Ga naar inhoud

Franky.H

Lid
  • Items

    11
  • Registratiedatum

  • Laatst bezocht

Alles dat geplaatst werd door Franky.H

  1. heb mijn linksys WRT160 opnieuw geinstalleerd en firmware update gedaan, werkt terug.
  2. Help. Kan niet meer op internet. als ik mijn internet (firefox) open krijg ik mijn home page te zien hln.be soms meot ik een renew doen dat lukt meestal wel. probeer ik een andere pagina krijg ik een foutmelding. Messenger opstarten lukt ook. probeer ik via messenger mijn mails te bekijken lukt het niet. Ik gebruik een linksys router WRT160 waar ook een IP telefoon hangt welke perfect werkt. Heb gisteren manueel de DNS server ingevoegd en dat bleek te weken. vandaag lukt het niet meer. Enig idee hoe dit op te lossen? Alvast bedankt. MVG Franky.
  3. Het lijkt terug te werken. Ga het nog even monitoren. Nogmaals bedankt voor alle hulp Mvg Franky.
  4. ComboFix 12-07-13.01 - Frank 13/07/2012 14:59:00.3.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.32.1043.18.2045.961 [GMT 2:00] Gestart vanuit: c:\users\Frank\Desktop\ComboFix.exe gebruikte Opdracht switches :: c:\users\Frank\Desktop\CFScript.txt AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0} AV: Bitdefender Antivirus *Disabled/Updated* {50909708-FF80-02AF-F814-B28405891E92} FW: Bitdefender Firewall *Enabled* {68AB162D-B5EF-03F7-D34B-1BB1FB5A59E9} SP: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D} SP: Bitdefender Antispyware *Disabled/Updated* {EBF176EC-D9BA-0D21-C2A4-89F67E0E542F} SP: Spybot - Search and Destroy *Enabled/Updated* {1EAF1D03-5480-F3B2-EB14-11F0F5EE2699} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . C:\$AVG c:\$avg\$VAULT\vvfolder.idx c:\program files\AVG c:\program files\AVG\AVG2012\3rd_party\licenses\ace.txt c:\program files\AVG\AVG2012\3rd_party\licenses\arabica.txt c:\program files\AVG\AVG2012\3rd_party\licenses\boost.txt c:\program files\AVG\AVG2012\3rd_party\licenses\bsdiff.txt c:\program files\AVG\AVG2012\3rd_party\licenses\bzip.txt c:\program files\AVG\AVG2012\3rd_party\licenses\carp.html c:\program files\AVG\AVG2012\3rd_party\licenses\cryptopp.txt c:\program files\AVG\AVG2012\3rd_party\licenses\curl.txt c:\program files\AVG\AVG2012\3rd_party\licenses\dazukofs.txt c:\program files\AVG\AVG2012\3rd_party\licenses\expat.txt c:\program files\AVG\AVG2012\3rd_party\licenses\imagemagick.txt c:\program files\AVG\AVG2012\3rd_party\licenses\infozip.txt c:\program files\AVG\AVG2012\3rd_party\licenses\lua.txt c:\program files\AVG\AVG2012\3rd_party\licenses\md4_md5_license.txt c:\program files\AVG\AVG2012\3rd_party\licenses\milter.txt c:\program files\AVG\AVG2012\3rd_party\licenses\minizip.txt c:\program files\AVG\AVG2012\3rd_party\licenses\openssl_license.html c:\program files\AVG\AVG2012\3rd_party\licenses\sasl.txt c:\program files\AVG\AVG2012\3rd_party\licenses\tinyxml.txt c:\program files\AVG\AVG2012\3rd_party\licenses\unrar.txt c:\program files\AVG\AVG2012\3rd_party\licenses\untar.txt c:\program files\AVG\AVG2012\3rd_party\licenses\xalan_xerces.txt c:\program files\AVG\AVG2012\3rd_party\licenses\zlib.txt c:\program files\AVG\AVG2012\3rd_party\readme.txt c:\program files\AVG\AVG2012\avg.snu c:\program files\AVG\AVG2012\avg_nl.lng c:\program files\AVG\AVG2012\avg_us.lng c:\program files\AVG\AVG2012\avgabout.dll c:\program files\AVG\AVG2012\avgamnot.dll c:\program files\AVG\AVG2012\avgapix.dll c:\program files\AVG\AVG2012\avgatend.stp c:\program files\AVG\AVG2012\avgatupd.stp c:\program files\AVG\AVG2012\avgcfgex.exe c:\program files\AVG\AVG2012\avgcfgx.dll c:\program files\AVG\AVG2012\avgcmgr.exe c:\program files\AVG\AVG2012\avgcorex.dll c:\program files\AVG\AVG2012\avgcremx.exe c:\program files\AVG\AVG2012\avgcslx.dll c:\program files\AVG\AVG2012\avgdecider.dll c:\program files\AVG\AVG2012\avgdg_nl.chm c:\program files\AVG\AVG2012\avgdg_us.chm c:\program files\AVG\AVG2012\avgdiagex.exe c:\program files\AVG\AVG2012\avgdtiex.dll c:\program files\AVG\AVG2012\avgdumpx.exe c:\program files\AVG\AVG2012\avgf_nl.chm c:\program files\AVG\AVG2012\avgf_us.chm c:\program files\AVG\AVG2012\avgfree_nl.mht c:\program files\AVG\AVG2012\avgfree_us.mht c:\program files\AVG\AVG2012\avglngx.dll c:\program files\AVG\AVG2012\avglogx.dll c:\program files\AVG\AVG2012\avgls_nl.chm c:\program files\AVG\AVG2012\avgls_us.chm c:\program files\AVG\AVG2012\avgmfapx.exe c:\program files\AVG\AVG2012\avgmfarx.dll c:\program files\AVG\AVG2012\avgmwdef_nl.mht c:\program files\AVG\AVG2012\avgmwdef_us.mht c:\program files\AVG\AVG2012\avgnsx.exe c:\program files\AVG\AVG2012\avgntdumpx.exe c:\program files\AVG\AVG2012\avgntopensslx.dll c:\program files\AVG\AVG2012\avgntsqlitex.dll c:\program files\AVG\AVG2012\avgopensslx.dll c:\program files\AVG\AVG2012\avgpostinstx.dll c:\program files\AVG\AVG2012\avgpp.dll c:\program files\AVG\AVG2012\avgresf.dll c:\program files\AVG\AVG2012\avgsals_nl.mht c:\program files\AVG\AVG2012\avgsals_us.mht c:\program files\AVG\AVG2012\avgsbfree_nl.mht c:\program files\AVG\AVG2012\avgsbfree_us.mht c:\program files\AVG\AVG2012\avgsched.dll c:\program files\AVG\AVG2012\avgsrmax.exe c:\program files\AVG\AVG2012\avgsrmx.dll c:\program files\AVG\AVG2012\avgsysx.dll c:\program files\AVG\AVG2012\AVGTBInstall.exe c:\program files\AVG\AVG2012\avgtray.exe c:\program files\AVG\AVG2012\avgtrial_nl.mht c:\program files\AVG\AVG2012\avgtrial_us.mht c:\program files\AVG\AVG2012\avgui.exe c:\program files\AVG\AVG2012\avguiadv.dll c:\program files\AVG\AVG2012\avguires.dll c:\program files\AVG\AVG2012\avguirux.exe c:\program files\AVG\AVG2012\avgupd.sig c:\program files\AVG\AVG2012\avgupdx.dll c:\program files\AVG\AVG2012\avgutilx.dll c:\program files\AVG\AVG2012\avgvvx.dll c:\program files\AVG\AVG2012\avgwd.dll c:\program files\AVG\AVG2012\avgwdsvc.exe c:\program files\AVG\AVG2012\avgwdwsc.dll c:\program files\AVG\AVG2012\avgwsc.exe c:\program files\AVG\AVG2012\avgxpl.dll c:\program files\AVG\AVG2012\awacs\dav\component\content.dat c:\program files\AVG\AVG2012\awacs\dav\component\image.bmp c:\program files\AVG\AVG2012\awacs\dav\sign.bin c:\program files\AVG\AVG2012\awacs\fas\component\content.dat c:\program files\AVG\AVG2012\awacs\fas\component\image.bmp c:\program files\AVG\AVG2012\awacs\fas\sign.bin c:\program files\AVG\AVG2012\awacs\inclient_free\banner\content.dat c:\program files\AVG\AVG2012\awacs\inclient_free\sign.bin c:\program files\AVG\AVG2012\awacs\inclient_free\upgrade\content.dat c:\program files\AVG\AVG2012\awacs\inclient_free_cnet\sign.bin c:\program files\AVG\AVG2012\awacs\inclient_free_cnet\upgrade\content.dat c:\program files\AVG\AVG2012\awacs\inclient_trial\banner\content.dat c:\program files\AVG\AVG2012\awacs\inclient_trial\sign.bin c:\program files\AVG\AVG2012\awacs\mobilation\component\content.dat c:\program files\AVG\AVG2012\awacs\mobilation\component\image.bmp c:\program files\AVG\AVG2012\awacs\mobilation\sign.bin c:\program files\AVG\AVG2012\awacs\mobilation_en\component\content.dat c:\program files\AVG\AVG2012\awacs\mobilation_en\component\image.bmp c:\program files\AVG\AVG2012\awacs\mobilation_en\sign.bin c:\program files\AVG\AVG2012\awacs\mobilation_en_sp1\component\content.dat c:\program files\AVG\AVG2012\awacs\mobilation_en_sp1\component\image.bmp c:\program files\AVG\AVG2012\awacs\mobilation_en_sp1\sign.bin c:\program files\AVG\AVG2012\awacs\mobilation_sp1\component\content.dat c:\program files\AVG\AVG2012\awacs\mobilation_sp1\component\image.bmp c:\program files\AVG\AVG2012\awacs\mobilation_sp1\sign.bin c:\program files\AVG\AVG2012\awacs\obx\component\content.dat c:\program files\AVG\AVG2012\awacs\obx\component\image.bmp c:\program files\AVG\AVG2012\awacs\obx\sign.bin c:\program files\AVG\AVG2012\awacs\pct\component\content.dat c:\program files\AVG\AVG2012\awacs\pct\component\image.bmp c:\program files\AVG\AVG2012\awacs\pct\sign.bin c:\program files\AVG\AVG2012\awacs\rules.cat c:\program files\AVG\AVG2012\awacs\rules.js c:\program files\AVG\AVG2012\awacs\speedtest\component\content.dat c:\program files\AVG\AVG2012\awacs\speedtest\component\speedtest.bmp c:\program files\AVG\AVG2012\awacs\speedtest\sign.bin c:\program files\AVG\AVG2012\awacs\speedtest_sp1\component\content.dat c:\program files\AVG\AVG2012\awacs\speedtest_sp1\component\speedtest2.bmp c:\program files\AVG\AVG2012\awacs\speedtest_sp1\sign.bin c:\program files\AVG\AVG2012\axioo.dll c:\program files\AVG\AVG2012\cf.dat c:\program files\AVG\AVG2012\Chrome\donottrack.crx c:\program files\AVG\AVG2012\compat.ini c:\program files\AVG\AVG2012\contacts_nl.html c:\program files\AVG\AVG2012\contacts_us.html c:\program files\AVG\AVG2012\dfncfg.dat c:\program files\AVG\AVG2012\Drivers\avgidsh.cat c:\program files\AVG\AVG2012\Drivers\avgidsh.inf c:\program files\AVG\AVG2012\Drivers\avgidsha.sys c:\program files\AVG\AVG2012\Drivers\avgidshx.sys c:\program files\AVG\AVG2012\Drivers\avgtdi.cat c:\program files\AVG\AVG2012\Drivers\avgtdi.inf c:\program files\AVG\AVG2012\Drivers\avgtdia.sys c:\program files\AVG\AVG2012\Drivers\avgtdix.sys c:\program files\AVG\AVG2012\dt.dat c:\program files\AVG\AVG2012\Firefox\DoNotTrack\chrome.manifest c:\program files\AVG\AVG2012\Firefox\DoNotTrack\Chrome\donottrack.jar c:\program files\AVG\AVG2012\Firefox\DoNotTrack\components\avg-dnt-policy.js c:\program files\AVG\AVG2012\Firefox\DoNotTrack\components\avg-dnt-protocol.js c:\program files\AVG\AVG2012\Firefox\DoNotTrack\defaults\preferences\defaults.js c:\program files\AVG\AVG2012\Firefox\DoNotTrack\install.rdf c:\program files\AVG\AVG2012\fixcfg.exe c:\program files\AVG\AVG2012\html\reportcard\avg_logo.png c:\program files\AVG\AVG2012\html\reportcard\awards.png c:\program files\AVG\AVG2012\html\reportcard\index.html c:\program files\AVG\AVG2012\html\reportcard\menu-bg.png c:\program files\AVG\AVG2012\html\reportcard\menu-content-bg.png c:\program files\AVG\AVG2012\html\reportcard\menu-footer-bg.png c:\program files\AVG\AVG2012\html\reportcard\reportcard.css c:\program files\AVG\AVG2012\html\reportcard\table_bg.png c:\program files\AVG\AVG2012\HtmLayout.dll c:\program files\AVG\AVG2012\Icons\128x128.png c:\program files\AVG\AVG2012\Icons\16x16.png c:\program files\AVG\AVG2012\Icons\48x48.png c:\program files\AVG\AVG2012\Icons\64x64.png c:\program files\AVG\AVG2012\Icons\avg_icon_128.png c:\program files\AVG\AVG2012\Icons\avg_icon_16.png c:\program files\AVG\AVG2012\Icons\avg_icon_32.png c:\program files\AVG\AVG2012\Icons\avg_icon_48.png c:\program files\AVG\AVG2012\Icons\avg_icon_64.png c:\program files\AVG\AVG2012\Icons\bg_bottom_container.png c:\program files\AVG\AVG2012\Icons\bg_bottom_tracking.png c:\program files\AVG\AVG2012\Icons\bg_close.gif c:\program files\AVG\AVG2012\Icons\bg_expand.gif c:\program files\AVG\AVG2012\Icons\bg_mid_container.png c:\program files\AVG\AVG2012\Icons\bg_mid_tracking.png c:\program files\AVG\AVG2012\Icons\bg_tooltip.gif c:\program files\AVG\AVG2012\Icons\bg_top_container.png c:\program files\AVG\AVG2012\Icons\bg_top_tracking.png c:\program files\AVG\AVG2012\Icons\bg_tracking.gif c:\program files\AVG\AVG2012\Icons\btn_block.png c:\program files\AVG\AVG2012\Icons\bubbleBtm.png c:\program files\AVG\AVG2012\Icons\bubbleMid.png c:\program files\AVG\AVG2012\Icons\bubbleTop.png c:\program files\AVG\AVG2012\Icons\bull4x4.gif c:\program files\AVG\AVG2012\Icons\divider.gif c:\program files\AVG\AVG2012\Icons\DNT-logo.png c:\program files\AVG\AVG2012\Icons\innerBG_gradient.gif c:\program files\AVG\AVG2012\Icons\tooltipIcon.png c:\program files\AVG\AVG2012\Icons\tracking_off.png c:\program files\AVG\AVG2012\Icons\tracking_on.png c:\program files\AVG\AVG2012\Icons\x_btn.png c:\program files\AVG\AVG2012\idpfixx.exe c:\program files\AVG\AVG2012\license_nl.htm c:\program files\AVG\AVG2012\license_us.htm c:\program files\AVG\AVG2012\mfanl.lns c:\program files\AVG\AVG2012\mfaus.lns c:\program files\AVG\AVG2012\mfaverx.txt c:\program files\AVG\AVG2012\mwbsr_e_free_nl.mht c:\program files\AVG\AVG2012\mwbsr_e_free_us.mht c:\program files\AVG\AVG2012\mwbsr_f_free_nl.mht c:\program files\AVG\AVG2012\mwbsr_f_free_us.mht c:\program files\AVG\AVG2012\ph.dat c:\program files\AVG\AVG2012\sb.dat c:\program files\AVG\AVG2012\sb.dat.xcd c:\program files\AVG\AVG2012\sb2.dat c:\program files\AVG\AVG2012\sc.dat c:\program files\AVG\AVG2012\sc.dat.xcd c:\program files\AVG\AVG2012\updatecomps.bak c:\program files\Common Files\AVG Secure Search c:\program files\Common Files\AVG Secure Search\CommonInstaller\11.2.0\CommonInstaller.exe c:\program files\Common Files\AVG Secure Search\InstalledProducts.ini c:\program files\Common Files\AVG Secure Search\ScriptHelperInstaller\11.2.0\ScriptHelper.exe c:\program files\Common Files\AVG Secure Search\SiteSafetyInstaller\11.2.0\npsitesafety.dll c:\program files\Common Files\AVG Secure Search\SiteSafetyInstaller\11.2.0\SiteSafety.dll c:\program files\Common Files\AVG Secure Search\ToolBandTlb\11.0.2\toolband c:\program files\Common Files\AVG Secure Search\ToolBandTlb\11.2.0\toolband c:\program files\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll c:\program files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe c:\program files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\UpdaterConfig.ini c:\program files\Common Files\G Data c:\programdata\AVG Secure Search c:\programdata\AVG Secure Search\11.0.0.10\chrome\avg.jar c:\programdata\AVG Secure Search\11.0.0.10\icon.png c:\programdata\AVG Secure Search\11.0.0.10\install.rdf c:\programdata\AVG Secure Search\11.0.0.10\locale\en-US\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\avg.xml c:\programdata\AVG Secure Search\11.0.0.10\modules\Bindings.xml c:\programdata\AVG Secure Search\11.0.0.10\modules\configuration_0.css c:\programdata\AVG Secure Search\11.0.0.10\modules\configuration_0.xul c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\cs\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\da\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\de\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\en\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\es-es\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\es\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\fr\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\hu\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\id\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\it\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\ja\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\ko\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\ms\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\nl\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\pl\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\pt-br\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\pt\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\ru\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\sk\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\sr\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\tr\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\zh-cn\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\locale\zh-tw\global.dtd c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\about.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\active-threats18.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\ajax-loader.gif c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\calc.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\CleanHistory.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\close.