Ga naar inhoud

Internetpagina's laden niet (goed), wel verbonden met internet.

Maikevr

Door Maikevr
in Archief Windows Algemeen

 Delen

Aanbevolen berichten

  • Reacties 29
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Populaire dagen

Beste reacties in dit topic

Populaire dagen

Maikevr Groentje

Maikevr

Geplaatst:
  • Auteur
Geplaatst:

Ja, het is gelukt.

ComboFix 13-05-28.02 - Laptop 28-05-2013 13:42:59.1.4 - x64Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.2934.1671 [GMT 2:00]

Gestart vanuit: c:\users\Laptop\Desktop\ComboFix.exe

AV: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}

AV: Emsisoft Anti-Malware *Disabled/Outdated* {0ADC9F7D-20C1-240F-01E2-43466EBA893A}

AV: Lavasoft Ad-Aware *Disabled/Updated* {445B48C3-0FA4-6B16-8F07-6506F305D800}

FW: Lavasoft Ad-Aware *Disabled* {7C60C9E6-45CB-6A4E-A458-CC330DD69F7B}

SP: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}

SP: Emsisoft Anti-Malware *Disabled/Outdated* {B1BD7E99-06FB-2B81-3B52-7834153DC387}

SP: Lavasoft Ad-Aware *Disabled/Updated* {FF3AA927-299E-6498-B5B7-5E74888292BD}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

* Nieuw herstelpunt werd aangemaakt

.

