Ga naar inhoud

Computer werkt traag als Office programma actief is

astriddeboeck

Door astriddeboeck
6 maart 2012 in Archief Microsoft Office

Delen

Aanbevolen berichten

astriddeboeck

Groentje

astriddeboeck

Geplaatst: 6 maart 2012

Auteur

- Delen

Geplaatst: 6 maart 2012

Malwarebytes Anti-Malware (-evaluatieversie-) 1.60.1.1000

Malwarebytes : Free anti-malware, anti-virus and spyware removal download

Databaseversie: v2012.03.06.07

Windows 7 Service Pack 1 x64 NTFS

Internet Explorer 9.0.8112.16421

Astrid :: ASTRID-VAIO [administrator]

Realtime bescherming: Ingeschakeld

6/03/2012 21:20:01

mbam-log-2012-03-06 (21-20-01).txt

Scantype: Snelle scan

Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM

Uitgeschakelde scanopties: P2P

Objecten gescand: 195102

Verstreken tijd: 8 minuut/minuten, 28 seconde(n)

Geheugenprocessen gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Geheugenmodulen gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Registersleutels gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Registerwaarden gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Registerdata gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Mappen gedetecteerd: 0

(Geen kwaadaardige objecten gedetecteerd)

Bestanden gedetecteerd: 1

C:\Users\Astrid\Downloads\DownloadSetup.exe (Affiliate.Downloader) -> Succesvol in quarantaine geplaatst en verwijderd.

(einde)

Hijack log:

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 21:38:34, on 6/03/2012

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v9.00 (9.00.8112.16421)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe

C:\Program Files (x86)\Sony\Marketing Tools\MarketingTools.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

C:\Program Files (x86)\Citrix\ICA Client\concentr.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files (x86)\Citrix\ICA Client\Receiver\Receiver.exe

C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

C:\Users\Astrid\AppData\Roaming\Spotify\Spotify.exe

C:\Windows\SysWOW64\NOTEPAD.EXE

C:\Users\Astrid\Downloads\HijackThis.exe

C:\Windows\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

F2 - REG:system.ini: UserInit=userinit.exe,

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll

O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O3 - Toolbar: (no name) - {2d8d9acc-f6d7-4362-8876-a275ca929591} - (no file)

O4 - HKLM\..\Run: [iSBMgr.exe] "C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe"

O4 - HKLM\..\Run: [startCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [MarketingTools] C:\Program Files (x86)\Sony\Marketing Tools\MarketingTools.exe

O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe

O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

O4 - HKCU\..\Run: [spotify] "C:\Users\Astrid\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart

O4 - HKCU\..\Run: [bitTorrent] "C:\Program Files (x86)\BitTorrent\BitTorrent.exe" /MINIMIZED

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL

O9 - Extra button: Verzenden naar Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra 'Tools' menuitem: Verzenden naar &Bluetooth-apparaat... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter hijack: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira Realtime Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Roxio UPnP Renderer 10 - Sonic Solutions - C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe

O23 - Service: Roxio Upnp Server 10 - Sonic Solutions - C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: VAIO Media plus Content Importer (SOHCImp) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe

O23 - Service: VAIO Media plus Database Manager (SOHDBSvr) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe

O23 - Service: VAIO Media plus Digital Media Server (SOHDms) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe

O23 - Service: VAIO Media plus Device Searcher (SOHDs) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe

O23 - Service: VAIO Media plus Playlist Manager (SOHPlMgr) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe

O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe

O23 - Service: VAIO Power Management - Sony Corporation - C:\Program Files\Sony\VAIO Power Management\SPMService.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe

O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe

O23 - Service: VAIO Content Metadata Intelligent Network Service Manager (VcmINSMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe

O23 - Service: VAIO Content Metadata XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe

O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: VSNService - Sony Corporation - C:\Program Files\Sony\VAIO Smart Network\VSNService.exe

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 18010 bytes

Link naar reactie

Delen op andere sites

Beste reacties in dit topic

12
7
4

Populaire dagen

Beste reacties in dit topic

astriddeboeck 12 berichten
kape 7 berichten
clarkie 4 berichten

Populaire dagen

Grootmeester

kape

Geplaatst: 6 maart 2012

- Delen

Geplaatst: 6 maart 2012

Start Hijackthis op. Selecteer “Scan”. Selecteer alleen de items die hieronder zijn genoemd:

O3 - Toolbar: (no name) - {2d8d9acc-f6d7-4362-8876-a275ca929591} - (no file)

Klik op 'Fix checked' om de items te verwijderen.

Let op : Windows Vista & 7 gebruikers dienen HijackThis als “administrator” uit te voeren via rechtermuisknop “als administrator uitvoeren". Indien dit via de snelkoppeling niet lukt voer je HijackThis als administrator uit in de volgende map : C:\Program Files\Trend Micro\HiJackThis of C:\Program Files (x86)\Trend Micro\HiJackThis.

En dit schijnt niet uitgevoerd of niet correct verlopen te zijn :

Ga naar Start – Uitvoeren/Zoekopdracht en tik in: sc stop "Partner Service"

Druk op Enter.

Ga naar Start – Uitvoeren/Zoekopdracht en tik in: sc delete "Partner Service"

Druk op Enter.

Wil je beiden nog eens herhalen en dan een nieuw log van HijackThis plaatsen.

