Clubboy
-
Items
42 -
Registratiedatum
-
Laatst bezocht
Inhoudstype
Profielen
Forums
Store
Alles dat geplaatst werd door Clubboy
-
Vreemd venster bij het opstarten van mijn laptop
Clubboy reageerde op Clubboy's topic in Archief Bestrijding malware & virussen
Na op "Run script" te drukken, krijg ik na enkele ogenblikken het volgende: -
Vreemd venster bij het opstarten van mijn laptop
Clubboy reageerde op Clubboy's topic in Archief Bestrijding malware & virussen
Logfile of random's system information tool 1.10 (written by random/random) Run by gebruiker at 2014-09-04 22:37:50 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 392 GB (85%) free of 461 GB Total RAM: 5980 MB (56% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 22:38:11, on 4/09/2014 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v11.0 (11.00.9600.17239) Boot mode: Normal Running processes: C:\Program Files (x86)\Launch Manager\LMworker.exe C:\Program Files (x86)\ver3Safer-Surf\t6Safer-Surfw.exe C:\Program Files (x86)\ver3Safer-Surf\Safer-Surf.exe C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\AVG\AVG2013\avgui.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe C:\Program Files\trend micro\gebruiker.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer! R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:13787;https=127.0.0.1:13787 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: DefaultTabBHO - {7F6AFBF1-E065-4627-A2FD-810366367D01} - (no file) O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\18.1.9.799\AVG Secure Search_toolbar.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\18.1.9.799\AVG Secure Search_toolbar.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [suiteTray] "C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" O4 - HKLM\..\Run: [backupManagerTray] "C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" -h -k O4 - HKLM\..\Run: [Dolby Home Theater v4] "C:\Dolby PCEE4\pcee4.exe" -autostart O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe O4 - HKLM\..\Run: [uSB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe" O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" (User 'Default user') O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll O9 - Extra 'Tools' menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing) O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing) O9 - Extra button: AVG Do-Not-Track - {DA58ACA7-18A6-403A-93DA-6E4172D43709} - (no file) O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O17 - HKLM\System\CCS\Services\Tcpip\..\{F4520FCF-7BA5-4A3B-BD07-DBB62BD74686}: NameServer = 8.8.8.8 O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file) O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\18.1.9\ViProtocol.dll O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe O23 - Service: DCDhcpService - Atheros Communication Inc. - C:\Program Files (x86)\Acer\WDAgent\DCDhcpService.exe O23 - Service: DefaultTabUpdate - Unknown owner - C:\Users\gebruiker\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: EgisTec Ticket Service - Egis Technology Inc. - C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing) O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: NBService - Nero AG - C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: NTI IScheduleSvc - NTI Corporation - C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: Safer-Surf - Unknown owner - C:\Program Files (x86)\ver3Safer-Surf\K0Safer-SurfXA178.exe O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: vToolbarUpdater18.1.9 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 11903 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe C:\PROGRA~2\AVG\AVG2013\avgrsa.exe /boot C:\Program Files (x86)\AVG\AVG2013\avgcsrva.exe /pipeName=b6900f73-4a13-4c06-a7a6-c20e51df1918 /coreSdkOptions=4382 /logConfFile="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\719c6605-fcc5-490f-955e-342b3b4acf5a-214-oopp.tmp" /loggerName=AVG.RS.Core /binaryPath="C:\Program Files (x86)\AVG\AVG2013\" /registryPath="SYSTEM\CurrentControlSet\Services\Avg\Avg2013" /tempPath="C:\Windows\system32\config\systemprofile\AppData\Local\Avg2013\temp\" %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe winlogon.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\WLANExt.exe 31304736 \??\C:\Windows\system32\conhost.exe "865770490-14567388721408789067795881011594972942-9965559771397695775-1566060889 C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork "C:\Windows\system32\Dwm.exe" C:\Windows\Explorer.EXE "taskhost.exe" "C:\Program Files (x86)\Bluetooth Suite\adminservice.exe" "C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe" "C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe" "C:\Users\gebruiker\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe" "C:\Program Files (x86)\Launch Manager\dsiwmis.exe" "C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe" "C:\Program Files (x86)\Launch Manager\LMworker.exe" C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation "C:\Program Files (x86)\Launch Manager\LMutilps32.exe" --system-level-mutex="Local\{B904A927-FE6B-48fd-8C83-6B807BED1F9C}" --enable-wmi-window "C:\Program Files (x86)\Acer\Registration\GREGsvc.exe" "C:\Program Files\Intel\iCLS Client\HeciServer.exe" taskeng.exe {6C8CB816-04B0-4E0E-BA76-99E8584534F7} "C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe" "C:\Program Files\Acer\Acer Updater\UpdaterService.exe" "C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe" "C:\Program Files (x86)\ver3Safer-Surf\K0Safer-SurfXA178.exe" C:\Windows\system32\svchost.exe -k imgsvc "C:\Program Files (x86)\ver3Safer-Surf\t6Safer-Surfw.exe" "C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe" "C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\loggingserver.exe" 72648 "C:\ProgramData\AVG Secure Search\Logger\logger.properties" \??