MagicalM
-
Items
63 -
Registratiedatum
-
Laatst bezocht
Inhoudstype
Profielen
Forums
Store
Alles dat geplaatst werd door MagicalM
-
DVD Speler leest CD's & DVD's zeer moeilijk
MagicalM reageerde op MagicalM's topic in Archief Windows Algemeen
Ok, ik heb de infotool gerund en hier is een deeltje van het logje. -
DVD Speler leest CD's & DVD's zeer moeilijk
MagicalM reageerde op MagicalM's topic in Archief Windows Algemeen
Heb het programma even geprobeerd en Fix it laat me weten dat mijn DVD-Drive geen CD-ROM, DVD's enz kan lezen, terwijl mijn station dat wel kon. Zou het kunnen zijn dat het leeskopje beschadigd of stuk is? Zoja, hoe kan ik dit bevestigen? -
Hallo PC-Helpforum, Ik zit helaas weer met een probleempje. Mijn DVD Speler (Slimtype DVD A DS8A2S ATA Device) leest CD's en DVD's zeer moeilijk sinds ik Windows 7 geïnstalleerd heb. Af en toe wil hij de DVD of CD lezen, en andere keren dan weer niet. Zou dit een driver probleem kunnen zijn? Ik heb voor drivers gezocht maar deze kon ik helaas niet vinden. Of iets anders? Ik heb al geprobeerd om met iets zeer zachts het laserkopje wat op te schonen, maar dit scheen niet te helpen.
-
Hey PC-helpforum, Ik gebruik momenteel een Acer Aspire 5735Z laptop en sinds ik geupgrade ben naar Windows 7 zie ik geen DVD-Drive meer bij Computer (Station D:) hier is een afbeelding. http://i55.tinypic.com/20z1fs3.png In Speccy krijg ik ook No Optical Drives Detected. Waaraan kan dit ergens liggen? ---------- Post toegevoegd om 23:52 ---------- Vorige post was om 23:39 ---------- Sorry, het probleem is opgelost, ik heb de probleemoplosser gebruikt in configuratiescherm Toch hartelijk bedankt!
-
Het probleem is opgelost, Ventilatortje scheen niet zo goed meer te draaien. Werkt nu naar behoren Bedankt voor alle hulp!
-
Bedankt, ik heb even het stof verwijderd op de schoepjes zelf, al moet ik zeggen dat ik er moeilijk aan kon en ik hem niet durf open draaien, ik wil het liefst niks fout doen. Toch is de temperatuur alweer 59°C en de computer is 3 minuten geleden op gestart.. Ik denk dat ik toch maar even naar de computerwinkel ga om te vragen voor een controle wat er met m'n computer is, en deze nodige dingen laten repareren.
-
HiJackThis logje: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 13:47:48, on 18/06/2011 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskhost.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Windows\system32\SearchFilterHost.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe -- End of file - 4882 bytes Als dit niet echt een probleem is, ga ik over naar het openmaken van de laptop om eens te kijken het stof van de schoepjes te verwijderen.
-
Ik hoor de Fan inderdaad draaien, hoe kan ik de schoepen stofvrij maken zonder deze te beschadigen? Dit zijn de Opstarters: http://i56.tinypic.com/ou5e85.png
-
Ik had 1 jaar garantie voor de laptop, maar hoe kan dat nu dat mijn temperaturen zo plots na het installeren van Windows 7 niet meer normaal zijn? Eergisteren op Vista was er nergens een probleem te bespeuren, hij draaide World of Warcraft naar behoren, zonder overhitting en nu met een nieuwe versie te installeren, overhit hij binnen de 3 - 8 minuten na het opstarten van het spel. Bewerkt om 13:14 Ik heb 2 weken geleden mijn laptop al open gedraaid en het stof verwijderd, er is bijna geen stof meer aanwezig. De hoogste gebruiker is Firefox met 140.000 kB verbruik. Ik ben momenteel mijn schijf aan het defragmenteren en mijn processorgebruik is 55 - 60 procent. Zou het een fan probleem kunnen zijn?
-
Ja, ik heb Windows 7 gekocht in een computerwinkel en mijn windows versie is geactiveerd. (32-bits versie gebruik ik momenteel). Want ik weet niet of mijn Computer perfect de 64-Bit zou draaien. De garantie van deze computer is al lang vervallen, ik heb deze laptop ongeveer 2 à 3 jaar geleden gekocht, en de enige game die ik speel is World of Warcraft. Het probleem doet zich voor sinds ik naar Windows 7 geupgrade heb..
-
Ja, hij geeft idd aan dat mijn videokaart niet goed genoeg is, maar er staat dat ik een 128MB videokaart nodig heb en ik heb volgens mij 256MB (1.3GB Shared). Dat is de enige requirement waar ik niet aan voldoe volgens het programma. Ik wou gisteren mijn Windows.old folder verwijderen met Schijfopruiming en mijn computer overhitte daardoor ook, dat is toch iets dat echt niet klopt?
-
Ja dat begrijp ik, maar met Vista had ik dit probleem niet, mijn CPU temperatuur loopt momenteel binnen de 15 seconden van 50°C meteen naar 75 - 80°C en als ik dan de game niet afsluit gaat hij tot de limitiet (100°C) en valt het systeem uit, bij Vista kon ik echter uren spelen zonder dat de computer uit viel.
-
Ja, maar zodra ik een game speel (World of Warcraft) raakt de temperatuur van de computer snel op 80 - 90°C. Hoe zou dit kunnen komen?
-
Ik heb de laptop ongeveer 2 à 3 jaar geleden gekocht, maar ik heb ondertussen gemerkt dat de temperatuur van de processor en het moederbord rond de 45 - 50°C schommelt (10 minuten na opstarten). De fans moeten zelfs nog niet inspringen om af te koelen.
-
Core Temp: Core #0: Low: 49°C - High 56°C Zelfde geldt voor Core #1, Komt nu ong overeen met Speccy.
-
Deze staat al verhoogd, misschien een koeler kopen? Al vind ik dit vreemd dat hij nu opeens overhit raakt (momenteel geen problemen, ik zal zien wat er gebeurt)
-
Ja, dit is een Laptop (Acer Aspire 5735Z) Ze verspringen steeds van hoog naar laag en omgekeerd, dit sinds ik Windows 7 geïnstalleerd heb.
-
Sorry, ik was vergeten het linkje er bij te plaatsen. Dit is Speccy linkje: http://speccy.piriform.com/results/cXFewdamX3YMGlzSSmkR56E Er staat nergens een uitroepteken bij apparaatbeheer. Ik heb net wel 35 belangrijke updates moeten installeren voor Windows 7 (Windows 7 werd vandaag geïnstalleerd.) De computer overhit sinds ik Windows 7 heb geïnstalleerd, en Speccy springt bij de CPU en Moederbord temperaturen van 85°C opeens naar 73°C of lager.
-
Hallo PC-Helpforum, Ik ben vandaag overgestapt naar Windows 7 en moet zeggen dat het een erg goed besturingssysteem is. Maar helaas zit ik met een klein probleempje. Ik kan niet alle drivers vinden voor mijn computer. Speccy geeft ook verkeerde temperaturen aan (91°C) terwijl mijn computer niet zo warm aanvoelt. Maar hier in ieder geval een speccy logje om te tonen welke CPU en GPU ik heb. Ik heb de GPU driver al kunnen installeren, zijn er nog enige andere drivers die ik zou kunnen installeren? Alvast bedankt!
-
Hierbij bevestig ik dat de schoonmaak probleemloos verlopen is. Nogmaals erg bedankt voor de hulp die u mij aangeboden heeft
-
De computer werkt nu een stuk sneller, erg bedankt voor de hulp!