Link naar reactie

Delen op andere sites

astriddeboeck

Groentje

astriddeboeck

Geplaatst: 7 maart 2012

Auteur

- Delen

Geplaatst: 7 maart 2012

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 2:09:13, on 7/03/2012

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v9.00 (9.00.8112.16421)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\Users\Astrid\AppData\Roaming\Spotify\spotify.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe

C:\Program Files (x86)\Sony\Marketing Tools\MarketingTools.exe

C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\HpqSRmon.exe

C:\Program Files (x86)\Citrix\ICA Client\concentr.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe

C:\Program Files (x86)\Citrix\ICA Client\Receiver\Receiver.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe

C:\Program Files (x86)\Citrix\ICA Client\wfcrun32.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

C:\Program Files (x86)\Adobe\Photoshop 7.0\Photoshop.exe

C:\Program Files (x86)\Microsoft Office\Office12\POWERPNT.EXE

C:\Users\Astrid\Downloads\HijackThis.exe

C:\Windows\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

F2 - REG:system.ini: UserInit=userinit.exe,

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll

O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll

O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [iSBMgr.exe] "C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe"

O4 - HKLM\..\Run: [startCCC] "c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [MarketingTools] C:\Program Files (x86)\Sony\Marketing Tools\MarketingTools.exe

O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe

O4 - HKLM\..\Run: [ConnectionCenter] "C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" /startup

O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

O4 - HKCU\..\Run: [spotify] "C:\Users\Astrid\AppData\Roaming\Spotify\Spotify.exe" /uri spotify:autostart

O4 - HKCU\..\Run: [bitTorrent] "C:\Program Files (x86)\BitTorrent\BitTorrent.exe" /MINIMIZED

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL

O9 - Extra button: Verzenden naar Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra 'Tools' menuitem: Verzenden naar &Bluetooth-apparaat... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O18 - Filter hijack: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll

O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)

O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira Realtime Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAANTMon.exe

O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Roxio UPnP Renderer 10 - Sonic Solutions - C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe

O23 - Service: Roxio Upnp Server 10 - Sonic Solutions - C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: VAIO Media plus Content Importer (SOHCImp) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe

O23 - Service: VAIO Media plus Database Manager (SOHDBSvr) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe

O23 - Service: VAIO Media plus Digital Media Server (SOHDms) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe

O23 - Service: VAIO Media plus Device Searcher (SOHDs) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe

O23 - Service: VAIO Media plus Playlist Manager (SOHPlMgr) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe

O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files (x86)\Sony\VAIO Event Service\VESMgr.exe

O23 - Service: VAIO Power Management - Sony Corporation - C:\Program Files\Sony\VAIO Power Management\SPMService.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe

O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe

O23 - Service: VAIO Content Metadata Intelligent Network Service Manager (VcmINSMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe

O23 - Service: VAIO Content Metadata XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe

O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: VSNService - Sony Corporation - C:\Program Files\Sony\VAIO Smart Network\VSNService.exe

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 18079 bytes

---------- Post toegevoegd om 02:12 ---------- Vorige post was om 02:09 ----------

Computer werkt echter nog altijd traag wanneer word opgestart is. Van zodra ik word afsluit werkt alles perfect en zeer snel.

Link naar reactie

Delen op andere sites

Grootmeester

kape

Geplaatst: 7 maart 2012

- Delen

Geplaatst: 7 maart 2012

Die Partner Service is nog steeds niet verdwenen ... lijkt een beetje hardnekkig te zijn

Download ComboFix van één van deze locaties:

* BELANGRIJK !!! Sla ComboFix.exe op je Bureaublad op

1. Schakel alle antivirus- en antispywareprogramma's uit, want anders kunnen ze misschien conflicteren met ComboFix. Hier is een handleiding over hoe je ze kan uitschakelen:

2. Het kan voorkomen dat de computer meerdere malen opnieuw gestart moet worden, dit is normaal.

3. Dubbelklik op "Combofix.exe" om de tool te starten.

4. Klik niet in het scherm van Combofix als deze actief is, hierdoor kan de 'tool' vastlopen.

Noot !!! Als er een error wordt getoond met de melding "Illegal operation attempted on a registery key that has been marked for deletion", herstart dan de computer.

5. Wanneer ComboFix klaar is, zal het het een logbestand voor je maken. Post de inhoud van dit logbestand (te vinden als C:\ComboFix.txt) in je volgende bericht.

Link naar reactie

Delen op andere sites

astriddeboeck

Groentje

astriddeboeck

Geplaatst: 8 maart 2012

Auteur

- Delen

Geplaatst: 8 maart 2012 (aangepast)

Heb de MBAM scan gedaan, krijg echter geen logbestand (krijg de melding "bezig met voorbereiden van logbestand, open ondertussen geen nieuwe programma's", en dat duurde meer dan 30min, heb dan maar opgegeven en afgesloten)

8 maart 2012 aangepast door astriddeboeck

Link naar reactie

Delen op andere sites

astriddeboeck

Groentje

astriddeboeck

Geplaatst: 8 maart 2012

Auteur

- Delen

Geplaatst: 8 maart 2012

heb het logbestand toch teruggevonden:

ComboFix 12-03-06.01 - Astrid 07/03/2012 8:35:24.1.2 - x64

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.4063.2208 [GMT 1:00]

Gestart vanuit: C:\Users\Astrid\Desktop\ComboFix.exe

AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}

SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

C:\Windows\security\Database\tmp.edb

(((((((((((((((((((( Bestanden Gemaakt van 2012-02-07 to 2012-03-07 ))))))))))))))))))))))))))))))

2012-03-07 07:51:33 . 2012-03-07 07:51:33 -------- d-----w- C:\Users\Default\AppData\Local\temp

2012-03-07 07:40:48 . 2012-03-07 07:40:48 69000 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{807C787F-D5C3-4109-8218-38B9BBB8B194}\offreg.dll

2012-03-06 20:16:50 . 2012-03-06 20:16:50 -------- d-----w- C:\Users\Astrid\AppData\Roaming\Malwarebytes

2012-03-06 20:16:44 . 2012-03-06 20:16:44 -------- d-----w- C:\ProgramData\Malwarebytes

2012-03-06 20:16:43 . 2012-03-06 20:16:46 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware

2012-03-06 20:16:43 . 2011-12-10 14:24:08 23152 ----a-w- C:\Windows\system32\drivers\mbam.sys

2012-03-06 17:50:35 . 2012-03-06 17:50:40 -------- d-----w- C:\Program Files\Speccy

