Ga naar inhoud

mave94

Lid
 Bekijk profiel  Bekijk hun activiteit

  • Items

    27

  • Registratiedatum

  • Laatst bezocht

 Inhoudstype 

Alles dat geplaatst werd door mave94

  1. mave94
    Het is gelukt en bleek makkelijker dan gedacht. Ik heb alleen het hoofdaccount teruggezet en dat was voldoende. Waarschijnlijk was het zelfs niet eens nodig geweest om de accountnaam te veranderen.
  2. mave94
    Eigenlijk dus wat ik al dacht. Dan probeer ik eens het admin account te veranderen op m'n oude computer en het daar proberen.
  3. mave94
    Ik heb een externe harde schijf waarvan ik enkele mappen voor bepaalde gebruikers had beveiligd (Vista). Nu heb ik een nieuwe computer (Windows 8) en daar mijn externe harde schijf op aangesloten, maar er staat dat ik geen toegang heb tot deze map en dat ik dit ook niet kan wijzigen. De gebruikersaccounts van mijn oude computer zijn ondertussen veranderd. Is er een mogelijkheid om deze beveiliging eraf te halen?
  4. mave94
    Ik krijg nu geen ongewenste programma's meer en het programma is succesvol geïstalleerd.
  5. mave94
    De verwijderingen waren inderdaad precies wat ik te zien kreeg. # AdwCleaner v2.106 - Logfile created 01/19/2013 at 22:18:08 # Updated 17/01/2013 by Xplode # Operating system : Windows 8 Pro (64 bits) # User : Matthijs - PC_VAN_MATTHIJS # Boot Mode : Normal # Running from : F:\Matthijs\Desktop\adwcleaner.exe # Option [Delete] ***** [services] ***** ***** [Files / Folders] ***** File Deleted : C:\user.js File Deleted : C:\Windows\Tasks\AmiUpdXp.job Folder Deleted : C:\Users\Matthijs\AppData\Local\SwvUpdater ***** [Registry] ***** Key Deleted : HKCU\Software\IM Key Deleted : HKCU\Software\ImInstaller Key Deleted : HKCU\Software\Softonic Key Deleted : HKCU\Software\SweetIM Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476} Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1 Key Deleted : HKLM\Software\IB Updater Key Deleted : HKLM\Software\SweetIM Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{EEE6C360-6118-11DC-9C72-001320C79847} Key Deleted : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67} Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}] ***** [internet Browsers] ***** -\\ Internet Explorer v10.0.9200.16453 [OK] Registry is clean. -\\ Google Chrome v [unable to get version] File : C:\Users\Matthijs\AppData\Local\Google\Chrome\User Data\Default\Preferences [OK] File is clean. ************************* AdwCleaner[s1].txt - [2418 octets] - [19/01/2013 22:18:08] ########## EOF - C:\AdwCleaner[s1].txt - [2478 octets] ##########
  6. mave94
    Ik heb recentelijk een nieuwe computer aangeschaft. Ik heb echter het gevoel alsof ik er vreemde dingen op heb gezet, want ik kan bepaalde programma's niet installeren. Er verschijnt dan een setup van een ander programma wat ik helemaal niet wil. Zou dit logje kunnen worden nagekeken? Mijn besturingssysteem is Windows 8 64-bit. ~~~~ Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 21:09:28, on 19-1-2013 Platform: Unknown Windows (WinNT 6.02.1008) MSIE: Internet Explorer v10.0 (10.00.9200.16453) Boot mode: Normal Running processes: C:\Users\Matthijs\AppData\Local\Akamai\netsession_win.exe C:\Users\Matthijs\AppData\Local\Akamai\netsession_win.exe C:\Users\Matthijs\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Program Files (x86)\AVG\AVG2013\avgui.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files\WindowsApps\TuneIn.TuneInRadio_1.0.2.4_neutral__6bhtb546zcxnj\TuneIn.exe D:\Program Files (x86)\Google\Chrome\Application\chrome.exe D:\Program Files (x86)\Google\Chrome\Application\chrome.exe D:\Program Files (x86)\Google\Chrome\Application\chrome.exe D:\Program Files (x86)\Google\Chrome\Application\chrome.exe D:\Program Files (x86)\Google\Chrome\Application\chrome.exe D:\Program Files (x86)\Google\Chrome\Application\chrome.exe D:\Program Files (x86)\Google\Chrome\Application\chrome.exe D:\Program Files (x86)\Google\Chrome\Application\chrome.exe D:\Program Files (x86)\Google\Chrome\Application\chrome.exe F:\Matthijs\Downloads\gmax12.exe D:\Program Files (x86)\Google\Chrome\Application\chrome.exe D:\Program Files (x86)\Google\Chrome\Application\chrome.exe F:\Matthijs\Downloads\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com/?crg=3.1010000.10005&barid={9D349476-5E8F-11E2-BE6C-8C89A5DAD3D9} R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Program Files (x86)\Microsoft Office\Office14\GROOVEEX.DLL O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files (x86)\Java\bin\ssv.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - D:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files (x86)\Java\bin\jp2ssv.dll O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [DAEMON Tools Lite] "E:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Matthijs\AppData\Local\Akamai\netsession_win.exe" O4 - Startup: Dropbox.lnk = C:\Users\Matthijs\AppData\Roaming\Dropbox\bin\Dropbox.exe O8 - Extra context menu item: E&xport to Microsoft Excel - res://D:\Program Files (x86)\Microsoft Office\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Se&nd to OneNote - res://D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll/105 O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service 64 - Unknown owner - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe (file missing) O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: mental ray 3.10 Satellite for Autodesk 3ds Max 2013 64-bit (mi-raysat_3dsmax2013_64) - Unknown owner - D:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_64server.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 8318 bytes
  7. mave94
    Ik heb nu al enkele weken mijn computer in gebruik en hij werkt echt perfect. De service van Azerty was trouwens ook goed. Zelfs met veel programma's tegelijk geeft hij maar een maximum CPU van 22%. Het opstarten en afsluiten gaat ook supersnel. Ik ben er heel blij mee.
  8. mave94
    Ik heb Office opnieuw geïnstalleerd en de problemen lijken te zijn veholpen. Als bijkomend voordeel is de computer nu ook een stuk sneller.
  9. mave94
    Hmm, dat is een goed idee. Ik zal Microsoft Office opnieuw installeren.
  10. mave94
    Ja, het is een officiële versie en ik heb de installatiedisk nog thuis liggen.
  11. mave94
    Dat zal ik zeker doen. ;-)
  12. mave94
    Hij is nu weer net zo snel als dat hij eerst was. Het heeft dus geholpen. Echter blijft het probleem dat Microsoft Office bestanden niet kunnen worden opgeslagen, bestaan. Wellicht dat dit niet niet met een virus o.i.d. te maken heeft?
  13. mave94
    Zo te zien is er heel wat opgeruimd. ComboFix 12-12-17.01 - Andre 17-12-2012 8:35.2.2 - x86 Gestart vanuit: c:\users\Andre\Desktop\ComboFix.exe gebruikte Opdracht switches :: c:\users\Andre\Desktop\CFScript.txt . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\program files\SweetIM c:\program files\SweetIM\Communicator\mgcommon.dll c:\program files\SweetIM\Communicator\mgcommunication.dll c:\program files\SweetIM\Communicator\mgsimcommon.dll c:\program files\SweetIM\Communicator\mgxml_wrapper.dll c:\program files\SweetIM\Communicator\Microsoft.VC90.CRT\Microsoft.VC90.CRT.manifest c:\program files\SweetIM\Communicator\Microsoft.VC90.CRT\msvcm90.dll c:\program files\SweetIM\Communicator\Microsoft.VC90.CRT\msvcp90.dll c:\program files\SweetIM\Communicator\Microsoft.VC90.CRT\msvcr90.dll c:\program files\SweetIM\Communicator\resources\sqlite\mgSqlite3.dll c:\program files\SweetIM\Communicator\SweetPacksUpdateManager.exe c:\program files\SweetIM\Messenger\ContentPackagesActivationHandler.exe c:\program files\SweetIM\Messenger\default.xml c:\program files\SweetIM\Messenger\mgAdaptersProxy.dll c:\program files\SweetIM\Messenger\mgArchive.dll c:\program files\SweetIM\Messenger\mgcommon.dll c:\program files\SweetIM\Messenger\mgcommunication.dll c:\program files\SweetIM\Messenger\mgconfig.dll c:\program files\SweetIM\Messenger\mgFlashPlayer.dll c:\program files\SweetIM\Messenger\mghooking.dll c:\program files\SweetIM\Messenger\mgICQAuto.dll c:\program files\SweetIM\Messenger\mgICQMessengerAdapter.dll c:\program files\SweetIM\Messenger\mglogger.dll c:\program files\SweetIM\Messenger\mgMediaPlayer.dll c:\program files\SweetIM\Messenger\mgMsnAuto.dll c:\program files\SweetIM\Messenger\mgMsnMessengerAdapter.dll c:\program files\SweetIM\Messenger\mgsimcommon.dll c:\program files\SweetIM\Messenger\mgSweetIM.dll c:\program files\SweetIM\Messenger\mgUpdateSupport.dll c:\program files\SweetIM\Messenger\mgxml_wrapper.dll c:\program files\SweetIM\Messenger\mgYahooAuto.dll c:\program files\SweetIM\Messenger\mgYahooMessengerAdapter.dll c:\program files\SweetIM\Messenger\msvcp71.dll c:\program files\SweetIM\Messenger\msvcr71.dll c:\program files\SweetIM\Messenger\resources\images\AudibleButton.png c:\program files\SweetIM\Messenger\resources\images\DisplayPicturesButton.png c:\program files\SweetIM\Messenger\resources\images\EmoticonButton.png c:\program files\SweetIM\Messenger\resources\images\GamesButton.png c:\program files\SweetIM\Messenger\resources\images\KeyboardButton.png c:\program files\SweetIM\Messenger\resources\images\NudgeButton.png c:\program files\SweetIM\Messenger\resources\images\SoundFxButton.png c:\program files\SweetIM\Messenger\resources\images\WinksButton.png c:\program files\SweetIM\Messenger\resources\sqlite\mgSqlite3.dll c:\program files\SweetIM\Messenger\SweetIM.exe c:\program files\SweetIM\Toolbars\Internet Explorer\ClearHist.exe c:\program files\SweetIM\Toolbars\Internet Explorer\conf\logger.xml c:\program files\SweetIM\Toolbars\Internet Explorer\default.xml c:\program files\SweetIM\Toolbars\Internet Explorer\mgcommon.dll c:\program files\SweetIM\Toolbars\Internet Explorer\mgconfig.dll c:\program files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll c:\program files\SweetIM\Toolbars\Internet Explorer\mgHelperApp.exe c:\program files\SweetIM\Toolbars\Internet Explorer\mghooking.dll c:\program files\SweetIM\Toolbars\Internet Explorer\mglogger.dll c:\program files\SweetIM\Toolbars\Internet Explorer\mgsimcommon.dll c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarProxy.dll c:\program files\SweetIM\Toolbars\Internet Explorer\mgxml_wrapper.dll c:\program files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\Microsoft.VC90.CRT.manifest c:\program files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\msvcm90.dll c:\program files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\msvcp90.dll c:\program files\SweetIM\Toolbars\Internet Explorer\Microsoft.VC90.CRT\msvcr90.dll c:\program files\SweetIM\Toolbars\Internet Explorer\resources\about.html c:\program files\SweetIM\Toolbars\Internet Explorer\resources\affid.dat c:\program files\SweetIM\Toolbars\Internet Explorer\resources\basis.xml c:\program files\SweetIM\Toolbars\Internet Explorer\resources\bing.