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\program files (x86)\Naver

c:\program files (x86)\Naver\LINE\amp-dll.dll

c:\program files (x86)\Naver\LINE\CommLib.dll

c:\program files (x86)\Naver\LINE\CommModule.dll

c:\program files (x86)\Naver\LINE\DataModule.dll

c:\program files (x86)\Naver\LINE\dbghelp.dll

c:\program files (x86)\Naver\LINE\Line.exe

c:\program files (x86)\Naver\LINE\LineAppMgr.exe

c:\program files (x86)\Naver\LINE\LineUnInst.exe

c:\program files (x86)\Naver\LINE\LineUpgrader.exe

c:\program files (x86)\Naver\LINE\MediaInfo.dll

c:\program files (x86)\Naver\LINE\Microsoft.VC90.CRT.manifest

c:\program files (x86)\Naver\LINE\msvcp90.dll

c:\program files (x86)\Naver\LINE\msvcr90.dll

c:\program files (x86)\Naver\LINE\NELO.dll

c:\program files (x86)\Naver\LINE\NELO_CrashReporter.exe

c:\program files (x86)\Naver\LINE\README.license

c:\program files (x86)\Naver\LINE\res\locale\en-US\buddy.xml

c:\program files (x86)\Naver\LINE\res\locale\en-US\chatRoom.xml

c:\program files (x86)\Naver\LINE\res\locale\en-US\common.xml

c:\program files (x86)\Naver\LINE\res\locale\en-US\group.xml

c:\program files (x86)\Naver\LINE\res\locale\en-US\invite.xml

c:\program files (x86)\Naver\LINE\res\locale\en-US\login.xml

c:\program files (x86)\Naver\LINE\res\locale\en-US\menu.xml

c:\program files (x86)\Naver\LINE\res\locale\en-US\msgbox.xml

c:\program files (x86)\Naver\LINE\res\locale\en-US\setting.xml

c:\program files (x86)\Naver\LINE\res\locale\en-US\sticker.xml

c:\program files (x86)\Naver\LINE\res\locale\en-US\talk.xml

c:\program files (x86)\Naver\LINE\res\locale\en-US\upgrader.xml

c:\program files (x86)\Naver\LINE\res\locale\en-US\upic.xml

c:\program files (x86)\Naver\LINE\res\locale\en-US\voip.xml

c:\program files (x86)\Naver\LINE\res\locale\ja-JP\buddy.xml

c:\program files (x86)\Naver\LINE\res\locale\ja-JP\chatRoom.xml

c:\program files (x86)\Naver\LINE\res\locale\ja-JP\common.xml

c:\program files (x86)\Naver\LINE\res\locale\ja-JP\group.xml

c:\program files (x86)\Naver\LINE\res\locale\ja-JP\invite.xml

c:\program files (x86)\Naver\LINE\res\locale\ja-JP\login.xml

c:\program files (x86)\Naver\LINE\res\locale\ja-JP\menu.xml

c:\program files (x86)\Naver\LINE\res\locale\ja-JP\msgbox.xml

c:\program files (x86)\Naver\LINE\res\locale\ja-JP\setting.xml

c:\program files (x86)\Naver\LINE\res\locale\ja-JP\sticker.xml

c:\program files (x86)\Naver\LINE\res\locale\ja-JP\talk.xml

c:\program files (x86)\Naver\LINE\res\locale\ja-JP\upgrader.xml

c:\program files (x86)\Naver\LINE\res\locale\ja-JP\upic.xml

c:\program files (x86)\Naver\LINE\res\locale\ja-JP\voip.xml

c:\program files (x86)\Naver\LINE\res\locale\ko-KR\buddy.xml

c:\program files (x86)\Naver\LINE\res\locale\ko-KR\chatRoom.xml

c:\program files (x86)\Naver\LINE\res\locale\ko-KR\common.xml

c:\program files (x86)\Naver\LINE\res\locale\ko-KR\group.xml

c:\program files (x86)\Naver\LINE\res\locale\ko-KR\invite.xml

c:\program files (x86)\Naver\LINE\res\locale\ko-KR\login.xml

c:\program files (x86)\Naver\LINE\res\locale\ko-KR\menu.xml

c:\program files (x86)\Naver\LINE\res\locale\ko-KR\msgbox.xml

c:\program files (x86)\Naver\LINE\res\locale\ko-KR\setting.xml

c:\program files (x86)\Naver\LINE\res\locale\ko-KR\sticker.xml

c:\program files (x86)\Naver\LINE\res\locale\ko-KR\talk.xml

c:\program files (x86)\Naver\LINE\res\locale\ko-KR\upgrader.xml

c:\program files (x86)\Naver\LINE\res\locale\ko-KR\upic.xml

c:\program files (x86)\Naver\LINE\res\locale\ko-KR\voip.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-CN\buddy.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-CN\chatRoom.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-CN\common.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-CN\group.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-CN\invite.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-CN\login.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-CN\menu.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-CN\msgbox.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-CN\setting.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-CN\sticker.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-CN\talk.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-CN\upgrader.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-CN\upic.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-CN\voip.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-TW\buddy.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-TW\chatRoom.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-TW\common.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-TW\group.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-TW\invite.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-TW\login.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-TW\menu.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-TW\msgbox.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-TW\setting.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-TW\sticker.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-TW\talk.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-TW\upgrader.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-TW\upic.xml

c:\program files (x86)\Naver\LINE\res\locale\zh-TW\voip.xml

c:\program files (x86)\Naver\LINE\res\skin\basic\about.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\buddyInfo.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\chatMember.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\chatRoom.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\css\buddyInfo.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\chatMember.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\chatRoom.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\chatRoomMessage.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\common.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\emoji.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\emojiIcon.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\emojiLetter.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\groupMake.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\groupModify.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\invite.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\login.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\loginHelp.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\makeGroup.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\myInfo.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\setting.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\settingBasic.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\settingPrivacy.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\sticker.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\talk.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\talkAddBuddy.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\talkBuddyList.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\talkChatList.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\toast.css

c:\program files (x86)\Naver\LINE\res\skin\basic\css\voip.css

c:\program files (x86)\Naver\LINE\res\skin\basic\emoji.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\emojiIcon.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\emojiLetter.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\groupMake.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\groupModify.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_audio.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_btn_box.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_buddy_bubble_gray.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_buddy_bubble_gray2.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_buddy_image_frame.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_buddy_video.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_call.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_date_bubble.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_img_err.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_layer.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_menu_line.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_more.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_my_bubble_green.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_my_bubble_green2.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_my_bubble_light_green.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_my_image_frame.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_my_video.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_new_buddy.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_sep.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_splitter.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_top.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\bg_video.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\br_btm_l.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\br_btm_m.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\br_btm_r.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\br_line.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\br_top_l.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\br_top_r.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_addblock.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_arrow_down.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_canel.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_chat_type1.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_close.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_emoji.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_file.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_max.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_menu.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_min.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\btn_room_name.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\check_style1.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\check_style2.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\check_style3.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\check_style3_x.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\check_style3_xx.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\flag.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\ico_alarm_off.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\ico_error_sticker.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\ico_fail.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\ico_person.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\icon_voip.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\icon_voip_disable.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\loading.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\loading_small.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\nick_bubble_l.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\nick_bubble_m.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\nick_bubble_r.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\slider_bar.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\slider_thumb.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\chat\thumnail_box.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\bar_01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\bar_02.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\bg_dlg_title.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\br_btm_l.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\br_btm_r.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\br_line.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\br_top_l.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\br_top_r.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\btn_close_01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\btn_close_02.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\btn_system.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\btn_type1.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\btn_type2.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\btn_type3.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\btn_update.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\check_type1.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\checkbox_01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\ico_close.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\ico_dot01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\ico_return.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\icon_clear.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\input_box.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\layer_btn_close.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\layer_btn_close_all.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\layer_btn_close_click.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\layer_btn_close_over.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\layer_btn_search_1.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\Line.ico

