((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_MBAMPROTECTOR
-------\Legacy_MBAMSERVICE
-------\Service_MBAMProtector
-------\Service_MBAMService
-------\Service_MozillaMaintenance
.
.
(((((((((((((((((((( Bestanden Gemaakt van 2012-07-23 to 2012-08-23 ))))))))))))))))))))))))))))))
.
.
2012-08-20 18:06 . 2012-08-20 18:06 -------- d-----w- c:\documents and settings\User\Application Data\AVG2012
2012-08-20 18:05 . 2012-08-20 18:05 -------- d-----w- c:\documents and settings\User\Local Settings\Application Data\AVG Secure Search
2012-08-20 18:05 . 2012-08-20 18:05 -------- d-----w- c:\documents and settings\All Users\Application Data\AVG Secure Search
2012-08-20 18:05 . 2012-08-20 18:05 -------- d-----w- c:\documents and settings\User\Application Data\AVG Secure Search
2012-08-20 18:05 . 2012-08-20 18:05 27496 ----a-w- c:\windows\system32\drivers\avgtpx86.sys
2012-08-20 18:05 . 2012-08-20 18:05 -------- d-----w- c:\program files\AVG Secure Search
2012-08-20 18:05 . 2012-08-20 18:05 -------- d-----w- c:\program files\Common Files\AVG Secure Search
2012-08-20 18:03 . 2012-08-20 18:22 -------- d-----w- c:\documents and settings\All Users\Application Data\AVG2012
2012-08-20 18:03 . 2012-08-20 18:03 -------- d-----w- C:\$AVG
2012-08-20 18:02 . 2012-08-20 18:02 -------- d-----w- c:\program files\AVG
2012-08-20 17:59 . 2012-08-23 09:47 -------- d-----w- c:\documents and settings\All Users\Application Data\MFAData
2012-08-16 01:15 . 2012-08-16 01:15 -------- d-----w- c:\documents and settings\User\Application Data\Sony
2012-08-16 01:03 . 2012-08-23 09:50 -------- d--h--r- c:\documents and settings\User\Onlangs geopend
2012-08-08 01:08 . 2012-08-08 01:08 -------- d-----w- c:\documents and settings\User\Local Settings\Application Data\Sun
2012-08-06 20:46 . 2012-08-06 20:46 -------- d-----w- c:\documents and settings\User\Local Settings\Application Data\Secunia PSI
2012-08-06 20:45 . 2012-08-06 20:45 -------- d-----w- c:\program files\Secunia
2012-08-04 22:54 . 2012-08-04 22:54 -------- d-----w- c:\documents and settings\User\Application Data\addpcs
2012-08-04 22:46 . 2012-08-04 22:46 -------- d-----w- c:\program files\Microsoft.NET
2012-08-04 22:11 . 2012-08-04 22:11 -------- d-----w- c:\program files\Common Files\Java
2012-08-04 22:10 . 2012-08-04 22:10 -------- d-----w- c:\program files\Oracle
2012-08-04 22:10 . 2012-08-04 22:10 -------- d-----w- c:\documents and settings\User\Application Data\Oracle
2012-08-04 22:10 . 2012-07-05 20:06 772544 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-08-04 14:32 . 2012-08-23 09:47 -------- d-----w- c:\windows\system32\drivers\AVG
2012-07-25 12:21 . 2012-07-25 12:21 -------- d-----w- c:\documents and settings\User\Application Data\Malwarebytes
2012-07-25 12:20 . 2012-07-25 12:20 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2012-07-25 12:20 . 2012-07-25 12:20 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
.
.