\C:\Windows\system32\conhost.exe "1084114904-4214188341879456242-1025599355687722628-153602546-643984784-2026961594 "C:\Program Files (x86)\ver3Safer-Surf\Safer-Surf.exe" "C:\Program Files\EgisTec IPS\EgisUpdate.exe" "C:\Program Files (x86)\AVG\AVG2013\avgnsa.exe" "C:\Program Files (x86)\AVG\AVG2013\avgemca.exe" C:\Windows\system32\SearchIndexer.exe /Embedding "C:\Program Files\Windows Media Player\wmpnetwk.exe" C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7} "C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe" "C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe" "C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe" "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome "http://g.live.com/1rewlive4startup/helpcenter?!wli8000ffff&ec=0x800b0003" "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:3676 CREDAT:275457 /prefetch:2 "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" "C:\Program Files\EgisTec IPS\PMMUpdate.exe" "C:\Program Files (x86)\Mozilla Firefox\firefox.exe" "C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=11108.6fbcac0.132704809 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll" -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" -appomni "C:\Program Files (x86)\Mozilla Firefox\browser\omni.ja" -appdir "C:\Program Files (x86)\Mozilla Firefox\browser" E7CF176E110C211B 11108 "\\.\pipe\gecko-crash-server-pipe.11108" plugin "C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe" --proxy-stub-channel=Flash9388.6B730D80.30004 --host-broker-channel=Flash9388.6B730D80.23688 --host-pid=9388 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll" "C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_14_0_0_145.exe" --channel=8780.003BF360.411995895 --proxy-stub-channel=Flash9388.6B730D80.30004 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_14_0_0_145.dll" --host-npapi-version=27 --type=renderer C:\Windows\system32\sppsvc.exe taskeng.exe {504FEE17-4F5D-4ED4-9EEA-F4CC111677F3} "C:\Windows\system32\config\systemprofile\Desktop\RSITx64.exe" C:\Windows\system32\wbem\wmiprvse.exe ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe C:\Windows\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job - C:\Windows\TEMP\{4EECB3AA-DB27-4684-AC70-7CBD4574E382}.exe --uninstall=1 C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /c C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe /ua /installsource scheduler C:\Windows\tasks\Norton Security Scan for gebruiker.job - C:\PROGRA~2\NORTON~2\Engine\401~1.16\Nss.exe /scan-quick /scheduled C:\Windows\tasks\Safer-Surf Update.job - C:\Program Files (x86)\ver3Safer-Surf\a3Safer-Surfh91.exe /update C:\Windows\tasks\Safer-Surf_wd.job - C:\Program Files (x86)\ver3Safer-Surf\t6Safer-Surfw.exe C:\Windows\tasks\System Speedup_DEFAULT.job - C:\Program Files (x86)\System Speedup\SystemSpeedup.exe -default C:\Windows\tasks\System Speedup_UPDATES.job - C:\Program Files (x86)\System Speedup\SystemSpeedup.exe -updatecheck ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2012-06-26 347424] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{822EA8CB-52E3-CBB2-95FB-D55E5F6BE797}] Safer-Surf - C:\Program Files (x86)\ver3Safer-Surf\178_x64.dll [2014-09-02 212480] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-29 529280] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-03-30 256456] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2012-06-26 49440] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7F6AFBF1-E065-4627-A2FD-810366367D01}] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}] CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2012-02-13 51872] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\18.1.9.799\AVG Secure Search_toolbar.dll [2014-09-02 3627032] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-30 194504] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2014-03-30 256456] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {95B7759C-8C7F-4BF1-B163-73684A933233} - AVG Security Toolbar - C:\Program Files (x86)\AVG Secure Search\18.1.9.799\AVG Secure Search_toolbar.dll [2014-09-02 3627032] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2014-03-30 194504] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-02-19 170264] "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-02-19 398616] "Persistence"=C:\Windows\system32\igfxpers.exe [2012-02-19 440600] "RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2012-02-14 12448872] "RtHDVBg_Dolby"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2012-02-08 1158248] "Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2012-02-02 576376] "AtherosBtStack"=C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2012-02-13 1020064] "AthBtTray"=C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2012-02-13 800416] "Power Management"=C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [2012-02-08 1829768] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "SuiteTray"=C:\Program Files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe [2011-09-20 341360] "BackupManagerTray"=C:\Program Files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe [2012-01-06 296984] "Dolby Home Theater v4"=C:\Dolby PCEE4\pcee4.exe [2011-06-01 506712] "LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2012-02-22 1105488] "USB3MON"=C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-01-04 291608] "AVG_UI"=C:\Program Files (x86)\AVG\AVG2013\avgui.exe [2014-01-21 4411952] "vProt"=C:\Program Files (x86)\AVG Secure Search\vprot.exe [2014-09-02 2640408] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2012-02-14 430080] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=0 "ConsentPromptBehaviorUser"=3 "EnableLUA"=0 "EnableUIADesktopToggle"=0 "PromptOnSecureDesktop"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=1 "NoActiveDesktopChanges"=1 "ForceActiveDesktopOn"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "MSVideo8"=VfWWDM32.dll "wave1"=wdmaud.drv "midi1"=wdmaud.drv "mixer1"=wdmaud.drv "aux1"=wdmaud.drv "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "wave2"=wdmaud.drv "mixer2"=wdmaud.drv "midi2"=wdmaud.drv ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2014-09-04 22:37:50 ----D---- C:\rsit 2014-09-04 22:37:50 ----D---- C:\Program Files\trend micro 2014-09-02 18:59:31 ----D---- C:\ProgramData\Systweak 2014-09-02 18:59:30 ----D---- C:\Program Files (x86)\ASP 2014-09-02 18:59:07 ----A---- C:\Windows\system32\roboot64.exe 2014-09-02 18:59:02 ----D---- C:\Program Files (x86)\System Speedup 2014-09-02 18:59:01 ----D---- C:\Program Files (x86)\ver3Safer-Surf 2014-09-02 18:58:54 ----D---- C:\Program Files (x86)\FLVM Player 2014-09-01 17:06:41 ----D---- C:\Program Files (x86)\Mozilla Firefox 2014-09-01 