JANMATTHEUSSEN
Lid-
Items
46 -
Registratiedatum
-
Laatst bezocht
Over JANMATTHEUSSEN
- Verjaardag 07-05-1954
PC Specificaties
-
Besturingssysteem
Windows 7 Ultimate
-
Monitor
Samsung SyncMaster P2370
-
Moederbord
ASUS P6T SE
-
Processor
intel Core i7 CPU 920@2.67GHz
-
Behuizing
Cooler Master
JANMATTHEUSSEN's prestaties
-
Krijg een emailaccount niet weg
JANMATTHEUSSEN reageerde op JANMATTHEUSSEN's topic in Archief Microsoft Office
Ik heb de hele Microsoft office eraf gegooid, dus is het probleem opgelost. Ik zal het later na het opschonen van de computer terug erop zetten. Deze raad gaf een vriend van mij. -
Krijg een emailaccount niet weg
JANMATTHEUSSEN reageerde op JANMATTHEUSSEN's topic in Archief Microsoft Office
Sorry. Het adres staat niet in mijn accountinstellingen zoals je kunt zien in mijn afbeelding -
Krijg een emailaccount niet weg
JANMATTHEUSSEN reageerde op JANMATTHEUSSEN's topic in Archief Microsoft Office
Als ik op het emailadres klik wordt het helaas niet blauw, niet met de linkse knop, niet met de rechtse knop -
Wie kan mij helpen om de account weg te halen bij de computeraccount van Irene? Van: Verzonden: vrijdag 18 april 2014 10:38 Aan: 'Menno Schoone' Onderwerp: RE: Uw vraag aan SchoonePC AanMenno Schoone Ikheb hier een print screen bijgevoegd ter verduidelijking. Groetjes Jan Van: Menno Schoone [mailto:info@schoonepc.nl] Verzonden: donderdag 17 april 2014 23:53 Aan: Onderwerp: Uw vraag aan SchoonePC Geachte Jan Mattheussen, Wat is het verschil tussen “in mijnoutlook” en “bij de instellingen” <van outlook>? Met vriendelijke groet, Menno Schoone www.SchoonePC.nl (deinformatiebron voor uw computerproblemen) Uw computervraag/opmerking: er staan tweeemail accounts in mijn outlook en bij de instellingen staan ze niet Pagina waarop de vraag is gesteld:http://www.schoonepc.nl/instal/emailoutlook.html Geenvirus gevonden in dit bericht. Gecontroleerd door AVG - www.avg.com Versie: 2014.0.4569 / Virusdatabase: 3882/7360 - datum van uitgifte: 04/17/14 Geen virus gevonden indit bericht. Gecontroleerd door AVG - www.avg.com Versie: 2014.0.4569 / Virusdatabase: 3882/7360 - datum van uitgifte: 04/17/14
-
# AdwCleaner v2.007 - Verslag gemaakt op 09/11/2012 om 11:20:32 # Geactualiseerd op 06/11/2012 door Xplode # Besturingssysteem : Windows 7 Ultimate Service Pack 1 (64 bits) # Gebruiker : JanM - JANM-PC # Opstarten Modus : Normale modus # Gelanceerd vanaf : D:\Users\JanM\Desktop\adwcleaner.exe # Optie [Verwijderen] ***** [Diensten] ***** ***** [Files / Mappen] ***** Map Verwijdert : D:\Program Files (x86)\Ask.com Map Verwijdert : D:\Users\IRENE.JanM-PC\AppData\LocalLow\AskToolbar Map Verwijdert : D:\Users\JanM\AppData\LocalLow\AskToolbar Map Verwijdert : D:\Users\JanM\AppData\Roaming\OpenCandy Map Verwijdert : D:\Users\JanM\Documents\MyWebSearch ***** [Register] ***** Sleutel Verwijdert : HKCU\Software\APN Sleutel Verwijdert : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0} Sleutel Verwijdert : HKLM\Software\APN Sleutel Verwijdert : HKLM\Software\AskToolbar Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113} Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ApnUpdater Waarde Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}] ***** [browsers] ***** -\\ Internet Explorer v9.0.8112.16421 [OK] Het register bevat geen enkele ongeoorloofde invoer. ************************* AdwCleaner[R1].txt - [1993 octets] - [09/11/2012 11:20:12] AdwCleaner[s1].txt - [1967 octets] - [09/11/2012 11:20:32] ########## EOF - D:\AdwCleaner[s1].txt - [2027 octets] ########## # AdwCleaner v2.007 - Verslag gemaakt op 09/11/2012 om 11:20:12 # Geactualiseerd op 06/11/2012 door Xplode # Besturingssysteem : Windows 7 Ultimate Service Pack 1 (64 bits) # Gebruiker : JanM - JANM-PC # Opstarten Modus : Normale modus # Gelanceerd vanaf : D:\Users\JanM\Desktop\adwcleaner.exe # Optie [Zoeken] ***** [Diensten] ***** ***** [Files / Mappen] ***** Map Aanwezig : D:\Program Files (x86)\Ask.com Map Aanwezig : D:\Users\IRENE.JanM-PC\AppData\LocalLow\AskToolbar Map Aanwezig : D:\Users\JanM\AppData\LocalLow\AskToolbar Map Aanwezig : D:\Users\JanM\AppData\Roaming\OpenCandy Map Aanwezig : D:\Users\JanM\Documents\MyWebSearch ***** [Register] ***** Sleutel Aanwezig : HKCU\Software\APN Sleutel Aanwezig : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0} Sleutel Aanwezig : HKLM\Software\APN Sleutel Aanwezig : HKLM\Software\AskToolbar Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113} Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A} Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5} Sleutel Aanwezig : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113} Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ApnUpdater Waarde Aanwezig : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}] ***** [browsers] ***** -\\ Internet Explorer v9.0.8112.16421 [OK] Het register bevat geen enkele ongeoorloofde invoer. ************************* AdwCleaner[R1].txt - [1870 octets] - [09/11/2012 11:20:12] ########## EOF - D:\AdwCleaner[R1].txt - [1930 octets] ########## ComboFix 12-11-09.02 - JanM 09/11/2012 11:37:29.4.8 - x64 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.32.1043.18.6135.4433 [GMT 1:00] Gestart vanuit: d:\users\JanM\Desktop\ComboFix.exe gebruikte Opdracht switches :: d:\users\JanM\Desktop\CFScript.txt AV: McAfee VirusScan Enterprise *Disabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637} SP: McAfee VirusScan Enterprise Antispyware Module *Disabled/Updated* {3D54B793-665E-3129-9103-206115370C8A} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((( Bestanden Gemaakt van 2012-10-09 to 2012-11-09 )))))))))))))))))))))))))))))) . . 2012-11-09 10:41 . 2012-11-09 10:41 -------- d-----w- d:\users\IRENE.JanM-PC\AppData\Local\temp 2012-11-09 10:41 . 2012-11-09 10:41 -------- d-----w- d:\users\Default\AppData\Local\temp 2012-11-08 23:21 . 2012-11-08 23:21 -------- d-----w- d:\programdata\Macrovision 2012-11-08 23:07 . 2012-11-08 23:07 -------- d-----w- d:\programdata\FLEXnet 2012-11-08 22:02 . 2012-11-08 22:02 -------- d-----w- D:\Gladinet 2012-11-08 21:45 . 2012-11-08 21:45 -------- d-----w- d:\programdata\Zeon 2012-11-08 15:37 . 2012-11-08 15:37 -------- d--h--r- d:\users\Public\Libraries 2012-11-08 13:26 . 2012-11-08 13:26 53248 ----a-r- d:\users\JanM\AppData\Roaming\Microsoft\Installer\{F5D84887-8A6F-4993-8560-B3AA44CB620D}\ARPPRODUCTICON.exe 2012-11-08 13:13 . 2012-11-08 13:13 -------- d-----w- d:\users\JanM\AppData\Roaming\Avery 2012-11-07 22:44 . 2012-11-07 22:44 -------- d-----w- d:\users\JanM\AppData\Local\VS Revo Group 2012-11-07 12:29 . 2012-11-07 21:16 262144 ----a-w- d:\windows\ServiceProfiles\NetworkService\msmqlog.bin 2012-11-07 12:27 . 2012-11-07 21:13 -------- d-----w- D:\inetpub 2012-11-07 02:38 . 2012-11-07 02:38 -------- d-----w- d:\users\JanM\AppData\Roaming\Uniblue 2012-11-07 02:38 . 2012-11-07 02:38 -------- d-----w- d:\program files (x86)\Uniblue 2012-11-07 02:09 . 2012-11-07 02:09 -------- d-----w- d:\program files\log 2012-11-06 07:21 . 2012-10-12 07:19 9291768 ----a-w- d:\programdata\Microsoft\Windows Defender\Definition Updates\{94683E7A-AF15-4B74-B85E-C80A97D50800}\mpengine.dll 2012-11-02 23:15 . 2012-11-02 23:15 -------- d-----w- d:\users\JanM\AppData\Roaming\Malwarebytes 2012-11-02 23:14 . 2012-11-02 23:14 -------- d-----w- d:\programdata\Malwarebytes 2012-11-02 23:14 . 2012-11-02 23:33 -------- d-----w- d:\program files (x86)\Malwarebytes' Anti-Malware 2012-11-02 23:14 . 2012-09-29 18:54 25928 ----a-w- d:\windows\system32\drivers\mbam.sys 2012-11-02 13:39 . 2012-09-24 22:16 95208 ----a-w- d:\windows\SysWow64\WindowsAccessBridge-32.dll 2012-11-02 10:58 . 2012-11-02 10:58 -------- d-----w- d:\users\JanM\AppData\Roaming\Apple Computer 2012-10-31 08:11 . 2012-10-31 08:11 96768 ----a-w- d:\windows\SysWow64\sspicli.dll 2012-10-31 08:11 . 2012-10-31 08:11 458712 ----a-w- d:\windows\system32\drivers\cng.sys 2012-10-31 08:11 . 2012-10-31 08:11 340992 ----a-w- d:\windows\system32\schannel.dll 2012-10-31 08:11 . 2012-10-31 08:11 307200 ----a-w- d:\windows\system32\ncrypt.dll 2012-10-31 08:11 . 2012-10-31 08:11 247808 ----a-w- d:\windows\SysWow64\schannel.dll 2012-10-31 08:11 . 2012-10-31 08:11 220160 ----a-w- d:\windows\SysWow64\ncrypt.dll 2012-10-31 08:11 . 2012-10-31 08:11 22016 ----a-w- d:\windows\SysWow64\secur32.dll 2012-10-31 08:11 . 2012-10-31 08:11 154480 ----a-w- d:\windows\system32\drivers\ksecpkg.sys 2012-10-31 08:11 . 2012-10-31 08:11 1448448 ----a-w- d:\windows\system32\lsasrv.dll 2012-10-30 20:28 . 2012-10-30 23:07 -------- d-----w- d:\users\JanM\AppData\Roaming\nvda 2012-10-30 20:27 . 2012-10-30 22:09 -------- d-----w- d:\program files (x86)\NVDA 2012-10-30 20:23 . 2012-10-30 20:23 -------- d-----w- d:\users\JanM\AppData\Local\Adobe_Systems_Incorporate 2012-10-29 17:56 . 2012-10-29 17:56 -------- d-----w- d:\users\JanM\AppData\Local\Anwsoft 2012-10-25 10:39 . 2012-10-30 23:07 -------- d-----w- d:\program files (x86)\MyTomTom 3 2012-10-24 11:55 . 2012-10-24 11:55 -------- d-----w- d:\users\IRENE.JanM-PC\AppData\Local\Diagnostics 2012-10-22 14:50 . 2012-10-22 14:50 -------- d-----w- d:\users\JanM\AppData\Roaming\Lite 2012-10-16 16:57 . 2012-10-16 16:58 -------- d-----w- d:\program files (x86)\Common Files\Common Toolkit Suite 2012-10-10 20:51 . 2012-08-24 18:05 220160 ----a-w- d:\windows\system32\wintrust.dll 2012-10-10 20:51 . 2012-08-24 16:57 172544 ----a-w- d:\windows\SysWow64\wintrust.dll 2012-10-10 20:51 . 2012-09-14 19:19 2048 ----a-w- d:\windows\system32\tzres.dll 2012-10-10 20:51 . 2012-09-14 18:28 2048 ----a-w- d:\windows\SysWow64\tzres.dll 2012-10-10 20:51 . 2012-08-11 00:56 715776 ----a-w- d:\windows\system32\kerberos.dll 2012-10-10 20:51 . 2012-08-10 23:56 542208 ----a-w- d:\windows\SysWow64\kerberos.dll 2012-10-10 20:51 . 2012-06-02 05:41 184320 ----a-w- d:\windows\system32\cryptsvc.dll 2012-10-10 20:51 . 2012-06-02 05:41 140288 ----a-w- d:\windows\system32\cryptnet.dll 2012-10-10 20:51 . 2012-06-02 05:41 1464320 ----a-w- d:\windows\system32\crypt32.dll 2012-10-10 20:51 . 2012-06-02 04:36 140288 ----a-w- d:\windows\SysWow64\cryptsvc.dll 2012-10-10 20:51 . 2012-06-02 04:36 1159680 ----a-w- d:\windows\SysWow64\crypt32.dll 2012-10-10 20:51 . 2012-06-02 04:36 103936 ----a-w- d:\windows\SysWow64\cryptnet.dll . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-11-07 19:05 . 2012-05-05 19:54 388096 ----a-r- d:\users\JanM\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2012-11-07 13:29 . 2012-04-28 18:44 73656 ----a-w- d:\windows\SysWow64\FlashPlayerCPLApp.cpl 2012-11-07 13:29 . 2012-04-28 18:44 697272 ----a-w- d:\windows\SysWow64\FlashPlayerApp.exe 2012-11-04 16:04 . 2012-04-05 20:32 57960 ----a-w- d:\windows\system32\OpenCL.dll 2012-10-12 18:09 . 2012-04-30 11:31 25472 ----a-w- d:\windows\system32\RegistryDefragBootTime.exe 2012-10-10 21:26 . 2012-04-24 13:07 65309168 ----a-w- d:\windows\system32\MRT.exe 2012-09-28 14:37 . 2012-09-28 14:37 221696 ----a-w- d:\windows\system32\clinfo.exe 2012-09-28 14:36 . 2012-09-28 14:36 75776 ----a-w- d:\windows\system32\OpenVideo64.dll 2012-09-28 14:36 . 2012-09-28 14:36 65536 ----a-w- d:\windows\SysWow64\OpenVideo.dll 2012-09-28 14:36 . 2012-09-28 14:36 63488 ----a-w- d:\windows\system32\OVDecode64.dll 2012-09-28 14:36 . 2012-09-28 14:36 56320 ----a-w- d:\windows\SysWow64\OVDecode.dll 2012-09-28 14:36 . 2012-09-28 14:36 32635904 ----a-w- d:\windows\system32\amdocl64.dll 2012-09-28 14:32 . 2012-09-28 14:32 27341824 ----a-w- d:\windows\SysWow64\amdocl.dll 2012-09-13 13:37 . 2012-06-17 20:05 746984 ----a-w- d:\windows\SysWow64\deployJava1.dll 2012-09-13 13:37 . 2012-06-17 20:05 821736 ----a-w- d:\windows\SysWow64\npDeployJava1.dll 2012-09-11 20:31 . 2012-09-11 20:31 574464 ----a-w- d:\windows\system32\d3d10level9.dll 2012-09-11 20:31 . 2012-09-11 20:31 490496 ----a-w- d:\windows\SysWow64\d3d10level9.dll 2012-09-11 20:31 . 2012-09-11 20:31 376688 ----a-w- d:\windows\system32\drivers\netio.sys 2012-09-11 20:31 . 2012-09-11 20:31 288624 ----a-w- d:\windows\system32\drivers\FWPKCLNT.SYS 2012-09-11 20:31 . 2012-09-11 20:31 1913200 ----a-w- d:\windows\system32\drivers\tcpip.sys 2012-09-11 20:31 . 2012-09-11 20:31 950128 ----a-w- d:\windows\system32\drivers\ndis.sys 2012-09-11 20:31 . 2012-09-11 20:31 41472 ----a-w- d:\windows\system32\drivers\RNDISMP.sys 2012-08-24 11:15 . 2012-09-22 12:17 17810944 ----a-w- d:\windows\system32\mshtml.dll 2012-08-24 10:39 . 2012-09-22 12:17 10925568 ----a-w- d:\windows\system32\ieframe.dll 2012-08-24 10:31 . 2012-09-22 12:18 2312704 ----a-w- d:\windows\system32\jscript9.dll 2012-08-24 10:22 . 2012-09-22 12:18 1346048 ----a-w- d:\windows\system32\urlmon.dll 2012-08-24 10:21 . 2012-09-22 12:18 1392128 ----a-w- d:\windows\system32\wininet.dll 2012-08-24 10:20 . 