2012-03-06 09:32:58 . 2012-02-08 07:13:59 8643640 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{807C787F-D5C3-4109-8218-38B9BBB8B194}\mpengine.dll

2012-03-05 23:34:31 . 2010-11-16 20:24:14 750440 ------w- C:\Windows\system32\HPDiscoPM5512.dll

2012-03-04 21:57:44 . 2012-03-04 21:57:44 -------- d-----w- C:\Users\Astrid\AppData\Local\Brice_Lambson

2012-03-03 02:23:37 . 2012-03-03 02:23:37 -------- d-----w- C:\Windows\SysWow64\wbem\en-US

2012-03-03 02:23:35 . 2012-03-03 02:23:35 -------- d-----w- C:\Windows\system32\wbem\en-US

2012-02-29 18:33:28 . 2012-02-29 18:33:28 -------- d-----w- C:\Program Files (x86)\Macromedia

2012-02-29 18:28:43 . 2012-02-29 18:28:43 -------- d-----w- C:\Program Files (x86)\Common Files\Java

2012-02-29 18:28:23 . 2012-02-29 18:28:15 476904 ----a-w- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll

2012-02-29 18:28:14 . 2012-02-29 18:28:14 -------- d-----w- C:\Program Files (x86)\Java

2012-02-29 14:20:12 . 2012-02-29 14:20:12 -------- d-----w- C:\Program Files (x86)\Conduit

2012-02-29 14:20:11 . 2012-02-29 14:20:11 -------- d-----w- C:\Users\Astrid\AppData\Local\Conduit

2012-02-29 14:20:10 . 2012-03-06 20:12:30 -------- d-----w- C:\Program Files (x86)\BittorrentBar_NL

2012-02-29 14:19:42 . 2012-03-06 20:27:18 -------- d-----w- C:\Users\Astrid\AppData\Roaming\BitTorrent

2012-02-29 14:19:16 . 2012-02-29 14:19:16 -------- d-----w- C:\Program Files (x86)\BabylonToolbar

2012-02-29 14:19:05 . 2012-02-29 14:19:05 -------- d-----w- C:\ProgramData\Premium

2012-02-29 14:18:58 . 2012-03-06 20:26:46 -------- d-----w- C:\ProgramData\TheBflix

2012-02-29 14:18:36 . 2012-02-29 14:19:07 -------- d-----w- C:\ProgramData\InstallMate

2012-02-27 08:10:50 . 2012-02-27 08:10:50 -------- d-----w- C:\Program Files (x86)\2BrightSparks

2012-02-27 08:07:44 . 2012-02-27 08:07:44 -------- d-----w- C:\Users\Astrid\AppData\Roaming\2BrightSparks

2012-02-27 08:07:35 . 2012-02-27 08:07:35 -------- d-----w- C:\Users\Astrid\AppData\Local\2BrightSparks

2012-02-19 11:08:09 . 2012-02-19 11:08:10 -------- d-----w- C:\Windows\system32\SPReview

2012-02-19 11:07:09 . 2012-02-19 11:07:09 -------- d-----w- C:\Windows\system32\EventProviders

2012-02-17 09:41:51 . 2012-02-24 10:19:19 -------- d-----w- C:\Users\Astrid\AppData\Roaming\HpUpdate

2012-02-17 09:41:46 . 2012-02-17 09:41:46 -------- d-----w- C:\Windows\Hewlett-Packard

2012-02-16 10:05:54 . 2012-01-04 10:44:20 509952 ----a-w- C:\Windows\system32\ntshrui.dll

2012-02-16 10:05:54 . 2012-01-04 08:58:41 442880 ----a-w- C:\Windows\SysWow64\ntshrui.dll

2012-02-16 10:05:46 . 2011-12-30 06:26:08 515584 ----a-w- C:\Windows\system32\timedate.cpl

2012-02-16 10:05:46 . 2011-12-30 05:27:56 478720 ----a-w- C:\Windows\SysWow64\timedate.cpl

2012-02-16 10:05:45 . 2012-01-14 04:06:27 3145728 ----a-w- C:\Windows\system32\win32k.sys

2012-02-16 10:05:44 . 2011-12-28 03:59:24 498688 ----a-w- C:\Windows\system32\drivers\afd.sys

2012-02-16 10:05:41 . 2011-12-16 08:46:06 634880 ----a-w- C:\Windows\system32\msvcrt.dll

2012-02-16 10:05:41 . 2011-12-16 07:52:58 690688 ----a-w- C:\Windows\SysWow64\msvcrt.dll

2012-02-14 10:43:30 . 2012-02-14 10:43:30 -------- d-----w- C:\Program Files\Common Files\Deterministic Networks

2012-02-13 14:32:47 . 2012-02-13 14:32:47 -------- d-----w- C:\Windows\PCHEALTH

2012-02-13 14:20:23 . 2012-02-13 14:20:24 -------- d-----w- C:\Program Files (x86)\Microsoft Visual Studio 8

2012-02-13 13:19:09 . 2012-02-15 09:50:32 -------- d-----w- C:\ProgramData\Roxio

2012-02-13 13:19:08 . 2012-02-13 13:19:08 -------- d-----w- C:\Users\Astrid\AppData\Roaming\Roxio

2012-02-12 13:54:25 . 2009-05-18 12:17:08 34152 ----a-w- C:\Windows\system32\drivers\GEARAspiWDM.sys

2012-02-12 13:09:40 . 2012-02-12 13:11:01 -------- d-----w- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}

2012-02-12 13:09:40 . 2012-02-12 13:09:40 -------- d-----w- C:\ProgramData\Apple Computer

2012-02-12 13:09:00 . 2012-02-12 13:09:00 -------- d-----w- C:\Users\Astrid\AppData\Local\Apple

2012-02-12 13:08:09 . 2012-02-12 13:08:52 -------- d-----w- C:\ProgramData\Apple

2012-02-12 10:31:30 . 2012-02-12 10:31:30 -------- d-----w- C:\Users\Astrid\AppData\Local\ElevatedDiagnostics

