Ga naar inhoud

Maikevr

Lid
  • Items

    15
  • Registratiedatum

  • Laatst bezocht

Maikevr's prestaties

  1. Dat heeft wel een beetje geholpen, maar nog steeds lopen pagina's soms vast.
  2. Chrome kon net zelfs deze pagina niet openen, niet veel veranderd dus...
  3. Zoek.exe Version 4.0.0.2 Updated 31-May-2013 Tool run by Laptop on vr 31-05-2013 at 22:28:00,64. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected ==== Older Logs ====================== C:\zoek-results29-05-2013-1811.log 28949 bytes ======== System Restore Points ======== RP300: 28-5-2013 22:17:14 - Windows Update RP301: 29-5-2013 17:16:14 - Windows Update RP302: 29-5-2013 22:44:54 - Windows Update RP303: 30-5-2013 14:44:07 - TuneUp Utilities 2013 is verwijderd RP304: 30-5-2013 14:47:23 - TuneUp Utilities Language Pack (nl-NL) is verwijderd RP305: 31-5-2013 14:14:43 - HPSF Applying updates RP306: 31-5-2013 14:16:17 - HPSF Applying updates ==== EOF on vr 31-05-2013 at 22:29:44,86 ======================
  4. Zoek.exe Version 4.0.0.2 Updated 28-May-2013 Tool run by Laptop on wo 29-05-2013 at 17:49:43,79. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected ==== Reset Hosts File ====================== # Copyright © 1993-2006 Microsoft Corp. # # This is a sample HOSTS file used by Microsoft TCP/IP for Windows. # # This file contains the mappings of IP addresses to host names. Each # entry should be kept on an individual line. The IP address should # be placed in the first column followed by the corresponding host name. # The IP address and the host name should be separated by at least one # space. # # Additionally, comments (such as these) may be inserted on individual # lines or following the machine name denoted by a '#' symbol. # # For example: # # 102.54.94.97 rhino.acme.com # source server # 38.25.63.10 x.acme.com # x client host # localhost name resolution is handle within DNS itself. 127.0.0.1 localhost ::1 localhost ==== Possible Rootkit Infection ====================== C:\Users\Laptop\AppData\Local\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\L C:\Users\Laptop\AppData\Local\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\U C:\Users\Laptop\AppData\Local\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\@ C:\Windows\installer\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\L C:\Windows\installer\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\U C:\Windows\installer\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\@ ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== FireFox Fix ====================== Deleted from C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default\prefs.js: user_pref("browser.startup.homepage", "http://www.google.nl/"); user_pref("browser.search.defaultengine", "Privitize VPN"); user_pref("browser.search.defaultenginename", "Privitize VPN"); user_pref("browser.search.selectedEngine", "Privitize VPN"); user_pref("browser.search.order.1", "Privitize VPN"); Added to C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default\prefs.js: user_pref("browser.startup.homepage", "http://www.google.com"); user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q="); user_pref("browser.newtab.url", "http://www.google.com/"); user_pref("browser.search.defaultengine", "Google"); user_pref("browser.search.defaultenginename", "Google"); user_pref("browser.search.selectedEngine", "Google"); user_pref("browser.search.order.1", "Google"); user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q="); user_pref("browser.search.suggest.enabled", true); user_pref("browser.search.useDBForOrder", true); Deleted from C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js: Added to C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js: user_pref("browser.startup.homepage", "http://www.google.com"); user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q="); user_pref("browser.newtab.url", "http://www.google.com/"); user_pref("browser.search.defaultengine", "Google"); user_pref("browser.search.defaultenginename", "Google"); user_pref("browser.search.selectedEngine", "Google"); user_pref("browser.search.order.1", "Google"); user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q="); user_pref("browser.search.suggest.enabled", true); user_pref("browser.search.useDBForOrder", true); ProfilePath: C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default user.js not found ---- Lines babylon removed from prefs.js ---- ---- Lines babylon modified from prefs.js ---- ---- FireFox user.js and prefs.js backups ---- prefs_29-05-2013_1759_.backup ProfilePath: C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\extensions ---- Lines babylon removed from prefs.js ---- ---- Lines babylon modified from prefs.js ---- ---- Lines babylon removed from user.js ---- ---- FireFox user.js and prefs.js backups ---- user_29-05-2013_1759_.backup ==== Batch Command(s) Run By Tool====================== C:\Windows\system32\appdata deleted ==== Deleting Files \ Folders ====================== "C:\Users\Laptop\AppData\Local\{A545AA89-547B-4C44-9EA9-E42C12FC24E9}" deleted "C:\Program Files (x86)\GUTF810.tmp" deleted "C:\Users\Laptop\Downloads\SoftonicDownloader_voor_line.exe" deleted "C:\ProgramData\HPWALog.txt" deleted "C:\Users\Laptop\AppData\Local\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\@" deleted "C:\Windows\installer\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\@" deleted "C:\Users\Laptop\AppData\Local\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}" deleted "C:\Windows\installer\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}" deleted "C:\Users\Laptop\AppData\Local\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\L" deleted "C:\Users\Laptop\AppData\Local\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\U" deleted "C:\Windows\installer\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\L" deleted "C:\Windows\installer\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\U" deleted "C:\Program Files (x86)\GUMF7F0.tmp" deleted "C:\Program Files (x86)\PrivitizeVPN" deleted "C:\ProgramData\CloudSoft" deleted "C:\Users\Laptop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PrivitizeVPN" deleted ==== Firefox Extensions ====================== ProfilePath: C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default - Zoomex - %ProfilePath%\extensions\50d34e70d549c@50d34e70d54d5.com - Zoomex - %ProfilePath%\extensions\50d486cbb49e0@50d486cbb4a19.com - Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi - FoxTab - %ProfilePath%\extensions\{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}.xpi AppDir: C:\Program Files (x86)\Mozilla Firefox - Skype Click to Call - %AppDir%\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} - Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ==== Firefox Plugins ====================== Profilepath: C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default 7ABE33792F2787D599B6963E71B9E8CD - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll - Shockwave Flash 3D928B3FE97C403A33F803B3D1A260C9 - C:\Users\Laptop\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll - Google Update 3D3CAF586124C4E8102764C8B3063BB6 - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director 1F0D662B7BE2AB2D3A7E2C6A44A02BC1 - C:\Users\Laptop\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player ==== Deleting Files \ Folders ====================== "C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default\extensions\50d34e70d549c@50d34e70d54d5.com" deleted "C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default\extensions\50d486cbb49e0@50d486cbb4a19.com" deleted ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions cbnocfnjkmlljbfgpkbhefnlpbiemhif - C:\Users\Laptop\AppData\Roaming\OneTab\OneTab.crx[] knkoaloobohmahhpkmlajbeamkhnbobb - C:\ProgramData\Zoomex\knkoaloobohmahhpkmlajbeamkhnbobb.crx[] ndibdjnfmopecpmkdieinmbadjfpblof - C:\ProgramData\AVG Secure Search\ChromeExt\15.2.0.5\avg.crx[] nlcejneamagbkilppbpfnmihcldgboha - C:\ProgramData\Zoomex\nlcejneamagbkilppbpfnmihcldgboha.crx[] Angry Birds - Laptop - Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj Google Notifications - Laptop - Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi AdBlock - Laptop - Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom Yulia Brodskaya - Laptop - Default\Extensions\jlgdloilieclkegafohackmhffbmdpko HP Product Detection Plugin - Laptop - Default\Extensions\mnhbepgnjnaoahohppnffanmkjkjoglp Mini Ninjas - Laptop - Default\Extensions\oijfbknbncemokdnlboeabbcfhobechi ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.msn.com/" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] No DefaultScope Set For HKCU New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.msn.com/" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" {E80B8226-84AD-4A4D-9142-F59571177578} Bing Url="http://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox" {E9F829AC-0033-4A08-B1EA-5B35603A9445} AVG Secure Search Url="https://isearch.avg.com/search?cid={213DE651-5E9F-451B-9212-B1EE152A3646}&mid=94070a9127ab47d6b0211943efd1f01a-de44d60d68e968908817958fab847488db53d805〈=nl&ds=AVG&pr=fr&d=2012-06-10" ==== Reset Google Chrome ====================== C:\users\Laptop\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\users\Laptop\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully ==== Deleting CLSID Registry Keys ====================== HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{E54729E8-BB3D-4270-9D49-7389EA579090} deleted successfully ==== Deleting CLSID Registry Values ====================== HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{E54729E8-BB3D-4270-9D49-7389EA579090} deleted successfully ==== shortcuts on Users Desktops ====================== C:\Users\Laptop\Desktop\Google Chrome.lnk - C:\Users\Laptop\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Laptop\Desktop\HiJackThis.lnk - C:\Users\Laptop\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe ==== shortcuts on All Users Desktop ====================== C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe ==== shortcuts in Users Start Menu ====================== C:\Users\Laptop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Users\Laptop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe -extoff C:\Users\Laptop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis\HiJackThis.lnk - C:\Users\Laptop\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 8.lnk - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG\AVG 2012.lnk - C:\Program Files (x86)\AVG\AVG2012\avgui.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Help.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Verwijder Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\chameleon.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\Silverlight.Configuration.exe ==== Reset IE Proxy ====================== Value(s) before fix: "ProxyOverride"="*.local" "ProxyEnable"=dword:00000000 Value(s) after fix: "ProxyEnable"=dword:00000000 ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\cbnocfnjkmlljbfgpkbhefnlpbiemhif deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\knkoaloobohmahhpkmlajbeamkhnbobb deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\nlcejneamagbkilppbpfnmihcldgboha deleted successfully ==== HijackThis Entries ====================== R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm O1 - Hosts: ::1 localhost O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2156.0\npwinext.