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_bing.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_current.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_dictionary.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_google.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_hover.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_left.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_photo.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_video.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_web.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\blue\search_button_yahoo.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\clear-history.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier-anim-over.gif c:\program files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier-anim.gif c:\program files\SweetIM\Toolbars\Internet Explorer\resources\content-notifier.js c:\program files\SweetIM\Toolbars\Internet Explorer\resources\dating.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\dictionary.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\e_cards.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\eye_icon.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\eye_icon_over.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\find.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\free_stuff.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\games.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\glitter.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\google.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_bing.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_current.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_dictionary.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_google.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_hover.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_left.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_photo.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_video.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_web.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\green\search_button_yahoo.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\help.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\highlight.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\locales.xml c:\program files\SweetIM\Toolbars\Internet Explorer\resources\logo_16x16.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\logo_21x18.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\logo_32x32.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\logo_about.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\MenuExt.html c:\program files\SweetIM\Toolbars\Internet Explorer\resources\more-search-providers.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\music.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\news.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\options.html c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_bing.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_current.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_dictionary.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_google.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_hover.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_left.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_photo.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_video.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_web.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\orange\search_button_yahoo.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\photos.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\search-current-site.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\shopping.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\SmileySmile.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\SmileyWink.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\sweetim_text.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\toolbar.xml c:\program files\SweetIM\Toolbars\Internet Explorer\resources\video.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\web-search.png c:\program files\SweetIM\Toolbars\Internet Explorer\resources\web-toolbar.js c:\program files\SweetIM\Toolbars\Internet Explorer\resources\yahoo.png c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1 c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1\GEARDIFx.exe c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1\x86\DIFxAPI.dll c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1\x86\DifXInst32.exe c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1\x86\DIFxInstallLog.txt c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1\x86\GEARAspi.dll c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1\x86\GEARAspiWDM.inf c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1\x86\gearaspiwdmx86.cat c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1\x86\x86\GEARAspiWDM.sys . . (((((((((((((((((((( Bestanden Gemaakt van 2012-11-17 to 2012-12-17 )))))))))))))))))))))))))))))) . . 2012-12-17 07:44 . 2012-12-17 07:44 -------- d-----w- c:\users\Andre\AppData\Local\temp 2012-12-17 07:44 . 2012-12-17 07:44 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-12-16 16:30 . 2012-12-16 16:30 388096 ----a-r- c:\users\Andre\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2012-12-16 16:30 . 2012-12-16 16:30 -------- d-----w- c:\program files\HJT 2012-12-16 00:21 . 2012-12-16 00:21 -------- d-----w- c:\program files\iPod 2012-12-16 00:21 . 2012-12-16 00:21 -------- d-----w- c:\program files\iTunes 2012-12-11 22:41 . 2012-07-26 02:46 9728 ----a-w- c:\windows\system32\Wdfres.dll 2012-12-11 22:41 . 2012-07-26 02:33 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys 2012-12-11 22:41 . 2012-07-26 02:32 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys 2012-12-11 22:41 . 2009-07-14 12:12 16896 ----a-w- c:\windows\system32\winusb.dll 2012-12-11 22:41 . 2012-07-26 03:39 526952 ----a-w- c:\windows\system32\drivers\Wdf01000.sys 2012-12-11 22:41 . 2012-07-26 03:39 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys 2012-12-11 22:41 . 2012-07-26 03:20 73216 ----a-w- c:\windows\system32\WUDFSvc.dll 2012-12-11 22:41 . 2012-07-26 03:20 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll 2012-12-11 22:41 . 2012-07-26 03:21 196608 ----a-w- c:\windows\system32\WUDFHost.exe 2012-12-11 22:41 . 2012-07-26 03:20 613888 ----a-w- c:\windows\system32\WUDFx.dll 2012-12-11 22:41 . 2012-07-26 03:20 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll 2012-12-11 21:27 . 2012-11-13 01:36 2048000 ----a-w- c:\windows\system32\win32k.sys 2012-12-11 21:27 . 2012-11-02 10:18 376320 ----a-w- c:\windows\system32\dpnet.dll 2012-12-11 21:27 . 2012-11-02 08:26 23040 ----a-w- c:\windows\system32\dpnsvr.exe 2012-12-11 21:27 . 2012-08-21 11:47 224640 ----a-w- c:\windows\system32\drivers\volsnap.sys 2012-12-11 21:27 . 2012-11-08 03:46 34304 ----a-w- c:\windows\system32\atmlib.dll 2012-12-11 21:27 . 2012-11-08 01:36 293376 ----a-w- c:\windows\system32\atmfd.dll 2012-12-11 21:27 . 2012-11-13 01:29 2048 ----a-w- c:\windows\system32\tzres.dll 2012-12-11 21:24 . 2012-12-11 21:24 -------- d-----w- c:\users\Default\AppData\Roaming\TuneUp Software 2012-11-19 07:22 . 2012-11-19 07:22 -------- d-----w- c:\users\UpdatusUser 2012-11-19 07:21 . 2012-10-02 19:29 2557288 ----a-w- c:\windows\system32\nvsvcr.dll . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-11-12 03:47 . 2012-11-12 03:47 255968 ----a-w- c:\windows\system32\drivers\avgldx86.sys 2012-11-10 14:25 . 2012-04-30 20:52 697272 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2012-11-10 14:25 . 2011-05-17 16:05 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-11-09 16:49 . 2012-09-03 21:10 26984 ----a-w- c:\windows\system32\drivers\avgtpx86.sys 2012-10-25 02:12 . 2012-10-25 02:12 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx 2012-10-25 02:12 . 2012-10-25 02:12 69632 ----a-w- c:\windows\system32\QuickTime.qts 2012-10-22 18:58 . 2012-10-22 18:58 93672 ----a-w- c:\windows\system32\WindowsAccessBridge.dll 2012-10-22 18:58 . 2012-08-08 19:10 821736 ----a-w- c:\windows\system32\npdeployJava1.dll 2012-10-22 18:58 . 2010-08-26 07:44 746984 ----a-w- c:\windows\system32\deployJava1.dll 2012-10-10 20:15 . 2012-10-10 20:15 1867112 ----a-w- c:\windows\system32\nvcuvenc.dll 2012-10-10 20:15 . 2012-10-10 20:15 2574696 ----a-w- c:\windows\system32\nvcuvid.dll 2012-10-10 20:14 . 2012-10-10 20:14 888168 ----a-w- c:\windows\system32\nvdispgenco32.dll 2012-10-10 20:14 . 2010-07-10 03:37 12501352 ----a-w- c:\windows\system32\nvwgf2um.dll 2012-10-10 20:14 . 2012-10-10 20:14 17559912 ----a-w- c:\windows\system32\nvcompiler.dll 2012-10-10 20:14 . 2008-06-12 04:48 2428776 ----a-w- c:\windows\system32\nvapi.dll 2012-10-10 20:14 . 2012-10-10 20:14 7697768 ----a-w- c:\windows\system32\nvcuda.dll 2012-10-10 20:14 . 2012-10-10 20:14 10837352 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys 2012-10-10 20:14 . 2012-10-10 20:14 19906920 ----a-w- c:\windows\system32\nvoglv32.dll 2012-10-10 20:14 . 2012-10-10 20:14 1009512 ----a-w- c:\windows\system32\nvdispco32.dll 2012-10-10 20:14 . 2012-10-10 20:14 6127464 ----a-w- c:\windows\system32\nvopencl.dll 2012-10-10 20:14 . 2008-06-12 04:48 15309160 ----a-w- c:\windows\system32\nvd3dum.dll 2012-10-02 19:29 . 2010-07-09 14:37 645992 ----a-w- c:\windows\system32\nvvsvc.exe 2012-10-02 19:29 . 2010-07-09 14:37 62312 ----a-w- c:\windows\system32\nvshext.dll 2012-10-02 19:29 . 2010-07-09 14:37 108392 ----a-w- c:\windows\system32\nvmctray.dll 2012-10-02 19:29 . 2010-07-09 14:37 2853224 ----a-w- c:\windows\system32\nvsvc.dll 2012-10-02 19:28 . 2010-07-09 14:37 3965288 ----a-w- c:\windows\system32\nvcpl.dll 2012-10-02 12:15 . 2012-10-02 12:15 430952 ----a-w- c:\windows\system32\nvStreaming.exe 2012-09-29 18:54 . 2012-11-12 20:55 22856 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-09-25 16:19 . 2012-11-17 00:13 75776 ----a-w- c:\windows\system32\synceng.dll 2007-03-12 17:59 . 2007-03-12 17:59 299008 ----a-w- c:\program files\navigram_register.exe 2009-10-27 20:17 . 2009-10-27 20:17 119808 ----a-w- c:\program files\mozilla firefox\components\GoogleDesktopMozilla.