Ga naar inhoud

Vast lopen PC

Rob+65

Door Rob+65
9 mei 2012 in Archief Windows Algemeen

Delen

Aanbevolen berichten

Rob+65

Enthousiasteling

Rob+65

Geplaatst: 11 mei 2012

Auteur

- Delen

Geplaatst: 11 mei 2012

Van morgen was ik bezig in win.office 2007 word.

Toen stond hij weer vast.

Dus af wachten wat hij verder doet van daag.

Groetjes Rob.

Link naar reactie

Delen op andere sites

Beste reacties in dit topic

22
15
2

Populaire dagen

Beste reacties in dit topic

Rob+65 22 berichten
kweezie wabbit 15 berichten
Jion 2 berichten

Populaire dagen

Grootmeester

kweezie wabbit

Geplaatst: 11 mei 2012

- Delen

Geplaatst: 11 mei 2012

Open een nieuw kladblokbestand.

Kopieer en plak daarin de onderstaande vetgedrukte tekst.

DDS::

DPF: CabBuilder -

IE: Translate this web page with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/ActionTU.htm

IE: Translate with Babylon - c:\program files\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm

Trusted Zone: 0.0.0.0

Folder::

c:\documents and settings\All Users\Application Data\21D4

Registry::

[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Babylon Client]

Firefox::

FF - ProfilePath - c:\documents and settings\Administrator\Application Data\Mozilla\Firefox\Profiles\lu5u4d9t.default\

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)

FF - prefs.js: keyword.URL - hxxp://mp3rocketsearch.com/?prt=mp3rockettb02ff&Keywords=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)

FF - prefs.js: keyword.URL - hxxp://mp3rocketsearch.com/?prt=mp3rockettb02ff&Keywords=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)

FF - prefs.js: browser.startup.homepage - hxxp://doenormaal.eigenstart.nl/

FF - prefs.js: keyword.URL - hxxp://mp3rocketsearch.com/?prt=mp3rockettb02ff&Keywords=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)

FF - prefs.js: browser.startup.homepage - hxxp://mystart.incredimail.com/mb111?a=1jSpmydGEK3

FF - prefs.js: keyword.URL - hxxp://mp3rocketsearch.com/?prt=mp3rockettb02ff&Keywords=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)

FF - prefs.js: browser.startup.homepage - hxxp://doenormaal.eigenstart.nl/

FF - prefs.js: keyword.URL - hxxp://mp3rocketsearch.com/?prt=mp3rockettb02ff&Keywords=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)

FF - prefs.js: browser.startup.homepage - hxxp://mystart.incredimail.com/mb111?a=1jSpmydGEK3

FF - prefs.js: keyword.URL - hxxp://mp3rocketsearch.com/?prt=mp3rockettb02ff&Keywords=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)

FF - prefs.js: browser.startup.homepage - hxxp://doenormaal.eigenstart.nl/

FF - prefs.js: keyword.URL - hxxp://mp3rocketsearch.com/?prt=mp3rockettb02ff&Keywords=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)

FF - prefs.js: browser.startup.homepage - hxxp://mystart.incredimail.com/mb111?a=1jSpmydGEK3

FF - prefs.js: keyword.URL - hxxp://mp3rocketsearch.com/?prt=mp3rockettb02ff&Keywords=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - MyStart Search

FF - prefs.js: browser.startup.homepage - hxxp://doenormaal.eigenstart.nl/

FF - prefs.js: keyword.URL - hxxp://mp3rocketsearch.com/?prt=mp3rockettb02ff&Keywords=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - MyStart Search

FF - prefs.js: browser.startup.homepage - hxxp://mystart.incredimail.com/mb111?a=1jSpmydGEK3

FF - prefs.js: keyword.URL - hxxp://mp3rocketsearch.com/?prt=mp3rockettb02ff&Keywords=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - MyStart Search

FF - prefs.js: browser.startup.homepage - hxxp://doenormaal.eigenstart.nl/

FF - prefs.js: keyword.URL - hxxp://mp3rocketsearch.com/?prt=mp3rockettb02ff&Keywords=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - MyStart Search

FF - prefs.js: browser.startup.homepage - hxxp://mystart.incredimail.com/mb111?a=1jSpmydGEK3

FF - prefs.js: keyword.URL - hxxp://mp3rocketsearch.com/?prt=mp3rockettb02ff&Keywords=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - MyStart Search

FF - prefs.js: browser.startup.homepage - hxxp://doenormaal.eigenstart.nl/

FF - prefs.js: keyword.URL - hxxp://mp3rocketsearch.com/?prt=mp3rockettb02ff&Keywords=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - MyStart Search

FF - prefs.js: browser.startup.homepage - hxxp://mystart.incredimail.com/mb111?a=1jSpmydGEK3

FF - prefs.js: keyword.URL - hxxp://mp3rocketsearch.com/?prt=mp3rockettb02ff&Keywords=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - MyStart Search

FF - prefs.js: browser.startup.homepage - hxxp://doenormaal.eigenstart.nl/

FF - prefs.js: keyword.URL - hxxp://mp3rocketsearch.com/?prt=mp3rockettb02ff&Keywords=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - MyStart Search

FF - prefs.js: browser.startup.homepage - hxxp://mystart.incredimail.com/mb111?a=1jSpmydGEK3

FF - prefs.js: keyword.URL - hxxp://mp3rocketsearch.com/?prt=mp3rockettb02ff&Keywords=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)

FF - prefs.js: browser.startup.homepage - hxxp://doenormaal.eigenstart.nl/

FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/mb111/?loc=ff_address_bar&a=1jSpmydGEK3&search=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)

FF - prefs.js: browser.startup.homepage - hxxp://mystart.incredimail.com/mb111?a=1jSpmydGEK3

FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/mb111/?loc=ff_address_bar&a=1jSpmydGEK3&search=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)

FF - prefs.js: browser.startup.homepage - hxxp://doenormaal.eigenstart.nl/

FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/mb111/?loc=ff_address_bar&a=1jSpmydGEK3&search=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)

