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx 2012-10-25 02:12 . 2012-10-25 02:12 69632 ----a-w- c:\windows\system32\QuickTime.qts 2012-09-25 19:21 . 2011-03-28 16:36 19720 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2012-09-24 13:32 . 2012-06-04 22:24 477168 ----a-w- c:\windows\system32\npdeployJava1.dll 2012-09-24 13:32 . 2011-11-19 00:19 473072 ----a-w- c:\windows\system32\deployJava1.dll 2012-09-13 13:28 . 2012-10-10 06:57 2048 ----a-w- c:\windows\system32\tzres.dll 2012-08-25 02:01 . 2012-09-05 12:39 266720 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] "{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}"= "c:\program files\MyAshampoo\tbMyAs.dll" [2010-12-09 3911776] . [HKEY_CLASSES_ROOT\clsid\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}] . [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}] 2010-12-09 11:51 3911776 ----a-w- c:\program files\ConduitEngine\ConduitEngine.dll . [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}] 2010-12-09 11:51 3911776 ----a-w- c:\program files\MyAshampoo\tbMyAs.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}"= "c:\program files\MyAshampoo\tbMyAs.dll" [2010-12-09 3911776] "{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\ConduitEngine.dll" [2010-12-09 3911776] . [HKEY_CLASSES_ROOT\clsid\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}] . [HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}] . [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{A1E75A0E-4397-4BA8-BB50-E19FB66890F4}"= "c:\program files\MyAshampoo\tbMyAs.dll" [2010-12-09 3911776] . [HKEY_CLASSES_ROOT\clsid\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4}] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP] @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}" [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}] 2009-04-13 13:47 121392 ----a-w- c:\program files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Driver Detective"="c:\program files\PC Drivers HeadQuarters\Driver Detective\DriversHQ.DriverDetective.Client.exe" [2012-11-14 3539936] "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240] "DriverMax"="c:\program files\Innovative Solutions\DriverMax\drivermax.exe" [2012-11-14 11324864] "MobileDocuments"="c:\program files\Common Files\Apple\Internet Services\ubd.exe" [2012-02-23 59240] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-04-25 1049896] "eAudio"="c:\program files\Acer\Empowering Technology\eAudio\eAudio.exe" [2008-05-30 544768] "ePower_DMC"="c:\program files\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2008-08-01 405504] "IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2008-07-20 182808] "WarReg_PopUp"="c:\program files\Acer\WR_PopUp\WarReg_PopUp.exe" [2008-01-29 303104] "LManager"="c:\progra~1\LAUNCH~1\QtZgAcer.EXE" [2008-06-04 817672] "CanonSolutionMenu"="c:\program files\Canon\SolutionMenu\CNSLMAIN.exe" [2008-03-11 689488] "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-11-28 59280] "BrMfcWnd"="c:\program files\Brother\Brmfcmon\BrMfcWnd.exe" [2009-01-19 1150976] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2012-10-25 421888] "emsisoft anti-malware"="c:\program files\emsisoft anti-malware\a2guard.exe" [2012-10-17 3364264] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-09-17 254896] "RtHDVCpl"="RtHDVCpl.exe" [2008-05-07 6139904] "Skytel"="Skytel.exe" [2007-11-20 1826816] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-09-09 421776] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) "EnableLinkedConnections"= 1 (0x1) . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "NoResolveTrack"= 0 (0x0) "NoFileAssociate"= 0 (0x0) . [hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks] "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024] . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon] 2011-05-04 17:54 551296 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"=c:\progra~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] @="Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] @="Service" . [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Acer VCM.lnk] backup=c:\windows\pss\Acer VCM.lnk.CommonStartup backupExtension=.CommonStartup path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Acer VCM.lnk . [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Ashampoo MouseTracer.lnk] backup=c:\windows\pss\Ashampoo MouseTracer.lnk.CommonStartup backupExtension=.CommonStartup HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PLFSetI . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acronis Scheduler2Service] 2011-10-09 23:45 395104 ----a-w- c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcadeDeluxeAgent] 2008-07-24 14:54 147456 ----a-w- c:\program files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AshSnap] 2012-08-03 12:29 3400600 ----a-w- c:\program files\Ashampoo\Ashampoo Snap 5\ashsnap.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenu] 2008-03-11 01:20 689488 ----a-w- c:\program files\Canon\SolutionMenu\CNSLMAIN.EXE . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer] 2008-07-24 14:54 167936 ----a-w- c:\program files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eDataSecurity Loader] 2009-04-13 13:47 526896 ----a-w- c:\program files\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search] 2011-11-15 18:25 24064 ----a-w- c:\program files\Google\Google Desktop Search\GoogleDesktop.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes' Anti-Malware] 2012-04-04 13:56 462408 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon] 2012-10-02 19:28 3965288 ----a-w- c:\windows\System32\nvcpl.dll . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter] 2012-10-02 19:29 108392 ----a-w- c:\windows\System32\nvmctray.dll . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PLFSetL] 2008-07-03 21:58 94208 ----a-w- c:\windows\PLFSetL.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PPort11reminder] 2007-08-31 08:01 328992 ----a-w- c:\program files\ScanSoft\PaperPort\Ereg\Ereg.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SAOB Monitor] 2011-09-22 15:00 2537096 ----a-w- c:\program files\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor.exe] 2011-10-09 23:44 5581272 ----a-w- c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender] 2008-01-21 02:23 1008184 ----a-w- c:\program files\Windows Defender\MSASCui.exe . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" -atboottime "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" "PlayMovie"="c:\program files\Acer Arcade Deluxe\PlayMovie\PMVService.exe" . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-4050318300-1184478440-624751174-1000] "EnableNotifications"=dword:00000001 "EnableNotificationsRef"=dword:00000001 . S1 A2DDA;A2 Direct Disk Access Support Driver;c:\program files\Emsisoft Anti-Malware\a2ddax86.sys [x] S1 a2injectiondriver;a2injectiondriver;c:\program files\Emsisoft Anti-Malware\a2dix86.sys [x] S1 a2util;a-squared Malware-IDS utility driver;c:\program files\Emsisoft Anti-Malware\a2util32.sys [x] S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [x] S2 a2AntiMalware;Emsisoft Anti-Malware 6.6 - Service;c:\program files\Emsisoft Anti-Malware\a2service.exe [x] S2 ACT2_Service;Ashampoo Core Tuner 2 Service;c:\program files\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe [x] S2 ACT2PM;Ashampoo CoreTuner 2 ProcessMonitor Driver;c:\program files\Ashampoo\Ashampoo Core Tuner 2\ACT2ProcessMonitor32.sys [x] S2 afcdpsrv;Acronis Nonstop Backup-service ;c:\program files\Common Files\Acronis\CDP\afcdpsrv.exe [x] S3 a2acc;a2acc;c:\program files\EMSISOFT ANTI-MALWARE\a2accx86.sys [x] S3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys [x] . . --- Andere Services/Drivers In Geheugen --- . *NewlyCreated* - FSUSBEXDISK *Deregistered* - UBHelper . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] bthsvcs REG_MULTI_SZ BthServ LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . Inhoud van de 'Gedeelde Taken' map . 2012-12-02 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4050318300-1184478440-624751174-1000Core.job - c:\users\WALTERF10\AppData\Local\Google\Update\GoogleUpdate.exe [2011-11-17 23:08] . 2012-12-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-4050318300-1184478440-624751174-1000UA.job - c:\users\WALTERF10\AppData\Local\Google\Update\GoogleUpdate.exe [2011-11-17 23:08] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.com/webhp?hl=nl uInternet Settings,ProxyOverride = *.local Trusted Zone: microsoft.com\*.update Trusted Zone: microsoft.com\update Trusted Zone: windowsupdate.com\download TCP: DhcpNameServer = 193.121.171.135 FF - ProfilePath - c:\users\WALTERF10\AppData\Roaming\Mozilla\Firefox\Profiles\jt0qor0m.default\ FF - prefs.js: browser.search.selectedEngine - AVG Secure Search FF - prefs.js: browser.startup.homepage - hxxps://www.google.com/webhp?hl=nl|http://be.msn.com/|http://www.seniorennet.be/|http://www.standaard.be|http://www.demorgen.be| FF - ExtSQL: 2012-10-21 11:35; {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}; c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} FF - ExtSQL: !HIDDEN! 2012-01-21 23:26; [email protected]; c:\program files\Mozilla Firefox\extensions\[email protected] FF - user.js: browser.blink_allowed - true FF - user.js: network.prefetch-next - true FF - user.js: nglayout.initialpaint.delay - 250 FF - user.js: layout.spellcheckDefault - 1 FF - user.js: browser.urlbar.autoFill - false FF - user.js: browser.search.openintab - false FF - user.js: browser.tabs.closeButtons - 1 FF - user.js: browser.tabs.opentabfor.middleclick - true FF - user.js: browser.tabs.tabMinWidth - 100 FF - user.js: browser.urlbar.hideGoButton - false . - - - - ORPHANS VERWIJDERD - - - - . HKCU-Run-DriverMax_RESTART - (no file) SafeBoot-WudfPf SafeBoot-WudfRd . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2012-12-03 02:37 Windows 6.0.6002 Service Pack 2 NTFS . detected NTDLL code modification: ZwOpenFile . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}] "ImagePath"="\??\c:\program files\Acer Arcade Deluxe\PlayMovie\000.fcl" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . Voltooingstijd: 2012-12-03 02:42:33 ComboFix-quarantined-files.txt 2012-12-03 01:42 . Pre-Run: 136.201.228.288 bytes beschikbaar Post-Run: 136.426.819.584 bytes beschikbaar . - - End Of File - - FDE201B83E39BB52AE41E31B71F31038
  7. Hallo, hier het gevraagde tdsskiller log 15:50:29.0142 6132 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35 15:50:29.0516 6132 ============================================================ 15:50:29.0516 6132 Current date / time: 2012/12/01 15:50:29.0516 15:50:29.0516 6132 SystemInfo: 15:50:29.0516 6132 15:50:29.0516 6132 OS Version: 6.0.6002 ServicePack: 2.0 15:50:29.0517 6132 Product type: Workstation 15:50:29.0517 6132 ComputerName: WALTERG1 15:50:29.0517 6132 UserName: WALTERF10 15:50:29.0517 6132 Windows directory: C:\Windows 15:50:29.0517 6132 System windows directory: C:\Windows 15:50:29.0517 6132 Processor architecture: Intel x86 15:50:29.0517 6132 Number of processors: 2 15:50:29.0517 6132 Page size: 0x1000 15:50:29.0517 6132 Boot type: Normal boot 15:50:29.0518 6132 ============================================================ 15:50:33.0757 6132 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050 15:50:33.0768 6132 Drive \Device\Harddisk1\DR1 - Size: 0x7470C06000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 15:50:33.0796 6132 Drive \Device\Harddisk2\DR2 - Size: 0xEB000000 (3.67 Gb), SectorSize: 0x200, Cylinders: 0x1DF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W' 15:50:33.0921 6132 ============================================================ 15:50:33.0921 6132 \Device\Harddisk0\DR0: 15:50:33.0921 6132 MBR partitions: 15:50:33.0921 6132 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1400800, BlocksNum 0x1FC036A0 15:50:33.0921 6132 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x21003EA0, BlocksNum 0x3D13160 15:50:33.0921 6132 \Device\Harddisk1\DR1: 15:50:33.0922 6132 MBR partitions: 15:50:33.0922 6132 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A385000 15:50:33.0922 6132 \Device\Harddisk2\DR2: 15:50:33.0923 6132 MBR partitions: 15:50:33.0923 6132 \Device\Harddisk2\DR2\Partition1: MBR, Type 0xC, StartLBA 0x20, BlocksNum 0x757FE0 15:50:33.0923 6132 ============================================================ 15:50:34.0032 6132 G: <-> \Device\Harddisk1\DR1\Partition1 15:50:34.0219 6132 D: <-> \Device\Harddisk0\DR0\Partition2 15:50:34.0274 6132 C: <-> \Device\Harddisk0\DR0\Partition1 15:50:34.0274 6132 ============================================================ 15:50:34.0275 6132 Initialize success 15:50:34.0275 6132 ============================================================ 15:51:51.0536 4536 ============================================================ 15:51:51.0537 4536 Scan started 15:51:51.0537 4536 Mode: Manual; SigCheck; TDLFS; 15:51:51.0537 4536 ============================================================ 15:51:52.0845 4536 ================ Scan services ============================= 15:51:52.0972 4536 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE 15:51:53.0208 4536 !SASCORE - ok 15:51:53.0659 4536 [ A8A4E18857CDFD8D9AB81E2C9EAF89B5 ] a2acc C:\PROGRAM FILES\EMSISOFT ANTI-MALWARE\a2accx86.sys 15:51:53.0707 4536 a2acc - ok 15:51:53.0850 4536 [ E327C0DE1D7013BE360881801C0AB0FA ] a2AntiMalware C:\Program Files\Emsisoft Anti-Malware\a2service.exe 15:51:54.0043 4536 a2AntiMalware - ok 15:51:54.0126 4536 [ F7EABCA8375EA2DC6F35C4BCA4757515 ] A2DDA C:\Program Files\Emsisoft Anti-Malware\a2ddax86.sys 15:51:54.0155 4536 A2DDA - ok 15:51:54.0195 4536 [ 03BFDFAE9D150D43F4A19B5FBB892591 ] a2injectiondriver C:\Program Files\Emsisoft Anti-Malware\a2dix86.sys 15:51:54.0225 4536 a2injectiondriver - ok 15:51:54.0261 4536 [ 2DA26EB05B5495D3B2EE36456C239FB7 ] a2util C:\Program Files\Emsisoft Anti-Malware\a2util32.sys 15:51:54.0288 4536 a2util - ok 15:51:54.0441 4536 [ 82B296AE1892FE3DBEE00C9CF92F8AC7 ] ACPI C:\Windows\system32\drivers\acpi.sys 15:51:54.0493 4536 ACPI - ok 15:51:54.0601 4536 [ 5CE3F76ED9EC117C745E69A4446B68F6 ] AcrSch2Svc C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe 15:51:54.0679 4536 AcrSch2Svc - ok 15:51:54.0784 4536 [ 689216426036ED264CD2C778A06DC815 ] ACT2PM C:\Program Files\Ashampoo\Ashampoo Core Tuner 2\ACT2ProcessMonitor32.sys 15:51:54.0815 4536 ACT2PM - ok 15:51:54.0871 4536 [ C47D15FC2CA269DD2EC5946953C5BF03 ] ACT2_Service C:\Program Files\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe 15:51:54.0992 4536 ACT2_Service - ok 15:51:55.0118 4536 [ 62B7936F9036DD6ED36E6A7EFA805DC0 ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe 15:51:55.0149 4536 AdobeARMservice - ok 15:51:55.0207 4536 [ 04F0FCAC69C7C71A3AC4EB97FAFC8303 ] adp94xx C:\Windows\system32\drivers\adp94xx.sys 15:51:55.0265 4536 adp94xx - ok 15:51:55.0296 4536 [ 60505E0041F7751BDBB80F88BF45C2CE ] adpahci C:\Windows\system32\drivers\adpahci.sys 15:51:55.0342 4536 adpahci - ok 15:51:55.0366 4536 [ 8A42779B02AEC986EAB64ECFC98F8BD7 ] adpu160m C:\Windows\system32\drivers\adpu160m.sys 15:51:55.0405 4536 adpu160m - ok 15:51:55.0428 4536 [ 241C9E37F8CE45EF51C3DE27515CA4E5 ] adpu320 C:\Windows\system32\drivers\adpu320.sys 15:51:55.0467 4536 adpu320 - ok 15:51:55.0564 4536 [ 9D1FDA9E086BA64E3C93C9DE32461BCF ] AeLookupSvc C:\Windows\System32\aelupsvc.dll 15:51:55.0709 4536 AeLookupSvc - ok 15:51:55.0747 4536 [ 53696AD8FFC5FAC51949A525FF65A689 ] afcdp C:\Windows\system32\DRIVERS\afcdp.sys 15:51:55.0779 4536 afcdp - ok 15:51:55.0949 4536 [ AF44F7E027037628F1FAC3C13CDE73E6 ] afcdpsrv C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe 15:51:56.0137 4536 afcdpsrv - ok 15:51:56.0225 4536 [ 3911B972B55FEA0478476B2E777B29FA ] AFD C:\Windows\system32\drivers\afd.sys 15:51:56.0305 4536 AFD - ok 15:51:56.0385 4536 [ 13F9E33747E6B41A3FF305C37DB0D360 ] agp440 C:\Windows\system32\drivers\agp440.sys 15:51:56.0420 4536 agp440 - ok 15:51:56.0443 4536 AHDDC2 - ok 15:51:56.0465 4536 [ AE1FDF7BF7BB6C6A70F67699D880592A ] aic78xx C:\Windows\system32\drivers\djsvs.sys 15:51:56.0500 4536 aic78xx - ok 15:51:56.0534 4536 [ A1545B731579895D8CC44FC0481C1192 ] ALG C:\Windows\System32\alg.exe 15:51:56.0714 4536 ALG - ok 15:51:56.0747 4536 [ 9EAEF5FC9B8E351AFA7E78A6FAE91F91 ] aliide C:\Windows\system32\drivers\aliide.sys 15:51:56.0779 4536 aliide - ok 15:51:56.0826 4536 [ C47344BC706E5F0B9DCE369516661578 ] amdagp C:\Windows\system32\drivers\amdagp.sys 15:51:56.0859 4536 amdagp - ok 15:51:56.0882 4536 [ 9B78A39A4C173FDBC1321E0DD659B34C ] amdide C:\Windows\system32\drivers\amdide.sys 15:51:56.0914 4536 amdide - ok 15:51:56.0933 4536 [ 18F29B49AD23ECEE3D2A826C725C8D48 ] AmdK7 C:\Windows\system32\drivers\amdk7.sys 15:51:57.0009 4536 AmdK7 - ok 15:51:57.0032 4536 [ 93AE7F7DD54AB986A6F1A1B37BE7442D ] AmdK8 C:\Windows\system32\drivers\amdk8.sys 15:51:57.0112 4536 AmdK8 - ok 15:51:57.0188 4536 [ C6D704C7F0434DC791AAC37CAC4B6E14 ] Appinfo C:\Windows\System32\appinfo.dll 15:51:57.0249 4536 Appinfo - ok 15:51:57.0373 4536 [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 15:51:57.0405 4536 Apple Mobile Device - ok 15:51:57.0478 4536 [ 5D2888182FB46632511ACEE92FDAD522 ] arc C:\Windows\system32\drivers\arc.sys 15:51:57.0513 4536 arc - ok 15:51:57.0574 4536 [ 5E2A321BD7C8B3624E41FDEC3E244945 ] arcsas C:\Windows\system32\drivers\arcsas.sys 15:51:57.0609 4536 arcsas - ok 15:51:57.0667 4536 [ 53B202ABEE6455406254444303E87BE1 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys 15:51:57.0744 4536 AsyncMac - ok 15:51:57.0773 4536 [ 1F05B78AB91C9075565A9D8A4B880BC4 ] atapi C:\Windows\system32\DRIVERS\atapi.sys 15:51:57.0806 4536 atapi - ok 15:51:57.0883 4536 [ 68E2A1A0407A66CF50DA0300852424AB ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll 15:51:57.0959 4536 AudioEndpointBuilder - ok 15:51:57.0977 4536 [ 68E2A1A0407A66CF50DA0300852424AB ] Audiosrv C:\Windows\System32\Audiosrv.dll 15:51:58.0034 4536 Audiosrv - ok 15:51:58.0256 4536 [ 0D1EA7509F394D8B705B239EE71F5118 ] BBSvc C:\Program Files\Microsoft\BingBar\BBSvc.EXE 15:51:58.0298 4536 BBSvc - ok 15:51:58.0370 4536 [ 67E506B75BD5326A3EC7B70BD014DFB6 ] Beep C:\Windows\system32\drivers\Beep.sys 15:51:58.0455 4536 Beep - ok 15:51:58.0559 4536 [ C789AF0F724FDA5852FB9A7D3A432381 ] BFE C:\Windows\System32\bfe.dll 15:51:58.0646 4536 BFE - ok 15:51:58.0730 4536 [ 93952506C6D67330367F7E7934B6A02F ] BITS C:\Windows\system32\qmgr.dll 15:51:58.0824 4536 BITS - ok 15:51:58.0857 4536 [ D4DF28447741FD3D953526E33A617397 ] blbdrive C:\Windows\system32\drivers\blbdrive.sys 15:51:58.0935 4536 blbdrive - ok 15:51:59.0048 4536 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe 15:51:59.0097 4536 Bonjour Service - ok 15:51:59.0138 4536 [ 35F376253F687BDE63976CCB3F2108CA ] bowser C:\Windows\system32\DRIVERS\bowser.sys 15:51:59.0201 4536 bowser - ok 15:51:59.0273 4536 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\brfiltlo.sys 15:51:59.0335 4536 BrFiltLo - ok 15:51:59.0363 4536 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\brfiltup.sys 15:51:59.0428 4536 BrFiltUp - ok 15:51:59.0462 4536 [ A3629A0C4226F9E9C72FAAEEBC3AD33C ] Browser C:\Windows\System32\browser.dll 15:51:59.0528 4536 