Ga naar inhoud

jv9090

Lid
 Bekijk profiel  Bekijk hun activiteit

  • Items

    3.566

  • Registratiedatum

  • Laatst bezocht

 Inhoudstype 

Alles dat geplaatst werd door jv9090

  1. jv9090
    Staat dat bestand normaal niet op de pc zelf, ergens op een aparte partitie? Ik denk dat je dat bestand niet kan downloaden. Misschien eens bellen naar het service center van Medion (of aldi, als je hem daar hebt gekocht?) Jürgen
  2. jv9090
    Lukt het om iets anders op cd/dvd te branden? muziek of dergelijke. Waarom moet je het op een dvd branden? Je koopt het toch op dvd?
  3. jv9090
    Internet werkt al terug. Blijkbaar waren er twee bestanden verwijderd noodzakelijk bleken om op internet te geraken en deftig af te sluiten.
  4. jv9090
    Die website heb ik voordien al eens gelezen. Heb toen alles gevolgd wat er stond, met als gevolg dat ik ubuntu opnieuw moest instellen.
  5. jv9090
    Maak je gebruik van de "print functie" die sommige websites aanbieden? Kijk ook eens bij afdrukvoorbeeld hoe het er uit ziet. Jürgen
  6. jv9090
    Krijg je deze twee foutmelding tegelijkertijd of in twee verschillende vensters? Kijk eens bij apparaatbeheer of er daar ergens een melding wordt gegeven bij een van de cd/dvd-drives. Je zou systeemherstel eens kunnen proberen, maar ik denk niet dat het zal lukken. Verder zou ik ook eens een scan doen met Hijackthis en plaats de log in je volgend bericht. Met spyware weet je immers nooit ;-) Jürgen
  7. jv9090
    Combofix heeft weer wat bestanden verwijderd. Het gevolg is echter dat er nu blijkbaar geen internet meer is op haar pc. De melding van McAfee is in ieder geval niet meer te zien via Hijackthis.
  8. jv9090
    hey, Momenteel draai ik ubuntu 9.04 op mijn pc. Ik heb een grafische kaart van ATI: sapphire radeon hd 4850. Na verbinding met het internet geeft ubuntu aan dat ik niet over de juiste drivers beschik voor mijn kaart, hoewel ik alles perfect kan doen. Enkel 3d acceleration en Compiz werken niet onder deze drivers. Bij hardwarestuurprogramma's wordt gezegd dat er drivers beschikbaar zijn van ATI(commercieel stuurprogramma FGLRX van ATI/AMD). Wanneer ik deze drivers activeer werkt 3d acceleration en Compiz perfect, maar ik kan echter geen dvd's bekijken. Het beeld schokt en wanneer ik kies voor volledig scherm wordt het beeld zwart en moet ik resetten. Iemand die een oplossing weet zodat ik alle functies van die grafische kaart wel kan benutten
  9. jv9090
    Ik heb de pc niet meer bij me, dus het hangt nu af van de computerkennis van men vriendin . Ze heeft gezocht en kwam uit bij het volgende HKEY_LOCAL_MACHINE/SYSTEM/controlSet001/Enum/Root/LEGACY_MCAFEEFRAMEWORK/0000 Kan dit kloppen?
  10. jv9090
    Probeer dit eens. Of dit. Jürgen
  11. jv9090
    Is het deze versie die je nu gebruikt? Die heeft blijkbaar wel een 64 bit versie. Jürgen
  12. jv9090
    Ik vind het niet direct op hun website, maar ik denk dat je de 64 versie wel nodig hebt, aangezien je met de Vista 64 bit versie werkt.
  13. jv9090
    En heb je het al eens opnieuw geïnstalleerd? Meer uitleg over deze foutmelding staat hier. Jürgen
  14. jv9090
    Mcafee blijft lastig doen en ik krijg het dus niet verwijderd. Jürgen
  15. jv9090
    Normaal staat dit tussen de software bij configuratiescherm. Start- Configuratiescherm-Software. Als het er niet tussen staat, gewoon het installatiebestand opnieuw downloaden en dan zou je moeten kunnen kiezen voor verwijderen. Jürgen
  16. jv9090
    Het blijkt niet te werken. Ik vink het aan, druk op Fix en bij de volgende scan staat het er gewoon terug in.
  17. jv9090
    ComboFix 09-07-05.03 - MM 06/07/2009 13:23.3 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.2.1252.32.1043.18.1014.491 [GMT 2:00] Gestart vanuit: c:\documents and settings\MM\Bureaublad\ComboFix.exe gebruikte Opdracht switches :: c:\documents and settings\MM\Bureaublad\CFScript.txt AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF} FW: Norton Internet Worm Protection *disabled* {990F9400-4CEE-43EA-A83A-D013ADD8EA6E} . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\program files\McAfee c:\program files\McAfee\Common Framework\0409\AgentRes.dll c:\program files\McAfee\Common Framework\0409\AgentRes64.dll c:\program files\McAfee\Common Framework\0409\CmaUIRes.dll c:\program files\McAfee\Common Framework\0409\ScrptRes.dll c:\program files\McAfee\Common Framework\0409\UpdRes.dll c:\program files\McAfee\Common Framework\Agent.dll c:\program files\McAfee\Common Framework\Agent64.dll c:\program files\McAfee\Common Framework\AgentPlugin.dll c:\program files\McAfee\Common Framework\applib.dll c:\program files\McAfee\Common Framework\applib64.dll c:\program files\McAfee\Common Framework\Cleanup.exe c:\program files\McAfee\Common Framework\ClientUI.dll c:\program files\McAfee\Common Framework\cmalib.dll c:\program files\McAfee\Common Framework\cmalib64.dll c:\program files\McAfee\Common Framework\CmdAgent.exe c:\program files\McAfee\Common Framework\ComponentFrameworkCallback64.dll c:\program files\McAfee\Common Framework\ComponentPolicyEnforcement64.dll c:\program files\McAfee\Common Framework\ComponentSubSystem.dll c:\program files\McAfee\Common Framework\ComponentSubSystem64.dll c:\program files\McAfee\Common Framework\ComponentUserInterface.dll c:\program files\McAfee\Common Framework\FrameworkService.exe c:\program files\McAfee\Common Framework\FrmInst.exe c:\program files\McAfee\Common Framework\FrmPlugin.dll c:\program files\McAfee\Common Framework\GenEvtInf.dll c:\program files\McAfee\Common Framework\GenEvtInf64.dll c:\program files\McAfee\Common Framework\InternetManager.dll c:\program files\McAfee\Common Framework\InternetManager64.dll c:\program files\McAfee\Common Framework\JrMac.dll c:\program files\McAfee\Common Framework\ListenServer.dll c:\program files\McAfee\Common Framework\Logging.dll c:\program files\McAfee\Common Framework\Logging64.dll c:\program files\McAfee\Common Framework\Management.dll c:\program files\McAfee\Common Framework\Management64.dll c:\program files\McAfee\Common Framework\McScanCheck.exe c:\program files\McAfee\Common Framework\McScript.exe c:\program files\McAfee\Common Framework\McScript_InUse.exe c:\program files\McAfee\Common Framework\Mctray.exe c:\program files\McAfee\Common Framework\mcurial.dll c:\program files\McAfee\Common Framework\Microsoft.VC80.CRT\Microsoft.VC80.CRT.manifest c:\program files\McAfee\Common Framework\Microsoft.VC80.CRT\msvcm80.dll c:\program files\McAfee\Common Framework\Microsoft.VC80.CRT\msvcp80.dll c:\program files\McAfee\Common Framework\Microsoft.VC80.CRT\msvcr80.dll c:\program files\McAfee\Common Framework\msvcp71.dll c:\program files\McAfee\Common Framework\msvcr71.dll c:\program files\McAfee\Common Framework\naCmnLib64.dll c:\program files\McAfee\Common Framework\naCmnLib71.dll c:\program files\McAfee\Common Framework\nagshr32.dll c:\program files\McAfee\Common Framework\naicrt32.dll c:\program files\McAfee\Common Framework\nailog.dll c:\program files\McAfee\Common Framework\nailog64.dll c:\program files\McAfee\Common Framework\naInet.dll c:\program files\McAfee\Common Framework\naInet64.dll c:\program files\McAfee\Common Framework\naisign.dll c:\program files\McAfee\Common Framework\naitcpp.dll c:\program files\McAfee\Common Framework\naPolicyManager.dll c:\program files\McAfee\Common Framework\naPolicyManager64.dll c:\program files\McAfee\Common Framework\naPrdMgr.exe c:\program files\McAfee\Common Framework\naPrdMgr64.exe c:\program files\McAfee\Common Framework\naSPIPE.dll c:\program files\McAfee\Common Framework\naSPIPE64.dll c:\program files\McAfee\Common Framework\naXML64.dll c:\program files\McAfee\Common Framework\naXML71.dll c:\program files\McAfee\Common Framework\nmcomn32.dll c:\program files\McAfee\Common Framework\patchw32.dll c:\program files\McAfee\Common Framework\PcrPlug.dll c:\program files\McAfee\Common Framework\PoEvtInf.dll c:\program files\McAfee\Common Framework\Scheduler.dll c:\program files\McAfee\Common Framework\Scheduler64.dll c:\program files\McAfee\Common Framework\ScriptSubSys.dll c:\program files\McAfee\Common Framework\SecureFrameworkFactory.dll c:\program files\McAfee\Common Framework\SecureFrameworkFactory64.dll c:\program files\McAfee\Common Framework\TCHelper.dll c:\program files\McAfee\Common Framework\TCSubSys.dll c:\program files\McAfee\Common Framework\UdaterUI.exe c:\program files\McAfee\Common Framework\unicows.dll c:\program files\McAfee\Common Framework\UpdateSubSys.dll c:\program files\McAfee\Common Framework\UpdPlug.dll c:\program files\McAfee\Common Framework\UserSpace.dll c:\program files\McAfee\Common Framework\XMLWrap.dll . (((((((((((((((((((( Bestanden Gemaakt van 2009-06-06 to 2009-07-06 )))))))))))))))))))))))))))))) . 