2009-02-04 15:37 . 2009-02-04 15:37 106 --ah----- C:\aaw7boot.cmd
2009-02-01 18:31 . 2009-02-01 18:31 <DIR> d-------- C:\Program Files\Malwarebytes' Anti-Malware
2009-02-01 18:31 . 2009-01-14 16:11 38,496 --a------ C:\Windows\System32\drivers\mbamswissarmy.sys
2009-02-01 18:31 . 2009-01-14 16:11 15,504 --a------ C:\Windows\System32\drivers\mbam.sys
2009-02-01 18:25 . 2009-02-01 18:25 <DIR> d-------- C:\Program Files\Microsoft
2009-01-31 10:20 . 2009-01-31 10:20 <DIR> d-------- C:\ProgramData\Ralink
2009-01-31 10:20 . 2008-09-09 11:12 1,597,440 --a------ C:\Windows\System32\RaCertMgr.dll
2009-01-31 10:19 . 2009-01-31 10:19 <DIR> d-------- C:\Users\Tommy\{911154f0-d308-4e1f-9c87-5784c2f42e05}
2009-01-31 10:19 . 2009-01-31 10:19 <DIR> d-------- C:\ProgramData\Ralink Driver
2009-01-31 10:19 . 2009-01-31 10:19 <DIR> d-------- C:\Program Files\Ralink
2009-01-31 10:19 . 2009-01-31 10:19 <DIR> d-------- C:\Program Files\Cisco
2009-01-31 10:19 . 2007-12-07 06:36 958,464 --a------ C:\Windows\System32\CiscoEapFast.dll
2009-01-31 10:19 . 2008-09-10 14:47 763,392 --a------ C:\Windows\System32\RAIHV.dll
2009-01-31 10:19 . 2008-08-28 17:21 97,280 --a------ C:\Windows\System32\RAEXTUI.dll
2009-01-31 10:19 . 2008-11-03 12:09 15,312 --a------ C:\Windows\System32\RaCoInst.dat
2009-01-31 09:49 . 2009-01-31 09:49 <DIR> d-------- C:\ProgramData\Office Genuine Advantage
2009-01-31 09:21 . 2008-06-20 02:14 781,344 --a------ C:\Windows\System32\PresentationNative_v0300.dll
2009-01-31 09:21 . 2008-06-20 02:14 622,080 --a------ C:\Windows\System32\icardagt.exe
2009-01-31 09:21 . 2008-06-20 02:14 326,160 --a------ C:\Windows\System32\PresentationHost.exe
2009-01-31 09:21 . 2008-06-20 02:14 105,016 --a------ C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2009-01-31 09:21 . 2008-06-20 02:14 97,800 --a------ C:\Windows\System32\infocardapi.dll
2009-01-31 09:21 . 2008-06-20 02:14 43,544 --a------ C:\Windows\System32\PresentationHostProxy.dll
2009-01-31 09:21 . 2008-06-20 02:14 37,384 --a------ C:\Windows\System32\infocardcpl.cpl
2009-01-31 09:21 . 2008-06-20 02:14 11,264 --a------ C:\Windows\System32\icardres.dll
2009-01-31 09:16 . 2008-07-27 19:03 282,112 --a------ C:\Windows\System32\mscoree.dll
2009-01-31 09:16 . 2008-07-27 19:03 158,720 --a------ C:\Windows\System32\mscorier.dll
2009-01-31 09:16 . 2008-07-27 19:03 96,760 --a------ C:\Windows\System32\dfshim.dll
2009-01-31 09:16 . 2008-07-27 19:03 41,984 --a------ C:\Windows\System32\netfxperf.dll
2009-01-31 09:15 . 2008-07-27 19:03 83,968 --a------ C:\Windows\System32\mscories.dll
2009-01-27 20:39 . 2006-10-26 19:56 32,592 --a------ C:\Windows\System32\msonpmon.dll
2009-01-27 20:38 . 2009-01-27 20:38 <DIR> d-------- C:\Program Files\Microsoft Works
2009-01-27 20:36 . 2009-01-27 20:36 <DIR> d-------- C:\Program Files\Microsoft.NET
2009-01-27 20:34 . 2009-01-27 20:34 <DIR> d-------- C:\Program Files\Microsoft Visual Studio 8
