Archief - pc crasht constant

Het archief is een bevroren moment uit een vorige versie van dit forum, met andere regels en andere bazen. Deze posts weerspiegelen op geen enkele manier onze huidige ideeën, waarden of wereldbeelden en zijn op sommige plaatsen gecensureerd wegens ontoelaatbaar. Veel zijn in een andere tijdsgeest gemaakt, al dan niet ironisch - zoals in het ironische subforum Off-Topic - en zouden op dit moment niet meer gepost (mogen) worden. Toch bieden we dit archief nog graag aan als informatiedatabank en naslagwerk. Lees er hier meer over of start een gesprek met anderen.
T

TitaTovenaartje

Legacy Member
Als ik in de veilige modus ben heb ik er geen last van.

Als ik gewoon opstart krijg ik eerst 3 error kaders en dan reboot hij.
1ste kader: Cannot start logitech .. (niets belangrijks denk ik)
2de kader: WSAStartup failed or you have the incorrect version of Win Sock installed.
3de kader: WSA startup error

Gisteren wel nog een windowsupdate gedaan (mss daar iets fout gelopen)

Kan iemand mijn logje eens nazien?
Alvast bedankt!



Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:08:06, on 2/04/2012
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.19190)
Boot mode: Safe mode with network support

Running processes:
C:\Windows\Explorer.EXE
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN | Hotmail | Messenger | Nieuws, sport, entertainment, video, lifestyle, auto en nog veel meer, dat is MSN !
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN | Hotmail | Messenger | Nieuws, sport, entertainment, video, lifestyle, auto en nog veel meer, dat is MSN !
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN | Hotmail | Messenger | Nieuws, sport, entertainment, video, lifestyle, auto en nog veel meer, dat is MSN !
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: IEExtension.VDownloaderBHO - {7b523e7c-f096-4e36-a0cb-7efeb5c675c1} - mscoree.dll (file missing)
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Ai Nap] "C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe"
O4 - HKLM\..\Run: [QFan Help] "C:\Program Files\ASUS\Ai Suite\QFan3\QFanHelp.exe"
O4 - HKLM\..\Run: [Cpu Level Up help] C:\Program Files\ASUS\Ai Suite\CpuLevelUpHelp.exe
O4 - HKLM\..\Run: [Launch Direct Link] "C:\Program Files\ASUS\AI Direct Link\AsShare.exe"
O4 - HKLM\..\Run: [Launch As Cmd Runner] "C:\Program Files\ASUS\AI Direct Link\AsCmd.exe" -reg
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [LGODDFU] "C:\Program Files\lg_fwupdate\fwupdate.exe" blrun
O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [snp2std] C:\Windows\vsnp2std.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [D-Link D-Link DWA-125] C:\Program Files\D-Link\DWA-125 revA\AirGCFG.exe
O4 - HKLM\..\Run: [WZCSLDR2] C:\Program Files\D-Link\DWA-125 revA\WZCSLDR2.exe
O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "E:\itunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [beid] "C:\Program Files\Belgium Identity Card\beid35gui.exe" /startup
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [PlusService] C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Spotify] "C:\Users\Elke\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\system32\Macromed\Flash\FlashUtil10t_Plugin.exe -update plugin
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O10 - Unknown file in Winsock LSP: c:\windows\system32\wpclsp.dll
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll
O23 - Service: 57xx SteelVine (57xx SteelVine Manager) - Unknown owner - C:\Program Files\ASUS\Drive Xpert\SteelVine.exe
O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgwdsvc.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: D_Link_DWA-125 Service (D_Link_DWA-125) - Wireless Service - C:\Program Files\D-Link\DWA-125 revA\ANIWZCSdS.exe
O23 - Service: D_Link_DWA-125_WPS Service (D_Link_DWA-125_WPS) - Unknown owner - C:\Program Files\D-Link\DWA-125 revA\ANIWConnService.exe
O23 - Service: ExtraFilm upload service (EFUploadSrv) - Unknown owner - C:\Users\Elke\Desktop\ExtraFilm Designer BE NL\EFUploadSrv.exe (file missing)
O23 - Service: Google Updateservice (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing)
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Lavasoft Ad-Aware Service - Lavasoft Limited - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe
O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: TomTomHOMEService - TomTom - D:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

--
End of file - 9163 bytes
J

Juisterr

Legacy Member
Download OTL naar je Bureaublad
  • Dubbelklik op OTL.com om het programma te openen. Zorg ervoor dat all andere vensters gesloten zijn, en laat het programma ongestoord zijn werk doen.
  • Zet een vinkje bij Scan All Users.
  • Klik op de knop Quick Scan. Verander de instellingen van OTL niet, tenzij ik je hiervoor specifiek instructies geef. De scan zal niet heel erg lang duren.
    • Er zullen twee Kladblok-vensters geopend worden wanneer de scan klaar is. OTL.Txt en Extras.Txt. Deze bestanden zijn opgeslagen in dezelfde locatie als OTL.
    • Kopieer (Bewerken->Alles selecteren, Bewerken->Kopiëren) en plak (Bewerken->Alles selecteren, Bewerken->Plakken) de inhoud van deze twee bestanden één voor één in je volgende bericht.
T

TitaTovenaartje

Legacy Member
Extras.Txt

OTL Extras logfile created on: 4/04/2012 21:21:38 - Run 1
OTL by OldTimer - Version 3.2.39.2 Folder = C:\Users\Steven\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19190)
Locale: 00000813 | Country: België | Language: NLB | Date Format: d/MM/yyyy

2,00 Gb Total Physical Memory | 0,98 Gb Available Physical Memory | 49,23% Memory free
4,24 Gb Paging File | 2,98 Gb Available in Paging File | 70,44% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 48,83 Gb Total Space | 0,44 Gb Free Space | 0,89% Space Free | Partition Type: NTFS
Drive D: | 48,83 Gb Total Space | 14,21 Gb Free Space | 29,10% Space Free | Partition Type: NTFS
Drive E: | 135,23 Gb Total Space | 28,29 Gb Free Space | 20,92% Space Free | Partition Type: NTFS
Drive G: | 966,99 Mb Total Space | 141,37 Mb Free Space | 14,62% Space Free | Partition Type: FAT32

Computer Name: PC_VAN_STEVEN | User Name: Steven | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-2630897086-1038955228-3891820377-1000\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========
T

TitaTovenaartje

Legacy Member
Deel 2

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"D:\Program Files\BitTorrent\bittorrent.exe" = D:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent -- (BitTorrent, Inc.)