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\current.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\currently-safe18.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\Facebook.gif c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\feedback.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\feedicon.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\help.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\icon_search.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\icon18.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\information-24.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\labs.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\loader.gif c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\note.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\questionmarkIcon.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\search.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\SecuredSearch.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\speed-test.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\surf-with-caution18.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\uninstall.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\updating18.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\weather.gif c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\window-close.png c:\programdata\AVG Secure Search\11.0.0.10\modules\skin\windows.png c:\programdata\AVG Secure Search\11.1.0.12\chrome.manifest c:\programdata\AVG Secure Search\11.1.0.12\chrome\avg.jar c:\programdata\AVG Secure Search\11.1.0.12\components\toolbarhomeApi.js c:\programdata\AVG Secure Search\11.1.0.12\icon.png c:\programdata\AVG Secure Search\11.1.0.12\install.rdf c:\programdata\AVG Secure Search\11.1.0.12\locale\en-US\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\locale\en-US\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\avg.xml c:\programdata\AVG Secure Search\11.1.0.12\modules\avgJsm.js c:\programdata\AVG Secure Search\11.1.0.12\modules\Bindings.xml c:\programdata\AVG Secure Search\11.1.0.12\modules\configuration.js c:\programdata\AVG Secure Search\11.1.0.12\modules\configuration_0.css c:\programdata\AVG Secure Search\11.1.0.12\modules\configuration_0.xul c:\programdata\AVG Secure Search\11.1.0.12\modules\HistoryCleaner.js c:\programdata\AVG Secure Search\11.1.0.12\modules\IOJsm.js c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\cs\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\cs\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\da\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\da\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\de\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\de\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\en\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\en\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\es-es\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\es-es\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\es\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\es\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\fr\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\fr\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\hu\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\hu\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\id\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\id\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\it\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\it\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\ja\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\ja\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\ko\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\ko\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\ms\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\ms\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\nl\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\nl\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\pl\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\pl\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\pt-br\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\pt-br\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\pt\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\pt\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\ru\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\ru\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\sk\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\sk\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\sr\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\sr\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\tr\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\tr\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\zh-cn\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\zh-cn\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\zh-tw\global.dtd c:\programdata\AVG Secure Search\11.1.0.12\modules\locale\zh-tw\global.properties c:\programdata\AVG Secure Search\11.1.0.12\modules\Preferences.js c:\programdata\AVG Secure Search\11.1.0.12\modules\propertiesJsm.js c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\about.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\active-threats18.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\ajax-loader.gif c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\calc.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\CleanHistory.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\close.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\current.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\currently-safe18.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\Facebook.gif c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\feedback.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\feedicon.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\help.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\icon_search.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\icon18.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\information-24.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\labs.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\loader.gif c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\note.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\questionmarkIcon.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\search.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\SecuredSearch.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\speed-test.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\surf-with-caution18.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\uninstall.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\updating18.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\weather.gif c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\window-close.png c:\programdata\AVG Secure Search\11.1.0.12\modules\skin\windows.png c:\programdata\AVG Secure Search\Statistics\stats.ini c:\programdata\AVG2012 c:\programdata\AVG2012\Cfg\admin.cfg c:\programdata\AVG2012\Cfg\changecfgreg.cfg c:\programdata\AVG2012\Cfg\csl.cfg c:\programdata\AVG2012\Cfg\dav.cfg c:\programdata\AVG2012\Cfg\erd.cfg c:\programdata\AVG2012\Cfg\idp2.cfg c:\programdata\AVG2012\Cfg\krnl.cfg c:\programdata\AVG2012\Cfg\mail.cfg c:\programdata\AVG2012\Cfg\mailsrv.cfg c:\programdata\AVG2012\Cfg\mailsrvvsapi.cfg c:\programdata\AVG2012\Cfg\malrep.cfg c:\programdata\AVG2012\Cfg\rsexcludes.cfg c:\programdata\AVG2012\Cfg\sched.cfg c:\programdata\AVG2012\Cfg\setup.cfg c:\programdata\AVG2012\Cfg\spsrv.cfg c:\programdata\AVG2012\Cfg\update.cfg c:\programdata\AVG2012\Cfg\updatecomps.cfg c:\programdata\AVG2012\Cfg\updatecomps.cfg.prepare c:\programdata\AVG2012\Cfg\user.cfg c:\programdata\AVG2012\cfgall\falsealarm.cfg c:\programdata\AVG2012\cfgall\krnlall.cfg c:\programdata\AVG2012\cfgall\updateall.cfg c:\programdata\AVG2012\cfgall\userall.cfg c:\programdata\AVG2012\Chjw\66ce5114ce50de3d.dat c:\programdata\AVG2012\Chjw\66ce5114ce50de3d\avgcchff.dat c:\programdata\AVG2012\Chjw\66ce5114ce50de3d\avgcchfi.dat c:\programdata\AVG2012\Chjw\66ce5114ce50de3d\avgcchmf.dat c:\programdata\AVG2012\Chjw\66ce5114ce50de3d\avgcchmi.dat c:\programdata\AVG2012\fet\66ce5114ce50de3d.dat c:\programdata\AVG2012\IDS\config\md5Cache.dat c:\programdata\AVG2012\IDS\config\quarantinedList.zip c:\programdata\AVG2012\IDS\config\ShortcutCache.dat c:\programdata\AVG2012\IDS\config\userList.zip c:\programdata\AVG2012\IDS\profile\globalLoadable.gdb c:\programdata\AVG2012\log\avgcfg.log c:\programdata\AVG2012\log\avgcfg.log.lock c:\programdata\AVG2012\log\avgcfgex.log.lock c:\programdata\AVG2012\log\avgchjw.log.1 c:\programdata\AVG2012\log\avgchjw.log.2 c:\programdata\AVG2012\log\avgchjw.log.3 c:\programdata\AVG2012\log\avgchjw.log.4 c:\programdata\AVG2012\log\avgchjw.log.5 c:\programdata\AVG2012\log\avgchjw.log.lock c:\programdata\AVG2012\log\avgcore.log.1 c:\programdata\AVG2012\log\avgcore.log.2 c:\programdata\AVG2012\log\avgcore.log.3 c:\programdata\AVG2012\log\avgcore.log.4 c:\programdata\AVG2012\log\avgcore.log.5 c:\programdata\AVG2012\log\avgcore.log.6 c:\programdata\AVG2012\log\avgcore.log.lock c:\programdata\AVG2012\log\avgcsl.log c:\programdata\AVG2012\log\avgcsl.log.1 c:\programdata\AVG2012\log\avgcsl.log.lock c:\programdata\AVG2012\log\avgdecider.log c:\programdata\AVG2012\log\avgdecider.log.1 c:\programdata\AVG2012\log\avgdecider.log.2 c:\programdata\AVG2012\log\avgdecider.log.lock c:\programdata\AVG2012\log\avgdiagex.log.lock c:\programdata\AVG2012\log\avgemc.log.lock c:\programdata\AVG2012\log\avgexc.log.lock c:\programdata\AVG2012\log\avgidpagent.log.1 c:\programdata\AVG2012\log\avgidpagent.log.lock c:\programdata\AVG2012\log\avgldr.log.lock c:\programdata\AVG2012\log\avglng.log c:\programdata\AVG2012\log\avglng.log.lock c:\programdata\AVG2012\log\avgns.log c:\programdata\AVG2012\log\avgns.log.1 c:\programdata\AVG2012\log\avgns.log.2 c:\programdata\AVG2012\log\avgns.log.3 c:\programdata\AVG2012\log\avgns.log.4 c:\programdata\AVG2012\log\avgns.log.5 c:\programdata\AVG2012\log\avgns.log.6 c:\programdata\AVG2012\log\avgns.log.lock c:\programdata\AVG2012\log\avgpostinst.log.lock c:\programdata\AVG2012\log\avgrkt.log.lock c:\programdata\AVG2012\log\avgrs.log.1 c:\programdata\AVG2012\log\avgrs.log.2 c:\programdata\AVG2012\log\avgrs.log.3 c:\programdata\AVG2012\log\avgrs.log.4 c:\programdata\AVG2012\log\avgrs.log.5 c:\programdata\AVG2012\log\avgrs.log.6 c:\programdata\AVG2012\log\avgrs.log.lock c:\programdata\AVG2012\log\avgscan.log.1 c:\programdata\AVG2012\log\avgscan.log.2 c:\programdata\AVG2012\log\avgscan.log.3 c:\programdata\AVG2012\log\avgscan.log.lock c:\programdata\AVG2012\log\avgsched.log c:\programdata\AVG2012\log\avgsched.log.1 c:\programdata\AVG2012\log\avgsched.log.2 c:\programdata\AVG2012\log\avgsched.log.3 c:\programdata\AVG2012\log\avgsched.log.4 c:\programdata\AVG2012\log\avgsched.log.5 c:\programdata\AVG2012\log\avgsched.log.6 c:\programdata\AVG2012\log\avgsched.log.lock c:\programdata\AVG2012\log\avgsrm.log c:\programdata\AVG2012\log\avgsrm.log.1 c:\programdata\AVG2012\log\avgsrm.log.lock c:\programdata\AVG2012\log\avgsrmac.log c:\programdata\AVG2012\log\avgsrmac.log.lock c:\programdata\AVG2012\log\avgtdi.log c:\programdata\AVG2012\log\avgtdi.log.lock c:\programdata\AVG2012\log\avgtray_idp_Frank.log.1 c:\programdata\AVG2012\log\avgtray_idp_Frank.log.lock c:\programdata\AVG2012\log\avgual.log c:\programdata\AVG2012\log\avgual.log.lock c:\programdata\AVG2012\log\avgui.log c:\programdata\AVG2012\log\avgui.log.1 c:\programdata\AVG2012\log\avgui.log.2 c:\programdata\AVG2012\log\avgui.log.lock c:\programdata\AVG2012\log\avgui_idp_Frank.log.lock c:\programdata\AVG2012\log\avguilog.cfg c:\programdata\AVG2012\log\avgupd.log c:\programdata\AVG2012\log\avgupd.log.1 c:\programdata\AVG2012\log\avgupd.log.2 c:\programdata\AVG2012\log\avgupd.log.3 c:\programdata\AVG2012\log\avgupd.log.4 c:\programdata\AVG2012\log\avgupd.log.5 c:\programdata\AVG2012\log\avgupd.log.6 c:\programdata\AVG2012\log\avgupd.log.7 c:\programdata\AVG2012\log\avgupd.log.lock c:\programdata\AVG2012\log\avgwd.log c:\programdata\AVG2012\log\avgwd.log.1 c:\programdata\AVG2012\log\avgwd.log.2 c:\programdata\AVG2012\log\avgwd.log.3 c:\programdata\AVG2012\log\avgwd.log.lock c:\programdata\AVG2012\log\avgwdsvc.log c:\programdata\AVG2012\log\avgwdsvc.log.lock c:\programdata\AVG2012\log\avgwdsvc_idp_SYSTEM.log.1 c:\programdata\AVG2012\log\avgwdsvc_idp_SYSTEM.log.2 c:\programdata\AVG2012\log\avgwdsvc_idp_SYSTEM.log.lock c:\programdata\AVG2012\log\cfgexlog.cfg c:\programdata\AVG2012\log\cfglog.cfg c:\programdata\AVG2012\log\commonpriv.log.lock c:\programdata\AVG2012\log\csllog.cfg c:\programdata\AVG2012\log\deciderlog.cfg c:\programdata\AVG2012\log\fixcfg.log c:\programdata\AVG2012\log\fixcfg.log.lock c:\programdata\AVG2012\log\history.xml c:\programdata\AVG2012\log\lnglog.cfg c:\programdata\AVG2012\log\nslog.cfg c:\programdata\AVG2012\log\privlog.cfg c:\programdata\AVG2012\log\publog.cfg c:\programdata\AVG2012\log\schedlog.cfg c:\programdata\AVG2012\log\srmlog.cfg c:\programdata\AVG2012\log\tdilog.cfg c:\programdata\AVG2012\log\updlog.cfg c:\programdata\AVG2012\log\vault.log c:\programdata\AVG2012\log\vault.log.lock c:\programdata\AVG2012\log\vaultlog.cfg c:\programdata\AVG2012\log\wdlog.cfg c:\programdata\AVG2012\log\wdsvclog.cfg c:\programdata\AVG2012\process.bin c:\programdata\AVG2012\scanlogs\srm.idx c:\programdata\AVG2012\SetupBackup\Avgx86.msi c:\programdata\AVG2012\SetupBackup\basex.cab c:\programdata\AVG2012\SetupBackup\COREx.cab c:\programdata\AVG2012\SetupBackup\COREx86.msi c:\programdata\AVG2012\SetupBackup\GUIx.cab c:\programdata\AVG2012\SetupBackup\lng_nlx.cab c:\programdata\AVG2012\SetupBackup\lng_usx.cab c:\programdata\AVG2012\SetupBackup\SrchSrfx.cab c:\programdata\AVG2012\SetupBackup\SSHttpBx.cab c:\programdata\AVG2012\SetupBackup\TDIDrvx.cab c:\programdata\AVG2012\SetupBackup\Updatex.cab c:\programdata\AVG2012\Temp\file3196.tmp c:\programdata\AVG2012\Temp\file9514.tmp c:\programdata\AVG2012\update\download\avg12infoavi.ctf c:\programdata\AVG2012\update\download\avg12infowin.ctf c:\programdata\G DATA c:\programdata\G DATA\AVK\Log\AVKLog\0000000001.log c:\programdata\G DATA\AVK\Log\AVKLog\0000000002.log c:\programdata\G DATA\AVK\Log\AVKLog\0000000003.log c:\programdata\G DATA\AVK\Log\AVKLog\0000000004.log c:\programdata\G DATA\AVK\Log\AVKLog\0000000005.log c:\programdata\G DATA\AVK\Log\AVKLog\0000000006.log c:\programdata\G DATA\AVK\Log\AVKLog\0000000007.log c:\programdata\G DATA\AVK\Log\AVKLog\0000000008.log c:\programdata\G DATA\AVK\Log\AVKLog\0000000009.log c:\programdata\G DATA\AVK\Log\AVKLog\0000000010.log c:\programdata\G DATA\AVK\Log\AVKLog\0000000011.log c:\programdata\G DATA\AVK\Log\AVKLog\0000000012.log c:\programdata\G DATA\AVK\Log\AVKLog\0000000013.log c:\programdata\G DATA\AVK\Log\AVKLog\0000000014.log c:\programdata\G DATA\AVK\Log\AVKLog\0000000015.log c:\programdata\G DATA\AVK\Log\AVKLog\0000000016.log c:\programdata\G DATA\AVK\Log\AVKLog\0000000017.log c:\programdata\G DATA\AVK\Log\AVKLog\0000000018.log c:\programdata\G DATA\AVK\Log\AVKLog\0000000019.log c:\programdata\G DATA\ISDB\avS.isdb c:\programdata\G DATA\ISDB\avS.isdb.save c:\programdata\G DATA\ISDB\avSU.isdb c:\programdata\G DATA\ISDB\avSU.isdb.save c:\programdata\G DATA\ISDB\wlcoll.isdb c:\programdata\G DATA\Whitelists\wd6.0_sp2_32_ws_19_20110127.isdb c:\users\Frank\{6de70698-64a4-4d62-890e-5a69342e3560} c:\users\Frank\{6de70698-64a4-4d62-890e-5a69342e3560}\bdfndisf6.cat c:\users\Frank\{6de70698-64a4-4d62-890e-5a69342e3560}\bdfndisf6.sys c:\users\Frank\{6de70698-64a4-4d62-890e-5a69342e3560}\netlwf.inf c:\users\Frank\AppData\Local\AVG Secure Search c:\users\Frank\AppData\Local\AVG Secure Search\SiteSafety\l_2012_07_10_05_59_11.db c:\users\Frank\AppData\Local\AVG Secure Search\SiteSafety\l_2012_07_11_09_26_40.db c:\users\Frank\AppData\Roaming\AVG2012 c:\users\Frank\AppData\Roaming\AVG2012\cfgall\userawacs.cfg c:\users\Frank\AppData\Roaming\AVG2012\cfgall\usergui.cfg c:\windows\system32\spsys.log . . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Service_avgwd -------\Service_vToolbarUpdater11.2.0 -------\Service_avgwd -------\Service_vToolbarUpdater11.2.0 . . (((((((((((((((((((( Bestanden Gemaakt van 2012-06-13 to 2012-07-13 )))))))))))))))))))))))))))))) . . 2012-07-13 13:15 . 2012-07-13 13:23 -------- d-----w- c:\users\Frank\AppData\Local\temp 2012-07-13 13:15 . 2012-07-13 13:15 -------- d-----w- c:\users\IUSR_NMPR\AppData\Local\temp 2012-07-13 13:15 . 2012-07-13 13:15 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-07-13 09:00 . 2012-07-13 09:00 -------- d-----w- c:\users\Frank\AppData\Local\blekkotb_031 2012-07-13 06:44 . 2012-06-13 13:40 2047488 ----a-w- c:\windows\system32\win32k.sys 2012-07-12 14:27 . 2012-07-12 14:27 -------- d-----w- c:\users\Frank\AppData\Roaming\Bitdefender 2012-07-12 14:27 . 2012-07-12 14:29 -------- d-----w- c:\programdata\Bitdefender 2012-07-12 14:24 . 2012-07-12 14:26 -------- d-----w- c:\program files\Bitdefender 2012-07-12 14:24 . 2011-08-16 12:59 360976 ----a-w- c:\windows\system32\drivers\bdfsfltr.sys 2012-07-12 14:24 . 2011-10-27 13:07 340624 ----a-w- c:\windows\system32\drivers\trufos.sys 2012-07-12 14:10 . 2012-07-12 14:10 -------- d-----w- c:\program files\AVG Secure Search 2012-07-12 09:13 . 2012-07-12 09:23 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2012-07-12 09:13 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-07-12 07:11 . 2012-06-04 15:26 440704 ----a-w- c:\windows\system32\drivers\ksecdd.sys 2012-07-12 07:11 . 2012-06-02 00:04 278528 ----a-w- c:\windows\system32\schannel.dll 2012-07-12 07:11 . 2012-06-02 00:03 204288 ----a-w- c:\windows\system32\ncrypt.dll 2012-07-12 07:11 . 2012-06-05 16:47 708608 ----a-w- c:\program files\Common Files\System\ado\msado15.dll 2012-07-12 07:11 . 2012-06-05 16:47 1401856 ----a-w- c:\windows\system32\msxml6.dll 2012-07-12 07:11 . 2012-06-05 16:47 1248768 ----a-w- c:\windows\system32\msxml3.dll 2012-07-10 12:57 . 2012-07-13 10:03 -------- d-----w- c:\programdata\MFAData 2012-07-10 12:57 . 2012-07-10 12:57 -------- d--h--w- c:\programdata\Common Files 2012-07-06 06:42 . 2012-07-06 06:42 770384 ----a-w- c:\program files\Mozilla Firefox\msvcr100.dll 2012-07-06 06:42 . 2012-07-06 06:42 421200 ----a-w- c:\program files\Mozilla Firefox\msvcp100.dll 2012-07-05 16:01 . 2012-07-05 16:01 -------- d-----w- c:\programdata\BDLogging 2012-07-05 15:59 . 2009-07-14 17:45 445008 ----a-w- c:\windows\system32\drivers\Wdf01000.sys 2012-07-05 15:59 . 2009-07-14 17:45 38480 ----a-w- c:\windows\system32\drivers\WdfLdr.sys 2012-07-05 15:45 . 2012-07-12 14:24 -------- d-----w- c:\program files\Common Files\Bitdefender 2012-07-05 07:19 . 2012-07-12 09:05 -------- d-----w- c:\users\Frank\AppData\Roaming\Malwarebytes 2012-07-05 07:19 . 2012-07-05 07:19 -------- d-----w- c:\programdata\Malwarebytes 2012-07-05 07:10 . 2012-07-05 07:10 -------- d-----w- c:\users\Frank\AppData\Roaming\QuickScan 2012-07-04 13:24 . 2012-07-04 13:24 30416 ----a-w- c:\windows\system32\drivers\GRD.sys 2012-07-04 12:55 . 2012-07-04 12:55 -------- d-----w- c:\windows\system32\BioAPIFFDB 2012-07-04 12:53 . 2012-07-04 12:53 49528 ----a-w- c:\windows\system32\drivers\PktIcpt.sys 2012-07-04 12:07 . 2012-07-05 06:30 -------- d-----w- c:\users\Frank\AppData\Local\Downloaded Installations 2012-07-04 07:57 . 2012-05-31 03:41 6762896 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{FEA2C79F-5D3F-4F2F-990C-184DBEE9C5F8}\mpengine.dll 2012-07-02 13:05 . 2012-07-02 13:05 -------- d-----w- c:\users\Frank\AppData\Roaming\Anvisoft 2012-07-02 13:05 . 2012-06-18 06:42 22784 ----a-w- c:\windows\system32\drivers\asdrs.sys 2012-07-02 13:05 . 2012-06-18 06:42 16128 ----a-w- c:\windows\system32\drivers\asdrm.sys 2012-07-02 13:04 . 2012-07-02 13:04 -------- d-----w- c:\program files\Anvisoft 2012-07-02 11:32 . 2012-07-02 11:32 -------- d-----w- c:\users\Frank\AppData\Roaming\DriverCure 2012-07-02 11:32 . 2012-07-02 11:32 -------- d-----w- c:\users\Frank\AppData\Roaming\SpeedyPC Software 2012-07-02 11:32 . 2012-07-05 05:51 -------- d-----w- c:\programdata\SpeedyPC Software 2012-07-02 09:44 . 2012-07-02 09:44 388096 ----a-r- c:\users\Frank\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2012-07-02 09:44 . 2012-07-02 09:44 -------- d-----w- c:\program files\Trend Micro 2012-07-02 08:50 . 2012-07-02 08:52 -------- d-----w- C:\rei 2012-07-02 08:50 . 2012-07-02 08:50 -------- d-----w- c:\program files\Reimage 2012-06-28 13:36 . 2012-06-28 13:36 -------- d-----w- c:\program files\HitmanPro 2012-06-28 13:36 . 2012-07-11 16:24 -------- d-----w- c:\programdata\HitmanPro 2012-06-28 07:26 . 2012-06-28 07:26 -------- d-----w- c:\programdata\Grisoft 2012-06-27 12:37 . 2007-04-24 23:10 20480 ----a-w- c:\windows\system32\V0260Srv.exe 2012-06-27 12:37 . 2007-07-11 13:28 36864 ----a-w- c:\windows\system32\V0260Pin.dll 2012-06-27 12:37 . 2004-07-05 23:00 24576 ----a-w- c:\windows\system32\CtCamPin.crl 2012-06-27 12:37 . 2012-06-27 12:37 -------- d-----w- c:\windows\CtDrvInstall 2012-06-27 10:08 . 2012-06-27 12:06 -------- d-----w- c:\programdata\Spybot - Search & Destroy 2012-06-27 10:07 . 2009-01-25 11:14 15224 ----a-w- c:\windows\system32\sdnclean.exe 2012-06-27 10:07 . 2012-06-27 10:08 -------- d-----w- c:\program files\Spybot - Search & Destroy 2 2012-06-27 05:45 . 2012-06-27 05:45 -------- d-----w- c:\programdata\WindowsSearch 2012-06-27 05:39 . 2012-06-02 22:19 53784 ----a-w- c:\windows\system32\wuauclt.exe 2012-06-27 05:39 . 2012-06-02 22:19 45080 ----a-w- c:\windows\system32\wups2.dll 2012-06-27 05:39 . 2012-06-02 22:19 1933848 ----a-w- c:\windows\system32\wuaueng.dll 2012-06-27 05:39 . 2012-06-02 22:12 2422272 ----a-w- c:\windows\system32\wucltux.dll 2012-06-27 05:39 . 2012-06-02 22:19 35864 ----a-w- c:\windows\system32\wups.dll 2012-06-27 05:39 . 2012-06-02 22:12 88576 ----a-w- c:\windows\system32\wudriver.dll 2012-06-27 05:39 . 2012-06-02 22:19 577048 ----a-w- c:\windows\system32\wuapi.dll 2012-06-27 05:38 . 2012-06-02 13:19 171904 ----a-w- c:\windows\system32\wuwebv.dll 2012-06-27 05:38 . 2012-06-02 13:12 33792 ----a-w- c:\windows\system32\wuapp.exe 2012-06-25 08:12 . 2012-06-25 08:12 -------- d-----w- c:\users\Frank\AppData\Local\Macromedia 2012-06-20 12:54 . 2012-06-20 12:54 -------- d-----w- c:\users\Frank\AppData\Local\Ashisoft 2012-06-20 12:53 . 2012-06-20 12:53 -------- d-----w- c:\users\Frank\AppData\Roaming\Ashisoft 2012-06-20 12:53 . 2012-06-20 12:53 -------- d-----w- c:\program files\Duplicate Finder 2012-06-20 12:21 . 2012-06-20 12:21 -------- d-----w- c:\program files\VisiPics 2012-06-19 13:51 . 2012-06-19 13:51 -------- d-----w- c:\users\Frank\AppData\Local\TomTom 2012-06-19 13:45 . 2012-06-19 13:45 -------- d-----w- c:\program files\TomTom International B.V 2012-06-19 13:45 . 2012-06-19 13:45 -------- d-----w- c:\program files\MyTomTom 3 2012-06-14 07:03 . 2012-04-23 16:00 984064 ----a-w- c:\windows\system32\crypt32.dll 2012-06-14 07:03 . 2012-04-23 16:00 133120 ----a-w- c:\windows\system32\cryptsvc.dll 2012-06-14 07:03 . 2012-04-23 16:00 98304 ----a-w- c:\windows\system32\cryptnet.dll 2012-06-14 07:00 . 2012-05-01 14:03 180736 ----a-w- c:\windows\system32\drivers\rdpwd.sys . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-07-13 08:10 . 2012-05-30 13:59 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-07-13 08:10 . 2012-05-30 13:59 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2012-06-08 16:17 . 2012-06-08 16:17 658512 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll 2012-06-03 10:37 . 2012-06-03 10:37 161792 ----a-w- c:\windows\system32\msls31.dll 2012-06-03 10:36 . 2012-06-03 10:36 86528 ----a-w- c:\windows\system32\iesysprep.dll 2012-06-03 10:36 . 2012-06-03 10:36 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe 2012-06-03 10:36 . 2012-06-03 10:36 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe 2012-06-03 10:36 . 2012-06-03 10:36 48640 ----a-w- c:\windows\system32\mshtmler.dll 2012-06-03 10:36 . 2012-06-03 10:36 63488 ----a-w- c:\windows\system32\tdc.ocx 2012-06-03 10:36 . 2012-06-03 10:36 367104 ----a-w- c:\windows\system32\html.iec 2012-06-03 10:36 . 2012-06-03 10:36 74752 ----a-w- c:\windows\system32\iesetup.dll 2012-06-03 10:36 . 2012-06-03 10:36 420864 ----a-w- c:\windows\system32\vbscript.dll 2012-06-03 10:36 . 2012-06-03 10:36 23552 ----a-w- c:\windows\system32\licmgr10.dll 2012-06-03 10:36 . 2012-06-03 10:36 152064 ----a-w- c:\windows\system32\wextract.exe 2012-06-03 10:36 . 2012-06-03 10:36 150528 ----a-w- c:\windows\system32\iexpress.exe 2012-06-03 10:36 . 2012-06-03 10:36 35840 ----a-w- c:\windows\system32\imgutil.dll 2012-06-03 10:36 . 2012-06-03 10:36 11776 ----a-w- c:\windows\system32\mshta.exe 2012-06-03 10:36 . 2012-06-03 10:36 101888 ----a-w- c:\windows\system32\admparse.dll 2012-06-03 10:36 . 2012-06-03 10:36 110592 ----a-w- c:\windows\system32\IEAdvpack.dll 2012-05-30 21:08 . 2011-03-28 16:36 19736 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2012-05-30 09:04 . 2006-11-02 10:32 101888 ----a-w- c:\windows\system32\ifxcardm.dll 2012-05-30 09:04 . 2006-11-02 10:32 82432 ----a-w- c:\windows\system32\axaltocm.dll 2012-05-25 15:43 . 2012-05-25 15:43 623616 ----a-w- c:\windows\system32\localspl.dll 2012-05-25 15:36 . 2012-05-25 15:36 499712 ----a-w- c:\windows\system32\kerberos.dll 2012-05-25 15:33 . 2012-05-25 15:33 1808896 ----a-w- c:\windows\system32\NlsLexicons0046.dll 2012-05-25 15:33 . 2012-05-25 15:33 1793536 ----a-w- c:\windows\system32\NlsLexicons0045.dll 2012-05-25 15:33 . 2012-05-25 15:33 1558016 ----a-w- c:\windows\system32\NlsLexicons0049.dll 2012-05-25 15:33 . 2012-05-25 15:33 1411072 ----a-w- c:\windows\system32\NlsLexicons0047.dll 2012-05-25 15:33 . 2012-05-25 15:33 5499904 ----a-w- c:\windows\system32\NlsLexicons0022.dll 2012-05-25 15:33 . 2012-05-25 15:33 2136064 ----a-w- c:\windows\system32\NlsLexicons0021.dll 2012-05-25 15:33 . 2012-05-25 15:33 1782272 ----a-w- c:\windows\system32\NlsLexicons0039.dll 2012-05-25 15:33 . 2012-05-25 15:33 1236992 ----a-w- c:\windows\system32\NlsLexicons0020.dll 2012-05-25 15:33 . 2012-05-25 15:33 7964672 ----a-w- c:\windows\system32\NlsLexicons0024.dll 2012-05-25 15:33 . 2012-05-25 15:33 6224896 ----a-w- c:\windows\system32\NlsLexicons0027.dll 2012-05-25 15:33 . 2012-05-25 15:33 5791232 ----a-w- c:\windows\system32\NlsLexicons0026.dll 2012-05-25 15:33 . 2012-05-25 15:33 4175872 ----a-w- c:\windows\system32\NlsLexicons0010.dll 2012-05-25 15:33 . 2012-05-25 15:33 4981248 ----a-w- c:\windows\system32\NlsLexicons0013.dll 2012-05-25 15:33 . 2012-05-25 15:33 2466816 ----a-w- c:\windows\system32\NlsLexicons0011.dll 2012-05-25 15:33 . 2012-05-25 15:33 6781440 ----a-w- c:\windows\system32\NlsLexicons0019.dll 2012-05-25 15:33 . 2012-05-25 15:33 3331072 ----a-w- c:\windows\system32\NlsLexicons0018.dll 2012-05-25 15:33 . 2012-05-25 15:33 11722752 ----a-w- c:\windows\system32\NlsLexicons0001.dll 2012-05-25 15:33 . 2012-05-25 15:33 4164096 ----a-w- c:\windows\system32\NlsLexicons0002.dll 2012-05-25 15:33 . 2012-05-25 15:33 1452544 ----a-w- c:\windows\system32\NlsLexicons0003.dll 2012-05-25 15:32 . 2012-05-25 15:32 3419136 ----a-w- c:\windows\system32\NlsLexicons004a.dll 2012-05-25 15:32 . 2012-05-25 15:32 1702912 ----a-w- c:\windows\system32\NlsLexicons004b.dll 2012-05-25 15:32 . 2012-05-25 15:32 4096 ----a-w- c:\windows\system32\NlsLexicons002a.dll 2012-05-25 15:32 . 2012-05-25 15:32 4093440 ----a-w- c:\windows\system32\NlsLexicons004c.dll 2012-05-25 15:32 . 2012-05-25 15:32 4045824 ----a-w- c:\windows\system32\NlsLexicons003e.dll 2012-05-25 15:32 . 2012-05-25 15:32 1972736 ----a-w- c:\windows\system32\NlsLexicons004e.dll 2012-05-25 15:32 . 2012-05-25 15:32 6585856 ----a-w- c:\windows\system32\NlsLexicons001b.dll 2012-05-25 15:32 . 2012-05-25 15:32 6346240 ----a-w- c:\windows\system32\NlsLexicons001d.dll 2012-05-25 15:32 . 2012-05-25 15:32 6014976 ----a-w- c:\windows\system32\NlsLexicons001a.dll 2012-05-25 15:32 . 2012-05-25 15:32 9892864 ----a-w- c:\windows\system32\NlsLexicons000a.dll 2012-05-25 15:32 . 2012-05-25 15:32 6237696 ----a-w- c:\windows\system32\NlsLexicons000c.dll 2012-05-25 15:32 . 2012-05-25 15:32 5654528 ----a-w- c:\windows\system32\NlsLexicons000f.dll 2012-05-25 15:32 . 2012-05-25 15:32 1722368 ----a-w- c:\windows\system32\NlsLexicons000d.dll 2012-05-25 15:32 . 2012-05-25 15:32 5090816 ----a-w- c:\windows\system32\NlsLexicons0416.dll 2012-05-25 15:32 . 2012-05-25 15:32 5031936 ----a-w- c:\windows\system32\NlsLexicons0816.dll 2012-05-25 15:32 . 2012-05-25 15:32 4616192 ----a-w- c:\windows\system32\NlsLexicons0414.dll 2012-05-25 15:32 . 2012-05-25 15:32 7042560 ----a-w- c:\windows\system32\NlsLexicons081a.dll 2012-05-25 15:32 . 2012-05-25 15:32 5071872 ----a-w- c:\windows\system32\NlsModels0011.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData0045.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData0049.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData0047.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData0046.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData0039.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData0020.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData0024.dll 2012-05-25 15:32 . 2012-05-25 15:32 1801216 ----a-w- c:\windows\system32\NlsData0022.dll 2012-05-25 15:32 . 2012-05-25 15:32 1801216 ----a-w- c:\windows\system32\NlsData0021.dll 2012-05-25 15:32 . 2012-05-25 15:32 4495360 ----a-w- c:\windows\system32\NlsData0010.dll 2012-05-25 15:32 . 2012-05-25 15:32 1966592 ----a-w- c:\windows\system32\NlsData0027.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData0026.dll 2012-05-25 15:32 . 2012-05-25 15:32 3466752 ----a-w- c:\windows\system32\NlsData0013.dll 2012-05-25 15:32 . 2012-05-25 15:32 2657280 ----a-w- c:\windows\system32\NlsData0011.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData0018.dll 2012-05-25 15:32 . 2012-05-25 15:32 1523712 ----a-w- c:\windows\system32\NlsData0000.dll 2012-05-25 15:32 . 2012-05-25 15:32 4497408 ----a-w- c:\windows\system32\NlsData0019.dll 2012-05-25 15:32 . 2012-05-25 15:32 2599936 ----a-w- c:\windows\system32\NlsData0001.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData0002.dll 2012-05-25 15:32 . 2012-05-25 15:32 4875776 ----a-w- c:\windows\system32\NlsData0009.dll 2012-05-25 15:32 . 2012-05-25 15:32 2243072 ----a-w- c:\windows\system32\NlsData0007.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData0003.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData004a.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData004e.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData004c.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData004b.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData001b.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData001a.dll 2012-05-25 15:32 . 