2009-01-27 20:32 . 2009-01-27 20:32 <DIR> dr-h----- C:\MSOCache
2009-01-27 15:04 . 2009-01-27 15:04 <DIR> dr-h----- C:\Users\Tommy\AppData\Roaming\SecuROM
2009-01-27 15:04 . 2009-01-27 15:04 <DIR> d-------- C:\ProgramData\Electronic Arts
2009-01-25 11:54 . 2009-02-04 15:59 <DIR> d-------- C:\Users\Tommy\AppData\Roaming\Skype
2009-01-25 11:49 . 2009-01-25 11:49 <DIR> d-------- C:\Program Files\Skype
2009-01-25 11:49 . 2009-01-25 11:49 <DIR> d-------- C:\Program Files\Common Files\Skype
2009-01-24 22:56 . 2009-01-31 22:19 15,688 --a------ C:\Windows\System32\lsdelete.exe
2009-01-24 22:19 . 2009-01-24 22:19 <DIR> d----c--- C:\Windows\System32\DRVSTORE
2009-01-24 22:19 . 2009-01-24 22:19 64,160 --a------ C:\Windows\System32\drivers\Lbd.sys
2009-01-24 22:17 . 2009-01-24 22:17 <DIR> d--h-c--- C:\ProgramData\{83C91755-2546-441D-AC40-9A6B4B860800}
2009-01-24 22:17 . 2009-01-24 22:17 <DIR> d-------- C:\Program Files\Lavasoft
2009-01-24 14:38 . 2009-01-24 14:38 <DIR> d-------- C:\ProgramData\Apple Computer
2009-01-24 14:38 . 2009-01-24 14:38 <DIR> d-------- C:\Program Files\QuickTime
2009-01-23 16:46 . 2009-01-23 16:46 0 --ah----- C:\Windows\System32\drivers\Msft_Kernel_LMouFilt_01005.Wdf
2009-01-23 16:46 . 2009-01-23 16:46 0 --ah----- C:\Windows\System32\drivers\Msft_Kernel_LHidFilt_01005.Wdf
2009-01-18 11:47 . 2009-01-18 11:47 <DIR> d-------- C:\Users\Tommy\AppData\Roaming\Malwarebytes
2009-01-18 11:47 . 2009-01-18 11:47 <DIR> d-------- C:\ProgramData\Malwarebytes
2009-01-17 22:31 . 2009-01-26 08:59 <DIR> d-------- C:\Users\Tommy\AppData\Roaming\Red Alert 3
2009-01-17 19:36 . 2009-01-17 19:36 <DIR> d-------- C:\Program Files\Sports Interactive
2009-01-16 14:57 . 2009-01-16 14:57 22,328 --a------ C:\Users\Tommy\AppData\Roaming\PnkBstrK.sys
2009-01-16 14:44 . 2009-01-16 14:44 <DIR> d-------- C:\Program Files\Activision
2009-01-16 08:31 . 2009-02-04 16:00 <DIR> d-------- C:\Users\Tommy\AppData\Roaming\skypePM
2009-01-16 08:31 . 2009-01-16 08:31 56 --ah----- C:\ProgramData\ezsidmv.dat
2009-01-15 18:34 . 2009-01-25 11:49 <DIR> d-------- C:\ProgramData\Skype
2009-01-14 13:47 . 2008-12-16 03:42 288,768 --a------ C:\Windows\System32\drivers\srv.sys
2009-01-10 17:56 . 2009-01-10 17:56 <DIR> d-------- C:\ProgramData\RoboForm
2009-01-10 17:56 . 2009-01-10 17:56 <DIR> d-------- C:\Program Files\Siber Systems
2009-01-05 20:05 . 2009-01-05 20:05 <DIR> d-------- C:\Users\Tommy\AppData\Roaming\Leadertech
2009-01-05 19:57 . 2009-01-07 09:21 <DIR> d-------- C:\ProgramData\Logishrd
2009-01-05 16:18 . 2009-01-05 16:18 90,112 --a------ C:\Windows\System32\QuickTimeVR.qtx
2009-01-05 16:18 . 2009-01-05 16:18 57,344 --a------ C:\Windows\System32\QuickTime.qts
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-02-04 14:53 --------- d-----w C:\Users\Tommy\AppData\Roaming\DNA
2009-02-04 14:33 0 ----a-w C:\Windows\system32\drivers\lvuvc.hs
2009-02-02 21:45 --------- d-----w C:\Users\Tommy\AppData\Roaming\BitTorrent