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0B6C96C7-6BB1-4BE5-ADFD-33AC7D6364CB}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office12\outlook.exe |
"{1A88861D-7FF6-4E14-AC74-54B33D377AD8}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{1BD00501-D497-467E-B3D7-DA9CB817A72D}" = rport=138 | protocol=17 | dir=out | app=system |
"{1C1CDBF4-1E5D-449F-A02A-9C5EBA0E070E}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=svchost.exe |
"{39E95633-F52E-45FC-B15E-2B1F29233D1B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{3B87714D-1FF3-4214-B423-833D5E0A78A9}" = rport=137 | protocol=17 | dir=out | app=system |
"{441978CA-D383-4C4A-AACC-BE7756703E32}" = lport=445 | protocol=6 | dir=in | app=system |
"{4AF5145E-F066-4B46-8EA5-567D15010170}" = lport=137 | protocol=17 | dir=in | app=system |
"{5A47A6DF-6B1D-4C64-8BAC-360D1D4DD93D}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{635F0BBC-69A1-4BFD-BED5-A4EE05E86EA3}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{679AF3FF-521D-4DDF-9B89-59E7172FD02A}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{7FB1A4DD-96F5-44E7-A7F9-C42FA309AAD1}" = lport=139 | protocol=6 | dir=in | app=system |
"{9B193AB9-00E3-46DE-B50B-22849F5DF9E7}" = rport=445 | protocol=6 | dir=out | app=system |
"{A838D74C-6C9F-4BAE-89E3-1F9EB86E12D7}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{AD3E8E4A-97A4-47BB-93AD-829B5EDB8D0F}" = rport=139 | protocol=6 | dir=out | app=system |
"{B40E0E96-BD92-40D9-B3C2-A46D268C5668}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{B41E1B60-9BDE-466A-A5CD-F1061336A7C8}" = lport=2869 | protocol=6 | dir=in | app=system |
"{B9600C38-0EBE-44A8-99AD-88D96EFCB883}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{C53F3CAA-B2F3-4A2E-BED4-C5061C821C6E}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{DA0C65D7-F687-453A-AD29-5F887C782628}" = lport=138 | protocol=17 | dir=in | app=system |
"{E9AA6A04-B64F-4734-9ACB-AFDBEEC4F38C}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{E9CB072E-51DC-4EAB-A8D8-E842F2553EB7}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{FF5736F8-C52A-4BE1-82F2-5A8D0B9C3F5F}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{03DAA825-704B-48D0-ABCD-EA894DAB9261}" = protocol=6 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"{041CAB86-5F9C-4A46-BC07-3BAD4FE8EEB3}" = protocol=6 | dir=in | app=c:\program files\avg\avg10\avgnsx.exe |
"{077CCFEF-07AC-4DF8-95DD-0707E7329885}" = protocol=58 | dir=out | [email protected],-28546 |
"{079E3702-94A4-440B-AFE8-326ABF562B4A}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{184B5C70-8210-4E93-8C7B-2FA4326C3C74}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{1B23BDB7-D193-4A02-8869-7B1FC0991518}" = protocol=6 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"{1D16C6B4-DF9B-4E5B-BDAC-412C36E98E94}" = dir=in | app=c:\program files\windows live\messenger\msnmsgr.exe |
"{234AE5EA-3953-41F7-BB5C-8A95973A5AD6}" = protocol=6 | dir=in | app=c:\program files\avg\avg10\avgdiagex.exe |
"{2453CEA9-EBDF-4710-926B-12BFFE775BA7}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{28FA8B6B-D95B-4AF0-B9F6-621448909FE9}" = protocol=58 | dir=in | [email protected],-28545 |
"{3A19DE13-B736-4741-AA5C-C07EDBF569E5}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{45AC329C-CFFC-4FB4-9C52-687F4448FE03}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{473D34F6-6A7F-449E-9F06-697205A86118}" = protocol=17 | dir=in | app=c:\program files\limewire\limewire.exe |
"{4C4DB54F-9197-44E1-8469-986AD5175771}" = protocol=17 | dir=in | app=c:\windows\system32\pnkbstrb.exe |
"{552ABD34-63BB-47A9-A8B8-7C89626C65ED}" = protocol=17 | dir=in | app=c:\program files\dna\btdna.exe |
"{58487A8C-E31C-449E-975E-4298C0B2C78E}" = protocol=6 | dir=in | app=c:\program files\avg\avg10\avgmfapx.exe |
"{592A8F58-F9EA-45D6-A35E-D7423B7879F1}" = protocol=6 | dir=in | app=d:\program files\bittorrent\bittorrent.exe |
"{5C271540-6180-4125-94B9-A58A75AB2BB0}" = protocol=1 | dir=out | [email protected],-28544 |
"{67DB1EF0-E255-4386-A9FE-4FE84BDC0F1D}" = dir=in | app=e:\itunes\itunes.exe |
"{6816E4D7-4BF0-48E4-A5C5-1090AFCD1E79}" = protocol=17 | dir=in | app=c:\program files\avg\avg10\avgemcx.exe |
"{6E7145FC-D827-453A-8CF9-E879D8D93BC7}" = protocol=6 | dir=in | app=c:\program files\limewire\limewire.exe |
"{6F7AA85D-37F1-4338-B495-B730017AF82D}" = protocol=17 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"{716DC549-0A78-43A8-BEA0-E29875362472}" = protocol=6 | dir=in | app=c:\program files\avg\avg10\avgam.exe |
"{73ED08FF-7332-4FDA-BEC8-6C5AFD785FC3}" = protocol=17 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"{7C176FB9-9618-497C-9F3B-F5730C71BD93}" = protocol=6 | dir=in | app=c:\windows\system32\pnkbstra.exe |
"{7F01F727-5BA3-497B-B6C9-33890CC3CAAE}" = protocol=17 | dir=in | app=c:\program files\avg\avg10\avgam.exe |
"{8F0C1571-3C28-49E2-A390-9FCF41FA5096}" = protocol=17 | dir=in | app=c:\program files\avg\avg10\avgdiagex.exe |
"{90A06A7F-03CB-4A01-B927-4CAE18F3532C}" = protocol=17 | dir=in | app=c:\program files\avg\avg10\avgnsx.exe |
"{91C6BB09-0058-45BF-AEB2-9AACCFC9CD9B}" = protocol=17 | dir=in | app=c:\program files\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{93A5B7B7-142A-4774-BF4B-972EE0917756}" = protocol=17 | dir=in | app=d:\program files\bittorrent\bittorrent.exe |
"{943A51F3-ACEC-48FE-A9CB-54A8151A7D01}" = protocol=6 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"{95B84D2B-3385-4557-8242-C595A893F876}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe |
"{9B3F194E-1FF8-45DF-AA58-3B9BCFE0629B}" = protocol=6 | dir=in | app=d:\program files\bittorrent\bittorrent.exe |
"{A17587CE-A9D1-4ED4-B7EB-1AE72FC8A33F}" = protocol=17 | dir=in | app=c:\program files\imesh applications\imesh\imesh.exe |
"{C0FEC72D-BA8A-49E4-8EE5-7ECD06B1923D}" = protocol=17 | dir=in | app=c:\program files\imesh applications\imesh\imesh.exe |
"{C17355A9-13AD-440C-A576-998D4E9AABD0}" = protocol=6 | dir=in | app=c:\program files\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{C61931D8-0FCE-43F1-B77F-9F95D1D3E14A}" = protocol=17 | dir=in | app=d:\program files\bittorrent\bittorrent.exe |
"{CA7C5148-1F12-48F7-9286-6AF0E8CED668}" = protocol=6 | dir=in | app=c:\program files\imesh applications\imesh\imesh.exe |
"{CF312BA2-FD9A-4C0C-A5FA-4EB4C4D13A18}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{DC99A95C-9DCF-409F-81A9-DC4B5CBF1FE7}" = protocol=6 | dir=in | app=c:\program files\imesh applications\imesh\imesh.exe |
"{EAFE1A2C-8A0A-4D1B-BC2D-8CAB001CA34C}" = protocol=17 | dir=in | app=c:\program files\avg\avg10\avgmfapx.exe |
"{EC1EDFF4-A04A-475C-A0F2-45CB4A784C12}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{EEBFCFC8-F830-4F44-9546-81C538BCBFB1}" = protocol=6 | dir=in | app=c:\program files\avg\avg10\avgemcx.exe |
"{EF664D67-AD62-4FE4-B608-2883DFDF65A5}" = protocol=17 | dir=in | app=c:\program files\logitech\desktop messenger\8876480\program\logitechdesktopmessenger.exe |
"{F0541E76-C69E-4F03-85CF-991C148A7C9B}" = protocol=1 | dir=in | [email protected],-28543 |
"{F0ED6E2B-75C9-46AF-A2F2-60B32B9ECEE0}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\onenote.exe |
"{F1AA432E-25F5-4E38-841F-1A2969985030}" = protocol=6 | dir=in | app=c:\program files\dna\btdna.exe |
"{FAAA39B1-600B-4087-B0E0-CCB735466EA2}" = dir=in | app=c:\program files\windows live\contacts\wlcomm.exe |
"TCP Query User{01BAC2B6-5517-445C-81F1-56B42E0D0A60}E:\callofduty\codwawmp.exe" = protocol=6 | dir=in | app=e:\callofduty\codwawmp.exe |
"TCP Query User{02622A15-B5E1-46DD-91C6-EDFBA2B849FC}E:\callofduty\codwaw.exe" = protocol=6 | dir=in | app=e:\callofduty\codwaw.exe |
"TCP Query User{258A36A0-9839-43F9-926D-6933BE2DD7B3}C:\users\steven\music\limewire\saved\limewire\limewire.exe" = protocol=6 | dir=in | app=c:\users\steven\music\limewire\saved\limewire\limewire.exe |
"TCP Query User{6600F6C0-57A0-4B00-A399-2CDB5819558B}D:\program files\bittorrent\bittorrent.exe" = protocol=6 | dir=in | app=d:\program files\bittorrent\bittorrent.exe |
"TCP Query User{776E93C5-FF64-44DF-AA27-30AA690999B7}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{8294A3BE-0A56-48ED-A615-10C70A0867F5}C:\program files\mozilla firefox\firefox.exe" = protocol=6 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"TCP Query User{86CB7674-49FB-43BA-B00A-9A112C0D41E6}C:\users\steven\music\limewire\saved\limewire\limewire.exe" = protocol=6 | dir=in | app=c:\users\steven\music\limewire\saved\limewire\limewire.exe |
"TCP Query User{896BEB1C-39D4-43A9-AE79-5D8D2C5BDAA6}C:\users\steven\program files\dna\btdna.exe" = protocol=6 | dir=in | app=c:\users\steven\program files\dna\btdna.exe |
"TCP Query User{92DA6650-333B-4F89-B9DB-6DEC55E774F4}C:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe" = protocol=6 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe |
"TCP Query User{97E51795-AE71-47C6-A407-99E4F44CE309}D:\program files\infogrames\tactical ops\system\tacticalops.exe" = protocol=6 | dir=in | app=d:\program files\infogrames\tactical ops\system\tacticalops.exe |
"TCP Query User{E9F935E6-3406-40F6-8E3C-5A95AB02632D}D:\program files\gametop.com\extreme racers\extreme racers.exe" = protocol=6 | dir=in | app=d:\program files\gametop.com\extreme racers\extreme racers.exe |
"TCP Query User{F01BF173-802F-4574-8850-2487EF67F704}C:\users\steven\program files\dna\btdna.exe" = protocol=6 | dir=in | app=c:\users\steven\program files\dna\btdna.exe |
"UDP Query User{11A0BBF8-ED4C-4090-8ED2-9372D172DD38}D:\program files\gametop.com\extreme racers\extreme racers.exe" = protocol=17 | dir=in | app=d:\program files\gametop.com\extreme racers\extreme racers.exe |
"UDP Query User{125B06F5-1EA8-424F-9155-EE472CFB8FA0}C:\users\steven\music\limewire\saved\limewire\limewire.exe" = protocol=17 | dir=in | app=c:\users\steven\music\limewire\saved\limewire\limewire.exe |
"UDP Query User{50BAD610-0AAE-4274-AD25-3201B9288D9F}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{5856AC2D-B5D3-4C42-A5EF-B5AE3DF10F9D}C:\users\steven\program files\dna\btdna.exe" = protocol=17 | dir=in | app=c:\users\steven\program files\dna\btdna.exe |
"UDP Query User{9BB604DD-2CE4-4C86-9B09-9A6A4EBAC5FC}C:\users\steven\music\limewire\saved\limewire\limewire.exe" = protocol=17 | dir=in | app=c:\users\steven\music\limewire\saved\limewire\limewire.exe |
"UDP Query User{9FA70EDA-4CE6-43E4-87DB-AF322B8F1D7C}D:\program files\infogrames\tactical ops\system\tacticalops.exe" = protocol=17 | dir=in | app=d:\program files\infogrames\tactical ops\system\tacticalops.exe |
"UDP Query User{A6814B20-A6E5-4FB8-B4BA-630D6E704F70}C:\users\steven\program files\dna\btdna.exe" = protocol=17 | dir=in | app=c:\users\steven\program files\dna\btdna.exe |
"UDP Query User{ADB1AFF6-C1EE-4F35-A46A-C28CFEAABA40}D:\program files\bittorrent\bittorrent.exe" = protocol=17 | dir=in | app=d:\program files\bittorrent\bittorrent.exe |
"UDP Query User{C81BD641-19BF-41E4-B9C4-DF8E36BB1BBA}E:\callofduty\codwawmp.exe" = protocol=17 | dir=in | app=e:\callofduty\codwawmp.exe |
"UDP Query User{C9716032-5D10-4FD5-9395-E2A0144298B7}C:\program files\mozilla firefox\firefox.exe" = protocol=17 | dir=in | app=c:\program files\mozilla firefox\firefox.exe |
"UDP Query User{E54502A7-8EEC-4B75-9187-92901BA94A10}E:\callofduty\codwaw.exe" = protocol=17 | dir=in | app=e:\callofduty\codwaw.exe |
"UDP Query User{FD9B8EF7-D72F-4055-8C14-4D5FA867C3EB}C:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe" = protocol=17 | dir=in | app=c:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0C826C5B-B131-423A-A229-C71B3CACCD6A}" = CDDRV_Installer
"{0D62890C-2061-E6EA-8E37-244BBC3B51EF}" = Catalyst Control Center Graphics Light
"{0E0DF90C-D0BA-4C89-9262-AD78D1A3DE51}" = HP USB Disk Storage Format Tool
"{0F2A2D93-368F-C181-A127-1F55A8C79724}" = ccc-utility
"{0F7C2E47-089E-4d23-B9F7-39BE00100776}" = Toolbox
"{101738D7-D805-37A9-BB91-1F2C351782BF}" = Microsoft .NET Framework 3.5 Language Pack SP1 - nld
"{11AFE21E-B193-430D-B57A-DFF7815BB962}" = Ulead PhotoImpact 12
"{18669FF9-C8FE-407a-9F70-E674896B1DB4}" = GPBaseService
"{1E99F5D7-4262-4C7C-9135-F066E7485811}" = System Requirements Lab
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = DVD Suite
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{21E0BFF2-F0C3-8966-394C-8382918E90E0}" = CCC Help English
"{236479EE-1E63-59DC-8E6B-293A393A135F}" = Catalyst Control Center InstallProxy
"{2617FA1F-0C04-3ABB-AF64-7D5B6620C341}" = Microsoft .NET Framework 4 Client Profile NLD Language Pack
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 26
"{2A07C35B-8384-4DA4-9A95-442B6C89A073}" = Windows Live Essentials
"{2A697B53-0DE3-42DA-B41D-C3F804B1C538}" = iTunes
"{2A981294-F14C-4F0F-9627-D793270922F8}" = Bonjour
"{2DC94AFD-A6E2-4AB4-9132-4A3F8E07B386}" = Apple Application Support
"{3101CB58-3482-4D21-AF1A-7057FC935355}" = KhalInstallWrapper
"{3108C217-BE83-42E4-AE9E-A56A2A92E549}" = Atheros Communications Inc.(R) AR8121/AR8113 Gigabit/Fast Ethernet Driver
"{310BC5E2-31AF-49BB-904D-E71EB93645DC}" = AI Suite
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java(TM) 6 Update 7
"{34BFB099-07B2-4E95-A673-7362D60866A2}" = PSSWCORE
"{36FDBE6E-6684-462b-AE98-9A39A1B200CC}" = HPProductAssistant
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{48294D95-EE9A-4377-8213-44FC4265FB27}" = Windows Live Messenger
"{49CC1A6A-3A1A-4EE7-913F-8106B51B59D1}" = Paragon Partition Manager 9.0 Personal Trial
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5109C064-813E-4e87-B0DE-C8AF7B5BC02B}" = SmartWebPrintingOC
"{52A69E11-7CEB-4a7d-9607-68BA4F39A89B}" = DeviceDiscovery
"{53735ECE-E461-4FD0-B742-23A352436D3A}" = Logitech Updater
"{56B83336-FBC1-4C46-8613-90A9E3B440D6}" = Six Engine
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{57752979-A1C9-4C02-856B-FBB27AC4E02C}" = QuickTime
"{587178E7-B1DF-494E-9838-FA4DD36E873C}" = ASUSUpdate
"{5ACE69F0-A3E8-44eb-88C1-0A841E700180}" = TrayApp
"{5D87FB79-FEF9-E38A-B97A-528708049D9E}" = Catalyst Control Center Graphics Previews Vista
"{5DD4FCBD-A3C1-4155-9E17-4161C70AAABA}" = Segoe UI
"{6179550A-3E7C-499E-BCC9-9E8113E0A285}" = LG ODD Auto Firmware Update
"{656A70D4-98FD-41F8-B172-575F60C922BB}" = AVG 2011
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{685C7EBA-82F4-44F8-9514-911A69850DA3}" = Express Gate
"{687FEF8A-8597-40b4-832C-297EA3F35817}" = BufferChm
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6D2993F4-0C04-739B-BC79-EC352410541F}" = Catalyst Control Center Graphics Previews Common
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{76C24F39-B161-498F-BD8B-C64789812D13}_is1" = ConvertXtoDVD 3.3.4.106e
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{779DECD7-E072-4B56-9B6B-BEB5973EEEB5}" = MobileMe Control Panel
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{824563DE-75AD-4166-9DC0-B6482F206870}" = Belgium e-ID middleware 3.5.5 (build 6870)
"{83C292B7-38A5-440B-A731-07070E81A64F}" = Windows Live PIMT Platform
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A85DEAD-7C1F-4368-881C-72AC74CB2E91}" = UnloadSupport
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8F02E37B-1B3B-9724-FACA-1BB9025D6F82}" = Catalyst Control Center Graphics Full New
"{8F3C31C5-9C3A-4AA8-8EFA-71290A7AD533}" = TomTom HOME Visual Studio Merge Modules
"{900B1197-53F5-4F46-A882-2CFFFE2EEDCB}" = Logitech Desktop Messenger
"{90120000-0015-0413-0000-0000000FF1CE}" = Microsoft Office Access MUI (Dutch) 2007
"{90120000-0015-0413-0000-0000000FF1CE}_ENTERPRISE_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0413-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Dutch) 2007
"{90120000-0016-0413-0000-0000000FF1CE}_ENTERPRISE_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0413-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Dutch) 2007
"{90120000-0018-0413-0000-0000000FF1CE}_ENTERPRISE_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0413-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Dutch) 2007
"{90120000-0019-0413-0000-0000000FF1CE}_ENTERPRISE_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0413-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Dutch) 2007
"{90120000-001A-0413-0000-0000000FF1CE}_ENTERPRISE_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0413-0000-0000000FF1CE}" = Microsoft Office Word MUI (Dutch) 2007
"{90120000-001B-0413-0000-0000000FF1CE}_ENTERPRISE_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISE_{F580DDD5-8D37-4998-968E-EBB76BB86787}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0413-0000-0000000FF1CE}" = Microsoft Office Proof (Dutch) 2007
"{90120000-001F-0413-0000-0000000FF1CE}_ENTERPRISE_{D66D5A44-E480-4BA4-B4F2-C554F6B30EBB}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0413-0000-0000000FF1CE}" = Microsoft Office Proofing (Dutch) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{90120000-0044-0413-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Dutch) 2007
"{90120000-0044-0413-0000-0000000FF1CE}_ENTERPRISE_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0413-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Dutch) 2007
"{90120000-006E-0413-0000-0000000FF1CE}_ENTERPRISE_{89C8E56A-90D8-4598-B0E6-EB28F6270E07}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0413-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Dutch) 2007
"{90120000-00A1-0413-0000-0000000FF1CE}_ENTERPRISE_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0413-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Dutch) 2007
"{90120000-00BA-0413-0000-0000000FF1CE}_ENTERPRISE_{DC387AA5-94A6-4920-B004-D59846526D81}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{932D0FC7-6DF1-4136-A2EC-166E8DEFD6A4}" = Ad-Aware
"{943A8D28-80D6-41DC-AE94-81FEB42041BF}" = System Requirements Lab CYRI
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{98455B44-3F4B-4B0B-95DD-78828C1680B6}" = Disc2Phone
"{9BD262D0-B788-4546-A0A5-F4F56EC3834B}" = Windows Live Photo Common
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9DBCE8C7-FE94-4D8F-9FF0-38EF3D8BC99E}" = DJ_AIO_03_F4200_Software
"{A062A15F-9CAC-4B88-98DF-87628A0BD721}" = Corel MediaOne
"{A0B9F8DF-C949-45ed-9808-7DC5C0C19C81}" = Status
"{A11409F1-CD33-4076-85CB-4EE4A8439BFE}" = Scan
"{A3BE3F1E-2472-4211-8735-E8239BE49D9F}" = Ulead Burn.Now 4.5
"{A46AA50A-5A57-3A6B-B09E-628C09CB7679}" = ATI Catalyst Install Manager
"{A5AB9D5E-52E2-440e-A3ED-9512E253C81A}" = SolutionCenter
"{A7E19604-93AF-4611-8C9F-CE509C2B286E}_is1" = VDownloader 3.6.921
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AB127B96-EF3F-72BE-79EF-42FAE103D817}" = Catalyst Control Center HydraVision Full
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC76BA86-7AD7-1033-7B44-A83000000003}" = Adobe Reader 8.3.1
"{AC76BA86-7AD7-5464-3428-800000000003}" = Spelling Dictionaries Support For Adobe Reader 8
"{ADE14C1E-AA43-45D3-88E5-00767D31B0E8}" = OGA Notifier 1.7.0105.35.0
"{AE9A67F9-ADF1-4a44-BAB5-C1DB302B37A2}" = HP Deskjet F4200 All-In-One Driver Software 10.0 Rel .3
"{B29B526D-F027-4122-BC7A-D9E5BC86CC40}" = DJ_AIO_03_F4200_Software_Min
"{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = PowerProducer
"{B8DBED1E-8BC3-4d08-B94A-F9D7D88E9BBF}" = HPSSupply
"{BAD0FA60-09CF-4411-AE6A-C2844C8812FA}" = HP Photosmart Essential 2.5
"{BD9F9101-9120-4454-B186-CFD22C64856E}" = Google SketchUp 7
"{C312984C-E386-4C2D-B33E-7B54355FB16E}" = AI Direct Link
"{C6150D8A-86ED-41D3-87BB-F3BB51B0B77F}" = Windows Live ID Sign-in Assistant
"{CA9BE5A1-2D94-C203-75C6-71A3B621830E}" = ccc-core-static
"{CACAEB5F-174D-4C7C-AC56-A33289A807CA}" = Apple Mobile Device Support
"{CCB9B81A-167F-4832-B305-D2A0430840B3}" = WebReg
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240B5}" = WinZip 11.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{D155D300-C235-44FC-981C-F7B34683439C}" = Paragon Drive Backup 8.51 Professional Trial
"{D2E0F0CC-6BE0-490b-B08B-9267083E34C9}" = MarketResearch
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D6F25CF9-4E87-43EB-B324-C12BE9CDD668}" = Windows Live UX Platform Language Pack
"{D97ADCC0-DE02-16BC-7F3E-870058269067}" = Catalyst Control Center Core Implementation
"{D99A8E3A-AE5A-4692-8B19-6F16D454E240}" = Destination Component
"{DDD5104F-1C44-49EB-9E6B-29EC5D27658B}" = HP Update
"{DFFC95BF-1BE8-4DDB-8C7B-EB1E5DB564C5}" = Drive Xpert
"{E08DC77E-D09A-4e36-8067-D6DBBCC5F8DC}" = VideoToolkit01
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E45CACFE-0576-4375-A84F-C34B99A7B652}" = D-Link DWA-125
"{E5B21F11-6933-4E0B-A25C-7963E3C07D11}" = Windows Live Messenger
"{E96B4BD4-1D1D-5751-0913-1B8705D7B7E9}" = Skins
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer
"{F29B21BD-CAA6-445F-8EF7-A7E2B9D8B14E}" = Logitech SetPoint
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"{F42CD69D-E393-47c8-B2CD-B139C4ADA9A8}" = Copy
"{F7338FA3-DAB5-49B2-900D-0AFB5760C166}" = PC Probe II
"{F99891F5-181F-1C47-A017-0F562AD824E8}" = Catalyst Control Center Graphics Full Existing
T