FF - prefs.js: browser.startup.homepage - hxxp://mystart.incredimail.com/mb111?a=1jSpmydGEK3

FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/mb111/?loc=ff_address_bar&a=1jSpmydGEK3&search=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)

FF - prefs.js: browser.startup.homepage - hxxp://doenormaal.eigenstart.nl/

FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/mb111/?loc=ff_address_bar&a=1jSpmydGEK3&search=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)

FF - prefs.js: browser.startup.homepage - hxxp://mystart.incredimail.com/mb111?a=1jSpmydGEK3

FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/mb111/?loc=ff_address_bar&a=1jSpmydGEK3&search=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)

FF - prefs.js: browser.startup.homepage - hxxp://doenormaal.eigenstart.nl/

FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/mb111/?loc=ff_address_bar&a=1jSpmydGEK3&search=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - Search the web (Babylon)

FF - prefs.js: browser.startup.homepage - hxxp://mystart.incredimail.com/mb111?a=1jSpmydGEK3

FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/mb111/?loc=ff_address_bar&a=1jSpmydGEK3&search=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - MyStart Search

FF - prefs.js: browser.startup.homepage - hxxp://doenormaal.eigenstart.nl/

FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/mb111/?loc=ff_address_bar&a=1jSpmydGEK3&search=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - MyStart Search

FF - prefs.js: browser.startup.homepage - hxxp://mystart.incredimail.com/mb111?a=1jSpmydGEK3

FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/mb111/?loc=ff_address_bar&a=1jSpmydGEK3&search=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - MyStart Search

FF - prefs.js: browser.startup.homepage - hxxp://doenormaal.eigenstart.nl/

FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/mb111/?loc=ff_address_bar&a=1jSpmydGEK3&search=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - MyStart Search

FF - prefs.js: browser.startup.homepage - hxxp://mystart.incredimail.com/mb111?a=1jSpmydGEK3

FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/mb111/?loc=ff_address_bar&a=1jSpmydGEK3&search=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - MyStart Search

FF - prefs.js: browser.startup.homepage - hxxp://doenormaal.eigenstart.nl/

FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/mb111/?loc=ff_address_bar&a=1jSpmydGEK3&search=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - MyStart Search

FF - prefs.js: browser.startup.homepage - hxxp://mystart.incredimail.com/mb111?a=1jSpmydGEK3

FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/mb111/?loc=ff_address_bar&a=1jSpmydGEK3&search=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - MyStart Search

FF - prefs.js: browser.startup.homepage - hxxp://doenormaal.eigenstart.nl/

FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/mb111/?loc=ff_address_bar&a=1jSpmydGEK3&search=

FF - prefs.js: browser.search.defaulturl - hxxp://isearch.babylon.com/web/{searchTerms}?babsrc=browsersearch

FF - prefs.js: browser.search.selectedEngine - MyStart Search

FF - prefs.js: browser.startup.homepage - hxxp://mystart.incredimail.com/mb111?a=1jSpmydGEK3

FF - prefs.js: keyword.URL - hxxp://mystart.incredimail.com/mb111/?loc=ff_address_bar&a=1jSpmydGEK3&search=

FF - user.js: keyword.URL - hxxp://mp3rocketsearch.com/?prt=mp3rockettb02ff&Keywords=

Sla dit bestand op als CFScript in de map waar je combofix.exe hebt opgeslagen.

Sleep CFScript.txt in ComboFix.exe

Dit zal ComboFix doen herstarten. Start opnieuw op als dat gevraagd wordt.

Post na herstart de inhoud van de Combofix.txt in je volgende bericht

Link naar reactie

Delen op andere sites

Rob+65

Enthousiasteling

Rob+65

Geplaatst: 11 mei 2012

Auteur

- Delen

Geplaatst: 11 mei 2012

Hier is de combofix.txt.

ComboFix 12-05-11.02 - Administrator 11-05-2012 14:45:54.3.2 - x86

Microsoft Windows XP Professional 5.1.2600.3.1252.31.1043.18.2046.1347 [GMT 2:00]

Gestart vanuit: c:\documents and settings\Administrator\Mijn documenten\Downloads\Comp repareren\ComboFix.exe

gebruikte Opdracht switches :: c:\documents and settings\Administrator\Mijn documenten\Downloads\Comp repareren\CFScript.txt

AV: Avira Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}

AV: Lavasoft Ad-Watch Live! Anti-Virus *Disabled/Updated* {A1C4F2E0-7FDE-4917-AFAE-013EFC3EDE33}

.

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\docume~1\ADMINI~1\LOCALS~1\Temp\bd7c47bb-f5c0-417c-a180-ec348d87718a\CliSecureRT.dll

c:\documents and settings\Administrator\Local Settings\Temp\bd7c47bb-f5c0-417c-a180-ec348d87718a\CliSecureRT.dll

.

.

(((((((((((((((((((( Bestanden Gemaakt van 2012-04-11 to 2012-05-11 ))))))))))))))))))))))))))))))

.

.

2012-05-07 17:19 . 2012-05-11 12:42 -------- d--h--r- c:\documents and settings\Administrator\Onlangs geopend

2012-05-03 10:10 . 2000-12-26 13:35 49152 ----a-r- c:\windows\p1030cfg.exe

2012-05-03 10:10 . 2000-12-26 13:35 25169 ----a-r- c:\windows\system32\drivers\p1030cam.sys

2012-05-03 10:10 . 2000-12-26 13:35 167661 ----a-r- c:\windows\system32\drivers\p1030vid.sys

2012-05-03 10:10 . 2000-12-26 13:35 53248 ----a-r- c:\windows\system32\p1030hwx.dll

2012-05-03 10:10 . 2000-12-26 13:35 40960 ----a-r- c:\windows\system32\p1030ext.dll

2012-05-03 10:10 . 2000-12-26 13:35 28672 ----a-r- c:\windows\system32\p1030pin.dll

2012-05-03 10:10 . 2000-12-26 13:35 24576 ----a-r- c:\windows\system32\p1030vfw.dll