2009-02-01 08:38 --------- d-----w C:\ProgramData\Spybot - Search & Destroy
2009-01-31 09:19 --------- d--h--w C:\Program Files\InstallShield Installation Information
2009-01-31 06:56 --------- d-----w C:\Program Files\Common Files\InstallShield
2009-01-30 21:00 --------- d-----w C:\Users\Tommy\AppData\Roaming\LimeWire
2009-01-28 09:50 --------- d-----w C:\ProgramData\Microsoft Help
2009-01-27 19:37 --------- d-----w C:\Program Files\MSBuild
2009-01-24 21:17 --------- d-----w C:\ProgramData\Lavasoft
2009-01-24 21:16 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2009-01-23 15:46 --------- d-----w C:\Program Files\Common Files\logishrd
2009-01-23 15:45 --------- d-----w C:\ProgramData\Logitech
2009-01-23 15:45 --------- d-----w C:\Program Files\Common Files\Logitech
2009-01-17 21:17 --------- d-----w C:\Program Files\Electronic Arts
2009-01-17 18:40 --------- d-----w C:\Users\Tommy\AppData\Roaming\Sports Interactive
2009-01-14 13:50 --------- d-----w C:\Program Files\Windows Mail
2009-01-11 10:01 --------- d-----w C:\Program Files\SUPERAntiSpyware
2009-01-05 18:57 --------- d-----w C:\Program Files\Logitech
2009-01-02 10:20 --------- d-----w C:\ProgramData\Sports Interactive
2009-01-02 10:14 --------- d--h--w C:\Program Files\Zero G Registry
2009-01-01 20:35 --------- d--h--w C:\Program Files\Creative Installation Information
2009-01-01 20:32 --------- d-----w C:\Program Files\Creative
2008-12-31 16:04 691,560 ----a-w C:\Windows\System32\OGACheckControl.dll
2008-12-31 16:04 528,744 ----a-w C:\Windows\System32\OGAVerify.exe
2008-12-31 16:04 502,120 ----a-w C:\Windows\System32\OGAAddin.dll
2008-12-30 18:20 --------- d-----w C:\Program Files\CCleaner
2008-12-30 17:16 --------- d-----w C:\Program Files\Spybot - Search & Destroy
2008-12-30 16:30 --------- d-----w C:\Users\Tommy\AppData\Roaming\ImgBurn
2008-12-30 16:28 --------- d-----w C:\Program Files\ImgBurn
2008-12-30 14:52 --------- d-----w C:\Program Files\K-Lite Codec Pack
2008-12-30 09:25 --------- d-----w C:\Users\Tommy\AppData\Roaming\Winamp
2008-12-30 09:24 --------- d-----w C:\Program Files\Winamp
2008-12-29 08:48 --------- d-----w C:\Program Files\PokerStars
2008-12-21 22:34 --------- d-----w C:\Users\Tommy\AppData\Roaming\vlc
2008-12-21 22:33 --------- d-----w C:\Program Files\VideoLAN
2008-12-21 22:28 --------- d-----w C:\Program Files\WIDCOMM
2008-12-21 21:58 --------- d-----w C:\Users\Tommy\AppData\Roaming\Nero
2008-12-21 21:58 --------- d-----w C:\Program Files\Common Files\Nero
2008-12-21 21:57 --------- d-----w C:\ProgramData\Nero
2008-12-21 21:56 --------- d-----w C:\Program Files\Nero
2008-12-20 11:52 --------- d-----w C:\ProgramData\LightScribe
2008-12-19 22:31 --------- d-----w C:\Program Files\Windows Live
2008-12-19 22:09 --------- d-----w C:\Users\Tommy\AppData\Roaming\Creative
2008-12-19 19:22 --------- d-----w C:\Users\Tommy\AppData\Roaming\SUPERAntiSpyware.com
2008-12-19 19:22 --------- d-----w C:\ProgramData\SUPERAntiSpyware.com
