Ga naar inhoud

marleen2

Lid
 Bekijk profiel  Bekijk hun activiteit

  • Items

    217

  • Registratiedatum

  • Laatst bezocht

 Inhoudstype 

Alles dat geplaatst werd door marleen2

  1. marleen2
    Bedankt voor de hulp:top:
  2. marleen2
    Ik denk dat alles zo goed als normaal is nu. Mag ik de programma's die ik heb gedownload terug verwijderen?
  3. marleen2
    Het is nog altijd hetzelfde.
  4. marleen2
    Hier het logje ComboFix 14-02-14.01 - Patrick 15/02/2014 14:14:55.7.2 - x86 Microsoft Windows XP Professional 5.1.2600.3.1252.31.1043.18.2037.1295 [GMT 1:00] Gestart vanuit: c:\documents and settings\Patrick\Mijn documenten\Downloads\ComboFix.exe AV: Avira Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\documents and settings\All Users\Application Data\TEMP c:\windows\IsUn0413.exe c:\windows\system32\regdacl c:\windows\system32\regdacl\doc\RegAudit.GIF c:\windows\system32\regdacl\doc\RegAudit_e.htm c:\windows\system32\regdacl\doc\RegDACL.GIF c:\windows\system32\regdacl\doc\RegDACL_el.htm c:\windows\system32\regdacl\doc\RegDACL_er1.htm c:\windows\system32\regdacl\doc\RegDACL_er2.htm c:\windows\system32\regdacl\doc\RegDACL_er3.htm c:\windows\system32\regdacl\doc\RegDACLe.htm c:\windows\system32\regdacl\doc\RegLast_e.htm c:\windows\system32\regdacl\doc\RegOwner.GIF c:\windows\system32\regdacl\doc\RegOwner_e.htm c:\windows\system32\regdacl\doc\SMWNCV.cmd c:\windows\system32\regdacl\Orderinfo.htm c:\windows\system32\regdacl\RegToolsHelp.htm c:\windows\system32\Thumbs.db . . (((((((((((((((((((( Bestanden Gemaakt van 2014-01-15 to 2014-02-15 )))))))))))))))))))))))))))))) . . 2014-02-14 19:52 . 2014-02-14 20:01 -------- d-----w- C:\AdwCleaner 2014-02-14 18:38 . 2013-10-18 00:11 24064 ----a-w- c:\windows\zoek-delete.exe 2014-02-14 18:22 . 2014-02-14 18:36 -------- d-----w- C:\zoek_backup 2014-02-14 14:45 . 2014-02-14 14:45 -------- d-----w- C:\rsit 2014-02-08 08:37 . 2014-02-08 08:37 5556104 ----a-w- c:\windows\system32\FlashPlayerInstaller.exe . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2014-02-08 08:37 . 2012-07-10 06:06 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2014-02-08 08:37 . 2011-06-19 06:49 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2014-02-06 03:38 . 2008-04-15 12:00 920064 ----a-w- c:\windows\system32\wininet.dll 2014-02-05 23:08 . 2008-04-15 12:00 43520 ------w- c:\windows\system32\licmgr10.dll 2014-02-05 23:08 . 2008-04-15 12:00 18944 ----a-w- c:\windows\system32\corpol.dll 2014-02-05 23:08 . 2008-04-15 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl 2014-02-05 22:29 . 2008-04-15 12:00 385024 ------w- c:\windows\system32\html.iec 2014-01-06 19:23 . 2014-01-06 19:23 4558848 ----a-w- c:\windows\system32\GPhotos.scr 2014-01-04 03:12 . 2008-04-15 12:00 420864 ----a-w- c:\windows\system32\vbscript.dll 2013-12-19 09:57 . 2013-02-20 17:52 90400 ----a-w- c:\windows\system32\drivers\avgntflt.sys 2013-12-19 09:57 . 2013-02-20 17:52 135648 ----a-w- c:\windows\system32\drivers\avipbb.sys 2013-12-12 09:03 . 2013-02-20 17:52 37352 ----a-w- c:\windows\system32\drivers\avkmgr.sys 2013-12-05 11:25 . 2008-04-15 12:00 1172992 ----a-w- c:\windows\system32\msxml3.dll 2013-11-27 20:21 . 2008-04-15 12:00 40960 ----a-w- c:\windows\system32\drivers\ndproxy.sys 2010-02-01 18:11 203776 --sh--w- c:\windows\system32\unrar.exe . . ------- Sigcheck ------- Note: Unsigned files aren't necessarily malware. . [-] 2008-07-07 20:30 . 97912DC0679D2DA60CCE589BBC196D72 . 253952 . . [2001.12.4414.706] . . c:\windows\system32\es.dll [7] 2008-04-15 12:00 . 42A7FC383B174D91162EBF44C8AA5349 . 246272 . . [2001.12.4414.701] . . c:\windows\system32\dllcache\es.dll . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "XGIWatchDog"="XWatDog.exe" [2005-01-28 81920] "NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552] "RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2003-10-31 32768] "Easy-PrintToolBox"="c:\program files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE" [2006-10-17 398944] "RTHDCPL"="RTHDCPL.EXE" [2008-02-13 16857600] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2007-09-05 141848] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2007-09-05 166424] "Persistence"="c:\windows\system32\igfxpers.exe" [2007-09-05 137752] "QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2009-05-26 413696] "FLMOFFICE4DMOUSE"="c:\program files\Browser MOUSE\mouse32a.exe" [2011-10-21 360448] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904] "avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2013-12-19 684600] . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] SecurityProviders msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, IhqustiWxozf.dll . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Documents and Settings\\Patrick\\Local Settings\\Application Data\\Facebook\\Video\\Skype\\FacebookVideoCalling.exe"= . R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [20/02/2013 18:52 37352] R2 AntiVirSchedulerService;Avira Planner;c:\program files\Avira\AntiVir Desktop\sched.exe [20/02/2013 18:52 440376] S3 EverestDriver;Lavalys EVEREST Kernel Driver;\??\h:\grijze stick\everest\kerneld.wnt --> h:\grijze stick\everest\kerneld.wnt [?] S3 PID_0920;Logitech QuickCam Express(PID_0920);c:\windows\system32\drivers\LV532AV.SYS [17/03/2013 17:17 152576] S3 Xgiv3;Xgiv3;c:\windows\system32\drivers\Xgiv3m.sys [15/05/2006 11:40 343040] . Inhoud van de 'Gedeelde Taken' map . 2014-02-15 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-10 08:37] . 2014-02-13 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 15:57] . 2014-02-14 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-842925246-1202660629-1644491937-1003Core.job - c:\documents and settings\Patrick\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe [2013-03-17 16:20] . 2014-02-14 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-842925246-1202660629-1644491937-1003UA.job - c:\documents and settings\Patrick\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe [2013-03-17 16:20] . 2011-03-14 c:\windows\Tasks\MP Scheduled Scan.job - c:\program files\Microsoft Security Client\Antimalware\MpCmdRun.exe [2010-11-11 11:26] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.com uInternet Connection Wizard,ShellNext = iexplore uInternet Settings,ProxyOverride = *.local IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 TCP: DhcpNameServer = 195.130.130.131 195.130.131.131 FF - ProfilePath - c:\documents and settings\Patrick\Application Data\Mozilla\Firefox\Profiles\r26woi8r.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.google.be/ . - - - - ORPHANS VERWIJDERD - - - - . Toolbar-10 - (no file) Toolbar-Locked - (no file) SafeBoot-WinDefend . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2014-02-15 14:18 Windows 5.1.2600 Service Pack 3 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\EverestDriver] "ImagePath"="\??\h:\grijze stick\everest\kerneld.wnt" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_12_0_0_44_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_12_0_0_44_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\h–€|ÿÿÿÿ¤•€|ù•9~*] "3140110900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL" . Voltooingstijd: 2014-02-15 14:20:25 ComboFix-quarantined-files.txt 2014-02-15 13:20 ComboFix2.txt 2011-10-02 18:44 . Pre-Run: 14.822.641.664 bytes beschikbaar Post-Run: 14.841.028.608 bytes beschikbaar . - - End Of File - - ED405F4DA10FBFB2AD80027CB05C7254 3051207086651214E435112E51817DC5
  5. marleen2
    Hallo, Het gaat al stukken beter maar echt snel is het nog niet.
  6. marleen2
    # AdwCleaner v3.018 - Report created 14/02/2014 at 21:00:55 # Updated 28/01/2014 by Xplode # Operating System : Microsoft Windows XP Service Pack 3 (32 bits) # Username : Patrick - PC63 # Running from : C:\Documents and Settings\Patrick\Bureaublad\adwcleaner.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKLM\SOFTWARE\Classes\BrowserConnection.Loader Key Deleted : HKLM\SOFTWARE\Classes\BrowserConnection.Loader.1 Key Deleted : HKLM\SOFTWARE\Classes\DnsBHO.BHO Key Deleted : HKLM\SOFTWARE\Classes\DnsBHO.BHO.1 Key Deleted : HKLM\SOFTWARE\Classes\ScriptHost.Tool Key Deleted : HKLM\SOFTWARE\Classes\ScriptHost.Tool.1 Key Deleted : HKLM\SOFTWARE\Classes\AppID\{AC662AF2-4601-4A68-84DF-A3FE83F1A5F9} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C17DC5CF-54FF-4E63-8AC7-94335D6DA231} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D14D0EE2-2DD1-4230-BE70-3F3AD6172C40} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D97A8234-F2A2-4AD4-91D5-FECDB2C553AF} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{327C2873-E90D-4C37-AA9D-10AC9BABA46C} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{061F450C-37B9-4330-9235-0F25D9F75B33} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{22FEB0F5-0BA0-4D4B-8A66-55A21667BC31} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D2B79F7D-2D7D-4420-B2A9-ECE52C7C83A0} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{1D55DAA5-04AC-4036-B0BE-DA81EE9676CD} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{212C2C4F-C845-4FBC-9561-C833A13D8DCE} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{3C5D1D57-16C8-473C-A552-37B8D88596FE} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4A115D8A-6A7B-4C72-92B1-2E2D01F36979} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{58CBF821-A0C7-4AE8-9430-77DD1AF38E99} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{72BCBFF7-2837-4CA0-B3B5-3DAED7F54601} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{824125FD-7732-4DA2-9277-3A7D0A0A0813} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{99DF8440-814E-497F-BDDD-FB93E9E9DF96} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{327C2873-E90D-4C37-AA9D-10AC9BABA46C} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{327C2873-E90D-4C37-AA9D-10AC9BABA46C} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{83CAD530-387D-40FD-82EA-B9E863D92A9B} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{C17DC5CF-54FF-4E63-8AC7-94335D6DA231} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D14D0EE2-2DD1-4230-BE70-3F3AD6172C40} Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{327C2873-E90D-4C37-AA9D-10AC9BABA46C}] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}] Key Deleted : HKCU\Software\Softonic Key Deleted : HKCU\Software\YahooPartnerToolbar Key Deleted : HKLM\Software\SimplyGen Key Deleted : HKLM\Software\systweak Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{79A765E1-C399-405B-85AF-466F52E918B0} ***** [ Browsers ] ***** -\\ Internet Explorer v8.0.6001.18702 Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [start Page] -\\ Mozilla Firefox v27.0.1 (nl) [ File : C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\g1j8go7q.default\prefs.js ] [ File : C:\Documents and Settings\Patrick\Application Data\Mozilla\Firefox\Profiles\r26woi8r.default\prefs.js ] [ File : C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\k843kv05.default\prefs.js ] -\\ Google Chrome v [ File : C:\Documents and Settings\Patrick\Local Settings\Application Data\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [4287 octets] - [14/02/2014 20:52:51] AdwCleaner[R1].txt - [4347 octets] - [14/02/2014 20:55:29] AdwCleaner[R2].txt - [4407 octets] - [14/02/2014 20:56:56] AdwCleaner[R3].txt - [4467 octets] - [14/02/2014 21:00:21] AdwCleaner[s0].txt - [4393 octets] - [14/02/2014 21:00:55] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [4453 octets] ##########
  7. marleen2
    Zoek.exe v5.0.0.0 Updated 13-February-2014 Tool run by Patrick on vr 14/02/2014 at 19:22:40,06. Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86 Running in: Normal Mode Internet Access Detected Launched: C:\DOCUME~1\Patrick\LOCALS~1\Temp\Tijdelijke map 1 voor zoek.zip\zoek.com [scan all users] [script inserted] [Checkboxes used] ==== Older Logs ====================== C:\zoek-results2013-02-21-151702.log 62329 bytes ==== Empty Folders Check ====================== C:\Program Files\BearShare Applications deleted successfully C:\Program Files\Foxit Software deleted successfully C:\Program Files\Fun&Leren deleted successfully C:\Program Files\MSXML 4.0 deleted successfully C:\Program Files\VS Revo Group deleted successfully C:\Documents and Settings\LocalService\Application Data\Google deleted successfully C:\Documents and Settings\Patrick\Application Data\wincorebsband deleted successfully C:\Documents and Settings\Patrick\Application Data\WinRAR deleted successfully C:\Documents and Settings\Patrick\Local Settings\Application Data\KodakGallery deleted successfully C:\Documents and Settings\Patrick\Local Settings\Application Data\PackageAware deleted successfully C:\Documents and Settings\Patrick\Local Settings\Application Data\WMTools Downloaded Files deleted successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\Documents and Settings\Patrick\Application Data\Mozilla\Firefox\Profiles\r26woi8r.default\extensions\{1224f04f-a4da-435d-be66-53339d7abf66} deleted C:\Documents and Settings\Patrick\Application Data\Mozilla\Firefox\Profiles\r26woi8r.default\extensions\{f6a7ad5b-07a9-419b-9612-eb7f322919b5} deleted C:\Documents and Settings\Patrick\Application Data\DVDVideoSoftIEHelpers deleted C:\Documents and Settings\Default User\Local Settings\Application Data\AskToolbar deleted C:\WINDOWS\SET3.tmp deleted C:\WINDOWS\SET4.tmp deleted C:\WINDOWS\SET8.tmp deleted C:\Documents and Settings\Patrick\AppData\LocalLow\DataMngr deleted C:\Documents and Settings\Patrick\Application Data\Mozilla\Firefox\Profiles\r26woi8r.default\searchplugins\askcom.xml deleted "C:\Documents and Settings\All Users\Application Data\F4D55F3B000D24F2000022E0D151FC4E\F4D55F3B000D24F2000022E0D151FC4E" deleted "C:\Documents and Settings\All Users\Application Data\F4D55F3B000D24F2000022E0D151FC4E" deleted ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== ====== C:\DOCUME~1\Patrick\LOCALS~1\Temp ==== ====== Java Cache ===== ====== C:\WINDOWS\system32 ===== 2014-02-08 08:37:27 504A71BECE129516D421A54983F8637C 5556104 ----a-w- C:\WINDOWS\System32\FlashPlayerInstaller.exe ====== C:\WINDOWS\system32\drivers ===== ====== C:\WINDOWS\Tasks ====== ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== ======= C: ===== ====== C:\Documents and Settings\Patrick\Application Data ====== ====== C:\Documents and Settings\Patrick ====== ====== C: exe-files == 2014-02-14 14:45:15 9A2347903D6EDB84C10F288BC0578C1C 388608 ----a-w- C:\Program Files\Trend Micro\Patrick.exe 2014-02-14 14:44:53 69CA82A7482A00D8EE063D2B97FC4338 781383 ----a-w- C:\Documents and Settings\Patrick\Local Settings\Temporary Internet Files\Content.IE5\E4OEXWQY\RSIT[1].exe 2014-02-14 14:01:05 338037EFA0E8E8699B2667D57B751574 118896 ----a-w- C:\Program Files\Mozilla Maintenance Service\maintenanceservice_tmp.exe 2014-02-13 22:00:55 2BF1A08F7CB7752AF697EE228514497F 234872 -c----w- C:\WINDOWS\ie8updates\KB2909921-IE8\spuninst\spuninst.exe 2014-02-13 22:00:49 0EF66D4EC3806B797F2CCF8811763554 174592 -c----w- C:\WINDOWS\ie8updates\KB2909921-IE8\ie4uinit.exe 2014-02-08 08:37:27 504A71BECE129516D421A54983F8637C 5556104 ----a-w- C:\WINDOWS\system32\FlashPlayerInstaller.exe === C: other files == ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-842925246-1202660629-1644491937-1003\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" "Facebook Update"="C:\Documents and Settings\Patrick\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "XGIWatchDog"="XWatDog.exe" "NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" "RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" "Easy-PrintToolBox"="C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon" "RTHDCPL"="RTHDCPL.EXE" "IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" "HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" "Persistence"="C:\WINDOWS\system32\igfxpers.exe" "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe -atboottime" "FLMOFFICE4DMOUSE"="C:\Program Files\Browser MOUSE\mouse32a.exe" "HotKey"="C:\WINDOWS\Twain_32\SlimU2\HotKey.exe" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "avgnt"="C:\Program Files\Avira\AntiVir Desktop\avgnt.exe /min" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" "Facebook Update"="C:\Documents and Settings\Patrick\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a------ C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [08/02/2014 09:37] C:\WINDOWS\tasks\AppleSoftwareUpdate.job --a------ C:\Program Files\AppleC:oftware Update\SoftwareUpdate.exe [] C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-842925246-1202660629-1644491937-1003Core.job --a------ C:\Documents and Settings\Patrick\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe [17/03/2013 17:20] C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-842925246-1202660629-1644491937-1003UA.job --a------ C:\Documents and Settings\Patrick\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe [17/03/2013 17:20] C:\WINDOWS\tasks\MP Scheduled Scan.job --a------ C:\Program Files\Microsoft Security Client\Antimalware\MpCmdRun.exe [11/11/2010 12:26] ==== Firefox Extensions Registry ====================== [HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions] "{20a82645-c095-46ed-80e3-08825760534b}"="c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension" [29/09/2011 21:49] ==== Firefox Extensions ====================== ProfilePath: C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\g1j8go7q.default - Undetermined - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - Wincore Mediabar - %ProfilePath%\extensions\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - XUL Cache - %ProfilePath%\extensions\{f6a7ad5b-07a9-419b-9612-eb7f322919b5} ProfilePath: C:\Documents and Settings\Patrick\Application Data\Mozilla\Firefox\Profiles\r26woi8r.default - Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff - Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension AppDir: C:\Program Files\Mozilla Firefox - Default - %AppDir%\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Documents and Settings\Patrick\Application Data\Mozilla\Firefox\Profiles\r26woi8r.default FD6ACD9D85177259D442A0C4AC15F7B8 - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_12_0_0_44.dll - Shockwave Flash 5B4DA1113F240C3F06FFF9D52761528B - C:\Program Files\Google\Picasa3\npPicasa3.dll - Picasa 3220B1254AEF7A191187EC03F51B3D61 - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll - Adobe Acrobat B2576571746839180833E048AC2CCA5C - C:\Program Files\Adobe\Reader 10.0\Reader\browser\nppdf32.dll - Adobe Acrobat FF0D6F82A0EC13952E83B9439100E45D - C:\Documents and Settings\Patrick\Local Settings\Application Data\Facebook\Video\Skype\npFacebookVideoCalling.dll - Facebook Video Calling Plugin BE501CBC29B2025A263D80D399F1797A - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll - Silverlight Plug-In 0C0C5C207121C7A78414A8250E8E099A - C:\WINDOWS\system32\Adobe\Director\np32dsw_1204144.dll - Shockwave for Director / Shockwave for Director BAB5713218F36AE9E3316BE7EA8205C4 - C:\Program Files\QuickTime\Plugins\npqtplugin7.dll - QuickTime Plug-in 7.6.2 C53ED4A1AC5444B0F1DDC5B29DFE12D1 - C:\Program Files\QuickTime\Plugins\npqtplugin6.dll - QuickTime Plug-in 7.6.2 3D191A198A42E10F467B931506F04D36 - C:\Program Files\QuickTime\Plugins\npqtplugin5.dll - QuickTime Plug-in 7.6.2 900FFBF94D1727880C35AF12B01F1BE5 - C:\Program Files\QuickTime\Plugins\npqtplugin4.dll - QuickTime Plug-in 7.6.2 0EFF3BA201A53D108CB0E9E9C7F7C097 - C:\Program Files\QuickTime\Plugins\npqtplugin3.dll - QuickTime Plug-in 7.6.2 3534C9F673B432FE5D9BD34DB016D3C0 - C:\Program Files\QuickTime\Plugins\npqtplugin2.dll - QuickTime Plug-in 7.6.2 360F1BB4F7B99D9140D2C4558610A1BC - C:\Program Files\QuickTime\Plugins\npqtplugin.dll - QuickTime Plug-in 7.6.2 C953747215143628D3724340FAF73BD4 - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll - Java Deployment Toolkit 6.0.220.4 3ED8E561044723C6039A8A20A3AE60CC - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll - Java Platform SE 6 U22 D94C362E750F8C283BF52537D3DF28B5 - C:\Documents and Settings\Patrick\Application Data\Facebook\npfbplugin_1_0_3.dll - Facebook Plugin F89A93D84955FC558E1C23F2B3A23240 - C:\Documents and Settings\Patrick\Application Data\Facebook\npfbplugin_1_0_0.dll - Facebook Plugin FC5866F7793AF2CBCD425CC4B8D32A9E - C:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll - Zylom Plugin AB87EEFFD18F2BAAFC274E7075EA6C67 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation 901DF887DBDF87FA3C659239F68F3228 - C:\Program Files\Windows Media Player\npdrmv2.dll - Microsoft® DRM 0F9DEA5814D22F83FED5F427E263DED0 - C:\Program Files\Windows Media Player\npdsplay.dll - Windows Media Player Plug-in Dynamic Link Library F89E6BBD6A080D8C714DFB6F30678288 - C:\Program Files\Windows Media Player\npwmsdrm.dll - Microsoft® DRM B27CCB1168B1960AEC6E9D3E0E0F0D2A - C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrlui.dll - Microsoft® Silverlight ==== Deleted Firefox Extensions ====================== C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\g1j8go7q.default\extensions\{f6a7ad5b-07a9-419b-9612-eb7f322919b5} deleted C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\g1j8go7q.default\extensions\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} deleted ==== Chrome Look ====================== YouTube - Patrick\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - Patrick\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Gmail - Patrick\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Search Free: Avira Search Free powered by Ask.com" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Search Free: Avira Search Free powered by Ask.com" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} @ieframe.dll,-12512 Url="{searchTerms} - Bing" {667E9404-80B4-4FCE-8951-FB3BCEB3C6AB} Live Search Url="{searchTerms} - Bing" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" ==== Empty IE Cache ====================== C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\Documents and Settings\Patrick\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\Documents and Settings\Patrick\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla\Firefox\Profiles\k843kv05.default\Cache emptied successfully C:\Documents and Settings\Default User\Local Settings\Application Data\Mozilla\Firefox\Profiles\k843kv05.default\Cache emptied successfully C:\Documents and Settings\LocalService\Local Settings\Application Data\Mozilla\Firefox\Profiles\g1j8go7q.default\Cache emptied successfully C:\Documents and Settings\Patrick\Local Settings\Application Data\Mozilla\Firefox\Profiles\r26woi8r.default\Cache emptied successfully ==== Empty Chrome Cache ====================== C:\Documents and Settings\Patrick\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=498 folders=49 6896234 bytes) ==== Empty Temp Folders ====================== C:\Documents and Settings\Administrator\Local Settings\Temp emptied successfully C:\Documents and Settings\Default User\Local Settings\Temp emptied successfully C:\Documents and Settings\LocalService\Local Settings\Temp emptied successfully C:\Documents and Settings\NetworkService\Local Settings\Temp emptied successfully C:\WINDOWS\system32\config\systemprofile\Local Settings\Temp emptied successfully C:\Documents and Settings\Patrick\Local Settings\Temp will be emptied at reboot C:\WINDOWS\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\DOCUME~1\Patrick\LOCALS~1\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\RECYCLER successfully emptied ==== Deleting Files / Folders ====================== "C:\Documents and Settings\Patrick\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found ==== EOF on vr 14/02/2014 at 19:40:31,51 ======================
  8. marleen2
    Logfile of random's system information tool 1.09 (written by random/random) Run by Patrick at 2014-02-14 15:45:14 Microsoft Windows XP Professional Service Pack 3 System drive C: has 13 GB (44%) free of 30 GB Total RAM: 2037 MB (63% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 15:45:19, on 14/02/2014 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\Program Files\Browser MOUSE\mouse32a.exe C:\WINDOWS\Twain_32\SlimU2\HotKey.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\WINDOWS\system32\igfxsrvc.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Avira\AntiVir Desktop\avshadow.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Outlook Express\msimn.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Documents and Settings\Patrick\Local Settings\Temporary Internet Files\Content.IE5\E4OEXWQY\RSIT[1].exe C:\Program Files\trend micro\Patrick.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Search Free: Avira Search Free powered by Ask.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = Bing R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O4 - HKLM\..\Run: [XGIWatchDog] XWatDog.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Browser MOUSE\mouse32a.exe O4 - HKLM\..\Run: [HotKey] C:\WINDOWS\Twain_32\SlimU2\HotKey.exe O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Facebook Update] "C:\Documents and Settings\Patrick\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Avira Planner (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- End of file - 6462 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\Adobe Flash Player Updater.job C:\WINDOWS\tasks\AppleSoftwareUpdate.job C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-842925246-1202660629-1644491937-1003Core.job C:\WINDOWS\tasks\FacebookUpdateTaskUserS-1-5-21-842925246-1202660629-1644491937-1003UA.job C:\WINDOWS\tasks\MP Scheduled Scan.job =========Mozilla firefox========= ProfilePath - C:\Documents and Settings\Patrick\Application Data\Mozilla\Firefox\Profiles\r26woi8r.default prefs.js - "browser.startup.homepage" - "Google" "jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff "{20a82645-c095-46ed-80e3-08825760534b}"=c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer] "Description"=Adobe® Flash® Player 12.0.0.44 Plugin "Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32_12_0_0_44.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/ShockwavePlayer] "Description"=Adobe Shockwave Player "Path"=C:\WINDOWS\system32\Adobe\Director\np32dsw_1204144.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@google.com/npPicasa3,version=3.0.0] "Description"=Picasa3 plugin "Path"=C:\Program Files\Google\Picasa3\npPicasa3.