Browser - ok 15:51:59.0551 4536 [ B304E75CFF293029EDDF094246747113 ] Brserid C:\Windows\system32\drivers\brserid.sys 15:51:59.0774 4536 Brserid - ok 15:51:59.0793 4536 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\system32\drivers\brserwdm.sys 15:51:59.0905 4536 BrSerWdm - ok 15:52:00.0140 4536 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\system32\drivers\brusbmdm.sys 15:52:00.0278 4536 BrUsbMdm - ok 15:52:00.0301 4536 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\system32\drivers\brusbser.sys 15:52:00.0434 4536 BrUsbSer - ok 15:52:00.0539 4536 [ 54FB7073744E069E24EB3C512A0B19B5 ] Btcsrusb C:\Windows\system32\Drivers\btcusb.sys 15:52:00.0654 4536 Btcsrusb - ok 15:52:00.0829 4536 [ 6D39C954799B63BA866910234CF7D726 ] BthEnum C:\Windows\system32\DRIVERS\BthEnum.sys 15:52:00.0902 4536 BthEnum - ok 15:52:00.0995 4536 [ 9A966A8E86D1771911AE34A20D11BFF3 ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys 15:52:01.0069 4536 BTHMODEM - ok 15:52:01.0125 4536 [ 5904EFA25F829BF84EA6FB045134A1D8 ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys 15:52:01.0200 4536 BthPan - ok 15:52:01.0255 4536 [ 611FF3F2F095C8D4A6D4CFD9DCC09793 ] BTHPORT C:\Windows\system32\Drivers\BTHport.sys 15:52:01.0336 4536 BTHPORT - ok 15:52:01.0369 4536 [ A4C8377FA4A994E07075107DBE2E3DCE ] BthServ C:\Windows\System32\bthserv.dll 15:52:01.0440 4536 BthServ - ok 15:52:01.0461 4536 [ D330803EAB2A15CAEC7F011F1D4CB30E ] BTHUSB C:\Windows\system32\Drivers\BTHUSB.sys 15:52:01.0517 4536 BTHUSB - ok 15:52:01.0817 4536 catchme - ok 15:52:01.0914 4536 [ 7ADD03E75BEB9E6DD102C3081D29840A ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys 15:52:02.0005 4536 cdfs - ok 15:52:02.0077 4536 [ 6B4BFFB9BECD728097024276430DB314 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys 15:52:02.0134 4536 cdrom - ok 15:52:02.0214 4536 [ 312EC3E37A0A1F2006534913E37B4423 ] CertPropSvc C:\Windows\System32\certprop.dll 15:52:02.0286 4536 CertPropSvc - ok 15:52:02.0315 4536 [ E5D4133F37219DBCFE102BC61072589D ] circlass C:\Windows\system32\DRIVERS\circlass.sys 15:52:02.0399 4536 circlass - ok 15:52:02.0434 4536 [ D7659D3B5B92C31E84E53C1431F35132 ] CLFS C:\Windows\system32\CLFS.sys 15:52:02.0481 4536 CLFS - ok 15:52:02.0579 4536 [ 5CA9B1062C0C3E3AE19C23AD9D8A5048 ] CLHNService C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe 15:52:02.0628 4536 CLHNService ( UnsignedFile.Multi.Generic ) - warning 15:52:02.0628 4536 CLHNService - detected UnsignedFile.Multi.Generic (1) 15:52:02.0717 4536 [ 8EE772032E2FE80A924F3B8DD5082194 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 15:52:02.0749 4536 clr_optimization_v2.0.50727_32 - ok 15:52:02.0843 4536 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 15:52:02.0884 4536 clr_optimization_v4.0.30319_32 - ok 15:52:02.0970 4536 [ 99AFC3795B58CC478FBBBCDC658FCB56 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys 15:52:03.0045 4536 CmBatt - ok 15:52:03.0089 4536 [ 0CA25E686A4928484E9FDABD168AB629 ] cmdide C:\Windows\system32\drivers\cmdide.sys 15:52:03.0121 4536 cmdide - ok 15:52:03.0173 4536 [ 6AFEF0B60FA25DE07C0968983EE4F60A ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys 15:52:03.0205 4536 Compbatt - ok 15:52:03.0220 4536 COMSysApp - ok 15:52:03.0237 4536 [ 741E9DFF4F42D2D8477D0FC1DC0DF871 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys 15:52:03.0270 4536 crcdisk - ok 15:52:03.0290 4536 [ 1F07BECDCA750766A96CDA811BA86410 ] Crusoe C:\Windows\system32\drivers\crusoe.sys 15:52:03.0366 4536 Crusoe - ok 15:52:03.0409 4536 [ F1E8C34892336D33EDDCDFE44E474F64 ] CryptSvc C:\Windows\system32\cryptsvc.dll 15:52:03.0493 4536 CryptSvc - ok 15:52:03.0584 4536 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] DcomLaunch C:\Windows\system32\rpcss.dll 15:52:03.0712 4536 DcomLaunch - ok 15:52:03.0803 4536 [ 622C41A07CA7E6DD91770F50D532CB6C ] DfsC C:\Windows\system32\Drivers\dfsc.sys 15:52:03.0876 4536 DfsC - ok 15:52:03.0999 4536 [ 92AE26F2CAF4A67E24A0BA6DDF32CC3C ] DfSdkS C:\Program Files\Ashampoo\Ashampoo WinOptimizer 9\DfsdkS.exe 15:52:04.0048 4536 DfSdkS ( UnsignedFile.Multi.Generic ) - warning 15:52:04.0048 4536 DfSdkS - detected UnsignedFile.Multi.Generic (1) 15:52:04.0218 4536 [ 2CC3DCFB533A1035B13DCAB6160AB38B ] DFSR C:\Windows\system32\DFSR.exe 15:52:04.0418 4536 DFSR - ok 15:52:04.0526 4536 [ 9028559C132146FB75EB7ACF384B086A ] Dhcp C:\Windows\System32\dhcpcsvc.dll 15:52:04.0610 4536 Dhcp - ok 15:52:04.0732 4536 [ 5D4AEFC3386920236A548271F8F1AF6A ] disk C:\Windows\system32\drivers\disk.sys 15:52:04.0781 4536 disk - ok 15:52:04.0849 4536 [ 73BAF270D24FE726B9CD7F80BB17A23D ] DKbFltr C:\Windows\system32\DRIVERS\DKbFltr.sys 15:52:04.0972 4536 DKbFltr - ok 15:52:05.0083 4536 [ 57D762F6F5974AF0DA2BE88A3349BAAA ] Dnscache C:\Windows\System32\dnsrslvr.dll 15:52:05.0163 4536 Dnscache - ok 15:52:05.0196 4536 [ 324FD74686B1EF5E7C19A8AF49E748F6 ] dot3svc C:\Windows\System32\dot3svc.dll 15:52:05.0252 4536 dot3svc - ok 15:52:05.0324 4536 [ A622E888F8AA2F6B49E9BC466F0E5DEF ] DPS C:\Windows\system32\dps.dll 15:52:05.0426 4536 DPS - ok 15:52:05.0498 4536 [ 97FEF831AB90BEE128C9AF390E243F80 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys 15:52:05.0563 4536 drmkaud - ok 15:52:05.0621 4536 [ C68AC676B0EF30CFBB1080ADCE49EB1F ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys 15:52:05.0816 4536 DXGKrnl - ok 15:52:05.0888 4536 [ 5425F74AC0C1DBD96A1E04F17D63F94C ] E1G60 C:\Windows\system32\DRIVERS\E1G60I32.sys 15:52:05.0958 4536 E1G60 - ok 15:52:05.0996 4536 [ C0B95E40D85CD807D614E264248A45B9 ] EapHost C:\Windows\System32\eapsvc.dll 15:52:06.0066 4536 EapHost - ok 15:52:06.0132 4536 [ 7F64EA048DCFAC7ACF8B4D7B4E6FE371 ] Ecache C:\Windows\system32\drivers\ecache.sys 15:52:06.0174 4536 Ecache - ok 15:52:06.0338 4536 [ A6A67D747CE2B1667C5E787BC85AFD87 ] eDataSecurity Service C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe 15:52:06.0398 4536 eDataSecurity Service - ok 15:52:06.0451 4536 [ 9BE3744D295A7701EB425332014F0797 ] ehRecvr C:\Windows\ehome\ehRecvr.exe 15:52:06.0527 4536 ehRecvr - ok 15:52:06.0547 4536 [ AD1870C8E5D6DD340C829E6074BF3C3F ] ehSched C:\Windows\ehome\ehsched.exe 15:52:06.0627 4536 ehSched - ok 15:52:06.0641 4536 [ C27C4EE8926E74AA72EFCAB24C5242C3 ] ehstart C:\Windows\ehome\ehstart.dll 15:52:06.0698 4536 ehstart - ok 15:52:06.0759 4536 [ 23B62471681A124889978F6295B3F4C6 ] elxstor C:\Windows\system32\drivers\elxstor.sys 15:52:06.0810 4536 elxstor - ok 15:52:06.0878 4536 [ 4E6B23DFC917EA39306B529B773950F4 ] EMDMgmt C:\Windows\system32\emdmgmt.dll 15:52:07.0013 4536 EMDMgmt - ok 15:52:07.0091 4536 [ 539CA34FBC74EC366A0D751028C32A08 ] epmntdrv C:\Windows\system32\epmntdrv.sys 15:52:07.0123 4536 epmntdrv ( UnsignedFile.Multi.Generic ) - warning 15:52:07.0124 4536 epmntdrv - detected UnsignedFile.Multi.Generic (1) 15:52:07.0162 4536 [ A81AB23EDDB4693612014D87367D014C ] ErrDev C:\Windows\system32\drivers\errdev.sys 15:52:07.0238 4536 ErrDev - ok 15:52:07.0293 4536 [ 27D2754314D12EB27D81D462FD0D86C0 ] ETService C:\Program Files\Acer\Empowering Technology\Service\ETService.exe 15:52:07.0325 4536 ETService ( UnsignedFile.Multi.Generic ) - warning 15:52:07.0326 4536 ETService - detected UnsignedFile.Multi.Generic (1) 15:52:07.0362 4536 [ 1F2F4AB15CE03ECC257FEB2F6DC5A013 ] EuGdiDrv C:\Windows\system32\EuGdiDrv.sys 15:52:07.0392 4536 EuGdiDrv ( UnsignedFile.Multi.Generic ) - warning 15:52:07.0392 4536 EuGdiDrv - detected UnsignedFile.Multi.Generic (1) 15:52:07.0463 4536 [ 67058C46504BC12D821F38CF99B7B28F ] EventSystem C:\Windows\system32\es.dll 15:52:07.0519 4536 EventSystem - ok 15:52:07.0647 4536 [ 52859724EDD0EE282522225E056B6EB3 ] EvtEng C:\Program Files\Intel\WiFi\bin\EvtEng.exe 15:52:07.0732 4536 EvtEng - ok 15:52:07.0789 4536 [ 22B408651F9123527BCEE54B4F6C5CAE ] exfat C:\Windows\system32\drivers\exfat.sys 15:52:07.0864 4536 exfat - ok 15:52:07.0898 4536 [ 1E9B9A70D332103C52995E957DC09EF8 ] fastfat C:\Windows\system32\drivers\fastfat.sys 15:52:07.0955 4536 fastfat - ok 15:52:07.0974 4536 [ AFE1E8B9782A0DD7FB46BBD88E43F89A ] fdc C:\Windows\system32\DRIVERS\fdc.sys 15:52:08.0058 4536 fdc - ok 15:52:08.0107 4536 [ 6629B5F0E98151F4AFDD87567EA32BA3 ] fdPHost C:\Windows\system32\fdPHost.dll 15:52:08.0171 4536 fdPHost - ok 15:52:08.0188 4536 [ 89ED56DCE8E47AF40892778A5BD31FD2 ] FDResPub C:\Windows\system32\fdrespub.dll 15:52:08.0320 4536 FDResPub - ok 15:52:08.0373 4536 [ A8C0139A884861E3AAE9CFE73B208A9F ] FileInfo C:\Windows\system32\drivers\fileinfo.sys 15:52:08.0407 4536 FileInfo - ok 15:52:08.0435 4536 [ 0AE429A696AECBC5970E3CF2C62635AE ] Filetrace C:\Windows\system32\drivers\filetrace.sys 15:52:08.0521 4536 Filetrace - ok 15:52:08.0544 4536 [ 85B7CF99D532820495D68D747FDA9EBD ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys 15:52:08.0628 4536 flpydisk - ok 15:52:08.0658 4536 [ 01334F9EA68E6877C4EF05D3EA8ABB05 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys 15:52:08.0701 4536 FltMgr - ok 15:52:08.0787 4536 [ 8CE364388C8ECA59B14B539179276D44 ] FontCache C:\Windows\system32\FntCache.dll 15:52:08.0898 4536 FontCache - ok 15:52:08.0963 4536 [ C7FBDD1ED42F82BFA35167A5C9803EA3 ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe 15:52:08.0992 4536 FontCache3.0.0.0 - ok 15:52:09.0088 4536 [ B0082808A6856A252F7CDD939892CE50 ] fssfltr C:\Windows\system32\DRIVERS\fssfltr.sys 15:52:09.0116 4536 fssfltr - ok 15:52:09.0324 4536 [ 28DDEEEC44E988657B732CF404D504CB ] fsssvc C:\Program Files\Windows Live\Family Safety\fsssvc.exe 15:52:09.0450 4536 fsssvc - ok 15:52:09.0538 4536 [ CBE5F69A5E5B918225F420BA748F3742 ] FsUsbExDisk C:\Windows\system32\FsUsbExDisk.SYS 15:52:09.0568 4536 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - warning 15:52:09.0568 4536 FsUsbExDisk - detected UnsignedFile.Multi.Generic (1) 15:52:09.0608 4536 [ 96633419F4A1E37ACB89B45EBCCFE001 ] FsUsbExService C:\Windows\system32\FsUsbExService.Exe 15:52:09.0644 4536 FsUsbExService - ok 15:52:09.0669 4536 [ B972A66758577E0BFD1DE0F91AAA27B5 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys 15:52:09.0759 4536 Fs_Rec - ok 15:52:09.0780 4536 [ 34582A6E6573D54A07ECE5FE24A126B5 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys 15:52:09.0813 4536 gagp30kx - ok 15:52:09.0893 4536 [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 15:52:09.0918 4536 GEARAspiWDM - ok 15:52:09.0974 4536 [ 6FD7F370817F16B5E1F08B91BADAA2EE ] GoogleDesktopManager-080708-050100 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe 15:52:10.0007 4536 GoogleDesktopManager-080708-050100 ( UnsignedFile.Multi.Generic ) - warning 15:52:10.0007 4536 GoogleDesktopManager-080708-050100 - detected UnsignedFile.Multi.Generic (1) 15:52:10.0071 4536 [ CD5D0AEEE35DFD4E986A5AA1500A6E66 ] gpsvc C:\Windows\System32\gpsvc.dll 15:52:10.0207 4536 gpsvc - ok 15:52:10.0269 4536 [ 5F90A1611029B7ABC2DB01ADB534D047 ] HBtnKey C:\Windows\system32\DRIVERS\tkbtnpn.sys 15:52:10.0330 4536 HBtnKey - ok 15:52:10.0417 4536 [ 3F90E001369A07243763BD5A523D8722 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys 15:52:10.0465 4536 HdAudAddService - ok 15:52:10.0514 4536 [ 062452B7FFD68C8C042A6261FE8DFF4A ] HDAudBus C:\Windows\system32\DRIVERS\HDAudBus.sys 15:52:10.0628 4536 HDAudBus - ok 15:52:10.0659 4536 [ 1338520E78D90154ED6BE8F84DE5FCEB ] HidBth C:\Windows\system32\drivers\hidbth.sys 15:52:10.0781 4536 HidBth - ok 15:52:10.0817 4536 [ D8DF3722D5E961BAA1292AA2F12827E2 ] HidIr C:\Windows\system32\DRIVERS\hidir.sys 15:52:10.0893 4536 HidIr - ok 15:52:10.0933 4536 [ 84067081F3318162797385E11A8F0582 ] hidserv C:\Windows\System32\hidserv.dll 15:52:10.0981 4536 hidserv - ok 15:52:11.0015 4536 [ CCA4B519B17E23A00B826C55716809CC ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys 15:52:11.0083 4536 HidUsb - ok 15:52:11.0120 4536 [ D8AD255B37DA92434C26E4876DB7D418 ] hkmsvc C:\Windows\system32\kmsvc.dll 15:52:11.0206 4536 hkmsvc - ok 15:52:11.0242 4536 [ 7EBEC5EB56B90ED65A8BBD91464E5CFB ] HpCISSs C:\Windows\system32\drivers\hpcisss.sys 15:52:11.0279 4536 HpCISSs - ok 15:52:11.0387 4536 [ FADD7095163CB3CB4073793EBB50FE75 ] HSF_DPV C:\Windows\system32\DRIVERS\HSX_DPV.sys 15:52:11.0547 4536 HSF_DPV - ok 15:52:11.0574 4536 [ 058783BEDD17615D1FECE09F77960436 ] HSXHWAZL C:\Windows\system32\DRIVERS\HSXHWAZL.sys 15:52:11.0638 4536 HSXHWAZL - ok 15:52:11.0695 4536 [ F870AA3E254628EBEAFE754108D664DE ] HTTP C:\Windows\system32\drivers\HTTP.sys 15:52:11.0841 4536 HTTP - ok 15:52:11.0911 4536 hwdatacard - ok 15:52:11.0996 4536 [ C6B032D69650985468160FC9937CF5B4 ] i2omp C:\Windows\system32\drivers\i2omp.sys 15:52:12.0030 4536 i2omp - ok 15:52:12.0113 4536 [ 22D56C8184586B7A1F6FA60BE5F5A2BD ] i8042prt C:\Windows\system32\DRIVERS\i8042prt.sys 15:52:12.0187 4536 i8042prt - ok 15:52:12.0267 4536 [ 3E42C4691AAD4B1E8D0466F9CBF05CBE ] IAANTMON C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe 15:52:12.0313 4536 IAANTMON - ok 15:52:12.0372 4536 [ 76C3966183BD5382E14CEB6DF97D9709 ] iaStor C:\Windows\system32\drivers\iastor.sys 15:52:12.0434 4536 iaStor - ok 15:52:12.0479 4536 [ 54155EA1B0DF185878E0FC9EC3AC3A14 ] iaStorV C:\Windows\system32\drivers\iastorv.sys 15:52:12.0527 4536 iaStorV - ok 15:52:12.0600 4536 [ 98477B08E61945F974ED9FDC4CB6BDAB ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 15:52:12.0686 4536 idsvc - ok 15:52:12.0704 4536 [ 2D077BF86E843F901D8DB709C95B49A5 ] iirsp C:\Windows\system32\drivers\iirsp.sys 15:52:12.0736 4536 iirsp - ok 15:52:12.0833 4536 [ 9908D8A397B76CD8D31D0D383C5773C9 ] IKEEXT C:\Windows\System32\ikeext.dll 15:52:12.0905 4536 IKEEXT - ok 15:52:12.0970 4536 [ 4D8D5B1C895EA0F2A721B98A7CE198F1 ] int15 C:\Windows\system32\drivers\int15.sys 15:52:12.0999 4536 int15 ( UnsignedFile.Multi.Generic ) - warning 15:52:13.0000 4536 int15 - detected UnsignedFile.Multi.Generic (1) 15:52:13.0223 4536 [ 219CA9A36D6DE2EC04F958C907673436 ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys 15:52:13.0404 4536 IntcAzAudAddService - ok 15:52:13.0509 4536 [ 83AA759F3189E6370C30DE5DC5590718 ] intelide C:\Windows\system32\drivers\intelide.sys 15:52:13.0544 4536 intelide - ok 15:52:13.0614 4536 [ 224191001E78C89DFA78924C3EA595FF ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys 15:52:13.0687 4536 intelppm - ok 15:52:13.0713 4536 [ 9AC218C6E6105477484C6FDBE7D409A4 ] IPBusEnum C:\Windows\system32\ipbusenum.dll 15:52:13.0782 4536 IPBusEnum - ok 15:52:13.0807 4536 [ 62C265C38769B864CB25B4BCF62DF6C3 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys 15:52:13.0887 4536 IpFilterDriver - ok 15:52:13.0923 4536 [ 1998BD97F950680BB55F55A7244679C2 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll 15:52:13.0993 4536 iphlpsvc - ok 15:52:14.0007 4536 IpInIp - ok 15:52:14.0036 4536 [ 4B9C0F4D4A3ACC535F9771039ECD6365 ] IPMIDRV C:\Windows\system32\drivers\ipmidrv.sys 15:52:14.0087 4536 IPMIDRV - ok 15:52:14.0112 4536 [ 8793643A67B42CEC66490B2A0CF92D68 ] IPNAT C:\Windows\system32\DRIVERS\ipnat.sys 15:52:14.0191 4536 IPNAT - ok 15:52:14.0309 4536 [ BC0EA61246F8D940FBC5F652D337D6BD ] iPod Service C:\Program Files\iPod\bin\iPodService.exe 15:52:14.0389 4536 iPod Service - ok 15:52:14.0412 4536 [ 109C0DFB82C3632FBD11949B73AEEAC9 ] IRENUM C:\Windows\system32\drivers\irenum.sys 15:52:14.0489 4536 IRENUM - ok 15:52:14.0518 4536 [ 6C70698A3E5C4376C6AB5C7C17FB0614 ] isapnp C:\Windows\system32\drivers\isapnp.sys 15:52:14.0553 4536 isapnp - ok 15:52:14.0613 4536 [ 232FA340531D940AAC623B121A595034 ] iScsiPrt C:\Windows\system32\DRIVERS\msiscsi.sys 15:52:14.0654 4536 iScsiPrt - ok 15:52:14.0675 4536 [ BCED60D16156E428F8DF8CF27B0DF150 ] iteatapi C:\Windows\system32\drivers\iteatapi.sys 15:52:14.0705 4536 iteatapi - ok 15:52:14.0755 4536 [ 06FA654504A498C30ADCA8BEC4E87E7E ] iteraid C:\Windows\system32\drivers\iteraid.sys 15:52:14.0785 4536 iteraid - ok 15:52:14.0808 4536 [ 37605E0A8CF00CBBA538E753E4344C6E ] kbdclass C:\Windows\system32\DRIVERS\kbdclass.sys 15:52:14.0841 4536 kbdclass - ok 15:52:14.0854 4536 [ EDE59EC70E25C24581ADD1FBEC7325F7 ] kbdhid C:\Windows\system32\DRIVERS\kbdhid.sys 15:52:14.0925 4536 kbdhid - ok 15:52:14.0960 4536 [ A3E186B4B935905B829219502557314E ] KeyIso C:\Windows\system32\lsass.exe 15:52:15.0037 4536 KeyIso - ok 15:52:15.0084 4536 [ 4A1445EFA932A3BAF5BDB02D7131EE20 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys 15:52:15.0139 4536 KSecDD - ok 15:52:15.0190 4536 [ 8078F8F8F7A79E2E6B494523A828C585 ] KtmRm C:\Windows\system32\msdtckrm.dll 15:52:15.0287 4536 KtmRm - ok 15:52:15.0535 4536 [ 3F0B9076A349DA925BF33610BEB3AD17 ] L1E C:\Windows\system32\DRIVERS\L1E60x86.sys 15:52:15.0592 4536 L1E - ok 15:52:15.0773 4536 [ 1BF5EEBFD518DD7298434D8C862F825D ] LanmanServer C:\Windows\System32\srvsvc.dll 15:52:15.0853 4536 LanmanServer - ok 15:52:16.0025 4536 [ 1DB69705B695B987082C8BAEC0C6B34F ] LanmanWorkstation C:\Windows\System32\wkssvc.dll 15:52:16.0168 4536 LanmanWorkstation - ok 15:52:16.0258 4536 [ 793FF718477345CD5D232C50BED1E452 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe 15:52:16.0311 4536 LightScribeService ( UnsignedFile.Multi.Generic ) - warning 15:52:16.0311 4536 LightScribeService - detected UnsignedFile.Multi.Generic (1) 15:52:16.0334 4536 [ D1C5883087A0C3F1344D9D55A44901F6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys 15:52:16.0418 4536 lltdio - ok 15:52:16.0523 4536 [ 2D5A428872F1442631D0959A34ABFF63 ] lltdsvc C:\Windows\System32\lltdsvc.dll 15:52:16.0598 4536 lltdsvc - ok 15:52:16.0616 4536 [ 35D40113E4A5B961B6CE5C5857702518 ] lmhosts C:\Windows\System32\lmhsvc.dll 15:52:16.0751 4536 lmhosts - ok 15:52:16.0782 4536 [ C7E15E82879BF3235B559563D4185365 ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys 15:52:16.0824 4536 LSI_FC - ok 15:52:16.0844 4536 [ EE01EBAE8C9BF0FA072E0FF68718920A ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys 15:52:16.0890 4536 LSI_SAS - ok 15:52:16.0945 4536 [ 912A04696E9CA30146A62AFA1463DD5C ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys 15:52:16.0980 4536 LSI_SCSI - ok 15:52:17.0005 4536 [ 8F5C7426567798E62A3B3614965D62CC ] luafv C:\Windows\system32\drivers\luafv.sys 15:52:17.0104 4536 luafv - ok 15:52:17.0213 4536 [ FB097BBC1A18F044BD17BD2FCCF97865 ] MBAMProtector C:\Windows\system32\drivers\mbam.sys 15:52:17.0296 4536 MBAMProtector - ok 15:52:17.0385 4536 [ BA400ED640BCA1EAE5C727AE17C10207 ] MBAMService C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe 15:52:17.0440 4536 MBAMService - ok 15:52:17.0474 4536 [ AEF9BABB8A506BC4CE0451A64AADED46 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll 15:52:17.0532 4536 Mcx2Svc - ok 15:52:17.0590 4536 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\Windows\system32\DRIVERS\mdmxsdk.sys 15:52:17.0642 4536 mdmxsdk - ok 15:52:17.0693 4536 [ 0001CE609D66632FA17B84705F658879 ] megasas C:\Windows\system32\drivers\megasas.sys 15:52:17.0726 4536 megasas - ok 15:52:17.0803 4536 [ C252F32CD9A49DBFC25ECF26EBD51A99 ] MegaSR C:\Windows\system32\drivers\megasr.sys 15:52:17.0859 4536 MegaSR - ok 15:52:17.0894 4536 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] MMCSS C:\Windows\system32\mmcss.dll 15:52:17.0978 4536 MMCSS - ok 15:52:18.0012 4536 MobilityService - ok 15:52:18.0036 4536 [ E13B5EA0F51BA5B1512EC671393D09BA ] Modem C:\Windows\system32\drivers\modem.sys 15:52:18.0126 4536 Modem - ok 15:52:18.0155 