15:48:09 ----A---- C:\Windows\SYSWOW64\infocardapi.dll 2014-09-01 15:48:08 ----A---- C:\Windows\SYSWOW64\icardagt.exe 2014-09-01 15:48:08 ----A---- C:\Windows\system32\infocardapi.dll 2014-09-01 15:48:08 ----A---- C:\Windows\system32\icardagt.exe 2014-09-01 15:48:07 ----A---- C:\Windows\SYSWOW64\icardres.dll 2014-09-01 15:48:07 ----A---- C:\Windows\system32\icardres.dll 2014-09-01 15:47:53 ----A---- C:\Windows\SYSWOW64\TsWpfWrp.exe 2014-09-01 15:47:53 ----A---- C:\Windows\system32\TsWpfWrp.exe 2014-09-01 15:43:14 ----D---- C:\Program Files (x86)\AVG Security Toolbar 2014-09-01 15:43:03 ----D---- C:\ProgramData\Avg_Update_0814tb 2014-08-31 12:38:14 ----A---- C:\Windows\SYSWOW64\usp10.dll 2014-08-31 12:38:14 ----A---- C:\Windows\system32\usp10.dll 2014-08-31 12:38:05 ----A---- C:\Windows\system32\drivers\tcpip.sys 2014-08-31 12:38:05 ----A---- C:\Windows\system32\drivers\FWPKCLNT.SYS 2014-08-31 12:38:04 ----A---- C:\Windows\SYSWOW64\msxml6.dll 2014-08-31 12:38:04 ----A---- C:\Windows\system32\msxml6.dll 2014-08-31 12:38:04 ----A---- C:\Windows\system32\msxml3.dll 2014-08-31 12:38:03 ----A---- C:\Windows\SYSWOW64\msxml6r.dll 2014-08-31 12:38:03 ----A---- C:\Windows\SYSWOW64\msxml3r.dll 2014-08-31 12:38:03 ----A---- C:\Windows\SYSWOW64\msxml3.dll 2014-08-31 12:38:03 ----A---- C:\Windows\system32\msxml6r.dll 2014-08-31 12:38:03 ----A---- C:\Windows\system32\msxml3r.dll 2014-08-31 12:38:00 ----A---- C:\Windows\SYSWOW64\osk.exe 2014-08-31 12:38:00 ----A---- C:\Windows\system32\osk.exe 2014-08-31 12:37:54 ----A---- C:\Windows\system32\qedit.dll 2014-08-31 12:37:53 ----A---- C:\Windows\SYSWOW64\qedit.dll 2014-08-31 12:37:52 ----A---- C:\Windows\system32\drivers\afd.sys 2014-08-31 12:37:49 ----A---- C:\Windows\SYSWOW64\tzres.dll 2014-08-31 12:37:49 ----A---- C:\Windows\system32\tzres.dll 2014-08-31 12:37:37 ----A---- C:\Windows\SYSWOW64\msi.dll 2014-08-31 12:37:37 ----A---- C:\Windows\system32\msi.dll 2014-08-31 12:37:37 ----A---- C:\Windows\system32\authui.dll 2014-08-31 12:37:36 ----A---- C:\Windows\SYSWOW64\authui.dll 2014-08-31 12:37:35 ----A---- C:\Windows\SYSWOW64\msihnd.dll 2014-08-31 12:37:35 ----A---- C:\Windows\system32\msihnd.dll 2014-08-31 12:37:35 ----A---- C:\Windows\system32\consent.exe 2014-08-31 12:37:25 ----A---- C:\Windows\SYSWOW64\schannel.dll 2014-08-31 12:37:25 ----A---- C:\Windows\SYSWOW64\msv1_0.dll 2014-08-31 12:37:25 ----A---- C:\Windows\SYSWOW64\kerberos.dll 2014-08-31 12:37:25 ----A---- C:\Windows\system32\schannel.dll 2014-08-31 12:37:25 ----A---- C:\Windows\system32\msv1_0.dll 2014-08-31 12:37:25 ----A---- C:\Windows\system32\kerberos.dll 2014-08-31 12:37:24 ----A---- C:\Windows\SYSWOW64\wdigest.dll 2014-08-31 12:37:24 ----A---- C:\Windows\SYSWOW64\TSpkg.dll 2014-08-31 12:37:24 ----A---- C:\Windows\SYSWOW64\ncrypt.dll 2014-08-31 12:37:24 ----A---- C:\Windows\SYSWOW64\credssp.dll 2014-08-31 12:37:24 ----A---- C:\Windows\system32\wdigest.dll 2014-08-31 12:37:24 ----A---- C:\Windows\system32\TSpkg.dll 2014-08-31 12:37:24 ----A---- C:\Windows\system32\ncrypt.dll 2014-08-31 12:37:24 ----A---- C:\Windows\system32\credssp.dll 2014-08-31 12:37:22 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys 2014-08-31 12:37:19 ----A---- C:\Windows\SYSWOW64\shell32.dll 2014-08-31 12:37:19 ----A---- C:\Windows\system32\shell32.dll 2014-08-31 12:37:09 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2014-08-31 12:37:09 ----A---- C:\Windows\SYSWOW64\mshtmled.dll 2014-08-31 12:37:09 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll 2014-08-31 12:37:09 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2014-08-31 12:37:09 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll 2014-08-31 12:37:08 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2014-08-31 12:37:08 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2014-08-31 12:37:08 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll 2014-08-31 12:37:08 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll 2014-08-31 12:37:08 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll 2014-08-31 12:37:08 ----A---- C:\Windows\system32\ieetwproxystub.dll 2014-08-31 12:37:07 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2014-08-31 12:37:07 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2014-08-31 12:37:07 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2014-08-31 12:37:07 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll 2014-08-31 12:37:07 ----A---- C:\Windows\system32\urlmon.dll 2014-08-31 12:37:07 ----A---- C:\Windows\system32\iernonce.dll 2014-08-31 12:37:07 ----A---- C:\Windows\system32\ieetwcollectorres.dll 2014-08-31 12:37:07 ----A---- C:\Windows\system32\ieetwcollector.exe 2014-08-31 12:37:07 ----A---- C:\Windows\system32\ie4uinit.exe 2014-08-31 12:37:06 ----A---- C:\Windows\SYSWOW64\ieui.dll 2014-08-31 12:37:06 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2014-08-31 12:37:06 ----A---- C:\Windows\SYSWOW64\dxtrans.dll 2014-08-31 12:37:06 ----A---- C:\Windows\system32\msfeeds.dll 2014-08-31 12:37:06 ----A---- C:\Windows\system32\iesetup.dll 2014-08-31 12:37:06 ----A---- C:\Windows\system32\iedkcs32.dll 2014-08-31 12:37:06 ----A---- C:\Windows\system32\dxtmsft.dll 2014-08-31 12:37:05 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll 2014-08-31 12:37:05 ----A---- C:\Windows\system32\iertutil.dll 2014-08-31 12:37:04 ----A---- C:\Windows\SYSWOW64\wininet.dll 2014-08-31 12:37:04 ----A---- C:\Windows\SYSWOW64\vbscript.dll 2014-08-31 12:37:04 ----A---- C:\Windows\SYSWOW64\msrating.dll 2014-08-31 12:37:04 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll 2014-08-31 12:37:04 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2014-08-31 12:37:04 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe 2014-08-31 12:37:04 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll 2014-08-31 12:37:04 ----A---- C:\Windows\system32\jsproxy.dll 2014-08-31 12:37:04 ----A---- C:\Windows\system32\dxtrans.dll 2014-08-31 12:37:03 ----A---- C:\Windows\system32\ieui.dll 2014-08-31 12:37:03 ----A---- C:\Windows\system32\ieframe.dll 2014-08-31 12:37:02 ----A---- C:\Windows\system32\mshtmlmedia.dll 2014-08-31 12:37:02 ----A---- C:\Windows\system32\mshtmled.dll 2014-08-31 12:37:01 ----A---- C:\Windows\system32\jscript9diag.dll 2014-08-31 12:37:01 ----A---- C:\Windows\system32\jscript9.dll 