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920] "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240] "Sony PC Companion"="c:\program files\Sony\Sony PC Companion\PCCompanion.exe" [2012-09-12 445624] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AVG_TRAY"="c:\program files\AVG\AVG10\avgtray.exe" [2012-08-01 2345592] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2011-08-31 40368] "Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 648072] "vProt"="c:\program files\AVG Secure Search\vprot.exe" [2012-11-09 997320] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2012-10-25 421888] "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-11-28 59280] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-12-12 152544] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG10\avgchsvx.exe /sync\0c:\progra~1\AVG\AVG10\avgrsx.exe /sync /restart . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf] @="Driver" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd] @="Driver" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] @="Service" . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ACTIVBOARD] 2007-01-18 12:03 79416 ----a-w- c:\program files\Packard Bell\FIJI\aboard.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] 2011-03-29 19:59 937920 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon] 2012-11-28 13:13 59280 ----a-w- c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoEJCD_0ACE20FF] 2011-07-23 20:16 40960 ----a-w- c:\program files\AutoInstall\ZD1211B_Auto_Install_CD_Only_Gen_0ACE20FF\AutoEJCD.EXE . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoStartNPSAgent] 2009-04-02 16:05 102400 ----a-w- c:\program files\Samsung\Samsung New PC Studio\NPSAgent.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Digiarty_Software_AirPlayit] 2012-02-28 14:06 10468672 ----a-w- c:\program files\Digiarty\Air_Playit\airplayit.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate] 2011-07-28 23:08 1259376 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Family Tree Builder Update] 2011-12-21 15:26 229376 ----a-w- c:\myheritage\Bin\FTBCheckUpdates.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Garmin Lifetime Updater] 2012-06-04 07:31 1466760 ----a-w- c:\program files\Garmin\Lifetime Updater\GarminLifetime.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] 2010-10-27 20:46 136176 ----atw- c:\users\Andre\AppData\Local\Google\Update\GoogleUpdate.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor] 2008-10-25 09:44 31072 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] 2012-12-12 12:57 152544 ----a-w- c:\program files\iTunes\iTunesHelper.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesHelper] 2012-03-31 02:38 954256 ----a-w- c:\program files\Samsung\Kies\KiesHelper.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR] 2012-03-31 02:38 21392 ----a-w- c:\program files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent] 2012-03-31 02:38 3521424 ----a-w- c:\program files\Samsung\Kies\KiesTrayAgent.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ROC_roc_dec12] 2012-01-15 15:17 928096 ----a-w- c:\program files\AVG Secure Search\ROC_roc_dec12.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ROC_ROC_JULY_P1] 2012-09-03 21:10 1022048 ----a-w- c:\program files\AVG Secure Search\ROC_ROC_JULY_P1.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar] 2009-04-11 06:28 1233920 ----a-w- c:\program files\Windows Sidebar\sidebar.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion] 2012-09-12 10:17 445624 ----a-w- c:\program files\Sony\Sony PC Companion\PCCompanion.exe . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020 "ehTray.exe"=c:\windows\ehome\ehTray.exe . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" "IJNetworkScanUtility"=c:\program files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 . --- Andere Services/Drivers In Geheugen --- . *NewlyCreated* - FSUSBEXDISK *NewlyCreated* - WS2IFSL . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache WindowsMobile REG_MULTI_SZ wcescomm rapimgr LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr bthsvcs REG_MULTI_SZ BthServ . Inhoud van de 'Gedeelde Taken' map . 2012-12-16 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-30 14:25] . 2012-12-16 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2750110002-429237647-2996640338-1000Core.job - c:\users\Andre\AppData\Local\Google\Update\GoogleUpdate.exe [2011-02-12 20:46] . 2012-12-16 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2750110002-429237647-2996640338-1000UA.job - c:\users\Andre\AppData\Local\Google\Update\GoogleUpdate.exe [2011-02-12 20:46] . 2012-12-17 c:\windows\Tasks\Uitgebreide garantie-Andre.job - c:\program files\Packard Bell\SetupmyPC\PBCarNot.exe [2008-06-11 09:13] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://google.nl/ uInternet Settings,ProxyOverride = *.local IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 TCP: DhcpNameServer = 192.168.1.1 Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll DPF: {79D6214F-CFCE-480F-9901-27950E78F1E6} - hxxps://ssl.bjzhlzh.nl/MLWebCacheCleaner.cab DPF: {888078C6-70B2-4F88-8EE7-1F50DDEA6120} - hxxps://as.photoprintit.de/ips-opdata/activex/ImageUploader6.cab FF - ProfilePath - c:\users\Andre\AppData\Roaming\Mozilla\Firefox\Profiles\43s7o1v3.default\ . - - - - ORPHANS VERWIJDERD - - - - . HKCU-Run-MobileDocuments - c:\program files\Common Files\Apple\Internet Services\ubd.exe HKLM-Run-NPSStartup - (no file) MSConfigStartUp-msnmsgr - ~c:\program files\Windows Live\Messenger\msnmsgr.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2012-12-17 08:44 Windows 6.0.6002 Service Pack 2 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 "MSCurrentCountry"=dword:00000000 . Voltooingstijd: 2012-12-17 08:45:43 ComboFix-quarantined-files.txt 2012-12-17 07:45 ComboFix2.txt 2012-12-16 18:33 . Pre-Run: 58.981.896.192 bytes beschikbaar Post-Run: 58.951.217.152 bytes beschikbaar . - - End Of File - - 73C48F7733AC46A34710469EA84CC0FB
  14. mave94
    Dit is de log van ComboFix: ComboFix 12-12-14.01 - Andre 16-12-2012 19:05:24.1.2 - x86 Gestart vanuit: c:\users\Andre\Desktop\ComboFix.exe . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\program files\DealPly c:\program files\DealPly\DealPly.crx c:\program files\DealPly\DealPlyUpdate.exe c:\program files\DealPly\DealPlyUpdate.log c:\program files\DealPly\DealPlyUpdateRun.exe c:\program files\DealPly\icon.ico c:\program files\DealPly\uninst.exe c:\program files\Downloaded Installers c:\programdata\440EF918C6.sys c:\windows\desktop c:\windows\desktop\Keukenarchitect.lnk c:\windows\IsUn0413.exe c:\windows\system32\SET27B7.tmp D:\resycled I:\resycled K:\autorun.inf K:\install.exe . . (((((((((((((((((((( Bestanden Gemaakt van 2012-11-16 to 2012-12-16 )))))))))))))))))))))))))))))) . . 2012-12-16 18:15 . 2012-12-16 18:30 -------- d-----w- c:\users\Andre\AppData\Local\temp 2012-12-16 18:15 . 2012-12-16 18:15 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-12-16 16:30 . 2012-12-16 16:30 388096 ----a-r- c:\users\Andre\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2012-12-16 16:30 . 2012-12-16 16:30 -------- d-----w- c:\program files\HJT 2012-12-16 00:21 . 2012-12-16 00:21 -------- d-----w- c:\program files\iPod 2012-12-16 00:21 . 2012-12-16 00:21 -------- d-----w- c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1 2012-12-16 00:21 . 2012-12-16 00:21 -------- d-----w- c:\program files\iTunes 2012-12-11 22:41 . 2012-07-26 02:46 9728 ----a-w- c:\windows\system32\Wdfres.dll 2012-12-11 22:41 . 2012-07-26 02:33 66560 ----a-w- c:\windows\system32\drivers\WUDFPf.sys 2012-12-11 22:41 . 2012-07-26 02:32 155136 ----a-w- c:\windows\system32\drivers\WUDFRd.sys 2012-12-11 22:41 . 2009-07-14 12:12 16896 ----a-w- c:\windows\system32\winusb.dll 2012-12-11 22:41 . 2012-07-26 03:39 526952 ----a-w- c:\windows\system32\drivers\Wdf01000.sys 2012-12-11 22:41 . 2012-07-26 03:39 47720 ----a-w- c:\windows\system32\drivers\WdfLdr.sys 2012-12-11 22:41 . 2012-07-26 03:20 73216 ----a-w- c:\windows\system32\WUDFSvc.dll 2012-12-11 22:41 . 2012-07-26 03:20 172032 ----a-w- c:\windows\system32\WUDFPlatform.dll 2012-12-11 22:41 . 2012-07-26 03:21 196608 ----a-w- c:\windows\system32\WUDFHost.exe 2012-12-11 22:41 . 2012-07-26 03:20 613888 ----a-w- c:\windows\system32\WUDFx.dll 2012-12-11 22:41 . 2012-07-26 03:20 38912 ----a-w- c:\windows\system32\WUDFCoinstaller.dll 2012-12-11 21:27 . 2012-11-13 01:36 2048000 ----a-w- c:\windows\system32\win32k.sys 2012-12-11 21:27 . 2012-11-02 10:18 376320 ----a-w- c:\windows\system32\dpnet.dll 2012-12-11 21:27 . 2012-11-02 08:26 23040 ----a-w- c:\windows\system32\dpnsvr.exe 2012-12-11 21:27 . 2012-08-21 11:47 224640 ----a-w- c:\windows\system32\drivers\volsnap.sys 2012-12-11 21:27 . 2012-11-08 03:46 34304 ----a-w- c:\windows\system32\atmlib.dll 2012-12-11 21:27 . 2012-11-08 01:36 293376 ----a-w- c:\windows\system32\atmfd.dll 2012-12-11 21:27 . 2012-11-13 01:29 2048 ----a-w- c:\windows\system32\tzres.dll 2012-12-11 21:24 . 2012-12-11 21:24 -------- d-----w- c:\users\Default\AppData\Roaming\TuneUp Software 2012-11-19 07:22 . 2012-11-19 07:22 -------- d-----w- c:\users\UpdatusUser 2012-11-19 07:21 . 2012-10-02 19:29 2557288 ----a-w- c:\windows\system32\nvsvcr.dll 2012-11-17 00:13 . 2012-09-25 16:19 75776 ----a-w- c:\windows\system32\synceng.dll . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-11-12 03:47 . 2012-11-12 03:47 255968 ----a-w- c:\windows\system32\drivers\avgldx86.sys 2012-11-10 14:25 . 2012-04-30 20:52 697272 ----a-w- c:\windows\system32\FlashPlayerApp.exe 2012-11-10 14:25 . 2011-05-17 16:05 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-11-09 16:49 . 2012-09-03 21:10 26984 ----a-w- c:\windows\system32\drivers\avgtpx86.sys 2012-10-25 02:12 . 2012-10-25 02:12 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx 2012-10-25 02:12 . 2012-10-25 02:12 69632 ----a-w- c:\windows\system32\QuickTime.qts 2012-10-22 18:58 . 2012-10-22 18:58 93672 ----a-w- c:\windows\system32\WindowsAccessBridge.dll 2012-10-22 18:58 . 2012-08-08 19:10 821736 ----a-w- c:\windows\system32\npdeployJava1.dll 2012-10-22 18:58 . 2010-08-26 07:44 746984 ----a-w- c:\windows\system32\deployJava1.dll 2012-10-10 20:15 . 2012-10-10 20:15 1867112 ----a-w- c:\windows\system32\nvcuvenc.dll 2012-10-10 20:15 . 2012-10-10 20:15 2574696 ----a-w- c:\windows\system32\nvcuvid.dll 2012-10-10 20:14 . 2012-10-10 20:14 888168 ----a-w- c:\windows\system32\nvdispgenco32.dll 2012-10-10 20:14 . 2010-07-10 03:37 12501352 ----a-w- c:\windows\system32\nvwgf2um.dll 2012-10-10 20:14 . 2012-10-10 20:14 17559912 ----a-w- c:\windows\system32\nvcompiler.dll 2012-10-10 20:14 . 2008-06-12 04:48 2428776 ----a-w- c:\windows\system32\nvapi.dll 2012-10-10 20:14 . 2012-10-10 20:14 7697768 ----a-w- c:\windows\system32\nvcuda.dll 2012-10-10 20:14 . 2012-10-10 20:14 10837352 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys 2012-10-10 20:14 . 2012-10-10 20:14 19906920 ----a-w- c:\windows\system32\nvoglv32.dll 2012-10-10 20:14 . 2012-10-10 20:14 1009512 ----a-w- c:\windows\system32\nvdispco32.dll 2012-10-10 20:14 . 2012-10-10 20:14 6127464 ----a-w- c:\windows\system32\nvopencl.dll 2012-10-10 20:14 . 