4536 [ 0A9BB33B56E294F686ABB7C1E4E2D8A8 ] monitor C:\Windows\system32\DRIVERS\monitor.sys 15:52:18.0236 4536 monitor - ok 15:52:18.0272 4536 [ 5BF6A1326A335C5298477754A506D263 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys 15:52:18.0306 4536 mouclass - ok 15:52:18.0341 4536 [ 93B8D4869E12CFBE663915502900876F ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys 15:52:18.0407 4536 mouhid - ok 15:52:18.0441 4536 [ BDAFC88AA6B92F7842416EA6A48E1600 ] MountMgr C:\Windows\system32\drivers\mountmgr.sys 15:52:18.0476 4536 MountMgr - ok 15:52:18.0613 4536 [ EE728AF83850DDAD9A3FCAC0AAB3AD97 ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys 15:52:18.0666 4536 MpFilter - ok 15:52:18.0734 4536 [ 5DA347912FD3AF24D7BFB3DE519D4BD0 ] mpio C:\Windows\system32\drivers\mpio.sys 15:52:18.0773 4536 mpio - ok 15:52:18.0795 4536 [ 22241FEBA9B2DEFA669C8CB0A8DD7D2E ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys 15:52:18.0854 4536 mpsdrv - ok 15:52:18.0908 4536 [ 5DE62C6E9108F14F6794060A9BDECAEC ] MpsSvc C:\Windows\system32\mpssvc.dll 15:52:18.0974 4536 MpsSvc - ok 15:52:19.0004 4536 [ 4FBBB70D30FD20EC51F80061703B001E ] Mraid35x C:\Windows\system32\drivers\mraid35x.sys 15:52:19.0035 4536 Mraid35x - ok 15:52:19.0060 4536 [ 82CEA0395524AACFEB58BA1448E8325C ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys 15:52:19.0138 4536 MRxDAV - ok 15:52:19.0210 4536 [ 1E94971C4B446AB2290DEB71D01CF0C2 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys 15:52:19.0276 4536 mrxsmb - ok 15:52:19.0310 4536 [ 4FCCB34D793B116423209C0F8B7A3B03 ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys 15:52:19.0352 4536 mrxsmb10 - ok 15:52:19.0373 4536 [ C3CB1B40AD4A0124D617A1199B0B9D7C ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys 15:52:19.0431 4536 mrxsmb20 - ok 15:52:19.0497 4536 [ 5457DCFA7C0DA43522F4D9D4049C1472 ] msahci C:\Windows\system32\DRIVERS\msahci.sys 15:52:19.0531 4536 msahci - ok 15:52:19.0556 4536 [ 2C563AEF15B8D0014C36C5F27742AC7B ] msdsm C:\Windows\system32\drivers\msdsm.sys 15:52:19.0595 4536 msdsm - ok 15:52:19.0616 4536 [ FD7520CC3A80C5FC8C48852BB24C6DED ] MSDTC C:\Windows\System32\msdtc.exe 15:52:19.0686 4536 MSDTC - ok 15:52:19.0722 4536 [ A9927F4A46B816C92F461ACB90CF8515 ] Msfs C:\Windows\system32\drivers\Msfs.sys 15:52:19.0802 4536 Msfs - ok 15:52:19.0864 4536 [ 0F400E306F385C56317357D6DEA56F62 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys 15:52:19.0896 4536 msisadrv - ok 15:52:19.0930 4536 [ 85466C0757A23D9A9AECDC0755203CB2 ] MSiSCSI C:\Windows\system32\iscsiexe.dll 15:52:20.0014 4536 MSiSCSI - ok 15:52:20.0024 4536 msiserver - ok 15:52:20.0057 4536 [ D8C63D34D9C9E56C059E24EC7185CC07 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys 15:52:20.0134 4536 MSKSSRV - ok 15:52:20.0237 4536 [ E077FCA2A7E79FB9BF67D3E30B5CE593 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe 15:52:20.0271 4536 MsMpSvc - ok 15:52:20.0305 4536 [ 1D373C90D62DDB641D50E55B9E78D65E ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys 15:52:20.0384 4536 MSPCLOCK - ok 15:52:20.0406 4536 [ B572DA05BF4E098D4BBA3A4734FB505B ] MSPQM C:\Windows\system32\drivers\MSPQM.sys 15:52:20.0488 4536 MSPQM - ok 15:52:20.0516 4536 [ B49456D70555DE905C311BCDA6EC6ADB ] MsRPC C:\Windows\system32\drivers\MsRPC.sys 15:52:20.0562 4536 MsRPC - ok 15:52:20.0590 4536 [ E384487CB84BE41D09711C30CA79646C ] mssmbios C:\Windows\system32\DRIVERS\mssmbios.sys 15:52:20.0627 4536 mssmbios - ok 15:52:20.0642 4536 [ 7199C1EEC1E4993CAF96B8C0A26BD58A ] MSTEE C:\Windows\system32\drivers\MSTEE.sys 15:52:20.0706 4536 MSTEE - ok 15:52:20.0730 4536 [ 6A57B5733D4CB702C8EA4542E836B96C ] Mup C:\Windows\system32\Drivers\mup.sys 15:52:20.0766 4536 Mup - ok 15:52:20.0876 4536 [ 363B85773D001E35DC977058956A1486 ] MxEFUF C:\Windows\system32\DRIVERS\MxEFUF32.sys 15:52:20.0903 4536 MxEFUF - ok 15:52:21.0003 4536 [ E4EAF0C5C1B41B5C83386CF212CA9584 ] napagent C:\Windows\system32\qagentRT.dll 15:52:21.0127 4536 napagent - ok 15:52:21.0253 4536 [ 85C44FDFF9CF7E72A40DCB7EC06A4416 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys 15:52:21.0295 4536 NativeWifiP - ok 15:52:21.0372 4536 [ 1357274D1883F68300AEADD15D7BBB42 ] NDIS C:\Windows\system32\drivers\ndis.sys 15:52:21.0440 4536 NDIS - ok 15:52:21.0465 4536 [ 0E186E90404980569FB449BA7519AE61 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys 15:52:21.0527 4536 NdisTapi - ok 15:52:21.0552 4536 [ D6973AA34C4D5D76C0430B181C3CD389 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys 15:52:21.0632 4536 Ndisuio - ok 15:52:21.0694 4536 [ 818F648618AE34F729FDB47EC68345C3 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys 15:52:21.0748 4536 NdisWan - ok 15:52:21.0768 4536 [ 71DAB552B41936358F3B541AE5997FB3 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys 15:52:21.0831 4536 NDProxy - ok 15:52:21.0855 4536 [ BCD093A5A6777CF626434568DC7DBA78 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys 15:52:21.0919 4536 NetBIOS - ok 15:52:21.0942 4536 [ ECD64230A59CBD93C85F1CD1CAB9F3F6 ] netbt C:\Windows\system32\DRIVERS\netbt.sys 15:52:22.0015 4536 netbt - ok 15:52:22.0044 4536 [ A3E186B4B935905B829219502557314E ] Netlogon C:\Windows\system32\lsass.exe 15:52:22.0079 4536 Netlogon - ok 15:52:22.0128 4536 [ C8052711DAECC48B982434C5116CA401 ] Netman C:\Windows\System32\netman.dll 15:52:22.0205 4536 Netman - ok 15:52:22.0232 4536 [ 2EF3BBE22E5A5ACD1428EE387A0D0172 ] netprofm C:\Windows\System32\netprofm.dll 15:52:22.0321 4536 netprofm - ok 15:52:22.0353 4536 [ D6C4E4A39A36029AC0813D476FBD0248 ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 15:52:22.0385 4536 NetTcpPortSharing - ok 15:52:22.0581 4536 [ 8DE67BD902095A13329FD82C85A1FA09 ] NETw5v32 C:\Windows\system32\DRIVERS\NETw5v32.sys 15:52:22.0870 4536 NETw5v32 - ok 15:52:23.0190 4536 [ 2605B7E88F4D2303896045D553C90D7A ] NETwNv32 C:\Windows\system32\DRIVERS\NETwNv32.sys 15:52:23.0711 4536 NETwNv32 - ok 15:52:24.0071 4536 [ DF282FE0D05CFA1115ED29D670195A15 ] NETwNx32 C:\Windows\system32\DRIVERS\NETwNx32.sys 15:52:24.0650 4536 NETwNx32 - ok 15:52:24.0683 4536 [ 2E7FB731D4790A1BC6270ACCEFACB36E ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys 15:52:24.0714 4536 nfrd960 - ok 15:52:24.0751 4536 [ 2997B15415F9BBE05B5A4C1C85E0C6A2 ] NlaSvc C:\Windows\System32\nlasvc.dll 15:52:24.0838 4536 NlaSvc - ok 15:52:24.0866 4536 [ D36F239D7CCE1931598E8FB90A0DBC26 ] Npfs C:\Windows\system32\drivers\Npfs.sys 15:52:24.0918 4536 Npfs - ok 15:52:24.0938 4536 [ 8BB86F0C7EEA2BDED6FE095D0B4CA9BD ] nsi C:\Windows\system32\nsisvc.dll 15:52:25.0027 4536 nsi - ok 15:52:25.0060 4536 [ 609773E344A97410CE4EBF74A8914FCF ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys 15:52:25.0138 4536 nsiproxy - ok 15:52:25.0209 4536 [ 6A4A98CEE84CF9E99564510DDA4BAA47 ] Ntfs C:\Windows\system32\drivers\Ntfs.sys 15:52:25.0318 4536 Ntfs - ok 15:52:25.0342 4536 [ 2757D2BA59AEE155209E24942AB127C9 ] NTIDrvr C:\Windows\system32\DRIVERS\NTIDrvr.sys 15:52:25.0368 4536 NTIDrvr - ok 15:52:25.0401 4536 [ 547BFA3591C70674B0BFC99354AB78B3 ] NTIPPKernel C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys 15:52:25.0442 4536 NTIPPKernel ( UnsignedFile.Multi.Generic ) - warning 15:52:25.0442 4536 NTIPPKernel - detected UnsignedFile.Multi.Generic (1) 15:52:25.0465 4536 [ E875C093AEC0C978A90F30C9E0DFBB72 ] ntrigdigi C:\Windows\system32\drivers\ntrigdigi.sys 15:52:25.0597 4536 ntrigdigi - ok 15:52:25.0628 4536 [ C5DBBCDA07D780BDA9B685DF333BB41E ] Null C:\Windows\system32\drivers\Null.sys 15:52:25.0703 4536 Null - ok 15:52:25.0794 4536 [ 77F9F9A199B87FE3F852E12F5419240B ] NVHDA C:\Windows\system32\drivers\nvhda32v.sys 15:52:25.0829 4536 NVHDA - ok 15:52:26.0271 4536 [ 0A1B502CBC8230DA74BEFBAADDB58916 ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys 15:52:27.0100 4536 nvlddmkm - ok 15:52:27.0150 4536 [ 2EDF9E7751554B42CBB60116DE727101 ] nvraid C:\Windows\system32\drivers\nvraid.sys 15:52:27.0186 4536 nvraid - ok 15:52:27.0204 4536 [ ABED0C09758D1D97DB0042DBB2688177 ] nvstor C:\Windows\system32\drivers\nvstor.sys 15:52:27.0237 4536 nvstor - ok 15:52:27.0295 4536 [ EB5A13F9139F20AD71ADF4BF79C3AA29 ] nvsvc C:\Windows\system32\nvvsvc.exe 15:52:27.0374 4536 nvsvc - ok 15:52:27.0500 4536 [ 0629259E3AF6BB0534FCECA208973404 ] nvUpdatusService C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe 15:52:27.0617 4536 nvUpdatusService - ok 15:52:27.0641 4536 [ 18BBDF913916B71BD54575BDB6EEAC0B ] nv_agp C:\Windows\system32\drivers\nv_agp.sys 15:52:27.0678 4536 nv_agp - ok 15:52:27.0690 4536 NwlnkFlt - ok 15:52:27.0704 4536 NwlnkFwd - ok 15:52:27.0770 4536 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 15:52:27.0817 4536 odserv - ok 15:52:27.0883 4536 [ BE32DA025A0BE1878F0EE8D6D9386CD5 ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys 15:52:28.0009 4536 ohci1394 - ok 15:52:28.0044 4536 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 15:52:28.0073 4536 ose - ok 15:52:28.0123 4536 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2pimsvc C:\Windows\system32\p2psvc.dll 15:52:28.0246 4536 p2pimsvc - ok 15:52:28.0290 4536 [ 0C8E8E61AD1EB0B250B846712C917506 ] p2psvc C:\Windows\system32\p2psvc.dll 15:52:28.0368 4536 p2psvc - ok 15:52:28.0456 4536 [ 0FA9B5055484649D63C303FE404E5F4D ] Parport C:\Windows\system32\drivers\parport.sys 15:52:28.0582 4536 Parport - ok 15:52:28.0604 4536 [ B9C2B89F08670E159F7181891E449CD9 ] partmgr C:\Windows\system32\drivers\partmgr.sys 15:52:28.0640 4536 partmgr - ok 15:52:28.0658 4536 [ 4F9A6A8A31413180D0FCB279AD5D8112 ] Parvdm C:\Windows\system32\drivers\parvdm.sys 15:52:28.0786 4536 Parvdm - ok 15:52:28.0822 4536 [ C6276AD11F4BB49B58AA1ED88537F14A ] PcaSvc C:\Windows\System32\pcasvc.dll 15:52:28.0899 4536 PcaSvc - ok 15:52:28.0954 4536 [ 941DC1D19E7E8620F40BBC206981EFDB ] pci C:\Windows\system32\drivers\pci.sys 15:52:28.0995 4536 pci - ok 15:52:29.0034 4536 [ 1636D43F10416AEB483BC6001097B26C ] pciide C:\Windows\system32\drivers\pciide.sys 15:52:29.0069 4536 pciide - ok 15:52:29.0099 4536 [ E6F3FB1B86AA519E7698AD05E58B04E5 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys 15:52:29.0136 4536 pcmcia - ok 15:52:29.0234 4536 [ 6349F6ED9C623B44B52EA3C63C831A92 ] PEAUTH C:\Windows\system32\drivers\peauth.sys 15:52:29.0396 4536 PEAUTH - ok 15:52:29.0502 4536 [ B1689DF169143F57053F795390C99DB3 ] pla C:\Windows\system32\pla.dll 15:52:29.0682 4536 pla - ok 15:52:29.0718 4536 [ C5E7F8A996EC0A82D508FD9064A5569E ] PlugPlay C:\Windows\system32\umpnpmgr.dll 15:52:29.0780 4536 PlugPlay - ok 15:52:29.0822 4536 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPAutoReg C:\Windows\system32\p2psvc.dll 15:52:29.0879 4536 PNRPAutoReg - ok 15:52:29.0944 4536 [ 0C8E8E61AD1EB0B250B846712C917506 ] PNRPsvc C:\Windows\system32\p2psvc.dll 15:52:30.0000 4536 PNRPsvc - ok 15:52:30.0056 4536 [ D0494460421A03CD5225CCA0059AA146 ] PolicyAgent C:\Windows\System32\ipsecsvc.dll 15:52:30.0194 4536 PolicyAgent - ok 15:52:30.0288 4536 [ ECFFFAEC0C1ECD8DBC77F39070EA1DB1 ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys 15:52:30.0353 4536 PptpMiniport - ok 15:52:30.0370 4536 [ 2027293619DD0F047C584CF2E7DF4FFD ] Processor C:\Windows\system32\drivers\processr.sys 15:52:30.0452 4536 Processor - ok 15:52:30.0524 4536 [ 0508FAA222D28835310B7BFCA7A77346 ] ProfSvc C:\Windows\system32\profsvc.dll 15:52:30.0600 4536 ProfSvc - ok 15:52:30.0628 4536 [ A3E186B4B935905B829219502557314E ] ProtectedStorage C:\Windows\system32\lsass.exe 15:52:30.0663 4536 ProtectedStorage - ok 15:52:30.0680 4536 [ 99514FAA8DF93D34B5589187DB3AA0BA ] PSched C:\Windows\system32\DRIVERS\pacer.sys 15:52:30.0754 4536 PSched - ok 15:52:30.0824 4536 [ D175CC622280485F6616F2CAB13C37F5 ] PSDFilter C:\Windows\system32\DRIVERS\psdfilter.sys 15:52:30.0848 4536 PSDFilter - ok 15:52:30.0913 4536 [ 091B7DB23E1849CF9CD8C164A3999B74 ] PSDNServ C:\Windows\system32\drivers\PSDNServ.sys 15:52:30.0938 4536 PSDNServ - ok 15:52:30.0959 4536 [ AAC03E21DD3E888D76C123A5872738C7 ] psdvdisk C:\Windows\system32\drivers\psdvdisk.sys 15:52:30.0985 4536 psdvdisk - ok 15:52:31.0047 4536 [ D24DFD16A1E2A76034DF5AA18125C35D ] PSI C:\Windows\system32\DRIVERS\psi_mf.sys 15:52:31.0073 4536 PSI - ok 15:52:31.0213 4536 [ 0A6DB55AFB7820C99AA1F3A1D270F4F6 ] ql2300 C:\Windows\system32\drivers\ql2300.sys 15:52:31.0321 4536 ql2300 - ok 15:52:31.0370 4536 [ 81A7E5C076E59995D54BC1ED3A16E60B ] ql40xx C:\Windows\system32\drivers\ql40xx.sys 15:52:31.0404 4536 ql40xx - ok 15:52:31.0434 4536 [ E9ECAE663F47E6CB43962D18AB18890F ] QWAVE C:\Windows\system32\qwave.dll 15:52:31.0480 4536 QWAVE - ok 15:52:31.0495 4536 [ 9F5E0E1926014D17486901C88ECA2DB7 ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys 15:52:31.0544 4536 QWAVEdrv - ok 15:52:31.0571 4536 [ 147D7F9C556D259924351FEB0DE606C3 ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys 15:52:31.0634 4536 RasAcd - ok 15:52:31.0662 4536 [ F6A452EB4CEADBB51C9E0EE6B3ECEF0F ] RasAuto C:\Windows\System32\rasauto.dll 15:52:31.0752 4536 RasAuto - ok 15:52:31.0780 4536 [ A214ADBAF4CB47DD2728859EF31F26B0 ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys 15:52:31.0862 4536 Rasl2tp - ok 15:52:31.0922 4536 [ 75D47445D70CA6F9F894B032FBC64FCF ] RasMan C:\Windows\System32\rasmans.dll 15:52:31.0985 4536 RasMan - ok 15:52:32.0010 4536 [ 509A98DD18AF4375E1FC40BC175F1DEF ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys 15:52:32.0061 4536 RasPppoe - ok 15:52:32.0101 4536 [ 2005F4A1E05FA09389AC85840F0A9E4D ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys 15:52:32.0137 4536 RasSstp - ok 15:52:32.0174 4536 [ B14C9D5B9ADD2F84F70570BBBFAA7935 ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys 15:52:32.0233 4536 rdbss - ok 15:52:32.0249 4536 [ 89E59BE9A564262A3FB6C4F4F1CD9899 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys 15:52:32.0327 4536 RDPCDD - ok 15:52:32.0363 4536 [ 943B18305EAE3935598A9B4A3D560B4C ] rdpdr C:\Windows\system32\drivers\rdpdr.sys 15:52:32.0443 4536 rdpdr - ok 15:52:32.0454 4536 [ 9D91FE5286F748862ECFFA05F8A0710C ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys 15:52:32.0532 4536 RDPENCDD - ok 15:52:32.0577 4536 [ C127EBD5AFAB31524662C48DFCEB773A ] RDPWD C:\Windows\system32\drivers\RDPWD.sys 15:52:32.0646 4536 RDPWD - ok 15:52:32.0706 4536 [ 3B1A7CEA1E230103264405E0FB05532C ] RegSrvc C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe 15:52:32.0762 4536 RegSrvc - ok 15:52:32.0830 4536 [ BCDD6B4804D06B1F7EBF29E53A57ECE9 ] RemoteAccess C:\Windows\System32\mprdim.dll 15:52:32.0909 4536 RemoteAccess - ok 15:52:32.0957 4536 [ 9E6894EA18DAFF37B63E1005F83AE4AB ] RemoteRegistry C:\Windows\system32\regsvc.dll 15:52:33.0025 4536 RemoteRegistry - ok 15:52:33.0064 4536 [ 6482707F9F4DA0ECBAB43B2E0398A101 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys 15:52:33.0136 4536 RFCOMM - ok 15:52:33.0284 4536 [ 616F6E52CAE254727A886BA8EDA1BEEA ] RichVideo C:\Program Files\Cyberlink\Shared files\RichVideo.exe 15:52:33.0320 4536 RichVideo - ok 15:52:33.0356 4536 [ 5123F83CBC4349D065534EEB6BBDC42B ] RpcLocator C:\Windows\system32\locator.exe 15:52:33.0408 4536 RpcLocator - ok 15:52:33.0442 4536 [ 3B5B4D53FEC14F7476CA29A20CC31AC9 ] RpcSs C:\Windows\system32\rpcss.dll 15:52:33.0511 4536 RpcSs - ok 15:52:33.0555 4536 [ 9C508F4074A39E8B4B31D27198146FAD ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys 15:52:33.0636 4536 rspndr - ok 15:52:33.0707 4536 [ AEA02865B8FECD6FCAB10910A950D39A ] RSUSBCCID C:\Windows\system32\DRIVERS\RtsUCcid.sys 15:52:33.0756 4536 RSUSBCCID - ok 15:52:33.0843 4536 [ 772A6EC587CB8826DF055762E872412F ] RSUSBSTOR C:\Windows\system32\Drivers\RtsUStor.sys 15:52:33.0909 4536 RSUSBSTOR - ok 15:52:33.0940 4536 [ 7A4F79DF3793160B280CDE152B61FE33 ] RTSTOR C:\Windows\system32\drivers\RTSTOR.SYS 15:52:33.0992 4536 RTSTOR - ok 15:52:34.0080 4536 [ BD396A6C54EF003C5DF52812BA61BA1B ] RtsUIr C:\Windows\system32\DRIVERS\RtsUIr.sys 15:52:34.0136 4536 RtsUIr - ok 15:52:34.0159 4536 [ A3E186B4B935905B829219502557314E ] SamSs C:\Windows\system32\lsass.exe 15:52:34.0194 4536 SamSs - ok 15:52:34.0297 4536 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS 15:52:34.0322 4536 SASDIFSV - ok 15:52:34.0344 4536 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS 15:52:34.0370 4536 SASKUTIL - ok 15:52:34.0401 4536 [ 3CE8F073A557E172B330109436984E30 ] sbp2port C:\Windows\system32\drivers\sbp2port.sys 15:52:34.0434 4536 sbp2port - ok 15:52:34.0528 4536 [ 77B7A11A0C3D78D3386398FBBEA1B632 ] SCardSvr C:\Windows\System32\SCardSvr.dll 15:52:34.0604 4536 SCardSvr - ok 15:52:34.0661 4536 [ 1A58069DB21D05EB2AB58EE5753EBE8D ] Schedule C:\Windows\system32\schedsvc.dll 15:52:34.0794 4536 Schedule - ok 15:52:34.0826 4536 [ 312EC3E37A0A1F2006534913E37B4423 ] SCPolicySvc C:\Windows\System32\certprop.dll 15:52:34.0874 4536 SCPolicySvc - ok 15:52:34.0916 4536 [ 716313D9F6B0529D03F726D5AAF6F191 ] SDRSVC C:\Windows\System32\SDRSVC.dll 15:52:34.0973 4536 SDRSVC - ok 15:52:35.0120 4536 [ 78779EE07231C658B483B1F38B5088DF ] SeaPort C:\Program Files\Microsoft\BingBar\SeaPort.EXE 15:52:35.0163 4536 SeaPort - ok 15:52:35.0188 4536 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys 15:52:35.0318 4536 secdrv - ok 15:52:35.0346 4536 [ FD5199D4D8A521005E4B5EE7FE00FA9B ] seclogon C:\Windows\system32\seclogon.dll 15:52:35.0434 4536 seclogon - ok 15:52:35.0540 4536 [ 5B66DB4877BBAC9F7493AA8D84421E49 ] Secunia PSI Agent C:\Program Files\Secunia\PSI\PSIA.exe 15:52:35.0645 4536 Secunia PSI Agent - ok 15:52:35.0683 4536 [ A9BBAB5759771E523F55563D6CBE140F ] SENS C:\Windows\system32\sens.dll 15:52:35.0751 4536 SENS - ok 15:52:35.0783 4536 [ 68E44E331D46F0FB38F0863A84CD1A31 ] Serenum C:\Windows\system32\drivers\serenum.sys 15:52:35.0909 4536 Serenum - ok 15:52:35.0951 4536 [ C70D69A918B178D3C3B06339B40C2E1B ] Serial C:\Windows\system32\drivers\serial.sys 15:52:36.0064 4536 Serial - ok 15:52:36.0080 4536 [ 8AF3D28A879BF75DB53A0EE7A4289624 ] sermouse C:\Windows\system32\drivers\sermouse.sys 15:52:36.0149 4536 sermouse - ok 15:52:36.0193 4536 [ D2193326F729B163125610DBF3E17D57 ] SessionEnv C:\Windows\system32\sessenv.dll 15:52:36.0263 4536 SessionEnv - ok 15:52:36.0282 4536 [ 3EFA810BDCA87F6ECC24F9832243FE86 ] sffdisk C:\Windows\system32\drivers\sffdisk.sys 15:52:36.0348 4536 sffdisk - ok 15:52:36.0361 4536 [ E5EAFE85815BD89095FEF3144A09AB68 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys 15:52:36.0413 4536 sffp_mmc - ok 15:52:36.0444 4536 [ 9F66A46C55D6F1CCABC79BB7AFCCC545 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys 15:52:36.0496 4536 sffp_sd - ok 15:52:36.0516 4536 [ 46ED8E91793B2E6F848015445A0AC188 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys 15:52:36.0650 4536 sfloppy - ok 15:52:36.0700 4536 [ E1499BD0FF76B1B2FBBF1AF339D91165 ] SharedAccess C:\Windows\System32\ipnathlp.dll 15:52:36.0777 4536 SharedAccess - ok 15:52:36.0820 4536 [ C7230FBEE14437716701C15BE02C27B8 ] ShellHWDetection C:\Windows\System32\shsvcs.dll 15:52:36.0880 4536 ShellHWDetection - ok 15:52:36.0903 4536 [ 1D76624A09A054F682D746B924E2DBC3 ] sisagp C:\Windows\system32\drivers\sisagp.sys 15:52:36.0937 4536 sisagp - ok 15:52:36.0951 4536 [ 43CB7AA756C7DB280D01DA9B676CFDE2 ] SiSRaid2 C:\Windows\system32\drivers\sisraid2.sys 15:52:36.0990 4536 SiSRaid2 - ok 15:52:37.0006 4536 [ A99C6C8B0BAA970D8AA59DDC50B57F94 ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys 15:52:37.0041 4536 SiSRaid4 - ok 15:52:37.0080 4536 [ A4FAB5F7818A69DA6E740943CB8F7CA9 ] SkypeUpdate C:\Program Files\Skype\Updater\Updater.exe 15:52:37.0114 4536 SkypeUpdate - ok 15:52:37.0261 4536 [ 862BB4CBC05D80C5B45BE430E5EF872F ] slsvc C:\Windows\system32\SLsvc.exe 15:52:37.0529 4536 slsvc - ok 15:52:37.0568 4536 [ 6EDC422215CD78AA8A9CDE6B30ABBD35 ] SLUINotify C:\Windows\system32\SLUINotify.dll 15:52:37.0624 4536 SLUINotify - ok 15:52:37.0647 4536 [ 7B75299A4D201D6A6533603D6914AB04 ] Smb C:\Windows\system32\DRIVERS\smb.sys 15:52:37.0700 4536 Smb - ok 15:52:37.0807 4536 [ EB49860E776CE860DC3CFB9EDB1BA517 ] snapman C:\Windows\system32\DRIVERS\snapman.sys 15:52:37.0839 4536 snapman - ok 15:52:37.0862 4536 [ 2A146A055B4401C16EE62D18B8E2A032 ] SNMPTRAP C:\Windows\System32\snmptrap.exe 15:52:37.0898 4536 SNMPTRAP - ok 15:52:37.0985 4536 [ 0302BC619D4A723317E7F8EB0C362BD3 ] SNP2UVC C:\Windows\system32\DRIVERS\snp2uvc.sys 15:52:38.0155 4536 SNP2UVC - ok 15:52:38.0197 4536 [ 7AEBDEEF071FE28B0EEF2CDD69102BFF ] spldr C:\Windows\system32\drivers\spldr.sys 15:52:38.0232 4536 spldr - ok 15:52:38.0279 4536 [ 8554097E5136C3BF9F69FE578A1B35F4 ] Spooler C:\Windows\System32\spoolsv.exe 15:52:38.0373 4536 Spooler - ok 15:52:38.0479 4536 [ 41987F9FC0E61ADF54F581E15029AD91 ] srv C:\Windows\system32\DRIVERS\srv.sys 15:52:38.0534 4536 srv - ok 15:52:38.0563 4536 [ FF33AFF99564B1AA534F58868CBE41EF ] srv2 C:\Windows\system32\DRIVERS\srv2.sys 15:52:38.0618 4536 srv2 - ok 15:52:38.0640 4536 [ 7605C0E1D01A08F3ECD743F38B834A44 ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys 15:52:38.0691 4536 srvnet - ok 15:52:38.0739 4536 [ 03D50B37234967433A5EA5BA72BC0B62 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll 15:52:38.0831 4536 SSDPSRV - ok 15:52:38.0894 4536 [ 6F1A32E7B7B30F004D9A20AFADB14944 ] SstpSvc C:\Windows\system32\sstpsvc.dll 15:52:38.0953 4536 SstpSvc - ok 15:52:39.0030 4536 [ 3F0164FBC0BD1ADBD02DF9759181451A ] ss_bbus C:\Windows\system32\DRIVERS\ss_bbus.sys 15:52:39.0060 4536 ss_bbus - ok 15:52:39.0081 4536 [ B89D62206034E5FE573C80A24DD55675 ] ss_bmdfl C:\Windows\system32\DRIVERS\ss_bmdfl.sys 15:52:39.0106 4536 ss_bmdfl - ok 15:52:39.0132 4536 [ 1ED0FCEA586FE2A416EE15196E5631DD ] ss_bmdm C:\Windows\system32\DRIVERS\ss_bmdm.sys 15:52:39.0161 4536 ss_bmdm - ok 15:52:39.0241 4536 [ 5DE7D67E49B88F5F07F3E53C4B92A352 ] stisvc C:\Windows\System32\wiaservc.dll 15:52:39.0347 4536 stisvc - ok 15:52:39.0425 4536 [ 7BA58ECF0C0A9A69D44B3DCA62BECF56 ] swenum C:\Windows\system32\DRIVERS\swenum.sys 15:52:39.0457 4536 swenum - ok 15:52:39.0474 4536 [ F21FD248040681CCA1FB6C9A03AAA93D ] swprv C:\Windows\System32\swprv.dll 15:52:39.0563 4536 swprv - ok 15:52:39.0589 4536 [ 192AA3AC01DF071B541094F251DEED10 ] Symc8xx C:\Windows\system32\drivers\symc8xx.sys 15:52:39.0620 4536 Symc8xx - ok 15:52:39.0637 4536 [ 8C8EB8C76736EBAF3B13B633B2E64125 ] Sym_hi C:\Windows\system32\drivers\sym_hi.sys 15:52:39.0668 4536 Sym_hi - ok 15:52:39.0689 4536 [ 8072AF52B5FD103BBBA387A1E49F62CB ] Sym_u3 C:\Windows\system32\drivers\sym_u3.sys 15:52:39.0720 4536 Sym_u3 - ok 15:52:39.0782 4536 [ 4C9BB4B3B9EAC26211484C30B914C6DC ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys 15:52:39.0818 4536 SynTP - ok 15:52:39.0867 4536 [ 9A51B04E9886AA4EE90093586B0BA88D ] SysMain C:\Windows\system32\sysmain.dll 15:52:39.0982 4536 SysMain - ok 15:52:40.0007 4536 [ 2DCA225EAE15F42C0933E998EE0231C3 ] TabletInputService C:\Windows\System32\TabSvc.dll 15:52:40.0051 4536 TabletInputService - ok 15:52:40.0085 4536 [ D7673E4B38CE21EE54C59EEEB65E2483 ] TapiSrv C:\Windows\System32\tapisrv.dll 15:52:40.0147 4536 TapiSrv - ok 15:52:40.0168 4536 [ CB05822CD9CC6C688168E113C603DBE7 ] TBS C:\Windows\System32\tbssvc.dll 15:52:40.0247 4536 TBS - ok 15:52:40.0315 4536 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip C:\Windows\system32\drivers\tcpip.sys 15:52:40.0409 4536 Tcpip - ok 15:52:40.0471 4536 [ 27D470DABC77BC60D0A3B0E4DEB6CB91 ] Tcpip6 C:\Windows\system32\DRIVERS\tcpip.sys 15:52:40.0549 4536 Tcpip6 - ok 15:52:40.0582 4536 [ 608C345A255D82A6289C2D468EB41FD7 ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys 15:52:40.0623 4536 tcpipreg - ok 15:52:40.0661 4536 [ 72B9E77565DA5FA564581976E000D29B ] TcUsb C:\Windows\system32\Drivers\tcusb.sys 15:52:40.0690 4536 TcUsb - ok 15:52:40.0719 4536 [ 5DCF5E267BE67A1AE926F2DF77FBCC56 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys 15:52:40.0785 4536 TDPIPE - ok 15:52:40.0834 4536 [ 431801FCC97034E04A6EFF81136578D7 ] tdrpman273 C:\Windows\system32\DRIVERS\tdrpm273.sys 15:52:40.0913 4536 tdrpman273 - ok 15:52:40.0930 4536 [ 389C63E32B3CEFED425B61ED92D3F021 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys 15:52:41.0005 4536 TDTCP - ok 15:52:41.0032 4536 [ 76B06EB8A01FC8624D699E7045303E54 ] tdx C:\Windows\system32\DRIVERS\tdx.sys 15:52:41.0086 4536 tdx - ok 15:52:41.0129 4536 [ 3CAD38910468EAB9A6479E2F01DB43C7 ] TermDD C:\Windows\system32\DRIVERS\termdd.sys 15:52:41.0165 4536 TermDD - ok 15:52:41.0208 4536 [ BB95DA09BEF6E7A131BFF3BA5032090D ] TermService C:\Windows\System32\termsrv.dll 15:52:41.0298 4536 TermService - ok 15:52:41.0329 4536 [ C7230FBEE14437716701C15BE02C27B8 ] Themes C:\Windows\system32\shsvcs.dll 15:52:41.0370 4536 Themes - ok 15:52:41.0390 4536 [ 1076FFCFFAAE8385FD62DFCB25AC4708 ] THREADORDER C:\Windows\system32\mmcss.dll 15:52:41.0455 4536 THREADORDER - ok 15:52:41.0479 4536 [ EC74E77D0EB004BD3A809B5F8FB8C2CE ] TrkWks C:\Windows\System32\trkwks.dll 15:52:41.0568 4536 TrkWks - ok 15:52:41.0632 4536 [ 97D9D6A04E3AD9B6C626B9931DB78DBA ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe 15:52:41.0682 4536 TrustedInstaller - ok 15:52:41.0708 4536 [ DCF0F056A2E4F52287264F5AB29CF206 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys 15:52:41.0777 4536 tssecsrv - ok 15:52:41.0843 4536 [ CAECC0120AC49E3D2F758B9169872D38 ] tunmp C:\Windows\system32\DRIVERS\tunmp.sys 15:52:41.0899 4536 tunmp - ok 15:52:41.0941 4536 [ 300DB877AC094FEAB0BE7688C3454A9C ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys 15:52:41.0975 4536 tunnel - ok 15:52:41.0993 4536 [ 7D33C4DB2CE363C8518D2DFCF533941F ] uagp35 C:\Windows\system32\drivers\uagp35.sys 15:52:42.0028 4536 uagp35 - ok 15:52:42.0047 4536 [ D9728AF68C4C7693CB100B8441CBDEC6 ] udfs C:\Windows\system32\DRIVERS\udfs.sys 15:52:42.0107 4536 udfs - ok 15:52:42.0150 4536 [ ECEF404F62863755951E09C802C94AD5 ] UI0Detect C:\Windows\system32\UI0Detect.exe 15:52:42.0231 4536 UI0Detect - ok 15:52:42.0342 4536 [ 27708D73E1B4C0E0F86A99976E02CBD4 ] UI5IFS C:\Program Files\Ashampoo\Ashampoo UnInstaller 5\IFS32.sys 15:52:42.0370 4536 UI5IFS - ok 15:52:42.0398 4536 [ B0ACFDC9E4AF279E9116C03E014B2B27 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys 15:52:42.0432 4536 uliagpkx - ok 15:52:42.0462 4536 [ 9224BB254F591DE4CA8D572A5F0D635C ] uliahci C:\Windows\system32\drivers\uliahci.sys 15:52:42.0505 4536 uliahci - ok 15:52:42.0524 4536 [ 8514D0E5CD0534467C5FC61BE94A569F ] UlSata C:\Windows\system32\drivers\ulsata.sys 15:52:42.0563 4536 UlSata - ok 15:52:42.0582 4536 [ 38C3C6E62B157A6BC46594FADA45C62B ] ulsata2 C:\Windows\system32\drivers\ulsata2.sys 15:52:42.0617 4536 ulsata2 - ok 15:52:42.0647 4536 [ 32CFF9F809AE9AED85464492BF3E32D2 ] umbus C:\Windows\system32\DRIVERS\umbus.sys 15:52:42.0733 4536 umbus - ok 15:52:42.0777 4536 [ 68308183F4AE0BE7BF8ECD07CB297999 ] upnphost C:\Windows\System32\upnphost.dll 15:52:42.0866 4536 upnphost - ok 15:52:42.0940 4536 [ 6AC8E9FB8AD65179D78413DB91CA3E16 ] USB28xxBGA C:\Windows\system32\DRIVERS\emBDA.sys 15:52:43.0017 4536 USB28xxBGA - ok 15:52:43.0079 4536 [ 77A71EFCEC58703C6EF7F2323105CEB3 ] USB28xxOEM C:\Windows\system32\DRIVERS\emOEM.sys 15:52:43.0204 4536 USB28xxOEM - ok 15:52:43.0368 4536 [ 32DB9517628FF0D070682AAB61E688F0 ] usbaudio C:\Windows\system32\drivers\usbaudio.sys 15:52:43.0423 4536 usbaudio - ok 15:52:43.0455 4536 [ CAF811AE4C147FFCD5B51750C7F09142 ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys 15:52:43.0510 4536 usbccgp - ok 15:52:43.0555 4536 [ E9476E6C486E76BC4898074768FB7131 ] usbcir C:\Windows\system32\drivers\usbcir.sys 15:52:43.0684 4536 usbcir - ok 15:52:43.0744 4536 [ 79E96C23A97CE7B8F14D310DA2DB0C9B ] usbehci C:\Windows\system32\DRIVERS\usbehci.sys 15:52:43.0797 4536 usbehci - ok 15:52:43.0829 4536 [ 4673BBCB006AF60E7ABDDBE7A130BA42 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys 15:52:43.0892 4536 usbhub - ok 15:52:43.0933 4536 [ 38DBC7DD6CC5A72011F187425384388B ] usbohci C:\Windows\system32\drivers\usbohci.sys 15:52:44.0064 4536 usbohci - ok 15:52:44.0108 4536 [ E75C4B5269091D15A2E7DC0B6D35F2F5 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys 15:52:44.0173 4536 usbprint - ok 15:52:44.0218 4536 [ A508C9BD8724980512136B039BBA65E9 ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys 15:52:44.0271 4536 usbscan - ok 15:52:44.0322 4536 [ BE3DA31C191BC222D9AD503C5224F2AD ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS 15:52:44.0396 4536 USBSTOR - ok 15:52:44.0423 4536 [ 814D653EFC4D48BE3B04A307ECEFF56F ] usbuhci C:\Windows\system32\DRIVERS\usbuhci.sys 15:52:44.0481 4536 usbuhci - ok 15:52:44.0525 4536 [ E67998E8F14CB0627A769F6530BCB352 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys 15:52:44.0600 4536 usbvideo - ok 15:52:44.0626 4536 [ 1509E705F3AC1D474C92454A5C2DD81F ] UxSms C:\Windows\System32\uxsms.dll 15:52:44.0682 4536 UxSms - ok 15:52:44.0719 4536 [ CD88D1B7776DC17A119049742EC07EB4 ] vds C:\Windows\System32\vds.exe 15:52:44.0798 4536 vds - ok 15:52:44.0873 4536 [ 87B06E1F30B749A114F74622D013F8D4 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys 15:52:44.0961 4536 vga - ok 15:52:44.0993 4536 [ 2E93AC0A1D8C79D019DB6C51F036636C ] VgaSave C:\Windows\System32\drivers\vga.sys 15:52:45.0059 4536 VgaSave - ok 15:52:45.0098 4536 [ 5D7159DEF58A800D5781BA3A879627BC ] viaagp C:\Windows\system32\drivers\viaagp.sys 15:52:45.0133 4536 viaagp - ok 15:52:45.0160 4536 [ C4F3A691B5BAD343E6249BD8C2D45DEE ] ViaC7 C:\Windows\system32\drivers\viac7.sys 15:52:45.0227 4536 ViaC7 - ok 15:52:45.0254 4536 [ AADF5587A4063F52C2C3FED7887426FC ] viaide C:\Windows\system32\drivers\viaide.sys 15:52:45.0293 4536 viaide - ok 15:52:45.0329 4536 [ 69503668AC66C77C6CD7AF86FBDF8C43 ] volmgr C:\Windows\system32\drivers\volmgr.sys 15:52:45.0367 4536 volmgr - ok 15:52:45.0440 4536 [ 23E41B834759917BFD6B9A0D625D0C28 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys 15:52:45.0493 4536 volmgrx - ok 15:52:45.0706 4536 [ 147281C01FCB1DF9252DE2A10D5E7093 ] volsnap C:\Windows\system32\drivers\volsnap.sys 15:52:45.0752 4536 volsnap - ok 15:52:45.0971 4536 [ 587253E09325E6BF226B299774B728A9 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys 15:52:46.0010 4536 vsmraid - ok 15:52:46.0077 4536 [ DB3D19F850C6EB32BDCB9BC0836ACDDB ] VSS C:\Windows\system32\vssvc.exe 15:52:46.0205 4536 VSS - ok 15:52:46.0242 4536 [ 96EA68B9EB310A69C25EBB0282B2B9DE ] W32Time C:\Windows\system32\w32time.dll 15:52:46.0331 4536 W32Time - ok 15:52:46.0359 4536 [ 48DFEE8F1AF7C8235D4E626F0C4FE031 ] WacomPen C:\Windows\system32\drivers\wacompen.sys 15:52:46.0488 4536 WacomPen - ok 15:52:46.0527 4536 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarp C:\Windows\system32\DRIVERS\wanarp.sys 15:52:46.0581 4536 Wanarp - ok 15:52:46.0634 4536 [ 55201897378CCA7AF8B5EFD874374A26 ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys 15:52:46.0689 4536 Wanarpv6 - ok 15:52:46.0784 4536 [ A3CD60FD826381B49F03832590E069AF ] wcncsvc C:\Windows\System32\wcncsvc.dll 15:52:46.0839 4536 wcncsvc - ok 15:52:46.0879 4536 [ 11BCB7AFCDD7AADACB5746F544D3A9C7 ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll 15:52:46.0942 4536 WcsPlugInService - ok 15:52:46.0989 4536 [ 78FE9542363F297B18C027B2D7E7C07F ] Wd C:\Windows\system32\drivers\wd.sys 15:52:47.0022 4536 Wd - ok 15:52:47.0073 4536 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys 15:52:47.0134 4536 Wdf01000 - ok 15:52:47.0180 4536 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiServiceHost C:\Windows\system32\wdi.dll 15:52:47.0280 4536 WdiServiceHost - ok 15:52:47.0305 4536 [ ABFC76B48BB6C96E3338D8943C5D93B5 ] WdiSystemHost C:\Windows\system32\wdi.dll 15:52:47.0375 4536 WdiSystemHost - ok 15:52:47.0410 4536 [ 04C37D8107320312FBAE09926103D5E2 ] WebClient C:\Windows\System32\webclnt.dll 15:52:47.0459 4536 WebClient - ok 15:52:47.0526 4536 [ AE3736E7E8892241C23E4EBBB7453B60 ] Wecsvc C:\Windows\system32\wecsvc.dll 15:52:47.0579 4536 Wecsvc - ok 15:52:47.0615 4536 [ 670FF720071ED741206D69BD995EA453 ] wercplsupport C:\Windows\System32\wercplsupport.dll 15:52:47.0674 4536 wercplsupport - ok 15:52:47.0715 4536 [ 32B88481D3B326DA6DEB07B1D03481E7 ] WerSvc C:\Windows\System32\WerSvc.dll 15:52:47.0789 4536 WerSvc - ok 15:52:47.0845 4536 [ BB9CBAF6AC20452B245C324F1F50EE81 ] winachsf C:\Windows\system32\DRIVERS\HSX_CNXT.sys 15:52:47.0923 4536 winachsf - ok 15:52:47.0991 4536 [ 3FA87D56769838AAC82FAFC3E78FC732 ] winbondcir C:\Windows\system32\DRIVERS\winbondcir.sys 15:52:48.0050 4536 winbondcir - ok 15:52:48.0108 4536 [ 4575AA12561C5648483403541D0D7F2B ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll 15:52:48.0152 4536 WinDefend - ok 15:52:48.0168 4536 WinHttpAutoProxySvc - ok 15:52:48.0234 4536 [ 6B2A1D0E80110E3D04E6863C6E62FD8A ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll 15:52:48.0291 4536 Winmgmt - ok 15:52:48.0362 4536 [ 7CFE68BDC065E55AA5E8421607037511 ] WinRM C:\Windows\system32\WsmSvc.dll 15:52:48.0538 4536 WinRM - ok 15:52:48.0616 4536 [ 30FC6E5448D0CBAAA95280EEEF7FEDAE ] WinUsb C:\Windows\system32\DRIVERS\WinUSB.sys 15:52:48.0666 4536 WinUsb - ok 15:52:48.0719 4536 [ C008405E4FEEB069E30DA1D823910234 ] Wlansvc C:\Windows\System32\wlansvc.dll 15:52:48.0797 4536 Wlansvc - ok 15:52:48.0926 4536 [ 6067ACEF367E79914AF628FA1E9B5330 ] wlcrasvc C:\Program Files\Windows Live\Mesh\wlcrasvc.exe 15:52:48.0954 4536 wlcrasvc - ok 15:52:49.0101 4536 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE 15:52:49.0254 4536 wlidsvc - ok 15:52:49.0312 4536 [ 2E7255D172DF0B8283CDFB7B433B864E ] WmiAcpi C:\Windows\system32\DRIVERS\wmiacpi.sys 15:52:49.0383 4536 WmiAcpi - ok 15:52:49.0435 4536 [ 43BE3875207DCB62A85C8C49970B66CC ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe 15:52:49.0503 4536 wmiApSrv - ok 15:52:49.0583 4536 [ 3978704576A121A9204F8CC49A301A9B ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe 15:52:49.0693 4536 WMPNetworkSvc - ok 15:52:49.0728 4536 [ CFC5A04558F5070CEE3E3A7809F3FF52 ] WPCSvc C:\Windows\System32\wpcsvc.dll 15:52:49.0785 4536 WPCSvc - ok 15:52:49.0814 4536 [ 801FBDB89D472B3C467EB112A0FC9246 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll 15:52:49.0867 4536 WPDBusEnum - ok 15:52:49.0907 4536 [ DE9D36F91A4DF3D911626643DEBF11EA ] WpdUsb C:\Windows\system32\DRIVERS\wpdusb.sys 15:52:49.0943 4536 WpdUsb - ok 15:52:50.0054 4536 [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe 15:52:50.0132 4536 WPFFontCache_v0400 - ok 15:52:50.0160 4536 [ E3A3CB253C0EC2494D4A61F5E43A389C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys 15:52:50.0312 4536 ws2ifsl - ok 15:52:50.0358 4536 [ 1CA6C40261DDC0425987980D0CD2AAAB ] wscsvc C:\Windows\system32\wscsvc.dll 15:52:50.0398 4536 wscsvc - ok 15:52:50.0407 4536 WSearch - ok 15:52:50.0453 4536 [ 084E0D335481C3C5172B2AE0BA5BB455 ] WSVD C:\Windows\system32\drivers\WSVD.sys 15:52:50.0480 4536 WSVD - ok 15:52:50.0569 4536 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll 15:52:50.0729 4536 wuauserv - ok 15:52:50.0827 4536 [ 6F9B6C0C93232CFF47D0F72D6DB1D21E ] WudfPf C:\Windows\system32\drivers\WudfPf.sys 15:52:50.0895 4536 WudfPf - ok 15:52:50.0918 4536 [ F91FF1E51FCA30B3C3981DB7D5924252 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys 15:52:50.0975 4536 WUDFRd - ok 15:52:51.0011 4536 [ 2C0206FF8D2C75AC027D1096FA2FAFDA ] wudfsvc C:\Windows\System32\WUDFSvc.dll 15:52:51.0080 4536 wudfsvc - ok 15:52:51.0115 4536 [ DAB33CFA9DD24251AAA389FF36B64D4B ] XAudio C:\Windows\system32\DRIVERS\xaudio.sys 15:52:51.0146 4536 XAudio - ok 15:52:51.0187 4536 [ CD5F291A1161F15896D1A4D63DAFF5DF ] XAudioService C:\Windows\system32\DRIVERS\xaudio.exe 15:52:51.0249 4536 XAudioService - ok 15:52:51.0297 4536 [ 4D840C6AF3C020ED3A35EFBA9025CF4A ] {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl 15:52:51.0323 4536 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796} - ok 15:52:51.0380 4536 ================ Scan global =============================== 15:52:51.0431 4536 [ F31EEBC1A1C81FD04005489CC3DCDFE7 ] C:\Windows\system32\basesrv.dll 15:52:51.0467 4536 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll 15:52:51.0511 4536 [ D2293B069E4B63DC17B2F08D45E71124 ] C:\Windows\system32\winsrv.dll 15:52:51.0546 4536 [ D4E6D91C1349B7BFB3599A6ADA56851B ] C:\Windows\system32\services.exe 15:52:51.0560 4536 [Global] - ok 15:52:51.0561 4536 ================ Scan MBR ================================== 15:52:51.0587 4536 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk0\DR0 15:52:52.0631 4536 \Device\Harddisk0\DR0 - ok 15:52:52.0663 4536 [ 5C616939100B85E558DA92B899A0FC36 ] \Device\Harddisk1\DR1 15:52:52.0837 4536 \Device\Harddisk1\DR1 - ok 15:52:52.0845 4536 [ 65E858A8A0293BE11A920B0BC99D695E ] \Device\Harddisk2\DR2 15:52:54.0352 4536 \Device\Harddisk2\DR2 - ok 15:52:54.0353 4536 ================ Scan VBR ================================== 15:52:54.0360 4536 [ 0F23130BDB5E91CAA7CD8CC004C59FA8 ] \Device\Harddisk0\DR0\Partition1 15:52:54.0364 4536 \Device\Harddisk0\DR0\Partition1 - ok 15:52:54.0417 4536 [ 01E143504093F7B04DB0577ECC6D3222 ] \Device\Harddisk0\DR0\Partition2 15:52:54.0421 4536 \Device\Harddisk0\DR0\Partition2 - ok 15:52:54.0451 4536 [ F9C7FC092E25CDFB0AE14D345F829F83 ] \Device\Harddisk1\DR1\Partition1 15:52:54.0456 4536 \Device\Harddisk1\DR1\Partition1 - ok 15:52:54.0465 4536 [ 8581B95AEA6B30FFAB744683C003B529 ] \Device\Harddisk2\DR2\Partition1 15:52:54.0471 4536 \Device\Harddisk2\DR2\Partition1 - ok 15:52:54.0472 4536 ============================================================ 15:52:54.0472 4536 Scan finished 15:52:54.0472 4536 ============================================================ 15:52:54.0498 1928 Detected object count: 10 15:52:54.0498 1928 Actual detected object count: 10 15:54:26.0712 1928 CLHNService ( UnsignedFile.Multi.Generic ) - skipped by user 15:54:26.0712 1928 CLHNService ( UnsignedFile.Multi.Generic ) - User select action: Skip 15:54:26.0716 1928 DfSdkS ( UnsignedFile.Multi.Generic ) - skipped by user 15:54:26.0717 1928 DfSdkS ( UnsignedFile.Multi.Generic ) - User select action: Skip 15:54:26.0724 1928 epmntdrv ( UnsignedFile.Multi.Generic ) - skipped by user 15:54:26.0724 1928 epmntdrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 15:54:26.0727 1928 ETService ( UnsignedFile.Multi.Generic ) - skipped by user 15:54:26.0727 1928 ETService ( UnsignedFile.Multi.Generic ) - User select action: Skip 15:54:26.0731 1928 EuGdiDrv ( UnsignedFile.Multi.Generic ) - skipped by user 15:54:26.0731 1928 EuGdiDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 15:54:26.0736 1928 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - skipped by user 15:54:26.0736 1928 FsUsbExDisk ( UnsignedFile.Multi.Generic ) - User select action: Skip 15:54:26.0741 1928 GoogleDesktopManager-080708-050100 ( UnsignedFile.Multi.Generic ) - skipped by user 15:54:26.0742 1928 GoogleDesktopManager-080708-050100 ( UnsignedFile.Multi.Generic ) - User select action: Skip 15:54:26.0746 1928 int15 ( UnsignedFile.Multi.Generic ) - skipped by user 15:54:26.0746 1928 int15 ( UnsignedFile.Multi.Generic ) - User select action: Skip 15:54:26.0750 1928 LightScribeService ( UnsignedFile.Multi.Generic ) - skipped by user 15:54:26.0751 1928 LightScribeService ( UnsignedFile.Multi.Generic ) - User select action: Skip 15:54:26.0756 1928 NTIPPKernel ( UnsignedFile.Multi.Generic ) - skipped by user 15:54:26.0756 1928 NTIPPKernel ( UnsignedFile.Multi.Generic ) - User select action: Skip 15:58:59.0663 3568 Deinitialize success