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin] "Description"=Oracle® Next Generation Java™ Plug-In "Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0] "Description"=Ag Player Plugin "Path"=C:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5] "Description"=Windows Presentation Foundation plug-in for Mozilla browsers "Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@zylom.com/ZylomGamesPlayer] "Description"=Zylom Games Player 1.00 "Path"=C:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll [HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader] "Description"=Handles PDFs in-place in Firefox "Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll C:\Program Files\Mozilla Firefox\components\ nsIQTScriptablePlugin.xpt nsIZylomPlugin.xpt C:\Program Files\Mozilla Firefox\plugins\ npdeployJava1.dll NPOFFICE.DLL nppdf32.dll npqtplugin.dll npqtplugin2.dll npqtplugin3.dll npqtplugin4.dll npqtplugin5.dll npqtplugin6.dll npqtplugin7.dll npzylomgamesplayer.dll QuickTimePlugin.class C:\Documents and Settings\Patrick\Application Data\Mozilla\Firefox\Profiles\r26woi8r.default\extensions\ {1224f04f-a4da-435d-be66-53339d7abf66} {f6a7ad5b-07a9-419b-9612-eb7f322919b5} C:\Documents and Settings\Patrick\Application Data\Mozilla\Firefox\Profiles\r26woi8r.default\searchplugins\ askcom.xml ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2006-06-09 552960] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "XGIWatchDog"=C:\WINDOWS\system32\XWatDog.exe [2005-01-28 81920] "NeroFilterCheck"=C:\WINDOWS\system32\NeroCheck.exe [2001-07-09 155648] "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552] "RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2003-10-31 32768] "Easy-PrintToolBox"=C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE [2006-10-17 398944] "RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-02-13 16857600] "IgfxTray"=C:\WINDOWS\system32\igfxtray.exe [2007-09-05 141848] "HotKeysCmds"=C:\WINDOWS\system32\hkcmd.exe [2007-09-05 166424] "Persistence"=C:\WINDOWS\system32\igfxpers.exe [2007-09-05 137752] "QuickTime Task"=C:\Program Files\QuickTime\qttask.exe [2009-05-26 413696] "FLMOFFICE4DMOUSE"=C:\Program Files\Browser MOUSE\mouse32a.exe [2011-10-21 360448] "HotKey"=C:\WINDOWS\Twain_32\SlimU2\HotKey.exe [2002-08-07 618496] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904] "avgnt"=C:\Program Files\Avira\AntiVir Desktop\avgnt.exe [2013-12-19 684600] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-15 15360] "Facebook Update"=C:\Documents and Settings\Patrick\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe [2013-03-17 138096] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\WINDOWS\system32\igfxdev.dll [2007-08-24 208896] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll, IhqustiWxozf.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro35] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\hitmanpro35.sys] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=323 "NoDriveAutoRun"=67108863 "NoDrives"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 "NoDriveAutoRun"=67108863 "NoDriveTypeAutoRun"=323 "NoDrives"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "C:\Program Files\BearShare Applications\BearShare\BearShare.exe"="C:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Documents and Settings\Patrick\Local Settings\Application Data\Facebook\Video\Skype\FacebookVideoCalling.exe"="C:\Documents and Settings\Patrick\Local Settings\Application Data\Facebook\Video\Skype\FacebookVideoCalling.exe:*:Enabled:Facebook Video Calling Plugin" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "C:\Program Files\BearShare Applications\BearShare\BearShare.exe"="C:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "midimapper"=midimap.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msadpcm"=msadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.trspch"=tssoft32.acm "vidc.cvid"=iccvid.dll "VIDC.I420"=msh263.drv "vidc.iv31"=ir32_32.dll "vidc.iv32"=ir32_32.dll "vidc.iv41"=ir41_32.ax "VIDC.IYUV"=iyuv_32.dll "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVU9"=tsbyuv.dll "VIDC.YVYU"=msyuv.dll "wavemapper"=msacm32.drv "msacm.msg723"=msg723.acm "vidc.M263"=msh263.drv "vidc.M261"=msh261.drv "msacm.msaudio1"=msaud32.acm "msacm.sl_anet"=sl_anet.acm "msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax "vidc.iv50"=ir50_32.dll "msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "VIDC.ACDV"=ACDV.dll "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux"=wdmaud.drv "MSVideo"=vfwwdm32.dll "MSVideo8"=VfWWDM32.dll ======List of files/folders created in the last 1 month====== 2014-02-14 15:45:14 ----D---- C:\rsit 2014-02-14 14:38:47 ----D---- C:\Program Files\Mozilla Firefox 2014-02-14 10:00:04 ----D---- C:\WINDOWS\LastGood 2014-02-08 09:37:27 ----A---- C:\WINDOWS\system32\FlashPlayerInstaller.exe 2014-01-15 12:01:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2914368$ ======List of files/folders modified in the last 1 month====== 2014-02-14 15:45:19 ----D---- C:\Program Files\Trend Micro 2014-02-14 15:45:18 ----D---- C:\WINDOWS\Prefetch 2014-02-14 15:45:17 ----D---- C:\WINDOWS\Temp 2014-02-14 15:01:05 ----RD---- C:\Program Files 2014-02-14 15:01:05 ----D---- C:\Program Files\Mozilla Maintenance Service 2014-02-14 11:32:32 ----D---- C:\WINDOWS\Microsoft.NET 2014-02-14 11:32:30 ----RSD---- C:\WINDOWS\assembly 2014-02-14 11:16:20 ----D---- C:\WINDOWS 2014-02-14 10:02:39 ----SHD---- C:\WINDOWS\Installer 2014-02-14 10:02:18 ----D---- C:\WINDOWS\system32 2014-02-14 10:02:18 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2014-02-14 10:01:50 ----D---- C:\WINDOWS\WinSxS 2014-02-14 10:00:06 ----D---- C:\WINDOWS\inf 2014-02-14 10:00:03 ----D---- C:\WINDOWS\system32\CatRoot2 2014-02-13 23:01:11 ----A---- C:\WINDOWS\SchedLgU.Txt 2014-02-13 23:01:06 ----A---- C:\WINDOWS\imsins.BAK 2014-02-13 23:01:03 ----RSHDC---- C:\WINDOWS\system32\dllcache 2014-02-13 23:00:59 ----D---- C:\Program Files\Internet Explorer 2014-02-13 23:00:47 ----D---- C:\WINDOWS\ie8updates 2014-02-08 09:37:30 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe 2014-02-06 04:38:34 ----A---- C:\WINDOWS\system32\wininet.dll 2014-02-06 00:08:31 ----N---- C:\WINDOWS\system32\occache.dll 2014-02-06 00:08:31 ----N---- C:\WINDOWS\system32\mstime.dll 2014-02-06 00:08:31 ----N---- C:\WINDOWS\system32\licmgr10.dll 2014-02-06 00:08:31 ----N---- C:\WINDOWS\system32\jsproxy.dll 2014-02-06 00:08:31 ----N---- C:\WINDOWS\system32\iedkcs32.dll 2014-02-06 00:08:31 ----A---- C:\WINDOWS\system32\urlmon.dll 2014-02-06 00:08:31 ----A---- C:\WINDOWS\system32\url.dll 2014-02-06 00:08:31 ----A---- C:\WINDOWS\system32\mshtmled.dll 2014-02-06 00:08:31 ----A---- C:\WINDOWS\system32\mshtml.dll 2014-02-06 00:08:31 ----A---- C:\WINDOWS\system32\msfeedsbs.dll 2014-02-06 00:08:31 ----A---- C:\WINDOWS\system32\msfeeds.dll 2014-02-06 00:08:31 ----A---- C:\WINDOWS\system32\iertutil.dll 2014-02-06 00:08:31 ----A---- C:\WINDOWS\system32\iepeers.dll 2014-02-06 00:08:31 ----A---- C:\WINDOWS\system32\ieframe.dll 2014-02-06 00:08:31 ----A---- C:\WINDOWS\system32\corpol.dll 2014-02-05 23:29:26 ----N---- C:\WINDOWS\system32\ie4uinit.exe 2014-02-05 22:07:06 ----D---- C:\Program Files\Google 2014-02-03 17:13:34 ----D---- C:\WINDOWS\system32\drivers 2014-01-18 16:17:59 ----SHD---- C:\WINDOWS\CSC ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 nv_agp;NVIDIA nForce AGP Bus Filter; C:\WINDOWS\system32\DRIVERS\nv_agp.sys [2004-04-02 21760] R0 nvatabus;nvatabus; C:\WINDOWS\system32\DRIVERS\nvatabus.sys [2004-06-03 79360] R0 ohci1394;Texas Instruments OHCI Compliant IEEE 1394 Host Controller; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696] R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2008-07-31 43872] R1 avipbb;avipbb; C:\WINDOWS\system32\DRIVERS\avipbb.sys [2013-12-19 135648] R1 avkmgr;avkmgr; C:\WINDOWS\system32\DRIVERS\avkmgr.sys [2013-12-12 37352] R1 intelppm;Intel GV3-processorstuurprogramma; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-15 40448] R1 MpFilter;Microsoft Malware Protection Driver; C:\WINDOWS\system32\DRIVERS\MpFilter.sys [2010-10-24 165264] R1 ssmdrv;ssmdrv; C:\WINDOWS\system32\DRIVERS\ssmdrv.sys [2012-08-27 28520] R2 avgntflt;avgntflt; C:\WINDOWS\system32\DRIVERS\avgntflt.sys [2013-12-19 90400] R3 Arp1394;1394 ARP-clientprotocol; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-15 60800] R3 HDAudBus;Microsoft UAA-busstuurprogramma voor High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-15 144384] R3 ialm;ialm; C:\WINDOWS\system32\DRIVERS\igxpmp32.sys [2007-08-24 5776928] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-02-14 4676096] R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [] R3 NIC1394;1394-stuurprogramma; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-15 61824] R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-01-03 105856] R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608] S1 AmdK7;Stuurprogramma voor AMD K7-processor; C:\WINDOWS\system32\DRIVERS\amdk7.sys [2008-04-15 41856] S3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [] S3 catchme;catchme; \??\C:\ComboFix\catchme.sys [] S3 CCDECODE;Closed Caption-decoder; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-14 17024] S3 EverestDriver;Lavalys EVEREST Kernel Driver; \??\H:\grijze stick\everest\kerneld.wnt [] S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys [] S3 HidUsb;Microsoft HID Class-stuurprogramma; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] S3 mouhid;Stuurprogramma voor muis-HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-09-06 12288] S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-14 5504] S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-14 85248] S3 NdisIP;Microsoft TV/Video-verbinding; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-14 10880] S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2004-05-17 33280] S3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2004-05-17 12928] S3 PID_0920;Logitech QuickCam Express(PID_0920); C:\WINDOWS\system32\DRIVERS\LV532AV.SYS [2003-09-16 152576] S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-14 11136] S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-14 15232] S3 USBAAPL;Apple Mobile USB Driver; C:\WINDOWS\System32\Drivers\usbaapl.sys [2009-07-09 39424] S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856] S3 usbscan;Stuurprogramma voor USB-scanner; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2013-07-03 14976] S3 USBSTOR;Stuurprogramma voor USB-massaopslag; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368] S3 WSTCODEC;World Standard Teletext-codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-14 19200] S3 Xgiv3;Xgiv3; C:\WINDOWS\system32\DRIVERS\Xgiv3m.sys [2006-05-15 343040] S4 WS2IFSL;Windows Socket 2.0 Non-IFS-omgeving voor serviceproviderondersteuning; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2008-04-15 12032] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AntiVirSchedulerService;Avira Planner; C:\Program Files\Avira\AntiVir Desktop\sched.exe [2013-12-19 440376] R2 AntiVirService;Avira Real-Time Protection; C:\Program Files\Avira\AntiVir Desktop\avguard.exe [2013-12-12 440376] R2 Apple Mobile Device;Mobiel Apple apparaat; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-07-09 144712] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-04-04 153376] R2 MBAMScheduler;MBAMScheduler; C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-14 398184] R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344] R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-02-08 257928] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104] S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-09-23 194032] S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-02-14 118896] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136] S3 WLSetupSvc;Windows Live Setup Service; C:\Program Files\Windows Live\installer\WLSetupSvc.exe [2007-10-25 266240] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096] -----------------EOF-----------------
  9. marleen2
    Kan er eens iemand naar dit logje kijken? Mijn internet (telenet)werkt heel traag. Ik werk met Mozilla Firefox Alvast bedankt Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 14:48:47, on 14/02/2014 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\Program Files\Browser MOUSE\mouse32a.exe C:\WINDOWS\Twain_32\SlimU2\HotKey.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\WINDOWS\system32\igfxsrvc.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Avira\AntiVir Desktop\avshadow.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Search Free: Avira Search Free powered by Ask.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = Bing R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O4 - HKLM\..\Run: [XGIWatchDog] XWatDog.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Browser MOUSE\mouse32a.exe O4 - HKLM\..\Run: [HotKey] C:\WINDOWS\Twain_32\SlimU2\HotKey.exe O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [Facebook Update] "C:\Documents and Settings\Patrick\Local Settings\Application Data\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Avira Planner (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- End of file - 6278 bytes
  10. marleen2
    Ja het werkt terug !! bedankt:top:
  11. marleen2
    Ik werk wel met mozilla firefox, ik weet niet of dit er iets mee te maken heeft.
  12. marleen2
    Heb dit gedaan en werkt nog steeds niet.
  13. marleen2
    Ik kan in outlook express geen linken meer openen???
  14. marleen2
    Ja nu gaat het wel terug. Bedankt!!
  15. marleen2
    Kan nog steeds geen linken open in outlook express:hmmmm:
  16. marleen2
    Ik heb deze allemaal geprobeerd maar het werkt nog niet.
  17. marleen2
    Ja inderdaad dit heb ik hierboven reeds gemeld
  18. marleen2
    Als ik een mail krijg zoals bv van pc helpforum dan kan je normaal op een zin als deze Windows Xp Kan iemand eens kijken naar dit logje? Is dit ok klikken en dat gaat niet meer:sad
  19. marleen2
    Dit is allemaal gelukt maar ik kan nog steeds niet verder klikken in mijn mails.
  20. marleen2
    Bij het lezen van mails kan ik niet meer verder klikken om een link te lezen.
  21. marleen2
    Er zit maar een account op.