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll O3 - Toolbar: @C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2156.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2156.0\npwinext.dll O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe O4 - HKLM\..\Run: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe" O4 - HKLM\..\Run: [Ad-Aware Antivirus] "C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareLauncher" --windows-run O4 - HKLM\..\Run: [PrivitizeVPN] C:\Program Files (x86)\PrivitizeVPN\PrivitizeVPN.exe /autorun O4 - HKLM\..\Run: [HTC Sync Loader] "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKCU\..\Run: [spotify Web Helper] "C:\Users\Laptop\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" O4 - HKCU\..\Run: [unified Remote v2] C:\Program Files (x86)\Unified Remote\RemoteServer.exe O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - Startup: Dropbox.lnk = Laptop\AppData\Roaming\Dropbox\bin\Dropbox.exe O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - MSN Games - Free Online Games O16 - DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} (Battlefield Heroes Updater) - https://www.battlefieldheroes.com/static/updater/BFHUpdater_5.0.31.0.cab O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - MSN Games - Free Online Games O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - MSN Games - Free Online Games O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: Process Monitor (LVPrcS64) - Logitech Inc. - C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing) O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: vToolbarUpdater15.2.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) ==== Empty IE Cache ====================== C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Gast\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\Laptop\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Laptop\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== C:\users\Laptop\AppData\Local\Mozilla\Firefox\Profiles\aeel16f7.default\Cache emptied successfully ==== Empty Chrome Cache ====================== C:\users\Laptop\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully C:\users\Laptop\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\Laptop\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on wo 29-05-2013 at 18:11:31,03 ======================
  5. Op het begin leek het iets beter, maar het is helaas nog precies hetzelfde.
  6. Ja, het is gelukt. ComboFix 13-05-28.02 - Laptop 28-05-2013 13:42:59.1.4 - x64Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.2934.1671 [GMT 2:00] Gestart vanuit: c:\users\Laptop\Desktop\ComboFix.exe AV: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0} AV: Emsisoft Anti-Malware *Disabled/Outdated* {0ADC9F7D-20C1-240F-01E2-43466EBA893A} AV: Lavasoft Ad-Aware *Disabled/Updated* {445B48C3-0FA4-6B16-8F07-6506F305D800} FW: Lavasoft Ad-Aware *Disabled* {7C60C9E6-45CB-6A4E-A458-CC330DD69F7B} SP: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D} SP: Emsisoft Anti-Malware *Disabled/Outdated* {B1BD7E99-06FB-2B81-3B52-7834153DC387} SP: Lavasoft Ad-Aware *Disabled/Updated* {FF3AA927-299E-6498-B5B7-5E74888292BD} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Nieuw herstelpunt werd aangemaakt . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\program files (x86)\Naver c:\program files (x86)\Naver\LINE\amp-dll.dll c:\program files (x86)\Naver\LINE\CommLib.dll c:\program files (x86)\Naver\LINE\CommModule.dll c:\program files (x86)\Naver\LINE\DataModule.dll c:\program files (x86)\Naver\LINE\dbghelp.dll c:\program files (x86)\Naver\LINE\Line.exe c:\program files (x86)\Naver\LINE\LineAppMgr.exe c:\program files (x86)\Naver\LINE\LineUnInst.exe c:\program files (x86)\Naver\LINE\LineUpgrader.exe c:\program files (x86)\Naver\LINE\MediaInfo.dll c:\program files (x86)\Naver\LINE\Microsoft.VC90.CRT.manifest c:\program files (x86)\Naver\LINE\msvcp90.dll c:\program files (x86)\Naver\LINE\msvcr90.dll c:\program files (x86)\Naver\LINE\NELO.dll c:\program files (x86)\Naver\LINE\NELO_CrashReporter.exe c:\program files (x86)\Naver\LINE\README.license c:\program files (x86)\Naver\LINE\res\locale\en-US\buddy.xml c:\program files (x86)\Naver\LINE\res\locale\en-US\chatRoom.xml c:\program files (x86)\Naver\LINE\res\locale\en-US\common.xml c:\program files (x86)\Naver\LINE\res\locale\en-US\group.xml c:\program files (x86)\Naver\LINE\res\locale\en-US\invite.xml c:\program files (x86)\Naver\LINE\res\locale\en-US\login.xml c:\program files (x86)\Naver\LINE\res\locale\en-US\menu.xml c:\program files (x86)\Naver\LINE\res\locale\en-US\msgbox.xml c:\program files (x86)\Naver\LINE\res\locale\en-US\setting.xml c:\program files (x86)\Naver\LINE\res\locale\en-US\sticker.xml c:\program files (x86)\Naver\LINE\res\locale\en-US\talk.xml c:\program files (x86)\Naver\LINE\res\locale\en-US\upgrader.xml c:\program files (x86)\Naver\LINE\res\locale\en-US\upic.xml c:\program files (x86)\Naver\LINE\res\locale\en-US\voip.xml c:\program files (x86)\Naver\LINE\res\locale\ja-JP\buddy.xml c:\program files (x86)\Naver\LINE\res\locale\ja-JP\chatRoom.xml c:\program files (x86)\Naver\LINE\res\locale\ja-JP\common.xml c:\program files (x86)\Naver\LINE\res\locale\ja-JP\group.xml c:\program files (x86)\Naver\LINE\res\locale\ja-JP\invite.xml c:\program files (x86)\Naver\LINE\res\locale\ja-JP\login.xml c:\program files (x86)\Naver\LINE\res\locale\ja-JP\menu.xml c:\program files (x86)\Naver\LINE\res\locale\ja-JP\msgbox.xml c:\program files (x86)\Naver\LINE\res\locale\ja-JP\setting.xml c:\program files (x86)\Naver\LINE\res\locale\ja-JP\sticker.xml c:\program files (x86)\Naver\LINE\res\locale\ja-JP\talk.xml c:\program files (x86)\Naver\LINE\res\locale\ja-JP\upgrader.xml c:\program files (x86)\Naver\LINE\res\locale\ja-JP\upic.xml c:\program files (x86)\Naver\LINE\res\locale\ja-JP\voip.xml c:\program files (x86)\Naver\LINE\res\locale\ko-KR\buddy.xml c:\program files (x86)\Naver\LINE\res\locale\ko-KR\chatRoom.xml c:\program files (x86)\Naver\LINE\res\locale\ko-KR\common.xml c:\program files (x86)\Naver\LINE\res\locale\ko-KR\group.xml c:\program files (x86)\Naver\LINE\res\locale\ko-KR\invite.xml c:\program files (x86)\Naver\LINE\res\locale\ko-KR\login.xml c:\program files (x86)\Naver\LINE\res\locale\ko-KR\menu.xml c:\program files (x86)\Naver\LINE\res\locale\ko-KR\msgbox.xml c:\program files (x86)\Naver\LINE\res\locale\ko-KR\setting.xml c:\program files (x86)\Naver\LINE\res\locale\ko-KR\sticker.xml c:\program files (x86)\Naver\LINE\res\locale\ko-KR\talk.xml c:\program files (x86)\Naver\LINE\res\locale\ko-KR\upgrader.xml c:\program files (x86)\Naver\LINE\res\locale\ko-KR\upic.xml c:\program files (x86)\Naver\LINE\res\locale\ko-KR\voip.xml c:\program files (x86)\Naver\LINE\res\locale\zh-CN\buddy.xml c:\program files (x86)\Naver\LINE\res\locale\zh-CN\chatRoom.xml c:\program files (x86)\Naver\LINE\res\locale\zh-CN\common.xml c:\program files (x86)\Naver\LINE\res\locale\zh-CN\group.xml c:\program files (x86)\Naver\LINE\res\locale\zh-CN\invite.xml c:\program files (x86)\Naver\LINE\res\locale\zh-CN\login.xml c:\program files (x86)\Naver\LINE\res\locale\zh-CN\menu.xml c:\program files (x86)\Naver\LINE\res\locale\zh-CN\msgbox.xml c:\program files (x86)\Naver\LINE\res\locale\zh-CN\setting.xml c:\program files (x86)\Naver\LINE\res\locale\zh-CN\sticker.xml c:\program files (x86)\Naver\LINE\res\locale\zh-CN\talk.xml c:\program files (x86)\Naver\LINE\res\locale\zh-CN\upgrader.xml c:\program files (x86)\Naver\LINE\res\locale\zh-CN\upic.xml c:\program files (x86)\Naver\LINE\res\locale\zh-CN\voip.xml c:\program files (x86)\Naver\LINE\res\locale\zh-TW\buddy.xml c:\program files (x86)\Naver\LINE\res\locale\zh-TW\chatRoom.xml c:\program files (x86)\Naver\LINE\res\locale\zh-TW\common.xml c:\program files (x86)\Naver\LINE\res\locale\zh-TW\group.xml c:\program files (x86)\Naver\LINE\res\locale\zh-TW\invite.xml c:\program files (x86)\Naver\LINE\res\locale\zh-TW\login.xml c:\program files (x86)\Naver\LINE\res\locale\zh-TW\menu.xml c:\program files (x86)\Naver\LINE\res\locale\zh-TW\msgbox.xml c:\program files (x86)\Naver\LINE\res\locale\zh-TW\setting.xml c:\program files (x86)\Naver\LINE\res\locale\zh-TW\sticker.xml c:\program files (x86)\Naver\LINE\res\locale\zh-TW\talk.xml c:\program files (x86)\Naver\LINE\res\locale\zh-TW\upgrader.xml c:\program files (x86)\Naver\LINE\res\locale\zh-TW\upic.xml c:\program files (x86)\Naver\LINE\res\locale\zh-TW\voip.xml c:\program files (x86)\Naver\LINE\res\skin\basic\about.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\buddyInfo.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\chatMember.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\chatRoom.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\css\buddyInfo.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\chatMember.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\chatRoom.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\chatRoomMessage.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\common.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\emoji.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\emojiIcon.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\emojiLetter.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\groupMake.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\groupModify.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\invite.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\login.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\loginHelp.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\makeGroup.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\myInfo.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\setting.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\settingBasic.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\settingPrivacy.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\sticker.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\talk.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\talkAddBuddy.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\talkBuddyList.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\talkChatList.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\toast.css c:\program files (x86)\Naver\LINE\res\skin\basic\css\voip.css c:\program files (x86)\Naver\LINE\res\skin\basic\emoji.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\emojiIcon.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\emojiLetter.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\groupMake.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\groupModify.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_audio.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_btn_box.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_buddy_bubble_gray.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_buddy_bubble_gray2.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_buddy_image_frame.