2009-07-06 11:03 . 2009-07-06 11:03 -------- d-----w- c:\windows\LastGood 2009-07-05 22:18 . 2009-03-10 20:18 454024 ----a-w- c:\windows\system32\KB905474\wgasetup.exe 2009-07-05 22:18 . 2009-07-06 11:05 -------- d-----w- c:\windows\system32\KB905474 2009-07-05 08:48 . 2009-07-05 19:19 -------- d-----w- c:\windows\system32\CatRoot_bak 2009-07-04 08:14 . 2009-07-04 08:14 -------- d-----w- c:\program files\VS Revo Group 2009-07-03 08:18 . 2009-07-03 08:18 -------- d-----w- c:\documents and settings\MM\Application Data\Malwarebytes 2009-07-03 08:18 . 2009-06-17 09:27 38160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-07-03 08:18 . 2009-07-03 08:18 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2009-07-03 08:18 . 2009-07-03 08:18 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-07-03 08:18 . 2009-06-17 09:27 19096 ----a-w- c:\windows\system32\drivers\mbam.sys 2009-07-02 18:25 . 2009-07-02 18:25 -------- d-----w- c:\program files\Trend Micro 2009-06-30 10:26 . 2009-06-30 10:26 -------- d-----w- c:\program files\Common Files\Skype 2009-06-27 10:05 . 2009-06-18 10:30 2052888 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\avgcorex.dll 2009-06-18 10:31 . 2009-06-12 09:51 1261344 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\avgwd.dll 2009-06-18 10:31 . 2009-06-12 09:51 829208 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\avgcfgx.dll 2009-06-18 10:31 . 2009-06-12 09:51 3298072 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\setup.exe 2009-06-13 11:44 . 2009-06-02 11:37 1004800 ----a-w- c:\documents and settings\All Users\Application Data\AVG Security Toolbar\IEToolbar.dll 2009-06-12 09:53 . 2009-06-13 11:44 -------- d-----w- c:\documents and settings\All Users\Application Data\AVG Security Toolbar 2009-06-12 09:53 . 2009-06-12 09:53 -------- d-----w- c:\documents and settings\LocalService\Menu Start 2009-06-12 09:53 . 2009-06-12 09:53 -------- d-----w- c:\documents and settings\LocalService\Application Data\AVGTOOLBAR 2009-06-12 09:51 . 2009-06-12 09:51 1452312 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\avgupd.dll 2009-06-06 14:43 . 2009-06-06 14:43 -------- d-----w- c:\program files\uTorrent 2009-06-06 14:43 . 2009-06-29 20:56 -------- d-----w- c:\documents and settings\MM\Application Data\uTorrent . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-07-06 11:30 . 2006-11-27 11:21 -------- d-----w- c:\documents and settings\MM\Application Data\Skype 2009-07-06 09:44 . 2004-09-10 15:24 85906 ----a-w- c:\windows\system32\perfc013.dat 2009-07-06 09:44 . 2004-09-10 15:24 477260 ----a-w- c:\windows\system32\perfh013.dat 2009-07-06 09:41 . 2008-11-30 12:49 -------- d-----w- c:\documents and settings\MM\Application Data\skypePM 2009-07-05 22:13 . 2008-10-04 10:37 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help 2009-06-30 10:26 . 2007-01-27 09:20 -------- d-----r- c:\program files\Skype 2009-06-30 10:26 . 2006-11-27 11:21 -------- d-----w- c:\documents and settings\All Users\Application Data\Skype 2009-06-29 18:00 . 2007-02-11 19:52 -------- d-----w- c:\documents and settings\MM\Application Data\LimeWire 2009-06-27 19:21 . 2007-02-11 19:52 -------- d-----w- c:\program files\LimeWire 2009-06-18 10:30 . 2008-08-24 15:34 27784 ----a-w- c:\windows\system32\drivers\avgmfx86.sys 2009-06-12 10:22 . 2008-09-14 21:27 -------- d-----w- c:\documents and settings\All Users\Application Data\CanonIJPLM 2009-06-12 09:52 . 2008-08-24 15:34 327688 ----a-w- c:\windows\system32\drivers\avgldx86.sys 2009-05-28 17:58 . 2007-07-01 13:36 -------- d-----w- c:\program files\Kruidvat - Fotoservice 2009-05-10 09:13 . 2008-05-12 20:25 -------- d-----w- c:\program files\Picasa2 2009-05-09 14:09 . 2009-05-09 14:09 410984 ----a-w- c:\windows\system32\deploytk.dll 2009-05-09 14:09 . 2006-11-27 18:37 -------- d-----w- c:\program files\Java 2009-05-09 14:09 . 2009-05-09 14:09 152576 ----a-w- c:\documents and settings\MM\Application Data\Sun\Java\jre1.6.0_11\lzma.dll 2009-05-07 15:44 . 2004-08-04 01:03 345600 ----a-w- c:\windows\system32\localspl.dll 2009-05-02 09:05 . 2008-08-24 15:34 11952 ----a-w- c:\windows\system32\avgrsstx.dll 2009-05-01 18:30 . 2009-05-01 18:30 3366912 ----a-w- c:\windows\system32\GPhotos.scr 2009-04-29 04:49 . 2004-08-04 01:03 827392 ----a-w- c:\windows\system32\wininet.dll 2009-04-29 04:49 . 2004-08-04 01:03 78336 ----a-w- c:\windows\system32\ieencode.dll 2009-04-19 20:12 . 2004-08-04 00:56 1846784 ----a-w- c:\windows\system32\win32k.sys 2009-04-15 15:18 . 2004-08-04 01:03 584192 ----a-w- c:\windows\system32\rpcrt4.dll . ((((((((((((((((((((((((((((( SnapShot@2009-07-04_18.17.34 ))))))))))))))))))))))))))))))))))))))))) . + 2008-09-30 14:45 . 2008-09-30 14:45 91656 c:\windows\WinSxS\x86_Microsoft.MSXML2R_6bd6b9abf345378f_4.1.1.0_x-ww_2a41bceb\msxml4r.dll + 2009-07-06 10:59 . 2009-07-06 10:59 16384 c:\windows\Temp\Perflib_Perfdata_504.dat + 2005-05-26 03:16 . 2008-10-16 12:09 43544 c:\windows\system32\wups2.dll + 2004-09-10 15:46 . 2008-10-16 12:08 34328 c:\windows\system32\wups.dll + 2004-09-10 15:46 . 2008-10-16 12:09 51224 c:\windows\system32\wuauclt.exe + 2007-01-29 08:58 . 2008-10-22 09:47 62976 c:\windows\system32\tzchange.exe + 2006-09-27 10:08 . 2008-07-09 07:44 26488 c:\windows\system32\spupdsvc.exe + 2007-10-24 19:58 . 2007-11-30 11:19 18808 c:\windows\system32\spmsg.dll + 2009-07-05 08:34 . 2008-10-16 12:09 43544 c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.2.6001.788\wups2.dll + 2009-07-05 08:34 . 2008-10-16 12:08 34328 c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\7.2.6001.788\wups.dll + 2004-08-04 01:03 . 2009-02-03 20:11 55808 c:\windows\system32\secur32.dll - 2004-08-04 01:03 . 2004-08-04 01:03 55808 c:\windows\system32\secur32.dll + 2001-09-07 13:00 . 2009-02-06 16:54 35328 c:\windows\system32\sc.exe + 2004-08-04 01:03 . 2009-04-29 04:49 44544 c:\windows\system32\pngfilt.dll - 2004-08-04 01:03 . 2007-08-13 17:36 44544 c:\windows\system32\pngfilt.dll - 2004-09-10 15:23 . 2009-05-01 21:48 65860 c:\windows\system32\perfc009.dat + 2004-09-10 15:23 . 2009-07-06 09:44 65860 c:\windows\system32\perfc009.dat + 2004-09-10 15:43 . 2008-06-12 14:19 91648 c:\windows\system32\mtxoci.dll + 2004-08-04 01:03 . 2008-06-12 14:19 66560 c:\windows\system32\mtxclu.dll - 2004-08-04 01:03 . 2006-03-01 19:44 66560 c:\windows\system32\mtxclu.dll + 2006-11-07 20:03 . 2009-04-29 04:49 52224 c:\windows\system32\msfeedsbs.dll + 2004-09-10 15:43 . 2008-06-12 14:19 58880 c:\windows\system32\msdtclog.dll - 2004-09-10 15:43 . 2004-08-04 12:00 58880 c:\windows\system32\msdtclog.dll + 2004-08-04 01:03 . 2008-06-24 16:24 74240 c:\windows\system32\mscms.dll - 2004-08-04 01:03 . 2005-06-29 01:53 74240 c:\windows\system32\mscms.dll + 2004-08-04 01:03 . 2009-04-29 04:49 27648 c:\windows\system32\jsproxy.dll + 2006-11-07 02:26 . 2009-04-28 09:07 13824 c:\windows\system32\ieudinit.exe + 2004-08-04 01:03 . 2009-04-29 04:49 44544 c:\windows\system32\iernonce.dll + 2004-08-04 01:03 . 2009-04-28 09:07 70656 c:\windows\system32\ie4uinit.exe + 2006-10-17 10:58 . 2009-04-29 04:49 63488 c:\windows\system32\icardie.dll + 2004-09-10 15:46 . 2008-10-16 12:08 34328 c:\windows\system32\dllcache\wups.dll + 2004-09-10 15:46 . 2008-10-16 12:09 51224 c:\windows\system32\dllcache\wuauclt.exe - 2004-08-04 01:03 . 2004-08-04 01:03 55808 c:\windows\system32\dllcache\secur32.dll + 2004-08-04 01:03 . 2009-02-03 20:11 55808 c:\windows\system32\dllcache\secur32.dll + 2001-09-07 13:00 . 2009-02-06 16:54 35328 c:\windows\system32\dllcache\sc.exe - 2004-08-04 01:03 . 2007-08-13 17:36 44544 c:\windows\system32\dllcache\pngfilt.dll + 2004-08-04 01:03 . 