2008-12-19 18:30 --------- d-----w C:\Program Files\Common Files\LightScribe
2008-12-18 22:06 410,984 ----a-w C:\Windows\System32\deploytk.dll
2008-12-18 22:06 --------- d-----w C:\Program Files\Java
2008-12-18 22:05 --------- d-----w C:\Program Files\LimeWire
2008-12-18 21:56 --------- d-----w C:\ProgramData\HP Product Assistant
2008-12-16 17:14 --------- d-----w C:\Program Files\DAEMON Tools Lite
2008-12-14 15:55 --------- d-----w C:\Users\Tommy\AppData\Roaming\DAEMON Tools Lite
2008-12-14 14:37 --------- d-----w C:\Users\Tommy\AppData\Roaming\DAEMON Tools Pro
2008-12-14 14:37 --------- d-----w C:\Users\Tommy\AppData\Roaming\DAEMON Tools
2008-12-14 14:37 --------- d-----w C:\ProgramData\DAEMON Tools Lite
2008-12-14 14:03 717,296 ----a-w C:\Windows\system32\drivers\sptd.sys
2008-12-13 23:18 --------- d-----w C:\Users\Tommy\AppData\Roaming\ISP Monitor
2008-12-13 23:16 737,280 ----a-w C:\Windows\iun6002.exe
2008-12-13 23:16 --------- d-----w C:\Program Files\ISP Monitor
2008-12-10 20:04 --------- d-----w C:\ProgramData\NOS
2008-12-10 20:04 --------- d-----w C:\Program Files\NOS
2008-12-10 17:12 --------- d-----w C:\Program Files\Common Files\Adobe
2008-12-08 11:53 57,344 ----a-w C:\Windows\System32\ff_vfw.dll
2008-12-07 19:40 --------- d-----w C:\ProgramData\Apple
2008-12-07 19:40 --------- d-----w C:\Program Files\Apple Software Update
2008-12-07 18:08 795,648 ----a-w C:\Windows\System32\xvidcore.dll
2008-12-07 18:08 130,048 ----a-w C:\Windows\System32\xvidvfw.dll
2008-12-06 15:22 --------- d-----w C:\Program Files\ASUS
2008-12-06 13:55 --------- d-----w C:\Program Files\DNA
2008-12-06 13:55 --------- d-----w C:\Program Files\BitTorrent
2008-12-06 13:49 --------- d-----w C:\Users\Tommy\AppData\Roaming\Media Player Classic
2008-12-06 13:43 --------- d-----w C:\ProgramData\Creative
2008-12-06 13:17 --------- d-----w C:\ProgramData\ESET
2008-12-06 13:17 --------- d-----w C:\Program Files\ESET
2008-12-05 23:34 --------- d-----w C:\Users\Tommy\AppData\Roaming\GrabIt
2008-12-05 22:13 --------- d-----w C:\Program Files\GrabIt
2008-12-05 19:35 --------- d-----w C:\Program Files\Common Files\Creative
2008-12-05 19:26 413,696 ----a-w C:\Windows\System32\wrap_oal.dll
2008-12-05 19:26 110,592 ----a-w C:\Windows\System32\OpenAL32.dll
2008-12-04 22:17 --------- d-----w C:\Program Files\FTDv3.8
2008-12-04 20:19 --------- d-----w C:\Users\Tommy\AppData\Roaming\Logitech
2008-11-04 19:22 9,728 ----a-w C:\Windows\System32\rnaph.dll
2008-01-21 02:43 174 --sha-w C:\Program Files\desktop.ini
2006-06-23 06:48 32,768 ----a-r C:\Windows\inf\UpdateUSB.exe
2008-10-30 20:30 16,384 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
2008-10-30 20:30 32,768 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
2008-10-30 20:30 16,384 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
.
((((((((((((((((((((((((((((( snapshot_2009-02-02_20.47.12,07 )))))))))))))))))))))))))))))))))))))))))
.