2012-09-22 12:18 1494528 ----a-w- d:\windows\system32\inetcpl.cpl 2012-08-24 10:18 . 2012-09-22 12:18 237056 ----a-w- d:\windows\system32\url.dll 2012-08-24 10:17 . 2012-09-22 12:18 85504 ----a-w- d:\windows\system32\jsproxy.dll 2012-08-24 10:14 . 2012-09-22 12:18 173056 ----a-w- d:\windows\system32\ieUnatt.exe 2012-08-24 10:14 . 2012-09-22 12:18 816640 ----a-w- d:\windows\system32\jscript.dll 2012-08-24 10:13 . 2012-09-22 12:18 599040 ----a-w- d:\windows\system32\vbscript.dll 2012-08-24 10:12 . 2012-09-22 12:18 2144768 ----a-w- d:\windows\system32\iertutil.dll 2012-08-24 10:11 . 2012-09-22 12:18 729088 ----a-w- d:\windows\system32\msfeeds.dll 2012-08-24 10:10 . 2012-09-22 12:18 96768 ----a-w- d:\windows\system32\mshtmled.dll 2012-08-24 10:09 . 2012-09-22 12:18 2382848 ----a-w- d:\windows\system32\mshtml.tlb 2012-08-24 10:04 . 2012-09-22 12:18 248320 ----a-w- d:\windows\system32\ieui.dll 2012-08-24 06:59 . 2012-09-22 12:18 1800704 ----a-w- d:\windows\SysWow64\jscript9.dll 2012-08-24 06:51 . 2012-09-22 12:18 1129472 ----a-w- d:\windows\SysWow64\wininet.dll 2012-08-24 06:51 . 2012-09-22 12:18 1427968 ----a-w- d:\windows\SysWow64\inetcpl.cpl 2012-08-24 06:47 . 2012-09-22 12:18 142848 ----a-w- d:\windows\SysWow64\ieUnatt.exe 2012-08-24 06:47 . 2012-09-22 12:18 420864 ----a-w- d:\windows\SysWow64\vbscript.dll 2012-08-24 06:43 . 2012-09-22 12:18 2382848 ----a-w- d:\windows\SysWow64\mshtml.tlb 2012-08-21 21:01 . 2012-09-26 08:30 245760 ----a-w- d:\windows\system32\OxpsConverter.exe 2012-08-20 17:38 . 2012-10-10 20:52 44032 ----a-w- d:\windows\apppatch\acwow64.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GladinetIconOverlay] @="{3C3DC57A-7535-48AF-BB9E-C3576A4F34D0}" [HKEY_CLASSES_ROOT\CLSID\{3C3DC57A-7535-48AF-BB9E-C3576A4F34D0}] 2011-07-26 12:58 194416 ----a-w- d:\program files (x86)\Nuance\Nuance Cloud Connector\GlOverlayIcon32.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GladinetUploading] @="{959A18D3-9CC9-41e8-B76F-34ED9A89D4EA}" [HKEY_CLASSES_ROOT\CLSID\{959A18D3-9CC9-41e8-B76F-34ED9A89D4EA}] 2011-07-26 13:00 194416 ----a-w- d:\program files (x86)\Nuance\Nuance Cloud Connector\GlOverlayIconU32.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="d:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584] "NetworkIndicator"="d:\program files (x86)\NetworkIndicator\NetworkIndicator.exe" [2010-10-25 344064] "OfficeSyncProcess"="d:\program files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" [2012-01-20 719672] "TomTomHOME.exe"="d:\program files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" [2012-08-28 247768] "swg"="d:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-04-28 39408] "ISUSPM"="d:\programdata\FLEXnet\Connect\11\ISUSPM.exe" [2010-05-21 324976] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "McAfeeUpdaterUI"="d:\program files (x86)\McAfee\Common Framework\udaterui.exe" [2011-01-12 161088] "ShStatEXE"="d:\program files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE" [2011-09-14 215360] "PMSpeed"="d:\program files (x86)\NewSoft\Presto! PageManager 9.01\PMSpeed.EXE" [2010-07-29 116632] "NUSB3MON"="d:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288] "Adobe Reader Speed Launcher"="d:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-07-31 38872] "Adobe ARM"="d:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-11 919008] "OmniPage Preload"="d:\program files (x86)\Nuance\OmniPage18\OmniPage18.exe" [2011-08-14 2987880] "Nuance OmniPage 18-reminder"="d:\program files (x86)\Nuance\OmniPage18\Ereg\Ereg.exe" [2011-05-16 333088] "PDFCreHook"="d:\program files (x86)\Nuance\PDF Create 7\pdfcreate7hook.exe" [2011-06-28 605032] "PDF7 Registry Controller"="d:\program files (x86)\Nuance\PDF Create 7\RegistryController.exe" [2011-06-27 140136] "SunJavaUpdateSched"="d:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848] "CommonToolkitTray"="d:\program files (x86)\Fighters\Tray\FightersTray.exe" [2012-08-13 1454184] "sfagent"="d:\program files (x86)\Fighters\SPAMfighter\sfagent.exe" [2012-09-18 1201256] "JMB36X IDE Setup"="d:\windows\raidtool\xinside.exe" [2010-09-07 43608] "Nuance PDF Reader-reminder"="d:\program files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" [2008-11-03 328992] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoWinKeys"= 1 (0x1) . R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;d:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R3 ACSSCR;ACR38 Smart Card Reader;d:\windows\system32\DRIVERS\a38usb.sys [2009-12-15 44928] R3 cpuz135;cpuz135; [x] R3 mferkdet;McAfee Inc. mferkdet;d:\windows\system32\drivers\mferkdet.sys [2012-04-24 100904] R3 Ph3xIB64;Philips 713x Inbox PCI TV Card;d:\windows\system32\DRIVERS\Ph3xIB64.sys [2009-06-10 1627520] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;d:\windows\system32\drivers\rdpvideominiport.sys [2012-10-31 19456] R3 Synth3dVsc;Synth3dVsc;d:\windows\system32\drivers\synth3dvsc.sys [x] R3 TsUsbFlt;TsUsbFlt;d:\windows\system32\drivers\tsusbflt.sys [2012-10-31 57856] R3 VGPU;VGPU;d:\windows\system32\drivers\rdvgkmd.sys [x] R3 WatAdminSvc;Windows Activation Technologies-service;d:\windows\system32\Wat\WatAdminSvc.exe [2012-04-24 1255736] R3 WinRing0_1_2_0;WinRing0_1_2_0; [x] R4 AsSysCtrlService;ASUS System Control Service;d:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [2009-08-19 90112] R4 SPAMfighter Update Service;SPAMfighter Update Service;d:\program files (x86)\Fighters\SPAMfighter\sfus.exe [2012-09-18 216168] R4 Suite Service;Suite Service;d:\program files (x86)\Fighters\FighterSuiteService.exe [2012-01-23 1324680] R4 TomTomHOMEService;TomTomHOMEService;d:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2012-08-28 92632] R4 UMVPFSrv;UMVPFSrv;d:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2012-01-18 450848] S0 Achernar;Achernar - SCSI Command Filter Drivers;d:\windows\system32\Drivers\Achernar.sys [2012-04-25 34104] S0 mfewfpk;McAfee Inc. mfewfpk;d:\windows\system32\drivers\mfewfpk.sys [2012-04-24 283744] S2 AMD External Events Utility;AMD External Events Utility;d:\windows\system32\atiesrxx.exe [2012-04-06 236544] S2 GladFileMonSvc;GladFileMonSvc;d:\program files (x86)\Nuance\Nuance Cloud Connector\GladFileMonSvc.exe [2011-07-26 29552] S2 MBAMScheduler;MBAMScheduler;d:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-29 399432] S2 MBAMService;MBAMService;d:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-29 676936] S2 mfevtp;McAfee Validation Trust Protection Service;d:\windows\system32\mfevtps.exe [2012-04-24 158832] S3 asmthub3;ASMedia USB3 Hub Service;d:\windows\system32\DRIVERS\asmthub3.sys [2012-02-21 130536] S3 asmtxhci;ASMEDIA XHCI Service;d:\windows\system32\DRIVERS\asmtxhci.sys [2012-02-21 396776] S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;d:\windows\system32\drivers\AtihdW76.sys [2012-02-23 95760] S3 LVRS64;Logitech RightSound Filter Driver;d:\windows\system32\DRIVERS\lvrs64.sys [2012-01-18 351136] S3 LVUVC64;Logitech QuickCam Pro 9000(UVC);d:\windows\system32\DRIVERS\lvuvc64.sys [2012-01-18 4865568] S3 MBAMProtector;MBAMProtector;d:\windows\system32\drivers\mbam.sys [2012-09-29 25928] S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;d:\windows\system32\DRIVERS\nusb3hub.sys [2010-12-10 80384] S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;d:\windows\system32\DRIVERS\nusb3xhc.sys [2010-12-10 181248] S3 PlxDma;PlxDma;d:\windows\system32\DRIVERS\PlxDma.sys [2011-09-30 80640] S3 RTL8167;Realtek 8167 NT Driver;d:\windows\system32\DRIVERS\Rt64win7.sys [2012-04-11 708200] S3 tsusbhub;Remote Deskotop USB Hub;d:\windows\system32\drivers\tsusbhub.sys [2010-11-20 117248] . . --- Andere Services/Drivers In Geheugen --- . *Deregistered* - mfeavfk01 . Inhoud van de 'Gedeelde Taken' map . 2012-11-09 d:\windows\Tasks\Adobe Flash Player Updater.job - d:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-28 13:29] . 2012-11-09 d:\windows\Tasks\GoogleUpdateTaskMachineCore.job - d:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-28 18:44] . 2012-11-09 d:\windows\Tasks\GoogleUpdateTaskMachineUA.job - d:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-28 18:44] . 2012-11-09 d:\windows\Tasks\RegistryBooster.job - d:\program files (x86)\Uniblue\RegistryBooster\rbmonitor.exe [2012-11-07 13:39] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GladinetIconOverlay] @="{3C3DC57A-7535-48AF-BB9E-C3576A4F34D0}" [HKEY_CLASSES_ROOT\CLSID\{3C3DC57A-7535-48AF-BB9E-C3576A4F34D0}] 2011-07-26 12:58 192368 ----a-w- d:\program files (x86)\Nuance\Nuance Cloud Connector\GlOverlayIcon.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GladinetUploading] @="{959A18D3-9CC9-41e8-B76F-34ED9A89D4EA}" [HKEY_CLASSES_ROOT\CLSID\{959A18D3-9CC9-41e8-B76F-34ED9A89D4EA}] 2011-07-26 13:01 195440 ----a-w- d:\program files (x86)\Nuance\Nuance Cloud Connector\GlOverlayIconU.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "WrtMon.exe"="d:\windows\system32\spool\drivers\x64\3\WrtMon.exe" [2008-05-24 26448] "WheelMouse"="d:\program files\mouse\amoumain.exe" [2012-05-31 270336] "UpdateUSB"="d:\windows\inf\updateusb.exe" [2006-06-25 30720] "JMB36X IDE Setup"="d:\windows\raidtool\xinside.exe" [2010-09-07 43608] "CanonSolutionMenu"="d:\program files (x86)\Canon\SolutionMenu\CNSLMAIN.exe" [2007-05-14 644696] . ------- Bijkomende Scan ------- . mLocal Page = d:\windows\system32\blank.htm uInternet Settings,ProxyOverride = <local>;127.0.0.1 TCP: DhcpNameServer = 10.135.200.35 . - - - - ORPHANS VERWIJDERD - - - - . Toolbar-Locked - (no file) Wow6432Node-HKCU-Run-OpAgent - OpAgent.exe Wow6432Node-HKLM-Run-ISUSPM - c:\programdata\FLEXnet\Connect\11\isuspm.exe AddRemove-USB 2.0 Setup program - d:\program files (x86)\VIA Technologies . . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@d:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_110_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="d:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_110_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@d:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_110_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="d:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_110_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="d:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="d:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="d:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="d:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}] @Denied: (A) (Everyone) "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}" . [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3] @Denied: (A) (Everyone) . [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0] "Key"="ActionsPane3" "Location"="d:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd" . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2012-11-09 11:42:39 ComboFix-quarantined-files.txt 2012-11-09 10:42 ComboFix2.txt 2012-11-08 22:15 ComboFix3.txt 2012-11-08 21:26 . Pre-Run: 249.786.712.064 bytes beschikbaar Post-Run: 249.505.329.152 bytes beschikbaar . - - End Of File - - 56227D65011696D3302068DF07F189EF
-