-
Beste, Ik heb de stappen die u mij aangegeven hebt uitgevoerd zonder enige problemen. Hierbij het nieuwe ComboFix logje: ComboFix 11-05-31.02 - Fred 01/06/2011 16:31:45.2.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.32.1043.18.3000.1784 [GMT 2:00] Gestart vanuit: c:\users\Fred\Desktop\ComboFix.exe gebruikte Opdracht switches :: c:\users\Fred\Desktop\CFScript.txt AV: avast! Antivirus *Disabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308} SP: avast! Antivirus *Disabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Nieuw herstelpunt werd aangemaakt . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\users\Fred\AppData\Local\{0822C6CE-D090-4504-A8BF-BD75BBFB3EFC} c:\users\Fred\AppData\Local\{0D5A659A-F257-4932-BEAD-3D251EAF9C06} c:\users\Fred\AppData\Local\{0F8504F3-2409-4812-9EC4-217F78826ABA} c:\users\Fred\AppData\Local\{1123E160-ADEC-43B6-9457-8437D34E4FAB} c:\users\Fred\AppData\Local\{19B76F85-26AB-4122-88F6-A9F88BDCC8BE} c:\users\Fred\AppData\Local\{1B853C27-A99E-4EBF-B6A2-3248C3A607AA} c:\users\Fred\AppData\Local\{1ECCE807-8E5B-4F99-9962-9EED3721008F} c:\users\Fred\AppData\Local\{328A2CF4-8F43-4B09-BD19-6788314A2C1B} c:\users\Fred\AppData\Local\{37BE78A8-1ED2-41D0-971C-5FDB3831FA9A} c:\users\Fred\AppData\Local\{441C4A5C-36FC-415A-8BC0-D226866DFA79} c:\users\Fred\AppData\Local\{56B7679D-F60B-4126-AEEA-61A5CA77EE03} c:\users\Fred\AppData\Local\{5A0E79AC-3E22-4859-A736-122A09C539FF} c:\users\Fred\AppData\Local\{5A78BDFF-3688-4E1D-ACA6-A0E844AD5D28} c:\users\Fred\AppData\Local\{639B0E77-6D5E-41D8-90A3-2DF20C7C4F10} c:\users\Fred\AppData\Local\{6C0CB584-2496-4B26-8952-DD90A66FAE6E} c:\users\Fred\AppData\Local\{85A20D1C-9108-42DD-ABA0-9DBDEB6F4B2C} c:\users\Fred\AppData\Local\{8D94D405-12E0-449C-88A8-FB36F09A1B38} c:\users\Fred\AppData\Local\{93CE0E85-D298-4482-B46C-C70D421F53CF} c:\users\Fred\AppData\Local\{97750EAD-C3EB-464D-BE67-FFD2A2E680EA} c:\users\Fred\AppData\Local\{A730D1B4-692C-4828-B265-B8BA4943857C} c:\users\Fred\AppData\Local\{AF760597-D03A-4347-ADAC-648E7C93B774} c:\users\Fred\AppData\Local\{B16D3DF2-E935-4264-9DC6-DBB5BB262896} c:\users\Fred\AppData\Local\{B1BDBC27-4F28-47D5-90C8-355559F9D8B8} c:\users\Fred\AppData\Local\{B5E50924-BCE0-4360-AD04-73B03C300591} c:\users\Fred\AppData\Local\{BA0ED427-9458-48F9-948B-63E617DBA12D} c:\users\Fred\AppData\Local\{BBD889E1-2079-45A1-8A84-D8A07CE7CF33} c:\users\Fred\AppData\Local\{C9B4A96A-D6FF-47B3-8680-41CA661B08B3} c:\users\Fred\AppData\Local\{CAA259C3-FE7E-454F-8348-B9F1AC661891} c:\users\Fred\AppData\Local\{CFFB97D6-AE26-45D4-933C-3F470E0E2A4F} c:\users\Fred\AppData\Local\{D7EA2D66-D1C3-4E0B-8E0F-E8828356CD75} c:\users\Fred\AppData\Local\{DCF066C1-573F-480B-B7A1-7BD592343A83} c:\users\Fred\AppData\Local\{F75A829C-72CF-42F1-B9D9-543F4CA12A03} c:\windows\system32\BDSShellRes.dllBDSShellRes.dll.mui c:\windows\system32\BDSShellRes140.dllBDSShellRes140.dll.mui c:\windows\system32\BDSShellRes150.dllBDSShellRes150.dll.mui . . (((((((((((((((((((( Bestanden Gemaakt van 2011-05-01 to 2011-06-01 )))))))))))))))))))))))))))))) . . 2011-06-01 14:52 . 2011-06-01 14:52 -------- d-----w- c:\users\Fred\AppData\Local\temp 2011-06-01 14:52 . 2011-06-01 14:52 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-06-01 14:25 . 2011-06-01 14:28 -------- d-----w- C:\32788R22FWJFW 2011-05-31 19:42 . 2011-05-31 19:42 -------- d-----w- c:\program files\Microsoft XNA 2011-05-31 19:38 . 2011-05-31 19:39 -------- d-----w- c:\program files\Terraria 2011-05-31 18:35 . 2011-05-31 18:35 -------- d-----w- c:\users\Fred\AppData\Roaming\Soluto 2011-05-31 18:15 . 2011-05-28 14:47 51144 ----a-w- c:\windows\system32\drivers\Soluto.sys 2011-05-31 18:15 . 2011-05-31 18:15 -------- d-----w- c:\program files\Soluto 2011-05-31 18:14 . 2011-05-31 18:31 -------- d-----w- c:\programdata\Soluto 2011-05-31 16:06 . 2011-05-31 16:06 -------- d-----w- c:\program files\Speccy 2011-05-31 14:57 . 2011-05-09 20:46 6962000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{2D6ED8FC-1525-4EA5-BA85-5FD8FF2D920C}\mpengine.dll 2011-05-31 14:52 . 2011-05-31 14:52 -------- d-----w- c:\program files\LogMeIn Hamachi 2011-05-27 18:47 . 2011-05-27 18:47 -------- d-----w- c:\program files\VirtualDJ7 2011-05-27 17:42 . 2009-07-14 17:45 38480 ----a-w- c:\windows\system32\drivers\WdfLdr.sys 2011-05-27 17:42 . 2009-07-14 17:45 445008 ----a-w- c:\windows\system32\drivers\Wdf01000.sys 2011-05-27 17:42 . 2011-05-27 17:42 -------- d-----w- c:\users\Fred\{7fee58de-b220-4ac5-88bf-ed83ecd64b0e} 2011-05-25 08:40 . 2011-05-25 20:41 -------- d-----w- c:\users\Fred\AppData\Local\{83CC88D7-190F-4B31-95A2-6C6716481418} 2011-05-24 21:59 . 2011-05-24 22:05 -------- d-----w- c:\users\Fred\AppData\Roaming\.minecraft 2011-05-23 18:12 . 2011-05-31 18:26 -------- d-----w- c:\users\Fred\AppData\Local\LogMeIn Hamachi 2011-05-18 17:44 . 2011-05-18 17:44 -------- d-----w- c:\program files\Minecraft 2011-05-14 22:52 . 2011-05-14 22:52 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-05-11 10:38 . 2011-04-07 12:01 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat 2011-05-08 09:06 . 2011-05-08 09:06 218688 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys 2011-05-08 09:05 . 2011-05-08 09:06 -------- d-----w- c:\program files\DAEMON Tools Lite 2011-05-08 09:04 . 2011-05-08 09:08 -------- d-----w- c:\users\Fred\AppData\Roaming\DAEMON Tools Lite 2011-05-08 09:04 . 2011-05-08 09:05 -------- d-----w- c:\programdata\DAEMON Tools Lite 2011-05-02 22:09 . 2011-05-02 22:11 -------- d-----w- c:\users\Fred\AppData\Roaming\acccore 2011-05-02 22:09 . 2011-05-02 22:09 -------- d-----w- c:\users\Fred\AppData\Local\AIM 2011-05-02 22:09 . 2011-05-02 22:09 -------- d-----w- c:\users\Fred\AppData\Local\AOL 2011-05-02 22:09 . 2011-05-02 22:09 -------- d-----w- c:\programdata\AIM 2011-05-02 22:08 . 2011-05-02 22:09 -------- d-----w- c:\program files\AIM 2011-05-02 22:08 . 2011-05-02 22:08 -------- d-----w- c:\program files\Common Files\Software Update Utility 2011-05-02 22:08 . 2011-05-02 22:08 -------- d-----w- c:\program files\Common Files\AOL . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-05-29 07:11 . 2010-05-26 12:43 39984 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2011-05-29 07:11 . 2010-05-26 12:43 22712 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-04-29 14:25 . 2011-04-29 14:25 71008 ----a-r- c:\users\Fred\AppData\Roaming\Microsoft\Installer\{7A9D1CA3-2650-4F82-91BA-5659326D5F11}\VideoConverter5_St_BF4E5749C8A942ACA48E229C02AC7D3D.exe 2011-04-29 14:25 . 2011-04-29 14:25 71008 ----a-r- c:\users\Fred\AppData\Roaming\Microsoft\Installer\{7A9D1CA3-2650-4F82-91BA-5659326D5F11}\ARPPRODUCTICON.exe 2011-04-29 14:25 . 2011-04-29 14:25 357728 ----a-r- c:\users\Fred\AppData\Roaming\Microsoft\Installer\{7A9D1CA3-2650-4F82-91BA-5659326D5F11}\VideoConverter5_St_10EBE4A00F514DB49EA9B218A1E9D3F5.exe 2011-04-29 14:25 . 2011-04-29 14:25 357728 ----a-r- c:\users\Fred\AppData\Roaming\Microsoft\Installer\{7A9D1CA3-2650-4F82-91BA-5659326D5F11}\NewShortcut4_941FA141AAB14924B185046EE8E1BDD9.exe 2011-04-29 14:25 . 2011-04-29 14:25 136544 ----a-r- c:\users\Fred\AppData\Roaming\Microsoft\Installer\{7A9D1CA3-2650-4F82-91BA-5659326D5F11}\VideoConverter5_St_4949825D36F8486CAED8D1FA37A2B641.exe 2011-04-09 16:55 . 2011-04-09 16:55 15453336 ----a-w- c:\windows\system32\xlive.dll 2011-04-09 16:55 . 2011-04-09 16:55 13642904 ----a-w- c:\windows\system32\xlivefnt.dll 2011-04-08 11:28 . 2011-04-08 11:28 41872 ----a-w- c:\windows\system32\xfcodec.dll 2011-03-27 11:34 . 2010-06-10 14:38 234536 ----a-w- c:\windows\system32\PnkBstrB.exe 2011-03-27 11:34 . 2009-04-13 11:08 234536 ----a-w- c:\windows\system32\PnkBstrB.xtr 2011-03-22 16:47 . 2011-03-22 16:47 271280 ----a-w- c:\windows\system32\pdvcodec.dll 2011-03-20 12:47 . 2010-06-10 14:39 138520 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys 2011-03-12 21:55 . 2011-04-27 11:57 876032 ----a-w- c:\windows\system32\XpsPrint.dll 2011-03-11 09:40 . 2010-06-24 10:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2011-03-10 17:03 . 2011-04-14 08:31 1162240 ----a-w- c:\windows\system32\mfc42u.dll 2011-03-10 17:03 . 2011-04-14 08:31 1136640 ----a-w- c:\windows\system32\mfc42.dll 2011-03-03 15:42 . 2011-04-14 08:31 739328 ----a-w- c:\windows\system32\inetcomm.dll 2011-03-03 15:40 . 2011-04-27 11:57 28672 ----a-w- c:\windows\system32\Apphlpdm.dll 2011-03-03 15:40 . 2011-04-27 11:57 173056 ----a-w- c:\windows\apppatch\AcXtrnal.dll 2011-03-03 15:40 . 2011-04-27 11:57 458752 ----a-w- c:\windows\apppatch\AcSpecfc.dll 2011-03-03 15:40 . 2011-04-27 11:57 542720 ----a-w- c:\windows\apppatch\AcLayers.dll 2011-03-03 15:40 . 2011-04-27 11:57 2159616 ----a-w- c:\windows\apppatch\AcGenral.dll 2004-04-14 07:11 . 2004-04-14 07:11 425984 ----a-w- c:\program files\gxl2dx8a.dll 2003-06-16 10:52 . 2003-06-16 10:52 393216 ----a-w- c:\program files\gxl2dx8.dll 2002-07-03 07:21 . 