- 2005-10-20 12:02:28 163,328 ----a-w C:\Windows\ERDNT\Hiv-backup\ERDNT.EXE
+ 2005-10-20 19:02:28 163,328 ----a-w C:\Windows\ERDNT\Hiv-backup\ERDNT.EXE
- 2009-02-02 16:10:05 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2009-02-04 14:33:10 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2009-02-02 16:10:05 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2009-02-04 14:33:10 2,048 --sha-w C:\Windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2009-02-02 16:20:37 262,144 --sha-w C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT
+ 2009-02-04 14:34:41 262,144 --sha-w C:\Windows\ServiceProfiles\LocalService\NTUSER.DAT
- 2009-02-02 19:46:44 262,144 --sha-w C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT
+ 2009-02-04 15:00:41 262,144 --sha-w C:\Windows\ServiceProfiles\NetworkService\NTUSER.DAT
+ 2009-02-04 15:00:41 262,144 ---ha-w C:\Windows\ServiceProfiles\NetworkService\ntuser.dat.LOG1
- 2009-02-02 16:37:46 16,384 --sha-w C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-02-04 14:33:13 16,384 --sha-w C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-02-02 16:37:46 32,768 --sha-w C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-02-04 14:33:13 32,768 --sha-w C:\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-02-02 16:37:46 16,384 --sha-w C:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-02-04 14:33:13 16,384 --sha-w C:\Windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-02-02 19:34:45 262,144 ----a-w C:\Windows\System32\config\systemprofile\ntuser.dat
+ 2009-02-04 14:48:47 262,144 ----a-w C:\Windows\System32\config\systemprofile\ntuser.dat
+ 2009-02-04 14:48:47 262,144 ---ha-w C:\Windows\System32\config\systemprofile\ntuser.dat.LOG1
- 2009-02-02 16:15:51 101,052 ----a-w C:\Windows\System32\perfc009.dat
+ 2009-02-04 14:37:59 101,052 ----a-w C:\Windows\System32\perfc009.dat
- 2009-02-02 16:15:51 126,648 ----a-w C:\Windows\System32\perfc013.dat
+ 2009-02-04 14:37:59 126,648 ----a-w C:\Windows\System32\perfc013.dat
- 2009-02-02 16:15:51 586,980 ----a-w C:\Windows\System32\perfh009.dat
+ 2009-02-04 14:37:59 586,980 ----a-w C:\Windows\System32\perfh009.dat
- 2009-02-02 16:15:51 667,114 ----a-w C:\Windows\System32\perfh013.dat
+ 2009-02-04 14:37:59 667,114 ----a-w C:\Windows\System32\perfh013.dat
- 2009-02-02 16:39:23 7,368 ----a-w C:\Windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-222201139-3677312697-3172188081-1000_UserData.bin
+ 2009-02-04 14:34:59 7,432 ----a-w C:\Windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-222201139-3677312697-3172188081-1000_UserData.bin
- 2009-02-02 16:39:21 88,662 ----a-w C:\Windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
+ 2009-02-04 14:34:59 88,886 ----a-w C:\Windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
- 2009-02-02 15:49:44 2,854 ----a-w C:\Windows\System32\WDI\ERCQueuedResolutions.dat
+ 2009-02-04 14:31:50 2,944 ----a-w C:\Windows\System32\WDI\ERCQueuedResolutions.dat
- 2009-02-02 16:39:19 53,946 ----a-w C:\Windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-02-04 14:34:57 54,296 ----a-w C:\Windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin
.
-- Snapshot teruggezet naar huidige datum --
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2008-01-21 03:23 1233920]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" [2008-12-12 21:54 5724184]
"CreativeTaskScheduler"="C:\Program Files\Creative\Shared Files\CTSched.exe" [2006-11-17 10:42 53341]
"BitTorrent DNA"="C:\Users\Tommy\Program Files\DNA\btdna.exe" [2008-12-16 18:09 342848]
"ISPMonitor"="C:\Program Files\ISP Monitor\isp.exe" [2008-06-10 00:12 446192]
"DAEMON Tools Lite"="C:\Program Files\DAEMON Tools Lite\daemon.exe" [2008-12-10 10:02 216520]
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2008-12-05 22:41 1809648]
"LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe" [2008-06-09 10:16 2363392]
"IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" [2008-06-24 16:06 1840424]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2008-09-16 12:16 1833296]
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2008-11-07 14:31 21633320]
"RoboForm"="C:\Program Files\Siber Systems\AI RoboForm\RoboTaskBarIcon.exe" [2009-01-10 17:56 160592]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LogitechCommunicationsManager"="C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe" [2008-08-14 17:11 565008]
"StartCCC"="C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-01-21 12:17 61440]
"UpdReg"="C:\Windows\UpdReg.EXE" [2000-05-11 01:00 90112]
"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2006-12-10 21:52 49152]
"VolPanel"="C:\Program Files\Creative\Volume Panel\VolPanlu.exe" [2008-08-06 16:31 233576]
"egui"="C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" [2007-12-21 08:21 1443072]
"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 02:38 34672]
"SunJavaUpdateSched"="C:\Program Files\Java\jre6\bin\jusched.exe" [2008-12-18 23:07 136600]
"NBKeyScan"="C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe" [2008-06-08 09:31 2221352]
"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2008-08-04 00:02 36352]
"LogitechQuickCamRibbon"="C:\Program Files\Logitech\QuickCam\Quickcam.exe" [2008-08-14 17:15 2407184]
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2009-01-05 16:18 413696]
"Ad-Watch"="C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe" [2009-01-31 22:19 509784]
"GrooveMonitor"="C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" [2007-08-24 07:00 33648]
"Malwarebytes' Anti-Malware"="C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" [2009-01-14 16:11 399504]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2007-04-11 15:32 56080 C:\Windows\KHALMNPR.Exe]
"CTxfiHlp"="CTXFIHLP.EXE" [2008-08-06 21:15 23040 C:\Windows\System32\Ctxfihlp.exe]
C:\Users\Tommy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Logitech . Productregistratie.lnk - C:\Program Files\Logitech\QuickCam\eReg.exe [2008-02-13 15:32:58 493832]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
BTTray.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-02-27 11:04:02 715568]
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2007-01-02 21:40:10 210520]
Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe [2009-01-23 16:45:25 692224]
Ralink Wireless Utility.lnk - C:\Program Files\Ralink\Common\RaUI.exe [2009-01-31 10:20:21 1799456]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "C:\Program Files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 09:13 77824]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2008-12-03 14:56 352256 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"TCP Query User{4E6B7152-E8AF-4D78-AAE3-F0A757C7AE33}C:\\program files\\windows live\\messenger\\msnmsgr.exe"= UDP:C:\program files\windows live\messenger\msnmsgr.exe:Windows Live Messenger
"UDP Query User{5564B068-81D0-4EA3-9A13-5B1D0FA8A734}C:\\program files\\windows live\\messenger\\msnmsgr.exe"= TCP:C:\program files\windows live\messenger\msnmsgr.exe:Windows Live Messenger
"{E1F34F99-1EFC-4F88-9A53-FFDF53E33FED}"= UDP:C:\Program Files\DNA\btdna.exe

NA (TCP-In)
"{A8668D9F-CBE8-4114-BED8-9DEC27AEEBAE}"= TCP:C:\Program Files\DNA\btdna.exe

NA (UDP-In)
"{2BD6601C-5F2A-453F-8408-AAC93EFA4216}"= UDP:C:\Program Files\BitTorrent\BitTorrent.exe:BitTorrent (TCP-In)
"{2A1CFCD3-A031-4421-8D46-28E8FCA073AE}"= TCP:C:\Program Files\BitTorrent\BitTorrent.exe:BitTorrent (UDP-In)
"TCP Query User{723D7E9B-EA0A-4CE6-9EE6-99C7DF398231}C:\\users\\tommy\\program files\\dna\\btdna.exe"= UDP:C:\users\tommy\program files\dna\btdna.exe:btdna.exe
"UDP Query User{CE8857F6-9185-49EC-B2C5-EFFD9D03D0F9}C:\\users\\tommy\\program files\\dna\\btdna.exe"= TCP:C:\users\tommy\program files\dna\btdna.exe:btdna.exe