TitaTovenaartje

Legacy Member
deel 3

"{F9FD80CE-0448-4D4F-8BCD-77FC514C3F99}" = Vista Codec Package
"{FA1162AE-AF27-44A9-9C78-0C46BD44D75F}" = AVG 2011
"{FE0646A7-19D0-41B4-A2BB-2C35D644270D}" = Windows Live OneCare safety scanner
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"7-Zip" = 7-Zip 4.65
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"AVG" = AVG 2011
"BSPlayerf" = BS.Player FREE
"C22EC48700B9B9C08DDC2C12DA3BD6F8EA0DFFDE" = Stuurprogrammapakket voor Windows - Fedict SmartCard (12/08/2009 4.0.0.3)
"ENTERPRISE" = Microsoft Office Enterprise 2007
"ExtraFilmDesignerBE NL" = ExtraFilm Designer BE NL
"FastStone Photo Resizer" = FastStone Photo Resizer 2.6
"gBurner" = gBurner
"HijackThis" = HijackThis 2.0.2
"HP Imaging Device Functions" = HP Imaging Device Functions 10.0
"HP Photosmart Essential" = HP Photosmart Essential 2.5
"HP Smart Web Printing" = HP Smart Web Printing
"HP Solution Center & Imaging Support Tools" = HP Solution Center 10.0
"HPExtendedCapabilities" = HP Customer Participation Program 10.0
"InstallShield_{149464D9-B06F-4505-9968-FD1206F67AD3}" = Call of Duty(R) - World at War(TM) 1.3 Patch
"InstallShield_{2BF0AE92-C3BC-4112-9066-1546342B1FAE}" = Call of Duty(R) - World at War(TM) 1.2 Patch
"InstallShield_{9F01A67B-7D67-482F-9D4F-D5980A440FD4}" = Call of Duty(R) - World at War(TM) 1.4 Patch
"InstallShield_{A3BE3F1E-2472-4211-8735-E8239BE49D9F}" = Ulead Burn.Now 4.5 SE
"KLiteCodecPack_is1" = K-Lite Codec Pack 6.3.0 (Full)
"LimeWire" = LimeWire 5.5.14
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Messenger Plus!" = Messenger Plus! 5
"Microsoft .NET Framework 3.5 Language Pack SP1 - nld" = Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile NLD Language Pack" = Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD
"Mozilla Firefox 4.0.1 (x86 nl)" = Mozilla Firefox 4.0.1 (x86 nl)
"PunkBusterSvc" = PunkBuster Services
"Shop for HP Supplies" = Shop for HP Supplies
"Sony Eyetoy Webcam" = Sony Eyetoy Webcam
"Spyware Doctor" = Spyware Doctor 6.0
"SystemRequirementsLab" = System Requirements Lab
"Tactical Ops" = Tactical Ops
"TomTom HOME" = TomTom HOME 2.8.1.2218
"Winamp" = Winamp
"Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner
"WinLiveSuite" = Windows Live Essentials
"WinPcapInst" = WinPcap 4.1.1
"WinRAR archiver" = WinRAR archiver

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-2630897086-1038955228-3891820377-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"BitTorrent" = BitTorrent
"BitTorrent DNA" = DNA
"Mozilla Firefox 11.0 (x86 nl)" = Mozilla Firefox 11.0 (x86 nl)
"Spotify" = Spotify

========== Last 10 Event Log Errors ==========
[ Application Events ]
Error - 31/03/2012 8:42:52 | Computer Name = PC_van_Steven | Source = Application Error | ID = 1000
Description = Toepassing met fout msnmsgr.exe, versie 15.4.3538.513, tijdstempel
0x4dcdb2b3, module met fout ntdll.dll, versie 6.0.6002.18541, tijdstempel 0x4ec3e3d5,
uitzonderingscode 0xc0000005, foutmarge 0x0003dd6d, proces-id 0x163c, starttijd
van toepassing 0x01cd0f325c83cc77.

Error - 31/03/2012 10:34:37 | Computer Name = PC_van_Steven | Source = EventSystem | ID = 4621
Description =

Error - 31/03/2012 16:18:25 | Computer Name = PC_van_Steven | Source = EventSystem | ID = 4621
Description =

Error - 3/04/2012 14:01:58 | Computer Name = PC_van_Steven | Source = EventSystem | ID = 4609
Description =

Error - 3/04/2012 14:42:02 | Computer Name = PC_van_Steven | Source = EventSystem | ID = 4621
Description =

Error - 3/04/2012 15:07:58 | Computer Name = PC_van_Steven | Source = EventSystem | ID = 4621
Description =

Error - 4/04/2012 11:15:18 | Computer Name = PC_van_Steven | Source = MsiInstaller | ID = 11711
Description =

Error - 4/04/2012 11:16:13 | Computer Name = PC_van_Steven | Source = MsiInstaller | ID = 11711
Description =

Error - 4/04/2012 11:17:29 | Computer Name = PC_van_Steven | Source = MsiInstaller | ID = 11712
Description =

Error - 4/04/2012 11:32:33 | Computer Name = PC_van_Steven | Source = MsiInstaller | ID = 1023
Description =

[ System Events ]
Error - 3/04/2012 14:40:37 | Computer Name = PC_van_Steven | Source = Microsoft-Windows-Kernel-General | ID = 5
Description =

Error - 3/04/2012 15:08:33 | Computer Name = PC_van_Steven | Source = Service Control Manager | ID = 7011
Description =

Error - 4/04/2012 11:02:48 | Computer Name = PC_van_Steven | Source = volmgr | ID = 262190
Description = Crashdumpinitialisatie is mislukt!

Error - 4/04/2012 11:02:57 | Computer Name = PC_van_Steven | Source = volmgr | ID = 262190
Description = Crashdumpinitialisatie is mislukt!

Error - 4/04/2012 11:47:35 | Computer Name = PC_van_Steven | Source = volmgr | ID = 262190
Description = Crashdumpinitialisatie is mislukt!

Error - 4/04/2012 11:48:06 | Computer Name = PC_van_Steven | Source = volmgr | ID = 262190
Description = Crashdumpinitialisatie is mislukt!

Error - 4/04/2012 11:48:10 | Computer Name = PC_van_Steven | Source = EventLog | ID = 6008
Description = De vorige afsluiting van het systeem om 17:42:03 op 4/04/2012 is onverwacht
gebeurd.