2009-04-29 04:49 44544 c:\windows\system32\dllcache\pngfilt.dll + 2004-09-10 15:43 . 2008-06-12 14:19 91648 c:\windows\system32\dllcache\mtxoci.dll + 2004-08-04 01:03 . 2008-06-12 14:19 66560 c:\windows\system32\dllcache\mtxclu.dll - 2004-08-04 01:03 . 2006-03-01 19:44 66560 c:\windows\system32\dllcache\mtxclu.dll + 2009-04-29 04:49 . 2009-04-29 04:49 52224 c:\windows\system32\dllcache\msfeedsbs.dll + 2004-09-10 15:43 . 2008-06-12 14:19 58880 c:\windows\system32\dllcache\msdtclog.dll - 2004-09-10 15:43 . 2004-08-04 12:00 58880 c:\windows\system32\dllcache\msdtclog.dll + 2004-08-04 01:03 . 2008-06-24 16:24 74240 c:\windows\system32\dllcache\mscms.dll - 2004-08-04 01:03 . 2005-06-29 01:53 74240 c:\windows\system32\dllcache\mscms.dll + 2004-08-04 01:03 . 2009-04-29 04:49 27648 c:\windows\system32\dllcache\jsproxy.dll + 2009-04-28 09:07 . 2009-04-28 09:07 13824 c:\windows\system32\dllcache\ieudinit.exe + 2004-08-04 01:03 . 2009-04-29 04:49 44544 c:\windows\system32\dllcache\iernonce.dll - 2004-08-04 01:03 . 2007-08-13 17:45 78336 c:\windows\system32\dllcache\ieencode.dll + 2004-08-04 01:03 . 2009-04-29 04:49 78336 c:\windows\system32\dllcache\ieencode.dll + 2004-08-04 01:03 . 2009-04-28 09:07 70656 c:\windows\system32\dllcache\ie4uinit.exe + 2009-04-29 04:49 . 2009-04-29 04:49 63488 c:\windows\system32\dllcache\icardie.dll + 2004-08-04 01:03 . 2008-10-16 12:09 92696 c:\windows\system32\dllcache\cdm.dll + 2004-08-04 01:03 . 2008-10-16 12:09 92696 c:\windows\system32\cdm.dll + 2008-10-04 10:49 . 2009-07-05 22:13 35088 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe - 2008-10-04 10:49 . 2008-10-04 10:49 35088 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\oisicon.exe - 2008-10-04 10:49 . 2008-10-04 10:49 18704 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\mspicons.exe + 2008-10-04 10:49 . 2009-07-05 22:13 18704 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\mspicons.exe + 2008-10-04 10:49 . 2009-07-05 22:13 20240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe - 2008-10-04 10:49 . 2008-10-04 10:49 20240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\cagicon.exe + 2009-07-05 22:09 . 2009-07-05 22:09 32768 c:\windows\Installer\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}\icon.exe + 2009-07-05 22:10 . 2007-08-13 17:36 44544 c:\windows\ie7updates\KB969897-IE7\pngfilt.dll + 2009-07-05 22:10 . 2007-08-13 17:54 50688 c:\windows\ie7updates\KB969897-IE7\msfeedsbs.dll + 2009-07-05 22:10 . 2007-08-13 17:54 27136 c:\windows\ie7updates\KB969897-IE7\jsproxy.dll + 2009-07-05 22:10 . 2007-08-13 17:39 13312 c:\windows\ie7updates\KB969897-IE7\ieudinit.exe + 2009-07-05 22:10 . 2007-08-13 17:39 43008 c:\windows\ie7updates\KB969897-IE7\iernonce.dll + 2009-07-05 22:10 . 2007-08-13 17:45 78336 c:\windows\ie7updates\KB969897-IE7\ieencode.dll + 2009-07-05 22:10 . 2007-08-13 17:39 54784 c:\windows\ie7updates\KB969897-IE7\ie4uinit.exe + 2009-07-05 22:10 . 2007-08-13 17:36 61952 c:\windows\ie7updates\KB969897-IE7\icardie.dll + 2005-05-16 15:42 . 2009-04-15 09:56 370176 c:\windows\system32\xpsp3res.dll - 2005-05-16 15:42 . 2008-02-15 23:03 370176 c:\windows\system32\xpsp3res.dll + 2004-09-10 15:46 . 2008-10-16 12:13 202776 c:\windows\system32\wuweb.dll + 2004-09-10 15:46 . 2008-10-16 12:12 323608 c:\windows\system32\wucltui.dll + 2004-09-10 15:46 . 2008-10-16 12:12 561688 c:\windows\system32\wuapi.dll + 2006-10-18 19:47 . 2008-06-24 16:12 295936 c:\windows\system32\wmpeffects.dll - 2006-10-18 19:47 . 2006-10-18 19:47 295936 c:\windows\system32\wmpeffects.dll + 2004-08-04 01:03 . 2008-06-18 03:03 938496 c:\windows\system32\WMNetmgr.dll + 2004-08-04 01:03 . 2008-12-16 12:51 351232 c:\windows\system32\winhttp.dll - 2004-08-04 01:03 . 2004-08-04 01:03 351232 c:\windows\system32\winhttp.dll + 2007-04-10 12:01 . 2009-03-10 20:18 969608 c:\windows\system32\WgaTray.exe + 2004-08-04 01:03 . 2009-04-29 04:49 233472 c:\windows\system32\webcheck.dll + 2004-09-10 15:43 . 2009-02-06 16:39 227840 c:\windows\system32\wbem\wmiprvse.exe + 2004-09-10 15:43 . 2009-02-09 10:22 453120 c:\windows\system32\wbem\wmiprvsd.dll + 2004-09-10 15:43 . 2009-02-09 10:22 473088 c:\windows\system32\wbem\fastprox.dll - 2004-08-04 01:03 . 2007-08-13 17:44 105984 c:\windows\system32\url.dll + 2004-08-04 01:03 . 2009-04-29 04:49 105984 c:\windows\system32\url.dll + 2004-08-04 01:03 . 2008-10-03 10:17 247326 c:\windows\system32\strmdll.dll + 2004-08-04 01:03 . 2009-02-09 10:11 111104 c:\windows\system32\services.exe - 2004-08-04 01:03 . 2007-04-25 14:22 144896 c:\windows\system32\schannel.dll + 2004-08-04 01:03 . 2008-12-05 07:14 144896 c:\windows\system32\schannel.dll + 2004-08-04 01:03 . 2009-02-09 10:22 399360 c:\windows\system32\rpcss.dll + 2004-09-10 15:23 . 2009-07-06 09:44 411314 c:\windows\system32\perfh009.dat - 2004-09-10 15:23 . 2009-05-01 21:48 411314 c:\windows\system32\perfh009.dat - 2004-08-04 01:03 . 2004-08-04 01:03 285184 c:\windows\system32\pdh.dll + 2004-08-04 01:03 . 2009-03-06 14:47 285184 c:\windows\system32\pdh.dll + 2004-08-04 01:03 . 2009-04-29 04:49 102912 c:\windows\system32\occache.dll + 2004-08-04 01:03 . 2009-02-09 10:22 735744 c:\windows\system32\ntdll.dll + 2004-08-04 01:03 . 2008-10-15 17:01 332800 c:\windows\system32\netapi32.dll + 2008-02-25 11:53 . 2008-10-16 12:06 208744 c:\windows\system32\muweb.dll + 2008-02-25 11:53 . 2008-10-16 12:06 268648 c:\windows\system32\mucltui.dll + 2004-08-04 01:03 . 2008-06-20 17:43 247296 c:\windows\system32\mswsock.dll - 2004-08-04 01:03 . 2004-08-04 01:03 247296 c:\windows\system32\mswsock.dll + 2004-08-04 01:03 . 2009-04-29 04:49 671232 c:\windows\system32\mstime.dll + 2004-08-04 01:03 . 2009-04-29 04:49 193024 c:\windows\system32\msrating.dll + 2004-08-04 01:03 . 2009-04-29 04:49 477696 c:\windows\system32\mshtmled.dll + 2006-11-07 20:03 . 2009-04-29 04:49 459264 c:\windows\system32\msfeeds.dll + 2004-09-10 15:44 . 2008-06-12 14:19 161792 c:\windows\system32\msdtcuiu.dll + 2004-09-10 15:43 . 2008-06-12 14:19 956928 c:\windows\system32\msdtctm.dll + 2004-09-10 15:43 . 2008-06-12 14:19 428032 c:\windows\system32\msdtcprx.dll + 2004-08-04 01:03 . 2009-02-09 10:22 728576 c:\windows\system32\lsasrv.dll + 2004-08-04 01:03 . 2008-06-17 23:09 100864 c:\windows\system32\logagent.exe - 2004-08-04 01:03 . 2006-10-18 18:03 100864 c:\windows\system32\logagent.exe + 2004-09-10 15:46 . 2008-04-11 18:51 683520 c:\windows\system32\inetcomm.dll - 2004-09-10 15:46 . 2007-08-21 06:18 683520 c:\windows\system32\inetcomm.dll + 2006-10-17 10:57 . 2009-04-29 04:49 268288 c:\windows\system32\iertutil.dll + 2004-08-04 01:03 . 2009-04-29 04:49 385024 c:\windows\system32\iedkcs32.dll - 2006-10-17 10:27 . 2007-07-11 11:27 383488 c:\windows\system32\ieapfltr.dll + 2006-10-17 10:27 . 2009-04-29 04:49 383488 c:\windows\system32\ieapfltr.dll + 2001-09-07 13:00 . 2009-04-25 05:26 161792 c:\windows\system32\ieakui.dll - 2001-09-07 13:00 . 2007-08-13 16:56 161792 c:\windows\system32\ieakui.dll + 2004-08-04 01:03 . 2009-04-29 04:49 230400 c:\windows\system32\ieaksie.dll + 2004-08-04 01:03 . 2009-04-29 04:49 153088 c:\windows\system32\ieakeng.dll + 2004-08-04 01:03 . 2008-10-23 13:02 283648 c:\windows\system32\gdi32.dll + 2004-09-10 15:35 . 2009-07-06 09:39 376856 c:\windows\system32\FNTCACHE.DAT - 2004-09-10 15:35 . 2008-10-04 10:58 376856 c:\windows\system32\FNTCACHE.DAT + 2004-08-04 01:03 . 2009-04-29 04:49 133120 c:\windows\system32\extmgr.dll + 2004-08-04 01:03 . 2008-07-07 20:32 253952 c:\windows\system32\es.dll + 2004-08-04 01:03 . 2009-04-29 04:49 214528 c:\windows\system32\dxtrans.dll - 2004-08-04 01:03 . 2007-08-13 17:35 214528 c:\windows\system32\dxtrans.dll + 2004-08-04 01:03 . 2009-04-29 04:49 347136 c:\windows\system32\dxtmsft.dll + 2004-08-03 23:07 . 2008-06-20 09:52 225920 c:\windows\system32\drivers\tcpip6.sys + 2004-08-03 23:14 . 2008-06-20 10:45 360320 c:\windows\system32\drivers\tcpip.sys + 2004-08-03 23:14 . 2008-12-11 11:57 333184 c:\windows\system32\drivers\srv.sys + 2001-09-07 13:00 . 2008-05-08 12:28 202752 c:\windows\system32\drivers\rmcast.sys + 2004-08-03 23:15 . 2008-10-24 11:10 453632 c:\windows\system32\drivers\mrxsmb.sys + 2007-10-29 14:25 . 