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\line_about.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\line_about_btn.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\loading.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\profile_frame.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\spin_down.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\spin_up.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\thumnail_01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\thumnail_02.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\thumnail_03.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\thumnail_04.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\common\thumnail_05.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\bg_tab.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_icon_bg.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_index.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_latest.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_left.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_letter.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_right.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_sticker_arrow1.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\btn_sticker_arrow2.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\emoji_bottom.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\emoji_select.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\emoji_top_bg.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\select_emoticon.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\select_kaomoji.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\select_sticker.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\emoji\stiker_btn_bg.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\bg_add_profile_frame.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\bg_teamlayer_top_01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_plus_02.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_radio_off_01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_radio_on_01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_cancel_01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_invite_01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_make_01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_member_01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_no_01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_save_01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_talk_01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_write_01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\btn_teampopup_yes_01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\check_style1.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\check_style3.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\group\group_edit_select.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\btn_close.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\btn_login.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\btn_max.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\btn_min.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\btn_qrcode_refresh.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\en-US\01_main.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\en-US\02_email.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\en-US\03_qr01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\en-US\04_qr02.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\en-US\btn_login.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\en-US\btn_qrcode.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ico_q.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ico_step01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ico_step02.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\01_main.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\02_email.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\03_jp_main.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\04_jp_setting.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\05_app_qr01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\06_app_qr02.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\07_wap_qr01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\08_wap_qr02.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\btn_login.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ja-JP\btn_qrcode.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\01_main.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\02_email.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\03_naver.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\04_qr01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\05_qr02.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\btn_international.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\btn_login.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\ko-KR\btn_qrcode.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\line_logo.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\login_bg1.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\login_bg2.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\login_btm.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\login_bullet.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\login_bullet2.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\login_line.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\login_qrcode.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-CN\01_main.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-CN\02_email.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-CN\03_qr01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-CN\04_qr02.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-CN\btn_login.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-CN\btn_qrcode.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-TW\01_main.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-TW\02_email.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-TW\03_qr01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-TW\04_qr02.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-TW\btn_login.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\login\zh-TW\btn_qrcode.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_bottom_l.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_bottom_m.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_bottom_r.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_check.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_middle_l.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_middle_r.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_top_l.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_top_m.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_top_r.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\menu\menu_uncheck.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\img_default.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\img_default_big.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\img_default_group.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\img_default_group_big.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\img_default_makegroup.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\list_img_default.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\list_img_default_group.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\profile\list_img_default_makegroup.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\bg_setting.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\bg_setting_btm.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\bg_setting_line.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\bg_setting_top.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\bg_setting_topleft.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\bg_setting_topright.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\btn_block_user.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\btn_select.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\ico_arrow.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\layer_btn_close_all.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\setting\tab_bg.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\bg_badge.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\bg_subpanel.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\bg_tab.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\bg_top.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_add_friend.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_chat.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_close.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_list_option.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_max.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_menu.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_min.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\btn_top_friendtalk_01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\check_addbuddy.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\check_group_show.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\group_member_count_bg.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\ico_tab01.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\ico_tab02.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\ico_tab03.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\icon_search.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\img_no_data_1.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\img_no_data_2.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\img_no_data_3.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\input_cursor.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\list_tab_bar.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\nick_bubble_l.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\nick_bubble_m.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\nick_bubble_r.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\talk\status_bg.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\toast\toast_bg.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\toast\toast_btn_call_accept.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\toast\toast_btn_call_bg.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\toast\toast_btn_call_refuse.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\toast\toast_close.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\toast\toast_icon_call_accept.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\toast\toast_icon_call_refuse.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\tray\line_off.ico

c:\program files (x86)\Naver\LINE\res\skin\basic\images\tray\tray_icon_new.ico

c:\program files (x86)\Naver\LINE\res\skin\basic\images\tray\tray_icon_offline.ico

c:\program files (x86)\Naver\LINE\res\skin\basic\images\tray\tray_icon_online.ico

c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_call_accept.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_call_refuse.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_mic.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_mic_dim.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_vol.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_vol_dim.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_vol_gray.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_icon_vol_green.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_win_btn.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_win_thumnail_110.png

c:\program files (x86)\Naver\LINE\res\skin\basic\images\voip\voip_win_thumnail_bg.png

c:\program files (x86)\Naver\LINE\res\skin\basic\invite.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\login.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\loginHelp.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\loginKickout.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\macUpgradeNotice.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\myInfo.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\notice.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\picturePopup.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\QRCodeHelp.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\setting.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\settingBasic.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\settingPrivacy.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\skinMsgBox.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\sticker.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\talk.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\talkAddBuddy.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\talkBuddyList.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\talkChatList.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\test.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\toast.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\uploadPicture.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\voip.nxul

c:\program files (x86)\Naver\LINE\res\skin\basic\windowPositionHelperTester.nxul

c:\program files (x86)\Naver\LINE\res\skin\emoji\emoji_facemark.csv

c:\program files (x86)\Naver\LINE\res\skin\emoji\emoji_icon.csv

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_001.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_002.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_003.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_004.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_005.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_006.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_007.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_008.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoji_w_009.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_01s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_02s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_03s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_04s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_05s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_06s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_07s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_08s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_09s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_10s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_11s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_12s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_13s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_14s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_15s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_16s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_17s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_18s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_19s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_20s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_02_21s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_01s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_02s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_03s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_04s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_05s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_06s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_07s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_08s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_09s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_10s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_11s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_03_12s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_01s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_02s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_03s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_04s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_05s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_06s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_07s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_08s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_09s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_10s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_11s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_12s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_04_13s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_01s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_02s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_03s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_04s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_05s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_06s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_07s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_08s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_09s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_10s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_11s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_12s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_13s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_14s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_05_15s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_01s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_02s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_03s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_04s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_05s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_06s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_07s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_08s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_09s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_10s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_11s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_12s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_13s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_14s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_15s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_16s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_17s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_18s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_19s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_20s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_06_21s.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_01.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_02.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_03.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_04.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_05.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_06.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_07.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_08.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_09.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_10.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_11.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_12.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_13.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_14.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_15.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_16.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_17.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_18.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_19.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_20.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_01_21.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_01.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_02.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_03.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_04.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_05.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_06.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_07.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_08.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_09.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_10.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_11.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_12.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_13.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_14.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_15.png

c:\program files (x86)\Naver\LINE\res\skin\emoji\icon\emoticon_face_02_16.png

c:\program files (x86)\Naver\LINE\res\skin\sticker\gift\gift_1.png

c:\program files (x86)\Naver\LINE\res\skin\sticker\gift\gift_2.png

c:\program files (x86)\Naver\LINE\res\skin\sticker\gift\gift_3.png

c:\program files (x86)\Naver\LINE\res\skin\sticker\gift\gift_4.png

c:\program files (x86)\Naver\LINE\res\skin\sticker\tab\tab00_off.png

c:\program files (x86)\Naver\LINE\res\skin\sticker\tab\tab00_on.png

c:\program files (x86)\Naver\LINE\res\sounds\Bell.wav

c:\program files (x86)\Naver\LINE\res\sounds\VoipEnd.wav

c:\program files (x86)\Naver\LINE\res\sounds\VoipRing.wav

c:\program files (x86)\Naver\LINE\res\sounds\VoipRingback.wav

c:\windows\SysWow64\frapsvid.dll

.