2012-05-03 10:10 . 2000-12-26 13:35 24576 ----a-r- c:\windows\system32\p1030pin.crl

2012-05-03 10:10 . 2000-12-26 13:35 24576 ----a-r- c:\windows\system32\p1030cfg.crl

2012-05-03 10:10 . 2000-12-26 13:35 18964 ----a-r- c:\windows\system32\p1030ext.ax

2012-05-03 10:10 . 2000-12-26 13:35 16429 ----a-r- c:\windows\system32\p1030usd.dll

2012-05-03 10:10 . 2000-12-26 13:35 13312 ----a-r- c:\windows\system32\p1030vfw.drv

2012-04-30 12:42 . 2012-04-30 12:42 -------- d-----w- c:\program files\Common Files\Skype

2012-04-28 11:18 . 2012-04-28 11:18 -------- d-----w- c:\program files\Rovio

2012-04-24 13:24 . 2012-02-24 09:14 181432 ----a-w- c:\windows\system32\drivers\ssudmdm.sys

2012-04-24 13:24 . 2012-02-24 09:14 80824 ----a-w- c:\windows\system32\drivers\ssudbus.sys

2012-04-21 06:24 . 2012-04-21 06:24 -------- d-----w- c:\program files\Free PDF to Word Doc Converter

2012-04-13 13:29 . 2012-04-13 13:29 -------- d-----w- c:\documents and settings\Administrator\Application Data\Temp

2012-04-13 13:14 . 2012-04-13 13:14 -------- d-----w- c:\program files\MyFree Codec

2012-04-13 13:11 . 2012-05-08 11:53 -------- d-----w- C:\Temp

2012-04-13 13:07 . 2012-04-13 17:35 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Samsung

2012-04-13 13:07 . 2012-04-13 13:07 -------- d-----w- c:\documents and settings\Administrator\Application Data\Samsung

2012-04-13 13:06 . 2010-12-21 05:55 12544 ----a-w- c:\windows\system32\drivers\ssm_cm.sys

2012-04-13 13:06 . 2010-12-21 05:55 12416 ----a-w- c:\windows\system32\drivers\ssm_wh.sys

2012-04-13 13:05 . 2012-03-28 20:11 4659712 ----a-w- c:\windows\system32\Redemption.dll

2012-04-13 13:05 . 2012-04-13 13:05 -------- d-----w- c:\program files\MarkAny

2012-04-13 13:05 . 2012-03-28 20:11 821824 ----a-w- c:\windows\system32\dgderapi.dll

2012-04-13 13:05 . 2012-03-28 20:11 319456 ----a-w- c:\windows\system32\DIFxAPI.dll

2012-04-13 13:05 . 2012-03-28 20:11 20032 ----a-w- c:\windows\system32\drivers\dgderdrv.sys

2012-04-13 13:04 . 2012-04-13 13:06 -------- d-----w- c:\program files\Samsung

2012-04-13 13:04 . 2012-04-13 13:05 -------- d-----w- c:\documents and settings\All Users\Application Data\Samsung

2012-04-13 13:03 . 2012-04-13 13:03 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Downloaded Installations

.

.

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2012-05-11 11:51 . 2012-03-29 08:36 419488 ----a-w- c:\windows\system32\FlashPlayerApp.exe

2012-05-11 11:51 . 2011-05-20 15:39 70304 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2012-05-08 20:04 . 2012-01-27 14:52 137928 ----a-w- c:\windows\system32\drivers\avipbb.sys

2012-05-08 20:04 . 2012-01-27 14:52 83392 ----a-w- c:\windows\system32\drivers\avgntflt.sys

2012-04-04 13:56 . 2012-01-27 10:57 22344 ----a-w- c:\windows\system32\drivers\mbam.sys

2012-03-28 20:11 . 2012-03-28 20:11 90112 ----a-w- c:\windows\MAMCityDownload.ocx

2012-03-28 20:11 . 2012-03-28 20:11 325552 ----a-w- c:\windows\MASetupCaller.dll

2012-03-28 20:11 . 2012-03-28 20:11 30568 ----a-w- c:\windows\MusiccityDownload.exe

2012-03-28 20:11 . 2012-03-28 20:11 974848 ----a-w- c:\windows\system32\cis-2.4.dll

2012-03-28 20:11 . 2012-03-28 20:11 81920 ----a-w- c:\windows\system32\issacapi_bs-2.3.dll

2012-03-28 20:11 . 2012-03-28 20:11 65536 ----a-w- c:\windows\system32\issacapi_pe-2.3.dll

2012-03-28 20:11 . 2012-03-28 20:11 57344 ----a-w- c:\windows\system32\MTXSYNCICON.dll

2012-03-28 20:11 . 2012-03-28 20:11 57344 ----a-w- c:\windows\system32\MK_Lyric.dll

2012-03-28 20:11 . 2012-03-28 20:11 57344 ----a-w- c:\windows\system32\issacapi_se-2.3.dll

2012-03-28 20:11 . 2012-03-28 20:11 569344 ----a-w- c:\windows\system32\muzdecode.ax

2012-03-28 20:11 . 2012-03-28 20:11 491520 ----a-w- c:\windows\system32\muzapp.dll

2012-03-28 20:11 . 2012-03-28 20:11 49152 ----a-w- c:\windows\system32\MaJGUILib.dll

2012-03-28 20:11 . 2012-03-28 20:11 45320 ----a-w- c:\windows\system32\MAMACExtract.dll

2012-03-28 20:11 . 2012-03-28 20:11 45056 ----a-w- c:\windows\system32\MaXMLProto.dll

2012-03-28 20:11 . 2012-03-28 20:11 45056 ----a-w- c:\windows\system32\MACXMLProto.dll

2012-03-28 20:11 . 2012-03-28 20:11 40960 ----a-w- c:\windows\system32\MTTELECHIP.dll

2012-03-28 20:11 . 2012-03-28 20:11 352256 ----a-w- c:\windows\system32\MSLUR71.dll