2008-06-12 04:48 15309160 ----a-w- c:\windows\system32\nvd3dum.dll 2012-10-02 19:29 . 2010-07-09 14:37 645992 ----a-w- c:\windows\system32\nvvsvc.exe 2012-10-02 19:29 . 2010-07-09 14:37 62312 ----a-w- c:\windows\system32\nvshext.dll 2012-10-02 19:29 . 2010-07-09 14:37 108392 ----a-w- c:\windows\system32\nvmctray.dll 2012-10-02 19:29 . 2010-07-09 14:37 2853224 ----a-w- c:\windows\system32\nvsvc.dll 2012-10-02 19:28 . 2010-07-09 14:37 3965288 ----a-w- c:\windows\system32\nvcpl.dll 2012-10-02 12:15 . 2012-10-02 12:15 430952 ----a-w- c:\windows\system32\nvStreaming.exe 2012-09-29 18:54 . 2012-11-12 20:55 22856 ----a-w- c:\windows\system32\drivers\mbam.sys 2007-03-12 17:59 . 2007-03-12 17:59 299008 ----a-w- c:\program files\navigram_register.exe 2009-10-27 20:17 . 2009-10-27 20:17 119808 ----a-w- c:\program files\mozilla firefox\components\GoogleDesktopMozilla.dll . <pre> c:\program files\Adobe\Reader 9.0\Reader\Reader_sl .exe c:\program files\Common Files\Java\Java Update\jusched .exe c:\program files\Microsoft Office\Office12\GrooveMonitor .exe c:\program files\Packard Bell\FIJI\aboard .exe </pre> . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}] 2012-11-09 16:49 1796552 ----a-w- c:\program files\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920] "MobileDocuments"="c:\program files\Common Files\Apple\Internet Services\ubd.exe" [N/A] "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240] "Sony PC Companion"="c:\program files\Sony\Sony PC Companion\PCCompanion.exe" [2012-09-12 445624] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "AVG_TRAY"="c:\program files\AVG\AVG10\avgtray.exe" [2012-08-01 2345592] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2011-08-31 40368] "Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 648072] "vProt"="c:\program files\AVG Secure Search\vprot.exe" [2012-11-09 997320] "NPSStartup"="" [N/A] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2012-10-25 421888] "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-11-28 59280] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-12-12 152544] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG10\avgchsvx.exe /sync\0c:\progra~1\AVG\AVG10\avgrsx.exe /sync /restart . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf] @="Driver" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd] @="Driver" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] @="Service" . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ACTIVBOARD] 2007-01-18 12:03 79416 ----a-w- c:\program files\Packard Bell\FIJI\ABoard.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] 2011-03-29 19:59 937920 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon] 2012-11-28 13:13 59280 ----a-w- c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoEJCD_0ACE20FF] 2011-07-23 20:16 40960 ----a-w- c:\program files\AutoInstall\ZD1211B_Auto_Install_CD_Only_Gen_0ACE20FF\AutoEJCD.EXE . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AutoStartNPSAgent] 2009-04-02 16:05 102400 ----a-w- c:\program files\Samsung\Samsung New PC Studio\NPSAgent.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Digiarty_Software_AirPlayit] 2012-02-28 14:06 10468672 ----a-w- c:\program files\Digiarty\Air_Playit\airplayit.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate] 2011-07-28 23:08 1259376 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Family Tree Builder Update] 2011-12-21 15:26 229376 ----a-w- c:\myheritage\Bin\FTBCheckUpdates.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Garmin Lifetime Updater] 2012-06-04 07:31 1466760 ----a-w- c:\program files\Garmin\Lifetime Updater\GarminLifetime.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] 2010-10-27 20:46 136176 ----atw- c:\users\Andre\AppData\Local\Google\Update\GoogleUpdate.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor] 2009-02-26 17:36 30040 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] 2012-12-12 12:57 152544 ----a-w- c:\program files\iTunes\iTunesHelper.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesHelper] 2012-03-31 02:38 954256 ----a-w- c:\program files\Samsung\Kies\KiesHelper.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR] 2012-03-31 02:38 21392 ----a-w- c:\program files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent] 2012-03-31 02:38 3521424 ----a-w- c:\program files\Samsung\Kies\KiesTrayAgent.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] ~c:\program files\Windows Live\Messenger\msnmsgr.exe [N/A] . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ROC_roc_dec12] 2012-01-15 15:17 928096 ----a-w- c:\program files\AVG Secure Search\ROC_roc_dec12.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ROC_ROC_JULY_P1] 2012-09-03 21:10 1022048 ----a-w- c:\program files\AVG Secure Search\ROC_ROC_JULY_P1.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar] 2009-04-11 06:28 1233920 ----a-w- c:\program files\Windows Sidebar\sidebar.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony PC Companion] 2012-09-12 10:17 445624 ----a-w- c:\program files\Sony\Sony PC Companion\PCCompanion.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM] 2012-10-04 14:34 115032 ----a-r- c:\program files\SweetIM\Messenger\SweetIM.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sweetpacks Communicator] 2012-08-15 17:08 231768 ----a-w- c:\program files\SweetIM\Communicator\SweetPacksUpdateManager.exe . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020 "ehTray.exe"=c:\windows\ehome\ehTray.exe . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" "IJNetworkScanUtility"=c:\program files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache WindowsMobile REG_MULTI_SZ wcescomm rapimgr LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr bthsvcs REG_MULTI_SZ BthServ . Inhoud van de 'Gedeelde Taken' map . 2012-12-16 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-30 14:25] . 2012-12-16 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2750110002-429237647-2996640338-1000Core.job - c:\users\Andre\AppData\Local\Google\Update\GoogleUpdate.exe [2011-02-12 20:46] . 2012-12-16 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2750110002-429237647-2996640338-1000UA.job - c:\users\Andre\AppData\Local\Google\Update\GoogleUpdate.exe [2011-02-12 20:46] . 2012-12-16 c:\windows\Tasks\Uitgebreide garantie-Andre.job - c:\program files\Packard Bell\SetupmyPC\PBCarNot.exe [2008-06-11 09:13] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://google.nl/ uInternet Settings,ProxyOverride = *.local IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 TCP: DhcpNameServer = 192.168.1.1 Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll DPF: {79D6214F-CFCE-480F-9901-27950E78F1E6} - hxxps://ssl.bjzhlzh.nl/MLWebCacheCleaner.cab DPF: {888078C6-70B2-4F88-8EE7-1F50DDEA6120} - hxxps://as.photoprintit.de/ips-opdata/activex/ImageUploader6.cab FF - ProfilePath - c:\users\Andre\AppData\Roaming\Mozilla\Firefox\Profiles\43s7o1v3.default\ FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2269050&SearchSource=3&q={searchTerms} FF - prefs.js: browser.startup.homepage - hxxp://search.conduit.com/?ctid=CT2269050&SearchSource=13 FF - prefs.js: keyword.URL - hxxp://search.babylon.com/?affID=110819&babsrc=KW_ss&mntrId=d866d299000000000000001e9047374f&q= FF - user.js: extensions.BabylonToolbar_i.id - d866d299000000000000001e9047374f FF - user.js: extensions.BabylonToolbar_i.hardId - d866d299000000000000001e9047374f FF - user.js: extensions.BabylonToolbar_i.instlDay - 15455 FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17 FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17 FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.1720:33 FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar FF - user.js: extensions.BabylonToolbar_i.aflt - babsst FF - user.js: extensions.BabylonToolbar_i.smplGrp - none FF - user.js: extensions.BabylonToolbar_i.tlbrId - tb9 FF - user.js: extensions.BabylonToolbar_i.newTab - false FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=110819 FF - user.js: extensions.BabylonToolbar_i.babExt - FF - user.js: extensions.BabylonToolbar_i.srcExt - ss FF - user.js: extensions.BabylonToolbar_i.instlRef - sst . - - - - ORPHANS VERWIJDERD - - - - . AddRemove-DealPly - c:\program files\DealPly\uninst.exe AddRemove-HandBrake - k:\program files\Handbrake\uninst.exe AddRemove-MeMo Leerlingen-cd-rom 1 1036 - c:\windows\IsUn0413.exe AddRemove-PDF Creator - c:\program\uninstpw.exe AddRemove-WinX HD Video Converter Deluxe_is1 - k:\program files\WinX_HD_Video_Converter_Deluxe\unins000.exe AddRemove-01_Simmental - c:\program files\Samsung\USB Drivers\01_Simmental\Uninstall.exe AddRemove-02_Siberian - c:\program files\Samsung\USB Drivers\02_Siberian\Uninstall.exe AddRemove-03_Swallowtail - c:\program files\Samsung\USB Drivers\03_Swallowtail\Uninstall.exe AddRemove-04_semseyite - c:\program files\Samsung\USB Drivers\04_semseyite\Uninstall.exe AddRemove-05_Sloan - c:\program files\Samsung\USB Drivers\05_Sloan\Uninstall.exe AddRemove-06_Spencer - c:\program files\Samsung\USB Drivers\06_Spencer\Uninstall.exe AddRemove-07_Schorl - c:\program files\Samsung\USB Drivers\07_Schorl\Uninstall.exe AddRemove-08_EMPChipset - c:\program files\Samsung\USB Drivers\08_EMPChipset\Uninstall.exe AddRemove-09_Hsp - c:\program files\Samsung\USB Drivers\09_Hsp\Uninstall.exe AddRemove-11_HSP_Plus_Default - c:\program files\Samsung\USB Drivers\11_HSP_Plus_Default\Uninstall.exe AddRemove-16_Shrewsbury - c:\program files\Samsung\USB Drivers\16_Shrewsbury\Uninstall.exe AddRemove-17_EMP_Chipset2 - c:\program files\Samsung\USB Drivers\17_EMP_Chipset2\Uninstall.exe AddRemove-18_Zinia_Serial_Driver - c:\program files\Samsung\USB Drivers\18_Zinia_Serial_Driver\Uninstall.exe AddRemove-19_VIA_driver - c:\program files\Samsung\USB Drivers\19_VIA_driver\Uninstall.exe AddRemove-20_NXP_Driver - c:\program files\Samsung\USB Drivers\20_NXP_Driver\Uninstall.exe AddRemove-21_Searsburg - c:\program files\Samsung\USB Drivers\21_Searsburg\Uninstall.exe AddRemove-22_WiBro_WiMAX - c:\program files\Samsung\USB Drivers\22_WiBro_WiMAX\Uninstall.exe AddRemove-24_flashusbdriver - c:\program files\Samsung\USB Drivers\24_flashusbdriver\Uninstall.exe AddRemove-25_escape - c:\program files\Samsung\USB Drivers\25_escape\Uninstall.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2012-12-16 19:30 Windows 6.0.6002 Service Pack 2 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 "MSCurrentCountry"=dword:00000000 . Voltooingstijd: 2012-12-16 19:33:01 ComboFix-quarantined-files.txt 2012-12-16 18:32 . Pre-Run: 58.066.636.800 bytes beschikbaar Post-Run: 58.841.055.232 bytes beschikbaar . - - End Of File - - 3633EA742CFAF944351699699F94BEF2
  15. mave94
    Bedankt voor het advies. Ik zal binnenkort m'n computer bestellen.