2012-02-12 10:23:42 . 2012-03-05 23:35:28 -------- d-----w- C:\Users\Astrid\AppData\Local\HP

2012-02-07 14:52:06 . 2012-02-07 14:52:06 -------- d-----w- C:\Program Files (x86)\GraphPad

2012-02-07 08:34:32 . 2012-02-07 08:40:25 -------- d-----w- C:\Users\Astrid\AppData\Roaming\ICAClient

2012-02-07 08:34:15 . 2012-02-07 08:34:33 -------- d-----w- C:\ProgramData\Citrix

2012-02-07 08:33:54 . 2012-02-07 08:33:54 -------- d-----w- C:\Users\Astrid\AppData\Local\Citrix

2012-02-07 08:33:54 . 2012-02-07 08:33:54 -------- d-----w- C:\Program Files (x86)\Common Files\Citrix

2012-02-07 08:33:53 . 2012-02-07 08:33:53 -------- d-----w- C:\Program Files (x86)\Citrix

2012-02-06 11:38:04 . 2012-02-06 11:38:04 -------- d-----w- C:\ProgramData\PDF reDirect

2012-02-06 11:35:16 . 2012-02-06 11:38:04 -------- d-----w- C:\Users\Astrid\AppData\Roaming\PDF reDirect

2012-02-06 11:35:14 . 2012-02-06 11:35:19 -------- d-----w- C:\Program Files (x86)\PDF reDirect

2012-02-06 11:26:46 . 2012-02-06 11:26:46 -------- d-----w- C:\Users\Astrid\AppData\Roaming\Softland

2012-02-06 11:26:44 . 2010-02-05 13:00:40 1700352 ----a-w- C:\Windows\system32\GdiPlus.dll

2012-02-06 11:22:40 . 2012-02-29 14:19:17 474 ----a-w- C:\user.js

2012-02-06 11:22:38 . 2007-08-21 12:32:44 98304 ----a-w- C:\Windows\SysWow64\redmonnt.dll

2012-02-06 11:22:31 . 2012-02-06 11:22:31 -------- d-----w- C:\Users\Astrid\AppData\Local\Babylon

2012-02-06 11:22:29 . 2012-02-06 11:22:29 -------- d-----w- C:\Users\Astrid\AppData\Roaming\Babylon

2012-02-06 11:22:29 . 2012-02-06 11:22:29 -------- d-----w- C:\ProgramData\Babylon

2012-02-06 10:56:16 . 2012-02-06 11:18:12 -------- d-----w- C:\Users\Astrid\AppData\Roaming\Nitro PDF

2012-02-06 10:55:48 . 2011-12-20 10:27:32 17192 ----a-w- C:\Windows\system32\nitrolocalui2.dll

2012-02-06 10:55:48 . 2011-12-20 10:27:30 28968 ----a-w- C:\Windows\system32\nitrolocalmon2.dll

2012-02-06 10:55:44 . 2012-02-06 10:55:44 -------- d-----w- C:\ProgramData\Nitro PDF

2012-02-06 10:54:51 . 2012-02-06 11:18:02 -------- d-----w- C:\Users\Astrid\AppData\Roaming\PrimoPDF

2012-02-06 10:54:04 . 2012-02-06 10:54:06 -------- d-----w- C:\Users\Astrid\AppData\Roaming\OpenCandy

2012-02-06 10:54:04 . 2011-02-28 22:37:36 95008 ----a-w- C:\Windows\system32\Primomonnt.dll

2012-02-06 10:54:02 . 2012-02-07 09:25:17 -------- d-----w- C:\Program Files (x86)\Nitro PDF

2012-02-06 10:50:39 . 2012-02-06 10:50:39 -------- d-----w- C:\Users\Astrid\AppData\Roaming\pdfforge

2012-02-06 10:50:35 . 2005-03-12 00:07:00 87040 ----a-w- C:\Windows\system32\pdfcmnnt.dll

2012-02-06 10:50:35 . 1998-06-24 00:00:00 137000 ----a-w- C:\Windows\SysWow64\MSMAPI32.OCX

2012-02-06 10:50:34 . 1998-07-06 00:00:00 23552 ----a-w- C:\Windows\SysWow64\MSMPIDE.DLL

2012-02-06 10:50:33 . 2012-02-06 10:51:16 -------- d-----w- C:\Program Files (x86)\PDFCreator

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

2012-03-06 20:35:09 . 2012-01-30 19:07:12 414368 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2012-02-29 18:28:15 . 2012-01-30 21:43:25 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll

2012-02-23 08:18:36 . 2012-02-03 08:10:57 279656 ------w- C:\Windows\system32\MpSigStub.exe

2012-02-19 11:20:53 . 2009-07-14 02:36:51 175616 ----a-w- C:\Windows\system32\msclmd.dll

2012-02-19 11:20:53 . 2009-07-14 02:36:51 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll

2012-02-15 09:07:55 . 2012-01-30 17:20:56 132320 ----a-w- C:\Windows\system32\drivers\avipbb.sys

2011-12-15 14:00:35 . 2012-01-30 17:20:56 27760 ----a-w- C:\Windows\system32\drivers\avkmgr.sys

2011-12-15 14:00:34 . 2012-01-30 17:20:56 97312 ----a-w- C:\Windows\system32\drivers\avgntflt.sys

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Spotify"="C:\Users\Astrid\AppData\Roaming\Spotify\Spotify.exe" [2012-03-06 20:36:04 4008112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"ISBMgr.exe"="C:\Program Files (x86)\Sony\ISB Utility\ISBMgr.exe" [2009-05-26 08:23:14 317288]

"StartCCC"="c:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-07-10 10:20:50 98304]

"MarketingTools"="C:\Program Files (x86)\Sony\Marketing Tools\MarketingTools.exe" [2012-01-30 15:39:40 26624]