2012-03-28 20:11 . 2012-03-28 20:11 258048 ----a-w- c:\windows\system32\muzoggsp.ax

2012-03-28 20:11 . 2012-03-28 20:11 245760 ----a-w- c:\windows\system32\MSCLib.dll

2012-03-28 20:11 . 2012-03-28 20:11 24576 ----a-w- c:\windows\system32\MASetupCleaner.exe

2012-03-28 20:11 . 2012-03-28 20:11 200704 ----a-w- c:\windows\system32\muzwmts.dll

2012-03-28 20:11 . 2012-03-28 20:11 155648 ----a-w- c:\windows\system32\MSFLib.dll

2012-03-28 20:11 . 2012-03-28 20:11 143360 ----a-w- c:\windows\system32\3DAudio.ax

2012-03-28 20:11 . 2012-03-28 20:11 14336 ----a-w- c:\windows\system32\avrt.dll

2012-03-28 20:11 . 2012-03-28 20:11 135168 ----a-w- c:\windows\system32\muzaf1.dll

2012-03-28 20:11 . 2012-03-28 20:11 131072 ----a-w- c:\windows\system32\muzmpgsp.ax

2012-03-28 20:11 . 2012-03-28 20:11 122880 ----a-w- c:\windows\system32\muzeffect.ax

2012-03-28 20:11 . 2012-03-28 20:11 118784 ----a-w- c:\windows\system32\MaDRM.dll

2012-03-28 20:11 . 2012-03-28 20:11 110592 ----a-w- c:\windows\system32\muzmp4sp.ax

2012-02-29 16:47 . 2001-09-07 12:00 26112 ----a-w- c:\windows\system32\userinit.exe

2012-05-03 16:07 . 2011-06-21 17:14 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll

2008-04-14 17:02 413696 --sh--w- c:\windows\system32\msvcp60.dll

.

.

((((((((((((((((((((((((((((( SnapShot@2012-05-10_11.55.31 )))))))))))))))))))))))))))))))))))))))))

.

+ 2012-05-11 12:57 . 2012-05-11 12:57 16384 c:\windows\Temp\Perflib_Perfdata_a28.dat

- 2001-09-07 12:00 . 2012-05-09 17:21 658810 c:\windows\system32\perfh013.dat

+ 2001-09-07 12:00 . 2012-05-11 12:42 658810 c:\windows\system32\perfh013.dat

+ 2001-09-07 12:00 . 2012-05-11 12:42 576616 c:\windows\system32\perfh009.dat

- 2001-09-07 12:00 . 2012-05-09 17:21 576616 c:\windows\system32\perfh009.dat

- 2001-09-07 12:00 . 2012-05-09 17:21 143584 c:\windows\system32\perfc013.dat

+ 2001-09-07 12:00 . 2012-05-11 12:42 143584 c:\windows\system32\perfc013.dat

+ 2001-09-07 12:00 . 2012-05-11 12:42 115208 c:\windows\system32\perfc009.dat

- 2001-09-07 12:00 . 2012-05-09 17:21 115208 c:\windows\system32\perfc009.dat

+ 2012-05-11 11:51 . 2012-05-11 11:51 351904 c:\windows\system32\Macromed\Flash\FlashUtil32_11_2_202_235_Plugin.exe

+ 2012-03-29 08:36 . 2012-05-11 11:51 257696 c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

+ 2012-05-11 11:51 . 2012-05-11 11:51 8797856 c:\windows\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2007-09-02 495616]

"Remote Control Editor"="c:\program files\Common Files\TerraTec\Remote\TTTVRC.exe" [2010-06-09 1689088]

"KiesPDLR"="c:\program files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe" [2012-03-31 21392]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RTHDCPL"="RTHDCPL.EXE" [2007-12-20 16860672]

"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2010-04-03 110696]

"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-04-03 13670504]

"PinnacleDriverCheck"="c:\windows\system32\PSDrvCheck.exe" [2004-03-10 406016]

"ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2005-02-17 221184]

"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2005-02-17 81920]

"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]

"BambooCore"="c:\program files\Bamboo Dock\BambooCore.exe" [2011-09-28 646232]

"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2012-05-08 348624]

"itype"="c:\program files\Microsoft IntelliType Pro\itype.exe" [2009-11-05 1505144]

.

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]

.

c:\documents and settings\Robert\Menu Start\Programma's\Opstarten\

FSL Launcher.lnk - c:\program files\FSL\FSL_Launcher\FSL_Launcher.exe [2010-5-4 1287168]

.

c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\

NETGEAR WG311v3 Smart Wizard.lnk - c:\program files\NETGEAR\WG311v3\wlancfg5.exe [2006-1-26 1486848]

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]

@="Service"

.

[HKLM\~\startupfolder\C:^Documents and Settings^Administrator^Menu Start^Programma's^Opstarten^OneNote 2007 Schermopname en Snel starten.lnk]

path=c:\documents and settings\Administrator\Menu Start\Programma's\Opstarten\OneNote 2007 Schermopname en Snel starten.lnk

backup=c:\windows\pss\OneNote 2007 Schermopname en Snel starten.lnkStartup

.

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Device Monitor.lnk]

path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Device Monitor.lnk

backup=c:\windows\pss\Device Monitor.lnkCommon Startup

.

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Remote Control.lnk]

path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Remote Control.lnk

backup=c:\windows\pss\Remote Control.lnkCommon Startup

.