2002-07-03 07:21 61440 ----a-w- c:\program files\GxlBase.dll 2009-07-31 18:06 . 2011-03-04 16:59 89600 ----a-w- c:\program files\mozilla firefox\plugins\Extras.dll 2009-07-31 17:47 . 2011-03-04 16:59 112128 ----a-w- c:\program files\mozilla firefox\plugins\Movies.dll 2011-05-01 09:09 . 2011-04-09 10:09 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1TortoiseNormal] @="{C5994560-53D9-4125-87C9-F193FC689CB2}" [HKEY_CLASSES_ROOT\CLSID\{C5994560-53D9-4125-87C9-F193FC689CB2}] 2010-03-21 07:55 87304 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2TortoiseModified] @="{C5994561-53D9-4125-87C9-F193FC689CB2}" [HKEY_CLASSES_ROOT\CLSID\{C5994561-53D9-4125-87C9-F193FC689CB2}] 2010-03-21 07:55 87304 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\3TortoiseConflict] @="{C5994562-53D9-4125-87C9-F193FC689CB2}" [HKEY_CLASSES_ROOT\CLSID\{C5994562-53D9-4125-87C9-F193FC689CB2}] 2010-03-21 07:55 87304 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\4TortoiseLocked] @="{C5994563-53D9-4125-87C9-F193FC689CB2}" [HKEY_CLASSES_ROOT\CLSID\{C5994563-53D9-4125-87C9-F193FC689CB2}] 2010-03-21 07:55 87304 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\5TortoiseReadOnly] @="{C5994564-53D9-4125-87C9-F193FC689CB2}" [HKEY_CLASSES_ROOT\CLSID\{C5994564-53D9-4125-87C9-F193FC689CB2}] 2010-03-21 07:55 87304 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\6TortoiseDeleted] @="{C5994565-53D9-4125-87C9-F193FC689CB2}" [HKEY_CLASSES_ROOT\CLSID\{C5994565-53D9-4125-87C9-F193FC689CB2}] 2010-03-21 07:55 87304 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\7TortoiseAdded] @="{C5994566-53D9-4125-87C9-F193FC689CB2}" [HKEY_CLASSES_ROOT\CLSID\{C5994566-53D9-4125-87C9-F193FC689CB2}] 2010-03-21 07:55 87304 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\8TortoiseIgnored] @="{C5994567-53D9-4125-87C9-F193FC689CB2}" [HKEY_CLASSES_ROOT\CLSID\{C5994567-53D9-4125-87C9-F193FC689CB2}] 2010-03-21 07:55 87304 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\9TortoiseUnversioned] @="{C5994568-53D9-4125-87C9-F193FC689CB2}" [HKEY_CLASSES_ROOT\CLSID\{C5994568-53D9-4125-87C9-F193FC689CB2}] 2010-03-21 07:55 87304 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-11-10 4240760] "Orb"="c:\program files\Winamp Remote\bin\OrbTray.exe" [2008-04-01 507904] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952] "igndlm.exe"="c:\program files\Download Manager\DLM.exe" [2009-10-27 1103216] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-04-25 1049896] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-03-08 40048] "ArcadeDeluxeAgent"="c:\program files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" [2008-04-10 147456] "CLMLServer"="c:\program files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe" [2008-04-10 167936] "PlayMovie"="c:\program files\Acer Arcade Deluxe\PlayMovie\PMVService.exe" [2008-04-18 167936] "RtHDVCpl"="RtHDVCpl.exe" [2008-06-13 6183456] "PLFSetI"="c:\windows\PLFSetI.exe" [2007-10-23 200704] "LManager"="c:\progra~1\LAUNCH~1\LManager.exe" [2008-07-25 809480] "ePower_DMC"="c:\program files\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2008-06-11 409600] "WarReg_PopUp"="c:\program files\Acer\WR_PopUp\WarReg_PopUp.exe" [2008-01-29 303104] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-01-05 413696] "LifeCam"="c:\program files\Microsoft LifeCam\LifeExp.exe" [2007-05-17 279912] "VX1000"="c:\windows\vVX1000.exe" [2007-04-10 709992] "AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712] "Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2011-05-29 1047656] "Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2009-06-17 55824] "amd_dc_opt"="c:\program files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824] "avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2010-12-31 3395600] "NetFxUpdate_v1.1.4322"="c:\windows\Microsoft.NET\Framework\v1.1.4322\netfxupdate.exe" [2004-08-10 106496] "Skytel"="Skytel.exe" [2007-11-21 1826816] "Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2011-05-29 1047656] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-10-15 137752] "Persistence"="c:\windows\system32\igfxpers.exe" [2010-10-15 170520] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064] . c:\users\Fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ OneNote 2007 Schermopname en Snel starten.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Logitech SetPoint.lnk - d:\program files\Logitech\SetPoint\SetPoint.exe [2010-7-2 813584] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) "EnableLinkedConnections"= 1 (0x1) . [hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks] "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824] . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon] 2009-09-03 13:21 548352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.dll . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SolutoService] @="Service" . [HKLM\~\startupfolder\C:^Users^Fred^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Xfire.lnk] path=c:\users\Fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Xfire.lnk backup=c:\windows\pss\Xfire.lnk.Startup backupExtension=.Startup . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] 2010-04-06 03:28 26102056 ----a-r- c:\program files\Skype\Phone\Skype.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent] 2008-08-03 23:02 36352 ----a-w- c:\program files\Winamp\winampa.exe . R2 123FlashChatServer8.1;123FlashChatServer8.1;d:\progra~1\TopCMM\123FLA~1.1\server\fcserver.exe [2010-11-04 162968] R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 gupdate;Google Updateservice (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-03-02 135664] R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2008-04-04 131072] R3 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe [2008-01-21 21504] R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\b57nd60x.sys [2008-01-21 179712] R3 Bulk;HDJBulk;c:\windows\system32\Drivers\HDJBulk.sys [2011-03-15 159232] R3 BUNAgentSvc;NTI Backup Now 5 Agent Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [2008-03-03 16384] R3 cpuz130;cpuz130;c:\users\Fred\AppData\Local\Temp\cpuz130\cpuz_x32.sys [x] R3 cpuz135;cpuz135;c:\users\Fred\AppData\Local\Temp\cpuz135\cpuz135_x32.sys [x] R3 Dyyno Launcher;Dyyno Service;c:\program files\Dyyno\Dyyno Broadcaster\launcherd.exe [2010-09-11 415072] R3 FMS;Flash Media Server (FMS);c:\program files\Adobe\Flash Media Server 3\FMSMaster.exe [2009-03-17 2297856] R3 FMSAdmin;Flash Media Administration Server;c:\program files\Adobe\Flash Media Server 3\FMSAdmin.exe [2009-03-17 2514944] R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [2011-03-01 130976] R3 GGSAFERDriver;GGSAFER Driver;c:\program files\Garena\safedrv.sys [x] R3 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2010-03-02 135664] R3 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2011-05-25 1336712] R3 HDJAsioK;HDJAsioK;c:\windows\system32\Drivers\HDJAsioK.sys [2011-03-15 219136] R3 HDJMidi;Hercules DJ Console Mk4 MIDI;c:\windows\system32\DRIVERS\HDJMidi.sys [2011-03-15 209408] R3 HerculesDJControlMP3;Hercules DJ Control MP3;c:\program files\Hercules\Audio\DJ Console Series\drivers\x86\HerculesDJControlMP3.EXE [2011-03-15 17408] R3 HssWd;Hotspot Shield Monitoring Service;c:\program files\Hotspot Shield\bin\hsswd.exe [2010-10-15 326704] R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2011-05-29 39984] R3 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2008-07-11 47128] R3 MusCAudio;MusCAudio;c:\windows\system32\drivers\MusCAudio.sys [2009-05-06 23096] R3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2009-10-20 50704] R3 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2008-04-06 50424] R3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [2010-02-17 12872] R3 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2009-03-30 366936] R3 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [2011-01-27 2253688] R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2011-02-17 111152] R3 VBoxNetFlt;VBoxNetFlt Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [x] R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\DRIVERS\vcsvad.sys [2008-12-10 17792] R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504] R3 wxpSvc;webcamXP Service;c:\program files\wLite\wService.exe [x] R4 ES_4_0_6_Standalone_Service;ES_4_0_6_Standalone_Service;d:\program files\ElectroServer_4_0_6\ES_4_0_6_Standalone_Service.exe [x] R4 RsFx0103;RsFx0103 Driver;c:\windows\system32\DRIVERS\RsFx0103.sys [2009-03-30 239336] R4 Webcam Corp. Service Starter;Webcam Corp. Service Starter;c:\program files\Webcam\Webcam123\dogsvc.exe [x] S0 Soluto;Soluto;c:\windows\system32\DRIVERS\Soluto.sys [2011-05-28 51144] S1 aswSP;aswSP; [x] S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-05-08 