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-15 03:28 . 2012-04-04 11:44 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-08-15 03:28 . 2011-05-19 09:28 70344 -c--a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-06 20:50 . 2012-04-03 17:59 73728 ----a-w- c:\windows\system32\javacpl.cpl
2012-07-06 13:58 . 2008-04-14 20:32 78336 ----a-w- c:\windows\system32\browser.dll
2012-07-05 20:06 . 2011-04-28 16:55 687544 -c--a-w- c:\windows\system32\deployJava1.dll
2012-07-04 14:05 . 2011-04-26 12:05 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-07-03 18:23 . 2008-04-14 20:05 1866240 ----a-w- c:\windows\system32\win32k.sys
2012-07-02 17:38 . 2008-04-14 20:32 916992 ----a-w- c:\windows\system32\wininet.dll
2012-07-02 17:38 . 2008-04-14 20:33 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-07-02 17:38 . 2008-04-14 20:32 43520 ------w- c:\windows\system32\licmgr10.dll
2012-07-02 12:05 . 2008-04-14 20:05 385024 ------w- c:\windows\system32\html.iec
2012-06-25 18:00 . 2012-07-02 17:28 79872 ----a-w- c:\windows\system32\ff_vfw.dll
2012-06-09 17:21 . 2011-06-11 10:58 178688 ----a-w- c:\windows\system32\unrar.dll
2012-06-05 15:49 . 2008-04-14 20:32 1372672 ----a-w- c:\windows\system32\msxml6.dll
2012-06-05 15:49 . 2008-04-14 20:32 1172480 ----a-w- c:\windows\system32\msxml3.dll
2012-06-04 04:32 . 2008-04-14 20:32 152576 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 13:19 . 2009-08-06 17:24 18456 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-06-02 13:19 . 2011-04-26 12:07 329240 ----a-w- c:\windows\system32\wucltui.dll
2012-06-02 13:19 . 2011-04-26 12:07 210968 ----a-w- c:\windows\system32\wuweb.dll
2012-06-02 13:19 . 2011-04-26 12:07 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 13:19 . 2011-04-26 12:07 53784 ----a-w- c:\windows\system32\wuauclt.exe
2012-06-02 13:19 . 2011-04-26 12:07 35864 ----a-w- c:\windows\system32\wups.dll
2012-06-02 13:19 . 2009-08-06 17:24 45080 ----a-w- c:\windows\system32\wups2.dll
2012-06-02 13:19 . 2008-04-14 20:32 97304 ----a-w- c:\windows\system32\cdm.dll
2012-06-02 13:19 . 2009-08-06 17:24 15896 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 13:19 . 2011-04-26 12:07 577048 ----a-w- c:\windows\system32\wuapi.dll
2012-06-02 13:19 . 2009-08-06 17:23 15896 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 13:19 . 2011-04-26 12:07 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2012-06-02 13:19 . 2009-08-06 17:23 24088 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 13:19 . 2011-05-04 08:24 18160 ----a-w- c:\windows\system32\mucltui.dll.mui
2012-06-02 13:18 . 2011-05-04 08:24 275696 ----a-w- c:\windows\system32\mucltui.dll
2012-06-02 13:18 . 2011-05-04 08:24 214256 ----a-w- c:\windows\system32\muweb.dll
2012-05-31 13:22 . 2008-04-14 20:32 602624 ----a-w- c:\windows\system32\crypt32.dll
2012-07-14 00:15 . 2012-08-10 00:24 136672 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-08-20_17.56.01 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-08-23 10:03 . 2012-08-23 10:03 16384 c:\windows\Temp\Perflib_Perfdata_408.dat
+ 2012-01-31 02:46 . 2012-01-31 02:46 31952 c:\windows\system32\drivers\avgrkx86.sys
+ 2011-12-23 11:32 . 2011-12-23 11:32 41040 c:\windows\system32\drivers\avgmfx86.sys
+ 2011-12-23 11:32 . 2011-12-23 11:32 17232 c:\windows\system32\drivers\avgidsshimx.sys
+ 2012-04-19 02:50 . 2012-04-19 02:50 24896 c:\windows\system32\drivers\avgidshx.sys
+ 2011-12-23 11:32 . 2011-12-23 11:32 24144 c:\windows\system32\drivers\avgidsfilterx.sys
+ 2012-01-12 17:52 . 2012-01-12 17:52 30944 c:\windows\system32\drivers\avgfwdx.sys
- 2012-08-05 15:23 . 2012-08-05 15:23 32768 c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
+ 2012-08-05 15:23 . 2012-08-22 14:22 32768 c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
+ 2011-09-16 11:57 . 2012-08-22 14:22 16384 c:\windows\system32\config\systemprofile\Local Settings\Geschiedenis\History.IE5\index.dat
- 2011-09-16 11:57 . 2012-08-05 15:23 16384 c:\windows\system32\config\systemprofile\Local Settings\Geschiedenis\History.IE5\index.dat
- 2012-08-05 15:23 . 2012-08-05 15:23 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
+ 2012-08-22 14:23 . 2012-08-22 14:22 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
+ 2012-03-19 03:17 . 2012-03-19 03:17 301248 c:\windows\system32\drivers\avgtdix.sys
+ 2012-02-22 03:25 . 2012-02-22 03:25 235216 c:\windows\system32\drivers\avgldx86.sys
+ 2011-12-23 11:32 . 2011-12-23 11:32 139856 c:\windows\system32\drivers\avgidsdriverx.sys
+ 2012-08-20 18:05 . 2012-08-20 18:05 5164032 c:\windows\Installer\14f39e.msi
+ 2012-08-20 18:02 . 2012-08-20 18:02 2208768 c:\windows\Installer\14f39a.msi
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]
2012-08-20 18:05 2045024 ----a-w- c:\program files\AVG Secure Search\12.2.0.5\AVG Secure Search_toolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files\AVG Secure Search\12.2.0.5\AVG Secure Search_toolbar.dll" [2012-08-20 2045024]
.