2014-08-31 12:37:01 ----A---- C:\Windows\system32\ieUnatt.exe 2014-08-31 12:37:00 ----A---- C:\Windows\system32\vbscript.dll 2014-08-31 12:37:00 ----A---- C:\Windows\system32\ieapfltr.dll 2014-08-31 12:36:59 ----A---- C:\Windows\system32\wininet.dll 2014-08-31 12:36:58 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe 2014-08-31 12:36:58 ----A---- C:\Windows\system32\msrating.dll 2014-08-31 12:36:58 ----A---- C:\Windows\system32\MshtmlDac.dll 2014-08-31 12:36:58 ----A---- C:\Windows\system32\mshtml.dll 2014-08-31 12:36:37 ----A---- C:\Windows\SYSWOW64\sspicli.dll 2014-08-31 12:36:37 ----A---- C:\Windows\SYSWOW64\secur32.dll 2014-08-31 12:36:37 ----A---- C:\Windows\system32\lsasrv.dll 2014-08-31 12:36:35 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll 2014-08-31 12:36:35 ----A---- C:\Windows\SYSWOW64\gdi32.dll 2014-08-31 12:36:35 ----A---- C:\Windows\system32\win32k.sys 2014-08-31 12:36:35 ----A---- C:\Windows\system32\rpcrt4.dll 2014-08-31 12:36:35 ----A---- C:\Windows\system32\gdi32.dll 2014-08-31 12:36:34 ----A---- C:\Windows\system32\aepdu.dll 2014-08-31 12:36:34 ----A---- C:\Windows\system32\aeinv.dll 2014-08-30 20:32:20 ----A---- C:\Windows\system32\wups2.dll 2014-08-30 20:32:20 ----A---- C:\Windows\system32\wucltux.dll 2014-08-30 20:32:20 ----A---- C:\Windows\system32\wuaueng.dll 2014-08-30 20:32:20 ----A---- C:\Windows\system32\wuauclt.exe 2014-08-30 20:32:12 ----A---- C:\Windows\SYSWOW64\wups.dll 2014-08-30 20:32:12 ----A---- C:\Windows\SYSWOW64\wudriver.dll 2014-08-30 20:32:12 ----A---- C:\Windows\SYSWOW64\wuapi.dll 2014-08-30 20:32:12 ----A---- C:\Windows\system32\wups.dll 2014-08-30 20:32:12 ----A---- C:\Windows\system32\wudriver.dll 2014-08-30 20:32:12 ----A---- C:\Windows\system32\wuapi.dll 2014-08-30 20:31:56 ----A---- C:\Windows\SYSWOW64\wuwebv.dll 2014-08-30 20:31:56 ----A---- C:\Windows\SYSWOW64\wuapp.exe 2014-08-30 20:31:56 ----A---- C:\Windows\system32\wuwebv.dll 2014-08-30 20:31:56 ----A---- C:\Windows\system32\wuapp.exe ======List of files/folders modified in the last 1 month====== 2014-09-04 22:38:11 ----D---- C:\Windows\Prefetch 2014-09-04 22:37:50 ----RD---- C:\Program Files 2014-09-04 22:37:37 ----D---- C:\Windows\Temp 2014-09-04 22:25:23 ----D---- C:\Windows\system32\config 2014-09-04 22:18:04 ----D---- C:\Windows\System32 2014-09-04 22:18:04 ----D---- C:\Windows\inf 2014-09-04 22:18:04 ----A---- C:\Windows\system32\PerfStringBackup.INI 2014-09-04 22:14:07 ----A---- C:\Windows\SYSWOW64\log.txt 2014-09-04 22:11:47 ----SHD---- C:\Config.Msi 2014-09-04 22:10:44 ----D---- C:\Windows\winsxs 2014-09-04 22:10:42 ----D---- C:\Program Files (x86)\Windows Live 2014-09-04 22:03:17 ----D---- C:\Windows\Microsoft.NET 2014-09-04 22:00:50 ----SHD---- C:\Windows\Installer 2014-09-04 22:00:38 ----D---- C:\Windows 2014-09-04 22:00:24 ----RSD---- C:\Windows\assembly 2014-09-04 21:59:23 ----RD---- C:\Program Files (x86) 2014-09-04 21:58:10 ----SD---- C:\ProgramData\Microsoft 2014-09-04 21:57:00 ----D---- C:\Windows\SysWOW64 2014-09-04 21:48:28 ----SHD---- C:\System Volume Information 2014-09-04 21:38:34 ----D---- C:\Windows\system32\Tasks 2014-09-04 17:14:19 ----D---- C:\ProgramData\MFAData 2014-09-02 21:33:55 ----D---- C:\Windows\Logs 2014-09-02 21:33:55 ----D---- C:\Windows\debug 2014-09-02 21:11:00 ----D---- C:\Windows\SYSWOW64\cache 2014-09-02 18:59:31 ----HD---- C:\ProgramData 2014-09-02 18:59:22 ----D---- C:\Windows\Tasks 2014-09-02 17:41:54 ----D---- C:\ProgramData\AVG Secure Search 2014-09-02 17:41:52 ----D---- C:\Program Files (x86)\AVG Secure Search 2014-09-02 01:16:16 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service 2014-09-02 01:13:19 ----SD---- C:\Windows\system32\config\systemprofile\AppData\Roaming\Microsoft 2014-09-01 18:37:48 ----D---- C:\Windows\rescache 2014-09-01 16:16:34 ----D---- C:\Program Files\Microsoft Silverlight 2014-09-01 16:16:33 ----D---- C:\Program Files (x86)\Microsoft Silverlight 2014-09-01 16:14:25 ----D---- C:\Windows\ehome 2014-09-01 16:14:24 ----D---- C:\Program Files\Windows Journal 2014-09-01 16:13:47 ----D---- C:\Windows\system32\drivers 2014-09-01 16:13:44 ----D---- C:\Windows\SYSWOW64\Dism 2014-09-01 16:13:42 ----D---- C:\Windows\system32\Dism 2014-09-01 16:13:33 ----D---- C:\Windows\SYSWOW64\nl-NL 2014-09-01 16:13:33 ----D---- C:\Windows\system32\nl-NL 2014-09-01 16:13:24 ----D---- C:\Program Files\Internet Explorer 2014-09-01 16:13:20 ----D---- C:\Windows\SYSWOW64\en-US 2014-09-01 16:13:17 ----D---- C:\Windows\PolicyDefinitions 2014-09-01 16:13:16 ----D---- C:\Windows\system32\en-US 2014-09-01 16:13:13 ----D---- C:\Program Files (x86)\Internet Explorer 2014-09-01 16:13:07 ----D---- C:\Windows\system32\DriverStore 2014-09-01 16:07:03 ----D---- C:\Windows\system32\catroot2 2014-09-01 16:07:03 ----D---- C:\Windows\system32\catroot 2014-09-01 16:01:18 ----D---- C:\Windows\system32\MRT 2014-09-01 15:47:33 ----SD---- C:\Windows\system32\CompatTel 2014-08-30 22:10:46 ----D---- C:\ProgramData\WildTangent 2014-08-30 21:44:11 ----RD---- C:\Users 2014-08-30 21:29:11 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2013-07-20 71480] R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2013-07-20 311608] R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2013-07-01 116536] R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2013-10-23 45880] R0 iaStor;Intel AHCI Controller; C:\Windows\system32\drivers\iaStor.sys [2011-11-30 568600] R0 iusb3hcs;Intel® USB 3.0 Host Controller Switch Driver; C:\Windows\system32\DRIVERS\iusb3hcs.sys [2012-01-04 16152] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888] R1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2013-11-25 246072] R1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2013-07-20 206648] R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2014-04-15 240952] R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2014-09-02 50976] R1 mwlPSDFilter;mwlPSDFilter; C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [2012-02-24 22648] R1 mwlPSDNServ;mwlPSDNServ; C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [2012-02-24 20520] R1 mwlPSDVDisk;mwlPSDVDisk; C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [2012-02-24 62776] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2011-09-21 