2012-05-25 15:32 1801216 ----a-w- c:\windows\system32\NlsData003e.dll 2012-05-25 15:32 . 2012-05-25 15:32 1801216 ----a-w- c:\windows\system32\NlsData002a.dll 2012-05-25 15:32 . 2012-05-25 15:32 9847296 ----a-w- c:\windows\system32\NlsData000a.dll 2012-05-25 15:32 . 2012-05-25 15:32 4495360 ----a-w- c:\windows\system32\NlsData001d.dll 2012-05-25 15:32 . 2012-05-25 15:32 2643456 ----a-w- c:\windows\system32\NlsData000c.dll 2012-05-25 15:32 . 2012-05-25 15:32 2342912 ----a-w- c:\windows\system32\NlsData000d.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData000f.dll 2012-05-25 15:32 . 2012-05-25 15:32 4495360 ----a-w- c:\windows\system32\NlsData0414.dll 2012-05-25 15:32 . 2012-05-25 15:32 4495360 ----a-w- c:\windows\system32\NlsData0416.dll 2012-05-25 15:32 . 2012-05-25 15:32 6917120 ----a-w- c:\windows\system32\NlsLexicons0c1a.dll 2012-05-25 15:32 . 2012-05-25 15:32 4495360 ----a-w- c:\windows\system32\NlsData0816.dll 2012-07-06 06:42 . 2012-05-25 12:36 85472 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox1] @="{152C96EB-288E-4EDC-B7C6-D21F8250ADF3}" [HKEY_CLASSES_ROOT\CLSID\{152C96EB-288E-4EDC-B7C6-D21F8250ADF3}] 2012-02-22 11:54 239112 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox2] @="{342DAA0B-D796-460D-8566-901E08A1CCAD}" [HKEY_CLASSES_ROOT\CLSID\{342DAA0B-D796-460D-8566-901E08A1CCAD}] 2012-02-22 11:54 239112 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox3] @="{57595DAE-1AE1-4D97-A49E-67CBB53B52DF}" [HKEY_CLASSES_ROOT\CLSID\{57595DAE-1AE1-4D97-A49E-67CBB53B52DF}] 2012-02-22 11:54 239112 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox4] @="{33816773-98AE-4723-ADE0-EBE54C8B5A67}" [HKEY_CLASSES_ROOT\CLSID\{33816773-98AE-4723-ADE0-EBE54C8B5A67}] 2012-02-22 11:54 239112 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-18 125952] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="RtHDVCpl.exe" [2007-08-17 4702208] "IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2007-10-08 178712] "PlayMovie"="c:\program files\HomeCinema\PlayMovie\PMVService.exe" [2007-09-06 172032] "TVEService"="c:\program files\HomeCinema\TV Enhance\TVEService.exe" [2007-10-19 155648] "NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 153136] "NMSSupport"="c:\program files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe" [2007-06-27 439512] "CCUTRAYICON"="c:\program files\Intel\IntelDH\CCU\CCU_TrayIcon.exe" [2007-06-27 215256] "Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2012-05-25 220160] "toolbar_eula_launcher"="c:\program files\GoogleEULA\EULALauncher.exe" [2007-02-09 16896] "Skytel"="Skytel.exe" [2007-08-03 1826816] "NvSvc"="c:\windows\system32\nvsvc.dll" [2007-09-12 86016] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-09-12 8497696] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-09-12 81920] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712] "AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-04 446392] "SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096] "AdobeCS6ServiceManager"="c:\program files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-05-07 1073312] "Anvi Smart Defender"="c:\program files\Anvisoft\Anvi Smart Defender\ASDTray.exe" [2012-06-25 710912] "Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-07-03 462920] "BDAgent"="c:\program files\Bitdefender\Bitdefender 2012\bdagent.exe" [2012-03-22 1183616] . c:\users\Frank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ OneNote 2007 Schermopname en Snel starten.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "mixer1"=wdmaud.drv . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro36] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro36.sys] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro36Crusader] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro36CrusaderBoot] @="" . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Garmin Lifetime Updater] 2012-05-23 11:32 1466760 ----a-w- c:\program files\Garmin\Lifetime Updater\GarminLifetime.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] 2012-05-25 14:38 116648 ----atw- c:\users\Frank\AppData\Local\Google\Update\GoogleUpdate.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyTomTomSA.exe] 2012-05-18 09:04 434168 ----a-w- c:\program files\MyTomTom 3\MyTomTomSA.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDTray] 2012-05-10 14:29 3349488 ----a-w- c:\program files\Spybot - Search & Destroy 2\SDTray.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar] 2009-04-10 21:28 1233920 ----a-w- c:\program files\Windows Sidebar\sidebar.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spybot-S&D Cleaning] 2012-05-10 14:29 2959336 ----a-w- c:\program files\Spybot - Search & Destroy 2\SDCleaner.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] 2012-05-25 12:33 39408 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe . R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x] S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x] S3 3xHybrid;Philips SAA713x PCI Card;c:\windows\system32\DRIVERS\3xHybrid.sys [x] . . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . Inhoud van de 'Gedeelde Taken' map . 2012-07-13 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-30 08:10] . 2012-07-13 c:\windows\Tasks\Check for updates (Spybot - Search & Destroy).job - c:\program files\Spybot - Search & Destroy 2\SDUpdate.exe [2012-06-27 14:29] . 2012-07-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2012-05-25 14:29] . 2012-07-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2012-05-25 14:29] . 2012-07-13 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2162290485-3537841882-386488429-1001Core.job - c:\users\Frank\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-30 14:38] . 2012-07-13 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2162290485-3537841882-386488429-1001UA.job - c:\users\Frank\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-30 14:38] . 2012-06-27 c:\windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job - c:\program files\Spybot - Search & Destroy 2\SDImmunize.exe [2012-06-27 14:29] . 2012-06-27 c:\windows\Tasks\Scan the system (Spybot - Search & Destroy).job - c:\program files\Spybot - Search & Destroy 2\SDScan.exe [2012-06-27 14:29] . . ------- Bijkomende Scan ------- . mSearch Bar = hxxp://www.google.com/ie IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000 TCP: DhcpNameServer = 195.130.130.1 195.130.131.1 Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - FF - ProfilePath - c:\users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\kqtonk2o.default\ FF - prefs.js: browser.startup.homepage - HLN.be, Nieuws, sport en showbizz, 24/24, 7/7, meer dan 350 nieuwsupdates per dag FF - user.js: extensions.BabylonToolbar_i.instlRef - sst FF - user.js: extentions.y2layers.installId - 0c646adc-9386-4f22-a39a-14201199de22 FF - user.js: extentions.y2layers.defaultEnableAppsList - Buzzdock,Buzzdock, FF - user.js: extensions.autoDisableScopes - 14 FF - user.js: security.csp.enable - false . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2012-07-13 15:22 Windows 6.0.6002 Service Pack 2 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}] "ImagePath"="\??\c:\program files\HomeCinema\PlayMovie\000.fcl" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\{95808DC4-FA4A-4C74-92FE-5B863F82066B}] "ImagePath"="\??\c:\program files\HomeCinema\PowerDVD\000.fcl" . ------------------------ Andere Aktieve Processen ------------------------ . c:\program files\Bitdefender\Bitdefender 2012\vsserv.exe c:\program files\HitmanPro\hmpsched.exe c:\program files\Intel\IntelDH\CCU\AlertService.exe c:\program files\Anvisoft\Anvi Smart Defender\ASDSrv.exe c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe c:\program files\Intel\Intel Matrix Storage Manager\Iaantmon.exe c:\program files\Nero\Nero8\Nero BackItUp\NBService.exe c:\program files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe c:\program files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe c:\program files\CyberLink\Shared Files\RichVideo.exe c:\program files\Spybot - Search & Destroy 2\SDFSSvc.exe c:\program files\Microsoft\BingBar\SeaPort.EXE c:\program files\HomeCinema\TV Enhance\Kernel\TV\TVECapSvc.exe c:\program files\Bitdefender\Bitdefender 2012\updatesrv.exe c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe c:\progra~1\COMMON~1\X10\Common\x10nets.exe c:\program files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe c:\program files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe c:\program files\Spybot - Search & Destroy 2\SDUpdSvc.exe c:\windows\system32\WUDFHost.exe c:\program files\Spybot - Search & Destroy 2\SDWSCSvc.exe c:\program files\HomeCinema\TV Enhance\Kernel\TV\TVESched.exe c:\program files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe c:\program files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe c:\windows\system32\conime.exe c:\windows\RtHDVCpl.exe c:\windows\System32\rundll32.exe c:\program files\Windows Media Player\wmpnscfg.exe c:\program files\Windows Media Player\wmpnetwk.exe c:\windows\System32\rundll32.exe c:\windows\ehome\ehmsas.exe c:\windows\ehome\ehsched.exe c:\program files\Google\Google Desktop Search\GoogleDesktopIndex.exe c:\windows\ehome\ehRecvr.exe c:\program files\Intel\IntelDH\CCU\CCU_Engine.exe c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe . ************************************************************************** . Voltooingstijd: 2012-07-13 15:29:49 - machine werd herstart ComboFix-quarantined-files.txt 2012-07-13 13:29 ComboFix2.txt 2012-07-13 11:23 ComboFix3.txt 2012-07-13 07:34 . Pre-Run: 352.651.665.408 bytes beschikbaar Post-Run: 352.336.961.536 bytes beschikbaar . - - End Of File - - AE7A2AF4D093C2B01402221DE5AAF0AC
  5. Ga bitdefender houden, probeer de andere te verwijderen. Hierbij de nieuwe logfile: ComboFix 12-07-13.01 - Frank 13/07/2012 13:04:40.2.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.32.1043.18.2045.888 [GMT 2:00] Gestart vanuit: c:\users\Frank\Desktop\ComboFix.exe gebruikte Opdracht switches :: c:\users\Frank\Desktop\CFScript.txt AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0} AV: Bitdefender Antivirus *Disabled/Updated* {50909708-FF80-02AF-F814-B28405891E92} FW: Bitdefender Firewall *Enabled* {68AB162D-B5EF-03F7-D34B-1BB1FB5A59E9} SP: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D} SP: Bitdefender Antispyware *Disabled/Updated* {EBF176EC-D9BA-0D21-C2A4-89F67E0E542F} SP: Spybot - Search and Destroy *Enabled/Updated* {1EAF1D03-5480-F3B2-EB14-11F0F5EE2699} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\users\Frank\AppData\Local\Temp\ppcrlui_4352_2 c:\windows\system32\spsys.log . . (((((((((((((((((((( Bestanden Gemaakt van 2012-06-13 to 2012-07-13 )))))))))))))))))))))))))))))) . . 2012-07-13 11:19 . 2012-07-13 11:20 -------- d-----w- c:\users\Frank\AppData\Local\temp 2012-07-13 11:19 . 2012-07-13 11:19 -------- d-----w- c:\users\IUSR_NMPR\AppData\Local\temp 2012-07-13 11:19 . 2012-07-13 11:19 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-07-13 09:00 . 2012-07-13 09:00 -------- d-----w- c:\users\Frank\AppData\Local\blekkotb_031 2012-07-13 06:44 . 2012-06-13 13:40 2047488 ----a-w- c:\windows\system32\win32k.sys 2012-07-12 14:27 . 2012-07-12 14:27 -------- d-----w- c:\users\Frank\AppData\Roaming\Bitdefender 2012-07-12 14:27 . 2012-07-12 14:29 -------- d-----w- c:\programdata\Bitdefender 2012-07-12 14:24 . 2012-07-12 14:26 -------- d-----w- c:\program files\Bitdefender 2012-07-12 14:24 . 2011-08-16 12:59 360976 ----a-w- c:\windows\system32\drivers\bdfsfltr.sys 2012-07-12 14:24 . 2011-10-27 13:07 340624 ----a-w- c:\windows\system32\drivers\trufos.sys 2012-07-12 14:10 . 2012-07-12 14:10 -------- d-----w- c:\program files\AVG Secure Search 2012-07-12 09:13 . 2012-07-12 09:23 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2012-07-12 09:13 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-07-12 07:11 . 2012-06-04 15:26 440704 ----a-w- c:\windows\system32\drivers\ksecdd.sys 2012-07-12 07:11 . 2012-06-02 00:04 278528 ----a-w- c:\windows\system32\schannel.dll 2012-07-12 07:11 . 2012-06-02 00:03 204288 ----a-w- c:\windows\system32\ncrypt.dll 2012-07-12 07:11 . 2012-06-05 16:47 708608 ----a-w- c:\program files\Common Files\System\ado\msado15.dll 2012-07-12 07:11 . 2012-06-05 16:47 1401856 ----a-w- c:\windows\system32\msxml6.dll 2012-07-12 07:11 . 2012-06-05 16:47 1248768 ----a-w- c:\windows\system32\msxml3.dll 2012-07-10 15:44 . 2012-07-10 15:44 -------- d-----w- c:\users\Frank\AppData\Roaming\AVG2012 2012-07-10 12:59 . 2012-07-10 12:59 -------- d-----w- c:\users\Frank\AppData\Local\AVG Secure Search 2012-07-10 12:59 . 2012-07-12 14:11 -------- d-----w- c:\programdata\AVG Secure Search 2012-07-10 12:59 . 2012-07-10 15:41 -------- d-----w- c:\program files\Common Files\AVG Secure Search 2012-07-10 12:58 . 2012-07-10 15:40 -------- d-----w- c:\programdata\AVG2012 2012-07-10 12:58 . 2012-07-10 12:58 -------- d-----w- C:\$AVG 2012-07-10 12:58 . 2012-07-10 12:58 -------- d-----w- c:\program files\AVG 2012-07-10 12:57 . 2012-07-13 10:03 -------- d-----w- c:\programdata\MFAData 2012-07-10 12:57 . 2012-07-10 12:57 -------- d--h--w- c:\programdata\Common Files 2012-07-10 06:55 . 2012-07-10 14:37 -------- d-----w- c:\users\Frank\{6de70698-64a4-4d62-890e-5a69342e3560} 2012-07-06 06:42 . 2012-07-06 06:42 770384 ----a-w- c:\program files\Mozilla Firefox\msvcr100.dll 2012-07-06 06:42 . 2012-07-06 06:42 421200 ----a-w- c:\program files\Mozilla Firefox\msvcp100.dll 2012-07-05 16:01 . 2012-07-05 16:01 -------- d-----w- c:\programdata\BDLogging 2012-07-05 15:59 . 2009-07-14 17:45 445008 ----a-w- c:\windows\system32\drivers\Wdf01000.sys 2012-07-05 15:59 . 2009-07-14 17:45 38480 ----a-w- c:\windows\system32\drivers\WdfLdr.sys 2012-07-05 15:45 . 2012-07-12 14:24 -------- d-----w- c:\program files\Common Files\Bitdefender 2012-07-05 07:19 . 2012-07-12 09:05 -------- d-----w- c:\users\Frank\AppData\Roaming\Malwarebytes 2012-07-05 07:19 . 2012-07-05 07:19 -------- d-----w- c:\programdata\Malwarebytes 2012-07-05 07:10 . 2012-07-05 07:10 -------- d-----w- c:\users\Frank\AppData\Roaming\QuickScan 2012-07-04 13:24 . 2012-07-04 13:24 30416 ----a-w- c:\windows\system32\drivers\GRD.sys 2012-07-04 12:55 . 2012-07-04 12:55 -------- d-----w- c:\windows\system32\BioAPIFFDB 2012-07-04 12:53 . 2012-07-04 12:53 49528 ----a-w- c:\windows\system32\drivers\PktIcpt.sys 2012-07-04 12:49 . 2012-07-05 06:42 -------- d-----w- c:\programdata\G DATA 2012-07-04 12:49 . 2012-07-05 06:42 -------- d-----w- c:\program files\Common Files\G Data 2012-07-04 12:07 . 2012-07-05 06:30 -------- d-----w- c:\users\Frank\AppData\Local\Downloaded Installations 2012-07-04 07:57 . 2012-05-31 03:41 6762896 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{FEA2C79F-5D3F-4F2F-990C-184DBEE9C5F8}\mpengine.dll 2012-07-02 13:05 . 2012-07-02 13:05 -------- d-----w- c:\users\Frank\AppData\Roaming\Anvisoft 2012-07-02 13:05 . 2012-06-18 06:42 22784 ----a-w- c:\windows\system32\drivers\asdrs.sys 2012-07-02 13:05 . 2012-06-18 06:42 16128 ----a-w- c:\windows\system32\drivers\asdrm.sys 2012-07-02 13:04 . 2012-07-02 13:04 -------- d-----w- c:\program files\Anvisoft 2012-07-02 11:32 . 2012-07-02 11:32 -------- d-----w- c:\users\Frank\AppData\Roaming\DriverCure 2012-07-02 11:32 . 2012-07-02 11:32 -------- d-----w- c:\users\Frank\AppData\Roaming\SpeedyPC Software 2012-07-02 11:32 . 2012-07-05 05:51 -------- d-----w- c:\programdata\SpeedyPC Software 2012-07-02 09:44 . 