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^TMMonitor.lnk]

path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\TMMonitor.lnk

backup=c:\windows\pss\TMMonitor.lnkCommon Startup

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GEST]

m‘|\ü [X]

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]

2012-01-03 07:37 843712 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcSoft Connection Service]

2010-10-27 18:17 207424 ----a-w- c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BambooScribe.exe]

2011-02-14 11:00 3002368 ----a-w- c:\program files\Vision Objects\Bamboo Scribe\BambooScribe.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BambooScribeAutoStart.vbe]

2011-02-14 10:54 1151 ----a-w- c:\program files\Vision Objects\Bamboo Scribe\BambooScribeAutoStart.vbe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]

2008-12-12 06:30 132392 ----a-w- c:\program files\Common Files\Nero\Lib\NMBgMonitor.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Creative WebCam Tray]

2002-02-25 00:30 53248 ----a-w- c:\program files\Creative\PC-CAM Center\CamTray.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]

2011-07-28 23:08 1259376 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EEventManager]

2008-12-04 11:24 665424 ------w- c:\progra~1\EPSONS~1\EVENTM~1\EEventManager.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]

2009-02-26 17:36 30040 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]

2008-12-12 06:31 1840424 ----a-w- c:\program files\Common Files\Nero\Lib\NMIndexStoreSvr.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\itype]

2009-11-05 20:45 1505144 ----a-w- c:\program files\Microsoft IntelliType Pro\itype.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesHelper]

2012-03-31 02:38 954256 ----a-w- c:\program files\Samsung\Kies\KiesHelper.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR]

2012-03-31 02:38 21392 ----a-w- c:\program files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]

2012-03-31 02:38 3521424 ----a-w- c:\program files\Samsung\Kies\KiesTrayAgent.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LanguageShortcut]

2007-02-07 14:21 54832 ----a-w- c:\program files\CyberLink\PowerDVD\Language\Language.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]

2008-04-14 17:03 1695232 ------w- c:\program files\Messenger\msmsgs.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]

2010-04-16 20:12 3872080 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBKeyScan]

2008-12-02 13:29 2221352 ----a-w- c:\program files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]

2008-11-06 06:25 570664 ----a-w- c:\program files\Common Files\Nero\Lib\NeroCheck.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Remote Control Editor]

2010-06-09 10:47 1689088 ----a-w- c:\program files\Common Files\TerraTec\Remote\TTTvRc.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl]

2007-02-07 14:24 71216 ------w- c:\program files\CyberLink\PowerDVD\PDVDServ.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

2010-02-18 09:43 248040 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrayServer]

2008-09-10 08:37 90112 ----a-w- c:\progra~1\MAGIX\VIDEO_~1\Trayserver_nl.exe

.

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=

"c:\\Program Files\\IncrediMail\\bin\\ImpCnt.exe"=

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"c:\\Program Files\\IncrediMail\\bin\\IncMail.exe"=

"c:\\Program Files\\IncrediMail\\bin\\ImApp.exe"=

"c:\\Program Files\\TerraTec\\TerraTec Home Cinema\\VersionCheck\\VersionCheck.exe"=

"c:\\Program Files\\BitComet\\BitComet.exe"=

"c:\\Program Files\\TerraTec\\TerraTec Home Cinema\\CinergyDvr.exe"=

"c:\\Program Files\\Orbitdownloader\\orbitnet.exe"=

"c:\\Program Files\\Epson Software\\Event Manager\\EEventManager.exe"=

"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=

"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=

"c:\\Program Files\\iMesh Applications\\iMesh\\iMesh.exe"=

"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=

"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=

"c:\\Program Files\\YouWave_Android\\vb\\VBoxSDL.exe"=

"c:\\Program Files\\Skype\\Phone\\Skype.exe"=

.

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]

"20210:TCP"= 20210:TCP:BitComet 20210 TCP

"20210:UDP"= 20210:UDP:BitComet 20210 UDP

.

R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [14-11-2011 12:11 64512]

R1 avkmgr;avkmgr;c:\windows\system32\drivers\avkmgr.sys [27-01-2012 16:52 36000]

R2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;c:\program files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [09-10-2009 5:45 169312]

R2 AntiVirSchedulerService;Avira Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [27-01-2012 16:52 86224]

R2 BBSvc;Bing Bar Update Service;c:\program files\Microsoft\BingBar\BBSvc.EXE [21-10-2011 16:23 196176]

R2 Fabs;FABS - Helping agent for MAGIX media database;c:\program files\Common Files\MAGIX Services\Database\bin\FABS.exe [27-08-2009 17:09 1253376]

R2 LGScsiCommandService;LG SCSI command service;c:\windows\system32\LGScsiCommandService.exe [07-12-2010 20:31 47616]

R2 TabletServicePen;TabletServicePen;c:\program files\Tablet\Pen\Pen_Tablet.exe [14-08-2011 18:59 6076272]

R2 TouchServicePen;Wacom Consumer Touch Service;c:\program files\Tablet\Pen\Pen_TouchService.exe [14-08-2011 18:59 616816]

R2 VBoxDrv;VBox Support Driver;c:\program files\YouWave_Android\vb\VBoxDrv.sys [15-07-2011 20:13 135680]

R3 PD1030VID;Creative WebCam Pro;c:\windows\system32\drivers\p1030vid.sys [03-05-2012 12:10 167661]

R3 wacmoumonitor;Wacom Mode Helper;c:\windows\system32\drivers\wacmoumonitor.sys [14-08-2011 18:59 16240]

R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [18-03-2010 13:16 753504]

S1 SASDIFSV;SASDIFSV;\??\c:\docume~1\ADMINI~1\LOCALS~1\Temp\SAS_SelfExtract\SASDIFSV.SYS --> c:\docume~1\ADMINI~1\LOCALS~1\Temp\SAS_SelfExtract\SASDIFSV.SYS [?]

S1 SAS***IL;SAS***IL;\??\c:\docume~1\ADMINI~1\LOCALS~1\Temp\SAS_SelfExtract\SAS***IL.SYS --> c:\docume~1\ADMINI~1\LOCALS~1\Temp\SAS_SelfExtract\SAS***IL.SYS [?]