  22. marleen2
    Hier het gevraagde logje Zoek.exe Version 4.0.0.1 Updated 18-02-2013 Tool run by Patrick on do 21/02/2013 at 16:07:14,56. Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86 Running in: Normal Mode Internet Access Detected ==== Running Processes ====================== C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe -k DcomLaunch svchost.exe C:\WINDOWS\System32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\system32\igfxsrvc.exe C:\Program Files\Browser MOUSE\mouse32a.exe C:\WINDOWS\Twain_32\SlimU2\HotKey.exe C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\svchost.exe -k imgsvc C:\Program Files\Avira\AntiVir Desktop\avshadow.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\Patrick\Mijn documenten\Downloads\zoek.exe ==== Possible Rootkit Infection ====================== C:\WINDOWS\installer\{3c403c70-e13d-0872-c829-edb386a7cdd3}\L C:\WINDOWS\installer\{3c403c70-e13d-0872-c829-edb386a7cdd3}\U C:\WINDOWS\installer\{3c403c70-e13d-0872-c829-edb386a7cdd3}\@ ==== Deleting CLSID Registry Keys ====================== HKEY_USERS\S-1-5-21-842925246-1202660629-1644491937-1003\Software\Microsoft\Internet Explorer\SearchScopes\{28CD1BE2-82EC-4889-A5CD-EEA93362B907} deleted successfully HKEY_USERS\S-1-5-21-842925246-1202660629-1644491937-1003\Software\Microsoft\Internet Explorer\SearchScopes\{4FAFDFF7-3A3C-46AA-A036-4DD7C801EA05} deleted successfully HKEY_USERS\S-1-5-21-842925246-1202660629-1644491937-1003\Software\Microsoft\Internet Explorer\SearchScopes\{E7E908B4-FFFD-4795-A017-7A4BB5BF1A26} deleted successfully ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== ABBYY FineReader 5.0 Sprint Adobe Flash Player 11 ActiveX Adobe Flash Player 11 Plugin Adobe Reader X (10.1.4) - Nederlands Adobe Shockwave Player 11.6 Apple Mobile Device Support Apple Software Update Avira Free Antivirus Beveiligingsupdate voor Microsoft Windows (KB2564958) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2482017) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2497640) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2510531) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2530548) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2544521) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2559049) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2586448) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2618444) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2647516) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2675157) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2699988) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2722913) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2744842) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2761465) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2792100) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2797052) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2799329) Beveiligingsupdate voor Windows Internet Explorer 8 (KB971961) Beveiligingsupdate voor Windows Internet Explorer 8 (KB981332) Beveiligingsupdate voor Windows Internet Explorer 8 (KB982381) Beveiligingsupdate voor Windows Media Player (KB2378111) Beveiligingsupdate voor Windows Media Player (KB954155) Beveiligingsupdate voor Windows Media Player (KB968816) Beveiligingsupdate voor Windows Media Player (KB973540) Beveiligingsupdate voor Windows Media Player (KB975558) Beveiligingsupdate voor Windows Media Player (KB978695) Beveiligingsupdate voor Windows Media Player (KB979402) Beveiligingsupdate voor Windows XP (KB2079403) Beveiligingsupdate voor Windows XP (KB2115168) Beveiligingsupdate voor Windows XP (KB2121546) Beveiligingsupdate voor Windows XP (KB2160329) Beveiligingsupdate voor Windows XP (KB2183461) Beveiligingsupdate voor Windows XP (KB2229593) Beveiligingsupdate voor Windows XP (KB2259922) Beveiligingsupdate voor Windows XP (KB2279986) Beveiligingsupdate voor Windows XP (KB2286198) Beveiligingsupdate voor Windows XP (KB2296011) Beveiligingsupdate voor Windows XP (KB2296199) Beveiligingsupdate voor Windows XP (KB2347290) Beveiligingsupdate voor Windows XP (KB2360131) Beveiligingsupdate voor Windows XP (KB2360937) Beveiligingsupdate voor Windows XP (KB2387149) Beveiligingsupdate voor Windows XP (KB2393802) Beveiligingsupdate voor Windows XP (KB2412687) Beveiligingsupdate voor Windows XP (KB2416400) Beveiligingsupdate voor Windows XP (KB2419632) Beveiligingsupdate voor Windows XP (KB2423089) Beveiligingsupdate voor Windows XP (KB2436673) Beveiligingsupdate voor Windows XP (KB2440591) Beveiligingsupdate voor Windows XP (KB2443105) Beveiligingsupdate voor Windows XP (KB2476490) Beveiligingsupdate voor Windows XP (KB2476687) Beveiligingsupdate voor Windows XP (KB2478960) Beveiligingsupdate voor Windows XP (KB2478971) Beveiligingsupdate voor Windows XP (KB2479628) Beveiligingsupdate voor Windows XP (KB2479943) Beveiligingsupdate voor Windows XP (KB2481109) Beveiligingsupdate voor Windows XP (KB2482017) Beveiligingsupdate voor Windows XP (KB2483185) Beveiligingsupdate voor Windows XP (KB2485376) Beveiligingsupdate voor Windows XP (KB2485663) Beveiligingsupdate voor Windows XP (KB2503658) Beveiligingsupdate voor Windows XP (KB2503665) Beveiligingsupdate voor Windows XP (KB2506212) Beveiligingsupdate voor Windows XP (KB2506223) Beveiligingsupdate voor Windows XP (KB2507618) Beveiligingsupdate voor Windows XP (KB2507938) Beveiligingsupdate voor Windows XP (KB2508272) Beveiligingsupdate voor Windows XP (KB2508429) Beveiligingsupdate voor Windows XP (KB2509553) Beveiligingsupdate voor Windows XP (KB2511455) Beveiligingsupdate voor Windows XP (KB2524375) Beveiligingsupdate voor Windows XP (KB2535512) Beveiligingsupdate voor Windows XP (KB2536276-v2) Beveiligingsupdate voor Windows XP (KB2536276) Beveiligingsupdate voor Windows XP (KB2544893-v2) Beveiligingsupdate voor Windows XP (KB2544893) Beveiligingsupdate voor Windows XP (KB2555917) Beveiligingsupdate voor Windows XP (KB2562937) Beveiligingsupdate voor Windows XP (KB2566454) Beveiligingsupdate voor Windows XP (KB2567053) Beveiligingsupdate voor Windows XP (KB2567680) Beveiligingsupdate voor Windows XP (KB2570222) Beveiligingsupdate voor Windows XP (KB2570947) Beveiligingsupdate voor Windows XP (KB2584146) Beveiligingsupdate voor Windows XP (KB2585542) Beveiligingsupdate voor Windows XP (KB2592799) Beveiligingsupdate voor Windows XP (KB2598479) Beveiligingsupdate voor Windows XP (KB2603381) Beveiligingsupdate voor Windows XP (KB2618451) Beveiligingsupdate voor Windows XP (KB2619339) Beveiligingsupdate voor Windows XP (KB2620712) Beveiligingsupdate voor Windows XP (KB2621440) Beveiligingsupdate voor Windows XP (KB2624667) Beveiligingsupdate voor Windows XP (KB2631813) Beveiligingsupdate voor Windows XP (KB2633171) Beveiligingsupdate voor Windows XP (KB2639417) Beveiligingsupdate voor Windows XP (KB2641653) Beveiligingsupdate voor Windows XP (KB2646524) Beveiligingsupdate voor Windows XP (KB2647518) Beveiligingsupdate voor Windows XP (KB2653956) Beveiligingsupdate voor Windows XP (KB2655992) Beveiligingsupdate voor Windows XP (KB2659262) Beveiligingsupdate voor Windows XP (KB2660465) Beveiligingsupdate voor Windows XP (KB2661637) Beveiligingsupdate voor Windows XP (KB2676562) Beveiligingsupdate voor Windows XP (KB2685939) Beveiligingsupdate voor Windows XP (KB2686509) Beveiligingsupdate voor Windows XP (KB2691442) Beveiligingsupdate voor Windows XP (KB2695962) Beveiligingsupdate voor Windows XP (KB2698365) Beveiligingsupdate voor Windows XP (KB2705219) Beveiligingsupdate voor Windows XP (KB2707511) Beveiligingsupdate voor Windows XP (KB2709162) Beveiligingsupdate voor Windows XP (KB2712808) Beveiligingsupdate voor Windows XP (KB2718523) Beveiligingsupdate voor Windows XP (KB2719985) Beveiligingsupdate voor Windows XP (KB2723135) Beveiligingsupdate voor Windows XP (KB2724197) Beveiligingsupdate voor Windows XP (KB2727528) Beveiligingsupdate voor Windows XP (KB2731847) Beveiligingsupdate voor Windows XP (KB2753842-v2) Beveiligingsupdate voor Windows XP (KB2753842) Beveiligingsupdate voor Windows XP (KB2757638) Beveiligingsupdate voor Windows XP (KB2758857) Beveiligingsupdate voor Windows XP (KB2761226) Beveiligingsupdate voor Windows XP (KB2770660) Beveiligingsupdate voor Windows XP (KB2778344) Beveiligingsupdate voor Windows XP (KB2779030) Beveiligingsupdate voor Windows XP (KB2780091) Beveiligingsupdate voor Windows XP (KB2799494) Beveiligingsupdate voor Windows XP (KB2802968) Beveiligingsupdate voor Windows XP (KB956744) Beveiligingsupdate voor Windows XP (KB956844) Beveiligingsupdate voor Windows XP (KB958869) Beveiligingsupdate voor Windows XP (KB960859) Beveiligingsupdate voor Windows XP (KB961371) Beveiligingsupdate voor Windows XP (KB961501) Beveiligingsupdate voor Windows XP (KB968537) Beveiligingsupdate voor Windows XP (KB969059) Beveiligingsupdate voor Windows XP (KB969897) Beveiligingsupdate voor Windows XP (KB969898) Beveiligingsupdate voor Windows XP (KB969947) Beveiligingsupdate voor Windows XP (KB970238) Beveiligingsupdate voor Windows XP (KB970430) Beveiligingsupdate voor Windows XP (KB971468) Beveiligingsupdate voor Windows XP (KB971486) Beveiligingsupdate voor Windows XP (KB971557) Beveiligingsupdate voor Windows XP (KB971633) Beveiligingsupdate voor Windows XP (KB971657) Beveiligingsupdate voor Windows XP (KB971961) Beveiligingsupdate voor Windows XP (KB972260) Beveiligingsupdate voor Windows XP (KB972270) Beveiligingsupdate voor Windows XP (KB973346) Beveiligingsupdate voor Windows XP (KB973354) Beveiligingsupdate voor Windows XP (KB973507) Beveiligingsupdate voor Windows XP (KB973525) Beveiligingsupdate voor Windows XP (KB973869) Beveiligingsupdate voor Windows XP (KB973904) Beveiligingsupdate voor Windows XP (KB974112) Beveiligingsupdate voor Windows XP (KB974318) Beveiligingsupdate voor Windows XP (KB974392) Beveiligingsupdate voor Windows XP (KB974455) Beveiligingsupdate voor Windows XP (KB974571) Beveiligingsupdate voor Windows XP (KB975025) Beveiligingsupdate voor Windows XP (KB975467) Beveiligingsupdate voor Windows XP (KB975560) Beveiligingsupdate voor Windows XP (KB975561) Beveiligingsupdate voor Windows XP (KB975562) Beveiligingsupdate voor Windows XP (KB975713) Beveiligingsupdate voor Windows XP (KB976325) Beveiligingsupdate voor Windows XP (KB977165) Beveiligingsupdate voor Windows XP (KB977816) Beveiligingsupdate voor Windows XP (KB977914) Beveiligingsupdate voor Windows XP (KB978037) Beveiligingsupdate voor Windows XP (KB978251) Beveiligingsupdate voor Windows XP (KB978262) Beveiligingsupdate voor Windows XP (KB978338) Beveiligingsupdate voor Windows XP (KB978542) Beveiligingsupdate voor Windows XP (KB978601) Beveiligingsupdate voor Windows XP (KB978706) Beveiligingsupdate voor Windows XP (KB979309) Beveiligingsupdate voor Windows XP (KB979482) Beveiligingsupdate voor Windows XP (KB979559) Beveiligingsupdate voor Windows XP (KB979683) Beveiligingsupdate voor Windows XP (KB979687) Beveiligingsupdate voor Windows XP (KB980195) Beveiligingsupdate voor Windows XP (KB980218) Beveiligingsupdate voor Windows XP (KB980232) Beveiligingsupdate voor Windows XP (KB980436) Beveiligingsupdate voor Windows XP (KB981322) Beveiligingsupdate voor Windows XP (KB981349) Beveiligingsupdate voor Windows XP (KB981852) Beveiligingsupdate voor Windows XP (KB981957) Beveiligingsupdate voor Windows XP (KB981997) Beveiligingsupdate voor Windows XP (KB982132) Beveiligingsupdate voor Windows XP (KB982214) Beveiligingsupdate