218688] S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2010-02-17 12872] S1 SAS***IL;SAS***IL;c:\program files\SUPERAntiSpyware\SAS***IL.SYS [2010-02-17 66632] S2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};{49DE1C67-83F8-4102-99E0-C16DCC7EEC796};c:\program files\Acer Arcade Deluxe\PlayMovie\000.fcl [2008-04-18 61424] S2 AcuWVSSchedulerv7;Acunetix WVS Scheduler v7;c:\program files\Acunetix\Web Vulnerability Scanner 8\WVSScheduler7.exe [2010-12-16 675128] S2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7;c:\program files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [2008-09-16 163840] S2 aswFsBlk;aswFsBlk; [x] S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-12-31 51280] S2 BlackfishSQL;BlackfishSQL;d:\program files\Embarcadero\RAD Studio\7.0\bin\BSQLServer.exe [2009-11-18 65536] S2 CLHNService;CLHNService;c:\program files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [2008-01-16 81504] S2 ETService;Empowering Technology Service;c:\program files\Acer\Empowering Technology\Service\ETService.exe [2008-03-21 24576] S2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\Firebird\Firebird_2_1\bin\fbguard.exe [2007-10-16 81920] S2 NAUpdate;Nero Update;c:\program files\Nero\Update\NASvc.exe [2010-05-04 503080] S2 NTIPPKernel;NTIPPKernel;c:\program files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys [2008-01-16 122368] S2 SentinelKeysServer;Sentinel Keys Server;c:\program files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [2007-04-27 316992] S2 SolutoService;Soluto PCGenome Core Service;c:\program files\Soluto\SolutoService.exe [2011-05-28 364576] S2 TeamViewer5;TeamViewer 5;c:\program files\TeamViewer\Version5\TeamViewer_Service.exe [2009-11-27 185640] S3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\Firebird\Firebird_2_1\bin\fbserver.exe [2007-10-16 2711552] S3 libusb0;LibUsb-Win32 - Kernel Driver 11/20/2005, 20051120;c:\windows\system32\DRIVERS\libusb0.sys [2009-07-29 29184] . . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache Akamai REG_MULTI_SZ Akamai . Inhoud van de 'Gedeelde Taken' map . 2011-05-31 c:\windows\Tasks\AWC Startup.job - c:\program files\IObit\Advanced SystemCare 3\AWC.exe [2010-09-22 13:10] . 2011-06-01 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-03-02 21:39] . 2011-06-01 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-03-02 21:39] . 2011-05-30 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2168487559-2406039132-1622176905-1000Core.job - c:\users\Fred\AppData\Local\Google\Update\GoogleUpdate.exe [2009-02-28 19:18] . 2011-06-01 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2168487559-2406039132-1622176905-1000UA.job - c:\users\Fred\AppData\Local\Google\Update\GoogleUpdate.exe [2009-02-28 19:18] . 2011-05-31 c:\windows\Tasks\User_Feed_Synchronization-{F3D90120-6CF6-4032-BDB0-D59BE856F11F}.job - c:\windows\system32\msfeedssync.exe [2011-04-14 04:43] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/webhp?rls=ig mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0813&s=2&o=vp32&d=1208&m=aspire_5735 IE: Download Link Using Mega Manager... - c:\program files\Megaupload\Mega Manager\mm_file.htm IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 IE: Sothink SWF Catcher - c:\program files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm Trusted Zone: internet Trusted Zone: mcafee.com DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} - hxxp://75.144.144.237/activex/AMC.cab FF - ProfilePath - c:\users\Fred\AppData\Roaming\Mozilla\Firefox\Profiles\feit3o1l.default\ FF - prefs.js: keyword.URL - chrome://browser-region/locale/region.properties FF - user.js: yahoo.ytff.general.dontshowhpoffer - true);user_pref(network.protocol-handler.warn-external.dnupdate, false . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2011-06-01 16:52 Windows 6.0.6002 Service Pack 2 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\wxpSvc] "ImagePath"="c:\program files\wLite\wService.exe /startedbyscm:5053B757-40E35B3B-webcamSRV" . [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}] "ImagePath"="\??\c:\program files\Acer Arcade Deluxe\PlayMovie\000.fcl" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_USERS\S-1-5-21-2168487559-2406039132-1622176905-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{02F015E9-6816-E539-6C3A-E5CB43ECB8A6}*] @Allowed: (Read) (RestrictedCode) "iangbnhjflbhnjhbkg"=hex:6a,61,65,64,6d,66,6c,62,66,63,65,61,66,70,6e,6d,70,63, 65,65,00,00 "hahhdhoplkadkkjj"=hex:6b,61,65,64,6d,66,6c,62,65,63,68,6f,61,6f,63,70,61,6b, 62,62,6f,65,00,00 "iabgjohalabohkcheh"=hex:63,61,62,65,6d,68,00,7f "dbchofppjdgjjdiddapkodemaniompdkcdeenpfe"=hex:6a,62,70,64,66,6c,70,69,63,67, 6a,63,61,65,69,6e,6d,66,70,6f,70,6c,6c,6f,66,6e,6d,69,69,6c,6f,62,67,6f,61,\ "jbchofppjdgjjdiddapklcoicejahodhdnifdglcbgchacblfkaj"=hex:6e,62,6f,67,68,6b, 6b,66,6a,65,6a,61,6f,61,68,69,69,61,66,6a,65,62,67,62,64,6d,62,65,62,6e,65,\ . [HKEY_USERS\S-1-5-21-2168487559-2406039132-1622176905-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{9784525D-2F9C-7B23-9CBB-AF7882FE718F}*] "bbigmdhmpdmoefdablcdcaonccehhcdjfggh"=hex:61,61,00,00 "abigmdhmpdmoefdablpcpnlcmephapngbb"=hex:61,61,00,00 . [HKEY_USERS\S-1-5-21-2168487559-2406039132-1622176905-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*] "??"=hex:96,6a,f3,e2,d9,ed,1b,81,c4,84,ab,95,17,57,37,d9,e6,a3,6d,46,bc,13,42, 5e,6f,7f,10,13,b7,68,9d,08,8a,bd,d8,e1,5e,b1,3e,b4,3c,08,43,7e,2b,d9,cb,c6,\ "??"=hex:54,fc,38,d9,29,14,71,ee,e9,11,fe,f7,fc,8f,9f,07 . [HKEY_USERS\S-1-5-21-2168487559-2406039132-1622176905-1000\Software\SecuROM\License information*] "datasecu"=hex:8d,d5,59,6f,6b,f3,43,ce,56,f9,e6,68,ee,55,38,f4,47,8e,78,e2,13, af,f8,2d,51,bf,42,11,e7,2f,1c,a5,13,92,13,66,1e,4d,5f,63,ae,64,90,b9,9a,4c,\ "rkeysecu"=hex:8f,26,1a,45,22,1d,65,14,e2,91,29,a5,d7,fd,47,67 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 "MSCurrentCountry"=dword:000000b5 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . Voltooingstijd: 2011-06-01 16:58:06 ComboFix-quarantined-files.txt 2011-06-01 14:58 ComboFix2.txt 2011-06-01 12:32 . Pre-Run: 36.086.960.128 bytes beschikbaar Post-Run: 35.818.860.544 bytes beschikbaar . Current=1 Default=1 Failed=0 LastKnownGood=11 Sets=1,2,3,4,5,6,7,8,9,11 - - End Of File - - 8B953DCD80CB386BEA3B5CCDAC73E164
-
Beste, Ik heb de stappen uitgevoerd die u mij aangaf en hier is het logje. ComboFix Log: ComboFix 11-05-31.02 - Fred 01/06/2011 13:41:29.1.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.32.1043.18.3000.1445 [GMT 2:00] Gestart vanuit: c:\users\Fred\Desktop\ComboFix.exe AV: avast! Antivirus *Disabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308} SP: avast! Antivirus *Disabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . C:\DFR29F0.tmp C:\LHT1E3A.tmp c:\program files\Hotspot Shield\HssIE\HsSIe.dll c:\users\Fred\AppData\Roaming\.# c:\users\Fred\AppData\Roaming\.#\MBX@115C@1BA2990.### c:\users\Fred\AppData\Roaming\.#\MBX@115C@1BA29C0.### c:\users\Fred\AppData\Roaming\.#\MBX@115C@1BA29F0.### c:\users\Fred\AppData\Roaming\.#\MBX@1628@1B32990.### c:\users\Fred\AppData\Roaming\.#\MBX@1628@1B329C0.### c:\users\Fred\AppData\Roaming\.#\MBX@1628@1B329F0.### c:\users\Fred\AppData\Roaming\.#\MBX@16F0@16F2990.### c:\users\Fred\AppData\Roaming\.#\MBX@16F0@16F29C0.### c:\users\Fred\AppData\Roaming\.#\MBX@16F0@16F29F0.### c:\users\Fred\AppData\Roaming\.#\MBX@C4@1C12990.### c:\users\Fred\AppData\Roaming\.#\MBX@C4@1C129C0.### c:\users\Fred\AppData\Roaming\.#\MBX@C4@1C129F0.### c:\users\Fred\AppData\Roaming\chrtmp c:\users\Fred\AppData\Roaming\Dyyno c:\users\Fred\AppData\Roaming\Dyyno\dgcsrv.xml c:\users\Fred\AppData\Roaming\Dyyno\dyyno.xml c:\windows\system32\BDSShellRes.dllBDSShellRes.dll.mui c:\windows\system32\BDSShellRes140.dllBDSShellRes140.dll.mui c:\windows\system32\BDSShellRes150.dllBDSShellRes150.dll.mui c:\windows\system32\drivers\hwinterface.sys c:\windows\system32\midas.dll c:\windows\system32\winio.vxd D:\install.exe . c:\windows\system32\userinit.exe . . . is geïnfecteerd!! . . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Legacy_hwinterface -------\Service_hwinterface . . (((((((((((((((((((( Bestanden Gemaakt van 2011-05-01 to 2011-06-01 )))))))))))))))))))))))))))))) . . 2011-06-01 12:04 . 2011-06-01 12:23 -------- d-----w- c:\users\Fred\AppData\Local\temp 2011-06-01 12:04 . 2011-06-01 12:04 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-06-01 10:36 . 2011-06-01 10:36 -------- d-----w- c:\users\Fred\AppData\Local\{19B76F85-26AB-4122-88F6-A9F88BDCC8BE} 2011-05-31 19:42 . 2011-05-31 19:42 -------- d-----w- c:\program files\Microsoft XNA 2011-05-31 19:38 . 2011-05-31 19:39 -------- d-----w- c:\program files\Terraria 2011-05-31 18:35 . 2011-05-31 18:35 -------- d-----w- c:\users\Fred\AppData\Roaming\Soluto 2011-05-31 18:15 . 