Error - 4/04/2012 11:49:48 | Computer Name = PC_van_Steven | Source = Service Control Manager | ID = 7022
Description =

Error - 4/04/2012 11:49:48 | Computer Name = PC_van_Steven | Source = Service Control Manager | ID = 7026
Description =

Error - 4/04/2012 11:51:50 | Computer Name = PC_van_Steven | Source = Service Control Manager | ID = 7000
Description =


< End of report >
T

TitaTovenaartje

Legacy Member
OTL.Txt

OTL logfile created on: 4/04/2012 21:21:38 - Run 1
OTL by OldTimer - Version 3.2.39.2 Folder = C:\Users\Steven\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19190)
Locale: 00000813 | Country: België | Language: NLB | Date Format: d/MM/yyyy

2,00 Gb Total Physical Memory | 0,98 Gb Available Physical Memory | 49,23% Memory free
4,24 Gb Paging File | 2,98 Gb Available in Paging File | 70,44% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 48,83 Gb Total Space | 0,44 Gb Free Space | 0,89% Space Free | Partition Type: NTFS
Drive D: | 48,83 Gb Total Space | 14,21 Gb Free Space | 29,10% Space Free | Partition Type: NTFS
Drive E: | 135,23 Gb Total Space | 28,29 Gb Free Space | 20,92% Space Free | Partition Type: NTFS
Drive G: | 966,99 Mb Total Space | 141,37 Mb Free Space | 14,62% Space Free | Partition Type: FAT32

Computer Name: PC_VAN_STEVEN | User Name: Steven | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/04/04 21:20:19 | 000,593,920 | ---- | M] (OldTimer Tools) -- C:\Users\Steven\Downloads\OTL.com
PRC - [2011/11/03 13:06:56 | 002,152,152 | ---- | M] (Lavasoft Limited) -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
PRC - [2011/11/03 13:06:56 | 001,187,072 | ---- | M] (Lavasoft Limited) -- C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe
PRC - [2011/09/10 06:28:50 | 002,338,656 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgtray.exe
PRC - [2011/09/09 03:10:56 | 001,082,208 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgnsx.exe
PRC - [2011/08/18 01:33:26 | 000,659,296 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgrsx.exe
PRC - [2011/08/18 01:33:06 | 007,390,560 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
PRC - [2011/08/14 10:27:01 | 000,800,768 | ---- | M] (Yuna Software) -- C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe
PRC - [2011/05/23 14:13:04 | 000,657,248 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgchsvx.exe
PRC - [2011/04/08 12:59:52 | 000,507,624 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jucheck.exe
PRC - [2011/03/28 03:00:52 | 000,351,072 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgcsrvx.exe
PRC - [2011/03/09 19:24:44 | 002,708,024 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgfws.exe
PRC - [2011/03/09 14:30:08 | 000,247,728 | ---- | M] (TomTom) -- D:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
PRC - [2011/03/09 14:30:08 | 000,092,592 | ---- | M] (TomTom) -- D:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
PRC - [2011/02/10 07:55:18 | 001,148,256 | ---- | M] () -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
PRC - [2011/02/08 05:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgwdsvc.exe
PRC - [2011/02/08 05:32:42 | 000,750,432 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG10\avgam.exe
PRC - [2009/11/13 15:57:05 | 000,323,392 | ---- | M] (BitTorrent, Inc.) -- C:\Users\Steven\Program Files\DNA\btdna.exe
PRC - [2009/10/19 20:03:50 | 000,995,328 | ---- | M] (D-Link Corp.) -- C:\Program Files\D-Link\DWA-125 revA\AirGCFG.exe
PRC - [2009/10/19 19:39:38 | 000,122,880 | ---- | M] (Wireless Service) -- C:\Program Files\D-Link\DWA-125 revA\WZCSLDR2.exe
PRC - [2009/07/07 20:49:20 | 000,040,960 | ---- | M] () -- C:\Program Files\D-Link\DWA-125 revA\ANIWConnService.exe
PRC - [2009/04/11 08:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008/09/07 12:02:56 | 000,091,440 | ---- | M] (Logitech Inc.) -- C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
PRC - [2008/05/22 16:32:34 | 001,286,144 | ---- | M] () -- C:\Program Files\ASUS\Drive Xpert\SteelVine.exe
PRC - [2008/05/14 18:42:56 | 005,958,656 | ---- | M] () -- C:\Program Files\ASUS\Six Engine\SixEngine.exe
PRC - [2008/05/09 14:45:18 | 001,423,360 | ---- | M] () -- C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe
PRC - [2008/05/02 02:44:08 | 000,805,392 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPoint\SetPoint.exe
PRC - [2008/05/02 02:40:56 | 000,076,304 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.exe
PRC - [2008/04/24 08:57:54 | 000,614,912 | R--- | M] () -- C:\Program Files\ASUS\AASP\1.00.63\aaCenter.exe
PRC - [2008/03/26 15:21:30 | 005,369,856 | ---- | M] (Realtek Semiconductor) -- C:\Windows\RtHDVCpl.exe
PRC - [2007/11/16 15:12:44 | 001,209,856 | ---- | M] () -- C:\Program Files\ASUS\AI Direct Link\AsShare.exe
PRC - [2007/06/05 13:20:32 | 000,177,704 | ---- | M] () -- C:\Windows\System32\PSIService.exe
PRC - [2007/05/28 18:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
PRC - [2007/04/11 17:34:22 | 000,376,832 | ---- | M] () -- C:\Program Files\ASUS\AI Direct Link\AsCmd.exe


========== Modules (No Company Name) ==========

MOD - [2012/02/16 19:52:29 | 011,820,032 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Web\2598077ccea480c6120d3a1ad4455be0\System.Web.ni.dll
MOD - [2012/02/16 19:52:24 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\5c3bfd69e0c268baff0d169e11a6a784\System.Runtime.Remoting.ni.dll
MOD - [2012/02/16 19:52:15 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\7fd6c62196829d1e2dce5a253145d51a\System.Configuration.ni.dll
MOD - [2012/02/16 18:26:48 | 005,450,752 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\d9f0f1dc8cbdb81f1ba122d77a6ab710\System.Xml.ni.dll
MOD - [2012/02/16 18:26:27 | 012,430,848 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\65450889f3742aada2a6c0cf8e6173e3\System.Windows.Forms.ni.dll
MOD - [2012/02/16 18:26:07 | 001,587,200 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\137696d0416b65dbc1561152971488b4\System.Drawing.ni.dll
MOD - [2012/02/16 18:24:42 | 007,953,408 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\c50133cb67d7c013fa31e1ffb942060b\System.ni.dll
MOD - [2011/10/14 15:04:26 | 000,025,600 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Accessibility\bcb66dbad2b45d05235b37a02f737eb5\Accessibility.ni.dll
MOD - [2011/10/14 14:54:59 | 011,490,816 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\b6632a8b2f276a8e31f5b0f6b2006cd1\mscorlib.ni.dll
MOD - [2011/02/10 07:55:18 | 001,148,256 | ---- | M] () -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSMonitor.exe
MOD - [2010/12/19 19:37:33 | 000,315,392 | ---- | M] () -- C:\Program Files\D-Link\DWA-125 revA\ANPDApi.dll
MOD - [2009/10/19 19:59:12 | 000,274,432 | ---- | M] () -- C:\Program Files\D-Link\DWA-125 revA\wlanapp.dll
MOD - [2009/09/04 23:15:06 | 000,067,872 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2009/03/31 20:04:19 | 000,446,464 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\System.Windows.Forms.resources\2.0.0.0_nl_b77a5c561934e089\System.Windows.Forms.resources.dll
MOD - [2009/03/31 20:04:18 | 000,303,104 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\mscorlib.resources\2.0.0.0_nl_b77a5c561934e089\mscorlib.resources.dll
MOD - [2008/09/07 12:02:50 | 000,064,664 | ---- | M] () -- C:\Program Files\Logitech\Desktop Messenger\8876480\8.1.1.87-8876480SL\Program\clntutil.dll
MOD - [2008/07/17 16:30:32 | 000,307,200 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HydraVision.Wizard\2.0.3075.39065__90ba9c70f846762e\CLI.Aspect.HydraVision.Wizard.dll
MOD - [2008/07/17 16:30:32 | 000,011,776 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.HydraVision.Runtime\2.0.3075.39053__90ba9c70f846762e\CLI.Caste.HydraVision.Runtime.dll
MOD - [2008/07/17 16:30:32 | 000,008,704 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.HydraVision.Shared\2.0.3075.39052__90ba9c70f846762e\CLI.Caste.HydraVision.Shared.dll
MOD - [2008/07/17 16:30:32 | 000,007,680 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.HydraVision.Wizard\2.0.3075.39061__90ba9c70f846762e\CLI.Caste.HydraVision.Wizard.dll
MOD - [2008/07/17 16:30:32 | 000,007,680 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.HydraVision.Dashboard\2.0.3075.39053__90ba9c70f846762e\CLI.Caste.HydraVision.Dashboard.dll
MOD - [2008/07/17 16:30:31 | 001,683,456 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.3075.38747__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll
MOD - [2008/07/17 16:30:31 | 000,688,128 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Wizard\2.0.3075.38957__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Wizard.dll
MOD - [2008/07/17 16:30:31 | 000,483,328 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3075.39016__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll
MOD - [2008/07/17 16:30:31 | 000,364,544 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Wizard\2.0.3075.38985__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Wizard.dll
MOD - [2008/07/17 16:30:31 | 000,266,240 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3075.38702__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll
MOD - [2008/07/17 16:30:31 | 000,204,800 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3075.38763__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
MOD - [2008/07/17 16:30:31 | 000,135,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3075.39022__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll
MOD - [2008/07/17 16:30:31 | 000,077,824 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3075.38976__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
MOD - [2008/07/17 16:30:31 | 000,073,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3075.38717__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll
MOD - [2008/07/17 16:30:31 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3075.38931__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
MOD - [2008/07/17 16:30:31 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3075.38738__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll
MOD - [2008/07/17 16:30:31 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3075.38875__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
MOD - [2008/07/17 16:30:31 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3075.38722__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
MOD - [2008/07/17 16:30:30 | 000,466,944 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Dashboard\2.0.3075.39050__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Dashboard.dll
MOD - [2008/07/17 16:30:30 | 000,348,160 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3075.38942__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
MOD - [2008/07/17 16:30:30 | 000,090,112 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3075.38949__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
MOD - [2008/07/17 16:30:30 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3075.38940__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
MOD - [2008/07/17 16:30:30 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime\2.0.3075.39012__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Runtime.dll
MOD - [2008/07/17 16:30:29 | 000,806,912 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3075.38886__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
MOD - [2008/07/17 16:30:29 | 000,794,624 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Dashboard\2.0.3075.38978__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Dashboard.dll
MOD - [2008/07/17 16:30:29 | 000,585,728 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3075.38777__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
MOD - [2008/07/17 16:30:29 | 000,446,464 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Dashboard\2.0.3075.38868__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll
MOD - [2008/07/17 16:30:29 | 000,438,272 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.3075.38724__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll
MOD - [2008/07/17 16:30:29 | 000,401,408 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3075.38965__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll
MOD - [2008/07/17 16:30:29 | 000,221,184 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3075.38771__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
MOD - [2008/07/17 16:30:29 | 000,118,784 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3075.38905__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
MOD - [2008/07/17 16:30:29 | 000,077,824 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3075.38885__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll
MOD - [2008/07/17 16:30:29 | 000,069,632 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Runtime\2.0.3075.39049__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Runtime.dll
MOD - [2008/07/17 16:30:29 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3075.38875__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
MOD - [2008/07/17 16:30:29 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3075.38783__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
MOD - [2008/07/17 16:30:29 | 000,036,864 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3075.38904__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
MOD - [2008/07/17 16:30:29 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3075.38921__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
MOD - [2008/07/17 16:30:28 | 000,663,552 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Dashboard\2.0.3075.38933__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Dashboard.dll
MOD - [2008/07/17 16:30:28 | 000,372,736 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3075.38877__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
MOD - [2008/07/17 16:30:28 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation\2.0.3036.27933__90ba9c70f846762e\CLI.Foundation.dll
MOD - [2008/07/17 16:30:28 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll
MOD - [2008/07/17 16:30:28 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3075.38884__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
MOD - [2008/07/17 16:30:28 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation\2.0.3036.27930__90ba9c70f846762e\LOG.Foundation.dll
MOD - [2008/07/17 16:30:28 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3036.27933__90ba9c70f846762e\NEWAEM.Foundation.dll
MOD - [2008/07/17 16:30:28 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3036.28032__90ba9c70f846762e\CLI.Foundation.XManifest.dll
MOD - [2008/07/17 16:30:28 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.OS.I0602\2.0.3036.27964__90ba9c70f846762e\DEM.OS.I0602.dll
MOD - [2008/07/17 16:30:28 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0703\2.0.2651.18802__90ba9c70f846762e\DEM.Graphics.I0703.dll
MOD - [2008/07/17 16:30:28 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3036.27948__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll
MOD - [2008/07/17 16:30:28 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3036.27945__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll
MOD - [2008/07/17 16:30:28 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3036.27940__90ba9c70f846762e\CLI.Component.Client.Shared.dll
MOD - [2008/07/17 16:30:28 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3036.27945__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll
MOD - [2008/07/17 16:30:28 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3036.27937__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll
MOD - [2008/07/17 16:30:28 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Foundation\2.0.3036.27960__90ba9c70f846762e\MOM.Foundation.dll
MOD - [2008/07/17 16:30:28 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.OS\2.0.3036.27964__90ba9c70f846762e\DEM.OS.dll
MOD - [2008/07/17 16:30:28 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll
MOD - [2008/07/17 16:30:28 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Graphics\2.0.3036.27964__90ba9c70f846762e\DEM.Graphics.dll
MOD - [2008/07/17 16:30:28 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll
MOD - [2008/07/17 16:30:28 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3036.27944__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll
MOD - [2008/07/17 16:30:28 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3036.27963__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll
MOD - [2008/07/17 16:30:28 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3036.27993__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll
MOD - [2008/07/17 16:30:28 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3036.27961__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll
MOD - [2008/07/17 16:30:28 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3036.27993__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll
MOD - [2008/07/17 16:30:28 | 000,006,656 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll
MOD - [2008/07/17 16:30:27 | 000,417,792 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.3075.38993__90ba9c70f846762e\CLI.Component.Systemtray.dll
MOD - [2008/07/17 16:30:27 | 000,397,312 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3075.38732__90ba9c70f846762e\CLI.Component.Wizard.dll
MOD - [2008/07/17 16:30:27 | 000,102,400 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\MOM.Implementation\2.0.3075.39003__90ba9c70f846762e\MOM.Implementation.dll
MOD - [2008/07/17 16:30:27 | 000,065,536 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3036.27978__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll
MOD - [2008/07/17 16:30:27 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3075.39000__90ba9c70f846762e\LOG.Foundation.Implementation.dll
MOD - [2008/07/17 16:30:27 | 000,061,440 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.OverDrive5.Graphics.Shared\2.0.3036.27988__90ba9c70f846762e\CLI.Aspect.OverDrive5.Graphics.Shared.dll
MOD - [2008/07/17 16:30:27 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3075.38696__90ba9c70f846762e\CLI.Component.SkinFactory.dll
MOD - [2008/07/17 16:30:27 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3075.38693__90ba9c70f846762e\CLI.Component.Runtime.dll
MOD - [2008/07/17 16:30:27 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3036.27946__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll
MOD - [2008/07/17 16:30:27 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3036.27978__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll
MOD - [2008/07/17 16:30:27 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3036.27976__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll
MOD - [2008/07/17 16:30:27 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3036.27976__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll
MOD - [2008/07/17 16:30:27 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3036.27962__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll
MOD - [2008/07/17 16:30:27 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3036.27976__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
MOD - [2008/07/17 16:30:27 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3075.39039__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll
MOD - [2008/07/17 16:30:27 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3036.27937__90ba9c70f846762e\CLI.Foundation.Private.dll
MOD - [2008/07/17 16:30:27 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3036.27990__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll
MOD - [2008/07/17 16:30:27 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3036.27978__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll
MOD - [2008/07/17 16:30:27 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3036.27941__90ba9c70f846762e\LOG.Foundation.Private.dll
MOD - [2008/07/17 16:30:27 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3036.27959__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
MOD - [2008/07/17 16:30:27 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.PowerPlayDPPE.Graphics.Shared\2.0.3036.27990__90ba9c70f846762e\CLI.Aspect.PowerPlayDPPE.Graphics.Shared.dll
MOD - [2008/07/17 16:30:27 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3036.27974__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
MOD - [2008/07/17 16:30:27 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3036.27966__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
MOD - [2008/07/17 16:30:27 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3036.27962__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll
MOD - [2008/07/17 16:30:27 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3036.27977__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
MOD - [2008/07/17 16:30:27 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3036.27962__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll
MOD - [2008/07/17 16:30:27 | 000,024,576 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll
MOD - [2008/07/17 16:30:27 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3036.27961__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll
MOD - [2008/07/17 16:30:27 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3036.27966__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
MOD - [2008/07/17 16:30:27 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Foundation\2.0.3036.27961__90ba9c70f846762e\APM.Foundation.dll
MOD - [2008/07/17 16:30:27 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOCALIZATION.Foundation.Private\2.0.3036.27941__90ba9c70f846762e\LOCALIZATION.Foundation.Private.dll
MOD - [2008/07/17 16:30:27 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3036.27974__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll
MOD - [2008/07/17 16:30:27 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3036.27965__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll
MOD - [2008/07/17 16:30:27 | 000,016,384 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3036.27944__90ba9c70f846762e\AEM.Server.Shared.dll
MOD - [2008/07/17 16:30:27 | 000,014,848 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll
MOD - [2008/07/17 16:30:27 | 000,013,312 | ---- | M] () -- C:\Windows\assembly\GAC\Interop.WBOCXLib\1.0.0.0__90ba9c70f846762e\Interop.WBOCXLib.dll
MOD - [2008/07/17 16:30:27 | 000,011,264 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\LOCALIZATION.Foundation.Implementation\2.0.3075.39054__90ba9c70f846762e\LOCALIZATION.Foundation.Implementation.dll
MOD - [2008/07/17 16:30:27 | 000,007,168 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU
T