S2 BBUpdate;BBUpdate;c:\program files\Microsoft\BingBar\SeaPort.EXE [13-10-2011 18:21 249648]

S2 Ca1528av;SPCA1528 Video Camera Service;c:\windows\system32\drivers\Ca1528av.sys [15-10-2010 19:06 516480]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18-03-2010 13:16 130384]

S2 gupdate;Google Updateservice (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [07-05-2010 13:11 135664]

S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\Lavasoft\Ad-Aware\AAWService.exe [18-08-2011 16:25 2152152]

S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [29-02-2012 8:50 158856]

S3 3xHybrid;3xHybrid service;c:\windows\system32\drivers\3xHybrid.sys [10-01-2011 17:37 945920]

S3 Bulk1528;SPCA1528 Still Camera Service;c:\windows\system32\drivers\Bulk1528.sys [15-10-2010 19:06 11648]

S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\drivers\ssudbus.sys [24-04-2012 15:24 80824]

S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [13-04-2012 15:05 20032]

S3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [27-01-2012 12:49 13192]

S3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [27-01-2012 12:49 8456]

S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files\Common Files\MAGIX Services\Database\bin\fbserver.exe [07-08-2008 11:10 3276800]

S3 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [07-05-2010 13:11 135664]

S3 nosGetPlusHelper;getPlus® Helper 3004;c:\windows\System32\svchost.exe -k nosGetPlusHelper [07-09-2001 14:00 14336]

S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\drivers\ssudmdm.sys [24-04-2012 15:24 181432]

S3 TESTCAP;Studio PCTV (Audio);c:\windows\system32\DRIVERS\PCTVAud.sys --> c:\windows\system32\DRIVERS\PCTVAud.sys [?]

S3 UDXTTM6010;Cinergy Hybrid-Stick BDA service;c:\windows\system32\drivers\UDXTTM6010.sys [08-10-2010 15:06 762232]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

nosGetPlusHelper REG_MULTI_SZ nosGetPlusHelper

.

Inhoud van de 'Gedeelde Taken' map

.

2012-05-11 c:\windows\Tasks\Ad-Aware Update (Weekly).job

- c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2011-08-18 10:13]

.

2011-10-24 c:\windows\Tasks\expressburnShakeIcon.job

- c:\program files\NCH Software\ExpressBurn\expressburn.exe [2011-10-21 17:45]

.

2011-10-24 c:\windows\Tasks\expressripShakeIcon.job

- c:\program files\NCH Swift Sound\ExpressRip\expressrip.exe [2011-10-21 17:45]

.

2012-05-11 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-07 11:11]

.

2012-05-11 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-07 11:11]

.

2011-10-24 c:\windows\Tasks\mixpadShakeIcon.job

- c:\program files\NCH Software\MixPad\mixpad.exe [2011-10-21 17:45]

.

2011-10-24 c:\windows\Tasks\wavepadShakeIcon.job

- c:\program files\NCH Software\WavePad\wavepad.exe [2011-10-21 17:44]

.

.

------- Bijkomende Scan -------

.

uStart Page = hxxp://doenormaal.eigenstart.nl/

IE: &D&ownload &met BitComet - c:\program files\BitComet\BitComet.exe/AddLink.htm

IE: &D&ownload alles met BitComet - c:\program files\BitComet\BitComet.exe/AddAllLink.htm

IE: &Download by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/201

IE: &Grab video by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/204

IE: Do&wnload selected by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/203

IE: Down&load all by Orbit - c:\program files\Orbitdownloader\orbitmxt.dll/202

IE: Download all links using BitComet - c:\program files\BitComet\BitComet.exe/AddAllLink.htm

IE: Download link using &BitComet - c:\program files\BitComet\BitComet.exe/AddLink.htm

IE: Download Video on This Page - c:\program files\Tomato\FLV Player\MDIEEx.dll/211

IE: Download Video This Links To - c:\program files\Tomato\FLV Player\MDIEEx.dll/212

IE: Free YouTube Download - c:\documents and settings\Administrator\Application Data\DVDVideoSoftIEHelpers\freeyoutubedownload.htm

IE: Free YouTube to MP3 Converter - c:\documents and settings\Administrator\Application Data\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm

Trusted Zone: motive.com\ponltbc.onl

Trusted Zone: OfflineRegistration

TCP: DhcpNameServer = 192.168.1.1 192.168.1.1

DPF: CabBuilder - hxxp://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab

FF - ProfilePath - c:\documents and settings\Administrator\Application Data\Mozilla\Firefox\Profiles\lu5u4d9t.default\

FF - user.js: keyword.enabled - 1

.

.

**************************************************************************

.

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover

Rootkit scan 2012-05-11 14:58

Windows 5.1.2600 Service Pack 3 NTFS

.

scannen van verborgen processen ...

.

scannen van verborgen autostart items ...

.

scannen van verborgen bestanden ...

.

Scan succesvol afgerond

verborgen bestanden: 0

.

**************************************************************************

.

[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{95808DC4-FA4A-4c74-92FE-5B863F82066B}]

"ImagePath"="\??\c:\program files\CyberLink\PowerDVD\000.fcl"

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

.

[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]

@Denied: (2) (LocalSystem)

"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,

d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,a0,cc,32,f6,e7,2f,57,48,95,03,5b,\

"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,

d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,a0,cc,32,f6,e7,2f,57,48,95,03,5b,\

.

[HKEY_USERS\S-1-5-21-1004336348-1123561945-839522115-500\Software\Microsoft\Internet Explorer\User Preferences]

@Denied: (2) (Administrator)

"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,

d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,6e,a2,0b,63,68,d4,98,45,94,25,82,\

"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,

d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,37,57,2b,bb,a0,b3,e9,43,aa,0a,89,\

.

--------------------- DLLs Geladen Onder Lopende Processen ---------------------

.

- - - - - - - > 'explorer.exe'(1580)

c:\program files\RocketDock\RocketDock.dll

c:\windows\system32\webcheck.dll

c:\windows\system32\WPDShServiceObj.dll

c:\windows\system32\PortableDeviceTypes.dll

c:\windows\system32\PortableDeviceApi.dll

c:\program files\Microsoft Silverlight\xapauthenticodesip.dll

c:\program files\Microsoft Office\Office12\1043\GrooveIntlResource.dll

c:\program files\Epson Software\Easy Photo Print\EPTBL.dll

c:\program files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll

.