2012-07-02 09:44 388096 ----a-r- c:\users\Frank\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2012-07-02 09:44 . 2012-07-02 09:44 -------- d-----w- c:\program files\Trend Micro 2012-07-02 08:50 . 2012-07-02 08:52 -------- d-----w- C:\rei 2012-07-02 08:50 . 2012-07-02 08:50 -------- d-----w- c:\program files\Reimage 2012-06-28 13:36 . 2012-06-28 13:36 -------- d-----w- c:\program files\HitmanPro 2012-06-28 13:36 . 2012-07-11 16:24 -------- d-----w- c:\programdata\HitmanPro 2012-06-28 07:26 . 2012-06-28 07:26 -------- d-----w- c:\programdata\Grisoft 2012-06-27 12:37 . 2007-04-24 23:10 20480 ----a-w- c:\windows\system32\V0260Srv.exe 2012-06-27 12:37 . 2007-07-11 13:28 36864 ----a-w- c:\windows\system32\V0260Pin.dll 2012-06-27 12:37 . 2004-07-05 23:00 24576 ----a-w- c:\windows\system32\CtCamPin.crl 2012-06-27 12:37 . 2012-06-27 12:37 -------- d-----w- c:\windows\CtDrvInstall 2012-06-27 10:08 . 2012-06-27 12:06 -------- d-----w- c:\programdata\Spybot - Search & Destroy 2012-06-27 10:07 . 2009-01-25 11:14 15224 ----a-w- c:\windows\system32\sdnclean.exe 2012-06-27 10:07 . 2012-06-27 10:08 -------- d-----w- c:\program files\Spybot - Search & Destroy 2 2012-06-27 05:45 . 2012-06-27 05:45 -------- d-----w- c:\programdata\WindowsSearch 2012-06-27 05:39 . 2012-06-02 22:19 53784 ----a-w- c:\windows\system32\wuauclt.exe 2012-06-27 05:39 . 2012-06-02 22:19 45080 ----a-w- c:\windows\system32\wups2.dll 2012-06-27 05:39 . 2012-06-02 22:19 1933848 ----a-w- c:\windows\system32\wuaueng.dll 2012-06-27 05:39 . 2012-06-02 22:12 2422272 ----a-w- c:\windows\system32\wucltux.dll 2012-06-27 05:39 . 2012-06-02 22:19 35864 ----a-w- c:\windows\system32\wups.dll 2012-06-27 05:39 . 2012-06-02 22:12 88576 ----a-w- c:\windows\system32\wudriver.dll 2012-06-27 05:39 . 2012-06-02 22:19 577048 ----a-w- c:\windows\system32\wuapi.dll 2012-06-27 05:38 . 2012-06-02 13:19 171904 ----a-w- c:\windows\system32\wuwebv.dll 2012-06-27 05:38 . 2012-06-02 13:12 33792 ----a-w- c:\windows\system32\wuapp.exe 2012-06-25 08:12 . 2012-06-25 08:12 -------- d-----w- c:\users\Frank\AppData\Local\Macromedia 2012-06-20 12:54 . 2012-06-20 12:54 -------- d-----w- c:\users\Frank\AppData\Local\Ashisoft 2012-06-20 12:53 . 2012-06-20 12:53 -------- d-----w- c:\users\Frank\AppData\Roaming\Ashisoft 2012-06-20 12:53 . 2012-06-20 12:53 -------- d-----w- c:\program files\Duplicate Finder 2012-06-20 12:21 . 2012-06-20 12:21 -------- d-----w- c:\program files\VisiPics 2012-06-19 13:51 . 2012-06-19 13:51 -------- d-----w- c:\users\Frank\AppData\Local\TomTom 2012-06-19 13:45 . 2012-06-19 13:45 -------- d-----w- c:\program files\TomTom International B.V 2012-06-19 13:45 . 2012-06-19 13:45 -------- d-----w- c:\program files\MyTomTom 3 2012-06-14 07:03 . 2012-04-23 16:00 984064 ----a-w- c:\windows\system32\crypt32.dll 2012-06-14 07:03 . 2012-04-23 16:00 133120 ----a-w- c:\windows\system32\cryptsvc.dll 2012-06-14 07:03 . 2012-04-23 16:00 98304 ----a-w- c:\windows\system32\cryptnet.dll 2012-06-14 07:00 . 2012-05-01 14:03 180736 ----a-w- c:\windows\system32\drivers\rdpwd.sys . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-07-13 08:10 . 2012-05-30 13:59 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-07-13 08:10 . 2012-05-30 13:59 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2012-06-08 16:17 . 2012-06-08 16:17 658512 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll 2012-06-03 10:37 . 2012-06-03 10:37 161792 ----a-w- c:\windows\system32\msls31.dll 2012-06-03 10:36 . 2012-06-03 10:36 86528 ----a-w- c:\windows\system32\iesysprep.dll 2012-06-03 10:36 . 2012-06-03 10:36 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe 2012-06-03 10:36 . 2012-06-03 10:36 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe 2012-06-03 10:36 . 2012-06-03 10:36 48640 ----a-w- c:\windows\system32\mshtmler.dll 2012-06-03 10:36 . 2012-06-03 10:36 63488 ----a-w- c:\windows\system32\tdc.ocx 2012-06-03 10:36 . 2012-06-03 10:36 367104 ----a-w- c:\windows\system32\html.iec 2012-06-03 10:36 . 2012-06-03 10:36 74752 ----a-w- c:\windows\system32\iesetup.dll 2012-06-03 10:36 . 2012-06-03 10:36 420864 ----a-w- c:\windows\system32\vbscript.dll 2012-06-03 10:36 . 2012-06-03 10:36 23552 ----a-w- c:\windows\system32\licmgr10.dll 2012-06-03 10:36 . 2012-06-03 10:36 152064 ----a-w- c:\windows\system32\wextract.exe 2012-06-03 10:36 . 2012-06-03 10:36 150528 ----a-w- c:\windows\system32\iexpress.exe 2012-06-03 10:36 . 2012-06-03 10:36 35840 ----a-w- c:\windows\system32\imgutil.dll 2012-06-03 10:36 . 2012-06-03 10:36 11776 ----a-w- c:\windows\system32\mshta.exe 2012-06-03 10:36 . 2012-06-03 10:36 101888 ----a-w- c:\windows\system32\admparse.dll 2012-06-03 10:36 . 2012-06-03 10:36 110592 ----a-w- c:\windows\system32\IEAdvpack.dll 2012-05-30 21:08 . 2011-03-28 16:36 19736 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2012-05-30 09:04 . 2006-11-02 10:32 101888 ----a-w- c:\windows\system32\ifxcardm.dll 2012-05-30 09:04 . 2006-11-02 10:32 82432 ----a-w- c:\windows\system32\axaltocm.dll 2012-05-25 15:43 . 2012-05-25 15:43 623616 ----a-w- c:\windows\system32\localspl.dll 2012-05-25 15:36 . 2012-05-25 15:36 499712 ----a-w- c:\windows\system32\kerberos.dll 2012-05-25 15:33 . 2012-05-25 15:33 1808896 ----a-w- c:\windows\system32\NlsLexicons0046.dll 2012-05-25 15:33 . 2012-05-25 15:33 1793536 ----a-w- c:\windows\system32\NlsLexicons0045.dll 2012-05-25 15:33 . 2012-05-25 15:33 1558016 ----a-w- c:\windows\system32\NlsLexicons0049.dll 2012-05-25 15:33 . 2012-05-25 15:33 1411072 ----a-w- c:\windows\system32\NlsLexicons0047.dll 2012-05-25 15:33 . 2012-05-25 15:33 5499904 ----a-w- c:\windows\system32\NlsLexicons0022.dll 2012-05-25 15:33 . 2012-05-25 15:33 2136064 ----a-w- c:\windows\system32\NlsLexicons0021.dll 2012-05-25 15:33 . 2012-05-25 15:33 1782272 ----a-w- c:\windows\system32\NlsLexicons0039.dll 2012-05-25 15:33 . 2012-05-25 15:33 1236992 ----a-w- c:\windows\system32\NlsLexicons0020.dll 2012-05-25 15:33 . 2012-05-25 15:33 7964672 ----a-w- c:\windows\system32\NlsLexicons0024.dll 2012-05-25 15:33 . 2012-05-25 15:33 6224896 ----a-w- c:\windows\system32\NlsLexicons0027.dll 2012-05-25 15:33 . 2012-05-25 15:33 5791232 ----a-w- c:\windows\system32\NlsLexicons0026.dll 2012-05-25 15:33 . 2012-05-25 15:33 4175872 ----a-w- c:\windows\system32\NlsLexicons0010.dll 2012-05-25 15:33 . 2012-05-25 15:33 4981248 ----a-w- c:\windows\system32\NlsLexicons0013.dll 2012-05-25 15:33 . 2012-05-25 15:33 2466816 ----a-w- c:\windows\system32\NlsLexicons0011.dll 2012-05-25 15:33 . 2012-05-25 15:33 6781440 ----a-w- c:\windows\system32\NlsLexicons0019.dll 2012-05-25 15:33 . 2012-05-25 15:33 3331072 ----a-w- c:\windows\system32\NlsLexicons0018.dll 2012-05-25 15:33 . 2012-05-25 15:33 11722752 ----a-w- c:\windows\system32\NlsLexicons0001.dll 2012-05-25 15:33 . 2012-05-25 15:33 4164096 ----a-w- c:\windows\system32\NlsLexicons0002.dll 2012-05-25 15:33 . 2012-05-25 15:33 1452544 ----a-w- c:\windows\system32\NlsLexicons0003.dll 2012-05-25 15:32 . 2012-05-25 15:32 3419136 ----a-w- c:\windows\system32\NlsLexicons004a.dll 2012-05-25 15:32 . 2012-05-25 15:32 1702912 ----a-w- c:\windows\system32\NlsLexicons004b.dll 2012-05-25 15:32 . 2012-05-25 15:32 4096 ----a-w- c:\windows\system32\NlsLexicons002a.dll 2012-05-25 15:32 . 2012-05-25 15:32 4093440 ----a-w- c:\windows\system32\NlsLexicons004c.dll 2012-05-25 15:32 . 2012-05-25 15:32 4045824 ----a-w- c:\windows\system32\NlsLexicons003e.dll 2012-05-25 15:32 . 2012-05-25 15:32 1972736 ----a-w- c:\windows\system32\NlsLexicons004e.dll 2012-05-25 15:32 . 2012-05-25 15:32 6585856 ----a-w- c:\windows\system32\NlsLexicons001b.dll 2012-05-25 15:32 . 2012-05-25 15:32 6346240 ----a-w- c:\windows\system32\NlsLexicons001d.dll 2012-05-25 15:32 . 2012-05-25 15:32 6014976 ----a-w- c:\windows\system32\NlsLexicons001a.dll 2012-05-25 15:32 . 2012-05-25 15:32 9892864 ----a-w- c:\windows\system32\NlsLexicons000a.dll 2012-05-25 15:32 . 2012-05-25 15:32 6237696 ----a-w- c:\windows\system32\NlsLexicons000c.dll 2012-05-25 15:32 . 2012-05-25 15:32 5654528 ----a-w- c:\windows\system32\NlsLexicons000f.dll 2012-05-25 15:32 . 2012-05-25 15:32 1722368 ----a-w- c:\windows\system32\NlsLexicons000d.dll 2012-05-25 15:32 . 2012-05-25 15:32 5090816 ----a-w- c:\windows\system32\NlsLexicons0416.dll 2012-05-25 15:32 . 2012-05-25 15:32 5031936 ----a-w- c:\windows\system32\NlsLexicons0816.dll 2012-05-25 15:32 . 2012-05-25 15:32 4616192 ----a-w- c:\windows\system32\NlsLexicons0414.dll 2012-05-25 15:32 . 2012-05-25 15:32 7042560 ----a-w- c:\windows\system32\NlsLexicons081a.dll 2012-05-25 15:32 . 2012-05-25 15:32 5071872 ----a-w- c:\windows\system32\NlsModels0011.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData0045.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData0049.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData0047.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData0046.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData0039.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData0020.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData0024.dll 2012-05-25 15:32 . 2012-05-25 15:32 1801216 ----a-w- c:\windows\system32\NlsData0022.dll 2012-05-25 15:32 . 2012-05-25 15:32 1801216 ----a-w- c:\windows\system32\NlsData0021.dll 2012-05-25 15:32 . 2012-05-25 15:32 4495360 ----a-w- c:\windows\system32\NlsData0010.dll 2012-05-25 15:32 . 2012-05-25 15:32 1966592 ----a-w- c:\windows\system32\NlsData0027.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData0026.dll 2012-05-25 15:32 . 2012-05-25 15:32 3466752 ----a-w- c:\windows\system32\NlsData0013.dll 2012-05-25 15:32 . 2012-05-25 15:32 2657280 ----a-w- c:\windows\system32\NlsData0011.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData0018.dll 2012-05-25 15:32 . 2012-05-25 15:32 1523712 ----a-w- c:\windows\system32\NlsData0000.dll 2012-05-25 15:32 . 2012-05-25 15:32 4497408 ----a-w- c:\windows\system32\NlsData0019.dll 2012-05-25 15:32 . 2012-05-25 15:32 2599936 ----a-w- c:\windows\system32\NlsData0001.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData0002.dll 2012-05-25 15:32 . 2012-05-25 15:32 4875776 ----a-w- c:\windows\system32\NlsData0009.dll 2012-05-25 15:32 . 2012-05-25 15:32 2243072 ----a-w- c:\windows\system32\NlsData0007.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData0003.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData004a.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData004e.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData004c.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData004b.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData001b.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData001a.dll 2012-05-25 15:32 . 2012-05-25 15:32 1801216 ----a-w- c:\windows\system32\NlsData003e.dll 2012-05-25 15:32 . 2012-05-25 15:32 1801216 ----a-w- c:\windows\system32\NlsData002a.dll 2012-05-25 15:32 . 2012-05-25 15:32 9847296 ----a-w- c:\windows\system32\NlsData000a.dll 2012-05-25 15:32 . 2012-05-25 15:32 4495360 ----a-w- c:\windows\system32\NlsData001d.dll 2012-05-25 15:32 . 2012-05-25 15:32 2643456 ----a-w- c:\windows\system32\NlsData000c.dll 2012-05-25 15:32 . 2012-05-25 15:32 2342912 ----a-w- c:\windows\system32\NlsData000d.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData000f.dll 2012-05-25 15:32 . 2012-05-25 15:32 4495360 ----a-w- c:\windows\system32\NlsData0414.dll 2012-05-25 15:32 . 2012-05-25 15:32 4495360 ----a-w- c:\windows\system32\NlsData0416.dll 2012-05-25 15:32 . 2012-05-25 15:32 6917120 ----a-w- c:\windows\system32\NlsLexicons0c1a.dll 2012-05-25 15:32 . 2012-05-25 15:32 4495360 ----a-w- c:\windows\system32\NlsData0816.dll 2012-07-06 06:42 . 2012-05-25 12:36 85472 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] 2012-07-12 14:10 2074208 ----a-w- c:\program files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll" [2012-07-12 2074208] . [HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}] [HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1] [HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox1] @="{152C96EB-288E-4EDC-B7C6-D21F8250ADF3}" [HKEY_CLASSES_ROOT\CLSID\{152C96EB-288E-4EDC-B7C6-D21F8250ADF3}] 2012-02-22 11:54 239112 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox2] @="{342DAA0B-D796-460D-8566-901E08A1CCAD}" [HKEY_CLASSES_ROOT\CLSID\{342DAA0B-D796-460D-8566-901E08A1CCAD}] 2012-02-22 11:54 239112 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox3] @="{57595DAE-1AE1-4D97-A49E-67CBB53B52DF}" [HKEY_CLASSES_ROOT\CLSID\{57595DAE-1AE1-4D97-A49E-67CBB53B52DF}] 2012-02-22 11:54 239112 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox4] @="{33816773-98AE-4723-ADE0-EBE54C8B5A67}" [HKEY_CLASSES_ROOT\CLSID\{33816773-98AE-4723-ADE0-EBE54C8B5A67}] 2012-02-22 11:54 239112 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-18 125952] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="RtHDVCpl.exe" [2007-08-17 4702208] "IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2007-10-08 178712] "PlayMovie"="c:\program files\HomeCinema\PlayMovie\PMVService.exe" [2007-09-06 172032] "TVEService"="c:\program files\HomeCinema\TV Enhance\TVEService.exe" [2007-10-19 155648] "NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 153136] "NMSSupport"="c:\program files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe" [2007-06-27 439512] "CCUTRAYICON"="c:\program files\Intel\IntelDH\CCU\CCU_TrayIcon.exe" [2007-06-27 215256] "Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2012-05-25 220160] "toolbar_eula_launcher"="c:\program files\GoogleEULA\EULALauncher.exe" [2007-02-09 16896] "Skytel"="Skytel.exe" [2007-08-03 1826816] "NvSvc"="c:\windows\system32\nvsvc.dll" [2007-09-12 86016] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-09-12 8497696] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-09-12 81920] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712] "AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-04 446392] "SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096] "AdobeCS6ServiceManager"="c:\program files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-05-07 1073312] "Anvi Smart Defender"="c:\program files\Anvisoft\Anvi Smart Defender\ASDTray.exe" [2012-06-25 710912] "vProt"="c:\program files\AVG Secure Search\vprot.exe" [2012-07-12 1107552] "Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-07-03 462920] "BDAgent"="c:\program files\Bitdefender\Bitdefender 2012\bdagent.exe" [2012-03-22 1183616] . c:\users\Frank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ OneNote 2007 Schermopname en Snel starten.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "mixer1"=wdmaud.drv . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro36] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro36.sys] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro36Crusader] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro36CrusaderBoot] @="" . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG_TRAY] 2012-04-05 03:12 2587008 ----a-w- c:\program files\AVG\AVG2012\avgtray.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Garmin Lifetime Updater] 2012-05-23 11:32 1466760 ----a-w- c:\program files\Garmin\Lifetime Updater\GarminLifetime.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] 2012-05-25 14:38 116648 ----atw- c:\users\Frank\AppData\Local\Google\Update\GoogleUpdate.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyTomTomSA.exe] 2012-05-18 09:04 434168 ----a-w- c:\program files\MyTomTom 3\MyTomTomSA.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SDTray] 2012-05-10 14:29 3349488 ----a-w- c:\program files\Spybot - Search & Destroy 2\SDTray.