TitaTovenaartje

Legacy Member
deel 2

\2.0.3075.38692__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll
MOD - [2008/07/17 16:30:26 | 000,991,232 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3075.38710__90ba9c70f846762e\CLI.Component.Dashboard.dll
MOD - [2008/07/17 16:30:26 | 000,069,632 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ATIDEMOS\2.0.3075.38694__90ba9c70f846762e\ATIDEMOS.dll
MOD - [2008/07/17 16:30:26 | 000,040,960 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3036.27949__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll
MOD - [2008/07/17 16:30:26 | 000,032,768 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll
MOD - [2008/07/17 16:30:26 | 000,028,672 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CCC.Implementation\2.0.3075.39002__90ba9c70f846762e\CCC.Implementation.dll
MOD - [2008/07/17 16:30:26 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3036.27959__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll
MOD - [2008/07/17 16:30:26 | 000,020,480 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3036.27979__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll
MOD - [2008/07/17 16:30:25 | 000,053,248 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\APM.Server\2.0.3075.38688__90ba9c70f846762e\APM.Server.dll
MOD - [2008/07/17 16:30:25 | 000,045,056 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\AEM.Server\2.0.3075.38691__90ba9c70f846762e\AEM.Server.dll
MOD - [2008/06/03 05:35:17 | 000,159,744 | ---- | M] () -- C:\Windows\System32\atitmmxx.dll
MOD - [2008/05/14 18:42:56 | 005,958,656 | ---- | M] () -- C:\Program Files\ASUS\Six Engine\SixEngine.exe
MOD - [2008/05/09 14:45:18 | 001,423,360 | ---- | M] () -- C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe
MOD - [2008/04/24 08:57:54 | 000,614,912 | R--- | M] () -- C:\Program Files\ASUS\AASP\1.00.63\aaCenter.exe
MOD - [2008/04/15 10:07:34 | 000,053,248 | ---- | M] () -- C:\Program Files\ASUS\Six Engine\AsSpindownTimeout.dll
MOD - [2008/02/25 15:08:54 | 000,208,896 | ---- | M] () -- C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.dll
MOD - [2008/01/17 10:46:20 | 000,053,248 | R--- | M] () -- C:\Program Files\ASUS\AASP\1.00.63\cpuutil.dll
MOD - [2007/11/16 15:12:44 | 001,209,856 | ---- | M] () -- C:\Program Files\ASUS\AI Direct Link\AsShare.exe
MOD - [2007/08/20 11:17:22 | 000,094,208 | ---- | M] () -- C:\Program Files\ASUS\AI Direct Link\AsNetlib.dll
MOD - [2007/04/11 17:34:22 | 000,376,832 | ---- | M] () -- C:\Program Files\ASUS\AI Direct Link\AsCmd.exe
MOD - [2007/01/03 22:25:56 | 000,008,704 | ---- | M] () -- C:\Program Files\ASUS\Ai Suite\AiNap\vvc.dll
MOD - [2006/01/10 10:50:20 | 000,024,576 | R--- | M] () -- C:\Windows\System32\AsIO.dll
MOD - [2005/06/22 11:39:56 | 000,204,851 | R--- | M] () -- C:\Program Files\ASUS\AASP\1.00.63\PowerDll.dll
MOD - [2005/05/11 16:39:32 | 000,565,248 | ---- | M] () -- C:\Program Files\ASUS\Six Engine\pngio.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)
SRV - File not found [On_Demand | Stopped] -- C:\Program Files\Google\Update\GoogleUpdate.exe /medsvc -- (gupdatem) Google Update-service (gupdatem)
SRV - File not found [Auto | Stopped] -- C:\Program Files\Google\Update\GoogleUpdate.exe /svc -- (gupdate) Google Updateservice (gupdate)
SRV - File not found [Auto | Stopped] -- C:\Users\Elke\Desktop\ExtraFilm Designer BE NL\EFUploadSrv.exe -- (EFUploadSrv)
SRV - [2011/11/03 13:06:56 | 002,152,152 | ---- | M] (Lavasoft Limited) [Auto | Running] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2011/08/18 01:33:06 | 007,390,560 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe -- (AVGIDSAgent)
SRV - [2011/03/09 19:24:44 | 002,708,024 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgfws.exe -- (avgfws)
SRV - [2011/03/09 14:30:08 | 000,092,592 | ---- | M] (TomTom) [Auto | Running] -- D:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- (TomTomHOMEService)
SRV - [2011/02/08 05:33:42 | 000,269,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG10\avgwdsvc.exe -- (avgwd)
SRV - [2009/08/21 10:27:26 | 000,126,976 | ---- | M] (Wireless Service) [Auto | Stopped] -- C:\Program Files\D-Link\DWA-125 revA\ANIWZCSdS.exe -- (D_Link_DWA-125)
SRV - [2009/07/07 20:49:20 | 000,040,960 | ---- | M] () [Auto | Running] -- C:\Program Files\D-Link\DWA-125 revA\ANIWConnService.exe -- (D_Link_DWA-125_WPS)
SRV - [2008/10/09 14:47:42 | 001,079,176 | ---- | M] (PC Tools) [On_Demand | Stopped] -- C:\Program Files\Spyware Doctor\pctsSvc.exe -- (sdCoreService)
SRV - [2008/06/13 17:29:14 | 000,356,920 | ---- | M] (PC Tools) [On_Demand | Stopped] -- C:\Program Files\Spyware Doctor\pctsAuxs.exe -- (sdAuxService)
SRV - [2008/05/22 16:32:34 | 001,286,144 | ---- | M] () [Auto | Running] -- C:\Program Files\ASUS\Drive Xpert\SteelVine.exe -- (57xx SteelVine Manager)
SRV - [2008/05/02 02:42:06 | 000,121,360 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe -- (LBTServ)
SRV - [2008/01/18 23:38:26 | 000,272,952 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2007/06/05 13:20:32 | 000,177,704 | ---- | M] () [Auto | Running] -- C:\Windows\System32\PSIService.exe -- (ProtexisLicensing)
SRV - [2007/05/28 18:57:54 | 000,275,968 | ---- | M] (Rocket Division Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\system32\drivers\ctredr15.sys -- (ctredr15.sys)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Steven\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\blbdrive.sys -- (blbdrive)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\AWRTRD.sys -- (Ad-Watch Registry Filter)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\NSDriver.sys -- (Ad-Watch Connect Filter)
DRV - [2011/11/03 13:06:56 | 000,064,512 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\Windows\System32\drivers\Lbd.sys -- (Lbd)
DRV - [2011/05/27 19:05:18 | 000,134,480 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSDriver.sys -- (AVGIDSDriver)
DRV - [2011/04/05 00:59:56 | 000,297,168 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2011/03/16 16:03:20 | 000,032,592 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2011/03/01 14:25:18 | 000,034,896 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2011/02/22 08:12:38 | 000,022,992 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\AVGIDSEH.sys -- (AVGIDSEH)
DRV - [2011/02/13 16:34:14 | 000,016,968 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hitmanpro35.sys -- (hitmanpro35)
DRV - [2011/02/10 07:53:30 | 000,028,624 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSShim.sys -- (AVGIDSShim)
DRV - [2011/02/10 07:53:28 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\AVGIDSFilter.sys -- (AVGIDSFilter)
DRV - [2011/01/07 06:41:46 | 000,248,656 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2010/11/26 19:02:30 | 000,015,672 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\SmartDefragDriver.sys -- (SmartDefragDriver)
DRV - [2010/07/12 05:34:02 | 000,054,112 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgfwd6x.sys -- (Avgfwfd)
DRV - [2010/01/27 04:09:02 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\npf.sys -- (NPF) WinPcap Packet Driver (NPF)
DRV - [2009/09/15 14:47:44 | 000,798,208 | ---- | M] (Ralink Technology Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Dnetr28u.sys -- (netr28u)
DRV - [2009/07/19 13:32:53 | 000,721,904 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\System32\drivers\sptd.sys -- (sptd)
DRV - [2009/06/30 11:37:16 | 000,028,552 | ---- | M] (Panda Security, S.L.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\pavboot.sys -- (pavboot)
DRV - [2009/05/05 16:33:56 | 000,035,712 | ---- | M] (Advanced Card Systems Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\a38usb.sys -- (ACSSCR)
DRV - [2009/03/06 19:09:52 | 000,012,800 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\anodlwf.sys -- (anodlwf)
DRV - [2008/08/25 13:36:30 | 000,081,288 | ---- | M] (PCTools Research Pty Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\iksyssec.sys -- (IKSysSec)
DRV - [2008/08/25 13:36:28 | 000,066,952 | ---- | M] (PCTools Research Pty Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\iksysflt.sys -- (IKSysFlt)
DRV - [2008/08/25 13:36:28 | 000,040,840 | ---- | M] (PCTools Research Pty Ltd.) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\ikfilesec.sys -- (IKFileSec)
DRV - [2008/06/25 07:14:12 | 000,040,368 | ---- | M] (Paragon Software Group) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hotcore3.sys -- (hotcore3)
DRV - [2008/06/03 08:22:55 | 003,695,104 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\atikmdag.sys -- (atikmdag)
DRV - [2008/05/19 09:46:30 | 000,150,568 | ---- | M] (Marvell Semiconductor, Inc.) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\mv61xx.sys -- (mv61xx)
DRV - [2008/02/29 03:13:36 | 000,079,120 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\LMouKE.Sys -- (LMouKE)
DRV - [2008/02/29 03:12:56 | 000,063,120 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L8042mou.Sys -- (L8042mou)
DRV - [2008/02/29 03:12:48 | 000,020,240 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L8042Kbd.sys -- (L8042Kbd)
DRV - [2008/02/02 16:24:00 | 000,047,616 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\L1E60x86.sys -- (L1E)
DRV - [2007/12/17 11:14:06 | 000,012,400 | R--- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\AsIO.sys -- (AsIO)
DRV - [2007/11/06 09:06:48 | 000,131,672 | ---- | M] (Paragon) [Kernel | System | Running] -- C:\Windows\System32\drivers\Uim_IM.sys -- (Uim_IM)
DRV - [2007/11/06 09:06:48 | 000,032,080 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | System | Running] -- C:\Windows\System32\drivers\UimBus.sys -- (UimBus)
DRV - [2007/06/19 09:51:20 | 000,107,304 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s816mdm.sys -- (s816mdm)
DRV - [2007/06/19 09:51:18 | 000,099,112 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s816mgmt.sys -- (s816mgmt) Sony Ericsson Device 816 USB WMC Device Management Drivers (WDM)
DRV - [2007/06/19 09:51:18 | 000,097,704 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s816unic.sys -- (s816unic) Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (WDM)
DRV - [2007/06/19 09:51:18 | 000,097,320 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s816obex.sys -- (s816obex)
DRV - [2007/06/19 09:51:18 | 000,021,928 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s816nd5.sys -- (s816nd5) Sony Ericsson Device 816 USB Ethernet Emulation SEMCMR7 (NDIS)
DRV - [2007/06/19 09:51:18 | 000,013,864 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s816mdfl.sys -- (s816mdfl)
DRV - [2007/06/19 09:51:16 | 000,081,832 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\s816bus.sys -- (s816bus) Sony Ericsson Device 816 driver (WDM)
DRV - [2007/04/11 15:32:58 | 000,036,112 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LMouFilt.Sys -- (LMouFilt)
DRV - [2007/04/11 15:32:52 | 000,034,832 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\LHidFilt.Sys -- (LHidFilt)
DRV - [2006/10/18 15:44:48 | 000,007,680 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ASACPI.sys -- (MTsensor)
DRV - [2006/02/20 19:51:14 | 010,446,720 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\snp2sxp.sys -- (SNP2STD) USB2.0 PC Camera (SNP2STD)
DRV - [2004/12/23 04:47:10 | 000,027,392 | R--- | M] (Ulead Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ULCDRHlp.sys -- (ULCDRHlp)
DRV - [2003/10/15 17:52:50 | 000,174,530 | ---- | M] (OmniVision Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ov519vid.sys -- (ovt519)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Ask.com - International
IE - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\..\SearchScopes,DefaultScope = {EB92CA1E-2702-4702-840C-7095D079BAB5}
IE - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\..\SearchScopes\{10F39487-1889-4B9C-997E-73444B36A144}: "URL" = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&type=723823&p={searchTerms}
IE - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\..\SearchScopes\{D76344A6-3D64-48F9-BC73-F9FA301DC34E}: "URL" = http://websearch.ask.com/redirect?client=ie&tb=VD&o=14778&src=crm&q={searchTerms}&locale=&apn_ptnrs=VX&apn_dtid=YYYYYYYYBE&apn_uid=0F71DB6F-B06D-499B-9588-029AAA321B83&apn_sauid=BA8564B1-39BB-4D70-AAD5-FF269FFBC307
IE - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\..\SearchScopes\{EB92CA1E-2702-4702-840C-7095D079BAB5}: "URL" = http://www.google.co.uk/search?hl=en&q={searchTerms}&meta=
IE - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local
IE - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyServer" = http=127.0.0.1:64242