"avgnt"="C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2011-12-15 14:00:12 258512]

"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 07:37:53 843712]

"hpqSRMon"="C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-07-22 17:33:36 150528]

"ConnectionCenter"="C:\Program Files (x86)\Citrix\ICA Client\concentr.exe" [2011-08-11 11:27:02 358336]

"APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-11-01 22:25:58 59240]

"iTunesHelper"="C:\Program Files (x86)\iTunes\iTunesHelper.exe" [2012-01-16 16:22:12 421736]

"GrooveMonitor"="C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 17:36:46 30040]

"HP Software Update"="C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe" [2011-05-10 01:41:12 49208]

"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-01-18 13:02:04 254696]

"Malwarebytes' Anti-Malware"="C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-01-13 13:53:18 460872]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\

Adobe Gamma Loader.lnk - C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2012-1-30 113664]

HP Digital Imaging Monitor.lnk - C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [2009-9-20 270336]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]

2009-07-01 10:49:36 98304 ----a-w- C:\Windows\System32\VESWinlogon.dll

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]

"aux1"=wdmaud.drv

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 12:16:28 130384]

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 13:27:14 138576]

R2 gupdate;Google Updateservice (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-06 17:48:33 136176]

R2 Roxio Upnp Server 10;Roxio Upnp Server 10;C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUpnpService10.exe [2009-06-26 10:25:36 362992]

R2 uCamMonitor;CamMonitor;C:\Program Files (x86)\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2008-09-18 09:59:10 104960]

R3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\system32\DRIVERS\btwl2cap.sys [x]

R3 gupdatem;Google Update-service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-06 17:48:33 136176]

R3 Partner Service;Partner Service;C:\ProgramData\Partner\Partner.exe [2012-01-30 15:31:10 332272]

R3 Roxio UPnP Renderer 10;Roxio UPnP Renderer 10;C:\Program Files (x86)\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe [2009-06-26 10:25:24 313840]

R3 SOHCImp;VAIO Media plus Content Importer;C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHCImp.exe [2009-07-27 15:58:36 120104]

R3 SOHDBSvr;VAIO Media plus Database Manager;C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDBSvr.exe [2009-07-27 15:58:38 70952]

R3 SOHDms;VAIO Media plus Digital Media Server;C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDms.exe [2009-07-27 15:58:38 427304]

R3 SOHDs;VAIO Media plus Device Searcher;C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHDs.exe [2009-07-27 15:58:38 75048]

R3 SOHPlMgr;VAIO Media plus Playlist Manager;C:\Program Files (x86)\Common Files\Sony Shared\SOHLib\SOHPlMgr.exe [2009-07-27 15:58:40 91432]

R3 SrvHsfHDA;SrvHsfHDA;C:\Windows\system32\DRIVERS\VSTAZL6.SYS [x]

R3 SrvHsfV92;SrvHsfV92;C:\Windows\system32\DRIVERS\VSTDPV6.SYS [x]

R3 SrvHsfWinac;SrvHsfWinac;C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [x]

R3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys [x]

R3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys [x]

R3 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2009-06-26 13:35:04 468264]

R3 VcmINSMgr;VAIO Content Metadata Intelligent Network Service Manager;C:\Program Files\Sony\VCM Intelligent Network Service Manager\VcmINSMgr.exe [2009-06-26 13:56:10 357672]

R3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper64.exe [2009-06-17 17:50:30 110888]

R3 WatAdminSvc;Windows Activation Technologies-service;C:\Windows\system32\Wat\WatAdminSvc.exe [x]

S0 PxHlpa64;PxHlpa64;C:\Windows\System32\Drivers\PxHlpa64.sys [x]

S1 avkmgr;avkmgr;C:\Windows\system32\DRIVERS\avkmgr.sys [x]

S1 ctxusbm;Citrix USB Monitor Driver;C:\Windows\system32\DRIVERS\ctxusbm.sys [x]

S1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys [x]

S2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 13:10:42 63928]

S2 AMD External Events Utility;AMD External Events Utility;C:\Windows\system32\atiesrxx.exe [x]

S2 AntiVirSchedulerService;Avira Scheduler;C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2011-12-15 14:00:23 86224]

S2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-01-13 13:53:18 652360]

S2 RtkAudioService;Realtek Audio Service;C:\Program Files\Realtek\Audio\HDA\RtkAudioService64.exe [2009-07-24 04:34:31 189984]

S2 VAIO Power Management;VAIO Power Management;C:\Program Files\Sony\VAIO Power Management\SPMService.exe [2009-07-16 08:36:56 411496]

S2 VCFw;VAIO Content Folder Watcher;C:\Program Files (x86)\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2009-07-22 14:03:04 642920]

S2 VSNService;VSNService;C:\Program Files\Sony\VAIO Smart Network\VSNService.exe [2009-08-12 22:11:54 522240]

S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys [x]

S3 MBAMProtector;MBAMProtector;C:\Windows\system32\drivers\mbam.sys [x]

S3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\system32\DRIVERS\netw5v64.sys [x]

S3 SFEP;Sony Firmware Extension Parser;C:\Windows\system32\DRIVERS\SFEP.sys [x]

S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\system32\DRIVERS\yk62x64.sys [x]

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]

hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc

Link naar reactie

Delen op andere sites

Grootmeester

kape

Geplaatst: 8 maart 2012

- Delen

Geplaatst: 8 maart 2012

Open een kladblokbestand.

Kopieer en plak daarin de onderstaande vetgedrukte tekst.

File::

C:\user.js

Driver::

Partner Service

Folder::

C:\Program Files (x86)\Conduit

C:\Users\Astrid\AppData\Local\Conduit

C:\Program Files (x86)\BittorrentBar_NL

C:\Program Files (x86)\BabylonToolbar

C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}

C:\Users\Astrid\AppData\Local\Babylon

C:\Users\Astrid\AppData\Roaming\Babylon

C:\ProgramData\Babylon

C:\ProgramData\Partner

Sla dit bestand op je bureaublad op als CFScript.