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar] 2009-04-10 21:28 1233920 ----a-w- c:\program files\Windows Sidebar\sidebar.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spybot-S&D Cleaning] 2012-05-10 14:29 2959336 ----a-w- c:\program files\Spybot - Search & Destroy 2\SDCleaner.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] 2012-05-25 12:33 39408 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe . R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x] S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x] S3 3xHybrid;Philips SAA713x PCI Card;c:\windows\system32\DRIVERS\3xHybrid.sys [x] . . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . Inhoud van de 'Gedeelde Taken' map . 2012-07-13 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-30 08:10] . 2012-07-13 c:\windows\Tasks\Check for updates (Spybot - Search & Destroy).job - c:\program files\Spybot - Search & Destroy 2\SDUpdate.exe [2012-06-27 14:29] . 2012-07-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2012-05-25 14:29] . 2012-07-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2012-05-25 14:29] . 2012-07-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2162290485-3537841882-386488429-1001Core.job - c:\users\Frank\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-30 14:38] . 2012-07-13 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2162290485-3537841882-386488429-1001UA.job - c:\users\Frank\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-30 14:38] . 2012-06-27 c:\windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job - c:\program files\Spybot - Search & Destroy 2\SDImmunize.exe [2012-06-27 14:29] . 2012-06-27 c:\windows\Tasks\Scan the system (Spybot - Search & Destroy).job - c:\program files\Spybot - Search & Destroy 2\SDScan.exe [2012-06-27 14:29] . . ------- Bijkomende Scan ------- . mSearch Bar = hxxp://www.google.com/ie IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000 TCP: DhcpNameServer = 195.130.130.1 195.130.131.1 Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll FF - ProfilePath - c:\users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\kqtonk2o.default\ FF - prefs.js: browser.startup.homepage - HLN.be, Nieuws, sport en showbizz, 24/24, 7/7, meer dan 350 nieuwsupdates per dag FF - user.js: extensions.BabylonToolbar_i.instlRef - sst FF - user.js: extentions.y2layers.installId - 0c646adc-9386-4f22-a39a-14201199de22 FF - user.js: extentions.y2layers.defaultEnableAppsList - Buzzdock,Buzzdock, FF - user.js: extensions.autoDisableScopes - 14 FF - user.js: security.csp.enable - false . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2012-07-13 13:19 Windows 6.0.6002 Service Pack 2 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}] "ImagePath"="\??\c:\program files\HomeCinema\PlayMovie\000.fcl" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\{95808DC4-FA4A-4C74-92FE-5B863F82066B}] "ImagePath"="\??\c:\program files\HomeCinema\PowerDVD\000.fcl" . Voltooingstijd: 2012-07-13 13:23:35 ComboFix-quarantined-files.txt 2012-07-13 11:23 ComboFix2.txt 2012-07-13 07:34 . Pre-Run: 352.829.976.576 bytes beschikbaar Post-Run: 352.927.608.832 bytes beschikbaar . - - End Of File - - 112DFA487F1DFED91571955847BB6E5C
  6. Hierbij het log(je) ComboFix 12-07-13.01 - Frank 13/07/2012 9:16.1.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.32.1043.18.2045.883 [GMT 2:00] Gestart vanuit: c:\users\Frank\Desktop\ComboFix.exe AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0} AV: Bitdefender Antivirus *Disabled/Updated* {50909708-FF80-02AF-F814-B28405891E92} FW: Bitdefender Firewall *Enabled* {68AB162D-B5EF-03F7-D34B-1BB1FB5A59E9} SP: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D} SP: Bitdefender Antispyware *Disabled/Updated* {EBF176EC-D9BA-0D21-C2A4-89F67E0E542F} SP: Spybot - Search and Destroy *Enabled/Updated* {1EAF1D03-5480-F3B2-EB14-11F0F5EE2699} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\program files\Mozilla Firefox\searchplugins\search.xml c:\programdata\1341503422.bdinstall.bin c:\programdata\1341903022.bdinstall.bin c:\programdata\1342103045.bdinstall.bin c:\users\Frank\AppData\Local\Temp\ppcrlui_5616_2 c:\windows\system32\odbcad32.exe c:\windows\system32\spsys.log . . (((((((((((((((((((( Bestanden Gemaakt van 2012-06-13 to 2012-07-13 )))))))))))))))))))))))))))))) . . 2012-07-13 07:30 . 2012-07-13 07:30 -------- d-----w- c:\users\IUSR_NMPR\AppData\Local\temp 2012-07-13 07:30 . 2012-07-13 07:30 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-07-13 06:44 . 2012-06-13 13:40 2047488 ----a-w- c:\windows\system32\win32k.sys 2012-07-12 14:27 . 2012-07-12 14:27 -------- d-----w- c:\users\Frank\AppData\Roaming\Bitdefender 2012-07-12 14:27 . 2012-07-12 14:29 -------- d-----w- c:\programdata\Bitdefender 2012-07-12 14:24 . 2012-07-12 14:26 -------- d-----w- c:\program files\Bitdefender 2012-07-12 14:24 . 2011-08-16 12:59 360976 ----a-w- c:\windows\system32\drivers\bdfsfltr.sys 2012-07-12 14:24 . 2011-10-27 13:07 340624 ----a-w- c:\windows\system32\drivers\trufos.sys 2012-07-12 14:10 . 2012-07-12 14:10 -------- d-----w- c:\program files\AVG Secure Search 2012-07-12 09:13 . 2012-07-12 09:23 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2012-07-12 09:13 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-07-12 07:11 . 2012-06-04 15:26 440704 ----a-w- c:\windows\system32\drivers\ksecdd.sys 2012-07-12 07:11 . 2012-06-02 00:04 278528 ----a-w- c:\windows\system32\schannel.dll 2012-07-12 07:11 . 2012-06-02 00:03 204288 ----a-w- c:\windows\system32\ncrypt.dll 2012-07-12 07:11 . 2012-06-05 16:47 708608 ----a-w- c:\program files\Common Files\System\ado\msado15.dll 2012-07-12 07:11 . 2012-06-05 16:47 1401856 ----a-w- c:\windows\system32\msxml6.dll 2012-07-12 07:11 . 2012-06-05 16:47 1248768 ----a-w- c:\windows\system32\msxml3.dll 2012-07-10 15:44 . 2012-07-10 15:44 -------- d-----w- c:\users\Frank\AppData\Roaming\AVG2012 2012-07-10 12:59 . 2012-07-10 12:59 -------- d-----w- c:\users\Frank\AppData\Local\AVG Secure Search 2012-07-10 12:59 . 2012-07-12 14:11 -------- d-----w- c:\programdata\AVG Secure Search 2012-07-10 12:59 . 2012-07-10 15:41 -------- d-----w- c:\program files\Common Files\AVG Secure Search 2012-07-10 12:58 . 2012-07-10 15:40 -------- d-----w- c:\programdata\AVG2012 2012-07-10 12:58 . 2012-07-10 12:58 -------- d-----w- C:\$AVG 2012-07-10 12:58 . 2012-07-10 12:58 -------- d-----w- c:\program files\AVG 2012-07-10 12:57 . 2012-07-12 14:19 -------- d-----w- c:\programdata\MFAData 2012-07-10 12:57 . 2012-07-10 12:57 -------- d--h--w- c:\programdata\Common Files 2012-07-10 06:55 . 2012-07-10 14:37 -------- d-----w- c:\users\Frank\{6de70698-64a4-4d62-890e-5a69342e3560} 2012-07-06 06:42 . 2012-07-06 06:42 770384 ----a-w- c:\program files\Mozilla Firefox\msvcr100.dll 2012-07-06 06:42 . 2012-07-06 06:42 421200 ----a-w- c:\program files\Mozilla Firefox\msvcp100.dll 2012-07-05 16:01 . 2012-07-05 16:01 -------- d-----w- c:\programdata\BDLogging 2012-07-05 15:59 . 2009-07-14 17:45 445008 ----a-w- c:\windows\system32\drivers\Wdf01000.sys 2012-07-05 15:59 . 2009-07-14 17:45 38480 ----a-w- c:\windows\system32\drivers\WdfLdr.sys 2012-07-05 15:45 . 2012-07-12 14:24 -------- d-----w- c:\program files\Common Files\Bitdefender 2012-07-05 07:19 . 2012-07-12 09:05 -------- d-----w- c:\users\Frank\AppData\Roaming\Malwarebytes 2012-07-05 07:19 . 2012-07-05 07:19 -------- d-----w- c:\programdata\Malwarebytes 2012-07-05 07:10 . 2012-07-05 07:10 -------- d-----w- c:\users\Frank\AppData\Roaming\QuickScan 2012-07-05 06:28 . 2012-07-05 06:28 -------- d-----w- c:\program files\G DATA Software 2012-07-05 06:28 . 2012-07-05 06:28 -------- d-----w- c:\users\Frank\AppData\Roaming\InstallShield 2012-07-04 13:24 . 2012-07-04 13:24 30416 ----a-w- c:\windows\system32\drivers\GRD.sys 2012-07-04 12:55 . 2012-07-04 12:55 -------- d-----w- c:\windows\system32\BioAPIFFDB 2012-07-04 12:53 . 2012-07-04 12:53 49528 ----a-w- c:\windows\system32\drivers\PktIcpt.sys 2012-07-04 12:49 . 2012-07-05 06:42 -------- d-----w- c:\programdata\G DATA 2012-07-04 12:49 . 2012-07-05 06:42 -------- d-----w- c:\program files\Common Files\G Data 2012-07-04 12:49 . 2012-07-04 12:49 -------- d-----w- c:\program files\G Data 2012-07-04 12:07 . 2012-07-05 06:30 -------- d-----w- c:\users\Frank\AppData\Local\Downloaded Installations 2012-07-04 07:57 . 2012-05-31 03:41 6762896 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{FEA2C79F-5D3F-4F2F-990C-184DBEE9C5F8}\mpengine.dll 2012-07-02 13:05 . 2012-07-02 13:05 -------- d-----w- c:\users\Frank\AppData\Roaming\Anvisoft 2012-07-02 13:05 . 2012-06-18 06:42 22784 ----a-w- c:\windows\system32\drivers\asdrs.sys 2012-07-02 13:05 . 2012-06-18 06:42 16128 ----a-w- c:\windows\system32\drivers\asdrm.sys 2012-07-02 13:04 . 2012-07-02 13:04 -------- d-----w- c:\program files\Anvisoft 2012-07-02 11:32 . 2012-07-02 11:32 -------- d-----w- c:\users\Frank\AppData\Roaming\DriverCure 2012-07-02 11:32 . 2012-07-02 11:32 -------- d-----w- c:\users\Frank\AppData\Roaming\SpeedyPC Software 2012-07-02 11:32 . 2012-07-05 05:51 -------- d-----w- c:\programdata\SpeedyPC Software 2012-07-02 09:44 . 2012-07-02 09:44 388096 ----a-r- c:\users\Frank\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2012-07-02 09:44 . 2012-07-02 09:44 -------- d-----w- c:\program files\Trend Micro 2012-07-02 08:50 . 2012-07-02 08:52 -------- d-----w- C:\rei 2012-07-02 08:50 . 2012-07-02 08:50 -------- d-----w- c:\program files\Reimage 2012-06-28 13:36 . 2012-06-28 13:36 -------- d-----w- c:\program files\HitmanPro 2012-06-28 13:36 . 2012-07-11 16:24 -------- d-----w- c:\programdata\HitmanPro 2012-06-28 07:27 . 2012-06-28 07:27 -------- d-----w- c:\users\Frank\AppData\Roaming\Grisoft 2012-06-28 07:26 . 2007-05-30 12:10 10872 ----a-w- c:\windows\system32\drivers\AvgAsCln.sys 2012-06-28 07:26 . 2012-06-28 07:26 -------- d-----w- c:\programdata\Grisoft 2012-06-27 12:37 . 2007-04-24 23:10 20480 ----a-w- c:\windows\system32\V0260Srv.exe 2012-06-27 12:37 . 2007-07-11 13:28 36864 ----a-w- c:\windows\system32\V0260Pin.dll 2012-06-27 12:37 . 2004-07-05 23:00 24576 ----a-w- c:\windows\system32\CtCamPin.crl 2012-06-27 12:37 . 2012-06-27 12:37 -------- d-----w- c:\windows\CtDrvInstall 2012-06-27 10:08 . 2012-06-27 12:06 -------- d-----w- c:\programdata\Spybot - Search & Destroy 2012-06-27 10:07 . 2009-01-25 11:14 15224 ----a-w- c:\windows\system32\sdnclean.exe 2012-06-27 10:07 . 2012-06-27 10:08 -------- d-----w- c:\program files\Spybot - Search & Destroy 2 2012-06-27 05:45 . 2012-06-27 05:45 -------- d-----w- c:\programdata\WindowsSearch 2012-06-27 05:39 . 2012-06-02 22:19 53784 ----a-w- c:\windows\system32\wuauclt.exe 2012-06-27 05:39 . 2012-06-02 22:19 45080 ----a-w- c:\windows\system32\wups2.dll 2012-06-27 05:39 . 2012-06-02 22:19 1933848 ----a-w- c:\windows\system32\wuaueng.dll 2012-06-27 05:39 . 2012-06-02 22:12 2422272 ----a-w- c:\windows\system32\wucltux.dll 2012-06-27 05:39 . 2012-06-02 22:19 35864 ----a-w- c:\windows\system32\wups.dll 2012-06-27 05:39 . 2012-06-02 22:12 88576 ----a-w- c:\windows\system32\wudriver.dll 2012-06-27 05:39 . 2012-06-02 22:19 577048 ----a-w- c:\windows\system32\wuapi.dll 2012-06-27 05:38 . 2012-06-02 13:19 171904 ----a-w- c:\windows\system32\wuwebv.dll 2012-06-27 05:38 . 2012-06-02 13:12 33792 ----a-w- c:\windows\system32\wuapp.exe 2012-06-25 08:12 . 2012-06-25 08:12 -------- d-----w- c:\users\Frank\AppData\Local\Macromedia 2012-06-20 12:54 . 2012-06-20 12:54 -------- d-----w- c:\users\Frank\AppData\Local\Ashisoft 2012-06-20 12:53 . 2012-06-20 12:53 -------- d-----w- c:\users\Frank\AppData\Roaming\Ashisoft 2012-06-20 12:53 . 2012-06-20 12:53 -------- d-----w- c:\program files\Duplicate Finder 2012-06-20 12:21 . 2012-06-20 12:21 -------- d-----w- c:\program files\VisiPics 2012-06-19 13:51 . 2012-06-19 13:51 -------- d-----w- c:\users\Frank\AppData\Local\TomTom 2012-06-19 13:45 . 2012-06-19 13:45 -------- d-----w- c:\program files\TomTom International B.V 2012-06-19 13:45 . 2012-06-19 13:45 -------- d-----w- c:\program files\MyTomTom 3 2012-06-14 07:03 . 2012-04-23 16:00 984064 ----a-w- c:\windows\system32\crypt32.dll 2012-06-14 07:03 . 2012-04-23 16:00 133120 ----a-w- c:\windows\system32\cryptsvc.dll 2012-06-14 07:03 . 2012-04-23 16:00 98304 ----a-w- c:\windows\system32\cryptnet.dll 2012-06-14 07:00 . 2012-05-01 14:03 180736 ----a-w- c:\windows\system32\drivers\rdpwd.sys . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-06-25 08:10 . 2012-05-30 13:59 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2012-06-25 08:10 . 2012-05-30 13:59 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-06-08 16:17 . 2012-06-08 16:17 658512 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll 2012-06-03 10:37 . 2012-06-03 10:37 161792 ----a-w- c:\windows\system32\msls31.dll 2012-06-03 10:36 . 2012-06-03 10:36 86528 ----a-w- c:\windows\system32\iesysprep.dll 2012-06-03 10:36 . 2012-06-03 10:36 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe 2012-06-03 10:36 . 2012-06-03 10:36 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe 2012-06-03 10:36 . 2012-06-03 10:36 48640 ----a-w- c:\windows\system32\mshtmler.dll 2012-06-03 10:36 . 2012-06-03 10:36 63488 ----a-w- c:\windows\system32\tdc.ocx 2012-06-03 10:36 . 2012-06-03 10:36 367104 ----a-w- c:\windows\system32\html.iec 2012-06-03 10:36 . 2012-06-03 10:36 74752 ----a-w- c:\windows\system32\iesetup.dll 2012-06-03 10:36 . 2012-06-03 10:36 420864 ----a-w- c:\windows\system32\vbscript.dll 2012-06-03 10:36 . 2012-06-03 10:36 23552 ----a-w- c:\windows\system32\licmgr10.dll 2012-06-03 10:36 . 2012-06-03 10:36 152064 ----a-w- c:\windows\system32\wextract.exe 2012-06-03 10:36 . 2012-06-03 10:36 150528 ----a-w- c:\windows\system32\iexpress.exe 2012-06-03 10:36 . 2012-06-03 10:36 35840 ----a-w- c:\windows\system32\imgutil.dll 2012-06-03 10:36 . 2012-06-03 10:36 11776 ----a-w- c:\windows\system32\mshta.exe 2012-06-03 10:36 . 2012-06-03 10:36 101888 ----a-w- c:\windows\system32\admparse.dll 2012-06-03 10:36 . 2012-06-03 10:36 110592 ----a-w- c:\windows\system32\IEAdvpack.dll 2012-05-30 21:08 . 2011-03-28 16:36 19736 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2012-05-30 09:04 . 2006-11-02 10:32 101888 ----a-w- c:\windows\system32\ifxcardm.dll 2012-05-30 09:04 . 2006-11-02 10:32 82432 ----a-w- c:\windows\system32\axaltocm.dll 2012-05-25 15:43 . 2012-05-25 15:43 623616 ----a-w- c:\windows\system32\localspl.dll 2012-05-25 15:36 . 2012-05-25 15:36 499712 ----a-w- c:\windows\system32\kerberos.dll 2012-05-25 15:33 . 2012-05-25 15:33 1808896 ----a-w- c:\windows\system32\NlsLexicons0046.dll 2012-05-25 15:33 . 2012-05-25 15:33 1793536 ----a-w- c:\windows\system32\NlsLexicons0045.dll 2012-05-25 15:33 . 2012-05-25 15:33 1558016 ----a-w- c:\windows\system32\NlsLexicons0049.dll 2012-05-25 15:33 . 2012-05-25 15:33 1411072 ----a-w- c:\windows\system32\NlsLexicons0047.dll 2012-05-25 15:33 . 2012-05-25 15:33 5499904 ----a-w- c:\windows\system32\NlsLexicons0022.dll 2012-05-25 15:33 . 2012-05-25 15:33 2136064 ----a-w- c:\windows\system32\NlsLexicons0021.dll 2012-05-25 15:33 . 2012-05-25 15:33 1782272 ----a-w- c:\windows\system32\NlsLexicons0039.dll 2012-05-25 15:33 . 2012-05-25 15:33 1236992 ----a-w- c:\windows\system32\NlsLexicons0020.dll 2012-05-25 15:33 . 2012-05-25 15:33 7964672 ----a-w- c:\windows\system32\NlsLexicons0024.dll 2012-05-25 15:33 . 2012-05-25 15:33 6224896 ----a-w- c:\windows\system32\NlsLexicons0027.dll 2012-05-25 15:33 . 