Mako De eerste regel van uw te verwijderen HijackThis bestandje kon ik niet vinden. Ziehier het resultaat; ComboFix 12-11-08.01 - JanM 08/11/2012 22:20:50.2.8 - x64 Microsoft Windows 7 Ultimate 6.1.7601.1.1252.32.1043.18.6135.4225 [GMT 1:00] Gestart vanuit: d:\users\JanM\Desktop\ComboFix.exe AV: McAfee VirusScan Enterprise *Disabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637} SP: McAfee VirusScan Enterprise Antispyware Module *Disabled/Updated* {3D54B793-665E-3129-9103-206115370C8A} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((( Bestanden Gemaakt van 2012-10-08 to 2012-11-08 )))))))))))))))))))))))))))))) . . 2012-11-08 21:24 . 2012-11-08 21:24 -------- d-----w- d:\users\IRENE.JanM-PC\AppData\Local\temp 2012-11-08 21:24 . 2012-11-08 21:24 -------- d-----w- d:\users\Default\AppData\Local\temp 2012-11-08 15:37 . 2012-11-08 15:37 -------- d--h--r- d:\users\Public\Libraries 2012-11-08 13:26 . 2012-11-08 13:26 53248 ----a-r- d:\users\JanM\AppData\Roaming\Microsoft\Installer\{F5D84887-8A6F-4993-8560-B3AA44CB620D}\ARPPRODUCTICON.exe 2012-11-08 13:13 . 2012-11-08 13:13 -------- d-----w- d:\users\JanM\AppData\Roaming\Avery 2012-11-07 22:44 . 2012-11-07 22:44 -------- d-----w- d:\users\JanM\AppData\Local\VS Revo Group 2012-11-07 12:29 . 2012-11-07 21:16 262144 ----a-w- d:\windows\ServiceProfiles\NetworkService\msmqlog.bin 2012-11-07 12:27 . 2012-11-07 21:13 -------- d-----w- D:\inetpub 2012-11-07 02:38 . 2012-11-07 02:38 -------- d-----w- d:\users\JanM\AppData\Roaming\Uniblue 2012-11-07 02:38 . 2012-11-07 02:38 -------- d-----w- d:\program files (x86)\Uniblue 2012-11-07 02:09 . 2012-11-07 02:09 -------- d-----w- d:\program files\log 2012-11-06 07:21 . 2012-10-12 07:19 9291768 ----a-w- d:\programdata\Microsoft\Windows Defender\Definition Updates\{94683E7A-AF15-4B74-B85E-C80A97D50800}\mpengine.dll 2012-11-02 23:15 . 2012-11-02 23:15 -------- d-----w- d:\users\JanM\AppData\Roaming\Malwarebytes 2012-11-02 23:14 . 2012-11-02 23:14 -------- d-----w- d:\programdata\Malwarebytes 2012-11-02 23:14 . 2012-11-02 23:33 -------- d-----w- d:\program files (x86)\Malwarebytes' Anti-Malware 2012-11-02 23:14 . 2012-09-29 18:54 25928 ----a-w- d:\windows\system32\drivers\mbam.sys 2012-11-02 13:39 . 2012-09-24 22:16 95208 ----a-w- d:\windows\SysWow64\WindowsAccessBridge-32.dll 2012-11-02 10:58 . 2012-11-02 10:58 -------- d-----w- d:\users\JanM\AppData\Roaming\Apple Computer 2012-10-31 08:11 . 2012-10-31 08:11 96768 ----a-w- d:\windows\SysWow64\sspicli.dll 2012-10-31 08:11 . 2012-10-31 08:11 458712 ----a-w- d:\windows\system32\drivers\cng.sys 2012-10-31 08:11 . 2012-10-31 08:11 340992 ----a-w- d:\windows\system32\schannel.dll 2012-10-31 08:11 . 2012-10-31 08:11 307200 ----a-w- d:\windows\system32\ncrypt.dll 2012-10-31 08:11 . 2012-10-31 08:11 247808 ----a-w- d:\windows\SysWow64\schannel.dll 2012-10-31 08:11 . 2012-10-31 08:11 220160 ----a-w- d:\windows\SysWow64\ncrypt.dll 2012-10-31 08:11 . 2012-10-31 08:11 22016 ----a-w- d:\windows\SysWow64\secur32.dll 2012-10-31 08:11 . 2012-10-31 08:11 154480 ----a-w- d:\windows\system32\drivers\ksecpkg.sys 2012-10-31 08:11 . 2012-10-31 08:11 1448448 ----a-w- d:\windows\system32\lsasrv.dll 2012-10-30 20:28 . 2012-10-30 23:07 -------- d-----w- d:\users\JanM\AppData\Roaming\nvda 2012-10-30 20:27 . 2012-10-30 22:09 -------- d-----w- d:\program files (x86)\NVDA 2012-10-30 20:23 . 2012-10-30 20:23 -------- d-----w- d:\users\JanM\AppData\Local\Adobe_Systems_Incorporate 2012-10-29 17:56 . 2012-10-29 17:56 -------- d-----w- d:\users\JanM\AppData\Local\Anwsoft 2012-10-29 16:51 . 2012-10-29 17:59 -------- d-----w- d:\programdata\ANWSOFT 2012-10-25 10:39 . 2012-10-30 23:07 -------- d-----w- d:\program files (x86)\MyTomTom 3 2012-10-24 11:55 . 2012-10-24 11:55 -------- d-----w- d:\users\IRENE.JanM-PC\AppData\Local\Diagnostics 2012-10-22 14:50 . 2012-10-22 14:50 -------- d-----w- d:\users\JanM\AppData\Roaming\Lite 2012-10-19 18:58 . 2012-10-19 18:58 -------- d-----w- d:\users\JanM\AppData\Roaming\OpenCandy 2012-10-16 16:57 . 2012-10-16 16:58 -------- d-----w- d:\program files (x86)\Common Files\Common Toolkit Suite 2012-10-10 20:51 . 2012-08-24 18:05 220160 ----a-w- d:\windows\system32\wintrust.dll 2012-10-10 20:51 . 2012-08-24 16:57 172544 ----a-w- d:\windows\SysWow64\wintrust.dll 2012-10-10 20:51 . 2012-09-14 19:19 2048 ----a-w- d:\windows\system32\tzres.dll 2012-10-10 20:51 . 2012-09-14 18:28 2048 ----a-w- d:\windows\SysWow64\tzres.dll 2012-10-10 20:51 . 2012-08-11 00:56 715776 ----a-w- d:\windows\system32\kerberos.dll 2012-10-10 20:51 . 2012-08-10 23:56 542208 ----a-w- d:\windows\SysWow64\kerberos.dll 2012-10-10 20:51 . 2012-06-02 05:41 184320 ----a-w- d:\windows\system32\cryptsvc.dll 2012-10-10 20:51 . 2012-06-02 05:41 140288 ----a-w- d:\windows\system32\cryptnet.dll 2012-10-10 20:51 . 2012-06-02 05:41 1464320 ----a-w- d:\windows\system32\crypt32.dll 2012-10-10 20:51 . 2012-06-02 04:36 140288 ----a-w- d:\windows\SysWow64\cryptsvc.dll 2012-10-10 20:51 . 2012-06-02 04:36 1159680 ----a-w- d:\windows\SysWow64\crypt32.dll 2012-10-10 20:51 . 2012-06-02 04:36 103936 ----a-w- d:\windows\SysWow64\cryptnet.dll . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-11-07 19:05 . 2012-05-05 19:54 388096 ----a-r- d:\users\JanM\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2012-11-07 13:29 . 2012-04-28 18:44 73656 ----a-w- d:\windows\SysWow64\FlashPlayerCPLApp.cpl 2012-11-07 13:29 . 2012-04-28 18:44 697272 ----a-w- d:\windows\SysWow64\FlashPlayerApp.exe 2012-11-04 16:04 . 2012-04-05 20:32 57960 ----a-w- d:\windows\system32\OpenCL.dll 2012-10-12 18:09 . 2012-04-30 11:31 25472 ----a-w- d:\windows\system32\RegistryDefragBootTime.exe 2012-10-10 21:26 . 2012-04-24 13:07 65309168 ----a-w- d:\windows\system32\MRT.exe 2012-09-28 14:37 . 2012-09-28 14:37 221696 ----a-w- d:\windows\system32\clinfo.exe 2012-09-28 14:36 . 2012-09-28 14:36 75776 ----a-w- d:\windows\system32\OpenVideo64.dll 2012-09-28 14:36 . 2012-09-28 14:36 65536 ----a-w- d:\windows\SysWow64\OpenVideo.dll 2012-09-28 14:36 . 2012-09-28 14:36 63488 ----a-w- d:\windows\system32\OVDecode64.dll 2012-09-28 14:36 . 2012-09-28 14:36 56320 ----a-w- d:\windows\SysWow64\OVDecode.dll 2012-09-28 14:36 . 2012-09-28 14:36 32635904 ----a-w- d:\windows\system32\amdocl64.dll 2012-09-28 14:32 . 2012-09-28 14:32 27341824 ----a-w- d:\windows\SysWow64\amdocl.dll 2012-09-13 13:37 . 2012-06-17 20:05 746984 ----a-w- d:\windows\SysWow64\deployJava1.dll 2012-09-13 13:37 . 2012-06-17 20:05 821736 ----a-w- d:\windows\SysWow64\npDeployJava1.dll 2012-09-11 20:31 . 2012-09-11 20:31 574464 ----a-w- d:\windows\system32\d3d10level9.dll 2012-09-11 20:31 . 2012-09-11 20:31 490496 ----a-w- d:\windows\SysWow64\d3d10level9.dll 2012-09-11 20:31 . 2012-09-11 20:31 376688 ----a-w- d:\windows\system32\drivers\netio.sys 2012-09-11 20:31 . 2012-09-11 20:31 288624 ----a-w- d:\windows\system32\drivers\FWPKCLNT.SYS 2012-09-11 20:31 . 2012-09-11 20:31 1913200 ----a-w- d:\windows\system32\drivers\tcpip.sys 2012-09-11 20:31 . 2012-09-11 20:31 950128 ----a-w- d:\windows\system32\drivers\ndis.sys 2012-09-11 20:31 . 2012-09-11 20:31 41472 ----a-w- d:\windows\system32\drivers\RNDISMP.sys 2012-08-24 11:15 . 2012-09-22 12:17 17810944 ----a-w- d:\windows\system32\mshtml.dll 2012-08-24 10:39 . 2012-09-22 12:17 10925568 ----a-w- d:\windows\system32\ieframe.dll 2012-08-24 10:31 . 2012-09-22 12:18 2312704 ----a-w- d:\windows\system32\jscript9.dll 2012-08-24 10:22 . 2012-09-22 12:18 1346048 ----a-w- d:\windows\system32\urlmon.dll 2012-08-24 10:21 . 2012-09-22 12:18 1392128 ----a-w- d:\windows\system32\wininet.dll 2012-08-24 10:20 . 2012-09-22 12:18 1494528 ----a-w- d:\windows\system32\inetcpl.cpl 2012-08-24 10:18 . 2012-09-22 12:18 237056 ----a-w- d:\windows\system32\url.dll 2012-08-24 10:17 . 2012-09-22 12:18 85504 ----a-w- d:\windows\system32\jsproxy.dll 2012-08-24 10:14 . 2012-09-22 12:18 173056 ----a-w- d:\windows\system32\ieUnatt.exe 2012-08-24 10:14 . 2012-09-22 12:18 816640 ----a-w- d:\windows\system32\jscript.dll 2012-08-24 10:13 . 2012-09-22 12:18 599040 ----a-w- d:\windows\system32\vbscript.dll 2012-08-24 10:12 . 2012-09-22 12:18 2144768 ----a-w- d:\windows\system32\iertutil.dll 2012-08-24 10:11 . 2012-09-22 12:18 729088 ----a-w- d:\windows\system32\msfeeds.dll 2012-08-24 10:10 . 2012-09-22 12:18 96768 ----a-w- d:\windows\system32\mshtmled.dll 2012-08-24 10:09 . 2012-09-22 12:18 2382848 ----a-w- d:\windows\system32\mshtml.tlb 2012-08-24 10:04 . 2012-09-22 12:18 248320 ----a-w- d:\windows\system32\ieui.dll 2012-08-24 06:59 . 2012-09-22 12:18 1800704 ----a-w- d:\windows\SysWow64\jscript9.dll 2012-08-24 06:51 . 2012-09-22 12:18 1129472 ----a-w- d:\windows\SysWow64\wininet.dll 2012-08-24 06:51 . 2012-09-22 12:18 1427968 ----a-w- d:\windows\SysWow64\inetcpl.cpl 2012-08-24 06:47 . 2012-09-22 12:18 142848 ----a-w- d:\windows\SysWow64\ieUnatt.exe 2012-08-24 06:47 . 2012-09-22 12:18 420864 ----a-w- d:\windows\SysWow64\vbscript.dll 2012-08-24 06:43 . 2012-09-22 12:18 2382848 ----a-w- d:\windows\SysWow64\mshtml.tlb 2012-08-21 21:01 . 2012-09-26 08:30 245760 ----a-w- d:\windows\system32\OxpsConverter.exe 2012-08-20 17:38 . 2012-10-10 20:52 44032 ----a-w- d:\windows\apppatch\acwow64.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GladinetIconOverlay] @="{3C3DC57A-7535-48AF-BB9E-C3576A4F34D0}" [HKEY_CLASSES_ROOT\CLSID\{3C3DC57A-7535-48AF-BB9E-C3576A4F34D0}] 2011-07-26 12:58 194416 ----a-w- d:\program files (x86)\Nuance\Nuance Cloud Connector\GlOverlayIcon32.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GladinetUploading] @="{959A18D3-9CC9-41e8-B76F-34ED9A89D4EA}" [HKEY_CLASSES_ROOT\CLSID\{959A18D3-9CC9-41e8-B76F-34ED9A89D4EA}] 2011-07-26 13:00 194416 ----a-w- d:\program files (x86)\Nuance\Nuance Cloud Connector\GlOverlayIconU32.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="d:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584] "NetworkIndicator"="d:\program files (x86)\NetworkIndicator\NetworkIndicator.exe" [2010-10-25 344064] "ISUSPM"="d:\programdata\FLEXnet\Connect\11\isuspm.exe" [2010-05-21 324976] "OfficeSyncProcess"="d:\program files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" [2012-01-20 719672] "TomTomHOME.exe"="d:\program files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" [2012-08-28 247768] "swg"="d:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-04-28 39408] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "McAfeeUpdaterUI"="d:\program files (x86)\McAfee\Common Framework\udaterui.exe" [2011-01-12 161088] "ShStatEXE"="d:\program files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE" [2011-09-14 215360] "PMSpeed"="d:\program files (x86)\NewSoft\Presto! PageManager 9.01\PMSpeed.EXE" [2010-07-29 116632] "NUSB3MON"="d:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288] "Adobe Reader Speed Launcher"="d:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-07-31 38872] "Adobe ARM"="d:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-11 919008] "OmniPage Preload"="d:\program files (x86)\Nuance\OmniPage18\OmniPage18.exe" [2011-08-14 2987880] "Nuance OmniPage 18-reminder"="d:\program files (x86)\Nuance\OmniPage18\Ereg\Ereg.exe" [2011-05-16 333088] "PDFCreHook"="d:\program files (x86)\Nuance\PDF Create 7\pdfcreate7hook.exe" [2011-06-28 605032] "PDF7 Registry Controller"="d:\program files (x86)\Nuance\PDF Create 7\RegistryController.exe" [2011-06-27 140136] "SunJavaUpdateSched"="d:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848] "CommonToolkitTray"="d:\program files (x86)\Fighters\Tray\FightersTray.exe" [2012-08-13 1454184] "sfagent"="d:\program files (x86)\Fighters\SPAMfighter\sfagent.exe" [2012-09-18 1201256] "JMB36X IDE Setup"="d:\windows\raidtool\xinside.exe" [2010-09-07 43608] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoWinKeys"= 1 (0x1) . R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;d:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R3 ACSSCR;ACR38 Smart Card Reader;d:\windows\system32\DRIVERS\a38usb.sys [2009-12-15 44928] R3 cpuz135;cpuz135; [x] R3 mferkdet;McAfee Inc. mferkdet;d:\windows\system32\drivers\mferkdet.sys [2012-04-24 100904] R3 Ph3xIB64;Philips 713x Inbox PCI TV Card;d:\windows\system32\DRIVERS\Ph3xIB64.sys [2009-06-10 1627520] R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;d:\windows\system32\drivers\rdpvideominiport.sys [2012-10-31 19456] R3 Synth3dVsc;Synth3dVsc;d:\windows\system32\drivers\synth3dvsc.sys [x] R3 TsUsbFlt;TsUsbFlt;d:\windows\system32\drivers\tsusbflt.sys [2012-10-31 57856] R3 VGPU;VGPU;d:\windows\system32\drivers\rdvgkmd.sys [x] R3 WatAdminSvc;Windows Activation Technologies-service;d:\windows\system32\Wat\WatAdminSvc.exe [2012-04-24 1255736] R3 WinRing0_1_2_0;WinRing0_1_2_0; [x] R4 AsSysCtrlService;ASUS System Control Service;d:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [2009-08-19 90112] R4 SPAMfighter Update Service;SPAMfighter Update Service;d:\program files (x86)\Fighters\SPAMfighter\sfus.exe [2012-09-18 216168] R4 Suite Service;Suite Service;d:\program files (x86)\Fighters\FighterSuiteService.exe [2012-01-23 1324680] R4 TomTomHOMEService;TomTomHOMEService;d:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2012-08-28 92632] R4 UMVPFSrv;UMVPFSrv;d:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2012-01-18 450848] S0 Achernar;Achernar - SCSI Command Filter Drivers;d:\windows\system32\Drivers\Achernar.sys [2012-04-25 34104] S0 mfewfpk;McAfee Inc. mfewfpk;d:\windows\system32\drivers\mfewfpk.sys [2012-04-24 283744] S2 AMD External Events Utility;AMD External Events Utility;d:\windows\system32\atiesrxx.exe [2012-04-06 236544] S2 GladFileMonSvc;GladFileMonSvc;d:\program files (x86)\Nuance\Nuance Cloud Connector\GladFileMonSvc.exe [2011-07-26 29552] S2 MBAMScheduler;MBAMScheduler;d:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-29 399432] S2 MBAMService;MBAMService;d:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-29 676936] S2 mfevtp;McAfee Validation Trust Protection Service;d:\windows\system32\mfevtps.exe [2012-04-24 158832] S3 asmthub3;ASMedia USB3 Hub Service;d:\windows\system32\DRIVERS\asmthub3.sys [2012-02-21 130536] S3 asmtxhci;ASMEDIA XHCI Service;d:\windows\system32\DRIVERS\asmtxhci.sys [2012-02-21 396776] S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;d:\windows\system32\drivers\AtihdW76.sys [2012-02-23 95760] S3 LVRS64;Logitech RightSound Filter Driver;d:\windows\system32\DRIVERS\lvrs64.sys [2012-01-18 351136] S3 LVUVC64;Logitech QuickCam Pro 9000(UVC);d:\windows\system32\DRIVERS\lvuvc64.sys [2012-01-18 4865568] S3 MBAMProtector;MBAMProtector;d:\windows\system32\drivers\mbam.sys [2012-09-29 25928] S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;d:\windows\system32\DRIVERS\nusb3hub.sys [2010-12-10 80384] S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;d:\windows\system32\DRIVERS\nusb3xhc.sys [2010-12-10 181248] S3 PlxDma;PlxDma;d:\windows\system32\DRIVERS\PlxDma.sys [2011-09-30 80640] S3 RTL8167;Realtek 8167 NT Driver;d:\windows\system32\DRIVERS\Rt64win7.sys [2012-04-11 708200] S3 tsusbhub;Remote Deskotop USB Hub;d:\windows\system32\drivers\tsusbhub.sys [2010-11-20 117248] . . --- Andere Services/Drivers In Geheugen --- . *Deregistered* - mfeavfk01 *Deregistered* - NisDrv . Inhoud van de 'Gedeelde Taken' map . 