Sleep CFScript.txt in ComboFix.exe

Dit zal ComboFix doen herstarten. Start opnieuw op als dat gevraagd wordt.

Start Hijackthis op. Selecteer “Scan”. Selecteer alleen de items die hieronder zijn genoemd (indien nog aanwezig):

O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe

Klik op 'Fix checked' om de items te verwijderen.

Post na herstart de inhoud van de Combofix.txt in je volgende bericht samen met een nieuw logje van HijackThis.

Link naar reactie

Delen op andere sites

astriddeboeck

Groentje

astriddeboeck

Geplaatst: 8 maart 2012

Auteur

- Delen

Geplaatst: 8 maart 2012

help! groot probleem, combofix heeft gescand etc, computer opgestart, dan werd het logbestand voorbereid, dit duurde weer ellendig lang, zonder dat er verandering in kwam, dus heb ik het programma afgesloten. maar, nu kan ik niets meer openen (programma, windows verkenner,...) krijg telkens melding "er is geprobeerd een ongeldige bewerking uit te voeren op een registersleutel die is gemarkeerd voor verwijdering"!

---------- Post toegevoegd om 13:23 ---------- Vorige post was om 13:11 ----------

is een systeemherstel voorlopig een oplossing zodat ik weer verder kan? ben ik dan recent opgeslagen werk kwijt? net doctoraatsthesis aan het schrijven

---------- Post toegevoegd om 13:33 ---------- Vorige post was om 13:23 ----------

Ok, fieowww, hij doet het weer na heropstarten, zie onder het logbestand; Bestand 023 - Service: Partner Service,.. lijkt verdwenen

ComboFix 12-03-06.01 - Astrid 08/03/2012 12:26:18.2.2 - x64

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.4063.1976 [GMT 1:00]

Gestart vanuit: C:\Users\Astrid\Desktop\ComboFix.exe

gebruikte Opdracht switches :: C:\Users\Astrid\Desktop\CFScript.txt

AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C}

SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

* Nieuw herstelpunt werd aangemaakt

FILE ::

"C:\user.js"