2012-05-25 15:33 5791232 ----a-w- c:\windows\system32\NlsLexicons0026.dll 2012-05-25 15:33 . 2012-05-25 15:33 4175872 ----a-w- c:\windows\system32\NlsLexicons0010.dll 2012-05-25 15:33 . 2012-05-25 15:33 4981248 ----a-w- c:\windows\system32\NlsLexicons0013.dll 2012-05-25 15:33 . 2012-05-25 15:33 2466816 ----a-w- c:\windows\system32\NlsLexicons0011.dll 2012-05-25 15:33 . 2012-05-25 15:33 6781440 ----a-w- c:\windows\system32\NlsLexicons0019.dll 2012-05-25 15:33 . 2012-05-25 15:33 3331072 ----a-w- c:\windows\system32\NlsLexicons0018.dll 2012-05-25 15:33 . 2012-05-25 15:33 11722752 ----a-w- c:\windows\system32\NlsLexicons0001.dll 2012-05-25 15:33 . 2012-05-25 15:33 4164096 ----a-w- c:\windows\system32\NlsLexicons0002.dll 2012-05-25 15:33 . 2012-05-25 15:33 1452544 ----a-w- c:\windows\system32\NlsLexicons0003.dll 2012-05-25 15:32 . 2012-05-25 15:32 3419136 ----a-w- c:\windows\system32\NlsLexicons004a.dll 2012-05-25 15:32 . 2012-05-25 15:32 1702912 ----a-w- c:\windows\system32\NlsLexicons004b.dll 2012-05-25 15:32 . 2012-05-25 15:32 4096 ----a-w- c:\windows\system32\NlsLexicons002a.dll 2012-05-25 15:32 . 2012-05-25 15:32 4093440 ----a-w- c:\windows\system32\NlsLexicons004c.dll 2012-05-25 15:32 . 2012-05-25 15:32 4045824 ----a-w- c:\windows\system32\NlsLexicons003e.dll 2012-05-25 15:32 . 2012-05-25 15:32 1972736 ----a-w- c:\windows\system32\NlsLexicons004e.dll 2012-05-25 15:32 . 2012-05-25 15:32 6585856 ----a-w- c:\windows\system32\NlsLexicons001b.dll 2012-05-25 15:32 . 2012-05-25 15:32 6346240 ----a-w- c:\windows\system32\NlsLexicons001d.dll 2012-05-25 15:32 . 2012-05-25 15:32 6014976 ----a-w- c:\windows\system32\NlsLexicons001a.dll 2012-05-25 15:32 . 2012-05-25 15:32 9892864 ----a-w- c:\windows\system32\NlsLexicons000a.dll 2012-05-25 15:32 . 2012-05-25 15:32 6237696 ----a-w- c:\windows\system32\NlsLexicons000c.dll 2012-05-25 15:32 . 2012-05-25 15:32 5654528 ----a-w- c:\windows\system32\NlsLexicons000f.dll 2012-05-25 15:32 . 2012-05-25 15:32 1722368 ----a-w- c:\windows\system32\NlsLexicons000d.dll 2012-05-25 15:32 . 2012-05-25 15:32 5090816 ----a-w- c:\windows\system32\NlsLexicons0416.dll 2012-05-25 15:32 . 2012-05-25 15:32 5031936 ----a-w- c:\windows\system32\NlsLexicons0816.dll 2012-05-25 15:32 . 2012-05-25 15:32 4616192 ----a-w- c:\windows\system32\NlsLexicons0414.dll 2012-05-25 15:32 . 2012-05-25 15:32 7042560 ----a-w- c:\windows\system32\NlsLexicons081a.dll 2012-05-25 15:32 . 2012-05-25 15:32 5071872 ----a-w- c:\windows\system32\NlsModels0011.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData0045.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData0049.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData0047.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData0046.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData0039.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData0020.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData0024.dll 2012-05-25 15:32 . 2012-05-25 15:32 1801216 ----a-w- c:\windows\system32\NlsData0022.dll 2012-05-25 15:32 . 2012-05-25 15:32 1801216 ----a-w- c:\windows\system32\NlsData0021.dll 2012-05-25 15:32 . 2012-05-25 15:32 4495360 ----a-w- c:\windows\system32\NlsData0010.dll 2012-05-25 15:32 . 2012-05-25 15:32 1966592 ----a-w- c:\windows\system32\NlsData0027.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData0026.dll 2012-05-25 15:32 . 2012-05-25 15:32 3466752 ----a-w- c:\windows\system32\NlsData0013.dll 2012-05-25 15:32 . 2012-05-25 15:32 2657280 ----a-w- c:\windows\system32\NlsData0011.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData0018.dll 2012-05-25 15:32 . 2012-05-25 15:32 1523712 ----a-w- c:\windows\system32\NlsData0000.dll 2012-05-25 15:32 . 2012-05-25 15:32 4497408 ----a-w- c:\windows\system32\NlsData0019.dll 2012-05-25 15:32 . 2012-05-25 15:32 2599936 ----a-w- c:\windows\system32\NlsData0001.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData0002.dll 2012-05-25 15:32 . 2012-05-25 15:32 4875776 ----a-w- c:\windows\system32\NlsData0009.dll 2012-05-25 15:32 . 2012-05-25 15:32 2243072 ----a-w- c:\windows\system32\NlsData0007.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData0003.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData004a.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData004e.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData004c.dll 2012-05-25 15:32 . 2012-05-25 15:32 3104768 ----a-w- c:\windows\system32\NlsData004b.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData001b.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData001a.dll 2012-05-25 15:32 . 2012-05-25 15:32 1801216 ----a-w- c:\windows\system32\NlsData003e.dll 2012-05-25 15:32 . 2012-05-25 15:32 1801216 ----a-w- c:\windows\system32\NlsData002a.dll 2012-05-25 15:32 . 2012-05-25 15:32 9847296 ----a-w- c:\windows\system32\NlsData000a.dll 2012-05-25 15:32 . 2012-05-25 15:32 4495360 ----a-w- c:\windows\system32\NlsData001d.dll 2012-05-25 15:32 . 2012-05-25 15:32 2643456 ----a-w- c:\windows\system32\NlsData000c.dll 2012-05-25 15:32 . 2012-05-25 15:32 2342912 ----a-w- c:\windows\system32\NlsData000d.dll 2012-05-25 15:32 . 2012-05-25 15:32 1965056 ----a-w- c:\windows\system32\NlsData000f.dll 2012-05-25 15:32 . 2012-05-25 15:32 4495360 ----a-w- c:\windows\system32\NlsData0414.dll 2012-05-25 15:32 . 2012-05-25 15:32 4495360 ----a-w- c:\windows\system32\NlsData0416.dll 2012-05-25 15:32 . 2012-05-25 15:32 6917120 ----a-w- c:\windows\system32\NlsLexicons0c1a.dll 2012-05-25 15:32 . 2012-05-25 15:32 4495360 ----a-w- c:\windows\system32\NlsData0816.dll 2012-07-06 06:42 . 2012-05-25 12:36 85472 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] 2012-07-12 14:10 2074208 ----a-w- c:\program files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll" [2012-07-12 2074208] . [HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}] [HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1] [HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox1] @="{152C96EB-288E-4EDC-B7C6-D21F8250ADF3}" [HKEY_CLASSES_ROOT\CLSID\{152C96EB-288E-4EDC-B7C6-D21F8250ADF3}] 2012-02-22 11:54 239112 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox2] @="{342DAA0B-D796-460D-8566-901E08A1CCAD}" [HKEY_CLASSES_ROOT\CLSID\{342DAA0B-D796-460D-8566-901E08A1CCAD}] 2012-02-22 11:54 239112 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox3] @="{57595DAE-1AE1-4D97-A49E-67CBB53B52DF}" [HKEY_CLASSES_ROOT\CLSID\{57595DAE-1AE1-4D97-A49E-67CBB53B52DF}] 2012-02-22 11:54 239112 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\__SafeBox4] @="{33816773-98AE-4723-ADE0-EBE54C8B5A67}" [HKEY_CLASSES_ROOT\CLSID\{33816773-98AE-4723-ADE0-EBE54C8B5A67}] 2012-02-22 11:54 239112 ----a-w- c:\program files\Bitdefender\Bitdefender Safebox\safeboxshell.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-18 125952] "Spybot-S&D Cleaning"="c:\program files\Spybot - Search & Destroy 2\SDCleaner.exe" [2012-05-10 2959336] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="RtHDVCpl.exe" [2007-08-17 4702208] "IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" [2007-10-08 178712] "PlayMovie"="c:\program files\HomeCinema\PlayMovie\PMVService.exe" [2007-09-06 172032] "TVEService"="c:\program files\HomeCinema\TV Enhance\TVEService.exe" [2007-10-19 155648] "NeroFilterCheck"="c:\program files\Common Files\Nero\Lib\NeroCheck.exe" [2007-03-01 153136] "NMSSupport"="c:\program files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe" [2007-06-27 439512] "CCUTRAYICON"="c:\program files\Intel\IntelDH\CCU\CCU_TrayIcon.exe" [2007-06-27 215256] "Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2012-05-25 220160] "toolbar_eula_launcher"="c:\program files\GoogleEULA\EULALauncher.exe" [2007-02-09 16896] "Skytel"="Skytel.exe" [2007-08-03 1826816] "NvSvc"="c:\windows\system32\nvsvc.dll" [2007-09-12 86016] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-09-12 8497696] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-09-12 81920] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712] "Garmin Lifetime Updater"="c:\program files\Garmin\Lifetime Updater\GarminLifetime.exe" [2012-05-23 1466760] "AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2012-04-04 446392] "SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096] "AdobeCS6ServiceManager"="c:\program files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" [2012-05-07 1073312] "Anti-phishing Domain Advisor"="c:\programdata\Anti-phishing Domain Advisor\visicom_antiphishing.exe" [2012-05-03 217256] "SDTray"="c:\program files\Spybot - Search & Destroy 2\SDTray.exe" [2012-05-10 3349488] "!AVG Anti-Spyware"="c:\program files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 6731312] "Anvi Smart Defender"="c:\program files\Anvisoft\Anvi Smart Defender\ASDTray.exe" [2012-06-25 710912] "AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2012-04-05 2587008] "vProt"="c:\program files\AVG Secure Search\vprot.exe" [2012-07-12 1107552] "Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-07-03 462920] "BDAgent"="c:\program files\Bitdefender\Bitdefender 2012\bdagent.exe" [2012-03-22 1183616] . c:\users\Frank\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ OneNote 2007 Schermopname en Snel starten.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "mixer1"=wdmaud.drv . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Guard] @="Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro36] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro36.sys] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro36Crusader] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\HitmanPro36CrusaderBoot] @="" . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] 2012-05-25 14:38 116648 ----atw- c:\users\Frank\AppData\Local\Google\Update\GoogleUpdate.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyTomTomSA.exe] 2012-05-18 09:04 434168 ----a-w- c:\program files\MyTomTom 3\MyTomTomSA.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar] 2009-04-10 21:28 1233920 ----a-w- c:\program files\Windows Sidebar\sidebar.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] 2012-05-25 12:33 39408 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe . R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x] S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x] S3 3xHybrid;Philips SAA713x PCI Card;c:\windows\system32\DRIVERS\3xHybrid.sys [x] . . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . Inhoud van de 'Gedeelde Taken' map . 2012-07-13 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-30 08:10] . 2012-07-13 c:\windows\Tasks\Check for updates (Spybot - Search & Destroy).job - c:\program files\Spybot - Search & Destroy 2\SDUpdate.exe [2012-06-27 14:29] . 2012-07-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2012-05-25 14:29] . 2012-07-12 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2012-05-25 14:29] . 2012-07-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2162290485-3537841882-386488429-1001Core.job - c:\users\Frank\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-30 14:38] . 2012-07-13 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2162290485-3537841882-386488429-1001UA.job - c:\users\Frank\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-30 14:38] . 2012-06-27 c:\windows\Tasks\Refresh immunization (Spybot - Search & Destroy).job - c:\program files\Spybot - Search & Destroy 2\SDImmunize.exe [2012-06-27 14:29] . 2012-06-27 c:\windows\Tasks\Scan the system (Spybot - Search & Destroy).job - c:\program files\Spybot - Search & Destroy 2\SDScan.exe [2012-06-27 14:29] . . ------- Bijkomende Scan ------- . mSearch Bar = hxxp://www.google.com/ie IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000 TCP: DhcpNameServer = 195.130.130.1 195.130.131.1 Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll FF - ProfilePath - c:\users\Frank\AppData\Roaming\Mozilla\Firefox\Profiles\kqtonk2o.default\ FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: browser.startup.homepage - www.hln.be FF - prefs.js: keyword.URL - hxxp://isearch.avg.com/search?cid=%7B7e5869e8-b945-438c-b9ff-347c765870c5%7D&mid=157c3dfefc9547d0aca9d154d4ce14ed-c2a5752951eb1a29ed701a59cb6121645133c75c&ds=AVG&v=11.1.0.12〈=nl&pr=fr&d=2012-07-10%2017%3A41%3A41&sap=ku&q= FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=112059 FF - user.js: extensions.BabylonToolbar_i.babExt - FF - user.js: extensions.BabylonToolbar_i.srcExt - ss FF - user.js: extensions.BabylonToolbar_i.id - ce50de3d0000000000000015af4350b4 FF - user.js: extensions.BabylonToolbar_i.hardId - ce50de3d0000000000000015af4350b4 FF - user.js: extensions.BabylonToolbar_i.instlDay - 15497 FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17 FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17 FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1717:02 FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar FF - user.js: extensions.BabylonToolbar_i.aflt - babsst FF - user.js: extensions.BabylonToolbar_i.smplGrp - none FF - user.js: extensions.BabylonToolbar_i.tlbrId - base FF - user.js: extensions.BabylonToolbar_i.instlRef - sst FF - user.js: extentions.y2layers.installId - 0c646adc-9386-4f22-a39a-14201199de22 FF - user.js: extentions.y2layers.defaultEnableAppsList - Buzzdock,Buzzdock, FF - user.js: extensions.autoDisableScopes - 14 FF - user.js: security.csp.enable - false . - - - - ORPHANS VERWIJDERD - - - - . Toolbar-10 - (no file) WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file) HKCU-Run-AdobeBridge - (no file) SafeBoot-AVG Anti-Spyware Driver . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2012-07-13 09:30 Windows 6.0.6002 Service Pack 2 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}] "ImagePath"="\??\c:\program files\HomeCinema\PlayMovie\000.fcl" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\{95808DC4-FA4A-4C74-92FE-5B863F82066B}] "ImagePath"="\??\c:\program files\HomeCinema\PowerDVD\000.fcl" . Voltooingstijd: 2012-07-13 09:34:51 ComboFix-quarantined-files.txt 2012-07-13 07:34 . Pre-Run: 351.437.606.912 bytes beschikbaar Post-Run: 351.172.112.384 bytes beschikbaar . - - End Of File - - 6FA827FA61F7554DFB0FAA49A28FF2D8
  7. Eerst en vooral bedankt voor de hulp. Probleem is dat de virusscan niets ziet. net opgemerkt dat ik nog steeds naar een re-direct pagina gestuurd wordt partner37/mydomainadvisor of krijg een pagina met error 404 als ik van anvi smart defender een update probeer te doen krijg ik een connection error. als ik op deze site probeer te openen MDC Concept - Béton Imprimé, Imprimé Mural, Pavilevel krijg ik probleem bij het laden van de pagina : http://isearch.avg.com/dns?cid={7e5869e8-b945-438c-b9ff-347c765870c5}&mid=157c3dfefc9547d0aca9d154d4ce14ed-c2a5752951eb1a29ed701a59cb6121645133c75c&ds=AVG&v=11.1.0.12〈=nl&pr=fr&d=2012-07-10%2017%3A41%3A41&sap=dns&q=mdcconcept&urlref=http%3A//www.mdcconcept.be/Display.php%3FMenu%3D1%26Fct%3D10000 Het zit behoorlijk diep