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_buddy_video.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_call.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_date_bubble.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_img_err.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_layer.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_menu_line.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_more.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_my_bubble_green.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_my_bubble_green2.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_my_bubble_light_green.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_my_image_frame.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_my_video.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_new_buddy.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_sep.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_splitter.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_top.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_video.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\br_btm_l.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\br_btm_m.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\br_btm_r.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\br_line.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\br_top_l.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\br_top_r.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_addblock.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_arrow_down.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_canel.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_chat_type1.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_close.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_emoji.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_file.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_max.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_menu.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_min.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_room_name.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\check_style1.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\check_style2.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\check_style3.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\check_style3_x.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\check_style3_xx.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\flag.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\ico_alarm_off.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\ico_error_sticker.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\ico_fail.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\ico_person.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\icon_voip.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\icon_voip_disable.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\loading.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\loading_small.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\nick_bubble_l.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\nick_bubble_m.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\nick_bubble_r.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\slider_bar.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\slider_thumb.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\thumnail_box.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\bar_01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\bar_02.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\bg_dlg_title.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\br_btm_l.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\br_btm_r.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\br_line.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\br_top_l.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\br_top_r.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\btn_close_01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\btn_close_02.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\btn_system.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\btn_type1.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\btn_type2.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\btn_type3.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\btn_update.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\check_type1.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\checkbox_01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\ico_close.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\ico_dot01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\ico_return.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\icon_clear.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\input_box.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\layer_btn_close.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\layer_btn_close_all.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\layer_btn_close_click.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\layer_btn_close_over.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\layer_btn_search_1.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\Line.ico c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\line_about.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\line_about_btn.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\loading.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\profile_frame.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\spin_down.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\spin_up.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\thumnail_01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\thumnail_02.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\thumnail_03.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\thumnail_04.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\thumnail_05.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\bg_tab.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_icon_bg.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_index.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_latest.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_left.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_letter.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_right.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_sticker_arrow1.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_sticker_arrow2.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\emoji_bottom.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\emoji_select.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\emoji_top_bg.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\select_emoticon.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\select_kaomoji.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\select_sticker.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\stiker_btn_bg.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\bg_add_profile_frame.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\bg_teamlayer_top_01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_plus_02.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_radio_off_01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_radio_on_01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_cancel_01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_invite_01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_make_01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_member_01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_no_01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_save_01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_talk_01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_write_01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_yes_01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\check_style1.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\check_style3.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\group_edit_select.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\btn_close.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\btn_login.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\btn_max.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\btn_min.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\btn_qrcode_refresh.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\en-US\01_main.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\en-US\02_email.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\en-US\03_qr01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\en-US\04_qr02.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\en-US\btn_login.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\en-US\btn_qrcode.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ico_q.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ico_step01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ico_step02.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\01_main.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\02_email.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\03_jp_main.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\04_jp_setting.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\05_app_qr01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\06_app_qr02.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\07_wap_qr01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\08_wap_qr02.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\btn_login.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\btn_qrcode.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\01_main.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\02_email.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\03_naver.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\04_qr01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\05_qr02.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\btn_international.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\btn_login.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\btn_qrcode.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\line_logo.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\login_bg1.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\login_bg2.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\login_btm.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\login_bullet.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\login_bullet2.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\login_line.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\login_qrcode.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-CN\01_main.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-CN\02_email.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-CN\03_qr01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-CN\04_qr02.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-CN\btn_login.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-CN\btn_qrcode.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-TW\01_main.