Besmet exemplaar van c:\windows\system32\Services.exe werd aangetroffen en gedesinfecteerd

Hersteld exemplaar van - c:\windows\winsxs\amd64_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_2b54b20ee6fa07b1\services.exe

.

.

(((((((((((((((((((( Bestanden Gemaakt van 2013-04-28 to 2013-05-28 ))))))))))))))))))))))))))))))

.

.

2013-05-28 12:01 . 2013-05-28 12:01 -------- d-----w- c:\users\Default\AppData\Local\temp

2013-05-28 12:01 . 2013-05-28 12:01 -------- d-----w- c:\users\Gast\AppData\Local\temp

2013-05-26 14:54 . 2013-05-26 14:54 -------- d-----w- c:\program files (x86)\Common Files\Java

2013-05-26 14:52 . 2013-04-04 03:35 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll

2013-05-26 14:35 . 2013-05-26 14:35 121 ----a-w- c:\windows\DeleteOnReboot.bat

2013-05-26 09:18 . 2013-02-16 23:40 28672 ----a-w- c:\windows\system32\IEUDINIT.EXE

2013-05-26 09:10 . 2013-05-26 09:10 68608 ----a-w- c:\windows\system32\taskhost.exe

2013-05-26 09:08 . 2013-05-26 09:08 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-05-24 19:07 . 2013-05-24 19:07 388096 ----a-r- c:\users\Laptop\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

.

.

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2013-05-26 09:09 . 2013-05-26 09:09 44032 ----a-w- c:\windows\apppatch\acwow64.dll

2013-05-22 14:36 . 2012-09-03 19:08 45856 ----a-w- c:\windows\system32\drivers\avgtpx64.sys

2013-05-15 19:16 . 2012-05-08 15:32 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl

2013-05-15 19:16 . 2012-05-08 15:32 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe

2013-05-14 13:39 . 2012-05-05 11:04 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

2013-04-04 12:50 . 2010-12-20 16:25 25928 ----a-w- c:\windows\system32\drivers\mbam.sys

2013-04-01 20:00 . 2012-12-20 16:34 861088 ----a-w- c:\windows\SysWow64\npDeployJava1.dll

2013-04-01 20:00 . 2010-08-11 15:59 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll

2013-02-10 21:52 . 2013-02-10 21:52 4126720 ----a-w- c:\program files (x86)\GUTF810.tmp

.

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]

@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]

2012-11-13 23:32 129272 ----a-w- c:\users\Laptop\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]

@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]

2012-11-13 23:32 129272 ----a-w- c:\users\Laptop\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]

@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]

2012-11-13 23:32 129272 ----a-w- c:\users\Laptop\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2009-10-16 2363392]

"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872]

"Spotify Web Helper"="c:\users\Laptop\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2012-09-11 1193176]

"Unified Remote v2"="c:\program files (x86)\Unified Remote\RemoteServer.exe" [2012-11-24 279136]

"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2013-02-28 18642024]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"Ad-Aware Antivirus"="c:\program files (x86)\Ad-Aware Antivirus\AdAwareLauncher --windows-run" [X]

"Easybits Recovery"="c:\program files (x86)\EasyBits For Kids\ezRecover.exe" [2009-09-02 60464]

"QlbCtrl.exe"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2010-02-25 323640]

"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]

"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576]

"WirelessAssistant"="c:\program files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2009-07-23 498744]

"Microsoft Default Manager"="c:\program files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2010-05-10 439568]

"AVG_TRAY"="c:\program files (x86)\AVG\AVG2012\avgtray.exe" [2012-11-19 2598520]

"PrivitizeVPN"="c:\program files (x86)\PrivitizeVPN\PrivitizeVPN.exe" [2012-09-10 196784]

"HTC Sync Loader"="c:\program files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" [2012-04-17 651264]

"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-08-27 59280]

"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-09-09 421776]

"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]

.

c:\users\Laptop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

Dropbox.lnk - c:\users\Laptop\AppData\Roaming\Dropbox\bin\Dropbox.exe [2013-3-12 29106336]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

"HideFastUserSwitching"= 0 (0x0)

.

[hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks]

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]

"LoadAppInit_DLLs"=1 (0x1)

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]

"aux2"=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]

BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~2\AVG\AVG2012\avgrsa.exe /sync /restart

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Ad-Aware Service]

@="Ad-Aware Service"

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SBAMSvc]

@="Service"

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

@="Driver"

.

R1 TKFWFV;nProtect Firewall Core Driver ;c:\windows\system32\TKFWFV64.sys [x]

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]

R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384]

R3 a2acc;a2acc;c:\program files (x86)\EMSISOFT ANTI-MALWARE\a2accx64.sys [2011-11-02 63880]

R3 Com4QLBEx;Com4QLBEx;c:\program files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2010-02-25 227896]

R3 dump_wmimmc;dump_wmimmc;c:\program files\Gpotato\Flyff\GameGuard\dump_wmimmc.sys [x]

R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2011-03-01 130976]

R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [2009-11-02 33736]

R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [2010-06-25 36928]

R3 lvpopf64;Logitech POP Suppression Filter;c:\windows\system32\DRIVERS\lvpopf64.sys [2010-07-27 271712]

R3 LVRS64;Logitech RightSound Filter Driver;c:\windows\system32\DRIVERS\lvrs64.sys [2010-07-27 339040]

R3 LVUVC64;Logitech Webcam 200(UVC);c:\windows\system32\DRIVERS\lvuvc64.sys [2010-07-27 6465632]

R3 ManyCam;ManyCam Virtual Webcam;c:\windows\system32\DRIVERS\mcvidrv_x64.sys [2012-01-11 34304]