voor Windows XP (KB982381) Beveiligingsupdate voor Windows XP (KB982665) Beveiligingsupdate voor Windows XP (KB982802) Browser MOUSE BSPlayer Canon iP4300 Canon Setup Utility 2.3 Canon Utilities Easy-PhotoPrint Canon Utilities Easy-PrintToolBox CCleaner CD-LabelPrint Compatibiliteitspakket voor het 2007 Microsoft Office system Facebook Plug-In Gebruikersregistratie voor Canon iP4300 HiJackThis Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) Hotfix for Windows XP (KB954550-v5) Hotfix for Windows XP (KB976002-v5) Hotfix voor Windows XP (KB2158563) Hotfix voor Windows XP (KB2443685) Hotfix voor Windows XP (KB2570791) Hotfix voor Windows XP (KB2633952) Hotfix voor Windows XP (KB2756822) Hotfix voor Windows XP (KB2779562) Hotfix voor Windows XP (KB961118) Hotfix voor Windows XP (KB970653-v3) Hotfix voor Windows XP (KB976098-v2) Hotfix voor Windows XP (KB979306) Hotfix voor Windows XP (KB981793) Intel® Graphics Media Accelerator Driver Java Auto Updater Java 6 Update 22 Java 6 Update 3 JClic JClic author Kodak EasyShare software Malwarebytes Anti-Malware versie 1.70.0.1100 Microsoft .NET Framework 2.0 Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 Microsoft .NET Framework 3.5 SP1 Microsoft Antimalware Microsoft Antimalware Service NL-NL Language Pack Microsoft Application Error Reporting Microsoft Office Professional Editie 2003 Microsoft Security Client NL-NL Language Pack Microsoft Silverlight Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 Mozilla Firefox 18.0.2 (x86 nl) Mozilla Maintenance Service MSXML 4.0 SP2 (KB936181) MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Nero 6 NirSoft BlueScreenView NVIDIA Drivers Picasa 3 PowerDVD QuickTime REALTEK GbE & FE Ethernet PCI-E NIC Driver Realtek High Definition Audio Driver Recuva Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424) Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416) Shockwave Director 11.0.3 Slim USB2 Scanner swMSM Tweak UI Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update voor Windows Internet Explorer 8 (KB2447568) Update voor Windows Internet Explorer 8 (KB976662) Update voor Windows XP (KB2141007) Update voor Windows XP (KB2345886) Update voor Windows XP (KB2467659) Update voor Windows XP (KB2541763) Update voor Windows XP (KB2607712) Update voor Windows XP (KB2616676) Update voor Windows XP (KB2641690) Update voor Windows XP (KB2661254-v2) Update voor Windows XP (KB2718704) Update voor Windows XP (KB2736233) Update voor Windows XP (KB2749655) Update voor Windows XP (KB955759) Update voor Windows XP (KB968389) Update voor Windows XP (KB971029) Update voor Windows XP (KB971737) Update voor Windows XP (KB973687) Update voor Windows XP (KB973815) Update voor Windows XP (KB976749) Update voor Windows XP (KB978207) Update voor Windows XP (KB980182) WebFldrs XP Windows Defender Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray Windows Internet Explorer 8 Windows Live installer Zylom Games Player Plugin ==== FireFox Fix ====================== ProfilePath: C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\k843kv05.default user.js not found ---- Lines conduit removed from prefs.js ---- ---- Lines conduit modified from prefs.js ---- ---- Lines ask.com removed from prefs.js ---- ---- Lines ask.com modified from prefs.js ---- ---- Lines 1FD91A9C-410C-4090-BBCC-55D3450EF433 removed from prefs.js ---- ---- Lines 1FD91A9C-410C-4090-BBCC-55D3450EF433 modified from prefs.js ---- ---- FireFox user.js and prefs.js backups ---- prefs_20132102_1610_.backup ProfilePath: C:\Documents and Settings\Default User\Application Data\Mozilla\Firefox\Profiles\k843kv05.default user.js not found ---- Lines conduit removed from prefs.js ---- ---- Lines conduit modified from prefs.js ---- ---- Lines ask.com removed from prefs.js ---- ---- Lines ask.com modified from prefs.js ---- ---- Lines 1FD91A9C-410C-4090-BBCC-55D3450EF433 removed from prefs.js ---- ---- Lines 1FD91A9C-410C-4090-BBCC-55D3450EF433 modified from prefs.js ---- ---- FireFox user.js and prefs.js backups ---- prefs_20132102_1610_.backup ProfilePath: C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\g1j8go7q.default user.js not found ---- Lines conduit removed from prefs.js ---- ---- Lines conduit modified from prefs.js ---- ---- Lines ask.com removed from prefs.js ---- ---- Lines ask.com modified from prefs.js ---- ---- Lines 1FD91A9C-410C-4090-BBCC-55D3450EF433 removed from prefs.js ---- ---- Lines 1FD91A9C-410C-4090-BBCC-55D3450EF433 modified from prefs.js ---- ---- FireFox user.js and prefs.js backups ---- prefs_20132102_1610_.backup ProfilePath: C:\Documents and Settings\Patrick\Application Data\Mozilla\Firefox\Profiles\r26woi8r.default user.js not found ---- Lines conduit removed from prefs.js ---- ---- Lines conduit modified from prefs.js ---- user_pref("extensions.enabledItems", "{1224f04f-a4da-435d-be66-53339d7abf66}:1.0,{f6a7ad5b-07a9-419b-9612-eb7f322919b5}:1.0,{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22,engine@conduit.com:3.2.5.2,{3ad798d0-4642-4c55-bc14-cfe7dd19e0d1}:3.2.5.2,{65ca59ee-9920-4d7f-8c41-bfa12403261a}:2.7.1.3,{972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.15"); ---- Lines ask.com removed from prefs.js ---- user_pref("browser.search.order.1", "Ask.com"); user_pref("browser.search.selectedEngine", "Ask.com"); ---- Lines ask.com modified from prefs.js ---- ---- Lines 1FD91A9C-410C-4090-BBCC-55D3450EF433 removed from prefs.js ---- ---- Lines 1FD91A9C-410C-4090-BBCC-55D3450EF433 modified from prefs.js ---- user_pref("extensions.installCache", "[{\"name\":\"winreg-app-global\",\"addons\":{\"jqs@sun.com\":{\"descriptor\":\"C:\\\\Program Files\\\\Java\\\\jre6\\\\lib\\\\deploy\\\\jqs\\\\ff\",\"mtime\":1301929586906},\"{20a82645-c095-46ed-80e3-08825760534b}\":{\"descriptor\":\"c:\\\\WINDOWS\\\\Microsoft.NET\\\\Framework\\\\v3.5\\\\Windows Presentation Foundation\\\\DotNetAssistantExtension\",\"mtime\":1317329383281}}},{\"name\":\"app-global\",\"addons\":{\"{1FD91A9C-410C-4090-BBCC-55D3450EF433}\":{\"descriptor\":\"C:\\\\Program Files\\\\BearShare Applications\\\\MediaBar\\\\Datamngr\\\\FirefoxExtension\",\"mtime\":1329911136906},\"{972ce4c6-7e08-4474-a285-3208198ce6fd}\":{\"descriptor\":\"C:\\\\Program Files\\\\Mozilla Firefox\\\\extensions\\\\{972ce4c6-7e08-4474-a285-3208198ce6fd}\",\"mtime\":1360147302671}}},{\"name\":\"app-profile\",\"addons\":{\"2020Player_IKEA@2020Technologies.com\":{\"descriptor\":\"C:\\\\Documents and Settings\\\\Patrick\\\\Application Data\\\\Mozilla\\\\Firefox\\\\Profiles\\\\r26woi8r.default\\\\extensions\\\\2020Player_IKEA@2020Technologies.com\",\"mtime\":1353250165336},\"{1224f04f-a4da-435d-be66-53339d7abf66}\":{\"descriptor\":\"C:\\\\Documents and Settings\\\\Patrick\\\\Application Data\\\\Mozilla\\\\Firefox\\\\Profiles\\\\r26woi8r.default\\\\extensions\\\\{1224f04f-a4da-435d-be66-53339d7abf66}\",\"mtime\":1280850371828},\"{f6a7ad5b-07a9-419b-9612-eb7f322919b5}\":{\"descriptor\":\"C:\\\\Documents and Settings\\\\Patrick\\\\Application Data\\\\Mozilla\\\\Firefox\\\\Profiles\\\\r26woi8r.default\\\\extensions\\\\{f6a7ad5b-07a9-419b-9612-eb7f322919b5}\",\"mtime\":1268668250687}}}]"); ---- FireFox user.js and prefs.js backups ---- prefs_20132102_1610_.backup ==== Deleting Files \ Folders ====================== "C:\Documents and Settings\Patrick\Application Data\Mozilla\Extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}" deleted "C:\Program Files\Mozilla Firefox\extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}" deleted "C:\WINDOWS\system32\roboot.exe" deleted "C:\WINDOWS\installer\{3c403c70-e13d-0872-c829-edb386a7cdd3}\@" deleted "C:\WINDOWS\installer\{3c403c70-e13d-0872-c829-edb386a7cdd3}" deleted "C:\WINDOWS\installer\{3c403c70-e13d-0872-c829-edb386a7cdd3}\L" deleted "C:\WINDOWS\installer\{3c403c70-e13d-0872-c829-edb386a7cdd3}\U" deleted "C:\Program Files\BearShare Applications\MediaBar" deleted "C:\Documents and Settings\Patrick\Application Data\Systweak" deleted ==== System Specs ====================== Windows: Windows XP Professional Service Pack 3 (Build 2600) Internet Explorer: 8.0.6001.18702 Memory (RAM): 2038 MB CPU Info: Intel® Core2 Duo CPU E7400 @ 2.80GHz CPU Speed: 2718,7 MHz Sound Card: Realtek HD Audio output | Display Adapters: Intel® G33/G31 Express Chipset Family | NetMeeting driver | RDPDD Chained DD Monitors: 1x; Plug en Play-monitor | Screen Resolution: 1440 X 900 - 32 bit Network: Network Present Network Adapters: Realtek RTL8168C(P)/8111C(P) PCI-E Gigabit Ethernet NIC - Pakketplanner-minipoort CD / DVD Drives: 2x (F: | G: | ) F: LITE-ON DVD SOHD-16P9S | G: LITE-ON DVDRW SHM-165P6S Ports: COM1 LPT1 Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 29,3GB | D: 22,5GB | E: 22,8GB Hard Disks - Free: C: 13,2GB | D: 14,7GB | E: 11,1GB Manufacturer *: Award Software International, Inc. BIOS Info: AT/AT COMPATIBLE | 02/09/09 | GBT - 42302e31 Time Zone: Romance (standaardtijd) Motherboard *: Gigabyte Technology Co., Ltd. EG31MF-S2 Sun Java version: 1.6.0_22 Country: België Language: NLB ==== Files Recently Created / Modified ====================== ====== C:\WINDOWS ==== ====== C:\DOCUME~1\Patrick\LOCALS~1\Temp ==== 2013-02-20 17:29:02 28DF0219AA78485DF36C4136002F2786 4082312 ----a-w- C:\DOCUME~1\Patrick\LOCALS~1\Temp\setup.exe ====== C:\WINDOWS\system32 ===== ====== C:\WINDOWS\system32\drivers ===== 2013-02-20 17:52:29 A36EE93698802CD899F98BFD553D8185 28520 ----a-w- C:\WINDOWS\System32\drivers\ssmdrv.sys 2013-02-20 17:52:25 E9F385A58140452122F8D9438A160204 83944 ----a-w- C:\WINDOWS\System32\drivers\avgntflt.sys 2013-02-20 17:52:25 CC4EBA25D80DE42BBC2BF3E553219388 36552 ----a-w- C:\WINDOWS\System32\drivers\avkmgr.sys 2013-02-20 17:52:25 50BF7E785BDA0ED2BAD61A66897AAE4D 134336 ----a-w- C:\WINDOWS\System32\drivers\avipbb.sys ====== C:\WINDOWS\Tasks ====== ====== C:\WINDOWS\Temp ====== ======= C:\Program Files ===== 2013-02-20 17:52:24 -------- d-----w- C:\Program Files\Avira ======= C: ===== ====== C:\Documents and Settings\Patrick\Application Data ====== 2013-02-20 17:58:00 -------- d-----w- C:\Documents and Settings\Patrick\Application Data\Avira ====== C:\Documents and Settings\Patrick ====== ====== C: exe-files == 2013-02-20 18:49:22 17EFB4C5F996F783E90BE1EB0077BA40 477560 ----a-w- C:\Documents and Settings\Patrick\Local Settings\Temp\MSS\3.0.318.3\McUICnt.exe 2013-02-20 18:07:08 00B708ED1F76D82915E03D5E5D7D5BDA 91872 ----a-w- C:\Program Files\Avira\AntiVir Desktop\setuppending.exe 2013-02-20 18:01:50 F735D204FE50BCC554DCB683A0A9EFEE 2086240 ----a-w- C:\Documents and Settings\Patrick\Mijn documenten\Downloads\avira_free_antivirus.exe 2013-02-20 17:52:29 F6B6F242300C4E73DCBB142DCA520CC3 792800 ----a-w- C:\Program Files\Avira\AntiVir Desktop\setup.exe 2013-02-20 17:52:29 AECBF75ECC00B441BB11AC1CC6038BC9 627936 ----a-w- C:\Program Files\Avira\AntiVir Desktop\update.exe 2013-02-20 17:52:29 27577A2D3A78208DF2CE1ACB16FE0875 46960 ----a-w- C:\Program Files\Avira\AntiVir Desktop\updrgui.exe 2013-02-20 17:52:28 AF8F5B710EBAF8F385BEDE484A181FAE 97520 ----a-w- C:\Program Files\Avira\AntiVir Desktop\licmgr.exe 2013-02-20 17:52:28 A912404E4B052D47A8DE4ECA37D047ED 86752 ----a-w- C:\Program Files\Avira\AntiVir Desktop\sched.exe 2013-02-20 17:52:28 4A3D24FC7BCFEF9C6556EFB77B46D896 83680 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ipmgui.exe 2013-02-20 17:52:27 9B130901297F05AFDB2BC97597BC1810 169184 ----a-w- C:\Program Files\Avira\AntiVir Desktop\guardgui.exe 2013-02-20 17:52:27 4FB0953CEE77DDCB826ED0DDC182C199 