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-TW\02_email.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-TW\03_qr01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-TW\04_qr02.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-TW\btn_login.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-TW\btn_qrcode.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_bottom_l.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_bottom_m.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_bottom_r.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_check.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_middle_l.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_middle_r.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_top_l.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_top_m.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_top_r.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_uncheck.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\img_default.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\img_default_big.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\img_default_group.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\img_default_group_big.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\img_default_makegroup.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\list_img_default.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\list_img_default_group.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\list_img_default_makegroup.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\bg_setting.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\bg_setting_btm.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\bg_setting_line.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\bg_setting_top.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\bg_setting_topleft.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\bg_setting_topright.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\btn_block_user.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\btn_select.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\ico_arrow.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\layer_btn_close_all.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\tab_bg.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\bg_badge.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\bg_subpanel.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\bg_tab.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\bg_top.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_add_friend.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_chat.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_close.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_list_option.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_max.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_menu.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_min.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_top_friendtalk_01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\check_addbuddy.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\check_group_show.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\group_member_count_bg.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\ico_tab01.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\ico_tab02.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\ico_tab03.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\icon_search.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\img_no_data_1.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\img_no_data_2.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\img_no_data_3.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\input_cursor.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\list_tab_bar.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\nick_bubble_l.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\nick_bubble_m.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\nick_bubble_r.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\status_bg.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\toast\toast_bg.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\toast\toast_btn_call_accept.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\toast\toast_btn_call_bg.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\toast\toast_btn_call_refuse.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\toast\toast_close.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\toast\toast_icon_call_accept.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\toast\toast_icon_call_refuse.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\tray\line_off.ico c:\program files (x86)\Naver\LINE\res\skin\basic\images\tray\tray_icon_new.ico c:\program files (x86)\Naver\LINE\res\skin\basic\images\tray\tray_icon_offline.ico c:\program files (x86)\Naver\LINE\res\skin\basic\images\tray\tray_icon_online.ico c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_call_accept.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_call_refuse.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_mic.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_mic_dim.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_vol.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_vol_dim.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_vol_gray.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_vol_green.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_win_btn.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_win_thumnail_110.png c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_win_thumnail_bg.png c:\program files (x86)\Naver\LINE\res\skin\basic\invite.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\login.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\loginHelp.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\loginKickout.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\macUpgradeNotice.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\myInfo.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\notice.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\picturePopup.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\QRCodeHelp.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\setting.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\settingBasic.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\settingPrivacy.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\skinMsgBox.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\sticker.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\talk.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\talkAddBuddy.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\talkBuddyList.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\talkChatList.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\test.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\toast.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\uploadPicture.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\voip.nxul c:\program files (x86)\Naver\LINE\res\skin\basic\windowPositionHelperTester.nxul c:\program files (x86)\Naver\LINE\res\skin\emoji\emoji_facemark.csv c:\program files (x86)\Naver\LINE\res\skin\emoji\emoji_icon.csv c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_001.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_002.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_003.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_004.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_005.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_006.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_007.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_008.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_009.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_01s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_02s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_03s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_04s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_05s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_06s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_07s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_08s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_09s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_10s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_11s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_12s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_13s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_14s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_15s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_16s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_17s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_18s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_19s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_20s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_21s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_01s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_02s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_03s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_04s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_05s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_06s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_07s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_08s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_09s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_10s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_11s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_12s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_01s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_02s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_03s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_04s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_05s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_06s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_07s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_08s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_09s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_10s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_11s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_12s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_13s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_01s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_02s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_03s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_04s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_05s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_06s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_07s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_08s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_09s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_10s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_11s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_12s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_13s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_14s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_15s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_01s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_02s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_03s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_04s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_05s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_06s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_07s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_08s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_09s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_10s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_11s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_12s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_13s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_14s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_15s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_16s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_17s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_18s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_19s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_20s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_21s.