"TCP Query User{ED27060A-F029-4D88-B653-119ACC7E0573}C:\\program files\\windows live\\messenger\\msnmsgr.exe"= UDP:C:\program files\windows live\messenger\msnmsgr.exe:Windows Live Messenger
"UDP Query User{5C1C93ED-766D-43BF-8D12-1AEB86873CF5}C:\\program files\\windows live\\messenger\\msnmsgr.exe"= TCP:C:\program files\windows live\messenger\msnmsgr.exe:Windows Live Messenger
"TCP Query User{F75229D4-E5D5-4C73-89C6-F5F110BF0AD2}C:\\program files\\windows sidebar\\sidebar.exe"= UDP:C:\program files\windows sidebar\sidebar.exe:Windows Sidebar
"UDP Query User{1DA92844-93E7-4351-80CB-15742D524B5E}C:\\program files\\windows sidebar\\sidebar.exe"= TCP:C:\program files\windows sidebar\sidebar.exe:Windows Sidebar
"TCP Query User{578A0198-E145-4039-9089-257471857DFA}C:\\program files\\limewire\\limewire.exe"= UDP:C:\program files\limewire\limewire.exe:LimeWire
"UDP Query User{F8032233-9C27-4734-97DE-FEC968FED6E0}C:\\program files\\limewire\\limewire.exe"= TCP:C:\program files\limewire\limewire.exe:LimeWire
"{1A9C6170-2BC8-4C37-9873-247354FF7165}"= UDP:C:\Windows\System32\PnkBstrA.exe

nkBstrA
"{2A1E71A7-3C5A-4E2F-A538-A74BCE5B36E6}"= TCP:C:\Windows\System32\PnkBstrA.exe

nkBstrA
"{FD34D9C6-29DA-4902-A86F-E9A03F08454C}"= UDP:C:\Windows\System32\PnkBstrB.exe

nkBstrB
"{02A17AB0-EE1D-4195-9A2E-56019C444E06}"= TCP:C:\Windows\System32\PnkBstrB.exe

nkBstrB
"{3A2597A5-D136-46A6-8D19-0487835E794D}"= UDP:C:\Program Files\Activision\Call of Duty - World at War\CoDWaWmp.exe:Call of Duty(R) - World at War(TM)
"{5343297E-0BF2-4705-ADE9-3B57505C7F85}"= TCP:C:\Program Files\Activision\Call of Duty - World at War\CoDWaWmp.exe:Call of Duty(R) - World at War(TM)
"{A1F48115-DFB2-41C4-B1B7-79E16BEB775A}"= UDP:C:\Program Files\Activision\Call of Duty - World at War\CoDWaW.exe:Call of Duty(R) - World at War(TM)
"{64FA7715-43CD-46F6-B3F2-B1606139A82C}"= TCP:C:\Program Files\Activision\Call of Duty - World at War\CoDWaW.exe:Call of Duty(R) - World at War(TM)
"{2C4F428A-54A8-44E6-AFF0-ECEFAFD69497}"= UDP:C:\Program Files\Sports Interactive\Football Manager 2009 Demo\fm.exe:Football Manager 2009 Demo
"{A7A0C3B7-C1E0-4731-B715-CFC524234DC2}"= TCP:C:\Program Files\Sports Interactive\Football Manager 2009 Demo\fm.exe:Football Manager 2009 Demo
"{11F43972-3A38-4F01-A5A2-B8DDD5B867E9}"= C:\Program Files\Skype\Phone\Skype.exe

kype
"{9B4C4D56-E463-449F-8C4B-37ABBA1FF40D}"= TCP:6004|C:\Program Files\Microsoft Office\Office12\outlook.exe:Microsoft Office Outlook
"{1641B7A6-0ABE-4C66-A7F2-ACB347A080A1}"= UDP:C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:Microsoft Office Groove
"{8465BE7E-0D58-413F-9CDF-3A0D292D5429}"= TCP:C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:Microsoft Office Groove
"{916890E6-EE4A-427F-A146-A5350C20DF08}"= UDP:C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
"{12C4A968-5451-4680-9D4C-1D3E1C3CA87D}"= TCP:C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:Microsoft Office OneNote
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\StandardProfile\AuthorizedApplications\List]
"C:\\Program Files\\BitTorrent\\bittorrent.exe"= C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent
R0 Lbd;Lbd;C:\Windows\System32\drivers\Lbd.sys [2009-01-24 22:19:15 64160]
R0 mv61xx;mv61xx;C:\Windows\System32\drivers\mv61xx.sys [2008-10-30 21:47:28 150568]
R1 epfwtdir;epfwtdir;C:\Windows\System32\drivers\epfwtdir.sys [2007-12-21 08:21:56 33800]
R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv.sys [2008-12-04 13:50:04 8944]
R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [2008-12-04 13:50:02 55024]
R2 ekrn;Eset Service;C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2007-12-21 08:21:16 468224]
R2 ISPMonitorSrv;ISP Monitor;C:\Program Files\ISP Monitor\ISPMonitorSrv.exe [2007-08-23 00:55:16 36864]
R2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe [2009-01-18 22:34:37 950096]