376144] R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2012-02-07 3538432] R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2012-02-13 30368] R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-02-14 14692224] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-02-14 4744808] R3 IntcDAud;Intel® Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2011-12-05 331264] R3 iusb3hub;Intel® USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\iusb3hub.sys [2012-01-04 355096] R3 iusb3xhc;Intel® USB 3.0 eXtensible Host Controller Driver; C:\Windows\system32\DRIVERS\iusb3xhc.sys [2012-01-04 786200] R3 L1C;NDIS Miniport Driver for Atheros AR81xx PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2011-10-14 108656] R3 MEIx64;Intel® Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2011-11-09 60184] R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2012-02-07 18432] R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2012-02-07 17408] R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920] S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2012-02-13 36000] S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2012-02-13 339616] S3 btath_avdt;Atheros Bluetooth AVDT Service; C:\Windows\system32\drivers\btath_avdt.sys [2012-02-13 110752] S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2012-02-13 167584] S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2012-02-13 68256] S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2012-02-13 280992] S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2012-02-13 550560] S3 BthEnum;Bluetooth-stuurprogramma voor aanvraagblok; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984] S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784] S3 BTHPORT;Stuurprogramma voor Bluetooth-poort; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960] S3 BTHUSB;USB-stuurprogramma voor Bluetooth-radio; C:\Windows\System32\Drivers\BTHUSB.sys [2011-09-21 80384] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720] S3 RSPCIESTOR;Realtek PCIE CardReader Driver; C:\Windows\system32\DRIVERS\RtsPStor.sys [2011-09-02 339048] S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392] S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2012-02-13 106144] R2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2013-07-04 4939312] R2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2013-11-20 283136] R2 DefaultTabUpdate;DefaultTabUpdate; C:\Users\gebruiker\AppData\Roaming\DefaultTab\DefaultTab\DTUpdate.exe [2013-06-11 107520] R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2012-02-22 355920] R2 ePowerSvc;ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2012-02-08 871296] R2 GREGService;GREGService; C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [2011-05-30 36456] R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-11-30 13592] R2 IconMan_R;IconMan_R; C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2011-08-31 2425960] R2 Intel® Capability Licensing Service Interface;Intel® Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2011-12-09 607456] R2 jhi_service;Intel® Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe [2011-12-16 161560] R2 Live Updater Service;Live Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2012-02-07 255376] R2 LMS;Intel® Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe [2011-12-16 277784] R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [2012-01-06 256536] R2 Safer-Surf;Safer-Surf; C:\Program Files (x86)\ver3Safer-Surf\K0Safer-SurfXA178.exe [2014-09-02 303104] R2 UNS;Intel® Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-12-16 363800] R2 vToolbarUpdater18.1.9;vToolbarUpdater18.1.9; C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\18.1.9\ToolbarUpdater.exe [2014-09-02 1820184] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088] S2 gupdate;Google Update-service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-15 136176] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-08-30 262320] S3 cphs;Intel® Content Protection HECI Service; C:\Windows\SysWow64\IntelCpHeciSvc.exe [2012-02-19 276248] S3 DCDhcpService;DCDhcpService; C:\Program Files (x86)\Acer\WDAgent\DCDhcpService.exe [2012-02-10 111776] S3 EgisTec Ticket Service;EgisTec Ticket Service; C:\Program Files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [2011-06-21 173424] S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2012-03-31 655624] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-01-15 136176] S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-01-15 194032] S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-07-25 111616] S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2014-09-01 119408] S3 NBService;NBService; C:\Program Files (x86)\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-04-13 792112] S3 NMIndexingService;NMIndexingService; C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe [2007-05-16 271920] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-09-20 1255736] S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856] -----------------EOF----------------- -
Vreemd venster bij het opstarten van mijn laptop
Clubboy plaatste een topic in Archief Bestrijding malware & virussen
Laptop Acer Windows 7 Home Premium Model V3-771 Processor: Intel® Core i3-2350M CPU @ 2,30GHz 2,30 GHz Geïnstalleerd geheugen 6,00 GB Type systeem 64 bitsbesturingssysteem Bij het opstarten van mijn laptop verschijnt er steeds een klein venster: Weet iemand wat dit betekend? -
Ondertussen laptop afgesloten en terug opgestart... Probleem lijkt opgelost...
-
Ik heb ondertussen alle Windows Essentials programma's herstelt, maar het probleem is niet opgelost... Nu probeer ik die te verwijderen... Krijg nu de vraag welke programma's verwijderd moeten worden? De programma's die geïnstalleerd zijn: *Messenger *Photo Gallery en Movie Maker *Windows Live Mesh *Mail *Writer Ik veronderstel dat ik enkel Photo Gallery en Movie Maker moet verwijderen?
-
Laptop Acer Windows 7 Home Premium Model V3-771 Processor: Intel® Core i3-2350M CPU @ 2,30GHz 2,30 GHz Geïnstalleerd geheugen 6,00 GB Type systeem 64 bitsbesturingssysteem Als ik naar "mijn afbeeldingen" ga, en ik bubbelklik op een foto, dan krijg ik steeds een foutmelding... Dan komt er een scherm met volgende: Windows Live Photo Gallery "Er is een fout opgetreden waardoor de foto of video niet kan worden weergegeven" Foutcode 0x8000000a Dit is zo bij alle foto's... Kunnen jullie helpen dit vervelend probleem op te lossen? Alvast Thx... Mvg, Clubboy