  16. mave94
    Malwarebytes Anti-Malware 1.65.1.1000 Malwarebytes : Free anti-malware download Databaseversie: v2012.12.11.11 Windows Vista Service Pack 2 x86 NTFS Internet Explorer 9.0.8112.16421 Andre :: PC_VAN_ANDRE [administrator] 16-12-2012 18:19:37 mbam-log-2012-12-16 (18-19-37).txt Scantype: Snelle scan Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM Uitgeschakelde scanopties: P2P Objecten gescand: 238198 Verstreken tijd: 8 minuut/minuten, 22 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerwaarden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerdata gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Mappen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Bestanden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) (einde) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 18:31:21, on 16-12-2012 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16457) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\system32\taskeng.exe C:\Windows\Explorer.EXE C:\Program Files\AVG\AVG PC Tuneup 2011\BoostSpeed.exe C:\Windows\system32\taskeng.exe C:\Program Files\AVG\AVG10\avgtray.exe C:\Windows\WindowsMobile\wmdc.exe C:\Program Files\AVG Secure Search\vprot.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\Digiarty\Air_Playit\airplayit.exe C:\Program Files\NVIDIA Corporation\Display\nvtray.exe C:\Program Files\Digiarty\Air_Playit\AirPS.exe C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe C:\Windows\System32\mobsync.exe C:\Program Files\Sony\Sony PC Companion\PCCompanionInfo.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE C:\Program Files\iTunes\iTunes.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe C:\Windows\system32\msconfig.exe C:\Users\Andre\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Andre\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Andre\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Andre\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Andre\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Andre\AppData\Local\Google\Chrome\Application\chrome.exe C:\Program Files\Internet Explorer\IELowutil.exe C:\Windows\system32\SearchFilterHost.exe C:\Program Files\HJT\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Google R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O1 - Hosts: ::1 localhost O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [MobileDocuments] C:\Program Files\Common Files\Apple\Internet Services\ubd.exe O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [Digiarty_Software_AirPlayit] "C:\Program Files\Digiarty\Air_Playit\airplayit.exe" -min O4 - HKCU\..\Run: [sony PC Companion] "C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe" /Background O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-2750110002-429237647-2996640338-1001\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'UpdatusUser') O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {1C11B948-582A-433F-A98D-A8C4D5CC64F2} (20-20 3D Viewer) - http://kitchenplanner.ikea.com/NL/Core/Player/2020PlayerAX_Win32.cab O16 - DPF: {6E718D87-6909-4FCE-92D4-EDCB2F725727} (Navigram Control) - http://www.navigram.com/engine/v1120/Navigram.cab O16 - DPF: {79D6214F-CFCE-480F-9901-27950E78F1E6} (WebCacheCleaner Class) - https://ssl.bjzhlzh.nl/MLWebCacheCleaner.cab O16 - DPF: {888078C6-70B2-4F88-8EE7-1F50DDEA6120} (CeWe Color AG & Co. OHG Control) - https://as.photoprintit.de/ips-opdata/activex/ImageUploader6.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgfws.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files\Sony\Sony PC Companion\PCCService.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- End of file - 11822 bytes
  17. mave94
    Ik had enkele weken geleden ook hier een topic gepost en gelukkig is dat met jullie hulp opgelost. Mijn vader heeft nu ook ineens problemen met zijn computer. De computer is heel traag en Microsoft Office werkt niet goed meer. Kan één van jullie deze logfile nakijken? Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 17:33:25, on 16-12-2012 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16457) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\system32\taskeng.exe C:\Windows\Explorer.EXE C:\Program Files\AVG\AVG PC Tuneup 2011\BoostSpeed.exe C:\Windows\system32\taskeng.exe C:\Program Files\AVG\AVG10\avgtray.exe C:\Windows\WindowsMobile\wmdc.exe C:\Program Files\AVG Secure Search\vprot.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\Digiarty\Air_Playit\airplayit.exe C:\Program Files\NVIDIA Corporation\Display\nvtray.exe C:\Program Files\Digiarty\Air_Playit\AirPS.exe C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe C:\Windows\System32\mobsync.exe C:\Program Files\Sony\Sony PC Companion\PCCompanionInfo.exe C:\Windows\system32\wbem\unsecapp.exe C:\Users\Andre\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Andre\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Andre\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Andre\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Andre\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Andre\AppData\Local\Google\Chrome\Application\chrome.exe C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE C:\Users\Andre\AppData\Local\Google\Chrome\Application\chrome.exe C:\Program Files\iTunes\iTunes.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceHelper.exe C:\Program Files\Common Files\Apple\Apple Application Support\distnoted.exe C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe C:\Users\Andre\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Andre\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Andre\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Andre\AppData\Local\Google\Chrome\Application\chrome.exe C:\Program Files\Microsoft Office\Office12\EXCEL.EXE C:\Users\Andre\AppData\Local\Google\Chrome\Application\chrome.exe C:\Program Files\HJT\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Google R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (file missing) O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll O2 - BHO: DealPly - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Program Files\DealPly\DealPlyIE.dll O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (file missing) O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file) O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\13.2.0.5\AVG Secure Search_toolbar.dll O3 - Toolbar: SweetPacks Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [MobileDocuments] C:\Program Files\Common Files\Apple\Internet Services\ubd.exe O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [Digiarty_Software_AirPlayit] "C:\Program Files\Digiarty\Air_Playit\airplayit.exe" -min O4 - HKCU\..\Run: [sony PC Companion] "C:\Program Files\Sony\Sony PC Companion\PCCompanion.exe" /Background O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-2750110002-429237647-2996640338-1001\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'UpdatusUser') O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll O9 - Extra button: (no name) - {53F6FCCD-9E22-4d71-86EA-6E43136192AB} - (no file) O9 - Extra button: (no name) - {925DAB62-F9AC-4221-806A-057BFB1014AA} - (no file) O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {1C11B948-582A-433F-A98D-A8C4D5CC64F2} (20-20 3D Viewer) - http://kitchenplanner.ikea.com/NL/Core/Player/2020PlayerAX_Win32.cab O16 - DPF: {6E718D87-6909-4FCE-92D4-EDCB2F725727} (Navigram Control) - http://www.navigram.com/engine/v1120/Navigram.cab O16 - DPF: {79D6214F-CFCE-480F-9901-27950E78F1E6} (WebCacheCleaner Class) - https://ssl.bjzhlzh.nl/MLWebCacheCleaner.cab O16 - DPF: {888078C6-70B2-4F88-8EE7-1F50DDEA6120} (CeWe Color AG & Co. OHG Control) - https://as.photoprintit.de/ips-opdata/activex/ImageUploader6.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgfws.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Sony PC Companion - Avanquest Software - C:\Program Files\Sony\Sony PC Companion\PCCService.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- End of file - 13369 bytes
  18. mave94
    Mijn huidige computer is nodig aan vervanging toe. Ik wil hem graag zelf samenstellen en daarom post ik hier een topic. Bedankt alvast voor jullie goede hulp. Waarvoor heb ik een PC nodig ? - Naast standaard dingen wil ik ook graag grafische programma´s zoals Photoshop, 3ds max en Virtual DJ kunnen gebruiken. Met Photoshop doe ik veelal niet heel ingewikkelde dingen, maar met 3ds max doe ik ook regelmatig 3d renderen. Ik zou het fijn vinden als ik meerdere programma´s tegelijk zou kunnen laten draaien. Wat is mijn budget ? - Mijn budget ligt tussen de 1100 en 1300 euro. Een merkcomputer of een samenstelling ? - Het liefst een samenstelling, want dan kan de computer worden afgesteld op mijn eisen. Ga ik overklokken ? - Nee. Ga ik later upgraden ? - Wellicht HDD (deels) vervangen door een SSD. Verder hangt het ervan af hoe goed de specificaties zijn van mijn nieuwe computer. Heb ik al die nieuwe functies wel nodig ? - USB 3.0 lijkt mij vooralsnog niet nodig. Een blue-ray speler/brander heb ik sowiezo niet nodig; een cd-rom/cd speler volstaat. Ga ik zelf assembleren ? - Ik laat de computer assembleren, omdat ik niet het risico wil lopen om onderdelen verkeerd aan te sluiten. Heb ik een besturingssysteem nodig ? - Windows 7, Home Premium is voldoende. Liefst wel met mogelijkheid tot upgraden naar Windows 8. Ga ik zelf installeren ? - Dit lijkt mij wel dat ik zelf kan doen. Heb ik een voorkeur aan onderdelen ? - Niet specifiek. Heb ik nog randapparatuur nodig ? - Alle toebehoren heb ik al. Heb ik specifieke wensen ? - Een mooie behuizing is mooi meegenomen, maar is geen vereiste. Goede specificaties en dus een snellere pc vind ik belangrijker. Woont u in Nederland of België, wil u bestellen bij een specifieke (web)winkel ?- Ik woon in Nederland en heb geen specifieke voorkeur voor een winkel. Ik heb van verschillende mensen gehoord dat ze ontzettend blij zijn met een SSD en dat dat zeker te merken is aan de snelheid, ook wanneer alleen het besturingssysteem op de SSD staat. Echter raden ze in de winkel een SSD nog niet aan, omdat het momenteel nog heel duur is. Is het raadzaam een SSD te kopen, aangezien velen die ik ken het aanraden?
  19. mave94
    Ja, nu is alles OK. Ik heb ook het idee alsof de computer iets sneller is geworden. Wat kan ik nu doen met de gedownloade programma's?