R2 MBAMService;MBAMService;C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2009-02-01 18:31:31 170640]
R2 RalinkRegistryWriter;Ralink Registry Writer;C:\Program Files\Ralink\Common\RalinkRegistryWriter.exe [2009-01-31 10:20:22 75040]
R3 CT20XUT.SYS;CT20XUT.SYS;C:\Windows\System32\drivers\CT20XUT.sys [2008-08-06 23:01:54 198168]
R3 CTEXFIFX.SYS;CTEXFIFX.SYS;C:\Windows\System32\drivers\CTEXFIFX.sys [2008-08-06 23:02:22 1353240]
R3 CTHWIUT.SYS;CTHWIUT.SYS;C:\Windows\System32\drivers\CTHWIUT.sys [2008-08-06 23:02:02 73752]
R3 ha20x22k;Creative 20X2 HAL Driver;C:\Windows\System32\drivers\ha20x22k.sys [2008-08-06 23:03:58 1221144]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2009-02-01 18:31:32 15504]
R3 netr28u;RT2870 USB Wireless LAN Card Driver for Vista;C:\Windows\System32\drivers\netr28u.sys [2008-10-30 20:58:10 552448]
R3 SASENUM;SASENUM;C:\Program Files\SUPERAntiSpyware\SASENUM.SYS [2008-12-04 13:50:06 7408]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2008-12-05 20:28:05 79360]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2008-12-05 20:09:16 79360]
S3 Creative Dolby Digital Live Pack Licensing Service;Creative Dolby Digital Live Pack Licensing Service;C:\Program Files\Common Files\Creative Labs Shared\Service\DDLLicensing.exe [2008-11-04 19:33:58 79360]
S3 CT20XUT;CT20XUT;C:\Windows\System32\drivers\CT20XUT.sys [2008-08-06 23:01:54 198168]
S3 CTEXFIFX;CTEXFIFX;C:\Windows\System32\drivers\CTEXFIFX.sys [2008-08-06 23:02:22 1353240]
S3 CTHWIUT;CTHWIUT;C:\Windows\System32\drivers\CTHWIUT.sys [2008-08-06 23:02:02 73752]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
bthsvcs REG_MULTI_SZ BthServ
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{4456a587-c9ec-11dd-a4e4-00221523e01a}]
\shell\AutoRun\command - H:\Autorun.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d807ed1a-d899-11dd-a588-000272150f17}]
\shell\AutoRun\command - I:\Autorun.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{d807ed1c-d899-11dd-a588-000272150f17}]
\shell\AutoRun\command - J:\Autorun.exe
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
"C:\Program Files\Common Files\LightScribe\LSRunOnce.exe"
.
Inhoud van de 'Gedeelde Taken' map
2009-02-02 C:\Windows\Tasks\Ad-Aware Update (Weekly).job
- C:\Program Files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-01-31 22:19]
2009-01-31 C:\Windows\Tasks\OGADaily.job
- C:\Windows\system32\OGAVerify.exe [2008-12-31 17:04]
2009-02-04 C:\Windows\Tasks\OGALogon.job
- C:\Windows\system32\OGAVerify.exe [2008-12-31 17:04]
2009-02-04 C:\Windows\Tasks\RtlVistaStart.job
- C:\Program Files\ASUS WiFi-AP Solo\RtWLan.exe []
mStart Page = hxxp://breedband.telenet.be
mWindow Title = Telenet Internet
IE: Afbeelding verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: E&xporteren naar Microsoft Excel - C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Formulieren opslaan - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
IE: Invul Formulieren - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
IE: Menu aanpassen - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
IE: Pagina verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: RoboForm Werkbalk - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
FF - ProfilePath - C:\Users\Tommy\AppData\Roaming\Mozilla\Firefox\Profiles\zyfu74p9.default\
FF - prefs.js: browser.startup.homepage - hxxp://nl.start2.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:nl

fficial
FF - component: C:\Program Files\Mozilla Firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\components\NPComponent.dll
FF - plugin: C:\Program Files\Microsoft\Office Live\npOLW.dll
FF - plugin: C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: C:\Program Files\Mozilla Firefox\plugins\npbittorrent.dll
FF - plugin: C:\Users\Tommy\Program Files\DNA\plugins\npbtdna.dll