2011-05-28 14:47 51144 ----a-w- c:\windows\system32\drivers\Soluto.sys 2011-05-31 18:15 . 2011-05-31 18:15 -------- d-----w- c:\program files\Soluto 2011-05-31 18:14 . 2011-05-31 18:31 -------- d-----w- c:\programdata\Soluto 2011-05-31 16:06 . 2011-05-31 16:06 -------- d-----w- c:\program files\Speccy 2011-05-31 14:57 . 2011-05-09 20:46 6962000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{2D6ED8FC-1525-4EA5-BA85-5FD8FF2D920C}\mpengine.dll 2011-05-31 14:53 . 2011-05-31 14:54 -------- d-----w- c:\users\Fred\AppData\Local\{CFFB97D6-AE26-45D4-933C-3F470E0E2A4F} 2011-05-31 14:52 . 2011-05-31 14:52 -------- d-----w- c:\program files\LogMeIn Hamachi 2011-05-30 14:58 . 2011-05-30 14:58 -------- d-----w- c:\users\Fred\AppData\Local\{5A0E79AC-3E22-4859-A736-122A09C539FF} 2011-05-29 09:58 . 2011-05-29 21:58 -------- d-----w- c:\users\Fred\AppData\Local\{B1BDBC27-4F28-47D5-90C8-355559F9D8B8} 2011-05-28 09:57 . 2011-05-28 21:58 -------- d-----w- c:\users\Fred\AppData\Local\{0822C6CE-D090-4504-A8BF-BD75BBFB3EFC} 2011-05-27 18:47 . 2011-05-27 18:47 -------- d-----w- c:\program files\VirtualDJ7 2011-05-27 17:42 . 2009-07-14 17:45 38480 ----a-w- c:\windows\system32\drivers\WdfLdr.sys 2011-05-27 17:42 . 2009-07-14 17:45 445008 ----a-w- c:\windows\system32\drivers\Wdf01000.sys 2011-05-27 17:42 . 2011-05-27 17:42 -------- d-----w- c:\users\Fred\{7fee58de-b220-4ac5-88bf-ed83ecd64b0e} 2011-05-27 15:44 . 2011-05-27 15:44 -------- d-----w- c:\users\Fred\AppData\Local\{85A20D1C-9108-42DD-ABA0-9DBDEB6F4B2C} 2011-05-26 14:01 . 2011-05-26 14:01 -------- d-----w- c:\users\Fred\AppData\Local\{1ECCE807-8E5B-4F99-9962-9EED3721008F} 2011-05-25 08:40 . 2011-05-25 20:41 -------- d-----w- c:\users\Fred\AppData\Local\{83CC88D7-190F-4B31-95A2-6C6716481418} 2011-05-24 21:59 . 2011-05-24 22:05 -------- d-----w- c:\users\Fred\AppData\Roaming\.minecraft 2011-05-24 07:24 . 2011-05-24 19:24 -------- d-----w- c:\users\Fred\AppData\Local\{B16D3DF2-E935-4264-9DC6-DBB5BB262896} 2011-05-23 18:12 . 2011-05-31 18:26 -------- d-----w- c:\users\Fred\AppData\Local\LogMeIn Hamachi 2011-05-23 15:09 . 2011-05-23 15:10 -------- d-----w- c:\users\Fred\AppData\Local\{328A2CF4-8F43-4B09-BD19-6788314A2C1B} 2011-05-22 09:41 . 2011-05-22 21:42 -------- d-----w- c:\users\Fred\AppData\Local\{93CE0E85-D298-4482-B46C-C70D421F53CF} 2011-05-21 09:39 . 2011-05-21 21:40 -------- d-----w- c:\users\Fred\AppData\Local\{37BE78A8-1ED2-41D0-971C-5FDB3831FA9A} 2011-05-20 13:51 . 2011-05-20 13:52 -------- d-----w- c:\users\Fred\AppData\Local\{BA0ED427-9458-48F9-948B-63E617DBA12D} 2011-05-19 13:33 . 2011-05-19 13:33 -------- d-----w- c:\users\Fred\AppData\Local\{441C4A5C-36FC-415A-8BC0-D226866DFA79} 2011-05-18 17:44 . 2011-05-18 17:44 -------- d-----w- c:\program files\Minecraft 2011-05-18 11:40 . 2011-05-18 11:40 -------- d-----w- c:\users\Fred\AppData\Local\{0D5A659A-F257-4932-BEAD-3D251EAF9C06} 2011-05-17 14:56 . 2011-05-17 14:56 -------- d-----w- c:\users\Fred\AppData\Local\{8D94D405-12E0-449C-88A8-FB36F09A1B38} 2011-05-16 15:09 . 2011-05-16 15:10 -------- d-----w- c:\users\Fred\AppData\Local\{DCF066C1-573F-480B-B7A1-7BD592343A83} 2011-05-15 10:54 . 2011-05-15 10:54 -------- d-----w- c:\users\Fred\AppData\Local\{A730D1B4-692C-4828-B265-B8BA4943857C} 2011-05-14 22:53 . 2011-05-14 22:53 -------- d-----w- c:\users\Fred\AppData\Local\{CAA259C3-FE7E-454F-8348-B9F1AC661891} 2011-05-14 22:52 . 2011-05-14 22:52 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-05-14 09:30 . 2011-05-14 09:31 -------- d-----w- c:\users\Fred\AppData\Local\{5A78BDFF-3688-4E1D-ACA6-A0E844AD5D28} 2011-05-13 12:54 . 2011-05-13 12:55 -------- d-----w- c:\users\Fred\AppData\Local\{F75A829C-72CF-42F1-B9D9-543F4CA12A03} 2011-05-12 13:49 . 2011-05-12 13:50 -------- d-----w- c:\users\Fred\AppData\Local\{BBD889E1-2079-45A1-8A84-D8A07CE7CF33} 2011-05-11 10:38 . 2011-04-07 12:01 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat 2011-05-11 10:30 . 2011-05-11 10:30 -------- d-----w- c:\users\Fred\AppData\Local\{1B853C27-A99E-4EBF-B6A2-3248C3A607AA} 2011-05-10 14:49 . 2011-05-10 14:49 -------- d-----w- c:\users\Fred\AppData\Local\{639B0E77-6D5E-41D8-90A3-2DF20C7C4F10} 2011-05-09 14:49 . 2011-05-09 14:50 -------- d-----w- c:\users\Fred\AppData\Local\{0F8504F3-2409-4812-9EC4-217F78826ABA} 2011-05-08 21:40 . 2011-05-08 21:41 -------- d-----w- c:\users\Fred\AppData\Local\{56B7679D-F60B-4126-AEEA-61A5CA77EE03} 2011-05-08 09:39 . 2011-05-08 09:40 -------- d-----w- c:\users\Fred\AppData\Local\{D7EA2D66-D1C3-4E0B-8E0F-E8828356CD75} 2011-05-08 09:06 . 2011-05-08 09:06 218688 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys 2011-05-08 09:05 . 2011-05-08 09:06 -------- d-----w- c:\program files\DAEMON Tools Lite 2011-05-08 09:04 . 2011-05-08 09:08 -------- d-----w- c:\users\Fred\AppData\Roaming\DAEMON Tools Lite 2011-05-08 09:04 . 2011-05-08 09:05 -------- d-----w- c:\programdata\DAEMON Tools Lite 2011-05-07 09:38 . 2011-05-07 21:39 -------- d-----w- c:\users\Fred\AppData\Local\{C9B4A96A-D6FF-47B3-8680-41CA661B08B3} 2011-05-06 13:58 . 2011-05-06 13:59 -------- d-----w- c:\users\Fred\AppData\Local\{1123E160-ADEC-43B6-9457-8437D34E4FAB} 2011-05-05 13:56 . 2011-05-05 13:57 -------- d-----w- c:\users\Fred\AppData\Local\{AF760597-D03A-4347-ADAC-648E7C93B774} 2011-05-04 10:42 . 2011-05-04 10:42 -------- d-----w- c:\users\Fred\AppData\Local\{97750EAD-C3EB-464D-BE67-FFD2A2E680EA} 2011-05-03 14:54 . 2011-05-03 14:54 -------- d-----w- c:\users\Fred\AppData\Local\{6C0CB584-2496-4B26-8952-DD90A66FAE6E} 2011-05-02 22:09 . 2011-05-02 22:11 -------- d-----w- c:\users\Fred\AppData\Roaming\acccore 2011-05-02 22:09 . 2011-05-02 22:09 -------- d-----w- c:\users\Fred\AppData\Local\AIM 2011-05-02 22:09 . 2011-05-02 22:09 -------- d-----w- c:\users\Fred\AppData\Local\AOL 2011-05-02 22:09 . 2011-05-02 22:09 -------- d-----w- c:\programdata\AIM 2011-05-02 22:08 . 2011-05-02 22:09 -------- d-----w- c:\program files\AIM 2011-05-02 22:08 . 2011-05-02 22:08 -------- d-----w- c:\program files\Common Files\Software Update Utility 2011-05-02 22:08 . 2011-05-02 22:08 -------- d-----w- c:\program files\Common Files\AOL 2011-05-02 14:58 . 2011-05-02 14:58 -------- d-----w- c:\users\Fred\AppData\Local\{B5E50924-BCE0-4360-AD04-73B03C300591} . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-05-29 07:11 . 2010-05-26 12:43 39984 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2011-05-29 07:11 . 2010-05-26 12:43 22712 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-04-29 14:25 . 2011-04-29 14:25 71008 ----a-r- c:\users\Fred\AppData\Roaming\Microsoft\Installer\{7A9D1CA3-2650-4F82-91BA-5659326D5F11}\VideoConverter5_St_BF4E5749C8A942ACA48E229C02AC7D3D.exe 2011-04-29 14:25 . 2011-04-29 14:25 71008 ----a-r- c:\users\Fred\AppData\Roaming\Microsoft\Installer\{7A9D1CA3-2650-4F82-91BA-5659326D5F11}\ARPPRODUCTICON.exe 2011-04-29 14:25 . 2011-04-29 14:25 357728 ----a-r- c:\users\Fred\AppData\Roaming\Microsoft\Installer\{7A9D1CA3-2650-4F82-91BA-5659326D5F11}\VideoConverter5_St_10EBE4A00F514DB49EA9B218A1E9D3F5.exe 2011-04-29 14:25 . 2011-04-29 14:25 357728 ----a-r- c:\users\Fred\AppData\Roaming\Microsoft\Installer\{7A9D1CA3-2650-4F82-91BA-5659326D5F11}\NewShortcut4_941FA141AAB14924B185046EE8E1BDD9.exe 2011-04-29 14:25 . 2011-04-29 14:25 136544 ----a-r- c:\users\Fred\AppData\Roaming\Microsoft\Installer\{7A9D1CA3-2650-4F82-91BA-5659326D5F11}\VideoConverter5_St_4949825D36F8486CAED8D1FA37A2B641.exe 2011-04-09 16:55 . 2011-04-09 16:55 15453336 ----a-w- c:\windows\system32\xlive.dll 2011-04-09 16:55 . 2011-04-09 16:55 13642904 ----a-w- c:\windows\system32\xlivefnt.dll 2011-04-08 11:28 . 2011-04-08 11:28 41872 ----a-w- c:\windows\system32\xfcodec.dll 2011-03-27 11:34 . 2010-06-10 14:38 234536 ----a-w- c:\windows\system32\PnkBstrB.exe 2011-03-27 11:34 . 2009-04-13 11:08 234536 ----a-w- c:\windows\system32\PnkBstrB.xtr 2011-03-22 16:47 . 2011-03-22 16:47 271280 ----a-w- c:\windows\system32\pdvcodec.dll 2011-03-20 12:47 . 2010-06-10 14:39 138520 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys 2011-03-12 21:55 . 2011-04-27 11:57 876032 ----a-w- c:\windows\system32\XpsPrint.dll 2011-03-11 09:40 . 2010-06-24 10:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2011-03-10 17:03 . 2011-04-14 08:31 1162240 ----a-w- c:\windows\system32\mfc42u.dll 2011-03-10 17:03 . 2011-04-14 08:31 1136640 ----a-w- c:\windows\system32\mfc42.dll 2011-03-03 15:42 . 2011-04-14 08:31 739328 ----a-w- c:\windows\system32\inetcomm.dll 2011-03-03 15:40 . 2011-04-27 11:57 28672 ----a-w- c:\windows\system32\Apphlpdm.dll 2011-03-03 15:40 . 2011-04-27 11:57 173056 ----a-w- c:\windows\apppatch\AcXtrnal.dll 2011-03-03 15:40 . 2011-04-27 11:57 458752 ----a-w- c:\windows\apppatch\AcSpecfc.dll 2011-03-03 15:40 . 2011-04-27 11:57 542720 ----a-w- c:\windows\apppatch\AcLayers.dll 2011-03-03 15:40 . 2011-04-27 11:57 2159616 ----a-w- c:\windows\apppatch\AcGenral.dll 2011-03-03 13:35 . 