  20. mave94
    # AdwCleaner v2.008 - Verslag gemaakt op 19/11/2012 om 08:14:57 # Geactualiseerd op 17/11/2012 door Xplode # Besturingssysteem : Windows Vista Home Premium Service Pack 1 (32 bits) # Gebruiker : Matthijs - PC_VAN_MATTHIJS # Opstarten Modus : Normale modus # Gelanceerd vanaf : C:\Users\Matthijs\Desktop\adwcleaner.exe # Optie [Verwijderen] ***** [Diensten] ***** ***** [Files / Mappen] ***** Map Verwijdert : C:\Program Files\AVG Secure Search Map Verwijdert : C:\Program Files\Babylon Map Verwijdert : C:\Program Files\BabylonToolbar Map Verwijdert : C:\Program Files\Conduit Map Verwijdert : C:\Program Files\ConduitEngine Map Verwijdert : C:\Program Files\PHPNukeDU Map Verwijdert : C:\ProgramData\AVG Secure Search Map Verwijdert : C:\ProgramData\Babylon Map Verwijdert : C:\ProgramData\FreeRIP Map Verwijdert : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Babylon Map Verwijdert : C:\Users\Matthijs\AppData\Local\AVG Secure Search Map Verwijdert : C:\Users\Matthijs\AppData\Local\Babylon Map Verwijdert : C:\Users\Matthijs\AppData\Local\Conduit Map Verwijdert : C:\Users\Matthijs\AppData\Local\Google\Chrome\User Data\Default\Extensions\dhkplhfnhceodhffomolpfigojocbpcb Map Verwijdert : C:\Users\Matthijs\AppData\LocalLow\AskToolbar Map Verwijdert : C:\Users\Matthijs\AppData\LocalLow\AVG Secure Search Map Verwijdert : C:\Users\Matthijs\AppData\LocalLow\Conduit Map Verwijdert : C:\Users\Matthijs\AppData\LocalLow\ConduitEngine Map Verwijdert : C:\Users\Matthijs\AppData\LocalLow\FreeRIP Map Verwijdert : C:\Users\Matthijs\AppData\LocalLow\PHPNukeDU Map Verwijdert : C:\Users\Matthijs\AppData\LocalLow\PriceGong Map Verwijdert : C:\Users\Matthijs\AppData\LocalLow\Search Settings Map Verwijdert : C:\Users\Matthijs\AppData\Roaming\Babylon Map Verwijdert : C:\Users\Matthijs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\FreeRIP3 Map Verwijdert : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE} Verwijdert bij het opstarten : C:\Program Files\Common Files\AVG Secure Search ***** [Register] ***** Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\AskToolbar Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\Conduit Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\conduitEngine Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\PHPNukeDU Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\PriceGong Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\Search Settings Sleutel Verwijdert : HKCU\Software\AppDataLow\Toolbar Sleutel Verwijdert : HKCU\Software\Ask.com Sleutel Verwijdert : HKCU\Software\AVG Secure Search Sleutel Verwijdert : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} Sleutel Verwijdert : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9} Sleutel Verwijdert : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Sleutel Verwijdert : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{70D46D94-BF1E-45ED-B567-48701376298E} Sleutel Verwijdert : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} Sleutel Verwijdert : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B} Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{86D4B82A-ABED-442A-BE86-96357B70F4FE} Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG Secure Search Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\PHPNukeDU Toolbar Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D} Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706} Sleutel Verwijdert : HKCU\Software\Search Settings Sleutel Verwijdert : HKLM\Software\Application Updater Sleutel Verwijdert : HKLM\Software\AskToolbar Sleutel Verwijdert : HKLM\Software\AVG Secure Search Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{AD25754E-D76C-42B3-A335-2F81478B722F} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{B16632F1-24E0-4D99-A68D-70BFB6447C48} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{C0CEA572-2978-4DFC-A672-8100FF0E276A} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\BabylonIEPI.DLL Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\BabylonTC.EXE Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\esrv.EXE Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{8DB4B1DD-F45B-4896-A53C-250EEE2F0A34} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{A9E54160-2C23-486B-A349-49B5E72662B7} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{DE92EDC3-42B0-4C13-A486-84C3758A9667} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Conduit.Engine Sleutel Verwijdert : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd Sleutel Verwijdert : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Installer\UpgradeCodes\F928123A039649549966D4C29D35B1C9 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol Sleutel Verwijdert : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi Sleutel Verwijdert : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Toolbar.CT2102399 Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE Sleutel Verwijdert : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1 Sleutel Verwijdert : HKLM\Software\Conduit Sleutel Verwijdert : HKLM\Software\conduitEngine Sleutel Verwijdert : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb Sleutel Verwijdert : HKLM\Software\Iminent Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{16010707-3F99-4227-8F5E-93D813817C6D} Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{37C348A5-6A55-4BEC-BCA7-C1919E70004C} Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A7A0427A-4B52-4709-85A5-D106BD665611} Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E634228A-03CF-4BC8-B0AB-668257F1FD8C} Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F25AF245-4A81-40DC-92F9-E9021F207706} Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B} Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8DB4B1DD-F45B-4896-A53C-250EEE2F0A34} Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC} Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706} Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0E12F736682067FDE4D1158D5940A82E Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\1A24B5BB8521B03E0C8D908F5ABC0AE6 Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\261F213D1F55267499B1F87D0CC3BCF7 Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\2B0D56C4F4C46D844A57FFED6F0D2852 Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\49D4375FE41653242AEA4C969E4E65E0 Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6AA0923513360135B272E8289C5F13FA Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\6F7467AF8F29C134CBBAB394ECCFDE96 Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\741B4ADF27276464790022C965AB6DA8 Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\7DE196B10195F5647A2B21B761F3DE01 Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\922525DCC5199162F8935747CA3D8E59 Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\9D4F5849367142E4685ED8C25E44C5ED Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A5875B04372C19545BEB90D4D606C472 Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\A876D9E80B896EC44A8620248CC79296 Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\B66FFAB725B92594C986DE826A867888 Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\BCDA179D619B91648538E3394CAC94CC Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\D677B1A9671D4D4004F6F2A4469E86EA Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\DD1402A9DD4215A43ABDE169A41AFA0E Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\E36E114A0EAD2AD46B381D23AD69CDDF Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\EF8E618DB3AEDFBB384561B5C548F65E Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE} Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG Secure Search Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Conduit Engine Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PHPNukeDU Toolbar Sleutel Verwijdert : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin Sleutel Verwijdert : HKLM\Software\PHPNukeDU Sleutel Verwijdert : HKLM\Software\Search Settings Sleutel Verwijdert : HKU\S-1-5-21-113954156-2812045587-2317553933-1000\Software\Microsoft\Internet Explorer\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Waarde Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{46735DEE-F862-49D1-876D-6382794DC625}] Waarde Verwijdert : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar] ***** [browsers] ***** -\\ Internet Explorer v7.0.6001.18000 [OK] Het register bevat geen enkele ongeoorloofde invoer. -\\ Google Chrome v23.0.1271.64 File : C:\Users\Matthijs\AppData\Local\Google\Chrome\User Data\Default\Preferences [OK] De file bevat geen enkele ongeoorloofde invoer. ************************* AdwCleaner[s1].txt - [14777 octets] - [19/11/2012 08:14:57] ########## EOF - C:\AdwCleaner[s1].txt - [14838 octets] ##########
  21. mave94
    Ik heb toch maar eens opnieuw naar mijn plug-ins van Google Chrome gekeken. Aangezien dat het eerste was wat ik tegenkwam wat de oorzaak zou zijn, heb ik dat al enkele keren gedaan. Nu vond ik geen bijzondere plug-ins. Ik heb ze allemaal uitgeschakeld en waarempel, alle advertenties weg! Echter waren de uitgeschakelde plugins wel allemaal door mij geïnstalleerd. Welke het was ben ik niet achter, maar het is nu gelukkig in ieder geval opgelost.
  22. mave94
    Ik heb de mappen definitief verwijderd, maar ik heb helaas nog steeds last van die advertenties. Ik dacht dat er wellicht iets op mijn externe hardeschijf stond, want daar komen alle downloads binnen. Helaas zag ik nogsteeds advertenties na het loskoppelen van de externe harde schijf. Kan het ook zijn dat het virus al eerder op mijn computer stond en dat het pas later zichtbaar werd?
  23. mave94
    Hij gaf wel een foutmelding dat het uitpakken van één bestand niet lukte, maar ik weet niet of dat erg is? ComboFix 12-11-16.02 - Matthijs 16/11/2012 17:45:38.2.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.31.1043.18.1790.891 [GMT 1:00] Gestart vanuit: C:\Users\Matthijs\Desktop\ComboFix.exe gebruikte Opdracht switches :: C:\Users\Matthijs\Desktop\CFScript.txt AV: AVG Anti-Virus Free Edition 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9} SP: AVG Anti-Virus Free Edition 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) C:\Users\Matthijs\AppData\Roaming\.# (((((((((((((((((((( Bestanden Gemaakt van 2012-10-16 to 2012-11-16 )))))))))))))))))))))))))))))) 2012-11-16 17:07:35 . 2012-11-16 17:08:01 -------- d-----w- C:\Users\Matthijs\AppData\Local\temp 2012-11-16 17:07:35 . 2012-11-16 17:07:35 -------- d-----w- C:\Users\Default\AppData\Local\temp 2012-11-11 21:51:57 . 2012-11-11 21:51:57 -------- d-----w- C:\Users\Matthijs\AppData\Roaming\Curiolab 2012-11-11 11:27:59 . 2012-11-11 11:27:59 -------- d-----w- C:\Users\Matthijs\AppData\Roaming\Malwarebytes 2012-11-11 11:27:03 . 2012-11-11 11:27:03 -------- d-----w- C:\ProgramData\Malwarebytes 2012-11-11 11:26:54 . 2012-09-29 18:54:26 22856 ----a-w- C:\Windows\system32\drivers\mbam.sys 2012-10-23 18:41:30 . 2012-10-23 18:41:32 -------- d-----w- C:\Program Files\Application Updater 2012-10-23 18:41:19 . 2012-10-23 18:41:30 -------- d-----w- C:\Program Files\FreeRIP Toolbar 2012-10-23 18:41:19 . 2012-10-23 18:41:20 -------- d-----w- C:\Program Files\Common Files\Spigot 2012-10-22 12:02:46 . 2012-10-22 12:02:46 179936 ----a-w- C:\Windows\system32\drivers\avgidsdriverx.sys . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) 2012-11-08 12:56:49 . 2012-08-29 13:32:42 26984 ----a-w- C:\Windows\system32\drivers\avgtpx86.sys 2012-10-15 02:48:52 . 2012-10-15 02:48:52 55776 ----a-w- C:\Windows\system32\drivers\avgidshx.sys 2012-10-05 02:32:50 . 2012-10-05 02:32:50 93536 ----a-w- C:\Windows\system32\drivers\avgmfx86.sys 2012-10-02 01:30:38 . 2012-10-02 01:30:38 159712 ----a-w- C:\Windows\system32\drivers\avgldx86.sys 2012-09-30 09:27:49 . 2012-09-30 09:29:01 93672 ----a-w- C:\Windows\system32\WindowsAccessBridge.dll 2012-09-30 09:27:41 . 2012-06-25 06:06:04 821736 ----a-w- C:\Windows\system32\npdeployJava1.dll 2012-09-30 09:27:41 . 2012-04-22 09:42:06 746984 ----a-w- C:\Windows\system32\deployJava1.dll 2012-09-21 01:46:06 . 2012-09-21 01:46:06 164832 ----a-w- C:\Windows\system32\drivers\avgtdix.sys 2012-09-21 01:46:00 . 2012-09-21 01:46:00 177376 ----a-w- C:\Windows\system32\drivers\avglogx.sys 2012-09-21 01:45:54 . 2012-09-21 01:45:54 19936 ----a-w- C:\Windows\system32\drivers\avgidsshimx.sys 2012-09-14 01:05:20 . 2012-09-14 01:05:20 35552 ----a-w- C:\Windows\system32\drivers\avgrkx86.sys