========== FireFox ==========

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=723823"
FF - prefs.js..browser.search.selectedEngine: "Ask.com"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.be/"
FF - prefs.js..extensions.enabledItems: {d5bc46d8-67c7-11dc-8c1d-0097498c2b7a}:1.0.0.1
FF - prefs.js..extensions.enabledItems: {1E73965B-8B48-48be-9C8D-68B920ABC1C4}:10.0.0.1209
FF - prefs.js..network.proxy.http: "127.0.0.1"
FF - prefs.js..network.proxy.http_port: 64242
FF - prefs.js..network.proxy.type: 4


FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: E:\itunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@bittorrent.com/BitTorrentDNA: C:\Program Files\DNA\plugins\npbtdna.dll (BitTorrent, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.46: C:\Program Files\VistaCodecPack\rm\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.46: C:\Program Files\VistaCodecPack\rm\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
T

TitaTovenaartje

Legacy Member
deel 3

FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll File not found
FF - HKCU\Software\MozillaPlugins\@bittorrent.com/BitTorrentDNA: C:\Users\Steven\Program Files\DNA\plugins\npbtdna.dll (BitTorrent, Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Mozilla Firefox\extensions\[email protected] [2011/05/21 13:39:56 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG10\Firefox4\ [2012/01/23 19:46:27 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\VDownloader\Addons\FireFox [2011/08/14 10:22:22 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/03/18 18:48:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/26 08:03:10 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{d5bc46d8-67c7-11dc-8c1d-0097498c2b7a}: C:\Users\Steven\Program Files\DNA [2012/04/04 20:37:12 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/03/18 18:48:11 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/26 08:03:10 | 000,000,000 | ---D | M]

[2009/09/18 18:48:21 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Steven\AppData\Roaming\mozilla\Extensions
[2008/11/09 17:47:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Steven\AppData\Roaming\mozilla\Extensions\[email protected]
[2009/09/18 18:48:21 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Steven\AppData\Roaming\mozilla\Extensions\[email protected]
[2011/07/15 09:38:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Steven\AppData\Roaming\mozilla\Firefox\Profiles\x0ptg26a.default\extensions
[2010/04/27 17:06:20 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Steven\AppData\Roaming\mozilla\Firefox\Profiles\x0ptg26a.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/11/22 15:49:33 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/05/21 13:39:56 | 000,000,000 | ---D | M] (eID België) -- C:\Program Files\Mozilla Firefox\extensions\[email protected]
[2012/03/18 18:48:11 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2008/09/04 02:11:24 | 000,054,600 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\mozilla firefox\plugins\npbittorrent.dll
[2011/05/04 04:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2012/01/18 19:45:59 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/01/18 19:45:59 | 000,001,892 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bolcom-nl.xml
[2012/01/18 19:45:59 | 000,004,558 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\marktplaats-nl.xml
[2012/01/18 19:45:59 | 000,001,049 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-nl.xml

O1 HOSTS File: ([2011/02/02 14:44:55 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O3 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\..\Toolbar\WebBrowser: (no name) - {2C688203-7EB3-4327-9995-1CB417BA23F9} - No CLSID value found.
O3 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [Ai Nap] C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe ()
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [beid] C:\Program Files\Belgium Identity Card\beid35gui.exe (Belgian Government)
O4 - HKLM..\Run: [Cpu Level Up help] C:\Program Files\ASUS\Ai Suite\CpuLevelUpHelp.exe ()
O4 - HKLM..\Run: [D-Link D-Link DWA-125] C:\Program Files\D-Link\DWA-125 revA\AirGCFG.exe (D-Link Corp.)
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [Launch As Cmd Runner] C:\Program Files\ASUS\AI Direct Link\AsCmd.exe ()
O4 - HKLM..\Run: [Launch Direct Link] C:\Program Files\ASUS\AI Direct Link\AsShare.exe ()
O4 - HKLM..\Run: [LGODDFU] C:\Program Files\lg_fwupdate\fwupdate.exe (BL)
O4 - HKLM..\Run: [Logitech Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [PlusService] C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
O4 - HKLM..\Run: [QFan Help] C:\Program Files\ASUS\Ai Suite\QFan3\QFanHelp.exe ()
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [snp2std] C:\Windows\vsnp2std.exe (Sonix)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [WZCSLDR2] C:\Program Files\D-Link\DWA-125 revA\WZCSLDR2.exe (Wireless Service)
O4 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000..\Run: [BitTorrent DNA] C:\Users\Steven\Program Files\DNA\btdna.exe (BitTorrent, Inc.)
O4 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000..\Run: [Spotify] C:\Users\Steven\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd)
O4 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000..\Run: [TomTomHOME.exe] D:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: EnableShellExecuteHooks = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: EnableShellExecuteHooks = 1
O7 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 195.130.131.3 195.130.130.131
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0C5D8346-7E26-41C5-A8A3-A4D96E80E4F3}: DhcpNameServer = 195.130.131.3 195.130.130.131
O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Steven\AppData\Roaming\Microsoft\Windows Photo Gallery\Bureaubladachtergrond van Windows Fotogalerie.jpg
O24 - Desktop BackupWallPaper: C:\Users\Steven\AppData\Roaming\Microsoft\Windows Photo Gallery\Bureaubladachtergrond van Windows Fotogalerie.jpg
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (lsdelete)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/04/03 20:25:16 | 000,186,880 | ---- | C] (CEXX.ORG) -- C:\Users\Steven\Desktop\LSPFix.exe
[2012/03/31 13:35:41 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Local\{0CF106CA-14D2-48D9-8825-271477C4FDBC}
[2012/03/25 15:32:37 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Local\{754A89F0-682E-4C3D-871F-7EAFDF15093D}
[2012/03/25 15:32:27 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Local\{4058087F-FB75-447B-BE55-81854C3B958D}
[2012/03/09 18:58:53 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Local\{489226B5-8D11-4502-B59F-297A16746D54}
[2012/03/09 18:58:43 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Local\{5A84C5DB-28FC-46E5-937E-2D9250E97AB5}
[2011/07/14 21:13:20 | 000,143,240 | ---- | C] (Ask.com) -- C:\Program Files\Common Files\ApnStub.exe

========== Files - Modified Within 30 Days ==========

[2012/04/04 21:11:00 | 000,000,456 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{F8985F24-3CF4-4324-B319-536DA4AE0D75}.job
[2012/04/04 20:51:00 | 000,001,044 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/04/04 20:37:31 | 000,003,284 | ---- | M] () -- C:\Windows\System32\ANIWZCS{0C5D8346-7E26-41C5-A8A3-A4D96E80E4F3}
[2012/04/04 20:37:31 | 000,003,284 | ---- | M] () -- C:\Users\Steven\AppData\Roaming\ANIWZCS{0C5D8346-7E26-41C5-A8A3-A4D96E80E4F3}
[2012/04/04 20:37:08 | 000,000,224 | ---- | M] () -- C:\Windows\tasks\OGALogon.job
[2012/04/04 20:36:57 | 000,001,040 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/04/04 19:48:11 | 000,003,664 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/04/04 19:48:11 | 000,003,664 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/04/04 17:58:09 | 000,000,008 | ---- | M] () -- C:\Windows\System32\ANIWZCSUSERNAME
[2012/04/04 17:52:43 | 000,676,950 | ---- | M] () -- C:\Windows\System32\perfh013.dat
[2012/04/04 17:52:43 | 000,595,798 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/04/04 17:52:43 | 000,129,980 | ---- | M] () -- C:\Windows\System32\perfc013.dat
[2012/04/04 17:52:43 | 000,103,872 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/04/04 17:49:50 | 000,000,386 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job
[2012/04/04 17:48:17 | 000,492,544 | ---- | M] () -- C:\Windows\System32\SV_SQL3_Events.db
[2012/04/04 17:48:16 | 000,000,008 | ---- | M] () -- C:\Windows\System32\ANIWZCSUSERNAME{0C5D8346-7E26-41C5-A8A3-A4D96E80E4F3}
[2012/04/04 17:48:10 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/04/04 17:27:11 | 000,060,416 | ---- | M] () -- C:\Users\Steven\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/04/03 19:56:28 | 000,000,422 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{C2FE9263-0B24-4D2D-8B3F-481064A6BDC6}.job
[2012/04/03 17:24:19 | 000,000,064 | ---- | M] () -- C:\Windows\System32\rp_stats.dat
[2012/04/03 17:24:18 | 000,000,044 | ---- | M] () -- C:\Windows\System32\rp_rules.dat
[2012/03/30 17:37:42 | 000,334,651 | ---- | M] () -- C:\Users\Steven\Desktop\SKMBT_C45111040708120.pdf
[2012/03/24 16:13:18 | 000,002,629 | ---- | M] () -- C:\Users\Steven\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Word 2007.lnk
[2012/03/15 10:25:55 | 000,404,208 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT

========== Files Created - No Company Name ==========

[2012/04/01 09:45:15 | 000,000,386 | ---- | C] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job
[2012/03/30 17:37:42 | 000,334,651 | ---- | C] () -- C:\Users\Steven\Desktop\SKMBT_C45111040708120.pdf
[2011/11/18 23:13:05 | 000,016,432 | ---- | C] () -- C:\Windows\System32\lsdelete.exe
[2011/05/06 19:03:05 | 000,444,283 | ---- | C] () -- C:\Program Files\Common Files\WinPcapNmap.exe
[2011/02/13 16:34:14 | 000,016,968 | ---- | C] () -- C:\Windows\System32\drivers\hitmanpro35.sys
[2011/01/29 18:59:05 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
[2011/01/29 18:59:05 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2011/01/29 18:59:05 | 000,089,088 | ---- | C] () -- C:\Windows\MBR.exe
[2011/01/29 18:59:05 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2011/01/29 18:59:05 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2011/01/28 15:59:44 | 000,029,008 | ---- | C] () -- C:\Windows\System32\SmartDefragBootTime.exe
[2011/01/28 15:59:43 | 000,015,672 | ---- | C] () -- C:\Windows\System32\drivers\SmartDefragDriver.sys
[2011/01/23 19:03:44 | 000,167,859 | ---- | C] () -- C:\Windows\hpoins28.dat.temp
[2011/01/23 19:03:44 | 000,000,932 | ---- | C] () -- C:\Windows\hpomdl28.dat.temp
[2011/01/23 18:21:42 | 000,168,290 | ---- | C] () -- C:\Windows\hpoins28.dat
[2011/01/20 16:00:28 | 000,000,280 | ---- | C] () -- C:\Users\Steven\AppData\Roaming\ANICONFIG_{0C5D8346-7E26-41C5-A8A3-A4D96E80E4F3}.ini
[2011/01/05 16:11:26 | 000,114,688 | ---- | C] () -- C:\Windows\System32\beidmdrv32.dll
[2010/12/21 11:30:12 | 000,000,760 | ---- | C] () -- C:\Users\Steven\AppData\Roaming\setup_ldm.iss
[2010/12/19 19:40:48 | 000,003,284 | ---- | C] () -- C:\Users\Steven\AppData\Roaming\ANIWZCS{0C5D8346-7E26-41C5-A8A3-A4D96E80E4F3}
[2010/12/19 19:35:27 | 000,013,931 | ---- | C] () -- C:\Windows\System32\RaCoInst.dat
[2010/12/19 19:35:27 | 000,012,800 | ---- | C] () -- C:\Windows\System32\drivers\anodlwf.sys
[2010/09/08 09:24:26 | 000,073,728 | ---- | C] () -- C:\Windows\System32\belpicppgui.dll
[2010/08/22 13:10:28 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2010/07/07 14:27:07 | 000,200,704 | ---- | C] () -- C:\Windows\sel3110.exe
[2010/07/07 14:27:07 | 000,040,960 | ---- | C] () -- C:\Windows\CleanDev.exe
[2010/07/07 14:27:07 | 000,032,528 | ---- | C] () -- C:\Windows\amcap.exe

========== LOP Check ==========

[2011/02/01 19:41:56 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\AVG10
[2010/08/01 20:18:24 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\BitTorrent
[2010/04/07 13:11:19 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\ExtraFilm
[2011/01/29 14:29:09 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\IObit
[2008/09/07 19:34:31 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\LimeWire
[2011/12/10 21:59:00 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\MusicNet
[2009/06/02 16:34:02 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\PeerNetworking
[2012/04/04 18:13:42 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\Spotify
[2012/02/17 21:12:56 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\SystemRequirementsLab
[2008/08/02 18:27:53 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\Teleca
[2011/08/13 19:27:23 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\VDownloader
[2011/02/01 17:34:39 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\AVG10
[2011/12/19 15:33:27 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Azogin
[2010/12/21 11:21:48 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Beamh
[2012/03/23 14:35:21 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\BitTorrent
[2010/08/22 12:59:16 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\BSplayer
[2008/10/27 16:46:14 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\BSplayer Pro
[2009/03/30 14:01:51 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Canneverbe_Limited
[2012/04/04 21:17:19 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\DNA
[2011/05/29 12:41:16 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Garden Planner
[2009/05/10 20:47:45 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\GetRightToGo
[2011/01/28 16:05:45 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\IObit
[2010/03/01 17:26:28 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\ISP Monitor
[2011/12/06 21:08:54 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Iwka
[2011/12/06 20:42:00 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Keoboq
[2011/04/01 15:07:44 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\LimeWire
[2008/07/19 15:21:34 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\PeerNetworking
[2009/10/27 18:46:26 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Sports Interactive
[2012/04/04 20:38:30 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Spotify
[2009/11/30 21:40:29 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\SystemRequirementsLab
[2008/08/02 17:40:32 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Teleca
[2008/11/09 17:47:06 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\TomTom
[2011/12/19 15:37:51 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Ucava
[2008/08/07 15:37:13 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Ulead Systems
[2011/10/17 21:31:11 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\VDownloader
[2011/08/09 17:33:56 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Vso
[2009/04/10 18:26:22 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Webcammax
[2010/12/19 20:43:06 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Wyyfc
[2012/04/04 17:49:50 | 000,000,386 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Weekly).job
[2011/09/26 02:12:11 | 000,000,224 | ---- | M] () -- C:\Windows\Tasks\OGADaily.job
[2012/04/04 20:37:08 | 000,000,224 | ---- | M] () -- C:\Windows\Tasks\OGALogon.job
[2012/04/03 21:08:48 | 000,032,520 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012/04/03 19:56:28 | 000,000,422 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{C2FE9263-0B24-4D2D-8B3F-481064A6BDC6}.job
[2012/04/04 21:11:00 | 000,000,456 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{F8985F24-3CF4-4324-B319-536DA4AE0D75}.job

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 104 bytes -> C:\ProgramData\TEMP:DFC5A2B2

< End of report >
T

TitaTovenaartje

Legacy Member
deel 3

FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.69\npGoogleUpdate3.dll File not found
FF - HKCU\Software\MozillaPlugins\@bittorrent.com/BitTorrentDNA: C:\Users\Steven\Program Files\DNA\plugins\npbtdna.dll (BitTorrent, Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\Mozilla Firefox\extensions\[email protected] [2011/05/21 13:39:56 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{1E73965B-8B48-48be-9C8D-68B920ABC1C4}: C:\Program Files\AVG\AVG10\Firefox4\ [2012/01/23 19:46:27 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\[email protected]: C:\Program Files\VDownloader\Addons\FireFox [2011/08/14 10:22:22 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/03/18 18:48:11 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/26 08:03:10 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\{d5bc46d8-67c7-11dc-8c1d-0097498c2b7a}: C:\Users\Steven\Program Files\DNA [2012/04/04 20:37:12 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/03/18 18:48:11 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/09/26 08:03:10 | 000,000,000 | ---D | M]

[2009/09/18 18:48:21 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Steven\AppData\Roaming\mozilla\Extensions
[2008/11/09 17:47:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Steven\AppData\Roaming\mozilla\Extensions\[email protected]
[2009/09/18 18:48:21 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Steven\AppData\Roaming\mozilla\Extensions\[email protected]
[2011/07/15 09:38:44 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Steven\AppData\Roaming\mozilla\Firefox\Profiles\x0ptg26a.default\extensions
[2010/04/27 17:06:20 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Steven\AppData\Roaming\mozilla\Firefox\Profiles\x0ptg26a.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/11/22 15:49:33 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/05/21 13:39:56 | 000,000,000 | ---D | M] (eID België) -- C:\Program Files\Mozilla Firefox\extensions\[email protected]
[2012/03/18 18:48:11 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2008/09/04 02:11:24 | 000,054,600 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\mozilla firefox\plugins\npbittorrent.dll
[2011/05/04 04:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2012/01/18 19:45:59 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/01/18 19:45:59 | 000,001,892 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bolcom-nl.xml
[2012/01/18 19:45:59 | 000,004,558 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\marktplaats-nl.xml
[2012/01/18 19:45:59 | 000,001,049 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-nl.xml

O1 HOSTS File: ([2011/02/02 14:44:55 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (AVG Technologies CZ, s.r.o.)
O3 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\..\Toolbar\WebBrowser: (no name) - {2C688203-7EB3-4327-9995-1CB417BA23F9} - No CLSID value found.
O3 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [Ai Nap] C:\Program Files\ASUS\Ai Suite\AiNap\AiNap.exe ()
O4 - HKLM..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe (AVG Technologies CZ, s.r.o.)
O4 - HKLM..\Run: [beid] C:\Program Files\Belgium Identity Card\beid35gui.exe (Belgian Government)
O4 - HKLM..\Run: [Cpu Level Up help] C:\Program Files\ASUS\Ai Suite\CpuLevelUpHelp.exe ()
O4 - HKLM..\Run: [D-Link D-Link DWA-125] C:\Program Files\D-Link\DWA-125 revA\AirGCFG.exe (D-Link Corp.)
O4 - HKLM..\Run: [Kernel and Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [Launch As Cmd Runner] C:\Program Files\ASUS\AI Direct Link\AsCmd.exe ()
O4 - HKLM..\Run: [Launch Direct Link] C:\Program Files\ASUS\AI Direct Link\AsShare.exe ()
O4 - HKLM..\Run: [LGODDFU] C:\Program Files\lg_fwupdate\fwupdate.exe (BL)
O4 - HKLM..\Run: [Logitech Hardware Abstraction Layer] C:\Windows\KHALMNPR.Exe (Logitech, Inc.)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [PlusService] C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe (Yuna Software)
O4 - HKLM..\Run: [QFan Help] C:\Program Files\ASUS\Ai Suite\QFan3\QFanHelp.exe ()
O4 - HKLM..\Run: [RtHDVCpl] C:\Windows\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [snp2std] C:\Windows\vsnp2std.exe (Sonix)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [WZCSLDR2] C:\Program Files\D-Link\DWA-125 revA\WZCSLDR2.exe (Wireless Service)
O4 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000..\Run: [BitTorrent DNA] C:\Users\Steven\Program Files\DNA\btdna.exe (BitTorrent, Inc.)
O4 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000..\Run: [Spotify] C:\Users\Steven\AppData\Roaming\Spotify\Spotify.exe (Spotify Ltd)
O4 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000..\Run: [TomTomHOME.exe] D:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe (TomTom)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: EnableShellExecuteHooks = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: EnableShellExecuteHooks = 1
O7 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab (Java Plug-in 1.6.0_26)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 195.130.131.3 195.130.130.131
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{0C5D8346-7E26-41C5-A8A3-A4D96E80E4F3}: DhcpNameServer = 195.130.131.3 195.130.130.131
O18 - Protocol\Handler\bwfile-8876480 {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll (Logitech Inc.)
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\Steven\AppData\Roaming\Microsoft\Windows Photo Gallery\Bureaubladachtergrond van Windows Fotogalerie.jpg
O24 - Desktop BackupWallPaper: C:\Users\Steven\AppData\Roaming\Microsoft\Windows Photo Gallery\Bureaubladachtergrond van Windows Fotogalerie.jpg
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (lsdelete)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgchsvx.exe /sync)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG10\avgrsx.exe /sync /restart)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/04/03 20:25:16 | 000,186,880 | ---- | C] (CEXX.ORG) -- C:\Users\Steven\Desktop\LSPFix.exe
[2012/03/31 13:35:41 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Local\{0CF106CA-14D2-48D9-8825-271477C4FDBC}
[2012/03/25 15:32:37 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Local\{754A89F0-682E-4C3D-871F-7EAFDF15093D}
[2012/03/25 15:32:27 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Local\{4058087F-FB75-447B-BE55-81854C3B958D}
[2012/03/09 18:58:53 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Local\{489226B5-8D11-4502-B59F-297A16746D54}
[2012/03/09 18:58:43 | 000,000,000 | ---D | C] -- C:\Users\Steven\AppData\Local\{5A84C5DB-28FC-46E5-937E-2D9250E97AB5}
[2011/07/14 21:13:20 | 000,143,240 | ---- | C] (Ask.com) -- C:\Program Files\Common Files\ApnStub.exe