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

C:\Program Files (x86)\BabylonToolbar

C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarApp.dll

C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarEng.dll

C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarsrv.exe

C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll

C:\Program Files (x86)\BabylonToolbar\BabylonToolbar\1.5.3.17\uninstall.exe

C:\Program Files (x86)\BittorrentBar_NL

C:\Program Files (x86)\BittorrentBar_NL\BittorrentBar_NLToolbarHelper.exe

C:\Program Files (x86)\BittorrentBar_NL\GottenAppsContextMenu.xml

C:\Program Files (x86)\BittorrentBar_NL\ldrtbBitt.dll

C:\Program Files (x86)\BittorrentBar_NL\OtherAppsContextMenu.xml

C:\Program Files (x86)\BittorrentBar_NL\SharedAppsContextMenu.xml

C:\Program Files (x86)\BittorrentBar_NL\tbBitt.dll

C:\Program Files (x86)\BittorrentBar_NL\toolbar.cfg

C:\Program Files (x86)\BittorrentBar_NL\ToolbarContextMenu.xml

C:\Program Files (x86)\BittorrentBar_NL\uninstall.exe

C:\Program Files (x86)\Conduit

C:\Program Files (x86)\Conduit\Community Alerts\Alert.dll

C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}

C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}\x64\DIFxAPI.dll

C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}\x64\DifXInstall64.exe

C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}\x64\DIFxInstallLog.txt

C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}\x64\GEARAspiWDM.inf

C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}\x64\gearaspiwdmx64.cat

C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}\x64\x64\GEARAspi.dll

C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}\x64\x64\GEARAspi64.dll

C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}\x64\x64\GEARAspiWDM.sys

C:\ProgramData\Babylon

C:\ProgramData\Partner

C:\ProgramData\Partner\debug.log

C:\ProgramData\Partner\Partner.exe

C:\ProgramData\Partner\Partner64.dll

C:\user.js

C:\Users\Astrid\AppData\Local\Babylon

C:\Users\Astrid\AppData\Local\Babylon\Setup\bab033.tbinst.dat

C:\Users\Astrid\AppData\Local\Babylon\Setup\bab091.norecovericon.dat

C:\Users\Astrid\AppData\Local\Babylon\Setup\Babylon.dat

C:\Users\Astrid\AppData\Local\Babylon\Setup\BExternal.dll

C:\Users\Astrid\AppData\Local\Babylon\Setup\HtmlScreens\cmbx.png

C:\Users\Astrid\AppData\Local\Babylon\Setup\HtmlScreens\common.js

C:\Users\Astrid\AppData\Local\Babylon\Setup\HtmlScreens\eula.html

C:\Users\Astrid\AppData\Local\Babylon\Setup\HtmlScreens\lngs.png

C:\Users\Astrid\AppData\Local\Babylon\Setup\HtmlScreens\page1.css

C:\Users\Astrid\AppData\Local\Babylon\Setup\HtmlScreens\page1.html

C:\Users\Astrid\AppData\Local\Babylon\Setup\HtmlScreens\page1.js

C:\Users\Astrid\AppData\Local\Babylon\Setup\HtmlScreens\page1Lrg.css

C:\Users\Astrid\AppData\Local\Babylon\Setup\HtmlScreens\page2.css

C:\Users\Astrid\AppData\Local\Babylon\Setup\HtmlScreens\page2.html

C:\Users\Astrid\AppData\Local\Babylon\Setup\HtmlScreens\page2.js

C:\Users\Astrid\AppData\Local\Babylon\Setup\HtmlScreens\page2Lrg.css

C:\Users\Astrid\AppData\Local\Babylon\Setup\HtmlScreens\page9.html

C:\Users\Astrid\AppData\Local\Babylon\Setup\HtmlScreens\pBar.gif

C:\Users\Astrid\AppData\Local\Babylon\Setup\HtmlScreens\title1.png

C:\Users\Astrid\AppData\Local\Babylon\Setup\HtmlScreens\title2.png

C:\Users\Astrid\AppData\Local\Babylon\Setup\HtmlScreens\toolBar.jpg

C:\Users\Astrid\AppData\Local\Babylon\Setup\HtmlScreens\vIcn.png

C:\Users\Astrid\AppData\Local\Babylon\Setup\IECookieLow.dll

C:\Users\Astrid\AppData\Local\Babylon\Setup\Setup-tbmntr903-9.0.3.34.zpb

C:\Users\Astrid\AppData\Local\Babylon\Setup\Setup-tbmntr903-9.0.3.35.zpb

C:\Users\Astrid\AppData\Local\Babylon\Setup\Setup.exe

C:\Users\Astrid\AppData\Local\Babylon\Setup\SetupStrings.dat

C:\Users\Astrid\AppData\Local\Babylon\Setup\sqlite3.dll

C:\Users\Astrid\AppData\Local\Conduit

C:\Users\Astrid\AppData\Local\Conduit\CT2849859\BittorrentBar_NLAutoUpdateHelper.exe

C:\Users\Astrid\AppData\Roaming\Babylon

C:\Users\Astrid\AppData\Roaming\Babylon\log_file.txt

---- Voorgaande Run -------

C:\Windows\security\Database\tmp.edb

((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

.

-------\Service_Partner Service

(((((((((((((((((((( Bestanden Gemaakt van 2012-02-08 to 2012-03-08 ))))))))))))))))))))))))))))))

2012-03-08 11:49:55 . 2012-03-08 11:49:55 -------- d-----w- C:\Users\Default\AppData\Local\temp

2012-03-06 20:16:50 . 2012-03-06 20:16:50 -------- d-----w- C:\Users\Astrid\AppData\Roaming\Malwarebytes

2012-03-06 20:16:44 . 2012-03-06 20:16:44 -------- d-----w- C:\ProgramData\Malwarebytes

2012-03-06 20:16:43 . 2012-03-06 20:16:46 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware

2012-03-06 20:16:43 . 2011-12-10 14:24:08 23152 ----a-w- C:\Windows\system32\drivers\mbam.sys

2012-03-06 17:50:35 . 2012-03-06 17:50:40 -------- d-----w- C:\Program Files\Speccy

2012-03-06 09:32:58 . 2012-02-08 07:13:59 8643640 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{807C787F-D5C3-4109-8218-38B9BBB8B194}\mpengine.dll

2012-03-05 23:34:31 . 2010-11-16 20:24:14 750440 ------w- C:\Windows\system32\HPDiscoPM5512.dll

2012-03-04 21:57:44 . 2012-03-04 21:57:44 -------- d-----w- C:\Users\Astrid\AppData\Local\Brice_Lambson

2012-03-03 02:23:37 . 2012-03-03 02:23:37 -------- d-----w- C:\Windows\SysWow64\wbem\en-US

2012-03-03 02:23:35 . 2012-03-03 02:23:35 -------- d-----w- C:\Windows\system32\wbem\en-US

2012-02-29 18:33:28 . 2012-02-29 18:33:28 -------- d-----w- C:\Program Files (x86)\Macromedia

2012-02-29 18:28:43 . 2012-02-29 18:28:43 -------- d-----w- C:\Program Files (x86)\Common Files\Java

2012-02-29 18:28:23 . 2012-02-29 18:28:15 476904 ----a-w- C:\Program Files (x86)\Mozilla Firefox\Plugins\npdeployJava1.dll

2012-02-29 18:28:14 . 2012-02-29 18:28:14 -------- d-----w- C:\Program Files (x86)\Java

2012-02-29 14:19:42 . 2012-03-06 20:27:18 -------- d-----w- C:\Users\Astrid\AppData\Roaming\BitTorrent

2012-02-29 14:19:05 . 2012-02-29 14:19:05 -------- d-----w- C:\ProgramData\Premium

2012-02-29 14:18:58 . 2012-03-06 20:26:46 -------- d-----w- C:\ProgramData\TheBflix

2012-02-29 14:18:36 . 2012-02-29 14:19:07 -------- d-----w- C:\ProgramData\InstallMate

2012-02-27 08:10:50 . 2012-02-27 08:10:50 -------- d-----w- C:\Program Files (x86)\2BrightSparks

2012-02-27 08:07:44 . 2012-02-27 08:07:44 -------- d-----w- C:\Users\Astrid\AppData\Roaming\2BrightSparks

2012-02-27 08:07:35 . 2012-02-27 08:07:35 -------- d-----w- C:\Users\Astrid\AppData\Local\2BrightSparks

2012-02-19 11:08:09 . 2012-02-19 11:08:10 -------- d-----w- C:\Windows\system32\SPReview

2012-02-19 11:07:09 . 2012-02-19 11:07:09 -------- d-----w- C:\Windows\system32\EventProviders

2012-02-17 09:41:51 . 2012-02-24 10:19:19 -------- d-----w- C:\Users\Astrid\AppData\Roaming\HpUpdate

2012-02-17 09:41:46 . 2012-02-17 09:41:46 -------- d-----w- C:\Windows\Hewlett-Packard

2012-02-16 10:05:54 . 2012-01-04 10:44:20 509952 ----a-w- C:\Windows\system32\ntshrui.dll

2012-02-16 10:05:54 . 2012-01-04 08:58:41 442880 ----a-w- C:\Windows\SysWow64\ntshrui.dll

2012-02-16 10:05:46 . 2011-12-30 06:26:08 515584 ----a-w- C:\Windows\system32\timedate.cpl

2012-02-16 10:05:46 . 2011-12-30 05:27:56 478720 ----a-w- C:\Windows\SysWow64\timedate.cpl