-
Windows Vista --> Windows XP --> Windows Vista
Clubboy reageerde op Clubboy's topic in Archief Windows Algemeen
De sticker hangt er inderdaad nog, met het product Key erop... Dus als ik aan een Vista installatie-dvd geraak, kan ik verder? Bestaat er ook een mogelijkheid om Vista gewoon te downloaden via internet? -
Windows Vista --> Windows XP --> Windows Vista
Clubboy reageerde op Clubboy's topic in Archief Windows Algemeen
Als ik de computer opnieuw opstart, en op F8 blijf tikken, krijg ik een zwarte achtergrond met volgende tekst: Geavenceerde opties voor Windows Selecteer een optie: * Veilige modus * Veilige modus met netwerkmogelijkheden * Veilige modus met opdrachtprompt * Logboekregistratie voor opstartprocedure inschakelen * VGA-modus inschakelen * Laatste bekende juiste configuratie (recente instellingen die werkten) * Actieve Directory terugzetten (alleen Windows-domeincontrollers) * Foutopsporingsmodus * Automatisch opnieuw opstarten bij systeemcrash uitschakelen * Windows normaal opstarten * Opnieuw opstarten * Terug naar het menu mat besturingssystemen Gebruik de pijltjestoetsen om een besturingssysteem te selecteren. "Computer repareren" staat hier helaas niet tussen... -
Windows Vista --> Windows XP --> Windows Vista
Clubboy reageerde op Clubboy's topic in Archief Windows Algemeen
-
Windows Vista --> Windows XP --> Windows Vista
Clubboy reageerde op Clubboy's topic in Archief Windows Algemeen
-
Windows Vista --> Windows XP --> Windows Vista
Clubboy reageerde op Clubboy's topic in Archief Windows Algemeen
Schijfbeheer = Systeemeigenschappen? Indien niet, waar kan ik schijfbeheer vinden? - - - Updated - - - Fujitsu computers Siemens Amilo Notebook Xi 3650 Intel® Core2 Duo CPU T5800 @ 2.00 GHz Kloksnelheid: 2.00 GHz, 2,96 GB -
Windows Vista --> Windows XP --> Windows Vista
Clubboy reageerde op Clubboy's topic in Archief Windows Algemeen
Dat was er misschien wel bijgeleverd, maar heb daar niks maar van. Ik heb ondertussen de laptop opgestart, maar daar zijn nu een deel update's aan het installeren. Daarna zal ik "Speccy" downloaden en installeren. Ik hou je op de hoogte. Alvast thx voor de vlugge reactie... - - - Updated - - - Ziehier de link: http://speccy.piriform.com/results/HN7wsI0CbgKNgjVliWpH61m -
Windows Vista --> Windows XP --> Windows Vista
Clubboy plaatste een topic in Archief Windows Algemeen
Ik heb hier een laptop in bezit, waar origineel Windows Vista opstond bij aankoop. Om de één of andere reden is dat veranderd naar Windows XP. Hoe kan ik de laptop terug omschakelen naar Windows Vista? Mvg, Clubboy -
Hallo... Via de startknop van Windows (helemaal linksonder) open ik "Windows Live Mail". Nooit geen probleem mee gehad, tot vandaag. Zoals gewoonlijk gaat mijn "Postvak In" open. Rechts onderaan verschijnt "Ontvangen van post..." maar ik ontvang niks... Als ik 1x tik op "Ontvangen van post..." gaat er een nieuw venster "Windows Live Mail" open. Daar zie ik staan "Download van bericht 1385" en dat getal blijft maar oplopen, terwijl ik nog steeds geen berichten ontvang. Dat er zoveel berichten aan het downloaden zijn is ook niet normaal, want meer dan een 20-tal berichten per dag krijg ik niet. En "Windows Live Mail" wordt dagelijks gebruikt. Ook krijg ik regelmatig een klein venster te zien waarop volgende staat: "De server POP3 heeft al 60 seconden niet gereageerd. Wil je nog 60 seconden op een reactie van de server wachten?" Als ik "Wachten" of "Stoppen" aanklik, blijft het probleem hetzelfde. Ik weet niet of het toeval is of niet, maar een uurtje voor dit alles begon, heb ik nog es het programma "CCleaner" gebruikt. Daar deed ik "Cleaner" en "Register". Alles leek daar in orde. Is er iemand die mij hiermee kan helpen? Mvg, Clubboy
-
Ik heb via de link een opstartschijf downloaden en branden. Met deze heb ik dan de laptop weer aan de praat gekregen. Is nu bezig met een hoop update's. Thx... ;-)
-
Hallo, ik heb thuis een laptop die maar niet wil opstarten. Hoop dat jullie mij hiermee efkes kunnen helpen. Ik zal hier proberen zoveel mogelijk info door te geven. Packard Bell Product Name = EasyNote_SJ51 CPU Type = AMD Athlon 64 CPU Info = X2 Dual-Core Processor TK-55 Amount of Memory = 1792 MB Windows Vista Als ik de laptop opstart, krijg ik steeds de melding dat de computer verkeerd is afgeloten. Dan kom ik in "Boot Order" - "Windows Foutherstel" Vervolgens kan ik kiezen tussen: * Veilige Modus * Veilige Modus met netwerkmogelijkheid * Veilige Modus met opdrachtprompt * Windows normaal starten Welk één ik ook kies van de bovenste drie, krijg steeds het volgende te zien: * Windows Bestanden Laden. Komt er een lijst bestanden tevoorschijn en onderaan "Een ogenblik geduld..." Vervolgens krijg ik een zwart scherm met 1 wit pijltje. Kies ik voor "Windows normaal starten", krijg ik eerste een zwart beeld, waarin je de balk met gekleurde strepen ziet lopen van "Microsoft Corporation". Vervolgens een zwart beeld met 1 wit pijltje. Weet er soms iemand hoe ik dit verder kan aanpakken en dit probleem kan oplossen? Oja, een opstartdiskette van deze laptop heb ik niet. Alvast Thx. Mvg, Clubboy
-
Hallo, gisteren heb ik een update gedaan van Norton Internet Security 2010 naar Norton Internet Security 2011. Update was succesvol. Vanmorgen kreeg ik het volgend bericht: Aangezien er een tekst in het rood stond, vroeg ik mij af, of dit kwaad kon? Kan er iemand mij hierbij helpen? Alvast thx... Mvg, Clubboy
-
Probleem lijkt opgelost. Nieuw wachtwoord gekregen, alles terug ingesteld, en ik kan terug mails ontvangen. Bedankt voor jullie hulp.
-
Problemen blijven hetzelfde. Ik kan nog steeds geen mails ontvangen...
-
Kheb spatie er tussen gelaten, en het is verwijderd. Hoe verwijder ik die "Qoobox"? Oeps, die is ook automatisch verdwenen.
-
Ik heb mijn pc herstart en het scroll-probleem is terug in orde. Ik typ "ComboFix/Uninstall" en duw vervolgens op ok. Dan krijg ik een bericht dat hij dit bestand niet vind. CCleaner had ik al op mijn pc. Dit doe ik dagelijks. Probleem is nog steeds hetzelfde. Ik kan nog steeds geen e-mails ontvangen.