R3 mcaudrv_simple;ManyCam Virtual Microphone;c:\windows\system32\drivers\mcaudrv_x64.sys [2012-02-22 28160]

R3 netr7364;Stuurprogramma voor RT73 USB draadloze LAN-kaart voor Vista;c:\windows\system32\DRIVERS\netr7364.sys [2009-06-10 707072]

R3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368]

R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des [x]

R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-09-23 225280]

R3 SBFWIMCL;GFI Software Firewall NDIS IM Filter Service;c:\windows\system32\DRIVERS\sbfwim.sys [2011-09-29 119416]

R3 sbhips;sbhips;c:\windows\system32\drivers\sbhips.sys [2011-12-19 60536]

R3 sbwtis;sbwtis;c:\windows\system32\DRIVERS\sbwtis.sys [2011-12-19 84600]

R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]

R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]

R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]

R3 TKCtrl;TKCtrl;c:\windows\system32\TKCtrl2k64.sys [x]

R3 TKFsAvM;TKFsAvM;c:\windows\system32\TKFsAv64.sys [x]

R3 TkFsFtM;MiniFilter Driver;c:\windows\system32\TKFsFt64.sys [x]

R3 TKFWVT;TKFWVT;c:\windows\system32\TKFWVT64.sys [x]

R3 TkIdsVt;TkIdsVt;c:\windows\system32\TkIdsVt64.sys [x]

R3 TKPcFt;TKPcFt;c:\windows\system32\TKPcFtCb64.sys [x]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]

R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-07-09 52736]

R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-08-13 1255736]

R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2009-06-10 389120]

R4 a2AntiMalware;Emsisoft Anti-Malware 6.0 - Service;c:\program files (x86)\Emsisoft Anti-Malware\a2service.exe [2012-01-22 3025112]

R4 Ad-Aware Service;Ad-Aware Service;c:\program files (x86)\Ad-Aware Antivirus\AdAwareService.exe [2012-05-03 1226096]

R4 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]

R4 SBAMSvc;Ad-Aware;c:\program files (x86)\Ad-Aware Antivirus\SBAMSvc.exe [2011-12-19 3289032]

S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys [2012-04-19 28480]

S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2012-01-31 36944]

S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]

S1 A2DDA;A2 Direct Disk Access Support Driver;c:\program files (x86)\Emsisoft Anti-Malware\a2ddax64.sys [2011-05-19 23208]

S1 a2injectiondriver;a2injectiondriver;c:\program files (x86)\Emsisoft Anti-Malware\a2dix64.sys [2011-11-02 41728]

S1 a2util;a-squared Malware-IDS utility driver;c:\program files (x86)\Emsisoft Anti-Malware\a2util64.sys [2010-05-05 14720]

S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2012-11-08 307040]

S1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2011-12-23 47696]

S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys [2013-05-22 45856]

S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-05-05 283200]

S1 SbFw;SbFw;c:\windows\system32\drivers\SbFw.sys [2011-12-19 256632]

S1 SBRE;SBRE;c:\windows\system32\drivers\SBREdrv.sys [2011-10-26 57976]

S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-18 98208]

S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2012\AVGIDSAgent.exe [2012-11-02 5174392]

S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2012\avgwdsvc.exe [2012-02-14 193288]

S2 ezSharedSvc;Easybits Shared Services for Windows;c:\windows\system32\svchost.exe [2009-07-14 27136]

S2 HiPatchService;Hi-Rez Studios Authenticate and Update Service;c:\program files (x86)\Hi-Rez Studios\HiPatchService.exe [2011-04-21 23680]

S2 LVPrcS64;Process Monitor;c:\program files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe [2010-05-07 197976]

S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2012-03-23 87040]

S2 sbapifs;sbapifs;c:\windows\system32\DRIVERS\sbapifs.sys [2011-11-29 74872]

S2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-10-02 3064000]

S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-04-23 3574624]

S2 UNS;Intel® Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2009-10-01 2320920]

S2 vToolbarUpdater15.2.0;vToolbarUpdater15.2.0;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe [2013-05-22 1015984]

S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys [2012-12-10 127328]

S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\avgidsfiltera.sys [2011-12-23 29776]

S3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]

S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2009-10-30 244736]

S3 LVPr2M64;Logitech LVPr2M64 Driver;c:\windows\system32\DRIVERS\LVPr2M64.sys [2010-05-07 30304]

S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]

S3 SBFWIMCLMP;GFI Software Firewall NDIS IM Filter Miniport;c:\windows\system32\DRIVERS\SBFWIM.sys [2011-09-29 119416]

.

.

--- Andere Services/Drivers In Geheugen ---

.

*NewlyCreated* - WS2IFSL

.

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs

ezSharedSvc

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]

2009-10-16 11:49 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe

.

Inhoud van de 'Gedeelde Taken' map

.

2013-05-27 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-08 19:16]

.

2013-05-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-10-02 13:35]

.

2013-05-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-10-02 13:35]

.

2013-05-27 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1592174162-4216136605-3399642135-1001Core.job

- c:\users\Laptop\AppData\Local\Google\Update\GoogleUpdate.exe [2011-04-05 13:35]

.

2013-05-28 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1592174162-4216136605-3399642135-1001UA.job

- c:\users\Laptop\AppData\Local\Google\Update\GoogleUpdate.exe [2011-04-05 13:35]

.

.

--------- X64 Entries -----------

.