  24. mave94
    Dit is de HJT logfile na het fixen van dat ene bestand: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 4:32:23 p.m., on 14/11/2012 Platform: Windows Vista SP1 (WinNT 6.00.1905) MSIE: Internet Explorer v7.00 (7.00.6001.18639) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\EgisTec Egis Software Update\EgisUpdate.exe C:\Program Files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe C:\Program Files\Real\RealPlayer\Update\realsched.exe C:\Program Files\AVG Secure Search\vprot.exe G:\Applications\VirtualDJ\Hercules\HDJSeriesCPL.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\AVG\AVG2013\avgui.exe C:\Program Files\Acer\WR_PopUp\ProductReg.exe C:\Windows\System32\mobsync.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Windows\System32\spool\drivers\w32x86\3\E_FATIBVE.EXE C:\Program Files\Acer\WR_PopUp\AcerRegTool.exe C:\Windows\ehome\ehtray.exe C:\Users\Matthijs\AppData\Local\Akamai\netsession_win.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\WinZip\WZQKPICK32.EXE C:\Users\Matthijs\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE C:\Windows\ehome\ehmsas.exe C:\Users\Matthijs\AppData\Local\Akamai\netsession_win.exe C:\Windows\system32\conime.exe C:\Windows\system32\wuauclt.exe C:\Users\Matthijs\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Matthijs\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Matthijs\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Matthijs\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Matthijs\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Matthijs\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Matthijs\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Matthijs\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Matthijs\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Matthijs\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Matthijs\AppData\Local\Google\Chrome\Application\chrome.exe G:\Downloads\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1:9421;<local> O1 - Hosts: ::1 localhost O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7529.1424\swg.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [EgisTecLiveUpdate] "C:\Program Files\EgisTec Egis Software Update\EgisUpdate.exe" O4 - HKLM\..\Run: [mwlDaemon] C:\Program Files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe O4 - HKLM\..\Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon O4 - HKLM\..\Run: [iJNetworkScanUtility] C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Real\RealPlayer\Update\realsched.exe" -osboot O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe" O4 - HKLM\..\Run: [ROC_roc_dec12] "C:\Program Files\AVG Secure Search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12 O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [Hercules DJ Series] G:\Applications\VirtualDJ\Hercules\HDJSeriesCPL.exe /boot O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [ROC_ROC_JULY_P1] "C:\Program Files\AVG Secure Search\ROC_ROC_JULY_P1.exe" / /PROMPT /CMPID=ROC_JULY_P1 O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2013\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [ROC_ROC_NT] "C:\Program Files\AVG Secure Search\ROC_ROC_NT.exe" / /PROMPT /CMPID=ROC_NT O4 - HKCU\..\Run: [ProductReg] C:\Program Files\Acer\WR_PopUp\ProductReg.exe O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [Google Update] "C:\Users\Matthijs\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [EPSON Stylus DX5000 Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIBVE.EXE /FU "C:\Windows\TEMP\E_SEB79.tmp" /EF "HKCU" O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Matthijs\AppData\Local\Akamai\netsession_win.exe" O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Startup: Dropbox.lnk = C:\Users\Matthijs\AppData\Roaming\Dropbox\bin\Dropbox.exe O4 - Startup: OneNote 2010 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK32.EXE O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgwdsvc.exe O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Hercules DJ Control MP3 (HerculesDJControlMP3) - Unknown owner - G:\Applications\VirtualDJ\Hercules\drivers\x86\HerculesDJControlMP3.EXE O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe O23 - Service: mental ray 3.10 Satellite for Autodesk 3ds Max 2013 32-bit (mi-raysat_3dsmax2013_32) - Unknown owner - D:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_32server.exe O23 - Service: MyWinLocker Service (MWLService) - EgisTec Inc. - C:\Program Files\EgisTec\MyWinLocker 3\x86\\MWLService.exe O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: vToolbarUpdater13.2.0 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe -- End of file - 12803 bytes Dit is de logfile van ComboFix: ComboFix 12-11-14.01 - Matthijs 14/11/2012 16:44:36.1.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.31.1043.18.1790.908 [GMT 1:00] Gestart vanuit: c:\users\Matthijs\Desktop\ComboFix.exe AV: AVG Anti-Virus Free Edition 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9} SP: AVG Anti-Virus Free Edition 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . G:\Autorun.inf . . (((((((((((((((((((( Bestanden Gemaakt van 2012-10-14 to 2012-11-14 )))))))))))))))))))))))))))))) . . 2012-11-14 16:05 . 2012-11-14 16:07 -------- d-----w- c:\users\Matthijs\AppData\Local\temp 2012-11-14 16:05 . 2012-11-14 16:05 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-11-11 21:51 . 2012-11-11 21:51 -------- d-----w- c:\users\Matthijs\AppData\Roaming\Curiolab 2012-11-11 11:27 . 2012-11-11 11:27 -------- d-----w- c:\users\Matthijs\AppData\Roaming\Malwarebytes 2012-11-11 11:27 . 2012-11-11 11:27 -------- d-----w- c:\programdata\Malwarebytes 2012-11-11 11:26 . 2012-09-29 18:54 22856 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-10-23 18:41 . 2012-10-23 18:41 -------- d-----w- c:\program files\Application Updater 2012-10-23 18:41 . 2012-10-23 18:41 -------- d-----w- c:\program files\FreeRIP Toolbar 2012-10-23 18:41 . 2012-10-23 18:41 -------- d-----w- c:\program files\Common Files\Spigot 2012-10-22 12:02 . 2012-10-22 12:02 179936 ----a-w- c:\windows\system32\drivers\avgidsdriverx.sys . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-11-08 12:56 . 2012-08-29 13:32 26984 ----a-w- c:\windows\system32\drivers\avgtpx86.sys 2012-10-15 02:48 . 2012-10-15 02:48 55776 ----a-w- c:\windows\system32\drivers\avgidshx.sys 2012-10-05 02:32 . 2012-10-05 02:32 93536 ----a-w- c:\windows\system32\drivers\avgmfx86.sys 2012-10-02 01:30 . 2012-10-02 01:30 159712 ----a-w- c:\windows\system32\drivers\avgldx86.sys 2012-09-30 09:27 . 2012-09-30 09:29 93672 ----a-w- c:\windows\system32\WindowsAccessBridge.dll 2012-09-30 09:27 . 2012-06-25 06:06 821736 ----a-w- c:\windows\system32\npdeployJava1.dll 2012-09-30 09:27 . 2012-04-22 09:42 746984 ----a-w- c:\windows\system32\deployJava1.dll 2012-09-21 01:46 . 2012-09-21 01:46 164832 ----a-w- c:\windows\system32\drivers\avgtdix.sys 2012-09-21 01:46 . 2012-09-21 01:46 177376 ----a-w- c:\windows\system32\drivers\avglogx.sys 2012-09-21 01:45 . 2012-09-21 01:45 19936 ----a-w- c:\windows\system32\drivers\avgidsshimx.sys 2012-09-14 01:05 . 2012-09-14 01:05 35552 ----a-w- c:\windows\system32\drivers\avgrkx86.sys . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2010-10-06 23:36 94208 ----a-w- c:\users\Matthijs\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2010-10-06 23:36 94208 ----a-w- c:\users\Matthijs\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2010-10-06 23:36 94208 ----a-w- c:\users\Matthijs\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP] @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}" [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}] 2008-10-27 10:05 40496 ----a-w- c:\program files\EgisTec\MyWinLocker 3\x86\PSDProtect.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ProductReg"="c:\program files\Acer\WR_PopUp\ProductReg.exe" [2008-11-17 135168] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-12-01 68856] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952] "Akamai NetSession Interface"="c:\users\Matthijs\AppData\Local\Akamai\netsession_win.exe" [2012-10-09 4441920] "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-21 202240] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2010-11-30 30192] "EgisTecLiveUpdate"="c:\program files\EgisTec Egis Software Update\EgisUpdate.exe" [2008-10-27 199464] "mwlDaemon"="c:\program files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe" [2008-10-27 346672] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-03-23 13740576] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2009-03-10 6957600] "BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520] "CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2009-07-26 1983816] "IJNetworkScanUtility"="c:\program files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe" [2009-05-19 136544] "TkBellExe"="c:\program files\Real\RealPlayer\Update\realsched.exe" [2011-08-18 273528] "vProt"="c:\program files\AVG Secure Search\vprot.exe" [2012-11-08 997320] "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240] "AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008] "Hercules DJ Series"="g:\applications\VirtualDJ\Hercules\HDJSeriesCPL.exe" [2011-11-04 2684712] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2012-04-18 421888] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848] "AVG_UI"="c:\program files\AVG\AVG2013\avgui.exe" [2012-11-06 3143800] "ROC_ROC_NT"="c:\program files\AVG Secure Search\ROC_ROC_NT.exe" [2012-10-04 856160] . c:\users\Matthijs\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ Dropbox.lnk - c:\users\Matthijs\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-5-24 27112840] OneNote 2010 Schermopname en Snel starten.lnk - c:\program files\Microsoft Office\Office14\ONENOTEM.EXE [2011-9-2 227712] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ WinZip Quick Pick.lnk - c:\program files\WinZip\WZQKPICK32.EXE [2011-10-22 611144] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"=c:\progra~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] Akamai REG_MULTI_SZ Akamai . Inhoud van de 'Gedeelde Taken' map . 2012-11-14 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-12-02 17:18] . 2012-11-14 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-12-02 17:18] . 2012-11-12 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-113954156-2812045587-2317553933-1000Core.job - c:\users\Matthijs\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-05 17:18] . 2012-11-14 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-113954156-2812045587-2317553933-1000UA.job - c:\users\Matthijs\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-05 17:18] . 2012-11-01 c:\windows\Tasks\ReclaimerUpdateFiles_Matthijs.job - c:\users\Matthijs\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.20\agent\rnupgagent.exe [2012-09-27 15:57] . 2012-11-02 c:\windows\Tasks\ReclaimerUpdateXML_Matthijs.job - c:\users\Matthijs\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.20\agent\rnupgagent.exe [2012-09-27 15:57] . 