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_01.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_02.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_03.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_04.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_05.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_06.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_07.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_08.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_09.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_10.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_11.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_12.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_13.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_14.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_15.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_16.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_17.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_18.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_19.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_20.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_21.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_01.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_02.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_03.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_04.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_05.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_06.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_07.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_08.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_09.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_10.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_11.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_12.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_13.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_14.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_15.png c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_16.png c:\program files (x86)\Naver\LINE\res\skin\sticker\gift\gift_1.png c:\program files (x86)\Naver\LINE\res\skin\sticker\gift\gift_2.png c:\program files (x86)\Naver\LINE\res\skin\sticker\gift\gift_3.png c:\program files (x86)\Naver\LINE\res\skin\sticker\gift\gift_4.png c:\program files (x86)\Naver\LINE\res\skin\sticker\tab\tab00_off.png c:\program files (x86)\Naver\LINE\res\skin\sticker\tab\tab00_on.png c:\program files (x86)\Naver\LINE\res\sounds\Bell.wav c:\program files (x86)\Naver\LINE\res\sounds\VoipEnd.wav c:\program files (x86)\Naver\LINE\res\sounds\VoipRing.wav c:\program files (x86)\Naver\LINE\res\sounds\VoipRingback.wav c:\windows\SysWow64\frapsvid.dll . Besmet exemplaar van c:\windows\system32\Services.exe werd aangetroffen en gedesinfecteerd Hersteld exemplaar van - c:\windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe . . (((((((((((((((((((( Bestanden Gemaakt van 2013-04-28 to 2013-05-28 )))))))))))))))))))))))))))))) . . 2013-05-28 12:01 . 2013-05-28 12:01 -------- d-----w- c:\users\Default\AppData\Local\temp 2013-05-28 12:01 . 2013-05-28 12:01 -------- d-----w- c:\users\Gast\AppData\Local\temp 2013-05-26 14:54 . 2013-05-26 14:54 -------- d-----w- c:\program files (x86)\Common Files\Java 2013-05-26 14:52 . 2013-04-04 03:35 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll 2013-05-26 14:35 . 2013-05-26 14:35 121 ----a-w- c:\windows\DeleteOnReboot.bat 2013-05-26 09:18 . 2013-02-16 23:40 28672 ----a-w- c:\windows\system32\IEUDINIT.EXE 2013-05-26 09:10 . 2013-05-26 09:10 68608 ----a-w- c:\windows\system32\taskhost.exe 2013-05-26 09:08 . 2013-05-26 09:08 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll 2013-05-24 19:07 . 2013-05-24 19:07 388096 ----a-r- c:\users\Laptop\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-05-26 09:09 . 2013-05-26 09:09 44032 ----a-w- c:\windows\apppatch\acwow64.dll 2013-05-22 14:36 . 2012-09-03 19:08 45856 ----a-w- c:\windows\system32\drivers\avgtpx64.sys 2013-05-15 19:16 . 2012-05-08 15:32 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2013-05-15 19:16 . 2012-05-08 15:32 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2013-05-14 13:39 . 2012-05-05 11:04 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2013-04-04 12:50 . 2010-12-20 16:25 25928 ----a-w- c:\windows\system32\drivers\mbam.sys 2013-04-01 20:00 . 2012-12-20 16:34 861088 ----a-w- c:\windows\SysWow64\npDeployJava1.dll 2013-04-01 20:00 . 2010-08-11 15:59 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll 2013-02-10 21:52 . 2013-02-10 21:52 4126720 ----a-w- c:\program files (x86)\GUTF810.tmp . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 129272 ----a-w- c:\users\Laptop\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 129272 ----a-w- c:\users\Laptop\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 129272 ----a-w- c:\users\Laptop\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2009-10-16 2363392] "DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872] "Spotify Web Helper"="c:\users\Laptop\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2012-09-11 1193176] "Unified Remote v2"="c:\program files (x86)\Unified Remote\RemoteServer.exe" [2012-11-24 279136] "Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-02-28 18642024] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "Ad-Aware Antivirus"="c:\program files (x86)\Ad-Aware Antivirus\AdAwareLauncher --windows-run" [X] "Easybits Recovery"="c:\program files (x86)\EasyBits For Kids\ezRecover.exe" [2009-09-02 60464] "QlbCtrl.exe"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2010-02-25 323640] "Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696] "HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576] "WirelessAssistant"="c:\program files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2009-07-23 498744] "Microsoft Default Manager"="c:\program files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2010-05-10 439568] "AVG_TRAY"="c:\program files (x86)\AVG\AVG2012\avgtray.exe" [2012-11-19 2598520] "PrivitizeVPN"="c:\program files (x86)\PrivitizeVPN\PrivitizeVPN.exe" [2012-09-10 196784] "HTC Sync Loader"="c:\program files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" [2012-04-17 651264] "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-08-27 59280] "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-09-09 421776] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816] . c:\users\Laptop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ Dropbox.lnk - c:\users\Laptop\AppData\Roaming\Dropbox\bin\Dropbox.exe [2013-3-12 29106336] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) "HideFastUserSwitching"= 0 (0x0) . [hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks] . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows] "LoadAppInit_DLLs"=1 (0x1) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux2"=wdmaud.drv . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~2\AVG\AVG2012\avgrsa.exe /sync /restart . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ad-Aware Service] @="Ad-Aware Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SBAMSvc] @="Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] @="Driver" . R1 TKFWFV;nProtect Firewall Core Driver ;c:\windows\system32\TKFWFV64.sys [x] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528] R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384] R3 a2acc;a2acc;c:\program files (x86)\EMSISOFT ANTI-MALWARE\a2accx64.sys [2011-11-02 63880] R3 Com4QLBEx;Com4QLBEx;c:\program files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2010-02-25 227896] R3 dump_wmimmc;dump_wmimmc;c:\program files\Gpotato\Flyff\GameGuard\dump_wmimmc.sys [x] R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2011-03-01 130976] R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [2009-11-02 33736] R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [2010-06-25 36928] R3 lvpopf64;Logitech POP Suppression Filter;c:\windows\system32\DRIVERS\lvpopf64.sys [2010-07-27 271712] R3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys [2010-07-27 339040] R3 LVUVC64;Logitech Webcam 200(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys [2010-07-27 6465632] R3 ManyCam;ManyCam Virtual Webcam;c:\windows\system32\DRIVERS\mcvidrv_x64.sys [2012-01-11 34304] R3 mcaudrv_simple;ManyCam Virtual Microphone;c:\windows\system32\drivers\mcaudrv_x64.sys [2012-02-22 28160] R3 netr7364;Stuurprogramma voor RT73 USB draadloze LAN-kaart voor Vista;c:\windows\system32\DRIVERS\netr7364.sys [2009-06-10 707072] R3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368] R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des [x] R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-09-23 225280] R3 SBFWIMCL;GFI Software Firewall NDIS IM Filter Service;c:\windows\system32\DRIVERS\sbfwim.sys [2011-09-29 119416] R3 sbhips;sbhips;c:\windows\system32\drivers\sbhips.sys [2011-12-19 60536] R3 sbwtis;sbwtis;c:\windows\system32\DRIVERS\sbwtis.sys [2011-12-19 84600] R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864] R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312] R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864] R3 TKCtrl;TKCtrl;c:\windows\system32\TKCtrl2k64.sys [x] R3 TKFsAvM;TKFsAvM;c:\windows\system32\TKFsAv64.sys [x] R3 TkFsFtM;MiniFilter Driver;c:\windows\system32\TKFsFt64.sys [x] R3 TKFWVT;TKFWVT;c:\windows\system32\TKFWVT64.sys [x] R3 TkIdsVt;TkIdsVt;c:\windows\system32\TkIdsVt64.sys [x] R3 TKPcFt;TKPcFt;c:\windows\system32\TKPcFtCb64.sys [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392] R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-07-09 52736] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-08-13 1255736] R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2009-06-10 389120] R4 a2AntiMalware;Emsisoft Anti-Malware 6.0 - Service;c:\program