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]

@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]

2012-11-13 23:32 162552 ----a-w- c:\users\Laptop\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]

@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]

2012-11-13 23:32 162552 ----a-w- c:\users\Laptop\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]

@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]

2012-11-13 23:32 162552 ----a-w- c:\users\Laptop\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]

@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]

2012-11-13 23:32 162552 ----a-w- c:\users\Laptop\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2009-12-22 5977600]

"RtkOSD"="c:\program files (x86)\Realtek\Audio\OSD\RtVOsd64.exe" [2009-10-13 995840]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-01-10 167704]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-01-10 392984]

"Persistence"="c:\windows\system32\igfxpers.exe" [2012-01-10 417560]

.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService

FontCache

.

------- Bijkomende Scan -------

.

uLocal Page = c:\windows\system32\blank.htm

mLocal Page = c:\windows\SysWOW64\blank.htm

uInternet Settings,ProxyOverride = *.local

IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000

TCP: DhcpNameServer = 192.168.2.254

FF - ProfilePath - c:\users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default\

FF - prefs.js: browser.search.selectedEngine - Privitize VPN

FF - prefs.js: browser.startup.homepage - hxxp://www.google.nl/

FF - ExtSQL: 2013-05-23 18:50; {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}; c:\users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

.

- - - - ORPHANS VERWIJDERD - - - -

.

Wow6432Node-HKCU-Run-EA Core - c:\program files (x86)\Electronic Arts\EADM\Core.exe

Wow6432Node-HKLM-Run-LogMeIn Hamachi Ui - c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe

HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start

HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe

AddRemove-EasyBits Magic Desktop - c:\windows\system32\ezMDUninstall.exe

AddRemove-HitmanPro35 - c:\program files (x86)\Hitman Pro 3.5\HitmanPro355.exe

AddRemove-HyperCam Toolbar - c:\program files (x86)\HyperCam Toolbar\UninstallToolbar.exe

AddRemove-LINE - c:\program files (x86)\Naver\LINE\LineUnInst.exe

AddRemove-OneTab - c:\users\Laptop\AppData\Roaming\OneTab\uninstall.exe

AddRemove-Sound Editor Pro_is1 - c:\program files (x86)\Sound Editor Pro\unins000.exe

AddRemove-SP_5dec30d7 - c:\program files (x86)\ZoomEx\uninstall.exe

AddRemove-WaveLabPro - c:\program files (x86)\Steinberg\WaveLab 6\Uninstall.exe

AddRemove-{53820F89-063F-10D7-7457-06C201F4CBF0} - c:\programdata\Zoomex\uninstall.exe

AddRemove-{5C13C5F3-6E30-449F-8872-DF8AC35AE285}_is1 - c:\users\Laptop\Documents\CraftBukkit\unins000.exe

AddRemove-{EE202411-2C26-49E8-9784-1BC1DBF7DE96} - c:\program files (x86)\InstallShield Installation Information\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\setup.exe

AddRemove-{87686C21-8A15-4b4d-A3F1-11141D9BE094} - c:\program files (x86)\EA Games\Battlefield Play4Free\uninstaller.exe

AddRemove-{8DC910CD-8EE3-4ffc-A4EB-9B02701059C4} - c:\program files (x86)\EA Games\Battlefield Heroes\uninstaller.exe

.

.

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\services\npggsvc]

"ImagePath"="c:\windows\system32\GameMon.des -service"

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.11"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

------------------------ Andere Aktieve Processen ------------------------

.

c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe

c:\program files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

c:\program files (x86)\Common Files\Logishrd\LVMVFM\LVPrS64H.exe

c:\windows\SysWOW64\PnkBstrA.exe

c:\program files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

c:\program files (x86)\TeamViewer\Version8\TeamViewer.exe

c:\program files (x86)\TeamViewer\Version8\tv_w32.exe

.

**************************************************************************

.

Voltooingstijd: 2013-05-28 14:16:27 - machine werd herstart

ComboFix-quarantined-files.txt 2013-05-28 12:16

.

Pre-Run: 91.585.470.464 bytes beschikbaar

Post-Run: 100.761.149.440 bytes beschikbaar

.

- - End Of File - - 6436ACF31DCD3FCB431BC5ABB779D3DC

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Download zoek.exe naar het bureaublad.

  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe
    (hier of hier) kan je lezen hoe je dat doet.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

 
startupall; 
filesrcm;

  • Klik op de knop "Options" en vink nu de onderstaande opties aan.

    • HijackThis Log
    • Firefox Look
    • Chrome Look
    • Firefox Defaults
    • Reset Chrome
    • Reset IE proxy
    • Shortcut Fix
    • IE Defaults
    • Reset Hosts
    • Auto Clean

    [*] Klik daarna op de knop "Run script".

    [*] Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).

    [*] Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.

    [*] Post nu de inhoud van het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites
Maikevr Groentje

Maikevr

Geplaatst:
  • Auteur
Geplaatst:

Zoek.exe Version 4.0.0.2 Updated 28-May-2013

Tool run by Laptop on wo 29-05-2013 at 17:49:43,79.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

==== Reset Hosts File ======================

# Copyright © 1993-2006 Microsoft Corp.

#

# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.

#

# This file contains the mappings of IP addresses to host names. Each

# entry should be kept on an individual line. The IP address should

# be placed in the first column followed by the corresponding host name.

# The IP address and the host name should be separated by at least one

# space.

#

# Additionally, comments (such as these) may be inserted on individual

# lines or following the machine name denoted by a '#' symbol.

#

# For example:

#

# 102.54.94.97 rhino.acme.com # source server

# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.