2008-06-14 18:00 272640 c:\windows\system32\drivers\bthport.sys + 2004-08-03 23:14 . 2008-08-14 09:51 138368 c:\windows\system32\drivers\afd.sys + 2004-08-04 01:03 . 2008-06-20 17:43 148992 c:\windows\system32\dnsapi.dll - 2004-08-04 01:03 . 2008-02-20 05:39 148992 c:\windows\system32\dnsapi.dll + 2004-09-10 15:46 . 2008-10-16 12:13 202776 c:\windows\system32\dllcache\wuweb.dll + 2004-09-10 15:46 . 2008-10-16 12:12 323608 c:\windows\system32\dllcache\wucltui.dll + 2004-09-10 15:46 . 2008-10-16 12:12 561688 c:\windows\system32\dllcache\wuapi.dll + 2004-09-10 15:44 . 2008-04-21 21:28 218624 c:\windows\system32\dllcache\wordpad.exe + 2004-08-04 01:03 . 2008-06-18 03:03 938496 c:\windows\system32\dllcache\WMNetmgr.dll + 2004-09-10 15:43 . 2009-02-06 16:39 227840 c:\windows\system32\dllcache\wmiprvse.exe + 2004-09-10 15:43 . 2009-02-09 10:22 453120 c:\windows\system32\dllcache\wmiprvsd.dll + 2004-08-04 01:03 . 2009-04-29 04:49 827392 c:\windows\system32\dllcache\wininet.dll + 2004-08-04 01:03 . 2008-12-16 12:51 351232 c:\windows\system32\dllcache\winhttp.dll - 2004-08-04 01:03 . 2004-08-04 01:03 351232 c:\windows\system32\dllcache\winhttp.dll + 2007-04-10 12:01 . 2009-03-10 20:18 969608 c:\windows\system32\dllcache\WgaTray.exe + 2007-04-10 12:00 . 2009-03-10 20:18 265096 c:\windows\system32\dllcache\wgaLogon.dll + 2004-08-04 01:03 . 2009-04-29 04:49 233472 c:\windows\system32\dllcache\webcheck.dll - 2004-09-10 15:46 . 2007-08-13 17:54 765952 c:\windows\system32\dllcache\VGX.dll + 2004-09-10 15:46 . 2008-05-27 17:30 765952 c:\windows\system32\dllcache\vgx.dll - 2004-08-04 01:03 . 2007-08-13 17:44 105984 c:\windows\system32\dllcache\url.dll + 2004-08-04 01:03 . 2009-04-29 04:49 105984 c:\windows\system32\dllcache\url.dll + 2004-08-03 23:07 . 2008-06-20 09:52 225920 c:\windows\system32\dllcache\tcpip6.sys + 2004-08-03 23:14 . 2008-06-20 10:45 360320 c:\windows\system32\dllcache\tcpip.sys + 2004-08-04 01:03 . 2008-10-03 10:17 247326 c:\windows\system32\dllcache\strmdll.dll + 2004-08-03 23:14 . 2008-12-11 11:57 333184 c:\windows\system32\dllcache\srv.sys + 2004-08-04 01:03 . 2009-02-09 10:11 111104 c:\windows\system32\dllcache\services.exe - 2004-08-04 01:03 . 2007-04-25 14:22 144896 c:\windows\system32\dllcache\schannel.dll + 2004-08-04 01:03 . 2008-12-05 07:14 144896 c:\windows\system32\dllcache\schannel.dll + 2004-08-04 01:03 . 2009-02-09 10:22 399360 c:\windows\system32\dllcache\rpcss.dll + 2004-08-04 01:03 . 2009-04-15 15:18 584192 c:\windows\system32\dllcache\rpcrt4.dll - 2004-08-04 01:03 . 2007-07-09 13:11 584192 c:\windows\system32\dllcache\rpcrt4.dll + 2001-09-07 13:00 . 2008-05-08 12:28 202752 c:\windows\system32\dllcache\rmcast.sys - 2004-08-04 01:03 . 2004-08-04 01:03 285184 c:\windows\system32\dllcache\pdh.dll + 2004-08-04 01:03 . 2009-03-06 14:47 285184 c:\windows\system32\dllcache\pdh.dll + 2004-08-04 01:03 . 2009-04-29 04:49 102912 c:\windows\system32\dllcache\occache.dll + 2004-08-04 01:03 . 2009-02-09 10:22 735744 c:\windows\system32\dllcache\ntdll.dll + 2004-08-04 01:03 . 2008-10-15 17:01 332800 c:\windows\system32\dllcache\netapi32.dll + 2004-08-04 01:03 . 2008-06-20 17:43 247296 c:\windows\system32\dllcache\mswsock.dll - 2004-08-04 01:03 . 2004-08-04 01:03 247296 c:\windows\system32\dllcache\mswsock.dll + 2004-08-04 01:03 . 2009-04-29 04:49 671232 c:\windows\system32\dllcache\mstime.dll + 2004-08-04 01:03 . 2009-04-29 04:49 193024 c:\windows\system32\dllcache\msrating.dll + 2004-08-04 01:03 . 2009-04-29 04:49 477696 c:\windows\system32\dllcache\mshtmled.dll + 2009-04-29 04:49 . 2009-04-29 04:49 459264 c:\windows\system32\dllcache\msfeeds.dll + 2004-09-10 15:44 . 2008-06-12 14:19 161792 c:\windows\system32\dllcache\msdtcuiu.dll + 2004-09-10 15:43 . 2008-06-12 14:19 956928 c:\windows\system32\dllcache\msdtctm.dll + 2004-09-10 15:43 . 2008-06-12 14:19 428032 c:\windows\system32\dllcache\msdtcprx.dll + 2004-09-10 15:46 . 2008-05-01 14:33 331776 c:\windows\system32\dllcache\msadce.dll - 2004-09-10 15:46 . 2004-08-04 12:00 331776 c:\windows\system32\dllcache\msadce.dll + 2007-07-01 13:32 . 2008-10-24 11:10 453632 c:\windows\system32\dllcache\mrxsmb.sys + 2004-08-04 01:03 . 2009-02-09 10:22 728576 c:\windows\system32\dllcache\lsasrv.dll + 2004-08-04 01:03 . 2008-06-17 23:09 100864 c:\windows\system32\dllcache\logagent.exe - 2004-08-04 01:03 . 2006-10-18 18:03 100864 c:\windows\system32\dllcache\logagent.exe + 2004-08-04 01:03 . 2009-05-07 15:44 345600 c:\windows\system32\dllcache\localspl.dll - 2004-09-10 15:46 . 2007-08-21 06:18 683520 c:\windows\system32\dllcache\inetcomm.dll + 2004-09-10 15:46 . 2008-04-11 18:51 683520 c:\windows\system32\dllcache\inetcomm.dll + 2004-09-10 15:46 . 2009-04-25 05:27 636088 c:\windows\system32\dllcache\iexplore.exe + 2009-04-29 04:49 . 2009-04-29 04:49 268288 c:\windows\system32\dllcache\iertutil.dll + 2004-08-04 01:03 . 2009-04-29 04:49 385024 c:\windows\system32\dllcache\iedkcs32.dll + 2009-04-29 04:49 . 2009-04-29 04:49 383488 c:\windows\system32\dllcache\ieapfltr.dll - 2001-09-07 13:00 . 2007-08-13 16:56 161792 c:\windows\system32\dllcache\ieakui.dll + 2001-09-07 13:00 . 2009-04-25 05:26 161792 c:\windows\system32\dllcache\ieakui.dll + 2004-08-04 01:03 . 2009-04-29 04:49 230400 c:\windows\system32\dllcache\ieaksie.dll + 2004-08-04 01:03 . 2009-04-29 04:49 153088 c:\windows\system32\dllcache\ieakeng.dll + 2004-08-04 01:03 . 2008-10-23 13:02 283648 c:\windows\system32\dllcache\gdi32.dll + 2004-09-10 15:43 . 2009-02-09 10:22 473088 c:\windows\system32\dllcache\fastprox.dll + 2004-08-04 01:03 . 2009-04-29 04:49 133120 c:\windows\system32\dllcache\extmgr.dll + 2004-08-04 01:03 . 2008-07-07 20:32 253952 c:\windows\system32\dllcache\es.dll - 2004-08-04 01:03 . 2007-08-13 17:35 214528 c:\windows\system32\dllcache\dxtrans.dll + 2004-08-04 01:03 . 2009-04-29 04:49 214528 c:\windows\system32\dllcache\dxtrans.dll + 2004-08-04 01:03 . 2009-04-29 04:49 347136 c:\windows\system32\dllcache\dxtmsft.dll + 2004-08-04 01:03 . 2008-06-20 17:43 148992 c:\windows\system32\dllcache\dnsapi.dll - 2004-08-04 01:03 . 2008-02-20 05:39 148992 c:\windows\system32\dllcache\dnsapi.dll + 2007-10-29 14:25 . 2008-06-14 18:00 272640 c:\windows\system32\dllcache\bthport.sys + 2004-08-03 23:14 . 2008-08-14 09:51 138368 c:\windows\system32\dllcache\afd.sys + 2004-08-04 01:03 . 2009-04-29 04:49 124928 c:\windows\system32\dllcache\advpack.dll - 2004-08-04 01:03 . 2004-08-04 01:03 684032 c:\windows\system32\dllcache\advapi32.dll + 2004-08-04 01:03 . 2009-02-09 10:22 684032 c:\windows\system32\dllcache\advapi32.dll + 2004-08-04 01:03 . 2009-04-29 04:49 124928 c:\windows\system32\advpack.dll - 2004-08-04 01:03 . 2004-08-04 01:03 684032 c:\windows\system32\advapi32.dll + 2004-08-04 01:03 . 2009-02-09 10:22 684032 c:\windows\system32\advapi32.dll + 2009-07-05 22:18 . 2009-07-05 22:18 177664 c:\windows\Installer\ba5d4b.msi + 2009-07-05 22:09 . 2009-07-05 22:09 432640 c:\windows\Installer\ba5d10.msi + 2008-10-04 10:49 . 2009-07-05 22:13 888080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe - 2008-10-04 10:49 . 2008-10-04 10:49 888080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\wordicon.exe - 2008-10-04 10:49 . 2008-10-04 10:49 272648 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe + 2008-10-04 10:49 . 2009-07-05 22:13 272648 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pubs.exe + 2008-10-04 10:49 . 2009-07-05 22:13 922384 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe - 2008-10-04 10:49 . 2008-10-04 10:49 922384 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\pptico.exe + 2008-10-04 10:49 . 2009-07-05 22:13 845584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe - 2008-10-04 10:49 . 2008-10-04 10:49 845584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\outicon.exe - 2008-10-04 10:49 . 2008-10-04 10:49 217864 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe + 2008-10-04 10:49 . 2009-07-05 22:13 217864 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\misc.exe + 2008-10-04 10:49 . 2009-07-05 22:13 184080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe - 2008-10-04 10:49 . 2008-10-04 10:49 184080 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\joticon.exe - 2008-10-04 10:49 . 