2012-11-08 d:\windows\Tasks\Adobe Flash Player Updater.job - d:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-28 13:29] . 2012-11-08 d:\windows\Tasks\GoogleUpdateTaskMachineCore.job - d:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-28 18:44] . 2012-11-08 d:\windows\Tasks\GoogleUpdateTaskMachineUA.job - d:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-28 18:44] . 2012-11-08 d:\windows\Tasks\RegistryBooster.job - d:\program files (x86)\Uniblue\RegistryBooster\rbmonitor.exe [2012-11-07 13:39] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GladinetIconOverlay] @="{3C3DC57A-7535-48AF-BB9E-C3576A4F34D0}" [HKEY_CLASSES_ROOT\CLSID\{3C3DC57A-7535-48AF-BB9E-C3576A4F34D0}] 2011-07-26 12:58 192368 ----a-w- d:\program files (x86)\Nuance\Nuance Cloud Connector\GlOverlayIcon.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GladinetUploading] @="{959A18D3-9CC9-41e8-B76F-34ED9A89D4EA}" [HKEY_CLASSES_ROOT\CLSID\{959A18D3-9CC9-41e8-B76F-34ED9A89D4EA}] 2011-07-26 13:01 195440 ----a-w- d:\program files (x86)\Nuance\Nuance Cloud Connector\GlOverlayIconU.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "WrtMon.exe"="d:\windows\system32\spool\drivers\x64\3\WrtMon.exe" [2008-05-24 26448] "WheelMouse"="d:\program files\mouse\amoumain.exe" [2012-05-31 270336] "UpdateUSB"="d:\windows\inf\updateusb.exe" [2006-06-25 30720] "JMB36X IDE Setup"="d:\windows\raidtool\xinside.exe" [2010-09-07 43608] "CanonSolutionMenu"="d:\program files (x86)\Canon\SolutionMenu\CNSLMAIN.exe" [2007-05-14 644696] "ApnUpdater"="d:\program files (x86)\ask.com\updater\updater.exe" [2012-04-09 1557160] . ------- Bijkomende Scan ------- . mLocal Page = d:\windows\system32\blank.htm uInternet Settings,ProxyOverride = <local>;127.0.0.1 TCP: DhcpNameServer = 10.135.200.35 . - - - - ORPHANS VERWIJDERD - - - - . Toolbar-Locked - (no file) AddRemove-USB 2.0 Setup program - d:\program files (x86)\VIA Technologies . . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@d:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_110_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="d:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_110_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@d:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_110_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="d:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_110_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="d:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="d:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="d:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="d:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}] @Denied: (A) (Everyone) "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}" . [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3] @Denied: (A) (Everyone) . [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0] "Key"="ActionsPane3" "Location"="d:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd" . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2012-11-08 22:25:52 ComboFix-quarantined-files.txt 2012-11-08 21:25 ComboFix2.txt 2012-11-08 20:42 . Pre-Run: 248.850.939.904 bytes beschikbaar Post-Run: 248.545.710.080 bytes beschikbaar . - - End Of File - - 35E40DA9D0C054F183D2869A9B5DC31A
-
Ik heb Mako gevolgd en zie hier het resultaat; Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 18:08:54, on 8/11/2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16450) Boot mode: Normal Running processes: D:\Program Files (x86)\Uniblue\RegistryBooster\rbmonitor.exe D:\Windows\System32\spool\drivers\x64\3\WrtMon.exe D:\Program Files\Mouse\Amoumain.exe D:\Windows\System32\spool\drivers\x64\3\WrtProc.exe D:\Program Files (x86)\NetworkIndicator\NetworkIndicator.exe D:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE D:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe D:\Program Files (x86)\McAfee\Common Framework\UdaterUI.exe D:\Program Files (x86)\NewSoft\Presto! PageManager 9.01\PMSpeed.exe D:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe D:\Program Files (x86)\Nuance\PDF Create 7\PdfCreate7Hook.exe D:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe D:\Program Files (x86)\Fighters\Tray\FightersTray.exe D:\Program Files (x86)\Fighters\SPAMfighter\sfagent.exe D:\Program Files (x86)\Ask.com\Updater\Updater.exe D:\Program Files (x86)\Nuance\Nuance Cloud Connector\GladinetClient.exe D:\Program Files (x86)\McAfee\Common Framework\McTray.exe D:\Program Files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe D:\Windows\sysWow64\SearchProtocolHost.exe D:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = (1) {searchTerms - Web Search Results} R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer, optimized for Bing and MSN F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - D:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - D:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20120424160640.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - D:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - D:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - D:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: Nuance PDF - {E3286BF1-E654-42FF-B4A6-5E111731DF6B} - D:\Program Files (x86)\Nuance\PDF Create 7\bin\ZeonIEFavClient.dll (file missing) O4 - HKLM\..\Run: [McAfeeUpdaterUI] "D:\Program Files (x86)\McAfee\Common Framework\udaterui.exe" /StartedFromRunKey O4 - HKLM\..\Run: [shStatEXE] "D:\Program Files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE O4 - HKLM\..\Run: [PMSpeed] D:\Program Files (x86)\NewSoft\Presto! PageManager 9.01\PMSpeed.EXE O4 - HKLM\..\Run: [NUSB3MON] "D:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "D:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [OmniPage Preload] D:\Program Files (x86)\Nuance\OmniPage18\OmniPage18.exe /preload O4 - HKLM\..\Run: [Nuance OmniPage 18-reminder] "D:\Program Files (x86)\Nuance\OmniPage18\Ereg\Ereg.exe" -r "D:\ProgramData\ScanSoft\OmniPage 18\Ereg\Ereg.ini" O4 - HKLM\..\Run: [PDFCreHook] D:\Program Files (x86)\Nuance\PDF Create 7\pdfcreate7hook.exe O4 - HKLM\..\Run: [PDF7 Registry Controller] D:\Program Files (x86)\Nuance\PDF Create 7\RegistryController.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "D:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [CommonToolkitTray] D:\Program Files (x86)\Fighters\Tray\FightersTray.exe O4 - HKLM\..\Run: [sfagent] D:\Program Files (x86)\Fighters\SPAMfighter\sfagent.exe O4 - HKLM\..\Run: [JMB36X IDE Setup] d:\windows\raidtool\xinside.exe O4 - HKLM\..\Run: [updateUSB] d:\windows\inf\updateusb.exe O4 - HKCU\..\Run: [sidebar] D:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [NetworkIndicator] D:\Program Files (x86)\NetworkIndicator\NetworkIndicator.exe O4 - HKCU\..\Run: [OpAgent] "OpAgent.exe" /agent O4 - HKCU\..\Run: [iSUSPM] D:\ProgramData\FLEXnet\Connect\11\isuspm.exe -scheduler O4 - HKCU\..\Run: [OfficeSyncProcess] "D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" O4 - HKCU\..\Run: [TomTomHOME.exe] "D:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" O4 - HKCU\..\Run: [swg] "D:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Global Startup: Nuance Cloud Connector.lnk = D:\Program Files (x86)\Nuance\Nuance Cloud Connector\GladLauncher.exe O9 - Extra button: (no name) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://oas.support.microsoft.com/ActiveX/MSDcode.cab O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com/select/asusTek_sys_ctrl3.cab O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - D:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - D:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - D:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - D:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - D:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - D:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - D:\Windows\system32\fxssvc.exe (file missing) O23 - Service: GladFileMonSvc - Gladinet, INC - D:\Program Files (x86)\Nuance\Nuance Cloud Connector\GladFileMonSvc.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - D:\Windows\system32\lsass.exe (file missing) O23 - Service: MBAMScheduler - Malwarebytes Corporation - D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: McAfee Framework Service (McAfeeFramework) - McAfee, Inc. - D:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - D:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe O23 - Service: McAfee Task Manager (McTaskManager) - McAfee, Inc. - D:\Program Files (x86)\McAfee\VirusScan Enterprise\VsTskMgr.exe O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - D:\Windows\system32\mfevtps.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - D:\Windows\System32\msdtc.exe (file missing) O23 - Service: Netlogon - Unknown owner - D:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - D:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - D:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - D:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - D:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - D:\Windows\System32\spoolsv.exe (file missing) O23 - Service: Software Protection (sppsvc) - Unknown owner - D:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - D:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - D:\Windows\system32\lsass.exe (file missing) O23 - Service: Virtual Disk (vds) - Unknown owner - D:\Windows\System32\vds.exe (file missing) O23 - Service: Volume Shadow Copy (VSS) - Unknown owner - D:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - D:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - D:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - D:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: Windows Media Player Network Sharing Service (WMPNetworkSvc) - Unknown owner - D:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 11239 bytes Malwarebytes Malwarebytes Anti-Malware (PRO) 1.65.1.1000 www.malwarebytes.org Databaseversie: v2012.11.08.07 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 JanM :: JANM-PC [administrator] Realtime bescherming: Ingeschakeld 8/11/2012 18:10:36 mbam-log-2012-11-08 (18-10-36).txt Scantype: Snelle scan Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM Uitgeschakelde scanopties: P2P Objecten gescand: 230106 Verstreken tijd: 4 minuut/minuten, 50 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerwaarden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerdata gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Mappen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Bestanden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) (einde)
-