[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]
[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\documents and settings\User\Application Data\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\documents and settings\User\Application Data\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\documents and settings\User\Application Data\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\documents and settings\User\Application Data\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2012-07-13 17418928]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2011-06-21 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2006-07-21 86016]
"AlcWzrd"="ALCWZRD.EXE" [2006-05-04 2808832]
"CLMLServer"="c:\program files\CyberLink\Power2Go\CLMLSvc.exe" [2009-12-04 103720]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2008-05-27 413696]
"RemoteControl9"="c:\program files\CyberLink\PowerDVD9\PDVD9Serv.exe" [2009-07-06 87336]
"PDVD9LanguageShortcut"="c:\program files\CyberLink\PowerDVD9\Language\Language.exe" [2009-04-27 50472]
"BDRegion"="c:\program files\Cyberlink\Shared files\brs.exe" [2009-09-01 75048]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2012-04-05 2587008]
"vProt"="c:\program files\AVG Secure Search\vprot.exe" [2012-08-20 1162848]
"ROC_roc_ssl_v12"="c:\program files\AVG Secure Search\ROC_roc_ssl_v12.exe" [2012-08-20 1020512]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\User\Menu Start\Programma's\Opstarten\
Dropbox.lnk - c:\documents and settings\User\Application Data\Dropbox\bin\Dropbox.exe [2012-5-24 27112840]
.
c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\
PalTalk.lnk - c:\program files\Paltalk Messenger\paltalk.exe [N/A]
Secunia PSI Tray.lnk - c:\program files\Secunia\PSI\psi_tray.exe [2012-7-25 572000]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\CyberLink\\PowerDVD9\\PowerDVD9.exe"=
"c:\\Documents and Settings\\User\\Application Data\\Dropbox\\bin\\Dropbox.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Program Files\\Mozilla Firefox\\plugin-container.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgnsx.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgdiagex.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgmfapx.exe"=
"c:\\Program Files\\AVG\\AVG2012\\avgemcx.exe"=
.
R0 AVGIDSHX;AVGIDSHX;c:\windows\system32\drivers\avgidshx.sys [19-4-2012 4:50 24896]
R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [31-1-2012 4:46 31952]
R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [22-2-2012 5:25 235216]
R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [19-3-2012 5:17 301248]
R1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx86.sys [20-8-2012 20:05 27496]
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2011/04/27 10:17];c:\program files\CyberLink\PowerDVD9\000.fcl [1-9-2009 16:59 87536]
R2 avgfws;AVG Firewall;c:\program files\AVG\AVG2012\avgfws.exe [13-6-2012 3:48 2321560]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2012\avgidsagent.exe [4-7-2012 17:25 5160568]
R2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2012\avgwdsvc.exe [14-2-2012 4:53 193288]
R2 Secunia PSI Agent;Secunia PSI Agent;c:\program files\Secunia\PSI\psia.exe [25-7-2012 10:46 1326176]
R2 Secunia Update Agent;Secunia Update Agent;c:\program files\Secunia\PSI\sua.exe [25-7-2012 10:46 681056]
R2 vToolbarUpdater12.2.0;vToolbarUpdater12.2.0;c:\program files\Common Files\AVG Secure Search\vToolbarUpdater\12.2.0\ToolbarUpdater.exe [20-8-2012 20:05 927840]
R3 Avgfwdx;Avgfwdx;c:\windows\system32\drivers\avgfwdx.sys [12-1-2012 19:52 30944]
R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\avgidsdriverx.sys [23-12-2011 13:32 139856]
R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\avgidsfilterx.sys [23-12-2011 13:32 24144]
R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\avgidsshimx.sys [23-12-2011 13:32 17232]
R3 PSI;PSI;c:\windows\system32\drivers\psi_mf.sys [1-9-2010 10:30 15544]
S2 gupdate;Google Updateservice (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [21-6-2011 18:34 135664]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [13-7-2012 13:28 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [4-4-2012 13:44 250056]
S3 Avgfwfd;AVG network filter service;c:\windows\system32\drivers\avgfwdx.sys [12-1-2012 19:52 30944]
S3 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [21-6-2011 18:34 135664]
.
Inhoud van de 'Gedeelde Taken' map
.
2012-08-23 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-04 03:28]
.
2012-08-21 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-04-11 15:57]
.