------------------------ Andere Aktieve Processen ------------------------

.

c:\windows\system32\nvsvc32.exe

c:\program files\Tablet\Pen\Pen_TouchUser.exe

c:\windows\RTHDCPL.EXE

c:\windows\system32\RUNDLL32.EXE

c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe

c:\program files\Avira\AntiVir Desktop\avguard.exe

c:\documents and settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40ST7.EXE

c:\documents and settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE

c:\program files\Java\jre6\bin\jqs.exe

c:\program files\Common Files\Motive\McciCMService.exe

c:\program files\Nero\Nero8\Nero BackItUp\NBService.exe

c:\program files\Bamboo Dock\Bamboo Dock\Bamboo Dock.exe

c:\windows\system32\IoctlSvc.exe

c:\windows\system32\PSIService.exe

c:\program files\CyberLink\Shared Files\RichVideo.exe

c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

c:\program files\Tablet\Pen\Pen_TabletUser.exe

c:\program files\Avira\AntiVir Desktop\avshadow.exe

c:\windows\system32\wscntfy.exe

c:\windows\System32\wbem\unsecapp.exe

c:\windows\system32\WISPTIS.EXE

.

**************************************************************************

.

Voltooingstijd: 2012-05-11 15:02:32 - machine werd herstart

ComboFix-quarantined-files.txt 2012-05-11 13:02

ComboFix2.txt 2012-05-10 12:01

.

Pre-Run: 23.558.340.608 bytes beschikbaar

Post-Run: 23.570.784.256 bytes beschikbaar

.

- - End Of File - - 2DB968AF6A6D954CA6D1A81456D50A61

Link naar reactie

Delen op andere sites

Grootmeester

kweezie wabbit

Geplaatst: 13 mei 2012

- Delen

Geplaatst: 13 mei 2012

Dit ziet er goed uit.

Nog last van vastlopen?

Link naar reactie

Delen op andere sites

Rob+65

Enthousiasteling

Rob+65

Geplaatst: 13 mei 2012

Auteur

- Delen

Geplaatst: 13 mei 2012 (aangepast)

Zaterdag avond vier keer vast gelopen.

Ik merkte op een gegeven moment wel dat de tv op de pc iedere keer hikte vast staan en weer verder gaan.

Maar daar kon ik wel door gaan met de pc wel met ook wat hikken ( vertragingen ).

Toen heb ik de teratec uit gezet dus geen tv kijken op de pc toen ging het goed.

toen heb ik op de cotrol/Alt/Del gedrukt en gekeken welke program's er draaide.

Toen heb ik de remoet control uit gezet van teratec dus de tv kijken die gebruik ik toch niet dacht ik.

Iets later weer de tv aan gezet op de PC en tot mijn verbazing stotterde de TV niet meer op de PC.

En verder geen vastlopers op de PC gehad.

Verder maar weer bekijken vandaag en morgen wat er gebeurd.

Groetjes Rob.

13 mei 2012 aangepast door Rob+65

Link naar reactie

Delen op andere sites

Grootmeester

kweezie wabbit

Geplaatst: 13 mei 2012

- Delen

Geplaatst: 13 mei 2012

Dan heeft het waarschijnlijk iets te maken met teratec en de remote control.

Hou dus vooral deze in de gaten.

Link naar reactie

Delen op andere sites

Rob+65

Enthousiasteling

Rob+65

Geplaatst: 13 mei 2012

Auteur

- Delen

Geplaatst: 13 mei 2012

Ja die hou ik zeker in de gaten.

En die laat ik uit staan omdat ik die toch niet gebruikt op de PC.

Ik doe het altijd via de nummer toetsen van het toetsenboard.

Op dit moment geen vast lopers van de TV op PC terwijl ik er mee bezig ben.

Verder hoor jue nog van mijn als het helemaal over is.

Alvast bedankt voor alles en de moeite.

Verder een fijne zondag vandaag.

Groetjes Rob.

Link naar reactie

Delen op andere sites

Rob+65

Enthousiasteling

Rob+65

Geplaatst: 21 mei 2012

Auteur

- Delen

Geplaatst: 21 mei 2012

Deze week maandag 2 x vast gelopen.

Dinsdag 0 x vast.

woensdag 2 x vast.

donderdag 0 x.

Vrijdag 0 x.

Zat 0x

Zondag 2 x vast gelopen.

Van morgen malware niets Virus scanner loopt vast de gehele PC op C:\windows\sustem32\catroot2\cdb.log

Hier liep hij van morgen daus weer helemaal op vast.

Weet niet hoeveel maal hij dit soort dingen controleerd als je ergen mee bezig bent.

Anders moet ik maar windows er op nieuw op gaan zetten maar weet niet of dat lukt naast windows 7 en dan ben ik natuurlijk van alles kwijt. dat ik dan helemaal op nieuw moet gaan maken en hoop dingen die niet eens meer gaan.

Groetjes Rob.

Link naar reactie

Delen op andere sites

Grootmeester

kweezie wabbit

Geplaatst: 21 mei 2012

- Delen

Geplaatst: 21 mei 2012

Maak eens een nieuw logje met hijackthis.

Link naar reactie

Delen op andere sites

Rob+65

Enthousiasteling

Rob+65

Geplaatst: 21 mei 2012

Auteur

- Delen

Geplaatst: 21 mei 2012

Hier een nieuw logje.