481136 ----a-w- C:\Program Files\Avira\AntiVir Desktop\fact.exe 2013-02-20 17:52:26 E6680964AD2B93865BEFEB9FEA36D3E7 58224 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avupgsvc.exe 2013-02-20 17:52:26 7F80135F195ADB5657F6218D17D896C8 232816 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avwebloader.exe 2013-02-20 17:52:26 4E90D0EB5D36860EF63D03B79AA2DD37 565472 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avwebgrd.exe 2013-02-20 17:52:26 42FE0437E933222F7BF134B513F988CB 165512 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avwsc.exe 2013-02-20 17:52:25 F0EA5D216C3ADC70B4E7A0DAE08CBF64 640224 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avscan.exe 2013-02-20 17:52:25 D82516BA029DA2B2481E0E78D76EF2E5 79584 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe 2013-02-20 17:52:25 CE4C76AFCD4BF91519EC5BD8E2E017E9 456928 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avconfig.exe 2013-02-20 17:52:25 C86768E9A8CA784BEE916A2BFB5ECD0A 385248 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe 2013-02-20 17:52:25 AD74CCA501DA08EF395E520D9C258F81 5655248 ----a-w- C:\Program Files\Avira\AntiVir Desktop\apntoolbarinstaller.exe 2013-02-20 17:52:25 A049DAC661DD6B5F3E4CE0DC3D810459 387808 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avcenter.exe 2013-02-20 17:52:25 9B0F513D6791852B83625A36C327D308 285408 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avnotify.exe 2013-02-20 17:52:25 93A912072351DFEF975F12EFAD18BD9F 145096 ----a-w- C:\Program Files\Avira\AntiVir Desktop\apnstub.exe 2013-02-20 17:52:25 3449D8C12C31F57A0A61B209BCD49A11 110816 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avguard.exe 2013-02-20 17:52:25 15CB690C8B0A32F01560A46D8E032516 181472 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avrestart.exe 2013-02-20 17:48:41 6D6E061CF36A0B2970B13477114F49DA 3683336 ----a-w- C:\RECYCLER\S-1-5-21-842925246-1202660629-1644491937-1003\Dc5.exe 2013-02-20 17:48:41 1A21552BA04B2A2E79A3D8FDFEC64456 102001872 ----a-w- C:\RECYCLER\S-1-5-21-842925246-1202660629-1644491937-1003\Dc7.exe 2013-02-20 17:47:54 780849B43BC75B266082954B8F0588D2 393064 ----a-w- C:\Documents and Settings\Patrick\Mijn documenten\Downloads\SoftonicDownloader_voor_avira-free-antivirus.exe 2013-02-20 17:29:02 28DF0219AA78485DF36C4136002F2786 4082312 ----a-w- C:\Documents and Settings\Patrick\Local Settings\Temp\setup.exe === C: other files == 2013-02-20 18:49:22 F2F524424952C06C8947248834FD5EEE 153280 ----a-w- C:\Documents and Settings\Patrick\Local Settings\Temp\MSS\3.0.318.3\McInstallerRes_LD.dll 2013-02-20 18:49:22 85AD707F3C3AF8079B2F22C1DC7238C0 412448 ----a-w- C:\Documents and Settings\Patrick\Local Settings\Temp\MSS\3.0.318.3\mcbrwsr2.dll 2013-02-20 18:49:22 4B3E08A63DAF5A66F634FDC41DC9E7E6 264008 ----a-w- C:\Documents and Settings\Patrick\Local Settings\Temp\MSS\3.0.318.3\McInstallerRes.dll 2013-02-20 18:49:22 2DA9F6A7A2858D9F9AFC433D18EEBE26 571472 ----a-w- C:\Documents and Settings\Patrick\Local Settings\Temp\MSS\3.0.318.3\McInstallerStartup.dll 2013-02-20 18:07:09 B4141E4F0A7919DA8B24485DE0F89167 24800 ----a-w- C:\Program Files\Avira\AntiVir Desktop\rcnwload_ar.dll 2013-02-20 17:54:18 492E0883DEFBE740D5DA3737E87C95EC 77569 ----a-w- C:\Program Files\Avira\AntiVir Desktop\FAILSAFE\unacev2.dll 2013-02-20 17:52:33 E75A782A8C218D03A0AF54325132BC70 102772 ----a-w- C:\Program Files\Avira\AntiVir Desktop\FAILSAFE\aevdf.dll 2013-02-20 17:52:33 D09AF4AD2BA8C476559F10529014CD46 471418 ----a-w- C:\Program Files\Avira\AntiVir Desktop\FAILSAFE\aescript.dll 2013-02-20 17:52:33 9CAEE2820D405F643C2768AD4E9CBFFE 131445 ----a-w- C:\Program Files\Avira\AntiVir Desktop\FAILSAFE\aescn.dll 2013-02-20 17:52:33 900ACDAD5D357BB26A571DCA1FD6AD36 258423 ----a-w- C:\Program Files\Avira\AntiVir Desktop\FAILSAFE\aehelp.dll 2013-02-20 17:52:33 8D4CC7ED1EF309487345757C7A9B2C9F 201084 ----a-w- C:\Program Files\Avira\AntiVir Desktop\FAILSAFE\aeoffice.dll 2013-02-20 17:52:33 8CAFD46DBF592C195FCC1D5EC1BC769B 815480 ----a-w- C:\Program Files\Avira\AntiVir Desktop\FAILSAFE\aepack.dll 2013-02-20 17:52:33 64605B72B605DEDE66D38E3D7094E73B 606578 ----a-w- C:\Program Files\Avira\AntiVir Desktop\FAILSAFE\aesbx.dll 2013-02-20 17:52:33 3E22E96D7C97B74971B579357E4D4182 434549 ----a-w- C:\Program Files\Avira\AntiVir Desktop\FAILSAFE\aegen.dll 2013-02-20 17:52:33 300374C8F28F5DA22A18FFB92DCD54F1 5747064 ----a-w- C:\Program Files\Avira\AntiVir Desktop\FAILSAFE\aeheur.dll 2013-02-20 17:52:33 0D99DC04793237418386656339F4D79C 643444 ----a-w- C:\Program Files\Avira\AntiVir Desktop\FAILSAFE\aerdl.dll 2013-02-20 17:52:33 07CEB3F888659E15727A4DC715EDBE28 188788 ----a-w- C:\Program Files\Avira\AntiVir Desktop\FAILSAFE\aeexp.dll 2013-02-20 17:52:32 DB1F0F483BCB3F896D6585E37256401E 150240 ----a-w- C:\Program Files\Avira\AntiVir Desktop\wksstats.dll 2013-02-20 17:52:32 CD7B65E600B8EBC91B292C1AC9EC1215 393587 ----a-w- C:\Program Files\Avira\AntiVir Desktop\FAILSAFE\aeemu.dll 2013-02-20 17:52:32 88799EBEFF8BBDC9FDE37565C5066A7B 201080 ----a-w- C:\Program Files\Avira\AntiVir Desktop\FAILSAFE\aecore.dll 2013-02-20 17:52:32 434049E557861645FA160F3035025F51 53619 ----a-w- C:\Program Files\Avira\AntiVir Desktop\FAILSAFE\aebb.dll 2013-02-20 17:52:29 F8972267EB9D9E48D9035A69B47F9F7A 16752 ----a-w- C:\Program Files\Avira\AntiVir Desktop\updguirc.dll 2013-02-20 17:52:29 DD22D5544F4E529E8B9A9B0D2CCB5303 199904 ----a-w- C:\Program Files\Avira\AntiVir Desktop\updgui.dll 2013-02-20 17:52:29 A36EE93698802CD899F98BFD553D8185 28520 ----a-w- C:\WINDOWS\system32\drivers\ssmdrv.sys 2013-02-20 17:52:29 8F3E862FDEF2BA8524187703F1F27FB3 2070816 ----a-w- C:\Program Files\Avira\AntiVir Desktop\update.dll 2013-02-20 17:52:29 86C68D701CD73E8571551062EB1C80EA 191200 ----a-w- C:\Program Files\Avira\AntiVir Desktop\updext.dll 2013-02-20 17:52:29 7DC69D2B0A77BB365AE934AE2E06AB41 397704 ----a-w- C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll 2013-02-20 17:52:29 53A58B057A8C5A4622EAD625C773DAE3 100384 ----a-w- C:\Program Files\Avira\AntiVir Desktop\sweb.zip 2013-02-20 17:52:29 492E0883DEFBE740D5DA3737E87C95EC 77569 ----a-w- C:\Program Files\Avira\AntiVir Desktop\unacev2.dll 2013-02-20 17:52:29 3F819AC3F90155F296D774DBBE1256D9 156896 ----a-w- C:\Program Files\Avira\AntiVir Desktop\shlext.dll 2013-02-20 17:52:29 3F6D85EDE642CBC600D9E6C975F6B76D 52000 ----a-w- C:\Program Files\Avira\AntiVir Desktop\updaterc.dll 2013-02-20 17:52:29 3E0B1513538A1A9C5A22B3C76550A163 15136 ----a-w- C:\Program Files\Avira\AntiVir Desktop\schedr.dll 2013-02-20 17:52:29 1D87073C223D5B196CE0A84F7C953EEE 98016 ----a-w- C:\Program Files\Avira\AntiVir Desktop\setup.dll 2013-02-20 17:52:29 18189AED94E0FF9B85FE193022953061 265216 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ssleay32.dll 2013-02-20 17:52:28 FFF67FB1996C751777511D4F8459B53C 25376 ----a-w- C:\Program Files\Avira\AntiVir Desktop\rcnwload_zhcn.dll 2013-02-20 17:52:28 DE1A0E4DB65D0E22B14BD332A71266F0 25376 ----a-w- C:\Program Files\Avira\AntiVir Desktop\rcnwload_es.dll 2013-02-20 17:52:28 D7AC1DB6F9A70B8CCDD418E4563058C3 107888 ----a-w- C:\Program Files\Avira\AntiVir Desktop\mgrs.dll 2013-02-20 17:52:28 D4DA8402FD85EB56F5E2F57446465445 82400 ----a-w- C:\Program Files\Avira\AntiVir Desktop\rchelp.dll 2013-02-20 17:52:28 CF20E8B3551D01020C080D1D00CF2A0B 1296384 ----a-w- C:\Program Files\Avira\AntiVir Desktop\libeay32.dll 2013-02-20 17:52:28 C452238B320B7F27C1A623A5D07E0B3D 25376 ----a-w- C:\Program Files\Avira\AntiVir Desktop\rcnwload_en.dll 2013-02-20 17:52:28 C3463EE55DED94661B7E1FF743A1AFE6 68976 ----a-w- C:\Program Files\Avira\AntiVir Desktop\rctext.dll 2013-02-20 17:52:28 BF3D455632B646B3E97AAFAA75B453D6 27136 ----a-w- C:\Program Files\Avira\AntiVir Desktop\libapriconv-1.dll 2013-02-20 17:52:28 BC81B253F80A36A2AA0A36CFF883BAB3 67808 ----a-w- C:\Program Files\Avira\AntiVir Desktop\luke.dll 2013-02-20 17:52:28 B768E143E31CF7524BBAEE069599C69E 23328 ----a-w- C:\Program Files\Avira\AntiVir Desktop\rcnwload_jp.dll 2013-02-20 17:52:28 A957E43934859F807924F1B22F550D14 25376 ----a-w- C:\Program Files\Avira\AntiVir Desktop\rcnwload_zhtw.dll 2013-02-20 17:52:28 A69474B9EC28C5331DC3BC1755713DC7 4782880 ----a-w- C:\Program Files\Avira\AntiVir Desktop\rcimage.dll 2013-02-20 17:52:28 A1F276DC2438C15362E2B9AFDF7FC15D 25888 ----a-w- C:\Program Files\Avira\AntiVir Desktop\rcnwload_nl.dll 2013-02-20 17:52:28 9B80DADA67A50A0A1EFBC066916D42C0 216288 ----a-w- C:\Program Files\Avira\AntiVir Desktop\msgclient.dll 2013-02-20 17:52:28 99B29DCD759F66EE05DE822FB3801E68 257536 ----a-w- C:\Program Files\Avira\AntiVir Desktop\libcurl.dll 2013-02-20 17:52:28 96B6779FC3E5C453C80AA61A19C68BCE 132384 ----a-w- C:\Program Files\Avira\AntiVir Desktop\scewxmlw.dll 2013-02-20 17:52:28 926EA91D1DEA761F45477A81AD38CA92 26400 ----a-w- C:\Program Files\Avira\AntiVir Desktop\rcnwload_fr.dll 2013-02-20 17:52:28 8F9F50F3810672AC36503B72A0B1808A 757248 ----a-w- C:\Program Files\Avira\AntiVir Desktop\libdb44.dll 2013-02-20 17:52:28 8E36C5944D03C0437795A4A0B91F9C53 25376 ----a-w- C:\Program Files\Avira\AntiVir Desktop\rcnwload_tr.dll 2013-02-20 17:52:28 8CD734456BED7A8F3DBE015A68E05ECC 25376 ----a-w- C:\Program Files\Avira\AntiVir Desktop\rcnwload_de.dll 2013-02-20 17:52:28 8B3BE1B9D288005F9DEE531BBC341E60 23328 ----a-w- C:\Program Files\Avira\AntiVir Desktop\rcnwload_ko.dll 2013-02-20 17:52:28 7C56C3D5C1481E388205791C06A3BA5F 24864 ----a-w- C:\Program Files\Avira\AntiVir Desktop\rcnwload_ru.dll 2013-02-20 17:52:28 573C4D633DDD524885B8CED6C784A683 25888 ----a-w- C:\Program Files\Avira\AntiVir Desktop\rcnwload_it.dll 2013-02-20 17:52:28 4CBFC20E0C489BD423B8D69531CDF7DE 181248 ----a-w- C:\Program Files\Avira\AntiVir Desktop\libaprutil-1.dll 2013-02-20 17:52:28 4158BC07D628609BD182819FBD166706 13168 ----a-w- C:\Program Files\Avira\AntiVir Desktop\restartrc.dll 2013-02-20 17:52:28 33E74326DC04E3EC0088846384AD3F16 27936 ----a-w- C:\Program Files\Avira\AntiVir Desktop\rcnwload_pt.dll 2013-02-20 17:52:28 29C0A87E7B5BCEE0F488EC143CBA5E1A 16160 ----a-w- C:\Program Files\Avira\AntiVir Desktop\licmgr.dll 2013-02-20 17:52:28 26E7EF6363657442F9869F3FE3D31ED1 16240 ----a-w- C:\Program Files\Avira\AntiVir Desktop\netnt.dll 2013-02-20 17:52:28 23DF890D647CD6DF1A06C9C6CEE64E0E 18720 ----a-w- C:\Program Files\Avira\AntiVir Desktop\lukeres.dll 2013-02-20 17:52:28 1B359CFB39EC973AC7878055390203F8 28384 ----a-w- C:\Program Files\Avira\AntiVir Desktop\onlcfg.dll 2013-02-20 17:52:28 1A29E1228EDE278564F628E2668CE549 131584 ----a-w- C:\Program Files\Avira\AntiVir Desktop\libapr-1.dll 2013-02-20 17:52:27 FA73F55D2306D3F4DAA17CF4B2EE684A 194784 ----a-w- C:\Program Files\Avira\AntiVir Desktop\gpgen.dll 2013-02-20 17:52:27 F9F2E25E40AB6CCBBBF19AF88BC94D7D 250080 ----a-w- C:\Program Files\Avira\AntiVir Desktop\extdlgfw.dll 2013-02-20 17:52:27 F2BE2AF3B037D134A5D1DB6BAE0C1264 272096 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccupdate.dll 2013-02-20 17:52:27 E23F5434A44CA69588516C97466E6DA3 129760 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccwgrdw.dll 2013-02-20 17:52:27 DC22693B2AE6FF3DA9BD69E36F50B791 11120 ----a-w- C:\Program Files\Avira\AntiVir Desktop\cclicrc.dll 2013-02-20 17:52:27 DA18F0ED07C48297FDC75B5B07E06F54 15728 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccmainrc.dll 2013-02-20 17:52:27 C76C6D3F01D46A15D34873B4EA396CCE 48352 ----a-w- C:\Program Files\Avira\AntiVir Desktop\gplegacy.dll 2013-02-20 17:52:27 C5AF1ACDF3BFED5372DBF3A37CCB64FA 215264 