2012-02-03 c:\windows\Tasks\expressburnShakeIcon.job
- c:\program files\NCH Software\ExpressBurn\expressburn.exe [2012-01-22 18:31]
.
2012-08-23 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-06-21 16:34]
.
2012-08-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-06-21 16:34]
.
2012-05-15 c:\windows\Tasks\videopadShakeIcon.job
- c:\program files\NCH Software\VideoPad\videopad.exe [2012-01-29 23:26]
.
2012-08-11 c:\windows\Tasks\wavepadShakeIcon.job
- c:\program files\NCH Software\WavePad\wavepad.exe [2012-01-22 21:36]
.
.
------- Bijkomende Scan -------
.
mSearch Bar = hxxp://
www.google.com/ie
uSearchAssistant = hxxp://dts.search-results.com/sr?src=ieb&appid=169&systemid=406&sr=0&q={searchTerms}
uSearchURL,(Default) = hxxp://
www.google.com/search?q=%s
TCP: DhcpNameServer = 192.168.1.1 192.168.1.1
Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\Common Files\AVG Secure Search\ViProtocolInstaller\12.2.0\ViProtocol.dll
FF - ProfilePath - c:\documents and settings\User\Application Data\Mozilla\Firefox\Profiles\t0vs285m.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxps://login.live.com/login.srf?wa=wsignin1.0&rpsnv=11&ct=1341485456&rver=6.1.6206.0&wp=MBI&wreply=http:%2F%2Fmail.live.com%2Fdefault.aspx%3Frru%3Dinbox%26wa%3Dwsignin1.0&lc=1033&id=64855&mkt=en-us&cbcxt=mai&snsc=1|
http://www.youtube.com/user/Nebulous1982?feature=mhum
FF - prefs.js: network.proxy.type - 0
.
- - - - ORPHANS VERWIJDERD - - - -
.
AddRemove-Anti-phishing Domain Advisor - c:\documents and settings\All Users\Application Data\Anti-phishing Domain Advisor\uninstall.exe
AddRemove-Temp File Cleaner - c:\program files\Temp File Cleaner\Uninstall.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.net
Rootkit scan 2012-08-23 12:05
Windows 5.1.2600 Service Pack 3 NTFS
.
scannen van verborgen processen ...
.
scannen van verborgen autostart items ...
.
scannen van verborgen bestanden ...
.
Scan succesvol afgerond
verborgen bestanden: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{B154377D-700F-42cc-9474-23858FBDF4BD}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD9\000.fcl"
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_USERS\S-1-5-21-602162358-2025429265-1606980848-500\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (Administrator)
"{99079A25-328F-4BD4-BE04-00955ACAA0A7}"=hex:51,66,7a,6c,4c,1d,3b,1b,35,82,15,
82,b9,67,b9,05,a7,07,5f,ca,5a,8b,e0,bf
"{A40DC6C5-79D0-4CA8-A185-8FF989AF1115}"=hex:51,66,7a,6c,4c,1d,3b,1b,d5,de,1f,
bf,e6,2c,c5,02,b8,86,d0,a6,89,ee,51,0d
"{9D717F81-9148-4F12-8568-69135F087DB0}"=hex:51,66,7a,6c,4c,1d,3b,1b,91,67,63,
86,7e,c4,7f,01,9c,6b,36,4c,5f,49,3d,a8
.
--------------------- DLLs Geladen Onder Lopende Processen ---------------------
.
- - - - - - - > 'explorer.exe'(1388)
c:\documents and settings\User\Application Data\Dropbox\bin\DropboxExt.14.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Andere Aktieve Processen ------------------------
.
c:\program files\Oracle\JavaFX 2.1 Runtime\bin\jqs.exe
c:\program files\CyberLink\Shared files\RichVideo.exe
c:\windows\SOUNDMAN.EXE
c:\windows\ALCWZRD.EXE
c:\program files\AVG\AVG2012\avgnsx.exe
c:\program files\AVG\AVG2012\avgemcx.exe
c:\program files\AVG\AVG2012\avgrsx.exe
c:\program files\AVG\AVG2012\avgcsrvx.exe
c:\program files\AVG\AVG2012\avgcsrvx.exe
.
**************************************************************************
.
Voltooingstijd: 2012-08-23 12:09:57 - machine werd herstart
ComboFix-quarantined-files.txt 2012-08-23 10:09
ComboFix2.txt 2012-08-20 17:58
.
Pre-Run: 13.139.406.848 bytes beschikbaar
Post-Run: 13.112.217.600 bytes beschikbaar
.
- - End Of File - - 7DA2DE14797B7FD5A948AE7604189BFC
ESET did not produce a log.