  8. Hallo, I have a trial of Emsifoft Anti-Malware [3 months] running now. You are asking a renewal of the license. However, I am not entirely satisfied of the offered protection. I observed some unexplainable phenomenon on this pc like 'mutilated' e-mails (i.e.typed-in words missing or changed when sent), same thing happens several times with local texts made in WORD and also computer commands triggered suddenly without my consent or will (i.e. programs or files that open unexpectedly) etc., in fact it all looks all like plain harrassment I assume. This obviously leads to thinking of a trojan infection of a very special kind like you explained in one or two of your newsletters some time ago and copy-pasted herunder. My question is: do you have a solution for this or not.This Anti-Malware let pass this supposed trojan through the pc defenses clearly. Nederlands/Dutch: Ik heb een probeerversie van Emsisoft Anti-Malware [3 maand] die nu loopt. Ze vragen( via pop-up) voor een hernieuwing van de licentie. Maar ik ben toch niet helemaal tevreden met de aangeboden bescherming. Ik heb verschillende keer niet uit te leggen rare fenomenen vastgesteld op deze pc zoals 'gedeeltelijk kapotte of gehandicapte e-mails' dwz ingetikte woorden ontbreken of zijn veranderd wanneer verzonden; hetzelfde gebeurt in WORD en ook bepaalde computercommando's worden plots getriggerd buiten mijn wil en toelating, zoals programma's of bestanden die plots ongevraagd openen; in feite ziet het er allemaal uit als platte vulgaire pesterijen veronderstel ik. Dit doet natuurlijk denken aan een of andere trojan infectie zoals die beruchte Federal trojan of Flame trojan reeds vermeld in de Emsisoft nieuwsbrieven. Mijn vraag is: hebben jullie een oplossing hiervoor of niet? Zoals ik het zie is het evident dat die Anti-Malware de veronderstelde trojans door mijn pc verdediging laat passeren. Bijlagen: 1) scan report Emsisoft Emergency kit Emsisoft Emergency Kit - Versie 3.0 Laatste Update: 27/11/2012 15:05:58 Scaninstellingen: Scantype: Slimme scan Objecten: Rootkits, Geheugen, Sporen, C:\Windows\, C:\Program Files\ Detecteer riskware: Uit Scan archieven: Uit ADS Scan: Aan Bestandsextensiefilter: Uit Geavanceerde cache: Aan Directe schijftoegang: Uit Scan gestart: 27/11/2012 15:13:06 Gescand 444702 Gevonden 0 Scan geëindigd: 27/11/2012 18:29:11 Scantijd: 3:16:05 2)OTL scan OTL logfile created on: 27/11/2012 21:44:44 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\WALTERF10\Diverse Software\OldtimerGeeksTogo - OTL Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000813 | Country: België | Language: NLB | Date Format: d/MM/yyyy 2,99 Gb Total Physical Memory | 1,89 Gb Available Physical Memory | 63,10% Memory free 6,19 Gb Paging File | 4,26 Gb Available in Paging File | 68,82% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 254,01 Gb Total Space | 113,34 Gb Free Space | 44,62% Space Free | Partition Type: NTFS Drive D: | 30,54 Gb Total Space | 26,32 Gb Free Space | 86,18% Space Free | Partition Type: NTFS Drive G: | 465,76 Gb Total Space | 242,74 Gb Free Space | 52,12% Space Free | Partition Type: NTFS Drive H: | 3,66 Gb Total Space | 3,66 Gb Free Space | 99,97% Space Free | Partition Type: FAT32 Computer Name: WALTERG1 | User Name: WALTERF10 | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - C:\Users\WALTERF10\Diverse Software\OldtimerGeeksTogo - OTL\OTL.exe (OldTimer Tools) PRC - C:\Program Files\PC Drivers HeadQuarters\Driver Detective\DriversHQ.DriverDetective.Client.exe (PC Drivers Headquarters) PRC - C:\Program Files\Innovative Solutions\DriverMax\drivermax.exe (Innovative Solutions) PRC - C:\Program Files\Emsisoft Anti-Malware\a2guard.exe (Emsisoft GmbH) PRC - C:\Program Files\Emsisoft Anti-Malware\a2service.exe (Emsisoft GmbH) PRC - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation) PRC - C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe (NVIDIA Corporation) PRC - C:\Program Files\NVIDIA Corporation\Display\nvtray.exe (NVIDIA Corporation) PRC - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE (SUPERAntiSpyware.com) PRC - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation) PRC - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) PRC - C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe (Acronis) PRC - C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe (Acronis) PRC - C:\Program Files\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe () PRC - C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel® Corporation) PRC - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel® Corporation) PRC - C:\Program Files\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation) PRC - C:\Windows\System32\FsUsbExService.Exe (Teruten) PRC - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe (Egis Incorporated) PRC - C:\Windows\explorer.exe (Microsoft Corporation) PRC - C:\Windows\System32\conime.exe (Microsoft Corporation) PRC - C:\Program Files\Brother\Brmfcmon\BrMfcMon.exe (Brother Industries, Ltd.) PRC - C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe (Acer Inc.) PRC - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe (Intel Corporation) PRC - C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation) PRC - C:\Program Files\Launch Manager\QtZgAcer.EXE (Dritek System Inc.) PRC - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe () PRC - C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe (Acer Incorporated) ========== Modules (No Company Name) ========== MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\XPBurnComponent\8ad8b3f8a7930d3a7490fc2883330599\XPBurnComponent.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Practices#\3ca0eea3188fdd89e0851d1031b32194\Microsoft.Practices.EnterpriseLibrary.Security.Cryptography.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Practices#\d57ad0344e7749845be943236086b727\Microsoft.Practices.ObjectBuilder.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Practices#\968384adae038a9e4268ce69110d7437\Microsoft.Practices.EnterpriseLibrary.Common.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Applicati#\a51a97bf7b99ca9373d6a35638e1ebcc\Microsoft.ApplicationBlocks.Updater.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\RuleEngine\51234730b08a3cd8c85563afa4ae4ad1\RuleEngine.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Win32.Tas#\96b376208225d139418d8afab9faa568\Microsoft.Win32.TaskScheduler.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Agent.Communication\9ee3b614bae3764670d65f0962fc3e48\Agent.Communication.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Interop.WUApiLib\cc1301cf3a99ca927b15fb0ecadf00c8\Interop.WUApiLib.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\6525d5b1a3b2cbea3301959a47b353c2\System.ServiceProcess.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\2633dbf77be293b3a8693b6b062fd787\System.Runtime.Remoting.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\ac05afefb5b28893d44ec451da0e6d4e\System.Web.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web.Services\7844c1ae91c8f584025756ad72e65176\System.Web.Services.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\d08cb6b1c4052e6f5a4e2452870d67d7\System.Management.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\ExceptionLogging\2419e7dc9f87ddaab6db76d81627630c\ExceptionLogging.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Common\c86ffebccb0a4569bc2c76e14973b8ff\Common.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Agent.Common\0529ae5acbff2f3d898723f12c4081fe\Agent.Common.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\Agent\776faa880c56f0a61be70e70dde9ec80\Agent.ni.exe () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\7f15d0cb7e4f87f86e425d5ffe7e8280\System.Configuration.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\741164a3e36f879b9f9e3ff176465127\System.Xml.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\22e554f2c4da53c07e4815a24e2d50e2\System.Windows.Forms.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\2c6cd37f29fc76d6c2ed6bbed202d82c\System.Drawing.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Data\617ec6b2bc658f2ef011de1f3be23bfa\System.Data.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\System\b2052acbbbba4f98585196872195e009\System.ni.dll () MOD - C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7ad9c44df3b85848590e63f13fc59804\mscorlib.ni.dll () MOD - C:\Program Files\PC Drivers HeadQuarters\Driver Detective\Agent.Communication.XmlSerializers.dll () MOD - C:\Program Files\PC Drivers HeadQuarters\Driver Detective\ThemePack.Default.dll () MOD - C:\Program Files\Innovative Solutions\DriverMax\sync.dll () MOD - C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll () MOD - C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll () MOD - C:\Windows\assembly\GAC_MSIL\Framework.Utility\3.0.3009.0__4df5dcab8860d239\Framework.Utility.dll () MOD - C:\Windows\assembly\GAC_MSIL\Framework.Library\3.0.3009.0__3036420f80dd6947\Framework.Library.dll () MOD - C:\Windows\assembly\GAC_MSIL\Framework.Model.ControllerInterface\3.0.3009.0__d842b71b4d6ed079\Framework.Model.ControllerInterface.dll () MOD - C:\Program Files\FileZilla FTP Client\fzshellext.dll () MOD - C:\Windows\assembly\GAC_MSIL\System.resources\2.0.0.0_nl_b77a5c561934e089\System.resources.dll () MOD - C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_nl_b77a5c561934e089\mscorlib.resources.dll () MOD - C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_nl_b77a5c561934e089\System.Windows.Forms.resources.dll () MOD - C:\Windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll () MOD - C:\Program Files\Brother\BrUtilities\BrLogAPI.dll () MOD - C:\Windows\System32\SysHook.dll () ========== Services (SafeList) ========== SRV - (MobilityService) -- C:\Acer\Mobility Center\MobilityService.exe File not found SRV - (AHDDC2) -- C:\Program Files\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe File not found SRV - (SkypeUpdate) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies) SRV - (a2AntiMalware) -- C:\Program Files\Emsisoft Anti-Malware\a2service.exe (Emsisoft GmbH) SRV - (nvUpdatusService) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation) SRV - (!SASCORE) -- C:\Program Files\SUPERAntiSpyware\SASCORE.EXE (SUPERAntiSpyware.com) SRV - (MsMpSvc) -- C:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation) SRV - (MBAMService) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe (Malwarebytes Corporation) SRV - (AdobeARMservice) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe (Adobe Systems Incorporated) SRV - (afcdpsrv) -- C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe (Acronis) SRV - (Secunia PSI Agent) -- C:\Program Files\Secunia\PSI\psia.exe (Secunia) SRV - (AcrSch2Svc) -- C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe (Acronis) SRV - (ACT2_Service) -- C:\Program Files\Ashampoo\Ashampoo Core Tuner 2\ACT2Service.exe () SRV - (EvtEng) -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Intel® Corporation) SRV - (RegSrvc) -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Intel® Corporation) SRV - (BBSvc) -- C:\Program Files\Microsoft\BingBar\BBSvc.EXE (Microsoft Corporation.) SRV - (SeaPort) -- C:\Program Files\Microsoft\BingBar\SeaPort.EXE (Microsoft Corporation) SRV - (FsUsbExService) -- C:\Windows\System32\FsUsbExService.Exe (Teruten) SRV - (DfSdkS) -- C:\Program Files\Ashampoo\Ashampoo WinOptimizer 9\DfSdkS.exe (mst software GmbH, Germany) SRV - (eDataSecurity Service) -- C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe (Egis Incorporated) SRV - (IAANTMON) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe (Intel Corporation) SRV - (ETService) -- C:\Program Files\Acer\Empowering Technology\Service\ETService.exe () SRV - (WinDefend) -- C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation) SRV - (CLHNService) -- C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe () ========== Driver Services (SafeList) ========== DRV - (NwlnkFwd) -- system32\DRIVERS\nwlnkfwd.sys File not found DRV - (NwlnkFlt) -- system32\DRIVERS\nwlnkflt.sys File not found DRV - (IpInIp) -- system32\DRIVERS\ipinip.sys File not found DRV - (hwdatacard) -- system32\DRIVERS\ewusbmdm.sys File not found DRV - (catchme) -- C:\Users\WALTER~1\AppData\Local\Temp\catchme.sys File not found DRV - (nvlddmkm) -- C:\Windows\System32\drivers\nvlddmkm.sys (NVIDIA Corporation) DRV - (UI5IFS) -- C:\Program Files\Ashampoo\Ashampoo UnInstaller 5\IFS32.sys () DRV - (RSUSBSTOR) -- C:\Windows\System32\drivers\RtsUStor.sys (Realtek Semiconductor Corp.) DRV - (NVHDA) -- C:\Windows\System32\drivers\nvhda32v.sys (NVIDIA Corporation) DRV - (a2acc) -- C:\Program Files\Emsisoft Anti-Malware\a2accx86.sys (Emsisoft GmbH) DRV - (a2injectiondriver) -- C:\Program Files\Emsisoft Anti-Malware\a2dix86.sys (Emsisoft GmbH) DRV - (MBAMProtector) -- C:\Windows\System32\drivers\mbam.sys (Malwarebytes Corporation) DRV - (NETwNx32) -- C:\Windows\System32\drivers\NETwNx32.sys (Intel Corporation) DRV - (Btcsrusb) -- C:\Windows\System32\drivers\btcusb.sys (IVT Corporation.) DRV - (afcdp) -- C:\Windows\System32\drivers\afcdp.sys (Acronis) DRV - (tdrpman273) -- C:\Windows\System32\drivers\tdrpm273.sys (Acronis) DRV - (snapman) -- C:\Windows\System32\drivers\snapman.sys (Acronis) DRV - (NETwNv32) -- C:\Windows\System32\drivers\NETwNv32.sys (Intel Corporation) DRV - (epmntdrv) -- C:\Windows\System32\epmntdrv.sys () DRV - (EuGdiDrv) -- C:\Windows\System32\EuGdiDrv.sys () DRV - (SASDIFSV) -- C:\Program Files\SUPERAntiSpyware\sasdifsv.sys (SUPERAdBlocker.com and SUPERAntiSpyware.com) DRV - (SASKUTIL) -- C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com) DRV - (ACT2PM) -- C:\Program Files\Ashampoo\Ashampoo Core Tuner 2\ACT2ProcessMonitor32.sys () DRV - (A2DDA) -- C:\Program Files\Emsisoft Anti-Malware\a2ddax86.sys (Emsi Software GmbH) DRV - (USB28xxOEM) -- C:\Windows\System32\drivers\emOEM.sys (eMPIA Technology, Inc.) DRV - (USB28xxBGA) -- C:\Windows\System32\drivers\emBDA.sys (eMPIA Technology, Inc.) DRV - (MxEFUF) -- C:\Windows\System32\drivers\MxEFUF32.sys (Matrox Graphics Inc.) DRV - (PSI) -- C:\Windows\System32\drivers\psi_mf.sys (Secunia) DRV - (FsUsbExDisk) -- C:\Windows\System32\FsUsbExDisk.Sys () DRV - (a2util) -- C:\Program Files\Emsisoft Anti-Malware\a2util32.sys (Emsi Software GmbH) DRV - (ss_bmdm) -- C:\Windows\System32\drivers\ss_bmdm.sys (MCCI Corporation) DRV - (ss_bbus) -- C:\Windows\System32\drivers\ss_bbus.sys (MCCI) DRV - (ss_bmdfl) -- C:\Windows\System32\drivers\ss_bmdfl.sys (MCCI Corporation) DRV - (L1E) -- C:\Windows\System32\drivers\L1E60x86.sys (Atheros Communications, Inc.) DRV - (RSUSBCCID) -- C:\Windows\System32\drivers\RtsUCcid.sys (Realtek Semiconductor Corp.) DRV - (WinUsb) -- C:\Windows\System32\drivers\winusb.sys (Microsoft Corporation) DRV - (RtsUIr) -- C:\Windows\System32\drivers\RtsUIr.sys (Realtek Semiconductor Corp.) DRV - (NETw5v32) -- C:\Windows\System32\drivers\NETw5v32.sys (Intel Corporation) DRV - ({49DE1C67-83F8-4102-99E0-C16DCC7EEC796}) -- C:\Program Files\Acer Arcade Deluxe\PlayMovie\000.fcl (Cyberlink Corp.) DRV - (WSVD) -- C:\Windows\System32\drivers\WSVD.sys (CyberLink) DRV - (NTIPPKernel) -- C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys (Cyberlink Corp.) DRV - (XAudio) -- C:\Windows\System32\drivers\XAudio.sys (Conexant Systems, Inc.) DRV - (SNP2UVC) -- C:\Windows\System32\drivers\snp2uvc.sys () DRV - (winbondcir) -- C:\Windows\System32\drivers\winbondcir.sys (Winbond Electronics Corporation) DRV - (int15) -- C:\Windows\System32\drivers\int15.sys () ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\..\URLSearchHook: {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\tbMyAs.dll (Conduit Ltd.) IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC IE - HKLM\..\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64}: "URL" = http://www.google.co...ng}&rlz=1I7ACAW IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = https://mail.google.com/mail/?tab= [binary data over 200 bytes] IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/webhp?hl=nl IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://be.msn.com/de....aspx?ocid=iehp IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = nl-be IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = D9 0B A8 87 71 A5 CD 01 [binary data] IE - HKCU\..\URLSearchHook: {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\tbMyAs.dll (Conduit Ltd.) IE - HKCU\..\SearchScopes,DefaultScope = {67A2568C-7A0A-4EED-AECC-B5405DE63B64} IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local ========== FireFox ========== FF - prefs.js..browser.search.defaultenginename: "AVG Secure Search" FF - prefs.js..browser.search.selectedEngine: "AVG Secure Search" FF - prefs.js..browser.startup.homepage: "https://www.google.c...www.demorgen.be|" FF - prefs.js..extensions.enabledAddons: [email protected]:3.1.0 FF - prefs.js..extensions.enabledAddons: [email protected]:1.0.14 FF - prefs.js..extensions.enabledAddons: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}:6.0.33 FF - prefs.js..extensions.enabledAddons: {CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA}:6.0.35 FF - prefs.js..extensions.enabledAddons: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA}:6.0.37 FF - user.js..browser.search.openintab: false FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw_1166636.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@bittorrent.com/BitTorrentDNA: C:\Program Files\DNA\plugins\npbtdna.dll (BitTorrent, Inc.) FF - HKLM\Software\MozillaPlugins\@canon.com/CCBPL: C:\Program Files\Canon\APU\npCCBPLFirefox.dll (Canon Inc.) FF - HKLM\Software\MozillaPlugins\@canon.com/UCPlugin: C:\Program Files\Canon\Uploader for CANON iMAGE GATEWAY Plugin\\npUploaderForCiG.dll () FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_37: C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3555.0308: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@bittorrent.com/BitTorrentDNA: File not found FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\WALTERF10\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\WALTERF10\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Mozilla Firefox\extensions\[email protected] [2012/01/21 23:26:21 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 15.