2008-10-04 10:49 159504 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe + 2008-10-04 10:49 . 2009-07-05 22:13 159504 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\inficon.exe + 2009-07-05 22:10 . 2007-08-13 17:54 818688 c:\windows\ie7updates\KB969897-IE7\wininet.dll + 2009-07-05 22:10 . 2007-08-13 17:54 231424 c:\windows\ie7updates\KB969897-IE7\webcheck.dll + 2009-07-05 22:10 . 2007-08-13 17:44 105984 c:\windows\ie7updates\KB969897-IE7\url.dll + 2009-07-05 22:10 . 2008-07-09 07:44 401272 c:\windows\ie7updates\KB969897-IE7\spuninst\updspapi.dll + 2009-07-05 22:10 . 2008-07-09 07:44 234872 c:\windows\ie7updates\KB969897-IE7\spuninst\spuninst.exe + 2009-07-05 22:10 . 2007-08-13 17:44 101376 c:\windows\ie7updates\KB969897-IE7\occache.dll + 2009-07-05 22:10 . 2007-08-13 17:54 670720 c:\windows\ie7updates\KB969897-IE7\mstime.dll + 2009-07-05 22:10 . 2007-08-13 17:44 192000 c:\windows\ie7updates\KB969897-IE7\msrating.dll + 2009-07-05 22:10 . 2007-08-13 17:54 475648 c:\windows\ie7updates\KB969897-IE7\mshtmled.dll + 2009-07-05 22:10 . 2007-08-13 17:54 458752 c:\windows\ie7updates\KB969897-IE7\msfeeds.dll + 2009-07-05 22:10 . 2007-08-13 17:43 622080 c:\windows\ie7updates\KB969897-IE7\iexplore.exe + 2009-07-05 22:10 . 2007-08-13 17:34 266752 c:\windows\ie7updates\KB969897-IE7\iertutil.dll + 2009-07-05 22:10 . 2007-08-13 17:39 382976 c:\windows\ie7updates\KB969897-IE7\iedkcs32.dll + 2009-07-05 22:10 . 2007-07-11 11:27 383488 c:\windows\ie7updates\KB969897-IE7\ieapfltr.dll + 2009-07-05 22:10 . 2007-08-13 16:56 161792 c:\windows\ie7updates\KB969897-IE7\ieakui.dll + 2009-07-05 22:10 . 2007-08-13 17:39 229376 c:\windows\ie7updates\KB969897-IE7\ieaksie.dll + 2009-07-05 22:10 . 2007-08-13 17:39 152064 c:\windows\ie7updates\KB969897-IE7\ieakeng.dll + 2009-07-05 22:10 . 2007-08-13 17:54 131584 c:\windows\ie7updates\KB969897-IE7\extmgr.dll + 2009-07-05 22:10 . 2007-08-13 17:35 214528 c:\windows\ie7updates\KB969897-IE7\dxtrans.dll + 2009-07-05 22:10 . 2007-08-13 17:35 346624 c:\windows\ie7updates\KB969897-IE7\dxtmsft.dll + 2009-07-05 22:10 . 2007-08-13 17:39 123904 c:\windows\ie7updates\KB969897-IE7\advpack.dll + 2009-07-05 22:15 . 2007-08-13 17:54 765952 c:\windows\ie7updates\KB938127-v2-IE7\vgx.dll + 2009-07-05 22:15 . 2007-03-06 01:59 389856 c:\windows\ie7updates\KB938127-v2-IE7\spuninst\updspapi.dll + 2009-07-05 22:15 . 2007-03-06 01:58 216800 c:\windows\ie7updates\KB938127-v2-IE7\spuninst\spuninst.exe + 2007-07-01 13:32 . 2008-10-24 11:10 453632 c:\windows\Driver Cache\i386\mrxsmb.sys + 2009-07-05 08:45 . 2008-06-14 18:00 272640 c:\windows\Driver Cache\i386\bthport.sys + 2009-07-05 08:44 . 2008-04-15 18:01 1724416 c:\windows\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.3352_x-ww_81af8e88\GdiPlus.dll + 2008-09-30 14:42 . 2008-09-30 14:42 1286152 c:\windows\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9870.0_x-ww_a32d74cf\msxml4.dll + 2004-09-10 15:46 . 2008-10-16 12:13 1809944 c:\windows\system32\wuaueng.dll + 2004-08-04 01:03 . 2008-06-18 03:03 2458112 c:\windows\system32\WMVCore.dll + 2004-08-04 01:03 . 2009-04-29 04:49 1159680 c:\windows\system32\urlmon.dll - 2004-08-04 01:03 . 2007-10-25 16:57 8501760 c:\windows\system32\shell32.dll + 2004-08-04 01:03 . 2008-07-03 13:16 8501760 c:\windows\system32\shell32.dll + 2004-08-04 01:03 . 2008-12-20 22:44 1291776 c:\windows\system32\quartz.dll - 2004-08-04 01:03 . 2007-10-29 22:45 1291776 c:\windows\system32\quartz.dll - 2004-08-04 00:58 . 2007-02-28 16:05 2140672 c:\windows\system32\ntoskrnl.exe + 2004-08-04 00:58 . 2009-02-09 11:53 2140672 c:\windows\system32\ntoskrnl.exe + 2004-08-04 00:58 . 2009-02-09 11:53 2020352 c:\windows\system32\ntkrnlpa.exe - 2004-08-04 00:58 . 2007-02-28 16:05 2020352 c:\windows\system32\ntkrnlpa.exe + 2008-09-30 14:43 . 2008-09-30 14:43 1286152 c:\windows\system32\msxml4.dll + 2004-08-04 01:03 . 2008-09-04 16:46 1106944 c:\windows\system32\msxml3.dll + 2004-08-04 01:03 . 2009-04-29 04:49 3596288 c:\windows\system32\mshtml.dll + 2007-04-10 12:02 . 2009-03-10 20:18 1482112 c:\windows\system32\LegitCheckControl.dll + 2004-08-04 01:03 . 2009-03-21 14:21 1027072 c:\windows\system32\kernel32.dll + 2006-11-07 20:03 . 2009-04-29 04:49 6066176 c:\windows\system32\ieframe.dll + 2006-09-05 22:01 . 2008-07-09 14:25 2455488 c:\windows\system32\ieapfltr.dat + 2004-09-10 15:46 . 2008-10-16 12:13 1809944 c:\windows\system32\dllcache\wuaueng.dll + 2004-08-04 01:03 . 2008-06-18 03:03 2458112 c:\windows\system32\dllcache\WMVCore.dll + 2004-08-04 00:56 . 2009-04-19 20:12 1846784 c:\windows\system32\dllcache\win32k.sys + 2004-08-04 01:03 . 2009-04-29 04:49 1159680 c:\windows\system32\dllcache\urlmon.dll - 2004-08-04 01:03 . 2007-10-25 16:57 8501760 c:\windows\system32\dllcache\shell32.dll + 2004-08-04 01:03 . 2008-07-03 13:16 8501760 c:\windows\system32\dllcache\shell32.dll - 2004-08-04 01:03 . 2007-10-29 22:45 1291776 c:\windows\system32\dllcache\quartz.dll + 2004-08-04 01:03 . 2008-12-20 22:44 1291776 c:\windows\system32\dllcache\quartz.dll + 2007-02-28 16:05 . 2009-02-09 11:53 2184832 c:\windows\system32\dllcache\ntoskrnl.exe - 2007-02-28 16:05 . 2007-02-28 16:05 2020352 c:\windows\system32\dllcache\ntkrpamp.exe + 2007-02-28 16:05 . 2009-02-09 11:53 2020352 c:\windows\system32\dllcache\ntkrpamp.exe + 2007-02-28 16:05 . 2009-02-09 11:53 2062080 c:\windows\system32\dllcache\ntkrnlpa.exe - 2007-02-28 16:05 . 2007-02-28 16:05 2140672 c:\windows\system32\dllcache\ntkrnlmp.exe + 2007-02-28 16:05 . 2009-02-09 11:53 2140672 c:\windows\system32\dllcache\ntkrnlmp.exe + 2004-08-04 01:03 . 2008-09-04 16:46 1106944 c:\windows\system32\dllcache\msxml3.dll + 2004-08-04 01:03 . 2009-04-29 04:49 3596288 c:\windows\system32\dllcache\mshtml.dll + 2004-08-04 01:03 . 2009-03-21 14:21 1027072 c:\windows\system32\dllcache\kernel32.dll + 2009-04-29 04:49 . 2009-04-29 04:49 6066176 c:\windows\system32\dllcache\ieframe.dll + 2008-07-09 14:25 . 2008-07-09 14:25 2455488 c:\windows\system32\dllcache\ieapfltr.dat + 2009-02-25 17:08 . 2009-02-25 17:08 8311808 c:\windows\Installer\ba5d3a.msp + 2009-05-07 07:17 . 2009-05-07 07:17 5026816 c:\windows\Installer\ba5d25.msp + 2008-10-04 10:49 . 2009-07-05 22:13 1172240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe - 2008-10-04 10:49 . 2008-10-04 10:49 1172240 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\xlicons.exe - 2008-10-04 10:49 . 2008-10-04 10:49 1165584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\accicons.exe + 2008-10-04 10:49 . 2009-07-05 22:13 1165584 c:\windows\Installer\{90120000-0030-0000-0000-0000000FF1CE}\accicons.exe + 2006-09-15 14:25 . 2006-09-15 14:25 3611416 c:\windows\Installer\$PatchCache$\Managed\00002109030000000000000000F01FEC\12.0.4518\OUTLFLTR.DAT + 2009-07-05 22:10 . 2007-08-13 17:54 1162240 c:\windows\ie7updates\KB969897-IE7\urlmon.dll + 2009-07-05 22:10 . 2007-08-13 17:54 3578368 c:\windows\ie7updates\KB969897-IE7\mshtml.dll + 2009-07-05 22:10 . 2007-08-13 17:54 6049280 c:\windows\ie7updates\KB969897-IE7\ieframe.dll + 2009-07-05 22:10 . 2007-02-12 15:10 2451312 c:\windows\ie7updates\KB969897-IE7\ieapfltr.dat + 2005-03-02 18:09 . 2009-02-09 11:53 2184832 c:\windows\Driver Cache\i386\ntoskrnl.exe + 2005-03-02 18:09 . 2009-02-09 11:53 2020352 c:\windows\Driver Cache\i386\ntkrpamp.exe - 2005-03-02 18:09 . 2007-02-28 16:05 2020352 c:\windows\Driver Cache\i386\ntkrpamp.exe + 2005-03-02 18:09 . 2009-02-09 11:53 2062080 c:\windows\Driver Cache\i386\ntkrnlpa.exe - 2005-03-02 18:09 . 2007-02-28 16:05 2140672 c:\windows\Driver Cache\i386\ntkrnlmp.exe + 2005-03-02 18:09 . 2009-02-09 11:53 2140672 c:\windows\Driver Cache\i386\ntkrnlmp.exe + 2004-08-04 01:03 . 2008-11-11 16:34 10838016 c:\windows\system32\wmp.dll + 2004-08-04 01:03 . 2008-11-11 16:34 10838016 c:\windows\system32\dllcache\wmp.dll . -- Snapshot teruggezet naar huidige datum -- . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}] 2009-06-14 14:07 1004800 ----a-w- c:\program files\AVG\AVG8\Toolbar\IEToolbar.dll [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2004-08-04 15360] "CTSyncU.exe"="c:\program files\Creative\Sync Manager Unicode\CTSyncU.exe" [2006-06-12 700416] "MsnMsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2009-02-06 3885408] "Skype"="c:\program files\Skype\Phone\Skype.exe" [2009-05-26 24264488] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2004-08-04 208952] "PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-03 455168] "PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-03 455168] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2006-06-16 794713] "DetectorApp"="c:\program files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe" [2005-10-20 102400] "ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2005-02-16 81920] "MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-03 59392] "igfxtray"="c:\windows\system32\igfxtray.exe" [2006-03-23 94208] "igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2006-03-23 77824] "igfxpers"="c:\windows\system32\igfxpers.exe" [2006-03-23 118784] "LogMeIn GUI"="c:\program files\LogMeIn\x86\LogMeInSystray.exe" [2008-02-28 63048] "Adobe Photo Downloader"="c:\program files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" [2005-06-06 57344] "ISUSPM Startup"="c:\progra~1\common~1\instal~1\update~1\isuspm.exe" [2004-07-27 221184] "AVG8_TRAY"="c:\progra~1\AVG\AVG8\avgtray.exe" [2009-06-12 1948440] "SSBkgdUpdate"="c:\program files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2006-10-25 210472] "OpwareSE4"="c:\program files\ScanSoft\OmniPageSE4\OpwareSE4.exe" [2007-02-04 79400] "GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016] "EverioService"="c:\program files\CyberLink\PCM4Everio\EverioService.exe" [2007-11-01 151552] "fssui"="c:\program files\Windows Live\Family Safety\fsui.exe" [2009-02-06 454000] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-05-09 136600] "BluetoothAuthenticationAgent"="bthprops.cpl" - c:\windows\system32\bthprops.cpl [2004-08-04 110592] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-04 15360] c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\ Adobe Reader Snelle start.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2008-4-23 29696] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter] 2009-05-02 09:05 11952 ----a-w- c:\windows\system32\avgrsstx.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit] 2008-05-28 10:32 87352 ----a-w- c:\windows\system32\LMIinit.dll [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= "c:\\Program Files\\LimeWire\\LimeWire.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [24/08/2008 17:34 327688] R2 avg8wd;AVG Free8 WatchDog;c:\progra~1\AVG\AVG8\avgwdsvc.exe [24/08/2008 17:33 298776] R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [11/02/2009 20:55 55136] R2 fsssvc;Windows Live Family Safety;c:\program files\Windows Live\Family Safety\fsssvc.exe [6/02/2009 19:08 533360] R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\LogMeIn\x86\rainfo.sys [28/02/2008 15:31 12856] R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [2/06/2008 22:59 45848] S2 IcRecUsb;IC Recorder Driver;c:\windows\system32\drivers\IcRecUsb.sys [16/04/2009 22:21 17432] S2 spupdsvc;Windows Service Pack Installer update service;c:\windows\system32\spupdsvc.exe [27/09/2006 12:08 26488] S3 K320bus;Sony Ericsson K320 driver (WDM);c:\windows\system32\drivers\K320bus.sys [23/10/2007 16:22 61504] S3 K320mdfl;Sony Ericsson K320 USB WMC Modem Filter;c:\windows\system32\drivers\K320mdfl.sys [23/10/2007 16:22 9328] S3 K320mdm;Sony Ericsson K320 USB WMC Modem Driver;c:\windows\system32\drivers\K320mdm.sys [23/10/2007 16:22 97056] S3 K320mgmt;Sony Ericsson K320 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\K320mgmt.sys [23/10/2007 16:44 88560] S3 K320obex;Sony Ericsson K320 USB WMC OBEX Interface;c:\windows\system32\drivers\K320obex.sys [23/10/2007 16:22 86368] S4 LMIRfsClientNP;LMIRfsClientNP; [x] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/ uInternet Connection Wizard,ShellNext = hxxp://nl.packardbell.be/ uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 DPF: {AE2B937E-EA7D-4A8D-888C-B68D7F72A3C4} - hxxp://as.photoprintit.de/ips-opdata/74914090/activex/IPSUploader4.cab DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - hxxp://game10.zylom.com/activex/zylomgamesplayer.cab . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2009-07-06 13:30 Windows 5.1.2600 Service Pack 2 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** "ImagePath"="\"c:\apps\Powercinema\Kernel\TV\CLCapSvc.exe\"\00\00\00\00\02\00\00\000 [%\00«Ô‘|\00\00\00\00\00\00\00\00\00\00\00\00(\00\00\00\00\00\"\03pè\13\00pè\13\00\18î" . --------------------- DLLs Geladen Onder Lopende Processen --------------------- - - - - - - - > 'winlogon.exe'(740) c:\windows\system32\LMIinit.dll . Voltooingstijd: 2009-07-06 13:32 ComboFix-quarantined-files.txt 2009-07-06 11:32 ComboFix2.txt 2009-07-04 18:19 ComboFix3.txt 2008-06-02 22:44 Pre-Run: 60.345.856.000 bytes beschikbaar Post-Run: 60.367.364.096 bytes beschikbaar 561 --- E O F --- 2009-07-05 22:19 Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 13:35:47, on 6/07/2009 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16850) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe C:\WINDOWS\system32\CTsvcCDA.exe c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLServer.exe C:\Program Files\Windows Live\Family Safety\fsssvc.exe C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE C:\Program Files\Java\jre6\bin\jqs.exe C:\PROGRA~1\AVG\AVG8\avgrsx.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\Program Files\LogMeIn\x86\LogMeInSystray.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\Program Files\LogMeIn\x86\LMIGuardian.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe c:\APPS\Powercinema\Kernel\TV\CLSched.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\CyberLink\PCM4Everio\EverioService.exe C:\Program Files\Windows Live\Family Safety\fsui.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe C:\Program Files\Skype\Phone\Skype.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Skype\Plugin Manager\SkypePM.exe C:\WINDOWS\system32\notepad.exe C:\WINDOWS\explorer.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = Packard Bell - Computers and Home Entertainment - on packardbell.com find out about our desktops, pcs, laptops, notebooks, plus digital Video, MP3 Players, Data Storage, GPS, Accessories R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll O4 - HKLM\..\Run: [iMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [DetectorApp] C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe" O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" O4 - HKLM\..\Run: [iSUSPM Startup] c:\progra~1\common~1\instal~1\update~1\isuspm.exe -startup O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe O4 - HKLM\..\Run: [sSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe" O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [EverioService] "C:\Program Files\CyberLink\PCM4Everio\EverioService.exe" O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [CTSyncU.exe] "C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe" O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Adobe Reader Snelle start.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=58813 O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://phe1986.spaces.live.com//PhotoUpload/MsnPUpld.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/NL-BE/a-UNO1/GAME_UNO1.cab O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://phe1986.spaces.live.com/PhotoUpload/MsnPUpld.cab O16 - DPF: {AE2B937E-EA7D-4A8D-888C-B68D7F72A3C4} (IPSUploader4 Control) - http://as.photoprintit.de/ips-opdata/74914090/activex/IPSUploader4.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game10.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe O23 - Service: CyberLink Media Library Service - Cyberlink - c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLServer.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: McAfee Framework Service (McAfeeFramework) - Unknown owner - C:\Program Files\McAfee\Common Framework\FrameworkService.exe (file missing) O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe O23 - Service: USBDeviceService - Unknown owner - C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe -- End of file - 11531 bytes Eén melding van Mcafee is niet te verwijderen blijkbaar.