-
ComboFix 10-09-23.01 - Carrefour Schoten 24/09/2010 12:52:51.1.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1252.32.1043.18.2046.1158 [GMT 2:00] Gestart vanuit: c:\users\Carrefour Schoten\Downloads\ComboFix.exe AV: Norton Internet Security *On-access scanning disabled* (Updated) {E10A9785-9598-4754-B552-92431C1C35F8} FW: Norton Internet Security *disabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220} SP: Norton Internet Security *disabled* (Updated) {CBB7EE13-8244-4DAB-8B55-D5C7AA91E59A} SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46} . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\windows\system32\AutoRun.inf . (((((((((((((((((((( Bestanden Gemaakt van 2010-08-24 to 2010-09-24 )))))))))))))))))))))))))))))) . 2010-09-24 11:07 . 2010-09-24 11:08 -------- d-----w- c:\users\Carrefour Schoten\AppData\Local\temp 2010-09-24 11:07 . 2010-09-24 11:07 -------- d-----w- c:\users\Default\AppData\Local\temp 2010-09-22 16:08 . 2010-09-22 16:08 -------- d-----w- c:\users\Carrefour Schoten\AppData\Roaming\Malwarebytes 2010-09-22 16:07 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-09-22 16:07 . 2010-09-22 16:07 -------- d-----w- c:\programdata\Malwarebytes 2010-09-22 16:07 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-09-22 16:07 . 2010-09-22 16:07 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-09-22 09:37 . 2010-09-22 09:37 388096 ----a-r- c:\users\Carrefour Schoten\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2010-09-22 09:37 . 2010-09-22 09:37 -------- d-----w- c:\program files\Trend Micro 2010-09-21 17:33 . 2010-09-22 18:13 680 ----a-w- c:\users\Carrefour Schoten\AppData\Local\d3d9caps.dat 2010-09-05 19:40 . 2007-02-16 02:48 36864 ----a-w- c:\windows\system32\wmdmps.dll 2010-09-05 19:40 . 2007-02-16 02:48 31744 ----a-w- c:\windows\system32\wmdmlog.dll 2010-09-05 19:40 . 2007-02-16 02:46 311296 ----a-w- c:\windows\system32\mswmdm.dll 2010-08-30 11:46 . 2010-08-30 11:46 -------- d-----w- c:\users\Carrefour Schoten\AppData\Roaming\Tific 2010-08-26 16:01 . 2010-08-26 16:01 -------- d-----w- c:\program files\Conduit . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-09-24 09:52 . 2007-05-26 09:37 13589 ----a-w- c:\users\Carrefour Schoten\AppData\Roaming\nvModes.dat 2010-09-24 09:43 . 2007-03-22 05:10 12 ----a-w- c:\windows\bthservsdp.dat 2010-09-24 06:04 . 2010-06-30 13:43 -------- d-----w- c:\users\Carrefour Schoten\AppData\Roaming\HpUpdate 2010-09-21 20:30 . 2008-12-21 14:45 -------- d-----w- c:\users\Carrefour Schoten\AppData\Roaming\Microgaming 2010-09-21 12:00 . 2007-03-21 19:39 689618 ----a-w- c:\windows\system32\perfh013.dat 2010-09-21 12:00 . 2007-03-21 19:39 122796 ----a-w- c:\windows\system32\perfc013.dat 2010-09-19 17:36 . 2007-10-13 11:26 140437 ----a-w- c:\windows\hpoins18.dat 2010-09-17 12:33 . 2007-08-24 19:59 -------- d-----w- c:\program files\Google 2010-09-15 21:46 . 2007-10-12 19:31 -------- d-----w- c:\programdata\Microsoft Help 2010-09-09 06:29 . 2009-06-19 09:08 -------- d-----w- c:\program files\Microsoft Silverlight 2010-09-04 07:10 . 2008-04-14 18:17 -------- d-----w- c:\program files\Common Files\Java 2010-09-04 07:09 . 2008-04-14 18:18 -------- d-----w- c:\program files\Java 2010-07-17 03:00 . 2010-04-28 12:46 423656 ----a-w- c:\windows\system32\deployJava1.dll . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-10 1232896] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2006-11-02 125440] "MsnMsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-09-11 39408] "TomTomHOME.exe"="c:\program files\TomTom HOME 2\TomTomHOMERunner.exe" [2009-11-13 247144] "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 201728] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2007-08-04 1006264] "NvSvc"="c:\windows\system32\nvsvc.dll" [2007-02-05 90191] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-02-05 7770112] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-02-05 81920] "RtHDVCpl"="RtHDVCpl.exe" [2006-11-01 3772416] "SMSERIAL"="c:\program files\Motorola\SMSERIAL\sm56hlpr.exe" [2006-10-09 729088] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2006-10-27 815104] "NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648] "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-03-11 49152] "ExtraFilmHemmaAgent"="c:\program files\ExtraFilm PhotoAssistant\Agent.exe" [2007-11-05 323584] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-11-10 417792] "mxomssmenu"="c:\program files\Maxtor\OneTouch Status\maxmenumgr.exe" [2007-09-06 169264] "beid"="c:\program files\Belgium Identity Card\beid35gui.exe" [2009-02-02 2035712] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2010-01-22 141608] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-06-20 35760] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-06-09 976832] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552] "Windows Mobile-based device management"="c:\windows\WindowsMobile\wmdSync.exe" [2006-11-02 215552] c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Bluetooth Manager.lnk - c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2006-11-7 2134016] HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2007-1-2 210520] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "mixer3"=wdmaud.drv [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] @="Service" [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc] "AntiVirusOverride"=dword:00000001 R2 gupdate;Google Updateservice (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2009-09-11 133104] R3 ACSSCR;ACR38 Smart Card Reader;c:\windows\system32\DRIVERS\a38usb.sys [2009-04-27 35712] R3 SYMNDISV;Symantec Network Filter Driver;c:\windows\System32\Drivers\NIS\1007020.00B\SYMNDISV.SYS [x] S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NIS\1108000.005\SYMDS.SYS [2009-11-05 328752] S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NIS\1108000.005\SYMEFA.SYS [2010-04-22 173104] S1 BHDrvx86;BHDrvx86;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\BASHDefs\20100901.003\BHDrvx86.sys [2010-08-31 692272] S1 ccHP;Symantec Hash Provider;c:\windows\system32\drivers\NIS\1108000.005\ccHPx86.sys [2010-02-26 501888] S1 IDSVix86;IDSVix86;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20100923.001\IDSvix86.sys [2010-05-28 344112] S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NIS\1108000.005\Ironx86.SYS [2010-04-29 116784] S1 SYMTDIv;Symantec Vista Network Dispatch Driver;c:\windows\System32\Drivers\NIS\1108000.005\SYMTDIV.SYS [2010-05-06 339504] S2 NIS;Norton Internet Security;c:\program files\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe [2010-02-26 126392] S2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [2009-11-13 92008] S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2010-05-27 102448] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] bthsvcs REG_MULTI_SZ BthServ HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc WindowsMobile REG_MULTI_SZ wcescomm rapimgr LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr . Inhoud van de 'Gedeelde Taken' map 2010-09-24 c:\windows\Tasks\Google Software Updater.job - c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-08-24 11:06] 2010-09-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2009-09-11 11:07] 2010-09-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2009-09-11 11:07] 2010-09-24 c:\windows\Tasks\Norton Internet Security - Carrefour Schoten - Volledige systeemscan.job - c:\program files\Norton Internet Security\Engine\17.8.0.5\navw32.exe [2010-09-24 19:24] 2010-09-24 c:\windows\Tasks\Norton Internet Security - Volledige systeemscan uitvoeren - Carrefour Schoten.job - c:\program files\Norton Internet Security\Engine\17.8.0.5\navw32.exe [2010-09-24 19:24] 2010-09-24 c:\windows\Tasks\User_Feed_Synchronization-{009C11A5-C05F-4841-A79B-8F46D1EBC611}.job - c:\windows\system32\msfeedssync.exe [2010-03-31 04:54] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/ uInternet Settings,ProxyOverride = *.local IE: {{C53BFCFC-7A54-4627-AEBA-2CD4871FCA97} - c:\microgaming\Poker\UnibetpokerMPP\MPPoker.exe . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2010-09-24 13:08 Windows 6.0.6000 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\NIS] "ImagePath"="\"c:\program files\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files\Norton Internet Security\Engine\17.8.0.5\diMaster.dll\" /prefetch:1" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000001 [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . Voltooingstijd: 2010-09-24 13:18:32 ComboFix-quarantined-files.txt 2010-09-24 11:18 Pre-Run: 20.377.300.992 bytes beschikbaar Post-Run: 20.354.437.120 bytes beschikbaar - - End Of File - - 04B711AFEF42F2B8774D754F5A17698F ---------- Post toegevoegd om 11:31 ---------- Vorige post was om 11:23 ---------- Sinds ik deze laatste test deed, werkt mijn scroll van mijn laptop niet meer.