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/11/12 20:06:09 | 000,000,000 | ---D | M] [2011/11/17 11:56:29 | 000,000,000 | ---D | M] (No name found) -- C:\Users\WALTERF10\AppData\Roaming\mozilla\Extensions [2012/11/22 23:01:22 | 000,000,000 | ---D | M] (No name found) -- C:\Users\WALTERF10\AppData\Roaming\mozilla\Firefox\Profiles\jt0qor0m.default\extensions [2012/11/22 23:01:24 | 000,000,000 | ---D | M] (MyAshampoo Community Toolbar) -- C:\Users\WALTERF10\AppData\Roaming\mozilla\Firefox\Profiles\jt0qor0m.default\extensions\{a1e75a0e-4397-4ba8-bb50-e19fb66890f4} [2012/08/23 15:48:44 | 000,000,000 | ---D | M] (ReImage Helper) -- C:\Users\WALTERF10\AppData\Roaming\mozilla\Firefox\Profiles\jt0qor0m.default\extensions\[email protected] [2012/11/22 23:01:22 | 000,000,000 | ---D | M] (Conduit Engine) -- C:\Users\WALTERF10\AppData\Roaming\mozilla\Firefox\Profiles\jt0qor0m.default\extensions\[email protected] [2012/04/22 20:39:37 | 000,000,000 | ---D | M] (Woordenboek Nederlands) -- C:\Users\WALTERF10\AppData\Roaming\mozilla\Firefox\Profiles\jt0qor0m.default\extensions\[email protected] [2012/09/05 13:40:54 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\WALTERF10\AppData\Roaming\mozilla\firefox\profiles\jt0qor0m.default\extensions\[email protected]\chrome\content\cache\07a8b56e984c56b3283dabc5c9e4ab7e_expire [2012/08/25 16:59:33 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\WALTERF10\AppData\Roaming\mozilla\firefox\profiles\jt0qor0m.default\extensions\[email protected]\chrome\content\cache\4d3d10bd28ff623813254a49b26be41f_expire [2012/09/05 13:40:56 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\WALTERF10\AppData\Roaming\mozilla\firefox\profiles\jt0qor0m.default\extensions\[email protected]\chrome\content\cache\8408d41a845597223ed3ebe241a86c33_expire [2012/09/05 13:40:55 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\WALTERF10\AppData\Roaming\mozilla\firefox\profiles\jt0qor0m.default\extensions\[email protected]\chrome\content\cache\e919434ec29526b28593c426e4264271_expire [2012/09/05 13:40:54 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\WALTERF10\AppData\Roaming\mozilla\firefox\profiles\jt0qor0m.default\extensions\[email protected]\chrome\content\cache\fa74672918974682c82b8d91dfbe0d6b_expire [2012/08/25 16:59:32 | 000,000,013 | ---- | M] () (No name found) -- C:\Users\WALTERF10\AppData\Roaming\mozilla\firefox\profiles\jt0qor0m.default\extensions\[email protected]\chrome\content\cache\ff4d692d5e7cccbc4b3e9ef4062b1c6f_expire [2012/11/11 21:16:21 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2012/04/22 17:34:46 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2012/06/21 22:33:22 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2012/09/03 09:08:47 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0035-ABCDEFFEDCBA} [2012/10/21 10:35:55 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} [2012/01/21 23:26:21 | 000,000,000 | ---D | M] (eID België) -- C:\Program Files\Mozilla Firefox\extensions\[email protected] [2012/08/25 03:01:06 | 000,266,720 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2012/05/16 19:10:53 | 000,003,751 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\avg-secure-search.xml [2012/10/24 18:50:17 | 000,002,465 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml [2012/10/24 18:50:17 | 000,002,058 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml ========== Chrome ========== CHR - homepage: http://www.ixquick.com/ CHR - default_search_provider: Ixquick HTTPS - Nederlands (Enabled) CHR - default_search_provider: search_url = https://ixquick.com/...uage=nederlands CHR - default_search_provider: suggest_url = , CHR - homepage: http://www.ixquick.com/ CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Users\WALTERF10\AppData\Local\Google\Chrome\Application\23.0.1271.64\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\WALTERF10\AppData\Local\Google\Chrome\Application\23.0.1271.64\pdf.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Users\WALTERF10\AppData\Local\Google\Chrome\User Data\NPAPIFlash\gcswf32.dll CHR - plugin: Skype Click to Call (Enabled) = C:\Users\WALTERF10\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\5.11.0.9874_0\npSkypeChromePlugin.dll CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll CHR - plugin: Java Deployment Toolkit 6.0.290.11 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll CHR - plugin: Java™ Platform SE 6 U31 (Enabled) = C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin2.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin3.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin4.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin5.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin6.dll CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\QuickTime\plugins\npqtplugin7.dll CHR - plugin: CANON iMAGE GATEWAY Album Plugin Utility (Enabled) = C:\Program Files\Canon\APU\npCCBPLFirefox.dll CHR - plugin: Uploader for CANON iMAGE GATEWAY Plugin (Enabled) = C:\Program Files\Canon\Uploader for CANON iMAGE GATEWAY Plugin\\npUploaderForCiG.dll CHR - plugin: DNA Plug-in (Enabled) = C:\Program Files\DNA\plugins\npbtdna.dll CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll CHR - plugin: Microsoft Office Live Plug-in for Firefox (Enabled) = C:\Program Files\Microsoft\Office Live\npOLW.dll CHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files\VideoLAN\VLC\npvlc.dll CHR - plugin: Windows Live\u00AE Photo Gallery (Enabled) = C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll CHR - plugin: Google Update (Enabled) = C:\Users\WALTERF10\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll CHR - plugin: Windows Presentation Foundation (Enabled) = C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll CHR - Extension: AdBlock = C:\Users\WALTERF10\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.45_0\ CHR - Extension: AdBlock = C:\Users\WALTERF10\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.5.47_0\ CHR - Extension: Ghostery = C:\Users\WALTERF10\AppData\Local\Google\Chrome\User Data\Default\Extensions\mlomiejdfkolichcflejclcbmpeaniij\4.0.0_0\ O1 HOSTS File: ([2012/09/12 08:45:44 | 000,000,027 | R--- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.) O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (ShowBarObj Class) - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll (Egis) O2 - BHO: (MyAshampoo Toolbar) - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\tbMyAs.dll (Conduit Ltd.) O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Bing Bar Helper) - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.) O3 - HKLM\..\Toolbar: (Conduit Engine) - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngine.dll (Conduit Ltd.) O3 - HKLM\..\Toolbar: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.) O3 - HKLM\..\Toolbar: (Bing Bar) - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\Microsoft\BingBar\BingExt.dll (Microsoft Corporation.) O3 - HKLM\..\Toolbar: (MyAshampoo Toolbar) - {a1e75a0e-4397-4ba8-bb50-e19fb66890f4} - C:\Program Files\MyAshampoo\tbMyAs.dll (Conduit Ltd.) O3 - HKCU\..\Toolbar\ShellBrowser: (Acer eDataSecurity Management) - {5CBE3B7C-1E47-477E-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll (Egis Incorporated.) O3 - HKCU\..\Toolbar\WebBrowser: (MyAshampoo Toolbar) - {A1E75A0E-4397-4BA8-BB50-E19FB66890F4} - C:\Program Files\MyAshampoo\tbMyAs.dll (Conduit Ltd.) O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.) O4 - HKLM..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe (CANON INC.) O4 - HKLM..\Run: [eAudio] C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe (Acer Incorporated) O4 - HKLM..\Run: [emsisoft anti-malware] c:\program files\emsisoft anti-malware\a2guard.exe (Emsisoft GmbH) O4 - HKLM..\Run: [ePower_DMC] C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe (Acer Inc.) O4 - HKLM..\Run: [iAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe (Intel Corporation) O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\QtZgAcer.EXE (Dritek System Inc.) O4 - HKLM..\Run: [WarReg_PopUp] C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exe (Acer Incorporated) O4 - HKCU..\Run: [Driver Detective] C:\Program Files\PC Drivers HeadQuarters\Driver Detective\DriversHQ.DriverDetective.Client.exe (PC Drivers Headquarters) O4 - HKCU..\Run: [DriverMax] C:\Program Files\Innovative Solutions\DriverMax\drivermax.exe (Innovative Solutions) O4 - HKCU..\Run: [DriverMax_RESTART] C:\Program Files\Innovative Solutions\DriverMax\drivermax.exe (Innovative Solutions) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Low Rights present O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoPropertiesMyComputer = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoViewContextMenu = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFileAssociate = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoFind = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoClose = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: StartMenuLogoff = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMHelp = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispCPL = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispBackgroundPage = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispSettingsPage = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: NoDispScrSavPage = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 1 O9 - Extra Button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - Reg Error: Key error. File not found O9 - Extra 'Tools' menuitem : &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - Reg Error: Key error. File not found O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.) O15 - HKCU\..Trusted Domains: microsoft.com ([*.update] http in Vertrouwde websites) O15 - HKCU\..Trusted Domains: microsoft.com ([*.update] https in Vertrouwde websites) O15 - HKCU\..Trusted Domains: microsoft.com ([update] http in Vertrouwde websites) O15 - HKCU\..Trusted Domains: microsoft.com ([update] https in Vertrouwde websites) O15 - HKCU\..Trusted Domains: windowsupdate.com ([download] http in Vertrouwde websites) O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_37) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_37) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 193.121.171.135 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A3BEC20C-7E68-4571-B9D1-052B2B6423BB}: DhcpNameServer = 193.121.171.135 O18 - Protocol\Handler\belarc {6318E0AB-2E93-11D1-B8ED-00608CC9A71F} - C:\Program Files\Belarc\Advisor\System\BAVoilaX.dll (Belarc, Inc.) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll) - C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL) - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com) O24 - Desktop WallPaper: C:\Users\WALTERF10\Pictures\Varia_2011\Stonehenge_Closeup[1].jpg O24 - Desktop BackupWallPaper: C:\Users\WALTERF10\Pictures\Varia_2011\Stonehenge_Closeup[1].jpg O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Program Files\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006/09/18 22:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) ========== Files/Folders - Created Within 30 Days ========== [2012/11/27 14:42:51 | 000,000,000 | ---D | C] -- C:\Users\WALTERF10\Bureaublad\EEK [2012/11/22 23:01:41 | 000,000,000 | ---D | C] -- C:\Program Files\Conduit [2012/11/22 23:01:30 | 000,000,000 | ---D | C] -- C:\Program Files\ConduitEngine [2012/11/22 23:01:20 | 000,000,000 | ---D | C] -- C:\Program Files\MyAshampoo [2012/11/21 20:25:06 | 000,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client [2012/11/21 16:13:57 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype [2012/11/21 16:13:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype [2012/11/21 14:51:05 | 007,477,760 | ---- | C] (Intel Corporation) -- C:\Windows\System32\drivers\NETwNx32.sys [2012/11/21 14:41:13 | 000,000,000 | ---D | C] -- C:\Program Files\AuthenTec [2012/11/21 14:39:58 | 001,461,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WdfCoInstaller01009.dll [2012/11/21 14:39:50 | 000,018,440 | ---- | C] (AuthenTec) -- C:\Windows\System32\tccoinst.dll [2012/11/20 10:09:00 | 000,000,000 | ---D | C] -- C:\Users\WALTERF10\AppData\Local\Adobe [2012/11/18 01:24:29 | 000,190,976 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\drivers\RtsUStor.sys [2012/11/15 21:37:55 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb [2012/11/15 21:37:53 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll [2012/11/15 21:37:52 | 000,607,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll [2012/11/15 21:37:52 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe [2012/11/15 21:37:52 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll [2012/11/15 21:37:48 | 001,800,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll [2012/11/15 21:37:48 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll [2012/11/15 21:37:43 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl [2012/11/15 21:20:30 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\synceng.dll [2012/11/15 21:19:56 | 002,047,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys [2012/11/14 20:04:17 | 000,000,000 | ---D | C] -- C:\Users\WALTERF10\AppData\Roaming\InnovativeSolutions [2012/11/14 20:02:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AnswerDome [2012/11/12 22:42:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB2.0 Card Reader Software [2012/11/12 22:33:12 | 000,000,000 | ---D | C] -- C:\ProgramData\UAB [2012/11/12 22:33:07 | 000,000,000 | ---D | C] -- C:\Users\WALTERF10\AppData\Local\PC_Drivers_Headquarters [2012/11/12 22:31:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Driver Detective [2012/11/12 00:11:15 | 000,000,000 | ---D | C] -- C:\Users\WALTERF10\AppData\Roaming\InstallShield [2012/11/11 21:16:25 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla [2012/11/11 17:55:38 | 000,000,000 | ---D | C] -- C:\Users\WALTERF10\AppData\Local\{50D052D0-0A2E-48BE-B936-2BE8CFF8E46B} [2012/11/11 17:55:38 | 000,000,000 | ---D | C] -- C:\Users\WALTERF10\AppData\Local\{45CF0943-7BB9-4C51-985D-B72D67C7468E} [2012/11/11 11:41:05 | 000,062,312 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvshext.dll [2012/11/11 11:41:04 | 003,965,288 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.dll [2012/11/11 11:41:04 | 002,853,224 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvsvc.dll [2012/11/11 11:41:04 | 002,557,288 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvsvcr.dll [2012/11/11 11:41:04 | 000,108,392 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvmctray.dll [2012/11/11 11:39:26 | 000,052,584 | ---- | C] (Khronos Group) -- C:\Windows\System32\OpenCL.dll [2012/11/11 11:39:02 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA Corporation [2012/11/11 11:36:33 | 000,884,072 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvhdagenco3220103.dll [2012/11/11 11:36:33 | 000,149,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvhda32v.sys [2012/11/11 11:36:33 | 000,028,008 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvhdap32.dll [2012/11/11 11:36:32 | 019,906,920 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll [2012/11/11 11:36:32 | 015,309,160 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll [2012/11/11 11:36:32 | 012,501,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll [2012/11/11 11:36:32 | 010,837,352 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys [2012/11/11 11:36:32 | 007,697,768 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll [2012/11/11 11:36:32 | 006,127,464 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvopencl.dll [2012/11/11 11:36:32 | 002,574,696 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll [2012/11/11 11:36:32 | 001,867,112 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll [2012/11/11 11:36:32 | 001,009,512 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco32.dll [2012/11/11 11:36:32 | 000,888,168 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdispgenco32.dll [2012/11/11 11:36:32 | 000,067,432 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvapo32v.dll [2012/11/11 11:36:31 | 017,559,912 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll [2012/11/11 11:36:31 | 002,428,776 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll [2012/11/11 11:33:40 | 000,000,000 | ---D | C] -- C:\NVIDIA [2012/11/11 11:11:06 | 000,446,464 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvuninst.exe ========== Files - Modified Within 30 Days ========== [2012/11/27 21:34:01 | 000,001,082 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4050318300-1184478440-624751174-1000UA.job [2012/11/27 20:38:57 | 000,004,832 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2012/11/27 20:38:57 | 000,004,832 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2012/11/27 12:40:03 | 000,000,000 | ---- | M] () -- C:\Windows\System32\LogConfigTemp.xml [2012/11/27 12:39:54 | 000,065,536 | ---- | M] () -- C:\Windows\System32\Ikeext.etl [2012/11/27 12:38:47 | 000,067,584 | ---- | M] () -- C:\Windows\bootstat.dat [2012/11/27 02:44:42 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat [2012/11/27 00:21:12 | 000,002,605 | ---- | M] () -- C:\Users\WALTERF10\Bureaublad\Microsoft Office Word 2007.lnk [2012/11/26 23:33:52 | 000,001,356 | ---- | M] () -- C:\Users\WALTERF10\AppData\Local\d3d9caps.dat [2012/11/26 11:34:01 | 000,001,030 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-4050318300-1184478440-624751174-1000Core.job [2012/11/22 23:40:37 | 000,001,099 | ---- | M] () -- C:\Users\Public\Desktop\Ashampoo MyAutoplay Menu.lnk [2012/11/22 01:46:06 | 000,677,438 | ---- | M] () -- C:\Windows\System32\perfh013.dat [2012/11/22 01:46:05 | 000,596,246 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2012/11/22 01:46:05 | 000,130,436 | ---- | M] () -- C:\Windows\System32\perfc013.dat [2012/11/22 01:46:05 | 000,104,320 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2012/11/21 20:25:16 | 000,001,801 | ---- | M] () -- C:\Users\Public\Desktop\FileZilla Client.lnk [2012/11/21 18:22:58 | 000,000,250 | ---- | M] () -- C:\Users\WALTERF10\Bureaublad\English - Skype Support Network.url [2012/11/21 16:13:57 | 000,001,876 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk [2012/11/21 14:42:28 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_User_tcwbf_01_09_00.Wdf [2012/11/21 14:42:28 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_WinUSB_01009.Wdf [2012/11/21 13:11:55 | 000,000,249 | ---- | M] () -- C:\Users\WALTERF10\Bureaublad\Google Nieuws.url [2012/11/20 22:49:01 | 000,000,302 | ---- | M] () -- C:\Users\WALTERF10\AppData\Local\config.ini [2012/11/20 22:09:02 | 000,000,919 | ---- | M] () -- C:\Users\WALTERF10\Bureaublad\Windows Mail.lnk [2012/11/20 21:19:59 | 000,000,184 | ---- | M] () -- C:\Users\WALTERF10\Bureaublad\Waakzame burgers.url [2012/11/15 22:05:36 | 000,339,160 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2012/11/14 20:02:35 | 000,001,047 | ---- | M] () -- C:\Users\WALTERF10\Bureaublad\AnswerDome.lnk [2012/11/14 01:13:20 | 000,001,031 | ---- | M] () -- C:\Users\WALTERF10\Bureaublad\DriverMax.lnk [2012/11/13 15:31:01 | 000,697,272 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe [2012/11/13 15:31:01 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl [2012/11/12 23:07:15 | 000,053,248 | ---- | M] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\System32\CSVer.dll [2012/11/12 22:42:41 | 000,001,868 | ---- | M] () -- C:\Users\Public\Desktop\SimEdit.lnk [2012/11/12 22:31:09 | 000,002,366 | ---- | M] () -- C:\Users\Public\Desktop\Driver Detective.lnk [2012/11/11 18:30:01 | 000,001,912 | ---- | M] () -- C:\Windows\epplauncher.mif [2012/11/11 16:03:32 | 000,001,003 | ---- | M] () -- C:\Users\WALTERF10\Bureaublad\Hotmail - [email protected] [2012/11/11 15:58:48 | 000,000,260 | ---- | M] () -- C:\Users\WALTERF10\Bureaublad\Postvak IN - [email protected] - Gmail#inbox.url [2012/11/08 16:11:26 | 001,056,768 | ---- | M] () -- C:\Windows\System32\defltbase.sdb [2012/11/07 21:41:57 | 000,002,066 | ---- | M] () -- C:\Users\WALTERF10\Bureaublad\Google Chrome.lnk [2012/11/06 23:17:12 | 000,000,434 | ---- | M] () -- C:\Windows\BRWMARK.INI [2012/11/04 23:58:55 | 000,000,262 | RHS- | M] () -- C:\ProgramData\ntuser.pol [2012/11/04 12:35:56 | 000,071,680 | ---- | M] () -- C:\Users\WALTERF10\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini ========== Files Created - No Company Name ========== [2012/11/22 23:40:37 | 000,001,099 | ---- | C] () -- C:\Users\Public\Desktop\Ashampoo MyAutoplay Menu.lnk [2012/11/21 20:25:16 | 000,001,801 | ---- | C] () -- C:\Users\Public\Desktop\FileZilla Client.lnk [2012/11/21 18:22:58 | 000,000,250 | ---- | C] () -- C:\Users\WALTERF10\Bureaublad\English - Skype Support Network.url [2012/11/21 16:13:57 | 000,001,876 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk [2012/11/21 14:42:28 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_User_tcwbf_01_09_00.Wdf [2012/11/21 14:42:28 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_WinUSB_01009.Wdf [2012/11/21 13:11:55 | 000,000,249 | ---- | C] () -- C:\Users\WALTERF10\Bureaublad\Google Nieuws.url [2012/11/20 22:49:01 | 000,000,302 | ---- | C] () -- C:\Users\WALTERF10\AppData\Local\config.ini [2012/11/20 22:09:02 | 000,000,919 | ---- | C] () -- C:\Users\WALTERF10\Bureaublad\Windows Mail.lnk [2012/11/20 21:19:59 | 000,000,184 | ---- | C] () -- C:\Users\WALTERF10\Bureaublad\Waakzame burgers.url [2012/11/14 20:02:35 | 000,001,047 | ---- | C] () -- C:\Users\WALTERF10\Bureaublad\AnswerDome.lnk [2012/11/12 22:42:41 | 000,001,868 | ---- | C] () -- C:\Users\Public\Desktop\SimEdit.lnk [2012/11/12 22:31:09 | 000,002,366 | ---- | C] () -- C:\Users\Public\Desktop\Driver Detective.lnk [2012/11/11 16:03:32 | 000,001,003 | ---- | C] () -- C:\Users\WALTERF10\Bureaublad\Hotmail - [email protected] [2012/11/11 15:58:48 | 000,000,260 | ---- | C] () -- C:\Users\WALTERF10\Bureaublad\Postvak IN - [email protected] - Gmail#inbox.url [2012/11/11 11:36:32 | 000,012,865 | ---- | C] () -- C:\Windows\System32\nvinfo.pb [2012/09/06 20:32:03 | 000,000,000 | RHS- | C] () -- C:\Windows\FFSSET.BIN [2012/07/19 00:37:04 | 002,468,520 | ---- | C] () -- C:\Windows\System32\BootMan.exe [2012/07/19 00:37:04 | 000,019,840 | ---- | C] () -- C:\Windows\System32\EuEpmGdi.dll [2012/07/19 00:37:03 | 000,086,408 | ---- | C] () -- C:\Windows\System32\setupempdrv03.exe [2012/07/19 00:37:03 | 000,014,216 | ---- | C] () -- C:\Windows\System32\epmntdrv.sys [2012/07/19 00:37:03 | 000,008,456 | ---- | C] () -- C:\Windows\System32\EuGdiDrv.sys [2012/07/09 09:42:07 | 001,490,999 | ---- | C] () -- C:\Windows\System32\tkbtnpn1.dll [2012/07/09 08:25:05 | 000,293,889 | ---- | C] () -- C:\Windows\System32\drivers\RTAIODAT.DAT [2012/05/22 23:11:10 | 001,769,984 | ---- | C] () -- C:\Windows\System32\drivers\snp2uvc.sys [2012/05/22 23:11:10 | 000,028,160 | ---- | C] () -- C:\Windows\System32\drivers\sncduvc.sys [2012/02/25 16:26:02 | 000,001,356 | ---- | C] () -- C:\Users\WALTERF10\AppData\Local\d3d9caps.dat [2012/01/22 16:17:31 | 000,071,680 | ---- | C] () -- C:\Users\WALTERF10\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012/01/21 23:54:17 | 000,021,548 | ---- | C] () -- C:\Windows\System32\emptyregdb.dat [2012/01/21 23:15:30 | 000,000,434 | ---- | C] () -- C:\Windows\BRWMARK.INI [2012/01/21 23:14:45 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat [2012/01/21 22:58:07 | 001,060,424 | ---- | C] () -- C:\Windows\System32\WdfCoInstaller01000.dll [2012/01/17 10:03:24 | 000,000,286 | ---- | C] () -- C:\Windows\reimage.ini [2011/12/29 11:33:19 | 000,107,760 | -H-- | C] () -- C:\Windows\System32\mlfcache.dat [2011/12/24 01:10:04 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX2.dat [2011/11/21 10:44:29 | 000,110,592 | ---- | C] () -- C:\Windows\System32\FsUsbExDevice.Dll [2011/11/21 10:44:29 | 000,036,608 | ---- | C] () -- C:\Windows\System32\FsUsbExDisk.Sys [2011/11/20 23:41:25 | 000,000,050 | ---- | C] () -- C:\Windows\System32\bridf08b.dat [2011/11/20 23:34:21 | 000,031,884 | ---- | C] () -- C:\Windows\maxlink.ini [2011/11/16 00:34:51 | 000,000,262 | RHS- | C] () -- C:\ProgramData\ntuser.pol [2011/06/28 10:18:42 | 000,073,728 | ---- | C] () -- C:\Windows\System32\belpicppgui.dll ========== ZeroAccess Check ========== [2006/11/02 13:54:22 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shell32.dll -- [2012/06/08 18:47:00 | 011,586,048 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = %systemroot%\system32\wbem\fastprox.dll -- [2009/04/11 14:18:30 | 000,614,912 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = %systemroot%\system32\wbem\wbemess.dll -- [2009/04/11 14:18:20 | 000,347,648 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both ========== LOP Check ========== [2012/01/21 23:44:05 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\Acer [2012/01/21 23:44:05 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\Acer GameZone Console [2012/01/21 23:44:05 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\Acronis [2012/02/14 20:51:19 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\Ashampoo [2012/06/17 21:02:15 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\BitZipper [2012/11/13 23:13:32 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\Canon [2012/02/16 11:20:23 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\Canon_Inc_IC [2012/01/28 19:36:59 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\com.adobe.sendnow.SendNowDesktop [2012/01/21 23:44:07 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\DNA [2012/01/21 23:44:07 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\eSobi [2012/01/21 23:44:07 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\Feedreader [2012/11/21 20:36:58 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\FileZilla [2012/06/03 17:05:34 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\flashpaste [2012/02/04 15:08:54 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\GetRightToGo [2012/01/21 23:44:07 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\ImgBurn [2012/11/14 20:04:17 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\InnovativeSolutions [2011/12/22 19:06:19 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\Lite [2012/01/21 23:44:12 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\ML [2012/01/21 23:44:14 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\newsXpresso [2012/01/21 23:44:14 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\OpenOffice.org [2012/06/04 15:22:07 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\Pegasus Mail [2012/09/11 20:14:53 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\Quark [2012/01/21 23:44:15 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\Sammsoft [2012/01/21 23:44:16 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\Samsung [2012/07/26 06:36:03 | 000,000,000 | ---D | M] -- C:\Users\WALTERF10\AppData\Roaming\TuneUp Software ========== Purity Check ========== < End of report > 3)Extra's OTL Extras logfile created on: 27/11/2012 21:44:44 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\WALTERF10\Diverse Software\OldtimerGeeksTogo - OTL Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000813 | Country: België | Language: NLB | Date Format: d/MM/yyyy 2,99 Gb Total Physical Memory | 1,89 Gb Available Physical Memory | 63,10% Memory free 6,19 Gb Paging File | 4,26 Gb Available in Paging File | 68,82% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 254,01 Gb Total Space | 113,34 Gb Free Space | 44,62% Space Free | Partition Type: NTFS Drive D: | 30,54 Gb Total Space | 26,32 Gb Free Space | 86,18% Space Free | Partition Type: NTFS Drive G: | 465,76 Gb Total Space | 242,74 Gb Free Space | 52,12% Space Free | Partition Type: NTFS Drive H: | 3,66 Gb Total Space | 3,66 Gb Free Space | 99,97% Space Free | Partition Type: FAT32 Computer Name: WALTERG1 | User Name: WALTERF10 | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation) ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 "FirewallDisableNotify" = 0 "AntiVirusDisableNotify" = 0 "UpdatesDisableNotify" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 "VistaSp1" = Reg Error: Unknown registry data type -- File not found "VistaSp2" = Reg Error: Unknown registry data type -- File not found [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-4050318300-1184478440-624751174-1000] "EnableNotifications" = 1 "EnableNotificationsRef" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] ========== System Restore Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 ========== Firewall Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 "DoNotAllowExceptions" = 0 ========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\decryption.exe" = C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\decryption.exe:*:Enabled:decryption "C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe" = C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe:*:Enabled:eDSfsu -- (Egis Incorporated.) "C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe" = C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe:*:Enabled:eDSMgr "C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe" = C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe:*:Enabled:eDStbmngr -- (Egis Incorporated.) "C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\encryption.exe" = C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\encryption.exe:*:Enabled:encryption "C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\decryption.exe" = C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\decryption.exe:*:Enabled:decryption -- ( Egis Incorporated.) "C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe" = C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe:*:Enabled:eDSfsu -- (Egis Incorporated.) "C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe" = C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe:*:Enabled:eDSMgr "C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe" = C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe:*:Enabled:eDStbmngr -- (Egis Incorporated.) "C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\encryption.exe" = C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\encryption.exe:*:Enabled:encryption -- ( Egis Incorporated.) "C:\Program Files\BitTorrent\bittorrent.exe" = C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent -- (BitTorrent, Inc.) ========== Vista Active Open Ports Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0160A0AE-27BA-4C51-8985-7F4E9B2BABF5}" = lport=10244 | protocol=6 | dir=in | app=system | "{01BF5062-1C63-4C7C-871E-13ACA48FD398}" = lport=135 | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | "{03B1A624-F030-4BBD-ABC4-02251AD60538}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=c:\windows\system32\svchost.exe | "{059071EA-EE28-40F1-8AD8-1CE569350E24}" = rport=139 | protocol=6 | dir=out | app=system | "{0B8DF372-61A0-41B0-BCB6-A29B0E08622C}" = lport=137 | protocol=17 | dir=in | app=system | "{19E26EA7-9CCC-49B1-805E-D83D68AEA72F}" = lport=1723 | protocol=6 | dir=in | app=system | "{1C6E1053-60AD-4352-9A57-22C637EC2066}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=c:\windows\system32\svchost.exe | "{2999BD66-8B1A-479C-96AC-3A849773493A}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{29EEB4C5-AACB-4647-A53C-6C313EF699F6}" = rport=137 | protocol=17 | dir=out | app=system | "{2B722AEA-8A30-4DE2-A10C-949475BF9B1E}" = lport=162 | protocol=17 | dir=in | svc=snmptrap | app=c:\windows\system32\snmptrap.exe | "{2FFDF144-BB29-4F16-B0D5-1D338C768D14}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=c:\windows\system32\svchost.exe | "{333A541E-BC95-4C76-B4CC-7412D54D04A0}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | "{36837B7A-2733-48E3-834B-65A577C3B847}" = lport=3540 | protocol=17 | dir=in | svc=pnrpsvc | app=c:\windows\system32\svchost.exe | "{38FCE131-A8DB-4AD1-A63D-5BE97940A79B}" = rport=1701 | protocol=17 | dir=out | app=system | "{4483B0A8-824A-4475-BF77-C5DB67A6D07F}" = rport=3540 | protocol=17 | dir=out | svc=pnrpsvc | app=c:\windows\system32\svchost.exe | "{4DAFA210-11A2-4AFE-92FC-934497FF6772}" = lport=7777 | protocol=17 | dir=in | app=c:\windows\ehome\ehshell.exe | "{57E522C3-3234-462C-8FB2-77CE12951E23}" = lport=139 | protocol=6 | dir=in | app=system | "{5C90FA4A-1D48-4407-8557-4AC4E7B6D5D6}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=c:\windows\system32\svchost.exe | "{63BCFB91-013D-4414-BD10-E4D4F7E0CB9E}" = lport=443 | protocol=6 | dir=in | app=system | "{6582F1E4-BCD7-41EA-9FA0-35D733628BDD}" = lport=445 | protocol=6 | dir=in | app=system | "{6663A7CE-63ED-42C4-B52C-3B6BA6CEF7B5}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=c:\windows\system32\svchost.exe | "{681C5846-2215-49FC-B6FD-0D0C3877A3CE}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 | "{74797219-9B8E-4829-B00C-96A0A29B0CAA}" = lport=554 | protocol=6 | dir=in | app=c:\windows\ehome\ehshell.exe | "{74B2E43A-9AE5-47FF-8C90-5355EAE3C13D}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) | "{8430B96F-0FF5-422A-8CD6-24616C1D1FEE}" = rport=445 | protocol=6 | dir=out | app=system | "{8538F746-A97B-48DD-AF6D-1BCB5B6C5895}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=c:\windows\system32\svchost.exe | "{8CFC0251-677D-450D-941A-825B7A0DF433}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | "{903E0A06-8D1C-4B6F-B1AB-6BB67C70D877}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) | "{915F6FD9-DE99-4E86-A58B-52A62A971E6A}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | "{951F9458-8993-479E-82FA-F30FD388EB23}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | "{95FF6D88-EB93-46C5-9618-8608015965BD}" = lport=1701 | protocol=17 | dir=in | app=system | "{9B62ECC2-B562-41A6-8D9C-BF6A5FADDF3C}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=c:\windows\system32\svchost.exe | "{B13A4248-5390-431F-9DAA-0D8A7169BEAA}" = rport=138 | protocol=17 | dir=out | app=system | "{BA3F5109-3755-45E6-9295-77AB90812BFB}" = rport=10244 | protocol=6 | dir=out | app=system | "{BCFE103C-B26B-43DD-A796-7287A113A029}" = lport=3390 | protocol=6 | dir=in | app=system | "{C27170CA-0FCD-43DD-8012-01508FE707C8}" = lport=138 | protocol=17 | dir=in | app=system | "{CEFE3E6F-C89A-464E-A1C9-44F01D366E93}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=c:\windows\system32\svchost.exe | "{D3A55003-CCD5-4AD2-B523-865B4AD0E206}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=c:\windows\system32\svchost.exe | "{DE75ED75-2CA8-4B1E-8978-75A80130933E}" = rport=1723 | protocol=6 | dir=out | app=system | "{E40B61C9-4351-4ACA-A05B-2357A7EE2929}" = lport=135 | protocol=6 | dir=in | svc=rpcss | app=c:\windows\system32\svchost.exe | "{E754AC8A-AFAF-4167-B415-E1238E4C2B40}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | "{F1F9C185-A19D-4DC8-9A0F-45F63E160B80}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=c:\windows\system32\svchost.exe | "{F51E9B44-3957-4BAC-BFD4-466F6BAC41D3}" = lport=445 | protocol=6 | dir=in | app=system | "{F70EED66-5F87-4ED6-A014-6766E7CF21FE}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=c:\windows\system32\svchost.exe | ========== Vista Active Application Exception List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{021F87E2-75FA-488D-BBD0-FA90B6D3A7C9}" = dir=in | app=c:\program files\cyberlink\powerdirector\pdr8.exe | "{0487E693-BA0D-428E-859F-CDFF71F6D407}" = protocol=58 | dir=in | [email protected],-28545 | "{1FA8D93A-CE05-456D-816F-B85E24C0EC80}" = protocol=6 | dir=out | svc=msiscsi | app=c:\windows\system32\svchost.exe | "{29772805-2F39-4706-A879-3601BB025E9C}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe | "{31985F1B-2E86-4C18-9059-B92D5DBAA0EA}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe | "{338AC238-6E4B-4664-B201-68A7A95EA234}" = protocol=17 | dir=in | app=c:\program files\windows mail\winmail.exe | "{388FB9FF-80C1-443D-88E2-C209D740B5CC}" = protocol=6 | dir=in | svc=msiscsi | app=c:\windows\system32\svchost.exe | "{3C55D84B-FE87-4006-BA39-D52241A81ED7}" = protocol=17 | dir=out | app=c:\windows\ehome\ehshell.exe | "{5292FE4A-55AB-40F2-9AAF-2BD401CBC232}" = protocol=1 | dir=in | [email protected],-28543 | "{5C3AA816-90F0-44EA-873F-D1ED3E9809A8}" = protocol=17 | dir=in | app=c:\program files\windows media player\wmplayer.exe | "{6EBBAF83-F698-4750-BB94-B678188D9FB7}" = protocol=6 | dir=in | app=c:\program files\windows mail\winmail.exe | "{7AA3D360-C8DA-4494-9DC0-B4D877BD78CD}" = protocol=6 | dir=out | svc=mcx2svc | app=c:\windows\system32\svchost.exe | "{807B03C6-E56F-4937-A961-8362BCC9AAF1}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe | "{A782CC5F-592A-4A80-BB23-0309028D509C}" = protocol=17 | dir=out | app=c:\program files\windows media player\wmplayer.exe | "{B1DB664A-43E3-4836-8333-05E11FE225C5}" = protocol=6 | dir=in | app=c:\windows\system32\wbem\unsecapp.exe | "{B2CF0834-676E-4412-A1EF-6341821296F1}" = protocol=6 | dir=out | app=c:\windows\ehome\mcx2prov.exe | "{B8F243D3-CBC6-42A7-83D2-EEA1D4F0E51B}" = dir=in | app=c:\program files\windows live\mesh\moe.exe | "{CA6BC19F-1CF9-4F4C-894E-78466B5AC942}" = protocol=1 | dir=out | [email protected],-28544 | "{D45FC034-9B37-453F-AC0A-10B74AA1EE41}" = protocol=6 | dir=out | svc=upnphost | app=c:\windows\system32\svchost.exe | "{D836B60A-DF34-4F43-B562-F19F3DCD9C57}" = protocol=6 | dir=out | svc=winmgmt | app=c:\windows\system32\svchost.exe | "{D982302F-0C47-4DFB-8227-C887E38A05F8}" = protocol=6 | dir=in | app=c:\windows\system32\plasrv.exe | "{DF7C96E3-9BF3-408B-99FA-9D398D6D4909}" = protocol=6 | dir=in | app=c:\program files\itunes\itunes.exe | "{E6CB2773-CA08-4DDF-9CDF-993DCA84FF7F}" = protocol=6 | dir=out | app=c:\program files\windows media player\wmplayer.exe | "{EAD74E51-EB52-48FA-9496-DC7CB9086A8E}" = protocol=6 | dir=in | svc=winmgmt | app=c:\windows\system32\svchost.exe | "{EF2DEE9A-3538-4575-9825-531B5EF048C2}" = protocol=17 | dir=in | app=c:\program files\itunes\itunes.exe | "{F0EE58C6-3EA4-464B-B400-3D9CAC668775}" = dir=in | app=c:\program files\skype\phone\skype.exe | "{F538D23A-6663-4781-B5B9-2AEB5F8CDCC0}" = protocol=6 | dir=out | app=c:\windows\ehome\ehshell.exe | "{F9FF89A6-5553-4A18-B2F4-131F7F78226E}" = protocol=58 | dir=out | [email protected],-28546 | "TCP Query User{2E26A9D2-01F9-450B-8A53-87FEBA383CD9}C:\program files\acer arcade deluxe\homemedia\homemedia.exe" = protocol=6 | dir=in | app=c:\program files\acer arcade deluxe\homemedia\homemedia.exe | "UDP Query User{9B94BA89-77B7-4224-B1F4-5C16F274DDEE}C:\program files\acer arcade deluxe\homemedia\homemedia.exe" = protocol=17 | dir=in | app=c:\program files\acer arcade deluxe\homemedia\homemedia.exe | ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{02570AE0-BEE0-4A6C-BE3F-D806E9F2EA17}" = ScanSoft PaperPort 11 "{04A3A6B0-8E19-49BB-82FF-65C5A55F917D}" = Acronis True Image Home 2011 "{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer "{0E64B098-8018-4256-BA23-C316A43AD9B0}" = QuickTime "{0F6F6876-6334-4977-B5DD-CFC12E193420}" = iTunes "{101738D7-D805-37A9-BB91-1F2C351782BF}" = Microsoft .NET Framework 3.5 Language Pack SP1 - nld "{1199FAD5-9546-44f3-81CF-FFDB8040B7BF}_CNQ2413" = CanoScan LiDE 100 Scanner Driver "{13D85C14-2B85-419F-AC41-C7F21E68B25D}" = Acer eSettings Management "{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser "{19A4A990-5343-4FF7-B3B5-6F046C091EDF}" = Windows Live Remote Client "{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions "{227E8782-B2F4-4E97-B0EE-49DE9CC1C0C0}" = Windows Live Remote Service "{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Acer Arcade Deluxe "{26A24AE4-039D-4CA4-87B4-2F83216032FF}" = Java™ 6 Update 37 "{2A07C35B-8384-4DA4-9A95-442B6C89A073}" = Windows Live Essentials "{2BC2781A-F7F6-452E-95EB-018A522F1B2C}" = PaperPort Image Printer "{2D6E3D97-1FDF-4993-AC75-72F59EC445C5}" = Windows Live Family Safety "{2FDD750F-49B7-40C1-9D5E-D2955BC0E2D8}" = NVIDIA PhysX "{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.® AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver "{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery "{35CA031C-D3CD-4A28-8D9B-C71466C4F045}" = Windows Live Writer "{3717C4F2-7412-4793-9BB8-D73D2817B3D6}" = USB Video/Audio Device Driver "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{3F4143A1-9C21-4011-8679-3BC1014C6886}" = Windows Live Mesh "{3FE3D6A5-2F5E-4870-A3AC-D1D88E0B2797}" = Intel® PROSet/Wireless WiFi Software "{449CE12D-E2C7-4B97-B19E-55D163EA9435}" = Bing Bar "{4640FDE1-B83A-4376-84ED-86F86BEE2D41}" = Driver Detective "{48294D95-EE9A-4377-8213-44FC4265FB27}" = Windows Live Messenger "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{57265292-228A-41FA-9AEC-4620CBCC2739}" = Acer eAudio Management "{57F0ED40-8F11-41AA-B926-4A66D0D1A9CC}" = Microsoft Office Live Add-in 1.3 "{58E5844B-7CE2-413D-83D1-99294BF6C74F}" = Acer ePower Management "{5B63A470-9334-44D1-AF61-6CE2DB565AE9}" = Orion "{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 "{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}" = Segoe UI "{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM "{63EC2120-1742-4625-AA47-C6A8AEC9C64C}" = Apple Application Support "{65DA2EC9-0642-47E9-AAE2-B5267AA14D75}" = Activation Assistant for the 2007 Microsoft Office suites "{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE "{6BF66AED-3EA4-4106-B240-5CE96C9B76B0}" = Brother MFL-Pro Suite DCP-195C "{706EA4A8-97B5-4C29-A0F3-0B38C666F0C4}" = QuarkXPress "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update "{78A96B4C-A643-4D0F-98C2-A8E16A6669F9}" = Windows Live Messenger Companion Core "{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour "{7C4C5B40-43E1-4890-AD50-E1E8F8446D5F}" = Microsoft Antimalware Service NL-NL Language Pack "{7F811A54-5A09-4579-90E1-C93498E230D9}" = Acer eRecovery Management "{8142D25E-028A-4563-86ED-5755783C8029}" = Messenger Companion "{824563DE-75AD-4166-9DC0-B6482F207094}" = Belgium e-ID middleware 4.0.0 (build 7094) "{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110111700}" = Zuma Deluxe "{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110113233}" = Bookworm Deluxe "{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-11029123}" = Bricks of Egypt "{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110322783}" = Big Kahuna Reef "{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-110411970}" = Chuzzle "{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111118433}" = Mystery Case Files - Huntsville "{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111199750}" = Cake Mania "{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111252743}" = Mahjong Escape Ancient China "{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111324990}" = Kick N Rush "{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111543617}" = Backspin Billiards "{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111692950}" = Mahjongg Artifacts "{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111771833}" = Jewel Quest Solitaire "{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111796363}" = Mystery Solitaire - Secret Island "{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-111872660}" = Diner Dash Flo on the Go "{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112531267}" = Chicken Invaders 3 "{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112615863}" = Agatha Christie Death on the Nile "{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-112920767}" = Alice Greenfingers "{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113009953}" = Turbo Pizza "{82C36957-D2B8-4EF2-B88C-5FA03AA848C7-113080210}" = Azada "{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform "{845E0BCB-8C8D-4FAB-8588-AD5FFD156C95}" = Windows Live Remote Service Resources "{85309D89-7BE9-4094-BB17-24999C6118FC}" = PhotoStudio "{859B9BCA-5376-4566-9F88-C6C9DAA7A925}" = Microsoft Security Client NL-NL Language Pack "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime "{8D15E1B2-D2B7-4A17-B44B-D2DDE5981406}" = iLivid "{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT "{8F1B6239-FEA0-450A-A950-B05276CE177C}" = Acer Empowering Technology "{90120000-0016-0413-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Dutch) 2007 "{90120000-0016-0413-0000-0000000FF1CE}_HOMESTUDENTR_{26257879-B20D-4D30-A429-B387A4890929}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0018-0413-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Dutch) 2007 "{90120000-0018-0413-0000-0000000FF1CE}_HOMESTUDENTR_{26257879-B20D-4D30-A429-B387A4890929}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001B-0413-0000-0000000FF1CE}" = Microsoft Office Word MUI (Dutch) 2007 "{90120000-001B-0413-0000-0000000FF1CE}_HOMESTUDENTR_{26257879-B20D-4D30-A429-B387A4890929}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0407-0000-0000000FF1CE}_HOMESTUDENTR_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_HOMESTUDENTR_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007 "{90120000-001F-040C-0000-0000000FF1CE}_HOMESTUDENTR_{71F055E8-E2C6-4214-BB3D-BFE03561B89E}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007 "{90120000-001F-0413-0000-0000000FF1CE}_HOMESTUDENTR_{2C95E7EE-FEA7-4B3A-A6E5-DF90A88B816A}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-0020-0413-0000-0000000FF1CE}" = Compatibiliteitspakket voor het 2007 Microsoft Office system "{90120000-002C-0413-0000-0000000FF1CE}" = Microsoft Office Proofing (Dutch) 2007 "{90120000-006E-0413-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Dutch) 2007 "{90120000-006E-0413-0000-0000000FF1CE}_HOMESTUDENTR_{1D12BC91-360E-424C-97C4-813651313660}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-00A1-0413-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Dutch) 2007 "{90120000-00A1-0413-0000-0000000FF1CE}_HOMESTUDENTR_{26257879-B20D-4D30-A429-B387A4890929}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In "{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager "{91120000-002F-0000-0000-0000000FF1CE}" = Microsoft Office Home and Student 2007 "{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3) "{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker "{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting "{96AE7E41-E34E-47D0-AC07-1091A8127911}" = Realtek USB 2.0 Card Reader "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BD262D0-B788-4546-A0A5-F4F56EC3834B}" = Windows Live Photo Common "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{A2A0A82F-025F-458d-A0CD-9BB2320804B5}" = Microsoft Works "{A5633652-3795-4829-BB0B-644F0279E279}" = Acer eDataSecurity Management "{A60B3BF0-954B-42AF-B8D8-2C1D34B613AA}" = Windows Live Photo Gallery "{a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb" = Internet Explorer (Enable DEP) "{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common "{A9F5E1E1-1281-4862-90B4-6CF8E6AF83CE}_is1" = Pegasus Mail HTML Renderer 2.4.7.2 "{AC76BA86-7AD7-1043-7B44-AA1000000001}" = Adobe Reader X (10.1.4) - Nederlands "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA-configuratiescherm 306.97 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Grafisch stuurprogramma 306.97 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX systeemsoftware 9.12.0604 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.10.8 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA HD Audio-stuurprogramma 1.3.18.0 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components "{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy "{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call "{BC30E5E7-047D-4232-A7E8-F2CB7CC7B2E0}_is1" = Emsisoft Anti-Malware "{C169BD5F-00C1-437C-8162-88FA6BE495D5}" = OpenOffice.org 3.4.1 "{C32CE55C-12BA-4951-8797-0967FDEF556F}" = Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen "{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant "{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector "{CB7224D9-6DCA-43F1-8F83-6B1E39A00F92}" = Windows Live Movie Maker "{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}" = SUPERAntiSpyware "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{CE386A4E-D0DA-4208-8235-BCE43275C694}" = LightScribe 1.4.142.1 "{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform "{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones "{D36DD326-7280-11D8-97C8-000129760CBE}" = CyberLink PhotoNow "{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform "{D4DDFAA1-EC37-4529-AD5B-A433ADE68662}" = Apple Mobile Device Support "{D6F25CF9-4E87-43EB-B324-C12BE9CDD668}" = Windows Live UX Platform Language Pack "{DA7DF8E2-4B8F-4286-97FE-DE3FFFE9B728}" = iCloud "{DC24971E-1946-445D-8A82-CE685433FA7D}" = Realtek USB 2.0 Card Reader "{DD1DED37-2486-4F56-8F89-56AA814003F5}" = Acer Crystal Eye Webcam "{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh "{DF33FDAF-22DE-4E3E-AFF7-A8648B473596}" = Windows Live Family Safety "{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10 "{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger "{EA17F4FC-FDBF-4CF8-A529-2D983132D053}" = Skype™ 6.0 "{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU] "{F0CCBE54-9132-44E9-82DF-CD364AD5C22D}" = Windows Live Remote Client Resources "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio "{F4933D9F-89CC-4CA9-B5B0-CF32968890C7}" = BookScan&Whiteboard Suite "{F59205C8-E5FB-43F5-AAB2-16C1760D4F59}" = FaceFilter Studio Brother Edition "3FE3642036A0F4AEC17772437CE14BB1E67006AA" = Stuurprogrammapakket voor Windows - Fedict SmartCard (10/04/2011 4.0.0.5) "Acer GameZone Console_is1" = Acer GameZone Console 2.0.1.1 "Activation Assistant for the 2007 Microsoft Office suites" = Activation Assistant for the 2007 Microsoft Office suites "ADM_is1" = AnswerDome 1 "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.6 "Advanced Registry Optimizer_is1" = Advanced Registry Optimizer "APU" = CANON iMAGE GATEWAY Album Plugin Utility "Ashampoo Burning Studio 11_is1" = Ashampoo Burning Studio 11 v.11.0.4 "Ashampoo Core Tuner 2_is1" = Ashampoo Core Tuner 2 2.0.1 "Ashampoo MyAutoplay Menu_is1" = Ashampoo MyAutoplay Menu 1.0.5 "Ashampoo Photo Optimizer 3_is1" = Ashampoo Photo Optimizer 3 v.3.13 "Ashampoo Snap 5_is1" = Ashampoo Snap 5 v.5.0.2 "Ashampoo UnInstaller 5_is1" = Ashampoo UnInstaller 5 v.5.0.1 "Ashampoo WinOptimizer 9_is1" = Ashampoo WinOptimizer 9 v.9.1.0 "Audacity_is1" = Audacity 1.2.6 "Belarc Advisor" = Belarc Advisor 8.1 "CameraWindowDVC6" = Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX "Canon G.726 WMP-Decoder" = Canon G.726 WMP-Decoder "CANON iMAGE GATEWAY Task" = CANON iMAGE GATEWAY Task for ZoomBrowser EX "Canon Internet Library for ZoomBrowser EX" = Canon Internet Library for ZoomBrowser EX "CanonSolutionMenu" = Canon Utilities Solution Menu "CNXT_MODEM_HDA_HSF" = HDAUDIO Soft Data Fax Modem with SmartCP "conduitEngine" = Conduit Engine "DMX5_is1" = DriverMax 6 "EaseUS Partition Master Home Edition_is1" = EaseUS Partition Master 9.1.1 Home Edition "FeedReader_is1" = FeedReader "FileZilla Client" = FileZilla Client 3.5.3 "Google Desktop" = Google Desktop "GridVista" = Acer GridVista "HOMESTUDENTR" = Microsoft Office Home and Student 2007 "iLivid" = iLivid "ImgBurn" = ImgBurn "InstallShield_{2637C347-9DAD-11D6-9EA2-00055D0CA761}" = Acer Arcade Deluxe "InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = CyberLink PowerDirector "InstallShield_{D36DD326-7280-11D8-97C8-000129760CBE}" = CyberLink PhotoNow "InstallShield_{F193FC0E-9E18-40FC-A974-509A1BDD240A}" = Samsung New PC Studio "LManager" = Launch Manager "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware versie 1.61.0.1400 "Microsoft .NET Framework 3.5 Language Pack SP1 - nld" = Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Client Profile NLD Language Pack" = Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD "MovieEditTask" = Canon MovieEdit Task for ZoomBrowser EX "Mozilla Firefox 15.0 (x86 en-US)" = Mozilla Firefox 15.0 (x86 en-US) "MP Navigator EX 2.0" = Canon MP Navigator EX 2.0 "MyAshampoo Toolbar" = MyAshampoo Toolbar "Pegasus Mail" = Pegasus Mail "PhotoStitch" = Canon Utilities PhotoStitch "ProInst" = Intel PROSet Wireless "RAW Image Task" = Canon RAW Image Task for ZoomBrowser EX "Recuva" = Recuva "Reimage Repair" = Reimage Repair "RemoteCaptureTask" = Canon Utilities RemoteCapture Task for ZoomBrowser EX "Secunia PSI" = Secunia PSI (2.0.0.4003) "SynTPDeinstKey" = Synaptics Pointing Device Driver "Uploader for CANON iMAGE GATEWAY Plugin" = Canon Utilities Uploader for CANON iMAGE GATEWAY Plugin "VLC media player" = VLC media player 2.0.2 "WinLiveSuite" = Windows Live Essentials "WinRAR archiver" = WinRAR 4.20 (32-bit) "ZoomBrowser EX" = Canon Utilities ZoomBrowser EX "ZoomBrowser EX Memory Card Utility" = Canon ZoomBrowser EX Memory Card Utility ========== HKEY_CURRENT_USER Uninstall List ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Google Chrome" = Google Chrome ========== Last 20 Event Log Errors ========== [ Application Events ] Error - 26/11/2012 18:18:58 | Computer Name = WALTERG1 | Source = Bonjour Service | ID = 100 Description = Task Scheduling Error: m->NextScheduledEvent 4399 Error - 26/11/2012 18:18:58 | Computer Name = WALTERG1 | Source = Bonjour Service | ID = 100 Description = Task Scheduling Error: m->NextScheduledSPRetry 4399 Error - 26/11/2012 18:18:58 | Computer Name = WALTERG1 | Source = Brother BrLog | ID = 1001 Description = STI BrtSTI: [2012/11/26 23:18:58.909]: [00003308]: CUsbScnDev: DeviceIoControl() failed. ErrorCode = 5 Error - 26/11/2012 18:19:16 | Computer Name = WALTERG1 | Source = Brother BrLog | ID = 1001 Description = STI BrtSTI: [2012/11/26 23:19:16.742]: [00003308]: CUsbScnDev: DeviceIoControl() failed. ErrorCode = 5 Error - 26/11/2012 18:19:17 | Computer Name = WALTERG1 | Source = Brother BrLog | ID = 1001 Description = STI BrtSTI: [2012/11/26 23:19:17.743]: [00003308]: CUsbScnDev: DeviceIoControl() failed. ErrorCode = 5 Error - 26/11/2012 18:19:18 | Computer Name = WALTERG1 | Source = Brother BrLog | ID = 1001 Description = STI BrtSTI: [2012/11/26 23:19:18.743]: [00003308]: CUsbScnDev: DeviceIoControl() failed. ErrorCode = 5 Error - 26/11/2012 18:31:23 | Computer Name = WALTERG1 | Source = EventSystem | ID = 4609 Description = Error - 26/11/2012 18:32:19 | Computer Name = WALTERG1 | Source = WinMgmt | ID = 10 Description = Error - 26/11/2012 18:51:44 | Computer Name = WALTERG1 | Source = WinMgmt | ID = 10 Description = Error - 27/11/2012 7:40:13 | Computer Name = WALTERG1 | Source = WinMgmt | ID = 10 Description = [ OSession Events ] Error - 10/04/2012 5:41:39 | Computer Name = WALTERG1 | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6612.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 4290 seconds with 1140 seconds of active time. This session ended with a crash. Error - 11/05/2012 11:16:15 | Computer Name = WALTERG1 | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6612.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 20304 seconds with 1680 seconds of active time. This session ended with a crash. Error - 11/05/2012 16:32:49 | Computer Name = WALTERG1 | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6612.1000, Microsoft Office Version: 12.0.6612.1000. This session lasted 11377 seconds with 5220 seconds of active time. This session ended with a crash. Error - 8/07/2012 15:33:21 | Computer Name = WALTERG1 | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 61 seconds with 60 seconds of active time. This session ended with a crash. Error - 30/07/2012 5:44:33 | Computer Name = WALTERG1 | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 8986 seconds with 2400 seconds of active time. This session ended with a crash. Error - 24/09/2012 19:30:25 | Computer Name = WALTERG1 | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6661.5000, Microsoft Office Version: 12.0.6612.1000. This session lasted 920 seconds with 120 seconds of active time. This session ended with a crash. Error - 10/11/2012 19:28:41 | Computer Name = WALTERG1 | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6662.5003, Microsoft Office Version: 12.0.6612.1000. This session lasted 40616 seconds with 5100 seconds of active time. This session ended with a crash. [ System Events ] Error - 26/11/2012 18:32:19 | Computer Name = WALTERG1 | Source = Service Control Manager | ID = 7001 Description = Error - 26/11/2012 18:32:19 | Computer Name = WALTERG1 | Source = Service Control Manager | ID = 7001 Description = Error - 26/11/2012 18:32:19 | Computer Name = WALTERG1 | Source = Service Control Manager | ID = 7001 Description = Error - 26/11/2012 18:32:19 | Computer Name = WALTERG1 | Source = Service Control Manager | ID = 7001 Description = Error - 26/11/2012 18:51:48 | Computer Name = WALTERG1 | Source = Service Control Manager | ID = 7009 Description = Error - 26/11/2012 18:51:48 | Computer Name = WALTERG1 | Source = Service Control Manager | ID = 7000 Description = Error - 27/11/2012 7:40:13 | Computer Name = WALTERG1 | Source = Service Control Manager | ID = 7009 Description = Error - 27/11/2012 7:40:13 | Computer Name = WALTERG1 | Source = Service Control Manager | ID = 7000 Description = Error - 27/11/2012 7:48:25 | Computer Name = WALTERG1 | Source = Dhcp | ID = 1002 Description = De IP-adreslease 192.168.1.2 voor de netwerkkaart met netwerkadres 00238B123FC9 is geweigerd door de DHCP-server 192.168.1.1. De DHCP-server heeft een DHCPNACK-bericht verzonden. Error - 27/11/2012 13:09:48 | Computer Name = WALTERG1 | Source = Microsoft-Windows-WindowsUpdateClient | ID = 20 Description = < End of report > Wil iemand deskundig, dit eens analyseren als het misschien iets van resultaat oplevert, bedankt.