Ik heb uw instructie opgevolgd en hier de resultaten; Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 20:41:12, on 7/11/2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16450) Boot mode: Normal Running processes: D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe D:\Program Files (x86)\Uniblue\RegistryBooster\rbmonitor.exe D:\Windows\System32\spool\drivers\x64\3\WrtMon.exe D:\Program Files\Mouse\Amoumain.exe D:\Windows\System32\spool\drivers\x64\3\WrtProc.exe D:\Program Files (x86)\Ask.com\Updater\Updater.exe D:\Program Files (x86)\NetworkIndicator\NetworkIndicator.exe D:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE D:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe D:\Program Files (x86)\McAfee\Common Framework\UdaterUI.exe D:\Program Files (x86)\NewSoft\Presto! PageManager 9.01\PMSpeed.exe D:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application \nusb3mon.exe D:\Program Files (x86)\Nuance\PDF Create 7\PdfCreate7Hook.exe D:\Program Files (x86)\McAfee\Common Framework\McTray.exe D:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe D:\Program Files (x86)\Fighters\Tray\FightersTray.exe D:\Program Files (x86)\Fighters\SPAMfighter\sfagent.exe D:\Program Files (x86)\Ask.com\Updater\Updater.exe D:\Program Files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE D:\Program Files (x86)\Internet Explorer\IELowutil.exe D:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Babylon Search- 8e59-3b3c56be9c92&affid=111583&searchtype=ds&babsrc=lnkry&q={searchTerms} R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - D:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - D:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20120424160640.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - D: \Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - D: \PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: ZeonIEEventHelper Class - {DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9} - (no file) O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - D:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - (no file) O4 - HKLM\..\Run: [McAfeeUpdaterUI] "D:\Program Files (x86)\McAfee\Common Framework \udaterui.exe" /StartedFromRunKey O4 - HKLM\..\Run: [shStatEXE] "D:\Program Files (x86)\McAfee\VirusScan Enterprise \SHSTAT.EXE" /STANDALONE O4 - HKLM\..\Run: [PMSpeed] D:\Program Files (x86)\NewSoft\Presto! PageManager 9.01\PMSpeed.EXE O4 - HKLM\..\Run: [NUSB3MON] "D:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "D:\Program Files (x86)\Common Files\Adobe\ARM \1.0\AdobeARM.exe" O4 - HKLM\..\Run: [OmniPage Preload] D:\Program Files (x86)\Nuance \OmniPage18\OmniPage18.exe /preload O4 - HKLM\..\Run: [Nuance OmniPage 18-reminder] "D:\Program Files (x86)\Nuance \OmniPage18\Ereg\Ereg.exe" -r "D:\ProgramData\ScanSoft\OmniPage 18\Ereg\Ereg.ini" O4 - HKLM\..\Run: [PDFCreHook] D:\Program Files (x86)\Nuance\PDF Create 7\pdfcreate7hook.exe O4 - HKLM\..\Run: [PDF7 Registry Controller] D:\Program Files (x86)\Nuance\PDF Create 7\RegistryController.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "D:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [CommonToolkitTray] D:\Program Files (x86)\Fighters\Tray \FightersTray.exe O4 - HKLM\..\Run: [sfagent] D:\Program Files (x86)\Fighters\SPAMfighter\sfagent.exe O4 - HKLM\..\Run: [ApnUpdater] d:\program files (x86)\ask.com\updater\updater.exe O4 - HKLM\..\Run: [JMB36X IDE Setup] d:\windows\raidtool\xinside.exe O4 - HKLM\..\Run: [updateUSB] d:\windows\inf\updateusb.exe O4 - HKLM\..\Run: [beid] "D:\Program Files (x86)\Belgium Identity Card\beid35gui.exe" /startup O4 - HKCU\..\Run: [sidebar] D:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [NetworkIndicator] D:\Program Files (x86)\NetworkIndicator \NetworkIndicator.exe O4 - HKCU\..\Run: [OpAgent] "OpAgent.exe" /agent O4 - HKCU\..\Run: [iSUSPM] D:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler O4 - HKCU\..\Run: [OfficeSyncProcess] "D:\Program Files (x86)\Microsoft Office \Office14\MSOSYNC.EXE" O4 - HKCU\..\Run: [TomTomHOME.exe] "D:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" O4 - HKCU\..\Run: [swg] "D:\Program Files (x86)\Google\GoogleToolbarNotifier \GoogleToolbarNotifier.exe" O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] D:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file) O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5- 00401C608501} - (no file) O9 - Extra button: (no name) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849- EDE0DB0C95CA} - D:\Program Files (x86)\Microsoft Office \Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1- 9849-EDE0DB0C95CA} - D:\Program Files (x86)\Microsoft Office \Office14\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://oas.support.microsoft.com/ActiveX/MSDcode.cab O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com/select/asusTek_sys_ctrl3.cab O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - D:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - D:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - D:\Windows\SysWOW64\Macromed\Flash \FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - D: \Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - D:\Windows \system32\atiesrxx.exe (file missing) O23 - Service: @%systemroot%\system32\CISVC.EXE,-1 (CISVC) - Unknown owner - D: \Windows\system32\CISVC.EXE (file missing) O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - D: \Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - D: \Windows\system32\fxssvc.exe (file missing) O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-30007 (IISADMIN) - Unknown owner - D:\Windows\system32\inetsrv\inetinfo.exe (file missing) O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - D:\Windows\system32\lsass.exe (file missing) O23 - Service: MBAMScheduler - Malwarebytes Corporation - D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: McAfee Framework Service (McAfeeFramework) - McAfee, Inc. - D:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - D:\Program Files\Common Files \McAfee\SystemCore\\mcshield.exe O23 - Service: McAfee Task Manager (McTaskManager) - McAfee, Inc. - D:\Program Files (x86)\McAfee\VirusScan Enterprise\VsTskMgr.exe O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - D: \Windows\system32\mfevtps.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - D:\Windows \System32\msdtc.exe (file missing) O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - D:\Windows \system32\mqsvc.exe (file missing) O23 - Service: @mqutil.dll,-6203 (MSMQTriggers) - Unknown owner - D:\Windows \system32\mqtgsvc.exe (file missing) O23 - Service: Netlogon - Unknown owner - D:\Windows\system32\lsass.exe (file missing) O23 - Service: @%windir%\system32\nfsrc.dll,-5001 (NfsClnt) - Unknown owner - D: \Windows\system32\nfsclnt.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - D:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - D:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - D: \Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - D:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - D: \Windows\System32\spoolsv.exe (file missing) O23 - Service: Software Protection (sppsvc) - Unknown owner - D:\Windows \system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - D:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - D:\Windows\system32\lsass.exe (file missing) O23 - Service: Virtual Disk (vds) - Unknown owner - D:\Windows\System32\vds.exe (file missing) O23 - Service: Volume Shadow Copy (VSS) - Unknown owner - D:\Windows \system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - D:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - D:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - D:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: Windows Media Player Network Sharing Service (WMPNetworkSvc) - Unknown owner - D:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) O23 - Service: @%windir%\system32\inetsrv\iisres.dll,-20001 (WMSVC) - Unknown owner - D:\Windows\system32\inetsrv\wmsvc.exe (file missing) -- End of file - 12131 bytes Malwarebytes Anti-Malware (PRO) 1.65.1.1000 www.malwarebytes.org Databaseversie: v2012.11.07.03 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 JanM :: JANM-PC [administrator] Realtime bescherming: Ingeschakeld 7/11/2012 20:41:35 mbam-log-2012-11-07 (20-41-35).txt Scantype: Snelle scan Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM Uitgeschakelde scanopties: P2P Objecten gescand: 249939 Verstreken tijd: 4 minuut/minuten, 47 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerwaarden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerdata gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Mappen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Bestanden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) (einde)
-
Malware blokkeert regelmatig websites, internet stopt regelmatig, outlook stopt, kan niet op bepaalde websites, enz Malware logje 2012/11/06 06:55:50 +0100 JANM-PC IRENE MESSAGE Starting protection 2012/11/06 06:55:51 +0100 JANM-PC IRENE MESSAGE Protection started successfully 2012/11/06 06:55:51 +0100 JANM-PC IRENE MESSAGE Starting IP protection 2012/11/06 06:55:52 +0100 JANM-PC IRENE MESSAGE IP Protection started successfully 2012/11/06 06:56:32 +0100 JANM-PC IRENE IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49157, Process: svchost.exe) 2012/11/06 07:06:13 +0100 JANM-PC IRENE MESSAGE Executing scheduled update: Daily 2012/11/06 07:06:19 +0100 JANM-PC IRENE MESSAGE Scheduled update executed successfully: database updated from version v2012.11.05.06 to version v2012.11.06.02 2012/11/06 07:06:19 +0100 JANM-PC IRENE MESSAGE Starting database refresh 2012/11/06 07:06:20 +0100 JANM-PC IRENE MESSAGE Stopping IP protection 2012/11/06 07:06:20 +0100 JANM-PC IRENE MESSAGE IP Protection stopped successfully 2012/11/06 07:06:22 +0100 JANM-PC IRENE MESSAGE Database refreshed successfully 2012/11/06 07:06:22 +0100 JANM-PC IRENE MESSAGE Starting IP protection 2012/11/06 07:06:23 +0100 JANM-PC IRENE MESSAGE IP Protection started successfully 2012/11/06 07:08:30 +0100 JANM-PC IRENE IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49218, Process: svchost.exe) 2012/11/06 07:10:15 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49232, Process: sidebar.exe) 2012/11/06 07:14:08 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49241, Process: outlook.exe) 2012/11/06 08:13:27 +0100 JANM-PC IRENE MESSAGE Starting protection 2012/11/06 08:13:27 +0100 JANM-PC IRENE MESSAGE Protection started successfully 2012/11/06 08:13:27 +0100 JANM-PC IRENE MESSAGE Starting IP protection 2012/11/06 08:13:28 +0100 JANM-PC IRENE MESSAGE IP Protection started successfully 2012/11/06 08:14:08 +0100 JANM-PC IRENE IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49157, Process: svchost.exe) 2012/11/06 08:19:57 +0100 JANM-PC (null) IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49192, Process: svchost.exe) 2012/11/06 08:19:57 +0100 JANM-PC (null) IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49194, Process: svchost.exe) 2012/11/06 08:19:57 +0100 JANM-PC (null) IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49196, Process: svchost.exe) 2012/11/06 08:19:57 +0100 JANM-PC (null) IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49198, Process: svchost.exe) 2012/11/06 08:19:57 +0100 JANM-PC (null) IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49200, Process: svchost.exe) 2012/11/06 08:20:05 +0100 JANM-PC (null) IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49204, Process: svchost.exe) 2012/11/06 11:42:38 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49207, Process: sidebar.exe) 2012/11/06 11:48:40 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49217, Process: sidebar.exe) 2012/11/06 11:48:56 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49221, Process: outlook.exe) 2012/11/06 11:53:13 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49240, Process: logtransport2.exe) 2012/11/06 11:55:53 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49269, Process: iexplore.exe) 2012/11/06 11:56:02 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49303, Process: iexplore.exe) 2012/11/06 11:56:26 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49366, Process: iexplore.exe) 2012/11/06 11:58:43 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49385, Process: agent.exe) 2012/11/06 12:01:48 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49401, Process: rundll32.exe) 2012/11/06 12:20:17 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49479, Process: logtransport2.exe) 2012/11/06 12:32:27 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49501, Process: iexplore.exe) 2012/11/06 12:33:40 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49548, Process: svchost.exe) 2012/11/06 12:33:40 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49550, Process: svchost.exe) 2012/11/06 12:33:40 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49552, Process: svchost.exe) 2012/11/06 12:33:40 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49554, Process: svchost.exe) 2012/11/06 12:34:04 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49556, Process: iexplore.exe) 2012/11/06 12:39:49 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49592, Process: outlook.exe) 2012/11/06 12:40:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49612, Process: iexplore.exe) 2012/11/06 12:41:09 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49624, Process: svchost.exe) 2012/11/06 12:41:09 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49625, Process: svchost.exe) 2012/11/06 12:41:09 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 8) 2012/11/06 12:41:09 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 8) 2012/11/06 12:41:09 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 8) 2012/11/06 12:41:09 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 8) 2012/11/06 12:45:58 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49636, Process: rundll32.exe) 2012/11/06 13:02:01 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49682, Process: iexplore.exe) 2012/11/06 13:05:14 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49877, Process: iexplore.exe) 2012/11/06 13:06:18 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49960, Process: iexplore.exe) 2012/11/06 13:10:35 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50168, Process: iexplore.exe) 2012/11/06 13:12:20 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50361, Process: outlook.exe) 2012/11/06 13:21:49 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50432, Process: iexplore.exe) 2012/11/06 13:28:55 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50496, Process: iexplore.exe) 2012/11/06 13:30:24 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50522, Process: iexplore.exe) 2012/11/06 13:40:10 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50664, Process: iexplore.exe) 2012/11/06 13:43:30 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50696, Process: logtransport2.exe) 2012/11/06 13:48:03 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50777, Process: iexplore.exe) 2012/11/06 13:51:08 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50797, Process: ielowutil.exe) 2012/11/06 13:51:32 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50806, Process: svchost.exe) 2012/11/06 13:51:32 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50807, Process: svchost.exe) 2012/11/06 13:51:32 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50809, Process: svchost.exe) 2012/11/06 13:51:32 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50810, Process: svchost.exe) 2012/11/06 13:51:32 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50812, Process: svchost.exe) 2012/11/06 13:51:32 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50813, Process: svchost.exe) 2012/11/06 13:51:32 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50815, Process: svchost.exe) 2012/11/06 13:51:32 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50816, Process: svchost.exe) 2012/11/06 13:51:32 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50817, Process: svchost.exe) 2012/11/06 13:51:32 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50818, Process: svchost.exe) 2012/11/06 13:51:32 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50819, Process: svchost.exe) 2012/11/06 13:51:32 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50820, Process: svchost.exe) 2012/11/06 13:51:32 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50821, Process: svchost.exe) 2012/11/06 13:51:32 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50822, Process: svchost.exe) 2012/11/06 13:51:32 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50823, Process: svchost.exe) 2012/11/06 13:51:32 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 50824, Process: svchost.exe) 2012/11/06 13:57:10 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51042, Process: iexplore.exe) 2012/11/06 13:57:26 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51053, Process: outlook.exe) 2012/11/06 13:57:26 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51056, Process: svchost.exe) 2012/11/06 13:57:26 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51057, Process: svchost.exe) 2012/11/06 13:57:26 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51059, Process: svchost.exe) 2012/11/06 13:57:26 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51060, Process: svchost.exe) 2012/11/06 13:57:59 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51074, Process: iexplore.exe) 2012/11/06 14:03:20 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51175, Process: outlook.exe) 2012/11/06 14:03:20 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51178, Process: svchost.exe) 2012/11/06 14:03:20 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51179, Process: svchost.exe) 2012/11/06 14:03:20 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51181, Process: svchost.exe) 2012/11/06 14:03:20 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51182, Process: svchost.exe) 2012/11/06 14:05:36 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51211, Process: iexplore.exe) 2012/11/06 14:16:34 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51373, Process: iexplore.exe) 2012/11/06 14:22:19 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51478, Process: iexplore.exe) 2012/11/06 14:30:45 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51530, Process: iexplore.exe) 2012/11/06 14:36:14 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51654, Process: helppane.exe) 2012/11/06 15:00:04 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51659, Process: jusched.exe) 2012/11/06 15:00:04 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51661, Process: svchost.exe) 2012/11/06 15:00:04 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51662, Process: svchost.exe) 2012/11/06 15:00:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51664, Process: svchost.exe) 2012/11/06 15:00:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51665, Process: svchost.exe) 2012/11/06 15:00:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51667, Process: svchost.exe) 2012/11/06 15:00:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51668, Process: svchost.exe) 2012/11/06 15:00:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51670, Process: svchost.exe) 2012/11/06 15:00:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51671, Process: svchost.exe) 2012/11/06 15:00:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51673, Process: svchost.exe) 2012/11/06 15:00:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51674, Process: svchost.exe) 2012/11/06 15:00:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51675, Process: svchost.exe) 2012/11/06 15:00:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51676, Process: svchost.exe) 2012/11/06 15:00:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51677, Process: svchost.exe) 2012/11/06 15:00:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51678, Process: svchost.exe) 2012/11/06 15:00:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51679, Process: svchost.exe) 2012/11/06 15:00:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51680, Process: svchost.exe) 2012/11/06 15:00:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51681, Process: svchost.exe) 2012/11/06 15:00:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51682, Process: svchost.exe) 2012/11/06 15:30:31 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51685, Process: outlook.exe) 2012/11/06 15:30:39 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51688, Process: svchost.exe) 2012/11/06 15:30:39 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51689, Process: svchost.exe) 2012/11/06 15:30:39 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51691, Process: svchost.exe) 2012/11/06 15:30:39 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51692, Process: svchost.exe) 2012/11/06 15:53:29 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 51747, Process: iexplore.exe) 2012/11/06 15:53:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51759, Process: iexplore.exe) 2012/11/06 15:53:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51760, Process: iexplore.exe) 2012/11/06 15:53:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51761, Process: iexplore.exe) 2012/11/06 15:53:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51766, Process: iexplore.exe) 2012/11/06 15:53:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51770, Process: iexplore.exe) 2012/11/06 15:53:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51771, Process: iexplore.exe) 2012/11/06 15:53:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51772, Process: iexplore.exe) 2012/11/06 15:53:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51773, Process: iexplore.exe) 2012/11/06 15:53:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51775, Process: iexplore.exe) 2012/11/06 15:53:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51774, Process: iexplore.exe) 2012/11/06 15:53:37 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51776, Process: iexplore.exe) 2012/11/06 15:54:25 +0100 JANM-PC JanM IP-BLOCK 217.23.15.151 (Type: outgoing, Port: 51782, Process: iexplore.exe) 2012/11/06 15:54:25 +0100 JANM-PC JanM IP-BLOCK 217.23.15.151 (Type: outgoing, Port: 51781, Process: iexplore.exe) 2012/11/06 15:54:25 +0100 JANM-PC JanM IP-BLOCK 217.23.15.151 (Type: outgoing, Port: 51783, Process: iexplore.exe) 2012/11/06 15:54:25 +0100 JANM-PC JanM IP-BLOCK 217.23.15.151 (Type: outgoing, Port: 51784, Process: iexplore.exe) 2012/11/06 15:54:33 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51787, Process: iexplore.exe) 2012/11/06 15:54:34 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51786, Process: iexplore.exe) 2012/11/06 15:54:34 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51788, Process: iexplore.exe) 2012/11/06 15:54:34 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51789, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51791, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51790, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51792, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51793, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51799, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51798, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51800, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51802, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51801, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51803, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51805, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51804, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51807, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51806, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51809, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51808, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51810, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51811, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51812, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51813, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51814, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51816, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51815, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51863, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51862, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51866, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51867, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51868, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51869, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51870, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51871, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51873, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51872, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51877, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51878, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51879, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51880, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51881, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51883, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51882, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51884, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51885, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51887, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51888, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51886, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51889, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51890, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51891, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51892, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51893, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51894, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51895, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51896, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51897, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51898, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51899, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51900, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51817, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51818, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51820, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51821, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51819, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51822, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51823, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51824, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51825, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51826, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51827, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51828, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51829, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51830, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51831, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51832, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51833, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51834, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51835, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51836, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51837, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51838, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51839, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51841, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51840, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51844, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51845, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51846, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51843, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51844, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51845, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51846, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51847, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51848, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51849, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51853, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51852, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51854, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51855, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51856, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51858, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51859, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51860, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51861, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51857, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51865, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51864, Process: iexplore.exe) 2012/11/06 15:54:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51902, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51903, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51901, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51904, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51905, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51906, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51907, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51908, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51909, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51911, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51910, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51912, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51913, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51914, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51915, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51916, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51922, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51921, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51924, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51925, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51926, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51927, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51928, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51929, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51930, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51923, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51931, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51932, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51933, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51934, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51935, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51936, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51937, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51938, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51939, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51940, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51941, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51942, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51944, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51943, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51945, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51946, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51947, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51948, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51949, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51950, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51951, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51952, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51953, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51954, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51955, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51956, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51958, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51957, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51959, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51960, Process: iexplore.exe) 2012/11/06 15:54:51 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51961, Process: iexplore.exe) 2012/11/06 15:54:59 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51967, Process: iexplore.exe) 2012/11/06 15:54:59 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51968, Process: iexplore.exe) 2012/11/06 15:54:59 +0100 JANM-PC JanM IP-BLOCK 217.23.15.150 (Type: outgoing, Port: 51969, Process: iexplore.exe) 2012/11/06 16:29:59 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52027, Process: updater.exe) 2012/11/06 16:29:59 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52029, Process: updater.exe) 2012/11/06 18:06:15 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52038, Process: iexplore.exe) 2012/11/06 18:06:23 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52060, Process: googletoolbarnotifier.exe) 2012/11/06 18:06:47 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52068, Process: svchost.exe) 2012/11/06 18:06:47 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52069, Process: svchost.exe) 2012/11/06 18:06:47 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52071, Process: svchost.exe) 2012/11/06 18:06:47 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52072, Process: svchost.exe) 2012/11/06 18:06:47 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52074, Process: svchost.exe) 2012/11/06 18:06:48 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52075, Process: svchost.exe) 2012/11/06 18:06:48 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52077, Process: svchost.exe) 2012/11/06 18:06:48 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52078, Process: svchost.exe) 2012/11/06 18:06:48 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52079, Process: svchost.exe) 2012/11/06 18:06:48 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52080, Process: svchost.exe) 2012/11/06 18:06:48 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52081, Process: svchost.exe) 2012/11/06 18:06:48 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52082, Process: svchost.exe) 2012/11/06 18:06:48 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52083, Process: svchost.exe) 2012/11/06 18:06:48 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52084, Process: svchost.exe) 2012/11/06 18:06:48 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52085, Process: svchost.exe) 2012/11/06 18:06:48 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52086, Process: svchost.exe) 2012/11/06 18:15:30 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52103, Process: ascdownload.exe) 2012/11/06 18:16:10 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52105, Process: iexplore.exe) 2012/11/06 18:16:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52136, Process: svchost.exe) 2012/11/06 18:16:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52137, Process: svchost.exe) 2012/11/06 18:16:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52138, Process: svchost.exe) 2012/11/06 18:16:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52139, Process: svchost.exe) 2012/11/06 18:16:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52158, Process: svchost.exe) 2012/11/06 18:16:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52159, Process: svchost.exe) 2012/11/06 18:16:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52161, Process: svchost.exe) 2012/11/06 18:16:50 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52162, Process: svchost.exe) 2012/11/06 18:17:30 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52167, Process: svchost.exe) 2012/11/06 18:17:30 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52168, Process: svchost.exe) 2012/11/06 18:17:30 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 8) 2012/11/06 18:17:30 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 8) 2012/11/06 18:17:30 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 8) 2012/11/06 18:17:30 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 8) 2012/11/06 18:17:30 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 8) 2012/11/06 18:17:30 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 8) 2012/11/06 18:17:54 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52171, Process: svchost.exe) 2012/11/06 18:19:33 +0100 JANM-PC JanM MESSAGE Starting database refresh 2012/11/06 18:19:33 +0100 JANM-PC JanM MESSAGE Stopping IP protection 2012/11/06 18:19:33 +0100 JANM-PC JanM MESSAGE IP Protection stopped successfully 2012/11/06 18:19:43 +0100 JANM-PC JanM MESSAGE Database refreshed successfully 2012/11/06 18:19:43 +0100 JANM-PC JanM MESSAGE Starting IP protection 2012/11/06 18:19:44 +0100 JANM-PC JanM MESSAGE IP Protection started successfully 2012/11/06 18:45:58 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52198, Process: msfeedssync.exe) 2012/11/06 18:46:06 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 52199, Process: msfeedssync.exe) 2012/11/06 20:48:19 +0100 JANM-PC JanM MESSAGE Starting protection 2012/11/06 20:48:19 +0100 JANM-PC JanM MESSAGE Protection started successfully 2012/11/06 20:48:19 +0100 JANM-PC JanM MESSAGE Starting IP protection 2012/11/06 20:48:20 +0100 JANM-PC JanM MESSAGE IP Protection started successfully 2012/11/06 20:48:53 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49187, Process: sidebar.exe) 2012/11/06 20:49:17 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49192, Process: svchost.exe) 2012/11/06 20:49:17 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49193, Process: svchost.exe) 2012/11/06 20:49:17 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49195, Process: svchost.exe) 2012/11/06 20:49:17 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49196, Process: svchost.exe) 2012/11/06 20:49:17 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49198, Process: svchost.exe) 2012/11/06 20:49:17 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49199, Process: svchost.exe) 2012/11/06 20:49:17 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49200, Process: svchost.exe) 2012/11/06 20:49:17 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49201, Process: svchost.exe) 2012/11/06 20:49:17 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49202, Process: svchost.exe) 2012/11/06 20:49:17 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49203, Process: svchost.exe) 2012/11/06 20:49:17 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49204, Process: svchost.exe) 2012/11/06 20:49:17 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49205, Process: svchost.exe) 2012/11/06 20:49:17 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49206, Process: svchost.exe) 2012/11/06 20:49:17 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49207, Process: svchost.exe) 2012/11/06 20:49:25 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49208, Process: iexplore.exe) 2012/11/06 20:49:33 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49223, Process: outlook.exe) 2012/11/06 20:49:41 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49230, Process: svchost.exe) 2012/11/06 20:49:41 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49231, Process: svchost.exe) 2012/11/06 20:49:41 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49233, Process: svchost.exe) 2012/11/06 20:49:41 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49234, Process: svchost.exe) 2012/11/06 20:54:14 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49323, Process: javaw.