  8. Malwarebytes Anti-Malware (-evaluatieversie-) 1.62.0.1300 Malwarebytes : Free anti-malware, anti-virus and spyware removal download Databaseversie: v2012.07.12.04 Windows Vista Service Pack 2 x86 NTFS (Veilige modus/netwerkmogelijkheden) Internet Explorer 9.0.8112.16421 Frank :: PC_VAN_FRANK [administrator] Realtime bescherming: Uitgeschakeld 12/07/2012 11:24:16 mbam-log-2012-07-12 (11-24-16).txt Scantype: Volledige scan (C:\|D:\|) Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM Uitgeschakelde scanopties: P2P Objecten gescand: 372225 Verstreken tijd: 36 minuut/minuten, 30 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 9 HKCR\CLSID\{5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} (PUP.Blabbers) -> Succesvol in quarantaine geplaatst en verwijderd. HKCR\TypeLib\{830B56CB-FD22-44AA-9887-7898F4F4158D} (PUP.Blabbers) -> Succesvol in quarantaine geplaatst en verwijderd. HKCR\tdataprotocol.CTData.1 (PUP.Blabbers) -> Succesvol in quarantaine geplaatst en verwijderd. HKCR\tdataprotocol.CTData (PUP.Blabbers) -> Succesvol in quarantaine geplaatst en verwijderd. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{00CBB66B-1D3B-46D3-9577-323A336ACB50} (PUP.Blabbers) -> Succesvol in quarantaine geplaatst en verwijderd. HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{963B125B-8B21-49A2-A3A8-E37092276531} (PUP.Blabbers) -> Succesvol in quarantaine geplaatst en verwijderd. HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\BrowserCompanion (PUP.Blabbers) -> Succesvol in quarantaine geplaatst en verwijderd. HKCR\TypeLib\{955B782E-CDC8-4CEE-B6F6-AD7D541A8D8A} (PUP.Blabbers) -> Succesvol in quarantaine geplaatst en verwijderd. HKCR\Interface\{9F0C17EB-EF2C-4278-9136-2D547656BC03} (PUP.Blabbers) -> Succesvol in quarantaine geplaatst en verwijderd. Registerwaarden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerdata gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Mappen gedetecteerd: 1 C:\Program Files\BrowserCompanion (PUP.Blabbers) -> Succesvol in quarantaine geplaatst en verwijderd. Bestanden gedetecteerd: 11 C:\Program Files\BrowserCompanion\tdataprotocol.dll (PUP.Blabbers) -> Succesvol in quarantaine geplaatst en verwijderd. C:\Program Files\BrowserCompanion\BCHelper.exe (PUP.Blabbers) -> Succesvol in quarantaine geplaatst en verwijderd. C:\Program Files\BrowserCompanion\blabbers-ff-full.xpi (PUP.Blabbers) -> Succesvol in quarantaine geplaatst en verwijderd. C:\Program Files\BrowserCompanion\blabbers-ch.crx (PUP.Blabbers) -> Succesvol in quarantaine geplaatst en verwijderd. C:\Program Files\BrowserCompanion\logo.ico (PUP.Blabbers) -> Succesvol in quarantaine geplaatst en verwijderd. C:\Program Files\BrowserCompanion\sqlite3.dll (PUP.Blabbers) -> Succesvol in quarantaine geplaatst en verwijderd. C:\Program Files\BrowserCompanion\toolbar.dll (PUP.Blabbers) -> Succesvol in quarantaine geplaatst en verwijderd. C:\Program Files\BrowserCompanion\uninstall.exe (PUP.Blabbers) -> Succesvol in quarantaine geplaatst en verwijderd. C:\Program Files\BrowserCompanion\updatebhoWin32.dll (PUP.Blabbers) -> Succesvol in quarantaine geplaatst en verwijderd. C:\Program Files\BrowserCompanion\updater.ini (PUP.Blabbers) -> Succesvol in quarantaine geplaatst en verwijderd. C:\Program Files\BrowserCompanion\widgetserv.exe (PUP.Blabbers) -> Succesvol in quarantaine geplaatst en verwijderd. (einde)
  9. Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 12:21:21, on 12/07/2012 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16446) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files\HomeCinema\PlayMovie\PMVService.exe C:\Program Files\HomeCinema\TV Enhance\TVEService.exe C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Windows\System32\rundll32.exe C:\Windows\System32\rundll32.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\Garmin\Lifetime Updater\GarminLifetime.exe C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe C:\Program Files\Anvisoft\Anvi Smart Defender\ASDTray.exe C:\Program Files\Bitdefender\Bitdefender 2012\bdagent.exe C:\Program Files\AVG\AVG2012\avgtray.exe C:\Program Files\AVG Secure Search\vprot.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Windows\ehome\ehtray.exe C:\Program Files\MyTomTom 3\MyTomTomSA.exe C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE C:\Windows\ehome\ehmsas.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe C:\Program Files\Intel\IntelDH\CCU\CCU_Engine.exe C:\Windows\system32\wuauclt.exe C:\Program Files\Windows Mail\WinMail.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = O1 - Hosts: ::1 localhost O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: AVG Do Not Track - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files\AVG\AVG2012\avgdtiex.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy 2\SDHelper.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [iAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\HomeCinema\PlayMovie\PMVService.exe" O4 - HKLM\..\Run: [TVEService] "C:\Program Files\HomeCinema\TV Enhance\TVEService.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe O4 - HKLM\..\Run: [NMSSupport] "C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe" /startup O4 - HKLM\..\Run: [CCUTRAYICON] C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [toolbar_eula_launcher] C:\Program Files\GoogleEULA\EULALauncher.exe O4 - HKLM\..\Run: [skytel] Skytel.exe O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [Garmin Lifetime Updater] C:\Program Files\Garmin\Lifetime Updater\GarminLifetime.exe /StartMinimized O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" O4 - HKLM\..\Run: [switchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [Anti-phishing Domain Advisor] "C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe" O4 - HKLM\..\Run: [sDTray] "C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe" O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKLM\..\Run: [Anvi Smart Defender] C:\Program Files\Anvisoft\Anvi Smart Defender\ASDTray.exe O4 - HKLM\..\Run: [bDAgent] "C:\Program Files\Bitdefender\Bitdefender 2012\bdagent.exe" O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe" O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe" O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [Google Update] "C:\Users\Frank\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [MyTomTomSA.exe] "C:\Program Files\MyTomTom 3\MyTomTomSA.exe" O4 - HKCU\..\Run: [spybot-S&D Cleaning] "C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-2162290485-3537841882-386488429-1000\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'IUSR_NMPR') O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files\AVG\AVG2012\avgdtiex.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy 2\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy 2\SDHelper.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Intel® Alert Service (AlertService) - Intel® Corporation - C:\Program Files\Intel\IntelDH\CCU\AlertService.exe O23 - Service: Anvi Smart Defender Realtime Guard Service (asdsrv) - Anvisoft - C:\Program Files\Anvisoft\Anvi Smart Defender\ASDSrv.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe O23 - Service: Intel® DHTrace Controller (DHTRACE) - Intel® Corporation - C:\Program Files\Common Files\Intel\IntelDH\bin\DHTraceController.exe O23 - Service: DQLWinService - Unknown owner - C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktopManager.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HitmanPro Scheduler (HitmanProScheduler) - SurfRight B.V. - C:\Program Files\HitmanPro\hmpsched.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe O23 - Service: Intel® Software Services Manager (ISSM) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe O23 - Service: Intel® Viiv Media Server (M1 Server) - Unknown owner - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: Intel® Application Tracker (MCLServiceATL) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: Intel® NMSCore (NMSCore) - Intel® Corporation - C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe O23 - Service: Intel® Quality Manager (QualityManager) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe O23 - Service: Intel® Remoting Service (Remote UI Service) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O23 - Service: TVEnhance Background Capture Service (TBCS) (TVECapSvc) - Unknown owner - C:\Program Files\HomeCinema\TV Enhance\Kernel\TV\TVECapSvc.exe O23 - Service: TVEnhance Task Scheduler (TTS)) (TVESched) - Unknown owner - C:\Program Files\HomeCinema\TV Enhance\Kernel\TV\TVESched.exe O23 - Service: vToolbarUpdater11.2.0 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe -- End of file - 14450 bytes
  10. Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 22:45:10, on 11/07/2012 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16446) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\system32\taskeng.exe C:\Windows\Explorer.EXE C:\Windows\RtHDVCpl.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files\HomeCinema\PlayMovie\PMVService.exe C:\Program Files\HomeCinema\TV Enhance\TVEService.exe C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Windows\System32\rundll32.exe C:\Program Files\Garmin\Lifetime Updater\GarminLifetime.exe C:\Program Files\BrowserCompanion\BCHelper.exe C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe C:\Program Files\Anvisoft\Anvi Smart Defender\ASDTray.exe C:\Program Files\Bitdefender\Bitdefender 2012\bdagent.exe C:\Program Files\AVG\AVG2012\avgtray.exe C:\Program Files\AVG Secure Search\vprot.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Windows\ehome\ehtray.exe C:\Program Files\MyTomTom 3\MyTomTomSA.exe C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\System32\rundll32.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Intel\IntelDH\CCU\CCU_Engine.exe C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Windows\system32\NOTEPAD.EXE C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: script helper for ie - {00cbb66b-1d3b-46d3-9577-323a336acb50} - C:\Program Files\BrowserCompanion\jsloader.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: AVG Do Not Track - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files\AVG\AVG2012\avgdtiex.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy 2\SDHelper.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll O2 - BHO: Update Timer - {963B125B-8B21-49A2-A3A8-E37092276531} - C:\Program Files\BrowserCompanion\updatebhoWin32.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files\Microsoft\BingBar\BingExt.dll" (file missing) O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files\Microsoft\BingBar\BingExt.dll" (file missing) O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [iAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\HomeCinema\PlayMovie\PMVService.exe" O4 - HKLM\..\Run: [TVEService] "C:\Program Files\HomeCinema\TV Enhance\TVEService.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe O4 - HKLM\..\Run: [NMSSupport] "C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe" /startup O4 - HKLM\..\Run: [CCUTRAYICON] C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [toolbar_eula_launcher] C:\Program Files\GoogleEULA\EULALauncher.exe O4 - HKLM\..\Run: [skytel] Skytel.exe O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [Garmin Lifetime Updater] C:\Program Files\Garmin\Lifetime Updater\GarminLifetime.exe /StartMinimized O4 - HKLM\..\Run: [browser companion helper] C:\Program Files\BrowserCompanion\BCHelper.exe /T=3 /CHI=clbfjfbnelcflpgpklppgplejolacbej O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" O4 - HKLM\..\Run: [switchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O4 - HKLM\..\Run: [AdobeCS6ServiceManager] "C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [Anti-phishing Domain Advisor] "C:\ProgramData\Anti-phishing Domain Advisor\visicom_antiphishing.exe" O4 - HKLM\..\Run: [sDTray] "C:\Program Files\Spybot - Search & Destroy 2\SDTray.exe" O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized O4 - HKLM\..\Run: [Anvi Smart Defender] C:\Program Files\Anvisoft\Anvi Smart Defender\ASDTray.exe O4 - HKLM\..\Run: [bDAgent] "C:\Program Files\Bitdefender\Bitdefender 2012\bdagent.exe" O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe" O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe" O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [Google Update] "C:\Users\Frank\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [MyTomTomSA.exe] "C:\Program Files\MyTomTom 3\MyTomTomSA.exe" O4 - HKCU\..\Run: [spybot-S&D Cleaning] "C:\Program Files\Spybot - Search & Destroy 2\SDCleaner.exe" /autoclean O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-2162290485-3537841882-386488429-1000\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'IUSR_NMPR') O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O4 - Startup: OneNote-inhoudsopgave.onetoc2 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files\AVG\AVG2012\avgdtiex.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy 2\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy 2\SDHelper.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: base64 - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files\BrowserCompanion\tdataprotocol.dll O18 - Protocol: chrome - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files\BrowserCompanion\tdataprotocol.dll O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll O18 - Protocol: prox - {5ACE96C0-C70A-4A4D-AF14-2E7B869345E1} - C:\Program Files\BrowserCompanion\tdataprotocol.dll O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Intel® Alert Service (AlertService) - Intel® Corporation - C:\Program Files\Intel\IntelDH\CCU\AlertService.exe O23 - Service: Anvi Smart Defender Realtime Guard Service (asdsrv) - Anvisoft - C:\Program Files\Anvisoft\Anvi Smart Defender\ASDSrv.exe O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe O23 - Service: Intel® DHTrace Controller (DHTRACE) - Intel® Corporation - C:\Program Files\Common Files\Intel\IntelDH\bin\DHTraceController.exe O23 - Service: DQLWinService - Unknown owner - C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe O23 - Service: GoogleDesktopManager - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktopManager.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HitmanPro Scheduler (HitmanProScheduler) - SurfRight B.V. - C:\Program Files\HitmanPro\hmpsched.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe O23 - Service: Intel® Software Services Manager (ISSM) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe O23 - Service: Intel® Viiv Media Server (M1 Server) - Unknown owner - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe O23 - Service: Intel® Application Tracker (MCLServiceATL) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe O23 - Service: Intel® NMSCore (NMSCore) - Intel® Corporation - C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe O23 - Service: Intel® Quality Manager (QualityManager) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe O23 - Service: Intel® Remoting Service (Remote UI Service) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDFSSvc.exe O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDUpdSvc.exe O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files\Spybot - Search & Destroy 2\SDWSCSvc.exe O23 - Service: Adobe SwitchBoard (SwitchBoard) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe O23 - Service: TVEnhance Background Capture Service (TBCS) (TVECapSvc) - Unknown owner - C:\Program Files\HomeCinema\TV Enhance\Kernel\TV\TVECapSvc.exe O23 - Service: TVEnhance Task Scheduler (TTS)) (TVESched) - Unknown owner - C:\Program Files\HomeCinema\TV Enhance\Kernel\TV\TVESched.exe O23 - Service: vToolbarUpdater11.2.0 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe -- End of file - 15512 bytes
  11. Hallo, iemand ervaring met het verwijderen van de browser kaper partner37/mydomainadvisor Al van alles geprobeerd maar is blijkbaar niet zo eenvoudig om weg te krijgen. Alvast bedankt. Mvg Franky
×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.