  18. jv9090
    Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 12:25:02, on 6/07/2009 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16850) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe C:\WINDOWS\system32\CTsvcCDA.exe c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLServer.exe C:\Program Files\Windows Live\Family Safety\fsssvc.exe C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE C:\PROGRA~1\AVG\AVG8\avgrsx.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\McAfee\Common Framework\FrameworkService.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe c:\APPS\Powercinema\Kernel\TV\CLSched.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\Program Files\McAfee\Common Framework\UdaterUI.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\LogMeIn\x86\LogMeInSystray.exe C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe C:\PROGRA~1\AVG\AVG8\avgtray.exe C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\CyberLink\PCM4Everio\EverioService.exe C:\Program Files\Windows Live\Family Safety\fsui.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\McAfee\Common Framework\McTray.exe C:\Program Files\LogMeIn\x86\LMIGuardian.exe C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Program Files\Skype\Phone\Skype.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Skype\Plugin Manager\SkypePM.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = Packard Bell - Computers and Home Entertainment - on packardbell.com find out about our desktops, pcs, laptops, notebooks, plus digital Video, MP3 Players, Data Storage, GPS, Accessories R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll O4 - HKLM\..\Run: [iMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [DetectorApp] C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\McAfee\Common Framework\UdaterUI.exe" /StartedFromRunKey O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe" O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" O4 - HKLM\..\Run: [iSUSPM Startup] c:\progra~1\common~1\instal~1\update~1\isuspm.exe -startup O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe O4 - HKLM\..\Run: [sSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe" O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [EverioService] "C:\Program Files\CyberLink\PCM4Everio\EverioService.exe" O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [CTSyncU.exe] "C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe" O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Adobe Reader Snelle start.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=58813 O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://phe1986.spaces.live.com//PhotoUpload/MsnPUpld.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/NL-BE/a-UNO1/GAME_UNO1.cab O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://phe1986.spaces.live.com/PhotoUpload/MsnPUpld.cab O16 - DPF: {AE2B937E-EA7D-4A8D-888C-B68D7F72A3C4} (IPSUploader4 Control) - http://as.photoprintit.de/ips-opdata/74914090/activex/IPSUploader4.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game10.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe O23 - Service: CyberLink Media Library Service - Cyberlink - c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLServer.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: McAfee Framework Service (McAfeeFramework) - McAfee, Inc. - C:\Program Files\McAfee\Common Framework\FrameworkService.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe O23 - Service: USBDeviceService - Unknown owner - C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe -- End of file - 12032 bytes
  19. jv9090
    Enkel AVG wordt nu gebruikt op deze pc. Dus die norton mag er zeker ook af. Het opstarten gaat nu sneller. Het enige probleem is, dat ik hier vooral programma's terug vind, die niet meer bij Software(Configuratiescherm) staan. Ook staat er in Internet explorer een toolbaar van AVG/yahoo, maar daar vind ik ook nergens een uninstaller van. Ik heb het voorgaande gedaan en een scan gedaan met Hijackthis en er staat nog steeds een melding van mcafeeupdater en framework tussen. Jürgen
  20. jv9090
    Norton heb ik ook nog ergens terug gevonden, maar het gaat volgens mij enkel om een niet verwijderde snelkoppeling. ComboFix 09-07-04.01 - MM 04/07/2009 20:11.2 - NTFSx86 Microsoft Windows XP Professional 5.1.2600.2.1252.32.1043.18.1014.549 [GMT 2:00] Gestart vanuit: c:\documents and settings\MM\Bureaublad\ComboFix.exe AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF} FW: Norton Internet Worm Protection *disabled* {990F9400-4CEE-43EA-A83A-D013ADD8EA6E} * Nieuw herstelpunt werd aangemaakt . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\windows\Installer\WMEncoder.msi c:\windows\system\oeminfo.ini c:\windows\system32\nsprs.dll c:\windows\system32\ssprs.dll . (((((((((((((((((((( Bestanden Gemaakt van 2009-06-04 to 2009-07-04 )))))))))))))))))))))))))))))) . 2009-07-04 08:14 . 2009-07-04 08:14 -------- d-----w- c:\program files\VS Revo Group 2009-07-03 08:18 . 2009-07-03 08:18 -------- d-----w- c:\documents and settings\MM\Application Data\Malwarebytes 2009-07-03 08:18 . 2009-06-17 09:27 38160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-07-03 08:18 . 2009-07-03 08:18 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2009-07-03 08:18 . 2009-07-03 08:18 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-07-03 08:18 . 2009-06-17 09:27 19096 ----a-w- c:\windows\system32\drivers\mbam.sys 2009-07-02 18:25 . 2009-07-02 18:25 -------- d-----w- c:\program files\Trend Micro 2009-06-30 10:26 . 2009-06-30 10:26 -------- d-----w- c:\program files\Common Files\Skype 2009-06-27 10:05 . 2009-06-18 10:30 2052888 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\avgcorex.dll 2009-06-18 10:31 . 2009-06-12 09:51 1261344 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\avgwd.dll 2009-06-18 10:31 . 2009-06-12 09:51 829208 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\avgcfgx.dll 2009-06-18 10:31 . 2009-06-12 09:51 3298072 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\setup.exe 2009-06-13 11:44 . 2009-06-02 11:37 1004800 ----a-w- c:\documents and settings\All Users\Application Data\AVG Security Toolbar\IEToolbar.dll 2009-06-12 09:53 . 2009-06-13 11:44 -------- d-----w- c:\documents and settings\All Users\Application Data\AVG Security Toolbar 2009-06-12 09:53 . 2009-06-12 09:53 -------- d-----w- c:\documents and settings\LocalService\Menu Start 2009-06-12 09:53 . 2009-06-12 09:53 -------- d-----w- c:\documents and settings\LocalService\Application Data\AVGTOOLBAR 2009-06-12 09:51 . 2009-06-12 09:51 1452312 ----a-w- c:\documents and settings\All Users\Application Data\avg8\update\backup\avgupd.dll 2009-06-06 14:43 . 2009-06-06 14:43 -------- d-----w- c:\program files\uTorrent 2009-06-06 14:43 . 2009-06-29 20:56 -------- d-----w- c:\documents and settings\MM\Application Data\uTorrent . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-07-04 18:04 . 2006-11-27 11:21 -------- d-----w- c:\documents and settings\MM\Application Data\Skype 2009-07-04 17:20 . 2008-11-30 12:49 -------- d-----w- c:\documents and settings\MM\Application Data\skypePM 2009-06-30 10:26 . 2007-01-27 09:20 -------- d-----r- c:\program files\Skype 2009-06-30 10:26 . 2006-11-27 11:21 -------- d-----w- c:\documents and settings\All Users\Application Data\Skype 2009-06-29 18:00 . 2007-02-11 19:52 -------- d-----w- c:\documents and settings\MM\Application Data\LimeWire 2009-06-27 19:21 . 2007-02-11 19:52 -------- d-----w- c:\program files\LimeWire 2009-06-18 10:30 . 2008-08-24 15:34 27784 ----a-w- c:\windows\system32\drivers\avgmfx86.sys 2009-06-12 10:22 . 2008-09-14 21:27 -------- d-----w- c:\documents and settings\All Users\Application Data\CanonIJPLM 2009-06-12 09:52 . 2008-08-24 15:34 327688 ----a-w- c:\windows\system32\drivers\avgldx86.sys 2009-05-28 17:58 . 2007-07-01 13:36 -------- d-----w- c:\program files\Kruidvat - Fotoservice 2009-05-10 09:13 . 2008-05-12 20:25 -------- d-----w- c:\program files\Picasa2 2009-05-09 14:09 . 2009-05-09 14:09 410984 ----a-w- c:\windows\system32\deploytk.dll 2009-05-09 14:09 . 2006-11-27 18:37 -------- d-----w- c:\program files\Java 2009-05-09 14:09 . 2009-05-09 14:09 152576 ----a-w- c:\documents and settings\MM\Application Data\Sun\Java\jre1.6.0_11\lzma.dll 2009-05-02 09:05 . 2008-08-24 15:34 11952 ----a-w- c:\windows\system32\avgrsstx.dll 2009-05-01 21:48 . 2004-09-10 15:24 85906 ----a-w- c:\windows\system32\perfc013.dat 2009-05-01 21:48 . 2004-09-10 15:24 477260 ----a-w- c:\windows\system32\perfh013.dat 2009-05-01 18:30 . 2009-05-01 18:30 3366912 ----a-w- c:\windows\system32\GPhotos.scr . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}] 2009-06-14 14:07 1004800 ----a-w- c:\program files\AVG\AVG8\Toolbar\IEToolbar.dll [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2004-08-04 15360] "CTSyncU.exe"="c:\program files\Creative\Sync Manager Unicode\CTSyncU.exe" [2006-06-12 700416] "MsnMsgr"="c:\program files\Windows Live\Messenger\MsnMsgr.Exe" [2009-02-06 3885408] "Skype"="c:\program files\Skype\Phone\Skype.exe" [2009-05-26 24264488] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2004-08-04 208952] "PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-03 455168] "PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-03 455168] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2006-06-16 794713] "DetectorApp"="c:\program files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe" [2005-10-20 102400] "ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2005-02-16 81920] "MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-03 59392] "igfxtray"="c:\windows\system32\igfxtray.exe" [2006-03-23 94208] "igfxhkcmd"="c:\windows\system32\hkcmd.exe" [2006-03-23 77824] "igfxpers"="c:\windows\system32\igfxpers.exe" [2006-03-23 118784] "McAfeeUpdaterUI"="c:\program files\McAfee\Common Framework\UdaterUI.exe" [2006-11-17 136768] "LogMeIn GUI"="c:\program files\LogMeIn\x86\LogMeInSystray.exe" [2008-02-28 63048] "Adobe Photo Downloader"="c:\program files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" [2005-06-06 57344] "ISUSPM Startup"="c:\progra~1\common~1\instal~1\update~1\isuspm.exe" [2004-07-27 221184] "AVG8_TRAY"="c:\progra~1\AVG\AVG8\avgtray.exe" [2009-06-12 1948440] "SSBkgdUpdate"="c:\program files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" [2006-10-25 210472] "OpwareSE4"="c:\program files\ScanSoft\OmniPageSE4\OpwareSE4.exe" [2007-02-04 79400] "GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2006-10-26 31016] "EverioService"="c:\program files\CyberLink\PCM4Everio\EverioService.exe" [2007-11-01 151552] "fssui"="c:\program files\Windows Live\Family Safety\fsui.exe" [2009-02-06 454000] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-05-09 136600] "BluetoothAuthenticationAgent"="bthprops.cpl" - c:\windows\system32\bthprops.cpl [2004-08-04 110592] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-04 15360] c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\ Adobe Reader Snelle start.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2008-4-23 29696] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter] 2009-05-02 09:05 11952 ----a-w- c:\windows\system32\avgrsstx.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit] 2008-05-28 10:32 87352 ----a-w- c:\windows\system32\LMIinit.dll [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= "c:\\Program Files\\LimeWire\\LimeWire.exe"= "c:\\Program Files\\McAfee\\Common Framework\\FrameworkService.exe"= "c:\\Program Files\\Skype\\Phone\\Skype.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [24/08/2008 17:34 327688] R2 avg8wd;AVG Free8 WatchDog;c:\progra~1\AVG\AVG8\avgwdsvc.exe [24/08/2008 17:33 298776] R2 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr_tdi.sys [11/02/2009 20:55 55136] R2 fsssvc;Windows Live Family Safety;c:\program files\Windows Live\Family Safety\fsssvc.exe [6/02/2009 19:08 533360] R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\LogMeIn\x86\rainfo.sys [28/02/2008 15:31 12856] R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [2/06/2008 22:59 45848] S2 IcRecUsb;IC Recorder Driver;c:\windows\system32\drivers\IcRecUsb.sys [16/04/2009 22:21 17432] S3 K320bus;Sony Ericsson K320 driver (WDM);c:\windows\system32\drivers\K320bus.sys [23/10/2007 16:22 61504] S3 K320mdfl;Sony Ericsson K320 USB WMC Modem Filter;c:\windows\system32\drivers\K320mdfl.sys [23/10/2007 16:22 9328] S3 K320mdm;Sony Ericsson K320 USB WMC Modem Driver;c:\windows\system32\drivers\K320mdm.sys [23/10/2007 16:22 97056] S3 K320mgmt;Sony Ericsson K320 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\K320mgmt.sys [23/10/2007 16:44 88560] S3 K320obex;Sony Ericsson K320 USB WMC OBEX Interface;c:\windows\system32\drivers\K320obex.sys [23/10/2007 16:22 86368] S4 LMIRfsClientNP;LMIRfsClientNP; [x] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/ uInternet Connection Wizard,ShellNext = hxxp://nl.packardbell.be/ uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 DPF: {AE2B937E-EA7D-4A8D-888C-B68D7F72A3C4} - hxxp://as.photoprintit.de/ips-opdata/74914090/activex/IPSUploader4.cab DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} - hxxp://game10.zylom.com/activex/zylomgamesplayer.cab . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2009-07-04 20:17 Windows 5.1.2600 Service Pack 2 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** "ImagePath"="\"c:\apps\Powercinema\Kernel\TV\CLCapSvc.exe\"\00\00\00\00\02\00\00\000 [%\00«Ô|\00\00\00\00\00\00\00\00\00\00\00\00(\00\00\00\00\00\"\03pè\13\00pè\13\00\18î" . --------------------- DLLs Geladen Onder Lopende Processen --------------------- - - - - - - - > 'winlogon.exe'(740) c:\windows\system32\LMIinit.dll . Voltooingstijd: 2009-07-04 20:19 ComboFix-quarantined-files.txt 2009-07-04 18:19 ComboFix2.txt 2008-06-02 22:44 Pre-Run: 60.963.635.200 bytes beschikbaar Post-Run: 61.758.054.400 bytes beschikbaar 157 --- E O F --- 2008-06-03 21:29
  21. jv9090