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49462, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49465, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49463, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49464, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49467, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49466, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49469, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49468, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49470, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49471, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49472, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49473, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49474, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49476, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49477, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49478, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49475, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49479, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49480, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49481, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49482, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49483, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49484, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49485, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49486, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49487, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49488, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49489, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49490, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49491, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49492, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49493, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49494, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49495, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49496, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49497, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49498, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49499, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49500, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49501, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49502, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49503, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49504, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49505, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49506, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49509, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49508, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49510, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49512, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49513, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49516, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49515, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49517, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49518, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49519, Process: iexplore.exe) 2012/11/06 20:57:35 +0100 JANM-PC JanM IP-BLOCK 220.73.161.56 (Type: outgoing, Port: 49520, Process: iexplore.exe) 2012/11/06 21:01:27 +0100 JANM-PC JanM IP-BLOCK 217.23.15.153 (Type: outgoing, Port: 49599, Process: svchost.exe) Laatste logfile Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 21:34:22, on 6/11/2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16450) Boot mode: Normal Running processes: D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe D:\Windows\System32\spool\drivers\x64\3\WrtMon.exe D:\Program Files\Mouse\Amoumain.exe D:\Windows\System32\spool\drivers\x64\3\WrtProc.exe D:\Program Files (x86)\Ask.com\Updater\Updater.exe D:\Program Files (x86)\NetworkIndicator\NetworkIndicator.exe D:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE D:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe D:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe D:\Program Files (x86)\McAfee\Common Framework\UdaterUI.exe D:\Program Files (x86)\NewSoft\Presto! PageManager 9.01\PMSpeed.exe D:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe D:\Program Files (x86)\Nuance\PDF Create 7\PdfCreate7Hook.exe D:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe D:\Program Files (x86)\Fighters\Tray\FightersTray.exe D:\Program Files (x86)\Fighters\SPAMfighter\sfagent.exe D:\Program Files (x86)\Ask.com\Updater\Updater.exe D:\Program Files (x86)\McAfee\Common Framework\McTray.exe D:\Program Files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE D:\Program Files (x86)\Internet Explorer\iexplore.exe D:\Program Files (x86)\Internet Explorer\iexplore.exe D:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe D:\Program Files (x86)\Internet Explorer\iexplore.exe D:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_4_402_287_ActiveX.exe D:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = (1) {searchTerms - Web Search Results} R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com R1 - HKCU\Software\Microsoft\Internet Explorer\Search,Default_Search_URL = (1) {searchTerms - Web Search Results} R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = (1) {searchTerms - Web Search Results} R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe, O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - D:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - D:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - D:\Program Files (x86)\Common Files\McAfee\SystemCore\ScriptSn.20120424160640.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - D:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - D:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - D:\PROGRA~2\IObit\ADVANC~2\BROWER~1\ASCPLU~1.DLL O2 - BHO: ZeonIEEventHelper Class - {DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9} - (no file) O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - D:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - D:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: (no name) - {ae07101b-46d4-4a98-af68-0333ea26e113} - (no file) O4 - HKLM\..\Run: [McAfeeUpdaterUI] "D:\Program Files (x86)\McAfee\Common Framework\udaterui.exe" /StartedFromRunKey O4 - HKLM\..\Run: [shStatEXE] "D:\Program Files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE" /STANDALONE O4 - HKLM\..\Run: [PMSpeed] D:\Program Files (x86)\NewSoft\Presto! PageManager 9.01\PMSpeed.EXE O4 - HKLM\..\Run: [NUSB3MON] "D:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "D:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "D:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [OmniPage Preload] D:\Program Files (x86)\Nuance\OmniPage18\OmniPage18.exe /preload O4 - HKLM\..\Run: [Nuance OmniPage 18-reminder] "D:\Program Files (x86)\Nuance\OmniPage18\Ereg\Ereg.exe" -r "D:\ProgramData\ScanSoft\OmniPage 18\Ereg\Ereg.ini" O4 - HKLM\..\Run: [PDFCreHook] D:\Program Files (x86)\Nuance\PDF Create 7\pdfcreate7hook.exe O4 - HKLM\..\Run: [PDF7 Registry Controller] D:\Program Files (x86)\Nuance\PDF Create 7\RegistryController.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "D:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [CommonToolkitTray] D:\Program Files (x86)\Fighters\Tray\FightersTray.exe O4 - HKLM\..\Run: [sfagent] D:\Program Files (x86)\Fighters\SPAMfighter\sfagent.exe O4 - HKLM\..\Run: [ApnUpdater] d:\program files (x86)\ask.com\updater\updater.exe O4 - HKLM\..\Run: [JMB36X IDE Setup] d:\windows\raidtool\xinside.exe O4 - HKLM\..\Run: [updateUSB] d:\windows\inf\updateusb.exe O4 - HKCU\..\Run: [sidebar] D:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [NetworkIndicator] D:\Program Files (x86)\NetworkIndicator\NetworkIndicator.exe O4 - HKCU\..\Run: [OpAgent] "OpAgent.exe" /agent O4 - HKCU\..\Run: [iSUSPM] D:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe -scheduler O4 - HKCU\..\Run: [OfficeSyncProcess] "D:\Program Files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" O4 - HKCU\..\Run: [TomTomHOME.exe] "D:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" O4 - HKCU\..\Run: [Advanced SystemCare 6] "D:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCTray.exe" /AutoStart O4 - HKCU\..\Run: [swg] "D:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file) O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - (no file) O9 - Extra button: (no name) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - D:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://oas.support.microsoft.com/ActiveX/MSDcode.cab O16 - DPF: {0D41B8C5-2599-4893-8183-00195EC8D5F9} (asusTek_sysctrl Class) - http://support.asus.com/select/asusTek_sys_ctrl3.cab O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - D:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - D:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - D:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - D:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - D:\Windows\System32\alg.exe (file missing) O23 - Service: AMD External Events Utility - Unknown owner - D:\Windows\system32\atiesrxx.exe (file missing) O23 - Service: ASUS System Control Service (AsSysCtrlService) - ASUSTeK Computer Inc. - D:\Program Files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - D:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - D:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - D:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - D:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - D:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - D:\Windows\system32\lsass.exe (file missing) O23 - Service: MBAMScheduler - Malwarebytes Corporation - D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - D:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: McAfee Framework Service (McAfeeFramework) - McAfee, Inc. - D:\Program Files (x86)\McAfee\Common Framework\FrameworkService.exe O23 - Service: McAfee McShield (McShield) - McAfee, Inc. - D:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe O23 - Service: McAfee Task Manager (McTaskManager) - McAfee, Inc. - D:\Program Files (x86)\McAfee\VirusScan Enterprise\VsTskMgr.exe O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - D:\Windows\system32\mfevtps.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - D:\Windows\System32\msdtc.exe (file missing) O23 - Service: Netlogon - Unknown owner - D:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - D:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - D:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - D:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - D:\Windows\System32\snmptrap.exe (file missing) O23 - Service: SPAMfighter Update Service - SPAMfighter ApS - D:\Program Files (x86)\Fighters\SPAMfighter\sfus.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - D:\Windows\System32\spoolsv.exe (file missing) O23 - Service: Software Protection (sppsvc) - Unknown owner - D:\Windows\system32\sppsvc.exe (file missing) O23 - Service: Suite Service - SPAMfighter ApS - D:\Program Files (x86)\Fighters\FighterSuiteService.exe O23 - Service: TomTomHOMEService - TomTom - D:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - D:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: UMVPFSrv - Logitech Inc. - D:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - D:\Windows\system32\lsass.exe (file missing) O23 - Service: Virtual Disk (vds) - Unknown owner - D:\Windows\System32\vds.exe (file missing) O23 - Service: Volume Shadow Copy (VSS) - Unknown owner - D:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - D:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - D:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - D:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: Windows Media Player Network Sharing Service (WMPNetworkSvc) - Unknown owner - D:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 12976 bytes
OVER ONS
PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!