-
Ik heb dit ene item kunnen verwijderen met HiJackThis in veilige modus. Kheb de pc terug opgestart en via MBAM is er nu een scan bezig. Na de scan kreeg ik dit log: Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Databaseversie: 4672 Windows 6.0.6000 Internet Explorer 8.0.6001.18904 24/09/2010 12:10:44 mbam-log-2010-09-24 (12-10-44).txt Scantype: Snelle scan Objecten gescand: 138121 Verstreken tijd: 13 minuut/minuten, 13 seconde(n) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 0 Registerwaarden geïnfecteerd: 0 Registerdata geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 0 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registersleutels geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerwaarden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerdata geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Mappen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Bestanden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 12:26:09, on 24/09/2010 Platform: Windows Vista (WinNT 6.00.1904) MSIE: Internet Explorer v8.00 (8.00.6001.18904) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Windows Defender\MSASCui.exe C:\Windows\System32\rundll32.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\HP\HP Software Update\hpwuSchd2.exe C:\Program Files\ExtraFilm PhotoAssistant\Agent.exe C:\Program Files\QuickTime\QTTask.exe C:\Program Files\Maxtor\OneTouch Status\MaxMenuMgr.exe C:\Program Files\Belgium Identity Card\beid35gui.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Windows\WindowsMobile\wmdSync.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Windows\ehome\ehtray.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe C:\Windows\system32\taskeng.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe C:\Program Files\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\Macromed\Flash\FlashUtil10i_ActiveX.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\coIEPlg.dll O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\IPSBHO.DLL O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\coIEPlg.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [sMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [ExtraFilmHemmaAgent] "C:\Program Files\ExtraFilm PhotoAssistant\Agent.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [mxomssmenu] "C:\Program Files\Maxtor\OneTouch Status\maxmenumgr.exe" O4 - HKLM\..\Run: [beid] "C:\Program Files\Belgium Identity Card\beid35gui.exe" /startup O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Startup: Adobe Media Player.lnk = C:\Program Files\Adobe Media Player\Adobe Media Player.exe O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: Bluetooth Manager.lnk = ? O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O9 - Extra button: Unibet Poker - {C53BFCFC-7A54-4627-AEBA-2CD4871FCA97} - C:\Microgaming\Poker\UnibetpokerMPP\MPPoker.exe O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra button: Unibet - {00000000-0000-0000-0000-000000000000} - C:\MicroGaming\Poker\unibetpokerMPP\MPPoker.exe (HKCU) O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Maxtor Service (Maxtor Sync Service) - Seagate Technology LLC - C:\Program Files\Maxtor\Sync\SyncServices.exe O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe O23 - Service: Planner voor Automatische LiveUpdate - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing) O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Symantec RemoteAssist - Symantec, Inc. - C:\Program Files\Common Files\Symantec Shared\Support Controls\ssrc.exe O23 - Service: Fujitsu Siemens Computers Diagnostic Testhandler (TestHandler) - Fujitsu Siemens Computers - C:\firststeps\OnlineDiagnostic\TestManager\TestHandler.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe -- End of file - 11791 bytes
-
De problemen beginnen al in HiJackThis. Kan dit ene item precies niet verwijderen. Ondertusse MBAM geïnstalleerd en gescand. Dit is het resultaat: Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Databaseversie: 4672 Windows 6.0.6000 Internet Explorer 8.0.6001.18904 22/09/2010 18:49:02 mbam-log-2010-09-22 (18-49-02).txt Scantype: Snelle scan Objecten gescand: 137949 Verstreken tijd: 9 minuut/minuten, 3 seconde(n) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 0 Registerwaarden geïnfecteerd: 0 Registerdata geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 0 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registersleutels geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerwaarden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerdata geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Mappen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Bestanden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd)
-
Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 12:58:42, on 22/09/2010 Platform: Windows Vista (WinNT 6.00.1904) MSIE: Internet Explorer v8.00 (8.00.6001.18904) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe C:\Windows\System32\rundll32.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\HP\HP Software Update\hpwuSchd2.exe C:\Program Files\ExtraFilm PhotoAssistant\Agent.exe C:\Program Files\QuickTime\QTTask.exe C:\Program Files\Maxtor\OneTouch Status\MaxMenuMgr.exe C:\Program Files\Belgium Identity Card\beid35gui.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Windows\WindowsMobile\wmdSync.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Windows\ehome\ehtray.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Norton Internet Security\Engine\17.7.0.12\ccSvcHst.exe C:\Program Files\Windows Media Player\WMPNSCFG.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtProc.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\Macromed\Flash\FlashUtil10i_ActiveX.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\conime.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\17.7.0.12\coIEPlg.dll O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\17.7.0.12\IPSBHO.DLL O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\17.7.0.12\coIEPlg.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [sMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [ExtraFilmHemmaAgent] "C:\Program Files\ExtraFilm PhotoAssistant\Agent.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [mxomssmenu] "C:\Program Files\Maxtor\OneTouch Status\maxmenumgr.exe" O4 - HKLM\..\Run: [beid] "C:\Program Files\Belgium Identity Card\beid35gui.exe" /startup O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [Windows Mobile-based device management] %windir%\WindowsMobile\wmdSync.exe O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Startup: Adobe Media Player.lnk = C:\Program Files\Adobe Media Player\Adobe Media Player.exe O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: Bluetooth Manager.lnk = ? O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O9 - Extra button: Unibet Poker - {C53BFCFC-7A54-4627-AEBA-2CD4871FCA97} - C:\Microgaming\Poker\UnibetpokerMPP\MPPoker.exe O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\MSMSGS.EXE O9 - Extra button: Unibet - {00000000-0000-0000-0000-000000000000} - C:\MicroGaming\Poker\unibetpokerMPP\MPPoker.exe (HKCU) O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Maxtor Service (Maxtor Sync Service) - Seagate Technology LLC - C:\Program Files\Maxtor\Sync\SyncServices.exe O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files\Norton Internet Security\Engine\17.7.0.12\ccSvcHst.exe O23 - Service: Planner voor Automatische LiveUpdate - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing) O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Symantec RemoteAssist - Symantec, Inc. - C:\Program Files\Common Files\Symantec Shared\Support Controls\ssrc.exe O23 - Service: Fujitsu Siemens Computers Diagnostic Testhandler (TestHandler) - Fujitsu Siemens Computers - C:\firststeps\OnlineDiagnostic\TestManager\TestHandler.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe -- End of file - 12064 bytes ---------- Post toegevoegd om 11:00 ---------- Vorige post was om 10:59 ---------- Is dit wat je zoekt?