files (x86)\Emsisoft Anti-Malware\a2service.exe [2012-01-22 3025112] R4 Ad-Aware Service;Ad-Aware Service;c:\program files (x86)\Ad-Aware Antivirus\AdAwareService.exe [2012-05-03 1226096] R4 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x] R4 SBAMSvc;Ad-Aware;c:\program files (x86)\Ad-Aware Antivirus\SBAMSvc.exe [2011-12-19 3289032] S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys [2012-04-19 28480] S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2012-01-31 36944] S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x] S1 A2DDA;A2 Direct Disk Access Support Driver;c:\program files (x86)\Emsisoft Anti-Malware\a2ddax64.sys [2011-05-19 23208] S1 a2injectiondriver;a2injectiondriver;c:\program files (x86)\Emsisoft Anti-Malware\a2dix64.sys [2011-11-02 41728] S1 a2util;a-squared Malware-IDS utility driver;c:\program files (x86)\Emsisoft Anti-Malware\a2util64.sys [2010-05-05 14720] S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2012-11-08 307040] S1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2011-12-23 47696] S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys [2013-05-22 45856] S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-05-05 283200] S1 SbFw;SbFw;c:\windows\system32\drivers\SbFw.sys [2011-12-19 256632] S1 SBRE;SBRE;c:\windows\system32\drivers\SBREdrv.sys [2011-10-26 57976] S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208] S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2012\AVGIDSAgent.exe [2012-11-02 5174392] S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2012\avgwdsvc.exe [2012-02-14 193288] S2 ezSharedSvc;Easybits Shared Services for Windows;c:\windows\system32\svchost.exe [2009-07-14 27136] S2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;c:\program files (x86)\Hi-Rez Studios\HiPatchService.exe [2011-04-21 23680] S2 LVPrcS64;Process Monitor;c:\program files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe [2010-05-07 197976] S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2012-03-23 87040] S2 sbapifs;sbapifs;c:\windows\system32\DRIVERS\sbapifs.sys [2011-11-29 74872] S2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-10-02 3064000] S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-04-23 3574624] S2 UNS;Intel® Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2009-10-01 2320920] S2 vToolbarUpdater15.2.0;vToolbarUpdater15.2.0;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe [2013-05-22 1015984] S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys [2012-12-10 127328] S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\avgidsfiltera.sys [2011-12-23 29776] S3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344] S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2009-10-30 244736] S3 LVPr2M64;Logitech LVPr2M64 Driver;c:\windows\system32\DRIVERS\LVPr2M64.sys [2010-05-07 30304] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240] S3 SBFWIMCLMP;GFI Software Firewall NDIS IM Filter Miniport;c:\windows\system32\DRIVERS\SBFWIM.sys [2011-09-29 119416] . . --- Andere Services/Drivers In Geheugen --- . *NewlyCreated* - WS2IFSL . HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs ezSharedSvc . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}] 2009-10-16 11:49 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe . Inhoud van de 'Gedeelde Taken' map . 2013-05-27 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-08 19:16] . 2013-05-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-10-02 13:35] . 2013-05-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-10-02 13:35] . 2013-05-27 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1592174162-4216136605-3399642135-1001Core.job - c:\users\Laptop\AppData\Local\Google\Update\GoogleUpdate.exe [2011-04-05 13:35] . 2013-05-28 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1592174162-4216136605-3399642135-1001UA.job - c:\users\Laptop\AppData\Local\Google\Update\GoogleUpdate.exe [2011-04-05 13:35] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 162552 ----a-w- c:\users\Laptop\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 162552 ----a-w- c:\users\Laptop\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 162552 ----a-w- c:\users\Laptop\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4] @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}] 2012-11-13 23:32 162552 ----a-w- c:\users\Laptop\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2009-12-22 5977600] "RtkOSD"="c:\program files (x86)\Realtek\Audio\OSD\RtVOsd64.exe" [2009-10-13 995840] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-01-10 167704] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-01-10 392984] "Persistence"="c:\windows\system32\igfxpers.exe" [2012-01-10 417560] . HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService FontCache . ------- Bijkomende Scan ------- . uLocal Page = c:\windows\system32\blank.htm mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000 TCP: DhcpNameServer = 192.168.2.254 FF - ProfilePath - c:\users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default\ FF - prefs.js: browser.search.selectedEngine - Privitize VPN FF - prefs.js: browser.startup.homepage - hxxp://www.google.nl/ FF - ExtSQL: 2013-05-23 18:50; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi . - - - - ORPHANS VERWIJDERD - - - - . Wow6432Node-HKCU-Run-EA Core - c:\program files (x86)\Electronic Arts\EADM\Core.exe Wow6432Node-HKLM-Run-LogMeIn Hamachi Ui - c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe AddRemove-EasyBits Magic Desktop - c:\windows\system32\ezMDUninstall.exe AddRemove-HitmanPro35 - c:\program files (x86)\Hitman Pro 3.5\HitmanPro355.exe AddRemove-HyperCam Toolbar - c:\program files (x86)\HyperCam Toolbar\UninstallToolbar.exe AddRemove-LINE - c:\program files (x86)\Naver\LINE\LineUnInst.exe AddRemove-OneTab - c:\users\Laptop\AppData\Roaming\OneTab\uninstall.exe AddRemove-Sound Editor Pro_is1 - c:\program files (x86)\Sound Editor Pro\unins000.exe AddRemove-SP_5dec30d7 - c:\program files (x86)\ZoomEx\uninstall.exe AddRemove-WaveLabPro - c:\program files (x86)\Steinberg\WaveLab 6\Uninstall.exe AddRemove-{53820F89-063F-10D7-7457-06C201F4CBF0} - c:\programdata\Zoomex\uninstall.exe AddRemove-{5C13C5F3-6E30-449F-8872-DF8AC35AE285}_is1 - c:\users\Laptop\Documents\CraftBukkit\unins000.exe AddRemove-{EE202411-2C26-49E8-9784-1BC1DBF7DE96} - c:\program files (x86)\InstallShield Installation Information\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\setup.exe AddRemove-{87686C21-8A15-4b4d-A3F1-11141D9BE094} - c:\program files (x86)\EA Games\Battlefield Play4Free\uninstaller.exe AddRemove-{8DC910CD-8EE3-4ffc-A4EB-9B02701059C4} - c:\program files (x86)\EA Games\Battlefield Heroes\uninstaller.exe . . . [HKEY_LOCAL_MACHINE\system\ControlSet001\services\npggsvc] "ImagePath"="c:\windows\system32\GameMon.des -service" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Andere Aktieve Processen ------------------------ . c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe c:\program files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe c:\program files (x86)\Common Files\Logishrd\LVMVFM\LVPrS64H.exe c:\windows\SysWOW64\PnkBstrA.exe c:\program files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe c:\program files (x86)\TeamViewer\Version8\TeamViewer.exe c:\program files (x86)\TeamViewer\Version8\tv_w32.exe . ************************************************************************** . Voltooingstijd: 2013-05-28 14:16:27 - machine werd herstart ComboFix-quarantined-files.txt 2013-05-28 12:16 . Pre-Run: 91.585.470.464 bytes beschikbaar Post-Run: 100.761.149.440 bytes beschikbaar . - - End Of File - - 6436ACF31DCD3FCB431BC5ABB779D3DC
  7. Ik wil Combofix gebruiken, maar ik kan de instellingen van Windows Firewall niet wijzigen, dus ik kan de Firewall niet uitzetten. Foutcode 0x80070424.
  8. Bedankt, hier de logjes: # AdwCleaner v2.301 - Verslag gemaakt op 26/05/2013 om 16:34:46 # Geactualiseerd op 16/05/2013 door Xplode # Besturingssysteem : Windows 7 Home Premium Service Pack 1 (64 bits) # Gebruiker : Laptop - MAIKE # Opstarten Modus : Normale modus # Gelanceerd vanaf : C:\Users\Laptop\Downloads\adwcleaner.exe # Optie [Verwijderen] ***** [Diensten] ***** ***** [Files / Mappen] ***** File Verwijdert : C:\Program Files (x86)\Mozilla Firefox\searchplugins\avg-secure-search.xml File Verwijdert : C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default\extensions\plugin@yontoo.com.xpi File Verwijdert : C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default\searchplugins\Searchab.xml Map Verwijdert : C:\Program Files (x86)\AVG Secure Search Map Verwijdert : C:\Program Files (x86)\Conduit Map Verwijdert : C:\Program Files (x86)\ConduitEngine Map Verwijdert : C:\Program Files (x86)\HyperCam Toolbar Map Verwijdert : C:\Program Files (x86)\Utubebario Map Verwijdert : C:\Program Files (x86)\Yontoo Map Verwijdert : C:\Program Files (x86)\Zoomex Map Verwijdert : C:\ProgramData\Ask Map Verwijdert : C:\ProgramData\AVG Secure Search Map Verwijdert : C:\ProgramData\InstallMate Map Verwijdert : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Zoomex Map Verwijdert : C:\ProgramData\Premium Map Verwijdert : C:\ProgramData\Tarma Installer Map Verwijdert : C:\ProgramData\Zoomex Map Verwijdert : C:\Users\Gast\AppData\Local\AVG Secure Search Map Verwijdert : C:\Users\Gast\AppData\LocalLow\AskToolbar Map Verwijdert : C:\Users\Gast\AppData\LocalLow\Conduit Map Verwijdert : C:\Users\Gast\AppData\LocalLow\ConduitEngine Map Verwijdert : C:\Users\Gast\AppData\LocalLow\Toolbar4 Map Verwijdert : C:\Users\Gast\AppData\LocalLow\Utubebario Map Verwijdert : C:\Users\Laptop\AppData\Local\APN Map Verwijdert : C:\Users\Laptop\AppData\Local\AVG Secure Search Map Verwijdert : C:\Users\Laptop\AppData\Local\PackageAware Map Verwijdert : C:\Users\Laptop\AppData\Local\Temp\AskSearch Map Verwijdert : C:\Users\Laptop\AppData\Local\Temp\avg@toolbar Map Verwijdert : C:\Users\Laptop\AppData\Local\Temp\boost_interprocess Map Verwijdert : C:\Users\Laptop\AppData\LocalLow\AVG Secure Search Map Verwijdert : C:\Users\Laptop\AppData\LocalLow\Conduit Map Verwijdert : C:\Users\Laptop\AppData\LocalLow\ConduitEngine Map Verwijdert : C:\Users\Laptop\AppData\LocalLow\Toolbar4 Map Verwijdert : C:\Users\Laptop\AppData\LocalLow\Utubebario Map Verwijdert : C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\extensions\plugin@yontoo.com Map Verwijdert : C:\Users\Laptop\AppData\Roaming\OneTab Verwijdert bij het opstarten : C:\Program Files (x86)\Common Files\AVG Secure Search ***** [Register] ***** Sleutel Verwijdert : HKCU\Software\1ClickDownload Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\Conduit Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\conduitEngine Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\Utubebario Sleutel Verwijdert : HKCU\Software\AppDataLow\SProtector Sleutel Verwijdert : HKCU\Software\AppDataLow\Toolbar Sleutel Verwijdert : HKCU\Software\AVG Secure Search Sleutel Verwijdert : HKCU\Software\IGearSettings Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{16ADEA98-D215-4F51-80AF-5E5ED660B9C0} Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D} Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{338B4DFE-2E2C-4338-9E41-E176D497299E} Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{58BECA16-CAE6-4B7A-A0E8-153D0CBBA63A} Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233} Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FCBCCB87-9224-4B8D-B117-F56D924BEB18} Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8} Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{16ADEA98-D215-4F51-80AF-5E5ED660B9C0} Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D} Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{338B4DFE-2E2C-4338-9E41-E176D497299E} Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{58BECA16-CAE6-4B7A-A0E8-153D0CBBA63A} Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE} Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706} Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FCBCCB87-9224-4B8D-B117-F56D924BEB18} Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8} Sleutel Verwijdert : HKCU\Software\PrivitizeVPNInstallDates Sleutel Verwijdert : HKCU\Software\Softonic Sleutel Verwijdert : HKCU\Software\Somoto Toolbar Sleutel Verwijdert : HKCU\Software\StartSearch Sleutel Verwijdert : HKCU\Software\Zugo Sleutel Verwijdert : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} Sleutel Verwijdert : HKLM\Software\AVG Secure Search Sleutel Verwijdert : HKLM\Software\AVG Security Toolbar Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{4CE516A7-F7AC-4628-B411-8F886DC5733E} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{628F3201-34D0-49C0-BB9A-82A26AEFB291} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\TbCommonUtils.DLL Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\TbHelper.EXE Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler Sleutel Verwijdert : HKLM\SOFTWARE\Classes\ComObject.DeskbarEnabler.1 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Conduit.Engine Sleutel Verwijdert : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol Sleutel Verwijdert : HKLM\SOFTWARE\Classes\S Sleutel Verwijdert : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi Sleutel Verwijdert : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\SMTTB2009.IEToolbar Sleutel Verwijdert : HKLM\SOFTWARE\Classes\SMTTB2009.IEToolbar.1 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\SMTTB2009.SMTTB2009 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\SMTTB2009.SMTTB2009.3 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TbCommonUtils.CommonUtils.1 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TbHelper.TbDownloadManager.1 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TbHelper.TbPropertyManager.1 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TbHelper.TbRequest Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TbHelper.TbRequest.1 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TbHelper.TbTask Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TbHelper.TbTask.1 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TbHelper.ToolbarHelper.1 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Toolbar.CT2680812 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Toolbar3.ContextMenuNotifier.1 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Toolbar3.CustomInternetSecurityImpl.1 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Toolbar3.SMTTB2009 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Toolbar3.SMTTB2009.1 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{4509D3CC-B642-4745-B030-645B79522C6D} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{B87F8B63-7274-43FD-87FA-09D3B7496148} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{C4BAE205-5E02-4E32-876E-F34B4E2D000C} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{EC4085F2-8DB3-45A6-AD0B-CA289F3C5D7E} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook Sleutel Verwijdert : HKLM\SOFTWARE\Classes\URLSearchHook.ToolbarURLSearchHook.1 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE Sleutel Verwijdert : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\YontooIEClient.Api Sleutel Verwijdert : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\YontooIEClient.Layers Sleutel Verwijdert : HKLM\SOFTWARE\Classes\YontooIEClient.Layers.1 Sleutel Verwijdert : HKLM\Software\Conduit Sleutel Verwijdert : HKLM\Software\conduitEngine Sleutel Verwijdert : HKLM\Software\Iminent Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASAPI32 Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Tracing\apntoolbarinstaller_RASMANCS Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC} Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{CF40B165-F917-44BB-84E1-9BCC1480A953} Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE} Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706} Sleutel Verwijdert : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin Sleutel Verwijdert : HKLM\Software\Utubebario Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{10DE7085-6A1E-4D41-A7BF-9AF93E351401} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{1C950DE5-D31E-42FB-AFB9-91B0161633D8} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{338B4DFE-2E2C-4338-9E41-E176D497299E} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3BDF4CE9-E81D-432B-A55E-9F0570CE811F} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{57CADC46-58FF-4105-B733-5A9F3FC9783C} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{7E84186E-B5DE-4226-8A66-6E49C6B511B4} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{9F34B17E-FF0D-4FAB-97C4-9713FEE79052} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{A9A56B8E-2DEB-4ED3-BC92-1FA450BCE1A5} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE338F6D-5A7C-4D1D-86E3-C618532079B5} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{C339D489-FABC-41DD-B39D-276101667C70} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CA3EB689-8F09-4026-AA10-B9534C691CE0} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{CF40B165-F917-44BB-84E1-9BCC1480A953} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D565B35E-B787-40FA-95E3-E3562F8FC1A0} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{D89031C2-10DA-4C90-9A62-FCED012BC46B} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\jplinpmadfkdgipabgcdchbdikologlh Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{05AAC21C-5929-4C33-8BC5-4A5E7D7DCE0A} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{54666BF5-F9A0-4A5B-AE2E-9818E488F9A5} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{628F3201-34D0-49C0-BB9A-82A26AEFB291} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownloader Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Utubebario Toolbar Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{01221FCC-4BFB-461C-B08C-F6D2DF309921} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{2A42D13C-D427-4787-821B-CF6973855778} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{3D8478AA-7B88-48A9-8BCB-B85D594411EC} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{452AE416-9A97-44CA-93DA-D0F15C36254F} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{45CDA4F7-594C-49A0-AAD1-8224517FE979} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{4897BBA6-48D9-468C-8EFA-846275D7701B} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{4D8ED2B3-DC62-43EC-ABA3-5B74F046B1BE} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{81E852CC-1FD5-4004-8761-79A48B975E29} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{95B6A271-FEB4-4160-B0FF-44394C21C8DC} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{B2CA345D-ADB8-4F5D-AC64-4AB34322F659} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{B9F43021-60D4-42A6-A065-9BA37F38AC47} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{BF921DD3-732A-4A11-933B-A5EA49F2FD2C} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{D83B296A-2FA6-425B-8AE8-A1F33D99FBD6} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{E67D5BC7-7129-493E-9281-F47BDAFACE4F} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785} Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706} Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B} Sleutel Verwijdert : HKLM\SOFTWARE\Tarma Installer Waarde Verwijdert : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{30F9B915-B755-4826-820B-08FBA6BD249D}] Waarde Verwijdert : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{338B4DFE-2E2C-4338-9E41-E176D497299E}] Waarde Verwijdert : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{58BECA16-CAE6-4B7A-A0E8-153D0CBBA63A}] Waarde Verwijdert : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{D4027C7F-154A-4066-A1AD-4243D8127440}] Waarde Verwijdert : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}] Waarde Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{58BECA16-CAE6-4B7A-A0E8-153D0CBBA63A}] Waarde Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [vProt] Waarde Verwijdert : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar] ***** [browsers] ***** -\\ Internet Explorer v10.0.9200.16576 [OK] Het register bevat geen enkele ongeoorloofde invoer. -\\ Mozilla Firefox v15.0.1 (nl) File : C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default\prefs.js C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default\user.js ... Verwijdert ! Verwijdert : user_pref("avg.install.installDirPath", "C:\\ProgramData\\AVG Secure Search\\11.1.0.7"); Verwijdert : user_pref("extensions.50d34e70d5548.scode", "(function(){try{if('aol.com,mail.google.com,premiumrepo[...] Verwijdert : user_pref("extensions.50d486cbb4a8c.scode", "(function(){try{if('aol.com,mail.google.com,premiumrepo[...] Verwijdert : user_pref("extentions.y2layers.defaultEnableAppsList", "twittube,ezLooker,pagerage,buzzdock,toprelat[...] Verwijdert : user_pref("extentions.y2layers.installId", "6352cd3a-80e0-4773-a216-6a7dbfb60e41"); Verwijdert : user_pref("keyword.URL", "hxxp://searchab.com/?aff=7&uid=6d98796e-ffe1-11e1-8a86-c80aa93519e9&q="); -\\ Google Chrome v27.0.1453.94 File : C:\Users\Laptop\AppData\Local\Google\Chrome\User Data\Default\Preferences Verwijdert [l.2522] : homepage = "hxxp://searchab.com/?aff=7&uid=6d98796e-ffe1-11e1-8a86-c80aa93519e9", ************************* AdwCleaner[s1].txt - [23651 octets] - [26/05/2013 16:34:46] ########## EOF - C:\AdwCleaner[s1].txt - [23712 octets] ########## Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 16:42:35, on 26-5-2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v10.0 (10.00.9200.16576) Boot mode: Normal Running processes: C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe C:\Users\Laptop\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe C:\Program Files (x86)\Unified Remote\RemoteServer.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Users\Laptop\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe C:\Program Files (x86)\Adobe\Reader 9.0\Reader\reader_sl.exe C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe C:\Program Files (x86)\AVG\AVG2012\avgtray.exe C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Users\Laptop\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Laptop\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Laptop\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Laptop\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Laptop\AppData\Local\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer wordt aangeboden door MSN and Bing R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2156.0\npwinext.