127.0.0.1 localhost

::1 localhost

==== Possible Rootkit Infection ======================

C:\Users\Laptop\AppData\Local\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\L

C:\Users\Laptop\AppData\Local\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\U

C:\Users\Laptop\AppData\Local\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\@

C:\Windows\installer\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\L

C:\Windows\installer\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\U

C:\Windows\installer\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\@

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== FireFox Fix ======================

Deleted from C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default\prefs.js:

user_pref("browser.startup.homepage", "http://www.google.nl/");

user_pref("browser.search.defaultengine", "Privitize VPN");

user_pref("browser.search.defaultenginename", "Privitize VPN");

user_pref("browser.search.selectedEngine", "Privitize VPN");

user_pref("browser.search.order.1", "Privitize VPN");

Added to C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default\prefs.js:

user_pref("browser.startup.homepage", "http://www.google.com");

user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.newtab.url", "http://www.google.com/");

user_pref("browser.search.defaultengine", "Google");

user_pref("browser.search.defaultenginename", "Google");

user_pref("browser.search.selectedEngine", "Google");

user_pref("browser.search.order.1", "Google");

user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.search.suggest.enabled", true);

user_pref("browser.search.useDBForOrder", true);

Deleted from C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js:

Added to C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js:

user_pref("browser.startup.homepage", "http://www.google.com");

user_pref("browser.search.defaulturl", "http://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.newtab.url", "http://www.google.com/");

user_pref("browser.search.defaultengine", "Google");

user_pref("browser.search.defaultenginename", "Google");

user_pref("browser.search.selectedEngine", "Google");

user_pref("browser.search.order.1", "Google");

user_pref("keyword.URL", "http://www.google.com/search?btnG=Google+Search&q=");

user_pref("browser.search.suggest.enabled", true);

user_pref("browser.search.useDBForOrder", true);

ProfilePath: C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default

user.js not found

---- Lines babylon removed from prefs.js ----

---- Lines babylon modified from prefs.js ----

---- FireFox user.js and prefs.js backups ----

prefs_29-05-2013_1759_.backup

ProfilePath: C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\extensions

---- Lines babylon removed from prefs.js ----

---- Lines babylon modified from prefs.js ----

---- Lines babylon removed from user.js ----

---- FireFox user.js and prefs.js backups ----

user_29-05-2013_1759_.backup

==== Batch Command(s) Run By Tool======================

C:\Windows\system32\appdata deleted

==== Deleting Files \ Folders ======================

"C:\Users\Laptop\AppData\Local\{A545AA89-547B-4C44-9EA9-E42C12FC24E9}" deleted

"C:\Program Files (x86)\GUTF810.tmp" deleted

"C:\Users\Laptop\Downloads\SoftonicDownloader_voor_line.exe" deleted

"C:\ProgramData\HPWALog.txt" deleted

"C:\Users\Laptop\AppData\Local\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\@" deleted

"C:\Windows\installer\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\@" deleted

"C:\Users\Laptop\AppData\Local\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}" deleted

"C:\Windows\installer\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}" deleted

"C:\Users\Laptop\AppData\Local\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\L" deleted

"C:\Users\Laptop\AppData\Local\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\U" deleted

"C:\Windows\installer\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\L" deleted

"C:\Windows\installer\{df1ee495-0737-9f73-da2b-cbe55ad7e6a7}\U" deleted

"C:\Program Files (x86)\GUMF7F0.tmp" deleted

"C:\Program Files (x86)\PrivitizeVPN" deleted

"C:\ProgramData\CloudSoft" deleted

"C:\Users\Laptop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PrivitizeVPN" deleted

==== Firefox Extensions ======================

ProfilePath: C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default

- Zoomex - %ProfilePath%\extensions\50d34e70d549c@50d34e70d54d5.com

- Zoomex - %ProfilePath%\extensions\50d486cbb49e0@50d486cbb4a19.com

- Adblock Plus - %ProfilePath%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi

- FoxTab - %ProfilePath%\extensions\{ef4e370e-d9f0-4e00-b93e-a4f274cfdd5a}.xpi

AppDir: C:\Program Files (x86)\Mozilla Firefox

- Skype Click to Call - %AppDir%\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}

- Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

==== Firefox Plugins ======================

Profilepath: C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default

7ABE33792F2787D599B6963E71B9E8CD - C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_7_700_202.dll - Shockwave Flash

3D928B3FE97C403A33F803B3D1A260C9 - C:\Users\Laptop\AppData\Local\Google\Update\1.3.21.145\npGoogleUpdate3.dll - Google Update

3D3CAF586124C4E8102764C8B3063BB6 - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director

1F0D662B7BE2AB2D3A7E2C6A44A02BC1 - C:\Users\Laptop\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll - Unity Player

==== Deleting Files \ Folders ======================

"C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default\extensions\50d34e70d549c@50d34e70d54d5.com" deleted

"C:\Users\Laptop\AppData\Roaming\Mozilla\Firefox\Profiles\aeel16f7.default\extensions\50d486cbb49e0@50d486cbb4a19.com" deleted

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

cbnocfnjkmlljbfgpkbhefnlpbiemhif - C:\Users\Laptop\AppData\Roaming\OneTab\OneTab.crx[]

knkoaloobohmahhpkmlajbeamkhnbobb - C:\ProgramData\Zoomex\knkoaloobohmahhpkmlajbeamkhnbobb.crx[]

ndibdjnfmopecpmkdieinmbadjfpblof - C:\ProgramData\AVG Secure Search\ChromeExt\15.2.0.5\avg.crx[]

nlcejneamagbkilppbpfnmihcldgboha - C:\ProgramData\Zoomex\nlcejneamagbkilppbpfnmihcldgboha.crx[]