    De Hijackthislog zou nu in orde moeten zijn en Malwarebytes heeft wat verwijderd. De pc blijft wel traag opstarten. Malwarebytes' Anti-Malware 1.38 Database versie: 2366 Windows 5.1.2600 Service Pack 2 4/07/2009 9:53:50 mbam-log-2009-07-04 (09-53-50).txt Scan type: Snelle Scan Objecten gescand: 105159 Verstreken tijd: 14 minute(s), 30 second(s) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 0 Registerwaarden geïnfecteerd: 1 Registerdata bestanden geïnfecteerd: 1 Mappen geïnfecteerd: 4 Bestanden geïnfecteerd: 47 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige items gevonden) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige items gevonden) Registersleutels geïnfecteerd: (Geen kwaadaardige items gevonden) Registerwaarden geïnfecteerd: HKEY_CURRENT_USER\SOFTWARE\Microsoft\OLE\Nod32 Runtime (Backdoor.Rbot) -> Quarantined and deleted successfully. Registerdata bestanden geïnfecteerd: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\AntiVirusDisableNotify (Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully. Mappen geïnfecteerd: C:\Program Files\dynamic toolbar (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\Cache (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2 (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache (Adware.2020search) -> Quarantined and deleted successfully. Bestanden geïnfecteerd: c:\program files\dynamic toolbar\batch.bat (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\unins000.dat (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\unins000.exe (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\Cache\go.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\Cache\home.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\Cache\logo_pb.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\Cache\parent_off.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\Cache\parent_on.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\Cache\pbbenlv2tb0200.cfg (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\Cache\popup_off.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\Cache\popup_on.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\Cache\search.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\Cache\services.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\Cache\skin.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\Cache\skin1.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\Cache\skin2.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\Cache\skin3.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\Cache\skin4.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\Cache\skin5.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\Cache\store.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\Cache\style.css (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\Cache\support.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\Cache\ticker.xml (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache\ErrorLog.txt (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache\go.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache\home.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache\logo_pb.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache\parent_off.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache\parent_on.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache\PBBENLV2TB0200.cfg (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache\popup_off.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache\popup_on.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache\search.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache\services.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache\skin.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache\skin1.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache\skin2.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache\skin3.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache\skin4.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache\skin5.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache\store.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache\style.css (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache\support.bmp (Adware.2020search) -> Quarantined and deleted successfully. c:\program files\dynamic toolbar\PBBENLV2\Cache\ticker.xml (Adware.2020search) -> Quarantined and deleted successfully. C:\WINDOWS\system32\serauth1.dll (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\serauth2.dll (Trojan.Agent) -> Quarantined and deleted successfully. c:\WINDOWS\images.zip (Backdoor.Bot) -> Quarantined and deleted successfully. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10:07:17, on 4/07/2009 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0013) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe C:\WINDOWS\system32\CTsvcCDA.exe c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLServer.exe C:\Program Files\Windows Live\Family Safety\fsssvc.exe C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\McAfee\Common Framework\FrameworkService.exe C:\PROGRA~1\AVG\AVG8\avgrsx.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe c:\APPS\Powercinema\Kernel\TV\CLSched.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\Program Files\McAfee\Common Framework\UdaterUI.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\LogMeIn\x86\LogMeInSystray.exe C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe C:\Program Files\McAfee\Common Framework\McTray.exe C:\Program Files\LogMeIn\x86\LMIGuardian.exe C:\PROGRA~1\AVG\AVG8\avgtray.exe C:\Program Files\Canon\MyPrinter\BJMyPrt.exe C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\CyberLink\PCM4Everio\EverioService.exe C:\Program Files\Windows Live\Family Safety\fsui.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Program Files\Voipwise.com\Voipwise\Voipwise.exe C:\Program Files\Skype\Phone\Skype.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Skype\Plugin Manager\SkypePM.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Windows Live\Toolbar\wltuser.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = Packard Bell - Computers and Home Entertainment - on packardbell.com find out about our desktops, pcs, laptops, notebooks, plus digital Video, MP3 Players, Data Storage, GPS, Accessories R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file) O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll O4 - HKLM\..\Run: [iMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [DetectorApp] C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\McAfee\Common Framework\UdaterUI.exe" /StartedFromRunKey O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe" O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" O4 - HKLM\..\Run: [iSUSPM Startup] c:\progra~1\common~1\instal~1\update~1\isuspm.exe -startup O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon O4 - HKLM\..\Run: [sSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe" O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [EverioService] "C:\Program Files\CyberLink\PCM4Everio\EverioService.exe" O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [CTSyncU.exe] "C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe" O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [Voipwise] "C:\Program Files\Voipwise.com\Voipwise\Voipwise.exe" -nosplash -minimized O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Adobe Reader Snelle start.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=58813 O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://phe1986.spaces.live.com//PhotoUpload/MsnPUpld.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/NL-BE/a-UNO1/GAME_UNO1.cab O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://phe1986.spaces.live.com/PhotoUpload/MsnPUpld.cab O16 - DPF: {AE2B937E-EA7D-4A8D-888C-B68D7F72A3C4} (IPSUploader4 Control) - http://as.photoprintit.de/ips-opdata/74914090/activex/IPSUploader4.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game10.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe O23 - Service: CyberLink Media Library Service - Cyberlink - c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLServer.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: McAfee Framework Service (McAfeeFramework) - McAfee, Inc. - C:\Program Files\McAfee\Common Framework\FrameworkService.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe O23 - Service: USBDeviceService - Unknown owner - C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe -- End of file - 12829 bytes Ik zie wel dat de log meldingen geeft van Mcafee, terwijl enkel AVG is geïnstalleerd. Mogen deze ook verwijderd worden via Hijackthis?
  22. jv9090
    Hey, Ik heb een scan gedaan van de pc van men vriendin en zoek nu iemand die het logje eens kan nakijken Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 20:25:52, on 2/07/2009 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0013) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\Program Files\McAfee\Common Framework\UdaterUI.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\LogMeIn\x86\LogMeInSystray.exe C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe C:\Program Files\McAfee\Common Framework\McTray.exe C:\PROGRA~1\AVG\AVG8\avgtray.exe C:\Program Files\LogMeIn\x86\LMIGuardian.exe C:\Program Files\Canon\MyPrinter\BJMyPrt.exe C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\CyberLink\PCM4Everio\EverioService.exe C:\Program Files\Windows Live\Family Safety\fsui.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Program Files\Voipwise.com\Voipwise\Voipwise.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\Skype\Plugin Manager\SkypePM.exe C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe C:\PROGRA~1\AVG\AVG8\avgrsx.exe C:\WINDOWS\system32\CTsvcCDA.exe c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLServer.exe C:\Program Files\Windows Live\Family Safety\fsssvc.exe C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\McAfee\Common Framework\FrameworkService.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe c:\APPS\Powercinema\Kernel\TV\CLSched.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = Packard Bell - Computers and Home Entertainment - on packardbell.com find out about our desktops, pcs, laptops, notebooks, plus digital Video, MP3 Players, Data Storage, GPS, Accessories R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen R3 - URLSearchHook: (no name) - *{BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - (no file) R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file) R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll O2 - BHO: Windows Live Family Safety Browser Helper - {4f3ed5cd-0726-42a9-87f5-d13f3d2976ac} - C:\Program Files\Windows Live\Family Safety\fssbho.dll O2 - BHO: Click-to-Call BHO - {5C255C8A-E604-49b4-9D64-90988571CECB} - C:\Program Files\Windows Live\Messenger\wlchtc.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: PBBENLV2 - {4E7BD74F-2B8D-469E-A0E8-F362B197B82D} - (no file) O3 - Toolbar: SweetIM For Internet Explorer - {BC4FFE41-DE9F-46fa-B455-AAD49B9F9938} - C:\Program Files\Macrogaming\SweetIMBarForIE\toolbar.dll (file missing) O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll O4 - HKLM\..\Run: [iMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [DetectorApp] C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\DetectorApp.exe O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [McAfeeUpdaterUI] "C:\Program Files\McAfee\Common Framework\UdaterUI.exe" /StartedFromRunKey O4 - HKLM\..\Run: [bluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent O4 - HKLM\..\Run: [LogMeIn GUI] "C:\Program Files\LogMeIn\x86\LogMeInSystray.exe" O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" O4 - HKLM\..\Run: [MSN] scvhost.exe O4 - HKLM\..\Run: [iSUSPM Startup] c:\progra~1\common~1\instal~1\update~1\isuspm.exe -startup O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon O4 - HKLM\..\Run: [sSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe" O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [EverioService] "C:\Program Files\CyberLink\PCM4Everio\EverioService.exe" O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [CTSyncU.exe] "C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe" O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [Voipwise] "C:\Program Files\Voipwise.com\Voipwise\Voipwise.exe" -nosplash -minimized O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: Adobe Reader Snelle start.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: (no name) - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - (no file) O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} (Office Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=58813 O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://phe1986.spaces.live.com//PhotoUpload/MsnPUpld.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/NL-BE/a-UNO1/GAME_UNO1.cab O16 - DPF: {7FC1B346-83E6-4774-8D20-1A6B09B0E737} (Windows Live Photo Upload Control) - http://phe1986.spaces.live.com/PhotoUpload/MsnPUpld.cab O16 - DPF: {AE2B937E-EA7D-4A8D-888C-B68D7F72A3C4} (IPSUploader4 Control) - http://as.photoprintit.de/ips-opdata/74914090/activex/IPSUploader4.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game10.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - c:\APPS\Powercinema\Kernel\TV\CLSched.exe O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe O23 - Service: CyberLink Media Library Service - Cyberlink - c:\APPS\Powercinema\Kernel\CLML_NTService\CLMLServer.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: McAfee Framework Service (McAfeeFramework) - McAfee, Inc. - C:\Program Files\McAfee\Common Framework\FrameworkService.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe O23 - Service: USBDeviceService - Unknown owner - C:\Program Files\Sonic\DigitalMedia LE v7\MyDVD LE\USBDeviceService.exe -- End of file - 13235 bytes
  23. jv9090
    Weet ik niet. Misschien staat er iets op hun website.
  24. jv9090
    Dan stel ik voor dat je een ander (gratis) programma gebruikt. Gimp is een goed alternatief.
  25. jv9090
    Legale versie proberen? Een andere oplossing zie ik momenteel niet.
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.