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccupdw.dll 2013-02-20 17:52:27 BE4E050B9D82843626C5ED8D0BD29241 335072 ----a-w- C:\Program Files\Avira\AntiVir Desktop\gpavgio.dll 2013-02-20 17:52:27 B4BA20EB12AD4B2A5D047273C8C10D44 151776 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccwebtabs.dll 2013-02-20 17:52:27 B0131233D7D90DAE5ABA812C60A79A9A 93920 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccscanw.dll 2013-02-20 17:52:27 A7F57DEF2C0499907D3B9E7861A03D18 61664 ----a-w- C:\Program Files\Avira\AntiVir Desktop\gpgenrep.dll 2013-02-20 17:52:27 9FF00527750D1C60688C4AFA8345546F 28528 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccwgrdrc.dll 2013-02-20 17:52:27 9C42E412B0F3AE7F0EFD5E7651CFC79C 17264 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccreporc.dll 2013-02-20 17:52:27 961F85FBFE0BDED7C131D2B989084C28 154336 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccrepow.dll 2013-02-20 17:52:27 9182C3AB9EAFB6504D44758F48F3FE1E 40304 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccscanrc.dll 2013-02-20 17:52:27 90F07304713A43381D1CB1475737356C 42272 ----a-w- C:\Program Files\Avira\AntiVir Desktop\guardmsg.dll 2013-02-20 17:52:27 90CAA559E8077CD7B30C1A980CC15B8A 381664 ----a-w- C:\Program Files\Avira\AntiVir Desktop\grdcore.dll 2013-02-20 17:52:27 8D503E8C64DC26376F4E20A5093DAC22 233184 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccmsg.dll 2013-02-20 17:52:27 895C9D04FE9C5AF320AD274EDDF56848 60640 ----a-w- C:\Program Files\Avira\AntiVir Desktop\gpgui.dll 2013-02-20 17:52:27 817A4450E992E9B62031D7A85D56C71B 28960 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccupdrc.dll 2013-02-20 17:52:27 7EAB45845CF1055C037422C5A4A74752 284384 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccreport.dll 2013-02-20 17:52:27 7CD0BB66E0EA89E8983D33954DBF2A7C 130784 ----a-w- C:\Program Files\Avira\AntiVir Desktop\gpschd.dll 2013-02-20 17:52:27 76FC1FCE64B47258E780D5CF8A26E76A 43744 ----a-w- C:\Program Files\Avira\AntiVir Desktop\gpgrd.dll 2013-02-20 17:52:27 76EB76150A324AF841F08B649280B08B 25456 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccscherc.dll 2013-02-20 17:52:27 6CC9F47268C83D1144EC6AF581C5C611 10608 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccmsgrc.dll 2013-02-20 17:52:27 6C2D9FBCDD867BCAB758E6678AE2CBFE 413408 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccprofil.dll 2013-02-20 17:52:27 655B07BF1EED10151D35E7119162C98D 89824 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccschedw.dll 2013-02-20 17:52:27 643DD6CFEFD40702E4AC8C87604D7C04 13024 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccwebtabsrc.dll 2013-02-20 17:52:27 60EE98B4E586FED1082402B9AA639094 32544 ----a-w- C:\Program Files\Avira\AntiVir Desktop\factrc.dll 2013-02-20 17:52:27 5C87E7AE67BE5FEB8A46EAF00327DB8B 351968 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccquamgr.dll 2013-02-20 17:52:27 5ADA787ED710FAC14913CB0B06A14F6A 223968 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccquaw.dll 2013-02-20 17:52:27 53B3E20C29EB1D36466B43EA24B6BF44 220384 ----a-w- C:\Program Files\Avira\AntiVir Desktop\gpipc.dll 2013-02-20 17:52:27 51046AD1B3E05C782E179E590E9F7954 280800 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccsched.dll 2013-02-20 17:52:27 4E6A96E500A7580BA7E8D543DD2091AB 668384 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccwkrlib.dll 2013-02-20 17:52:27 4D9568EB3CD79A13CC9DFA9DF54D4518 58080 ----a-w- C:\Program Files\Avira\AntiVir Desktop\cfglib.dll 2013-02-20 17:52:27 1351909E2B4D3CFE4BA79C10A1C09C14 109280 ----a-w- C:\Program Files\Avira\AntiVir Desktop\gpgavid.dll 2013-02-20 17:52:27 122CAD37A1B99BAB81B5EED74D7B3FEB 24944 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccquarc.dll 2013-02-20 17:52:27 0ADC2586886A802E8B0E197C5BAC2633 83168 ----a-w- C:\Program Files\Avira\AntiVir Desktop\cclicw.dll 2013-02-20 17:52:27 02F05AF77C052FA32207D30C789FD6AC 463584 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccwgrd.dll 2013-02-20 17:52:27 023CDA46988BE871385B2C90F8EFE052 122080 ----a-w- C:\Program Files\Avira\AntiVir Desktop\cclic.dll 2013-02-20 17:52:26 F40873E65A9880633618A6D5B549EC37 26480 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avwinll.dll 2013-02-20 17:52:26 D50DB68FA7F13FCC6815D8F7F26FB90B 232160 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccgrdw.dll 2013-02-20 17:52:26 CC1F149616B738554F010839CFAD0D66 52960 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avwebloader.dll 2013-02-20 17:52:26 94DDF69D1AD2355141208E710CBD9BE4 229088 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avwmi.dll 2013-02-20 17:52:26 94D8790CB44C3281FB30982E34F21CC8 399072 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccguard.dll 2013-02-20 17:52:26 79E2E126D76ED6D006A3A5834865C0B8 14704 ----a-w- C:\Program Files\Avira\AntiVir Desktop\cchipsrc.dll 2013-02-20 17:52:26 7519227129DC4EB957D861BDA33D40C7 247520 ----a-w- C:\Program Files\Avira\AntiVir Desktop\cchips.dll 2013-02-20 17:52:26 6F2AB8D73E9FCBBB1CCB7F3335D40C82 1714400 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avwebloadergui.dll 2013-02-20 17:52:26 620B631DDA282BA7D947431F7FBBD0D2 143584 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccgenw.dll 2013-02-20 17:52:26 4F0BB69736EBAA4C71005C464D43BFB1 22896 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccavscanexrc.dll 2013-02-20 17:52:26 4EBDF067E91F19E389D44FA4715B259A 20336 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccevrc.dll 2013-02-20 17:52:26 350A95FCE3D1E2DB07D480F2F62E9BEA 50400 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccgenrc.dll 2013-02-20 17:52:26 15A753166DE79B22BE2882CE1EBAF9A8 835296 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccgen.dll 2013-02-20 17:52:26 1267EC43344D8909B8325A0F839425FB 359648 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccavscanex.dll 2013-02-20 17:52:26 122A07D0DDA58D9E892438E0FB43C2E2 150240 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccevw.dll 2013-02-20 17:52:26 101F55A16F9E95EB11AE79E2056C4837 24944 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avwebgrc.dll 2013-02-20 17:52:26 080FD83D4BC79227D5F28B4D3361530F 30576 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccgrdrc.dll 2013-02-20 17:52:26 0687FBF30BE11ECD7B17A5C0077A0FDD 317664 ----a-w- C:\Program Files\Avira\AntiVir Desktop\ccev.dll 2013-02-20 17:52:25 FED9A03BF06D030B7E6C02DA0E7F0657 233760 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avsda64.dll 2013-02-20 17:52:25 F073DEC85D27AC82D6BAB5B71945E955 63344 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avsmtp.dll 2013-02-20 17:52:25 E9F385A58140452122F8D9438A160204 83944 ----a-w- C:\WINDOWS\system32\drivers\avgntflt.sys 2013-02-20 17:52:25 E75A782A8C218D03A0AF54325132BC70 102772 ----a-w- C:\Program Files\Avira\AntiVir Desktop\aevdf.dll 2013-02-20 17:52:25 E230809064B9358B278842339B0589C4 33136 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avinet.dll 2013-02-20 17:52:25 D6274972BFC080F2605E5EA15025F838 528608 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avbb.dll 2013-02-20 17:52:25 D09AF4AD2BA8C476559F10529014CD46 471418 ----a-w- C:\Program Files\Avira\AntiVir Desktop\aescript.dll 2013-02-20 17:52:25 CD7B65E600B8EBC91B292C1AC9EC1215 393587 ----a-w- C:\Program Files\Avira\AntiVir Desktop\aeemu.dll 2013-02-20 17:52:25 CD2F54F53E8111B55D4851122419F038 18720 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avevtrc.dll 2013-02-20 17:52:25 CC4EBA25D80DE42BBC2BF3E553219388 36552 ----a-w- C:\WINDOWS\system32\drivers\avkmgr.sys 2013-02-20 17:52:25 C0709D01B70DDFF1C13E977EB4D87517 250592 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avreg.dll 2013-02-20 17:52:25 BA0D64EA15F56688149A3E8918DE9F58 81120 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avgio.dll 2013-02-20 17:52:25 B90A2B96EF199317FEF1AFE45EBB3E08 51056 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avpref.dll 2013-02-20 17:52:25 B28C334C03CEE7C5E829C43AE75DAE5A 248008 ----a-w- C:\Program Files\Avira\AntiVir Desktop\apnic.dll 2013-02-20 17:52:25 A6B15DEB52917BB0C696C4ABCDEA6BFB 161248 ----a-w- C:\Program Files\Avira\AntiVir Desktop\apcfile.dll 2013-02-20 17:52:25 9CAEE2820D405F643C2768AD4E9CBFFE 131445 ----a-w- C:\Program Files\Avira\AntiVir Desktop\aescn.dll 2013-02-20 17:52:25 9BE0F171854C028E55357E43DE698BC7 14112 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avacl.dll 2013-02-20 17:52:25 99E7B37D4EB3A02B7D8FD626C641130D 21872 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avconfigrc.dll 2013-02-20 17:52:25 900ACDAD5D357BB26A571DCA1FD6AD36 258423 ----a-w- C:\Program Files\Avira\AntiVir Desktop\aehelp.dll 2013-02-20 17:52:25 8D4CC7ED1EF309487345757C7A9B2C9F 201084 ----a-w- C:\Program Files\Avira\AntiVir Desktop\aeoffice.dll 2013-02-20 17:52:25 8CAFD46DBF592C195FCC1D5EC1BC769B 815480 ----a-w- C:\Program Files\Avira\AntiVir Desktop\aepack.dll 2013-02-20 17:52:25 88799EBEFF8BBDC9FDE37565C5066A7B 201080 ----a-w- C:\Program Files\Avira\AntiVir Desktop\aecore.dll 2013-02-20 17:52:25 6F00A503AF467868C3A386D9D8C94D15 55072 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avmres.dll 2013-02-20 17:52:25 67A0242BD098FA71236CA199532D8223 178544 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avrep.dll 2013-02-20 17:52:25 647C36D02A57FAB69AB617DB88B602E1 138976 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avesvc.dll 2013-02-20 17:52:25 64605B72B605DEDE66D38E3D7094E73B 606578 ----a-w- C:\Program Files\Avira\AntiVir Desktop\aesbx.dll 2013-02-20 17:52:25 54F6B00A74CB77552EF956BB2A609AE3 260384 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avsda.dll 2013-02-20 17:52:25 50BF7E785BDA0ED2BAD61A66897AAE4D 134336 ----a-w- C:\WINDOWS\system32\drivers\avipbb.sys 2013-02-20 17:52:25 4808D79CC69347FADDF67BFF4BFE593B 94432 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avscplr.dll 2013-02-20 17:52:25 434049E557861645FA160F3035025F51 53619 ----a-w- C:\Program Files\Avira\AntiVir Desktop\aebb.dll 2013-02-20 17:52:25 3E22E96D7C97B74971B579357E4D4182 434549 ----a-w- C:\Program Files\Avira\AntiVir Desktop\aegen.dll 2013-02-20 17:52:25 3887677F310CF6E27D590BC2AFD2DB99 62832 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avscanrc.dll 2013-02-20 17:52:25 350C5239BAEE05836DEC629D263143AE 260832 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avarkt.dll 2013-02-20 17:52:25 3507E1E036A280DF122D5F0157D81310 16240 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avnotify.dll 2013-02-20 17:52:25 33408118ADB350BC85078C2F94125F76 452832 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avconfig.dll 2013-02-20 17:52:25 300374C8F28F5DA22A18FFB92DCD54F1 5747064 ----a-w- C:\Program Files\Avira\AntiVir Desktop\aeheur.dll 2013-02-20 17:52:25 29896052CC3E78B4854A4DE5CAC82FBF 62320 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avipc.dll 2013-02-20 17:52:25 11DAB42E64F3DF83D041706D1099CF67 16160 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avesvcr.dll 2013-02-20 17:52:25 103931AF165B412591D6EC07D677A436 434912 ----a-w- C:\Program Files\Avira\AntiVir Desktop\avlode.dll 2013-02-20 17:52:25 0D99DC04793237418386656339F4D79C 643444 ----a-w- C:\Program Files\Avira\AntiVir Desktop\aerdl.dll 2013-02-20 17:52:25 07CEB3F888659E15727A4DC715EDBE28 188788 ----a-w- C:\Program Files\Avira\AntiVir Desktop\aeexp.dll 2013-02-18 17:00:01 7114070D9BDA5901B692D896A001EC95 12638576 ----a-w- C:\Documents and Settings\Patrick\Local Settings\Application Data\Google\Chrome\User Data\PepperFlash\11.6.602.167\pepflashplayer.dll ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-21-842925246-1202660629-1644491937-1003\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "XGIWatchDog"="XWatDog.exe" "NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" "RemoteControl"="C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" "Easy-PrintToolBox"="C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon" "RTHDCPL"="RTHDCPL.EXE" "IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" "HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" "Persistence"="C:\WINDOWS\system32\igfxpers.exe" "QuickTime Task"="C:\Program Files\QuickTime\qttask.exe -atboottime" "FLMOFFICE4DMOUSE"="C:\Program Files\Browser MOUSE\mouse32a.exe" "HotKey"="C:\WINDOWS\Twain_32\SlimU2\HotKey.exe" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "avgnt"="C:\Program Files\Avira\AntiVir Desktop\avgnt.exe /min" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" ==== Task Scheduler Jobs ====================== C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a------ C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [10/02/2013 08:37] C:\WINDOWS\tasks\AppleSoftwareUpdate.job --a------ C:\Program Files\Apple Software Update\SoftwareUpdate.exe [01/06/2011 16:57] C:\WINDOWS\tasks\MP Scheduled Scan.job --ah----- C:\Program Files\Microsoft Security Client\Antimalware\MpCmdRun.exe [11/11/2010 12:26] ==== Firefox Extensions ====================== ProfilePath: C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\g1j8go7q.default - Undetermined - C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - Wincore Mediabar - %ProfilePath%\extensions\{c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} - XUL Cache - %ProfilePath%\extensions\{f6a7ad5b-07a9-419b-9612-eb7f322919b5} ProfilePath: C:\Documents and Settings\Patrick\Application Data\Mozilla\Firefox\Profiles\r26woi8r.default - Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff - Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension - Visualisateur 3D de 20-20 - %ProfilePath%\extensions\2020Player_IKEA@2020Technologies.com - XUL Cache - %ProfilePath%\extensions\{1224f04f-a4da-435d-be66-53339d7abf66} - XUL Cache - %ProfilePath%\extensions\{f6a7ad5b-07a9-419b-9612-eb7f322919b5} AppDir: C:\Program Files\Mozilla Firefox - Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Documents and Settings\Patrick\Application Data\Mozilla\Firefox\Profiles\r26woi8r.default F733C59712465B0BD2130BB7C1A6D6E3 - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_149.dll - Shockwave Flash 6846D2CA7E1D5937AEE3F99BB7F5464B - C:\WINDOWS\system32\Adobe\Director\np32dsw_1168638.dll - Shockwave for Director / Shockwave for Director BAB5713218F36AE9E3316BE7EA8205C4 - C:\Program Files\QuickTime\Plugins\npqtplugin7.dll - QuickTime Plug-in 7.6.2 BAB5713218F36AE9E3316BE7EA8205C4 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll - QuickTime Plug-in 7.6.2 C53ED4A1AC5444B0F1DDC5B29DFE12D1 - C:\Program Files\QuickTime\Plugins\npqtplugin6.dll - QuickTime Plug-in 7.6.2 C53ED4A1AC5444B0F1DDC5B29DFE12D1 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll - QuickTime Plug-in 7.6.2 3D191A198A42E10F467B931506F04D36 - C:\Program Files\QuickTime\Plugins\npqtplugin5.dll - QuickTime Plug-in 7.6.2 3D191A198A42E10F467B931506F04D36 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll - QuickTime Plug-in 7.6.2 900FFBF94D1727880C35AF12B01F1BE5 - C:\Program Files\QuickTime\Plugins\npqtplugin4.dll - QuickTime Plug-in 7.6.2 900FFBF94D1727880C35AF12B01F1BE5 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll - QuickTime Plug-in 7.6.2 0EFF3BA201A53D108CB0E9E9C7F7C097 - C:\Program Files\QuickTime\Plugins\npqtplugin3.dll - QuickTime Plug-in 7.6.2 0EFF3BA201A53D108CB0E9E9C7F7C097 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll - QuickTime Plug-in 7.6.2 3534C9F673B432FE5D9BD34DB016D3C0 - C:\Program Files\QuickTime\Plugins\npqtplugin2.dll - QuickTime Plug-in 7.6.2 3534C9F673B432FE5D9BD34DB016D3C0 - C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll - QuickTime Plug-in 7.6.2 360F1BB4F7B99D9140D2C4558610A1BC - C:\Program Files\QuickTime\Plugins\npqtplugin.dll - QuickTime Plug-in 7.6.2 360F1BB4F7B99D9140D2C4558610A1BC - C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll - QuickTime Plug-in 7.6.2 84CBD6F6AA7EE399FBDC265B8EA64474 - C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll - Adobe Acrobat 0A7B01235B1CBFA387B04A91E2F2B7D0 - C:\Program Files\Adobe\Reader 10.0\Reader\browser\nppdf32.dll - Adobe Acrobat 0A7B01235B1CBFA387B04A91E2F2B7D0 - C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll - Adobe Acrobat 9013599B12923A45C029C34E8D2211AC - c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll - Silverlight Plug-In 54BC55D3D9BD33A6CE38F811CF836794 - C:\Program Files\Google\Picasa3\npPicasa3.dll - Picasa 1BB1021A875B010EE26D539053B0F894 - C:\Documents and Settings\Patrick\Application Data\Mozilla\Firefox\Profiles\r26woi8r.default\extensions\2020Player_IKEA@2020Technologies.com\plugins\NP_2020Player_IKEA.dll - 20-20 3D Viewer for IKEA C953747215143628D3724340FAF73BD4 - C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll - Java Deployment Toolkit 6.0.220.4 C953747215143628D3724340FAF73BD4 - C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll - Java Deployment Toolkit 6.0.220.4 3ED8E561044723C6039A8A20A3AE60CC - C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll - Java Platform SE 6 U22 D94C362E750F8C283BF52537D3DF28B5 - C:\Documents and Settings\Patrick\Application Data\Facebook\npfbplugin_1_0_3.dll - Facebook Plugin F89A93D84955FC558E1C23F2B3A23240 - C:\Documents and Settings\Patrick\Application Data\Facebook\npfbplugin_1_0_0.dll - Facebook Plugin FC5866F7793AF2CBCD425CC4B8D32A9E - C:\Documents and Settings\All Users\Application Data\Zylom\ZylomGamesPlayer\npzylomgamesplayer.dll - Zylom Plugin FC5866F7793AF2CBCD425CC4B8D32A9E - C:\Program Files\Mozilla Firefox\plugins\npzylomgamesplayer.dll - Zylom Plugin 7D04E74E8B63FF93F26C6A2EC14A4EE7 - C:\WINDOWS\system32\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director AB87EEFFD18F2BAAFC274E7075EA6C67 - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll - Windows Presentation Foundation / Windows Presentation Foundation 901DF887DBDF87FA3C659239F68F3228 - C:\Program Files\Windows Media Player\npdrmv2.dll - Microsoft® DRM 0F9DEA5814D22F83FED5F427E263DED0 - C:\Program Files\Windows Media Player\npdsplay.dll - Windows Media Player Plug-in Dynamic Link Library F89E6BBD6A080D8C714DFB6F30678288 - C:\Program Files\Windows Media Player\npwmsdrm.dll - Microsoft® DRM 92AB52FC695C1D459E3BE9AFD6CE218D - C:\Program Files\Mozilla Firefox\plugins\NPOFFICE.DLL - Microsoft Office 2003 BF2AD333C79072EEBE5AE0D72670E64E - c:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrlui.dll - Microsoft® Silverlight ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions amhlacfinnaffmhfohbpecabbjfhkdji - C:\DOCUME~1\Patrick\LOCALS~1\Temp\ccex.crx[] ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://search.avira.com/?l=dis&o=APN10399&gct=hp&dc=EU&locale=nl_BE" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "Default_Search_URL"="http://www.google.com/ie" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{4FAFDFF7-3A3C-46AA-A036-4DD7C801EA05}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{4FAFDFF7-3A3C-46AA-A036-4DD7C801EA05}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://search.avira.com/?l=dis&o=APN10399&gct=hp&dc=EU&locale=nl_BE" [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search] "Default_Search_URL"="http://go.microsoft.com/fwlink/?LinkId=54896" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} @ieframe.dll,-12512 Url="http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC" {667E9404-80B4-4FCE-8951-FB3BCEB3C6AB} Live Search Url="http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\amhlacfinnaffmhfohbpecabbjfhkdji deleted successfully ==== HijackThis Entries ====================== O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Avira Planner (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe ==== Empty IE Cache ====================== C:\Documents and Settings\Default User\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\Documents and Settings\Patrick\Local Settings\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5 emptied successfully C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Documents and Settings\Patrick\Local Settings\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla\Firefox\Profiles\k843kv05.default\Cache emptied successfully C:\Documents and Settings\Default User\Local Settings\Application Data\Mozilla\Firefox\Profiles\k843kv05.default\Cache emptied successfully C:\Documents and Settings\LocalService\Local Settings\Application Data\Mozilla\Firefox\Profiles\g1j8go7q.default\Cache emptied successfully C:\Documents and Settings\Patrick\Local Settings\Application Data\Mozilla\Firefox\Profiles\r26woi8r.default\Cache emptied successfully ==== Empty Chrome Cache ====================== C:\Documents and Settings\Patrick\Local Settings\Application Data\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully After Reboot ==== Empty Temp Folders ====================== C:\WINDOWS\Temp successfully emptied C:\DOCUME~1\Patrick\LOCALS~1\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\RECYCLER successfully emptied ==== Deleting Files / Folders ====================== "C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Documents and Settings\Patrick\Local Settings\Temporary Internet Files\Content.IE5\index.dat" not found
  23. marleen2
    Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 19:35:24, on 20/02/2013 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir Desktop\sched.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\Program Files\Browser MOUSE\mouse32a.exe C:\WINDOWS\system32\igfxsrvc.exe C:\WINDOWS\Twain_32\SlimU2\HotKey.exe C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Program Files\Avira\AntiVir Desktop\avgnt.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe C:\Program Files\Avira\AntiVir Desktop\avguard.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\WINDOWS\system32\svchost.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files\Avira\AntiVir Desktop\avshadow.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Search Free: Avira Search Free powered by Ask.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll O4 - HKLM\..\Run: [XGIWatchDog] XWatDog.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE /logon O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [FLMOFFICE4DMOUSE] C:\Program Files\Browser MOUSE\mouse32a.exe O4 - HKLM\..\Run: [HotKey] C:\WINDOWS\Twain_32\SlimU2\HotKey.exe O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - Global Startup: McAfee Security Scan Plus.lnk = C:\Program Files\McAfee Security Scan\3.0.318\SSScheduler.exe O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Avira Planner (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files\McAfee Security Scan\3.0.318\McCHSvc.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- End of file - 6232 bytes
  24. marleen2
    Bij het opstarten van mijn computer blijft het bureaublad leeg. Ik krijg de foutmelding (shell_notifyicon) De gewenste actie kon niet uitgevoerd worden foutcode 2 Als ik dan terug opstart verloopt alles wel normaal. Wie weet er raad?
  25. marleen2
    Ik denk dat het verdwenen is, bedankt alvast voor de hulp :top:
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.