Angry Birds - Laptop - Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj

Google Notifications - Laptop - Default\Extensions\boemmnepglcoinjcdlfcpcbmhiecichi

AdBlock - Laptop - Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom

Yulia Brodskaya - Laptop - Default\Extensions\jlgdloilieclkegafohackmhffbmdpko

HP Product Detection Plugin - Laptop - Default\Extensions\mnhbepgnjnaoahohppnffanmkjkjoglp

Mini Ninjas - Laptop - Default\Extensions\oijfbknbncemokdnlboeabbcfhobechi

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.msn.com/"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

No DefaultScope Set For HKCU

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.msn.com/"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

{E80B8226-84AD-4A4D-9142-F59571177578} Bing Url="http://www.bing.com/search?q={searchTerms}&form=HPNTDF&pc=HPNTDF&src=IE-SearchBox"

{E9F829AC-0033-4A08-B1EA-5B35603A9445} AVG Secure Search Url="https://isearch.avg.com/search?cid={213DE651-5E9F-451B-9212-B1EE152A3646}&mid=94070a9127ab47d6b0211943efd1f01a-de44d60d68e968908817958fab847488db53d805〈=nl&ds=AVG&pr=fr&d=2012-06-10"

==== Reset Google Chrome ======================

C:\users\Laptop\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully

C:\users\Laptop\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting CLSID Registry Keys ======================

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{E54729E8-BB3D-4270-9D49-7389EA579090} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{E54729E8-BB3D-4270-9D49-7389EA579090} deleted successfully

==== shortcuts on Users Desktops ======================

C:\Users\Laptop\Desktop\Google Chrome.lnk - C:\Users\Laptop\AppData\Local\Google\Chrome\Application\chrome.exe

C:\Users\Laptop\Desktop\HiJackThis.lnk - C:\Users\Laptop\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe

==== shortcuts in Users Start Menu ======================

C:\Users\Laptop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Users\Laptop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files (x86)\Internet Explorer\iexplore.exe -extoff

C:\Users\Laptop\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis\HiJackThis.lnk - C:\Users\Laptop\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 8.lnk - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG\AVG 2012.lnk - C:\Program Files (x86)\AVG\AVG2012\avgui.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Help.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.chm

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Verwijder Malwarebytes Anti-Malware.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\unins000.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\chameleon.chm

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\Silverlight.Configuration.exe

==== Reset IE Proxy ======================

Value(s) before fix:

"ProxyOverride"="*.local"

"ProxyEnable"=dword:00000000

Value(s) after fix:

"ProxyEnable"=dword:00000000

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\cbnocfnjkmlljbfgpkbhefnlpbiemhif deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\knkoaloobohmahhpkmlajbeamkhnbobb deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\nlcejneamagbkilppbpfnmihcldgboha deleted successfully

==== HijackThis Entries ======================

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

O1 - Hosts: ::1 localhost

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2156.0\npwinext.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll

O3 - Toolbar: @C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2156.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.0.2156.0\npwinext.dll

O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe

O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [WirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

O4 - HKLM\..\Run: [Microsoft Default Manager] "C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume

O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"

O4 - HKLM\..\Run: [Ad-Aware Antivirus] "C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareLauncher" --windows-run

O4 - HKLM\..\Run: [PrivitizeVPN] C:\Program Files (x86)\PrivitizeVPN\PrivitizeVPN.exe /autorun

O4 - HKLM\..\Run: [HTC Sync Loader] "C:\Program Files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" -startup

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden

O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun

O4 - HKCU\..\Run: [spotify Web Helper] "C:\Users\Laptop\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"

O4 - HKCU\..\Run: [unified Remote v2] C:\Program Files (x86)\Unified Remote\RemoteServer.exe

O4 - HKCU\..\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun

O4 - Startup: Dropbox.lnk = Laptop\AppData\Roaming\Dropbox\bin\Dropbox.exe

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - MSN Games - Free Online Games

O16 - DPF: {784797A8-342D-4072-9486-03C8D0F2F0A1} (Battlefield Heroes Updater) - https://www.battlefieldheroes.com/static/updater/BFHUpdater_5.0.31.0.cab

O16 - DPF: {9122D757-5A4F-4768-82C5-B4171D8556A7} (PhotoPickConvert Class) - http://appdirectory.messenger.msn.com/AppDirectory/P4Apps/PhotoSwap/PhtPkMSN.cab

O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - MSN Games - Free Online Games

O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - MSN Games - Free Online Games

O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: Andrea RT Filters Service (AERTFilters) - Andrea Electronics Corporation - C:\Program Files\Realtek\Audio\HDA\AERTSr64.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe

O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe

O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\HP Game Console\GameConsoleService.exe

O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Hi-Rez Studios Authenticate and Update Service (HiPatchService) - Hi-Rez Studios - C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe

O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: Process Monitor (LVPrcS64) - Logitech Inc. - C:\Program Files\Common Files\Logishrd\LVMVFM\LVPrcSrv.exe

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)

O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe

O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Skype C2C Service - Skype Technologies S.A. - C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe

O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: vToolbarUpdater15.2.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Gast\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Users\Laptop\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Laptop\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\users\Laptop\AppData\Local\Mozilla\Firefox\Profiles\aeel16f7.default\Cache emptied successfully

==== Empty Chrome Cache ======================

C:\users\Laptop\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

C:\users\Laptop\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Laptop\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on wo 29-05-2013 at 18:11:31,03 ======================

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Klik op de knop "Options" en vink nu de onderstaande opties aan.

    • System Restore Info

    [*] Klik nu op de knop "Run script".

    [*] Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).

    [*] Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.

    [*] Post nu de inhoud van het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites
 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.