2012-02-16 10:05:45 . 2012-01-14 04:06:27 3145728 ----a-w- C:\Windows\system32\win32k.sys

2012-02-16 10:05:44 . 2011-12-28 03:59:24 498688 ----a-w- C:\Windows\system32\drivers\afd.sys

2012-02-16 10:05:41 . 2011-12-16 08:46:06 634880 ----a-w- C:\Windows\system32\msvcrt.dll

2012-02-16 10:05:41 . 2011-12-16 07:52:58 690688 ----a-w- C:\Windows\SysWow64\msvcrt.dll

2012-02-14 10:43:30 . 2012-02-14 10:43:30 -------- d-----w- C:\Program Files\Common Files\Deterministic Networks

2012-02-13 14:32:47 . 2012-02-13 14:32:47 -------- d-----w- C:\Windows\PCHEALTH

2012-02-13 14:20:23 . 2012-02-13 14:20:24 -------- d-----w- C:\Program Files (x86)\Microsoft Visual Studio 8

2012-02-13 13:19:09 . 2012-02-15 09:50:32 -------- d-----w- C:\ProgramData\Roxio

2012-02-13 13:19:08 . 2012-02-13 13:19:08 -------- d-----w- C:\Users\Astrid\AppData\Roaming\Roxio

2012-02-12 13:54:25 . 2009-05-18 12:17:08 34152 ----a-w- C:\Windows\system32\drivers\GEARAspiWDM.sys

2012-02-12 13:09:40 . 2012-02-12 13:09:40 -------- d-----w- C:\ProgramData\Apple Computer

2012-02-12 13:09:00 . 2012-02-12 13:09:00 -------- d-----w- C:\Users\Astrid\AppData\Local\Apple

2012-02-12 13:08:09 . 2012-02-12 13:08:52 -------- d-----w- C:\ProgramData\Apple

2012-02-12 10:31:30 . 2012-02-12 10:31:30 -------- d-----w- C:\Users\Astrid\AppData\Local\ElevatedDiagnostics

2012-02-12 10:23:42 . 2012-03-05 23:35:28 -------- d-----w- C:\Users\Astrid\AppData\Local\HP

2012-02-07 14:52:06 . 2012-02-07 14:52:06 -------- d-----w- C:\Program Files (x86)\GraphPad

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

2012-03-06 20:35:09 . 2012-01-30 19:07:12 414368 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2012-02-29 18:28:15 . 2012-01-30 21:43:25 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll

2012-02-23 08:18:36 . 2012-02-03 08:10:57 279656 ------w- C:\Windows\system32\MpSigStub.exe

2012-02-19 11:20:53 . 2009-07-14 02:36:51 175616 ----a-w- C:\Windows\system32\msclmd.dll

2012-02-19 11:20:53 . 2009-07-14 02:36:51 152576 ----a-w- C:\Windows\SysWow64\msclmd.dll

2012-02-15 09:07:55 . 2012-01-30 17:20:56 132320 ----a-w- C:\Windows\system32\drivers\avipbb.sys

2011-12-20 10:27:32 . 2012-02-06 10:55:48 17192 ----a-w- C:\Windows\system32\nitrolocalui2.dll

2011-12-20 10:27:30 . 2012-02-06 10:55:48 28968 ----a-w- C:\Windows\system32\nitrolocalmon2.dll

2011-12-15 14:00:35 . 2012-01-30 17:20:56 27760 ----a-w- C:\Windows\system32\drivers\avkmgr.sys

2011-12-15 14:00:34 . 2012-01-30 17:20:56 97312 ----a-w- C:\Windows\system32\drivers\avgntflt.sys

Link naar reactie

Delen op andere sites

Grootmeester

kape

Geplaatst: 8 maart 2012

- Delen

Geplaatst: 8 maart 2012

Er is - via de verschillende kanalen - flink wat rotzooi van de PC gehaald. Hoe doen de Officeprogramma's het nu ?

Link naar reactie

Delen op andere sites

astriddeboeck

Groentje

astriddeboeck

Geplaatst: 8 maart 2012

Auteur

- Delen

Geplaatst: 8 maart 2012

Wel, de computer was nog altijd zeer traag wanneer word actief is.

Ik heb ondertussen wel ontdekt waaraan het probleem te wijten was: ik werk met endnote reference manager, en wanneer ik een word doc had openstaan waaraan referenties gekoppeld aan endnote zaten, werkte de computer zeer traag. het probleem ligt dus blijkbaar bij endnote (endnote hoeft hiervoor zelfs niet aan te staan).

Ik los het probleem nu op door de referenties in ongeformatteerde vorm in mijn bestand te zetten.. dan werkt hij wel weer snel.

Alleszins heel erg bedankt voor de vele hulp, mijn computer is nu alleszins wel terug schoon en opgekuist!!!

---------- Post toegevoegd om 18:31 ---------- Vorige post was om 18:29 ----------

btw jullie doen fantastisch werk!! ik sta versteld, wat een interventie!!

Link naar reactie

Delen op andere sites

Gast

Dit topic is nu gesloten voor nieuwe reacties.

Delen

Ga naar topic overzicht

Beste reacties in dit topic

astriddeboeck 12 berichten
kape 7 berichten
clarkie 4 berichten

Populaire dagen

Welkom op PC Helpforum
- 0
  
  Vriendelijk verzoek: whitelist www.pc-helpforum.be in je adblocker.
  
  Sarah · 4 september 2017
- 0
  
  Hoe vind ik mijn geplaatste berichten terug?
  
  Sarah · 9 december 2014
- 1
  
  Hoe stel ik mijn vraag ?
  
  Sarah · 29 mei 2014
- 0
  
  Hoe post ik een antwoord?
  
  Sarah · 31 mei 2014
Leden statistieken
- Aantal leden
  
  40.804
- Meeste online
  
  1.765
  15 januari 2020
Nieuwste lid
RetroDevil
Registratiedatum 6 uren geleden

×

×

Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.