2012-11-14 c:\windows\Tasks\RNUpgradeHelperLogonPrompt_Matthijs.job - c:\users\Matthijs\AppData\Roaming\Real\Update\UpgradeHelper\RealPlayer\10.20\agent\rnupgagent.exe [2012-09-27 15:57] . . ------- Bijkomende Scan ------- . uInternet Settings,ProxyOverride = 127.0.0.1:9421;<local> uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s IE: &Verzenden naar OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105 IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000 LSP: %SYSTEMROOT%\system32\nvLsp.dll TCP: DhcpNameServer = 192.168.1.1 Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll . - - - - ORPHANS VERWIJDERD - - - - . WebBrowser-{46735DEE-F862-49D1-876D-6382794DC625} - (no file) WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file) WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file) WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file) HKLM-Run-ROC_roc_dec12 - c:\program files\AVG Secure Search\ROC_roc_dec12.exe HKLM-Run-ROC_ROC_JULY_P1 - c:\program files\AVG Secure Search\ROC_ROC_JULY_P1.exe AddRemove-Custom Beach Set by Daddyo117272 - c:\users\Matthijs\Documents\SimCity 4\Plugins\Daddyo117272\Custom Beach Set by daddyo117272\Uninstal.exe AddRemove-Eisenbahn-Skins - c:\users\Matthijs\Documents\SimCity 4\Plugins\oppie Train Mod\uninst2.exe AddRemove-Euro Road Textures Mod - c:\users\Matthijs\Documents\SimCity 4\Plugins\z_Euro Road Textures Mod\uninst_ERTM.exe AddRemove-Railway Addon Mod - Single Track Rail - c:\users\Matthijs\Documents\SimCity 4\Plugins\Network Addon Mod\uninst_STR.exe AddRemove-Railway Upgrade Mod - c:\users\Matthijs\Documents\SimCity 4\Plugins\RVT zRail Upgrade Mod\uninst.exe AddRemove-Royal Games - c:\users\Matthijs\Documents\SimCity 4\Plugins\Centre commercial\Uninstal.exe AddRemove-Street Addon Mod - c:\users\Matthijs\Documents\SimCity 4\Plugins\Network Addon Mod\uninst3.exe AddRemove-VDK GLR Tram Mod - c:\users\Matthijs\Documents\SimCity 4\Plugins\VDK GLR Tram Mod\uninst.exe AddRemove-{09FF4DB8-7DE9-4D47-B7DB-915DB7D9A8CA} - c:\programdata\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1}\bm_installer.exe AddRemove-la petite rue - c:\users\Matthijs\Documents\SimCity 4\Plugins\T4E\Petit bout de rue\Uninstal.exe AddRemove-Network Addon Mod - c:\users\Matthijs\Documents\SimCity 4\Plugins\Network Addon Mod\uninst.exe AddRemove-Network Widening Mod - c:\users\Matthijs\Documents\SimCity 4\Plugins\Network Addon Mod\Network Widening Mod\uninst.exe AddRemove-Oeiras steel warehouse - c:\users\Matthijs\Documents\Simcity 4\Plugins\EBLT\OeirasSteelWarehouse\Uninstal.exe AddRemove-RealHighway Mod - c:\users\Matthijs\Documents\SimCity 4\Plugins\Network Addon Mod\Real Highway Mod\uninst.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2012-11-14 17:06 Windows 6.0.6001 Service Pack 1 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Akamai] "ServiceDll"="c:\program files\common files\akamai/netsession_win_ce5ba24.dll" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_USERS\S-1-5-21-113954156-2812045587-2317553933-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*m*ï®X] @Class="Shell" . [HKEY_USERS\S-1-5-21-113954156-2812045587-2317553933-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*m*ï®X\OpenWithList] @Class="Shell" "a"="vlc.exe" "MRUList"="a" . [HKEY_USERS\S-1-5-21-113954156-2812045587-2317553933-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*m*h$] @Class="Shell" . [HKEY_USERS\S-1-5-21-113954156-2812045587-2317553933-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*m*h$\OpenWithList] @Class="Shell" "a"="vlc.exe" "MRUList"="a" . [HKEY_USERS\S-1-5-21-113954156-2812045587-2317553933-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**€4:/Users/Matthijs/Downloads/New%20Boyz%20-%20Backseat%20feat.%20The%20Cataracs%20%26%20Dev%20%28Mikael%20Wills%20Remix%29.mp3] @Class="Shell" . [HKEY_USERS\S-1-5-21-113954156-2812045587-2317553933-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**€4:/Users/Matthijs/Downloads/New%20Boyz%20-%20Backseat%20feat.%20The%20Cataracs%20%26%20Dev%20%28Mikael%20Wills%20Remix%29.mp3\OpenWithList] @Class="Shell" "a"="vlc.exe" "MRUList"="a" . [HKEY_USERS\S-1-5-21-113954156-2812045587-2317553933-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**ˆ] @Class="Shell" . [HKEY_USERS\S-1-5-21-113954156-2812045587-2317553933-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**ˆ\OpenWithList] @Class="Shell" "a"="vlc.exe" "MRUList"="a" . [HKEY_USERS\S-1-5-21-113954156-2812045587-2317553933-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**ˆà€i°5ƒihÎÕÎÕ¨ÍÕHÍÕˆÌÕèÌÕ(ÌÕÈËÕËÕ¨ÊÕHÊÕèÉÕˆÉÕ(ÉÕÈÈÕhÈÕÈÕ¨ÇÕHÇÕèÆÕ*WÔ VÔ@VÔàUÔ€UÔ UÔÀTÔ`TÔ*T] @Class="Shell" . [HKEY_USERS\S-1-5-21-113954156-2812045587-2317553933-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**ˆà€i°5ƒihÎÕÎÕ¨ÍÕHÍÕˆÌÕèÌÕ(ÌÕÈËÕËÕ¨ÊÕHÊÕèÉÕˆÉÕ(ÉÕÈÈÕhÈÕÈÕ¨ÇÕHÇÕèÆÕ*WÔ VÔ@VÔàUÔ€UÔ UÔÀTÔ`TÔ*T\OpenWithList] @Class="Shell" "a"="vlc.exe" "MRUList"="a" . [HKEY_USERS\S-1-5-21-113954156-2812045587-2317553933-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**Œ] @Class="Shell" . [HKEY_USERS\S-1-5-21-113954156-2812045587-2317553933-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**Œ\OpenWithList] @Class="Shell" "a"="vlc.exe" "MRUList"="a" . [HKEY_USERS\S-1-5-21-113954156-2812045587-2317553933-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs\.*m*ï®X] "0"=hex:66,69,6c,65,3a,2f,2f,2f,47,3a,2f,4d,75,73,69,63,2f,55,6e,73,6f,72,74, 65,64,2f,43,65,64,72,69,63,25,32,30,47,65,72,76,61,69,73,25,32,30,2d,25,32,\ "MRUListEx"=hex:00,00,00,00,ff,ff,ff,ff . [HKEY_USERS\S-1-5-21-113954156-2812045587-2317553933-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs\.*m*h$] "0"=hex:66,69,6c,65,3a,2f,2f,2f,47,3a,2f,4d,75,73,69,63,2f,52,65,6d,69,78,65, 73,2f,4b,65,25,32,34,68,61,25,32,30,2d,25,32,30,42,6c,6f,77,25,32,30,25,32,\ "MRUListEx"=hex:00,00,00,00,ff,ff,ff,ff . [HKEY_USERS\S-1-5-21-113954156-2812045587-2317553933-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs\.**€4:/Users/Matthijs/Downloads/New%20Boyz%20-%20Backseat%20feat.%20The%20Cataracs%20%26%20Dev%20%28Mikael%20Wills%20Remix%29.mp3] "0"=hex:66,69,6c,65,3a,2f,2f,2f,43,3a,2f,55,73,65,72,73,2f,4d,61,74,74,68,69, 6a,73,2f,44,6f,77,6e,6c,6f,61,64,73,2f,54,61,63,61,62,72,25,43,33,25,42,32,\ "MRUListEx"=hex:01,00,00,00,00,00,00,00,ff,ff,ff,ff "1"=hex:66,69,6c,65,3a,2f,2f,2f,43,3a,2f,55,73,65,72,73,2f,4d,61,74,74,68,69, 6a,73,2f,44,6f,77,6e,6c,6f,61,64,73,2f,54,68,65,25,32,30,42,61,62,79,73,69,\ . [HKEY_USERS\S-1-5-21-113954156-2812045587-2317553933-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs\.**ˆ] "0"=hex:66,69,6c,65,3a,2f,2f,2f,47,3a,2f,4d,75,73,69,63,2f,55,6e,73,6f,72,74, 65,64,2f,48,61,72,64,77,65,6c,6c,25,32,30,25,32,36,25,32,30,53,68,6f,77,74,\ "MRUListEx"=hex:00,00,00,00,ff,ff,ff,ff . [HKEY_USERS\S-1-5-21-113954156-2812045587-2317553933-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs\.**ˆà€i°5ƒihÎÕÎÕ¨ÍÕHÍÕˆÌÕèÌÕ(ÌÕÈËÕËÕ¨ÊÕHÊÕèÉÕˆÉÕ(ÉÕÈÈÕhÈÕÈÕ¨ÇÕHÇÕèÆÕ*WÔ VÔ@VÔàUÔ€UÔ UÔÀTÔ`TÔ*T] "0"=hex:66,69,6c,65,3a,2f,2f,2f,47,3a,2f,4d,75,73,69,63,2f,44,6a,4d,61,67,54, 6f,70,31,30,30,2f,31,39,5f,53,61,6e,64,65,72,25,32,30,56,61,6e,25,32,30,44,\ "MRUListEx"=hex:00,00,00,00,ff,ff,ff,ff . [HKEY_USERS\S-1-5-21-113954156-2812045587-2317553933-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\RecentDocs\.**Œ] "0"=hex:66,69,6c,65,3a,2f,2f,2f,43,3a,2f,55,73,65,72,73,2f,4d,61,74,74,68,69, 6a,73,2f,44,6f,77,6e,6c,6f,61,64,73,2f,4a,65,6e,6e,69,66,65,72,25,32,30,4c,\ "MRUListEx"=hex:00,00,00,00,ff,ff,ff,ff . Voltooingstijd: 2012-11-14 17:13:02 ComboFix-quarantined-files.txt 2012-11-14 16:12 . Pre-Run: 15,085,281,280 bytes beschikbaar Post-Run: 21,520,031,744 bytes beschikbaar . - - End Of File - - B8BC82D9A7E7D29A5F20227443B57EB6
  25. mave94
    Ditmaal wél uitgevoerd als administrator: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 5:48:51 p.m., on 13/11/2012 Platform: Windows Vista SP1 (WinNT 6.00.1905) MSIE: Internet Explorer v7.00 (7.00.6001.18639) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\EgisTec Egis Software Update\EgisUpdate.exe C:\Program Files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe C:\Program Files\Real\RealPlayer\Update\realsched.exe C:\Program Files\AVG Secure Search\vprot.exe G:\Applications\VirtualDJ\Hercules\HDJSeriesCPL.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\AVG\AVG2013\avgui.exe C:\Program Files\Acer\WR_PopUp\ProductReg.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Acer\WR_PopUp\AcerRegTool.exe C:\Windows\System32\spool\drivers\w32x86\3\E_FATIBVE.EXE C:\Windows\ehome\ehtray.exe C:\Users\Matthijs\AppData\Local\Akamai\netsession_win.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\WinZip\WZQKPICK32.EXE C:\Windows\System32\mobsync.exe C:\Users\Matthijs\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE C:\Users\Matthijs\AppData\Local\Akamai\netsession_win.exe C:\Windows\ehome\ehmsas.exe C:\Windows\system32\conime.exe C:\Windows\system32\wuauclt.exe G:\Downloads\HijackThis.exe C:\Windows\system32\SearchFilterHost.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1:9421;<local> R3 - URLSearchHook: (no name) - {E634228A-03CF-4BC8-B0AB-668257F1FD8C} - (no file) O1 - Hosts: ::1 localhost O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7529.1424\swg.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [EgisTecLiveUpdate] "C:\Program Files\EgisTec Egis Software Update\EgisUpdate.exe" O4 - HKLM\..\Run: [mwlDaemon] C:\Program Files\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe O4 - HKLM\..\Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon O4 - HKLM\..\Run: [iJNetworkScanUtility] C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Real\RealPlayer\Update\realsched.exe" -osboot O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe" O4 - HKLM\..\Run: [ROC_roc_dec12] "C:\Program Files\AVG Secure Search\ROC_roc_dec12.exe" /PROMPT /CMPID=roc_dec12 O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [Hercules DJ Series] G:\Applications\VirtualDJ\Hercules\HDJSeriesCPL.exe /boot O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [ROC_ROC_JULY_P1] "C:\Program Files\AVG Secure Search\ROC_ROC_JULY_P1.exe" / /PROMPT /CMPID=ROC_JULY_P1 O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files\AVG\AVG2013\avgui.exe" /TRAYONLY O4 - HKLM\..\Run: [ROC_ROC_NT] "C:\Program Files\AVG Secure Search\ROC_ROC_NT.exe" / /PROMPT /CMPID=ROC_NT O4 - HKCU\..\Run: [ProductReg] C:\Program Files\Acer\WR_PopUp\ProductReg.exe O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [Google Update] "C:\Users\Matthijs\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [EPSON Stylus DX5000 Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIBVE.EXE /FU "C:\Windows\TEMP\E_SEB79.tmp" /EF "HKCU" O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Matthijs\AppData\Local\Akamai\netsession_win.exe" O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Startup: Dropbox.lnk = C:\Users\Matthijs\AppData\Roaming\Dropbox\bin\Dropbox.exe O4 - Startup: OneNote 2010 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK32.EXE O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll O10 - Unknown file in Winsock LSP: c:\windows\system32\nvlsp.dll O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\13.2.0\ViProtocol.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2013\avgwdsvc.exe O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Hercules DJ Control MP3 (HerculesDJControlMP3) - Unknown owner - G:\Applications\VirtualDJ\Hercules\drivers\x86\HerculesDJControlMP3.EXE O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe O23 - Service: mental ray 3.10 Satellite for Autodesk 3ds Max 2013 32-bit (mi-raysat_3dsmax2013_32) - Unknown owner - D:\Program Files\Autodesk\3ds Max 2013\NVIDIA\raysat_3dsmax2013_32server.exe O23 - Service: MyWinLocker Service (MWLService) - EgisTec Inc. - C:\Program Files\EgisTec\MyWinLocker 3\x86\\MWLService.exe O23 - Service: ForceWare IP service (nSvcIp) - Unknown owner - C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: vToolbarUpdater13.2.0 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe -- End of file - 12159 bytes
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.