========== Files - Modified Within 30 Days ==========

[2012/04/04 21:11:00 | 000,000,456 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{F8985F24-3CF4-4324-B319-536DA4AE0D75}.job
[2012/04/04 20:51:00 | 000,001,044 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/04/04 20:37:31 | 000,003,284 | ---- | M] () -- C:\Windows\System32\ANIWZCS{0C5D8346-7E26-41C5-A8A3-A4D96E80E4F3}
[2012/04/04 20:37:31 | 000,003,284 | ---- | M] () -- C:\Users\Steven\AppData\Roaming\ANIWZCS{0C5D8346-7E26-41C5-A8A3-A4D96E80E4F3}
[2012/04/04 20:37:08 | 000,000,224 | ---- | M] () -- C:\Windows\tasks\OGALogon.job
[2012/04/04 20:36:57 | 000,001,040 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/04/04 19:48:11 | 000,003,664 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/04/04 19:48:11 | 000,003,664 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/04/04 17:58:09 | 000,000,008 | ---- | M] () -- C:\Windows\System32\ANIWZCSUSERNAME
[2012/04/04 17:52:43 | 000,676,950 | ---- | M] () -- C:\Windows\System32\perfh013.dat
[2012/04/04 17:52:43 | 000,595,798 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/04/04 17:52:43 | 000,129,980 | ---- | M] () -- C:\Windows\System32\perfc013.dat
[2012/04/04 17:52:43 | 000,103,872 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/04/04 17:49:50 | 000,000,386 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job
[2012/04/04 17:48:17 | 000,492,544 | ---- | M] () -- C:\Windows\System32\SV_SQL3_Events.db
[2012/04/04 17:48:16 | 000,000,008 | ---- | M] () -- C:\Windows\System32\ANIWZCSUSERNAME{0C5D8346-7E26-41C5-A8A3-A4D96E80E4F3}
[2012/04/04 17:48:10 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/04/04 17:27:11 | 000,060,416 | ---- | M] () -- C:\Users\Steven\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/04/03 19:56:28 | 000,000,422 | -H-- | M] () -- C:\Windows\tasks\User_Feed_Synchronization-{C2FE9263-0B24-4D2D-8B3F-481064A6BDC6}.job
[2012/04/03 17:24:19 | 000,000,064 | ---- | M] () -- C:\Windows\System32\rp_stats.dat
[2012/04/03 17:24:18 | 000,000,044 | ---- | M] () -- C:\Windows\System32\rp_rules.dat
[2012/03/30 17:37:42 | 000,334,651 | ---- | M] () -- C:\Users\Steven\Desktop\SKMBT_C45111040708120.pdf
[2012/03/24 16:13:18 | 000,002,629 | ---- | M] () -- C:\Users\Steven\Application Data\Microsoft\Internet Explorer\Quick Launch\Microsoft Office Word 2007.lnk
[2012/03/15 10:25:55 | 000,404,208 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT

========== Files Created - No Company Name ==========

[2012/04/01 09:45:15 | 000,000,386 | ---- | C] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job
[2012/03/30 17:37:42 | 000,334,651 | ---- | C] () -- C:\Users\Steven\Desktop\SKMBT_C45111040708120.pdf
[2011/11/18 23:13:05 | 000,016,432 | ---- | C] () -- C:\Windows\System32\lsdelete.exe
[2011/05/06 19:03:05 | 000,444,283 | ---- | C] () -- C:\Program Files\Common Files\WinPcapNmap.exe
[2011/02/13 16:34:14 | 000,016,968 | ---- | C] () -- C:\Windows\System32\drivers\hitmanpro35.sys
[2011/01/29 18:59:05 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
[2011/01/29 18:59:05 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2011/01/29 18:59:05 | 000,089,088 | ---- | C] () -- C:\Windows\MBR.exe
[2011/01/29 18:59:05 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2011/01/29 18:59:05 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2011/01/28 15:59:44 | 000,029,008 | ---- | C] () -- C:\Windows\System32\SmartDefragBootTime.exe
[2011/01/28 15:59:43 | 000,015,672 | ---- | C] () -- C:\Windows\System32\drivers\SmartDefragDriver.sys
[2011/01/23 19:03:44 | 000,167,859 | ---- | C] () -- C:\Windows\hpoins28.dat.temp
[2011/01/23 19:03:44 | 000,000,932 | ---- | C] () -- C:\Windows\hpomdl28.dat.temp
[2011/01/23 18:21:42 | 000,168,290 | ---- | C] () -- C:\Windows\hpoins28.dat
[2011/01/20 16:00:28 | 000,000,280 | ---- | C] () -- C:\Users\Steven\AppData\Roaming\ANICONFIG_{0C5D8346-7E26-41C5-A8A3-A4D96E80E4F3}.ini
[2011/01/05 16:11:26 | 000,114,688 | ---- | C] () -- C:\Windows\System32\beidmdrv32.dll
[2010/12/21 11:30:12 | 000,000,760 | ---- | C] () -- C:\Users\Steven\AppData\Roaming\setup_ldm.iss
[2010/12/19 19:40:48 | 000,003,284 | ---- | C] () -- C:\Users\Steven\AppData\Roaming\ANIWZCS{0C5D8346-7E26-41C5-A8A3-A4D96E80E4F3}
[2010/12/19 19:35:27 | 000,013,931 | ---- | C] () -- C:\Windows\System32\RaCoInst.dat
[2010/12/19 19:35:27 | 000,012,800 | ---- | C] () -- C:\Windows\System32\drivers\anodlwf.sys
[2010/09/08 09:24:26 | 000,073,728 | ---- | C] () -- C:\Windows\System32\belpicppgui.dll
[2010/08/22 13:10:28 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2010/07/07 14:27:07 | 000,200,704 | ---- | C] () -- C:\Windows\sel3110.exe
[2010/07/07 14:27:07 | 000,040,960 | ---- | C] () -- C:\Windows\CleanDev.exe
[2010/07/07 14:27:07 | 000,032,528 | ---- | C] () -- C:\Windows\amcap.exe

========== LOP Check ==========

[2011/02/01 19:41:56 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\AVG10
[2010/08/01 20:18:24 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\BitTorrent
[2010/04/07 13:11:19 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\ExtraFilm
[2011/01/29 14:29:09 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\IObit
[2008/09/07 19:34:31 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\LimeWire
[2011/12/10 21:59:00 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\MusicNet
[2009/06/02 16:34:02 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\PeerNetworking
[2012/04/04 18:13:42 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\Spotify
[2012/02/17 21:12:56 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\SystemRequirementsLab
[2008/08/02 18:27:53 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\Teleca
[2011/08/13 19:27:23 | 000,000,000 | ---D | M] -- C:\Users\Elke\AppData\Roaming\VDownloader
[2011/02/01 17:34:39 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\AVG10
[2011/12/19 15:33:27 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Azogin
[2010/12/21 11:21:48 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Beamh
[2012/03/23 14:35:21 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\BitTorrent
[2010/08/22 12:59:16 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\BSplayer
[2008/10/27 16:46:14 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\BSplayer Pro
[2009/03/30 14:01:51 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Canneverbe_Limited
[2012/04/04 21:17:19 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\DNA
[2011/05/29 12:41:16 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Garden Planner
[2009/05/10 20:47:45 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\GetRightToGo
[2011/01/28 16:05:45 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\IObit
[2010/03/01 17:26:28 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\ISP Monitor
[2011/12/06 21:08:54 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Iwka
[2011/12/06 20:42:00 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Keoboq
[2011/04/01 15:07:44 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\LimeWire
[2008/07/19 15:21:34 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\PeerNetworking
[2009/10/27 18:46:26 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Sports Interactive
[2012/04/04 20:38:30 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Spotify
[2009/11/30 21:40:29 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\SystemRequirementsLab
[2008/08/02 17:40:32 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Teleca
[2008/11/09 17:47:06 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\TomTom
[2011/12/19 15:37:51 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Ucava
[2008/08/07 15:37:13 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Ulead Systems
[2011/10/17 21:31:11 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\VDownloader
[2011/08/09 17:33:56 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Vso
[2009/04/10 18:26:22 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Webcammax
[2010/12/19 20:43:06 | 000,000,000 | ---D | M] -- C:\Users\Steven\AppData\Roaming\Wyyfc
[2012/04/04 17:49:50 | 000,000,386 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Weekly).job
[2011/09/26 02:12:11 | 000,000,224 | ---- | M] () -- C:\Windows\Tasks\OGADaily.job
[2012/04/04 20:37:08 | 000,000,224 | ---- | M] () -- C:\Windows\Tasks\OGALogon.job
[2012/04/03 21:08:48 | 000,032,520 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012/04/03 19:56:28 | 000,000,422 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{C2FE9263-0B24-4D2D-8B3F-481064A6BDC6}.job
[2012/04/04 21:11:00 | 000,000,456 | -H-- | M] () -- C:\Windows\Tasks\User_Feed_Synchronization-{F8985F24-3CF4-4324-B319-536DA4AE0D75}.job

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 104 bytes -> C:\ProgramData\TEMP:DFC5A2B2

< End of report >
J

Juisterr

Legacy Member
klopt veel info, ik zie Ask.com regelmatig staan, die kan je beter uninstallen.
J

Juisterr

Legacy Member
Start OTL
  • Plak het volgende onder Custom Scans/Fixes

    :OTL
    IE - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = Ask.com - International
    IE - HKU\S-1-5-21-2630897086-1038955228-3891820377-1000\..\SearchScopes\{D76344A6-3D64-48F9-BC73-F9FA301DC34E}: "URL" = Ask.com Search Engine - Better Web Search
    FF - prefs.js..browser.search.defaultengine: "Ask.com"
    FF - prefs.js..browser.search.defaultenginename: "Ask.com"
    FF - prefs.js..browser.search.order.1: "Ask.com"

    FF - prefs.js..browser.search.selectedEngine: "Ask.com"

    :Services

    :Reg

    :Files

    ipconfig /flushdns /c

    :Commands
    [purity]
    [resethosts]
    [emptytemp]
    [emptyflash]
    [createrestorepoint]
    [reboot]
    Klik om te vergroten...
  • Klik daarna bovenaan op de knop Run Fix
  • Laat het programma ongestoord zijn werk doen. De pc zal na afloop opnieuw opgestart worden.
T

TitaTovenaartje

Legacy Member
Files\Folders moved on Reboot...

Registry entries deleted on Reboot...



Moet ik nu een nieuw hijackthis logje posten?
J

Juisterr

Legacy Member
vreemd ja.

Download de Emsisoft Emergency Kit naar het bureaublad en pak het ZIP bestand uit.
  • Open de map "EmsisoftEmergencyKit" en dubbelklik op "Start.exe"
  • Klik nu op "Emergency Kit Scanner" u krijg nu een melding dat het is aanbevolen om eerst te updaten sta dit toe door te klikken op "Ja"
    EmsisoftEK11.jpg
  • Als de update gereed is en de melding "Update process is succesvol afgerond" verschijnt klikt u op "menu" en dan op "Scan PC"
  • Selecteer de optie "Diep" als deze niet standaard al zo is ingesteld.
  • Klik Nu op de knop "Scan" en doe verder niets op de computer tijdens het scannen, deze scan kan een geruime tijd in beslag nemen dus wacht dit geduldig af.
  • Het venster met de waarschuwing over een verhoogd risico kunt u sluiten als de scan gereed is.


  • Zorg ervoor dat alle gevonden items zijn aangevinkt en druk dan op de knop "verwijder geselecteerde" u zal nu de volgende melding krijgen maar klik hier op "Ja"
    EmsisoftEK2.jpg
  • Als het verwijderen gereed is klikt u op de knop "View report" en selecteert u het tekstbestand van deze scan met de naam zoals: a2scan_110730-111615.txt
  • Plaats de inhoud van dit LOG bestand straks in uw volgende bericht.
  • Herstart nu de computer.
Het archief is een bevroren moment uit een vorige versie van dit forum, met andere regels en andere bazen. Deze posts weerspiegelen op geen enkele manier onze huidige ideeën, waarden of wereldbeelden en zijn op sommige plaatsen gecensureerd wegens ontoelaatbaar. Veel zijn in een andere tijdsgeest gemaakt, al dan niet ironisch - zoals in het ironische subforum Off-Topic - en zouden op dit moment niet meer gepost (mogen) worden. Toch bieden we dit archief nog graag aan als informatiedatabank en naslagwerk. Lees er hier meer over of start een gesprek met anderen.
Terug
Bovenaan