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll O3 - Toolbar: @C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2156.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2156.0\npwinext.dll O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe O4 - HKLM\..\Run: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe" O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start O4 - HKLM\..\Run: [Ad-Aware Antivirus] "C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareLauncher" --windows-run O4 - HKLM\..\Run: [PrivitizeVPN] C:\Program Files (x86)\PrivitizeVPN\PrivitizeVPN.exe /autorun O4 - HKLM\..\Run: [HTC Sync Loader] "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [Google Update] "C:\Users\Laptop\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKCU\..\Run: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent O4 - HKCU\..\Run: [spotify Web Helper] "C:\Users\Laptop\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" O4 - HKCU\..\Run: [unified Remote v2] C:\Program Files (x86)\Unified Remote\RemoteServer.exe O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Startup: Dropbox.lnk = Laptop\AppData\Roaming\Dropbox\bin\Dropbox.exe O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - MSN Games - Free Online Games O16 - DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} (Battlefield Heroes Updater) - https://www.battlefieldheroes.com/static/updater/BFHUpdater_5.0.31.0.cab O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - MSN Games - Free Online Games O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - MSN Games - Free Online Games O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: Process Monitor (LVPrcS64) - Logitech Inc. - C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing) O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: vToolbarUpdater15.2.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 16541 bytes
  9. Ik gebruik helemaal geen Internet Explorer, ik gebruik alleen Google Chrome. Sorry van het foute HijackThis logje, hier is de goede: Ik gebruik MBAM vaker, het logje volgt zo. Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 13:24:54, on 25-5-2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16447) Boot mode: Normal Running processes: C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe C:\Users\Laptop\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe C:\Program Files (x86)\Unified Remote\RemoteServer.exe C:\Program Files (x86)\Skype\Phone\Skype.exe C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe C:\Users\Laptop\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Program Files (x86)\AVG\AVG2012\avgtray.exe C:\Program Files (x86)\AVG Secure Search\vprot.exe C:\Program Files (x86)\Ask.com\Updater\Updater.exe C:\Program Files (x86)\Hewlett-Packard\Shared\hpqToaster.exe C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Users\Laptop\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Laptop\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Laptop\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Laptop\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Laptop\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Laptop\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Laptop\AppData\Local\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Analysis of program downloads scanned for viruses and spyware. R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Search R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Analysis of program downloads scanned for viruses and spyware. R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Windows Internet Explorer wordt aangeboden door MSN and Bing R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: Utubebario Toolbar - {58beca16-cae6-4b7a-a0e8-153d0cbba63a} - C:\Program Files (x86)\Utubebario\tbUtub.dll F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: OneTab Add-on - {16ADEA98-D215-4F51-80AF-5E5ED660B9C0} - C:\Users\Laptop\AppData\Roaming\OneTab\OneTab.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll O2 - BHO: Utubebario Toolbar - {58beca16-cae6-4b7a-a0e8-153d0cbba63a} - C:\Program Files (x86)\Utubebario\tbUtub.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\15.2.0.5\AVG Secure Search_toolbar.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2156.0\npwinext.dll O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll O2 - BHO: SMTTB2009 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files (x86)\HyperCam Toolbar\tbcore3.dll O2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\Program Files (x86)\Yontoo\YontooIEClient.dll O3 - Toolbar: @C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2156.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2156.0\npwinext.dll O3 - Toolbar: Utubebario Toolbar - {58beca16-cae6-4b7a-a0e8-153d0cbba63a} - C:\Program Files (x86)\Utubebario\tbUtub.dll O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll O3 - Toolbar: HyperCam Toolbar - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files (x86)\HyperCam Toolbar\tbcore3.dll O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\15.2.0.5\AVG Secure Search_toolbar.dll O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe O4 - HKLM\..\Run: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe" O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start O4 - HKLM\..\Run: [Ad-Aware Antivirus] "C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareLauncher" --windows-run O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe" O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files (x86)\Ask.com\Updater\Updater.exe" O4 - HKLM\..\Run: [PrivitizeVPN] C:\Program Files (x86)\PrivitizeVPN\PrivitizeVPN.exe /autorun O4 - HKLM\..\Run: [HTC Sync Loader] "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [Google Update] "C:\Users\Laptop\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKCU\..\Run: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent O4 - HKCU\..\Run: [spotify Web Helper] "C:\Users\Laptop\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" O4 - HKCU\..\Run: [unified Remote v2] C:\Program Files (x86)\Unified Remote\RemoteServer.exe O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Startup: Dropbox.lnk = Laptop\AppData\Roaming\Dropbox\bin\Dropbox.exe O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - MSN Games - Free Online Games O16 - DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} (Battlefield Heroes Updater) - https://www.battlefieldheroes.com/static/updater/BFHUpdater_5.0.31.0.cab O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - MSN Games - Free Online Games O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - MSN Games - Free Online Games O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\15.2.0\ViProtocol.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: Process Monitor (LVPrcS64) - Logitech Inc. - C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing) O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: vToolbarUpdater15.2.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 19009 bytes - - - Updated - - - MBAM logje: Malwarebytes Anti-Malware 1.75.0.1300 www.malwarebytes.org Databaseversie: v2013.05.25.04 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Laptop :: MAIKE [administrator] 25-5-2013 13:34:28 mbam-log-2013-05-25 (13-34-28).txt Scan type: Snelle scan Ingeschakelde scan opties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM Uitgeschakelde scan opties: P2P Objecten gescand: 246502 Verstreken tijd: 7 minuut/minuten, 56 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerwaarden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerdata gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Mappen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Bestanden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) (einde)
  10. Bedankt voor je snelle antwoord, hier is mijn log: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 16:49:25, on 21-9-2011 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v8.00 (8.00.7601.17514) Boot mode: Safe mode with network support Running processes: C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Analysis of program downloads scanned for viruses and spyware. R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Analysis of program downloads scanned for viruses and spyware. R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Analysis of program downloads scanned for viruses and spyware. R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: Utubebario Toolbar - {58beca16-cae6-4b7a-a0e8-153d0cbba63a} - C:\Program Files (x86)\Utubebario\tbUtub.dll F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll O2 - BHO: Utubebario Toolbar - {58beca16-cae6-4b7a-a0e8-153d0cbba63a} - C:\Program Files (x86)\Utubebario\tbUtub.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2156.0\npwinext.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O2 - BHO: SMTTB2009 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files (x86)\HyperCam Toolbar\tbcore3.dll O3 - Toolbar: @C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2156.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2156.0\npwinext.dll O3 - Toolbar: Utubebario Toolbar - {58beca16-cae6-4b7a-a0e8-153d0cbba63a} - C:\Program Files (x86)\Utubebario\tbUtub.dll O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll O3 - Toolbar: HyperCam Toolbar - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files (x86)\HyperCam Toolbar\tbcore3.dll O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe O4 - HKLM\..\Run: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files (x86)\AVG\AVG10\avgtray.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [Google Update] "C:\Users\Laptop\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - MSN Games - Free Online Games O16 - DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} (Battlefield Heroes Updater) - https://www.battlefieldheroes.com/static/updater/BFHUpdater_5.0.31.0.cab O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - MSN Games - Free Online Games O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - MSN Games - Free Online Games O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: Process Monitor (LVPrcS64) - Logitech Inc. - C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing) O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 13252 bytes
  11. Ik heb hier nog nooit eerder last van gehad, maar ongeveer een maand geleden kon ik opeens niet meer degelijk internetten... Youtube pagina's laden gaat gewoon niet, Facebook ook niet, en normale webpagina's konden eerst ook niet maar dat gaat nu al wat beter. Het zijn dus voornamelijk de 'zwaardere' websites. Als ik bijvoorbeeld naar Youtube ga, is mijn laptop eigenlijk eindeloos aan het laden. Ik gebruik het liefst Chrome, maar met Firefox gaat het wel wat beter. Ik heb mijn laptop al vaak gescand met verschillende virusscanners en daar is niks uit gekomen. Ik zit hier nu al een tijdje mee vast en heb er heel erg last van, kan iemand mij alsjeblieft helpen?
×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.