2011-04-27 11:57 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll 2011-03-03 13:25 . 2011-04-14 08:31 2041856 ----a-w- c:\windows\system32\win32k.sys 2004-04-14 07:11 . 2004-04-14 07:11 425984 ----a-w- c:\program files\gxl2dx8a.dll 2003-06-16 10:52 . 2003-06-16 10:52 393216 ----a-w- c:\program files\gxl2dx8.dll 2002-07-03 07:21 . 2002-07-03 07:21 61440 ----a-w- c:\program files\GxlBase.dll 2009-07-31 18:06 . 2011-03-04 16:59 89600 ----a-w- c:\program files\mozilla firefox\plugins\Extras.dll 2009-07-31 17:47 . 2011-03-04 16:59 112128 ----a-w- c:\program files\mozilla firefox\plugins\Movies.dll 2011-05-01 09:09 . 2011-04-09 10:09 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1TortoiseNormal] @="{C5994560-53D9-4125-87C9-F193FC689CB2}" [HKEY_CLASSES_ROOT\CLSID\{C5994560-53D9-4125-87C9-F193FC689CB2}] 2010-03-21 07:55 87304 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2TortoiseModified] @="{C5994561-53D9-4125-87C9-F193FC689CB2}" [HKEY_CLASSES_ROOT\CLSID\{C5994561-53D9-4125-87C9-F193FC689CB2}] 2010-03-21 07:55 87304 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\3TortoiseConflict] @="{C5994562-53D9-4125-87C9-F193FC689CB2}" [HKEY_CLASSES_ROOT\CLSID\{C5994562-53D9-4125-87C9-F193FC689CB2}] 2010-03-21 07:55 87304 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\4TortoiseLocked] @="{C5994563-53D9-4125-87C9-F193FC689CB2}" [HKEY_CLASSES_ROOT\CLSID\{C5994563-53D9-4125-87C9-F193FC689CB2}] 2010-03-21 07:55 87304 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\5TortoiseReadOnly] @="{C5994564-53D9-4125-87C9-F193FC689CB2}" [HKEY_CLASSES_ROOT\CLSID\{C5994564-53D9-4125-87C9-F193FC689CB2}] 2010-03-21 07:55 87304 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\6TortoiseDeleted] @="{C5994565-53D9-4125-87C9-F193FC689CB2}" [HKEY_CLASSES_ROOT\CLSID\{C5994565-53D9-4125-87C9-F193FC689CB2}] 2010-03-21 07:55 87304 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\7TortoiseAdded] @="{C5994566-53D9-4125-87C9-F193FC689CB2}" [HKEY_CLASSES_ROOT\CLSID\{C5994566-53D9-4125-87C9-F193FC689CB2}] 2010-03-21 07:55 87304 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\8TortoiseIgnored] @="{C5994567-53D9-4125-87C9-F193FC689CB2}" [HKEY_CLASSES_ROOT\CLSID\{C5994567-53D9-4125-87C9-F193FC689CB2}] 2010-03-21 07:55 87304 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\9TortoiseUnversioned] @="{C5994568-53D9-4125-87C9-F193FC689CB2}" [HKEY_CLASSES_ROOT\CLSID\{C5994568-53D9-4125-87C9-F193FC689CB2}] 2010-03-21 07:55 87304 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-11-10 4240760] "Orb"="c:\program files\Winamp Remote\bin\OrbTray.exe" [2008-04-01 507904] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952] "igndlm.exe"="c:\program files\Download Manager\DLM.exe" [2009-10-27 1103216] "Google Update"="c:\users\Fred\AppData\Local\Google\Update\GoogleUpdate.exe" [2009-02-28 133104] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-04-25 1049896] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-03-08 40048] "ArcadeDeluxeAgent"="c:\program files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" [2008-04-10 147456] "CLMLServer"="c:\program files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe" [2008-04-10 167936] "PlayMovie"="c:\program files\Acer Arcade Deluxe\PlayMovie\PMVService.exe" [2008-04-18 167936] "RtHDVCpl"="RtHDVCpl.exe" [2008-06-13 6183456] "PLFSetI"="c:\windows\PLFSetI.exe" [2007-10-23 200704] "LManager"="c:\progra~1\LAUNCH~1\LManager.exe" [2008-07-25 809480] "ePower_DMC"="c:\program files\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2008-06-11 409600] "WarReg_PopUp"="c:\program files\Acer\WR_PopUp\WarReg_PopUp.exe" [2008-01-29 303104] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-01-05 413696] "LifeCam"="c:\program files\Microsoft LifeCam\LifeExp.exe" [2007-05-17 279912] "VX1000"="c:\windows\vVX1000.exe" [2007-04-10 709992] "AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712] "Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2011-05-29 1047656] "Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2009-06-17 55824] "amd_dc_opt"="c:\program files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824] "avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2010-12-31 3395600] "NetFxUpdate_v1.1.4322"="c:\windows\Microsoft.NET\Framework\v1.1.4322\netfxupdate.exe" [2004-08-10 106496] "Skytel"="Skytel.exe" [2007-11-21 1826816] "Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2011-05-29 1047656] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-10-15 137752] "Persistence"="c:\windows\system32\igfxpers.exe" [2010-10-15 170520] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-10-29 249064] . c:\users\Fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ OneNote 2007 Schermopname en Snel starten.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Logitech SetPoint.lnk - d:\program files\Logitech\SetPoint\SetPoint.exe [2010-7-2 813584] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) "EnableLinkedConnections"= 1 (0x1) . [hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks] "{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824] . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon] 2009-09-03 13:21 548352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.dll . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SolutoService] @="Service" . [HKLM\~\startupfolder\C:^Users^Fred^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Xfire.lnk] path=c:\users\Fred\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Xfire.lnk backup=c:\windows\pss\Xfire.lnk.Startup backupExtension=.Startup . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] 2010-04-06 03:28 26102056 ----a-r- c:\program files\Skype\Phone\Skype.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent] 2008-08-03 23:02 36352 ----a-w- c:\program files\Winamp\winampa.exe . R2 123FlashChatServer8.1;123FlashChatServer8.1;d:\progra~1\TopCMM\123FLA~1.1\server\fcserver.exe [2010-11-04 162968] R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 gupdate;Google Updateservice (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-03-02 135664] R3 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe [2008-01-21 21504] R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\b57nd60x.sys [2008-01-21 179712] R3 Bulk;HDJBulk;c:\windows\system32\Drivers\HDJBulk.sys [2011-03-15 159232] R3 BUNAgentSvc;NTI Backup Now 5 Agent Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe [2008-03-03 16384] R3 cpuz130;cpuz130;c:\users\Fred\AppData\Local\Temp\cpuz130\cpuz_x32.sys [x] R3 Dyyno Launcher;Dyyno Service;c:\program files\Dyyno\Dyyno Broadcaster\launcherd.exe [2010-09-11 415072] R3 FMS;Flash Media Server (FMS);c:\program files\Adobe\Flash Media Server 3\FMSMaster.exe [2009-03-17 2297856] R3 FMSAdmin;Flash Media Administration Server;c:\program files\Adobe\Flash Media Server 3\FMSAdmin.exe [2009-03-17 2514944] R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [2011-03-01 130976] R3 GGSAFERDriver;GGSAFER Driver;c:\program files\Garena\safedrv.sys [x] R3 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2010-03-02 135664] R3 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2011-05-25 1336712] R3 HDJAsioK;HDJAsioK;c:\windows\system32\Drivers\HDJAsioK.sys [2011-03-15 219136] R3 HDJMidi;Hercules DJ Console Mk4 MIDI;c:\windows\system32\DRIVERS\HDJMidi.sys [2011-03-15 209408] R3 HerculesDJControlMP3;Hercules DJ Control MP3;c:\program files\Hercules\Audio\DJ Console Series\drivers\x86\HerculesDJControlMP3.EXE [2011-03-15 17408] R3 HssWd;Hotspot Shield Monitoring Service;c:\program files\Hotspot Shield\bin\hsswd.exe [2010-10-15 326704] R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2011-05-29 39984] R3 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2008-07-11 47128] R3 MusCAudio;MusCAudio;c:\windows\system32\drivers\MusCAudio.sys [2009-05-06 23096] R3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2009-10-20 50704] R3 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2008-04-06 50424] R3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [2010-02-17 12872] R3 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2009-03-30 366936] R3 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [2011-01-27 2253688] R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2011-02-17 111152] R3 VBoxNetFlt;VBoxNetFlt Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [x] R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\DRIVERS\vcsvad.sys [2008-12-10 17792] R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504] R3 wxpSvc;webcamXP Service;c:\program files\wLite\wService.exe [x] R4 ES_4_0_6_Standalone_Service;ES_4_0_6_Standalone_Service;d:\program files\ElectroServer_4_0_6\ES_4_0_6_Standalone_Service.exe [x] R4 RsFx0103;RsFx0103 Driver;c:\windows\system32\DRIVERS\RsFx0103.sys [2009-03-30 239336] R4 Webcam Corp. Service Starter;Webcam Corp. Service Starter;c:\program files\Webcam\Webcam123\dogsvc.exe [x] S0 Soluto;Soluto;c:\windows\system32\DRIVERS\Soluto.sys [2011-05-28 51144] S1 aswSP;aswSP; [x] S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-05-08 218688] S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2010-02-17 12872] S1 SAS***IL;SAS***IL;c:\program files\SUPERAntiSpyware\SAS***IL.SYS [2010-02-17 66632] S2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};{49DE1C67-83F8-4102-99E0-C16DCC7EEC796};c:\program files\Acer Arcade Deluxe\PlayMovie\000.fcl [2008-04-18 61424] S2 AcuWVSSchedulerv7;Acunetix WVS Scheduler v7;c:\program files\Acunetix\Web Vulnerability Scanner 8\WVSScheduler7.exe [2010-12-16 675128] S2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7;c:\program files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [2008-09-16 163840] S2 aswFsBlk;aswFsBlk; [x] S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-12-31 51280] S2 BlackfishSQL;BlackfishSQL;d:\program files\Embarcadero\RAD Studio\7.0\bin\BSQLServer.exe [2009-11-18 65536] S2 CLHNService;CLHNService;c:\program files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [2008-01-16 81504] S2 ETService;Empowering Technology Service;c:\program files\Acer\Empowering Technology\Service\ETService.exe [2008-03-21 24576] S2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\Firebird\Firebird_2_1\bin\fbguard.exe [2007-10-16 81920] S2 NAUpdate;Nero Update;c:\program files\Nero\Update\NASvc.exe [2010-05-04 503080] S2 NTIPPKernel;NTIPPKernel;c:\program files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\NTIPPKernel.sys [2008-01-16 122368] S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2008-04-04 131072] S2 SentinelKeysServer;Sentinel Keys Server;c:\program files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe [2007-04-27 316992] S2 SolutoService;Soluto PCGenome Core Service;c:\program files\Soluto\SolutoService.exe [2011-05-28 364576] S2 TeamViewer5;TeamViewer 5;c:\program files\TeamViewer\Version5\TeamViewer_Service.exe [2009-11-27 185640] S3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\Firebird\Firebird_2_1\bin\fbserver.exe [2007-10-16 2711552] S3 libusb0;LibUsb-Win32 - Kernel Driver 11/20/2005, 20051120;c:\windows\system32\DRIVERS\libusb0.sys [2009-07-29 29184] . . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache Akamai REG_MULTI_SZ Akamai . Inhoud van de 'Gedeelde Taken' map . 2011-05-31 c:\windows\Tasks\AWC Startup.job - c:\program files\IObit\Advanced SystemCare 3\AWC.exe [2010-09-22 13:10] . 2011-06-01 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-03-02 21:39] . 2011-06-01 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-03-02 21:39] . 2011-05-30 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2168487559-2406039132-1622176905-1000Core.job - c:\users\Fred\AppData\Local\Google\Update\GoogleUpdate.exe [2009-02-28 19:18] . 2011-06-01 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2168487559-2406039132-1622176905-1000UA.job - c:\users\Fred\AppData\Local\Google\Update\GoogleUpdate.exe [2009-02-28 19:18] . 2011-05-31 c:\windows\Tasks\User_Feed_Synchronization-{F3D90120-6CF6-4032-BDB0-D59BE856F11F}.job - c:\windows\system32\msfeedssync.exe [2011-04-14 04:43] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/webhp?rls=ig mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0813&s=2&o=vp32&d=1208&m=aspire_5735 IE: Download Link Using Mega Manager... - c:\program files\Megaupload\Mega Manager\mm_file.htm IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 IE: Sothink SWF Catcher - c:\program files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm Trusted Zone: internet Trusted Zone: mcafee.com DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} - hxxp://75.144.144.237/activex/AMC.cab FF - ProfilePath - c:\users\Fred\AppData\Roaming\Mozilla\Firefox\Profiles\feit3o1l.default\ FF - prefs.js: keyword.URL - chrome://browser-region/locale/region.properties FF - user.js: yahoo.ytff.general.dontshowhpoffer - true);user_pref(network.protocol-handler.warn-external.dnupdate, false . - - - - ORPHANS VERWIJDERD - - - - . WebBrowser-{A057A204-BACC-4D26-C39E-35F1D2A32EC8} - (no file) WebBrowser-{3041D03E-FD4B-44E0-B742-2D9B88305F98} - (no file) WebBrowser-{BA14329E-9550-4989-B3F2-9732E92D17CC} - (no file) WebBrowser-{A8864317-E18B-4292-99D9-E6E65AB905D3} - (no file) AddRemove-I-Doser v4 - c:\program files\IDoser v4\Uninstal.exe AddRemove-UnityWebPlayer - c:\users\Fred\AppData\Local\Unity\WebPlayer\Uninstall.exe AddRemove-URS Dancing Queen Simulation - c:\program files\URS Dancing Queen Simulation\Uninstal.exe AddRemove-URS Maximum Speed (Deinert & Kracke Gbr) - c:\program files\URS Maximum Speed\Uninstal.exe AddRemove-v0gelz m0d GTA samp-hacks - c:\users\Fred\Documents\SAMP_hack_no-pass\Uninstal.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2011-06-01 14:23 Windows 6.0.6002 Service Pack 2 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\wxpSvc] "ImagePath"="c:\program files\wLite\wService.exe /startedbyscm:5053B757-40E35B3B-webcamSRV" . [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}] "ImagePath"="\??\c:\program files\Acer Arcade Deluxe\PlayMovie\000.fcl" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_USERS\S-1-5-21-2168487559-2406039132-1622176905-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{02F015E9-6816-E539-6C3A-E5CB43ECB8A6}*] @Allowed: (Read) (RestrictedCode) "iangbnhjflbhnjhbkg"=hex:6a,61,65,64,6d,66,6c,62,66,63,65,61,66,70,6e,6d,70,63, 65,65,00,00 "hahhdhoplkadkkjj"=hex:6b,61,65,64,6d,66,6c,62,65,63,68,6f,61,6f,63,70,61,6b, 62,62,6f,65,00,00 "iabgjohalabohkcheh"=hex:63,61,62,65,6d,68,00,7f "dbchofppjdgjjdiddapkodemaniompdkcdeenpfe"=hex:6a,62,70,64,66,6c,70,69,63,67, 6a,63,61,65,69,6e,6d,66,70,6f,70,6c,6c,6f,66,6e,6d,69,69,6c,6f,62,67,6f,61,\ "jbchofppjdgjjdiddapklcoicejahodhdnifdglcbgchacblfkaj"=hex:6e,62,6f,67,68,6b, 6b,66,6a,65,6a,61,6f,61,68,69,69,61,66,6a,65,62,67,62,64,6d,62,65,62,6e,65,\ . [HKEY_USERS\S-1-5-21-2168487559-2406039132-1622176905-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{9784525D-2F9C-7B23-9CBB-AF7882FE718F}*] "bbigmdhmpdmoefdablcdcaonccehhcdjfggh"=hex:61,61,00,00 "abigmdhmpdmoefdablpcpnlcmephapngbb"=hex:61,61,00,00 . [HKEY_USERS\S-1-5-21-2168487559-2406039132-1622176905-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*] "??"=hex:96,6a,f3,e2,d9,ed,1b,81,c4,84,ab,95,17,57,37,d9,e6,a3,6d,46,bc,13,42, 5e,6f,7f,10,13,b7,68,9d,08,8a,bd,d8,e1,5e,b1,3e,b4,3c,08,43,7e,2b,d9,cb,c6,\ "??"=hex:54,fc,38,d9,29,14,71,ee,e9,11,fe,f7,fc,8f,9f,07 . [HKEY_USERS\S-1-5-21-2168487559-2406039132-1622176905-1000\Software\SecuROM\License information*] "datasecu"=hex:8d,d5,59,6f,6b,f3,43,ce,56,f9,e6,68,ee,55,38,f4,47,8e,78,e2,13, af,f8,2d,51,bf,42,11,e7,2f,1c,a5,13,92,13,66,1e,4d,5f,63,ae,64,90,b9,9a,4c,\ "rkeysecu"=hex:8f,26,1a,45,22,1d,65,14,e2,91,29,a5,d7,fd,47,67 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 "MSCurrentCountry"=dword:000000b5 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . --------------------- DLLs Geladen Onder Lopende Processen --------------------- . - - - - - - - > 'Explorer.exe'(3168) c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll c:\program files\TortoiseSVN\bin\TortoiseStub.dll c:\program files\TortoiseSVN\bin\TortoiseSVN.dll c:\program files\TortoiseSVN\bin\intl3_tsvn.dll c:\program files\Common Files\Adobe\Adobe Drive CS4\AdobeDriveCS4_NP.dll . ------------------------ Andere Aktieve Processen ------------------------ . c:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe c:\program files\Alwil Software\Avast5\AvastSvc.exe c:\program files\Common Files\LightScribe\LSSrvc.exe c:\program files\Microsoft LifeCam\MSCamS32.exe c:\windows\system32\PnkBstrA.exe c:\program files\Cyberlink\Shared files\RichVideo.exe c:\program files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe c:\windows\system32\wbem\unsecapp.exe c:\program files\Soluto\soluto.exe c:\windows\system32\conime.exe c:\windows\system32\igfxsrvc.exe c:\program files\TortoiseSVN\bin\TSVNCache.exe . ************************************************************************** . Voltooingstijd: 2011-06-01 14:32:40 - machine werd herstart ComboFix-quarantined-files.txt 2011-06-01 12:32 . Pre-Run: 35.020.296.192 bytes beschikbaar Post-Run: 35.804.749.824 bytes beschikbaar . Current=1 Default=1 Failed=0 LastKnownGood=11 Sets=1,2,3,4,5,6,7,8,9,11 - - End Of File - - 33EB91E80EBC24A091B8FD060B6256D9
-
Ik heb deze items verwijderd zoals je me aangegeven hebt. Veel sneller is de computer helaas niet geworden, maar er is toch al een verschilletje met voorheen. Is er verder nog iets dat ik kan doen buiten een defragmentatie? Een defragmentatie laat ik elke week uitvoeren, dus daar is geen probleem mee volgens mij.
-
Hallo, Ik heb de stappen uitgevoerd die u mij aangaf. Hier zijn de resultaten: Ik heb wel gemerkt dat HijackThis de aangevinkte bestanden toch niet verwijdert heeft. MBAM: Malwarebytes' Anti-Malware 1.51.0.1200 Malwarebytes : Free anti-malware, anti-virus and spyware removal download Databaseversie: 6736 Windows 6.0.6002 Service Pack 2 Internet Explorer 8.0.6001.19048 31/05/2011 23:49:03 mbam-log-2011-05-31 (23-49-03).txt Scantype: Snelle scan Objecten gescand: 189759 Verstreken tijd: 11 minuut/minuten, 27 seconde(n) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 1 Registerwaarden geïnfecteerd: 0 Registerdata geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 2 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registersleutels geïnfecteerd: HKEY_CURRENT_USER\Software\DC3_FEXEC (Malware.Trace) -> Quarantined and deleted successfully. Registerwaarden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerdata geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Mappen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Bestanden geïnfecteerd: c:\Users\Fred\AppData\Roaming\microsoft\Run.exe (Trojan.Agent.Gen) -> Quarantined and deleted successfully. c:\svchost.exe (Trojan.Agent) -> Quarantined and deleted successfully. HijackThis: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 23:50:20, on 31/05/2011 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.19048) Boot mode: Normal Running processes: C:\Program Files\Soluto\soluto.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Program Files\TortoiseSVN\bin\TSVNCache.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe C:\Windows\system32\igfxsrvc.exe C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe C:\Windows\RtHDVCpl.exe C:\Windows\PLFSetI.exe C:\Users\Fred\AppData\Local\Temp\RtkBtMnt.exe C:\Windows\system32\conime.exe C:\Program Files\Launch Manager\LManager.exe C:\Windows\vVX1000.exe C:\Program Files\Alwil Software\Avast5\AvastUI.exe C:\Windows\system32\igfxext.exe C:\Windows\system32\igfxsrvc.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Windows\ehome\ehtray.exe D:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE C:\Windows\ehome\ehmsas.exe C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE C:\Program Files\Speccy\Speccy.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Program Files\TortoiseSVN\bin\TSVNCache.exe C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe C:\Windows\system32\NOTEPAD.EXE D:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = iGoogle Redirect R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = O1 - Hosts: ::1 localhost O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\3.1.415.1646\swg.dll O2 - BHO: MegaIEMn - {bf00e119-21a3-4fd1-b178-3b8537e75c92} - C:\Program Files\Megaupload\Mega Manager\MegaIEMn.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Hotspot Shield Class - {F9E4A054-E9B1-4BC3-83A3-76A1AE736170} - C:\Program Files\Hotspot Shield\HssIE\HssIE.dll O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn\yt.dll (file missing) O3 - Toolbar: (no name) - {a8864317-e18b-4292-99d9-e6e65ab905d3} - (no file) O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "c:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [ArcadeDeluxeAgent] "C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe" O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\Acer Arcade Deluxe\PlayMovie\PMVService.exe" O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [PLFSetI] C:\Windows\PLFSetI.exe O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe O4 - HKLM\..\Run: [ePower_DMC] C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe O4 - HKLM\..\Run: [WarReg_PopUp] C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [LifeCam] "C:\Program Files\Microsoft LifeCam\LifeExp.exe" O4 - HKLM\..\Run: [VX1000] C:\Windows\vVX1000.exe O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files\AMD\Dual-Core Optimizer\amd_dc_opt.exe O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui O4 - HKLM\..\Run: [NetFxUpdate_v1.1.4322] "C:\Windows\Microsoft.NET\Framework\v1.1.4322\netfxupdate.exe" 1 v1.1.4322 GAC + NI NID O4 - HKLM\..\Run: [skytel] Skytel.exe O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [Orb] "C:\Program Files\Winamp Remote\bin\OrbTray.exe" /background O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [igndlm.exe] C:\Program Files\Download Manager\DLM.exe /windowsstart /startifwork O4 - HKCU\..\Run: [Google Update] "C:\Users\Fred\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: Logitech SetPoint.lnk = D:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: Download Link Using Mega Manager... - C:\Program Files\Megaupload\Mega Manager\mm_file.htm O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Sothink SWF Catcher - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm O9 - Extra 'Tools' menuitem: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm O13 - Gopher Prefix: O15 - Trusted Zone: http://*.mcafee.com O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} - http://75.144.144.237/activex/AMC.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\VHScrCap\VHToolkit\Skype4COM.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll O23 - Service: 123FlashChatServer8.1 - TopCMM Software Corp. - D:\PROGRA~1\TopCMM\123FLA~1.1\server\fcserver.exe O23 - Service: Acunetix WVS Scheduler v7 (AcuWVSSchedulerv7) - Acunetix Ltd. - C:\Program Files\Acunetix\Web Vulnerability Scanner 8\WVSScheduler7.exe O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - C:\Program Files\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe O23 - Service: BlackfishSQL - CodeGear - D:\Program Files\Embarcadero\RAD Studio\7.0\bin\BSQLServer.exe O23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\Client\Agentsvc.exe O23 - Service: CLHNService - Unknown owner - C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe O23 - Service: Dyyno Service (Dyyno Launcher) - Unknown owner - C:\Program Files\Dyyno\Dyyno Broadcaster\launcherd.exe O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe O23 - Service: Firebird Guardian - DefaultInstance (FirebirdGuardianDefaultInstance) - FirebirdSQL Project - C:\Program Files\Firebird\Firebird_2_1\bin\fbguard.exe O23 - Service: Firebird Server - DefaultInstance (FirebirdServerDefaultInstance) - FirebirdSQL Project - C:\Program Files\Firebird\Firebird_2_1\bin\fbserver.exe O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Flash Media Server (FMS) (FMS) - Adobe Systems Incorporated. - C:\Program Files\Adobe\Flash Media Server 3\FMSMaster.exe O23 - Service: Flash Media Administration Server (FMSAdmin) - Adobe Systems Incorporated. - C:\Program Files\Adobe\Flash Media Server 3\FMSAdmin.exe O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe O23 - Service: Hercules DJ Control MP3 (HerculesDJControlMP3) - Unknown owner - C:\Program Files\Hercules\Audio\DJ Console Series\drivers\x86\HerculesDJControlMP3.EXE O23 - Service: Hotspot Shield Service (HotspotShieldService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\openvpnas.exe O23 - Service: Hotspot Shield Routing Service (HssSrv) - AnchorFree Inc. - C:\Program Files\Hotspot Shield\HssWPR\hsssrv.exe O23 - Service: Hotspot Shield Tray Service (HssTrayService) - Unknown owner - C:\Program Files\Hotspot Shield\bin\HssTrayService.EXE O23 - Service: Hotspot Shield Monitoring Service (HssWd) - Unknown owner - C:\Program Files\Hotspot Shield\bin\hsswd.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe O23 - Service: Sandboxie Service (SbieSvc) - SANDBOXIE L.T.D - C:\Program Files\Sandboxie\SbieSvc.exe O23 - Service: Sentinel Keys Server (SentinelKeysServer) - SafeNet, Inc. - C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe O23 - Service: Sentinel Protection Server (SentinelProtectionServer) - SafeNet, Inc - C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe O23 - Service: Soluto PCGenome Core Service (SolutoService) - Soluto - C:\Program Files\Soluto\SolutoService.exe O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe O23 - Service: webcamXP Service (wxpSvc) - Unknown owner - C:\Program Files\wLite\wService.exe (file missing) O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe -- End of file - 16564 bytes