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 13:04:29, on 21-05-2012

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\nvsvc32.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Tablet\Pen\Pen_TouchService.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Tablet\Pen\Pen_TouchUser.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe

C:\WINDOWS\system32\spoolsv.exe

C:\Program Files\Avira\AntiVir Desktop\sched.exe

C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe

C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe

C:\Program Files\Avira\AntiVir Desktop\avguard.exe

C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40ST7.EXE

C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE

C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\WINDOWS\system32\LGScsiCommandService.exe

C:\Program Files\Common Files\Motive\McciCMService.exe

C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe

C:\WINDOWS\system32\IoctlSvc.exe

C:\WINDOWS\system32\PSIService.exe

C:\Program Files\CyberLink\Shared Files\RichVideo.exe

C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\WINDOWS\System32\svchost.exe

C:\Program Files\Tablet\Pen\Pen_Tablet.exe

C:\Program Files\Tablet\Pen\Pen_TabletUser.exe

C:\Program Files\Tablet\Pen\Pen_Tablet.exe

C:\Program Files\Avira\AntiVir Desktop\avshadow.exe

C:\WINDOWS\system32\wscntfy.exe

C:\WINDOWS\RTHDCPL.EXE

C:\WINDOWS\system32\RUNDLL32.EXE

C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe

C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe

C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe

C:\Program Files\Bamboo Dock\BambooCore.exe

C:\Program Files\Avira\AntiVir Desktop\avgnt.exe

C:\Program Files\Microsoft IntelliType Pro\itype.exe

C:\Program Files\RocketDock\RocketDock.exe

C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Common Files\TerraTec\Remote\TTTVRC.exe

C:\Program Files\Bamboo Dock\Bamboo Dock\Bamboo Dock.exe

C:\Program Files\NETGEAR\WG311v3\wlancfg5.exe

C:\Program Files\IncrediMail\bin\IncMail.exe

C:\WINDOWS\system32\WISPTIS.EXE

C:\Program Files\IncrediMail\Bin\ImApp.exe

C:\Program Files\Avant Browser\avant.exe

C:\Program Files\Avant Browser\gecko\firefox.exe

C:\Documents and Settings\Administrator\Bureaublad\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Doenormaal dan doe je gek genoeg. Rob, Paranormaal, Gezondheid, Muziek, Geldverdienen, Zoek, Startpagina's, Gedichten, Kinderen, Computer

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen

O2 - BHO: IEPlugin Class - {11222041-111B-46E3-BD29-EFB2449479B1} - C:\PROGRA~1\ArcSoft\VIDEOD~1\ARCURL~1.DLL

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll

O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.5.4.11.dll

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll

O2 - BHO: ToolbarBHO Class - {9519AF7E-638D-4933-BAD6-D33D23C79FE5} - C:\PROGRA~1\ArcSoft\RAWTHU~1\EXIFToolBar.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll

O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll

O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll

O3 - Toolbar: Grab Pro - {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - C:\Program Files\Orbitdownloader\GrabPro.dll

O3 - Toolbar: TerraTec Home Cinema - {AD6E6555-FB2C-47D4-8339-3E2965509877} - C:\PROGRA~1\TerraTec\TERRAT~1\THCDES~1.DLL

O3 - Toolbar: RAW Thumbnail Viewer - {F301665A-12F8-4331-804A-5BCBD379668C} - C:\PROGRA~1\ArcSoft\RAWTHU~1\EXIFToolBar.dll

O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE

O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit

O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup

O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg

O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup

O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start

O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"

O4 - HKLM\..\Run: [bambooCore] C:\Program Files\Bamboo Dock\BambooCore.exe

O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir Desktop\avgnt.exe" /min

O4 - HKLM\..\Run: [itype] "C:\Program Files\Microsoft IntelliType Pro\itype.exe"

O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"

O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [Remote Control Editor] "C:\Program Files\Common Files\TerraTec\Remote\TTTVRC.exe"

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')

O4 - Global Startup: NETGEAR WG311v3 Smart Wizard.lnk = C:\Program Files\NETGEAR\WG311v3\wlancfg5.exe

O8 - Extra context menu item: &D&ownload &met BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm

O8 - Extra context menu item: &D&ownload alles met BitComet - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm

O8 - Extra context menu item: &Download by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/201

O8 - Extra context menu item: &Grab video by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/204

O8 - Extra context menu item: Do&wnload selected by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/203

O8 - Extra context menu item: Down&load all by Orbit - res://C:\Program Files\Orbitdownloader\orbitmxt.dll/202

O8 - Extra context menu item: Download Video on This Page - res://C:\Program Files\Tomato\FLV Player\MDIEEx.dll/211

O8 - Extra context menu item: Download Video This Links To - res://C:\Program Files\Tomato\FLV Player\MDIEEx.dll/212

O8 - Extra context menu item: Free YouTube Download - C:\Documents and Settings\Administrator\Application Data\DVDVideoSoftIEHelpers\freeyoutubedownload.htm

O8 - Extra context menu item: Free YouTube to MP3 Converter - C:\Documents and Settings\Administrator\Application Data\DVDVideoSoftIEHelpers\freeyoutubetomp3converter.htm

O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O15 - Trusted Zone: http://ponltbc.onl.motive.com

O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab

O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL

O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll

O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll

O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe

O23 - Service: Adobe Active File Monitor V8 (AdobeActiveFileMonitor8.0) - Adobe Systems Incorporated - C:\Program Files\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe

O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\sched.exe

O23 - Service: Avira Realtime Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files\Avira\AntiVir Desktop\avguard.exe

O23 - Service: EPSON V5 Service4(01) (EPSON_EB_RPCV4_01) - SEIKO EPSON CORPORATION - C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40ST7.EXE

O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE

O23 - Service: FABS - Helping agent for MAGIX media database (Fabs) - MAGIX AG - C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe

O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe

O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: Lavasoft Ad-Aware Service - Lavasoft Limited - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe

O23 - Service: LG SCSI command service (LGScsiCommandService) - Mobile Leader Co.,Ltd. - C:\WINDOWS\system32\LGScsiCommandService.exe

O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe

O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe

O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe

O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe

O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe

O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe

O23 - Service: TabletServicePen - Wacom Technology, Corp. - C:\Program Files\Tablet\Pen\Pen_Tablet.exe

O23 - Service: Wacom Consumer Touch Service (TouchServicePen) - Wacom Technology, Corp. - C:\Program Files\Tablet\Pen\Pen_TouchService.exe

--

End of file - 14393 bytes

Link naar reactie

Delen op andere sites

Gast

Dit topic is nu gesloten voor nieuwe reacties.

Delen

Ga naar topic overzicht

Beste reacties in dit topic

Rob+65 22 berichten
kweezie wabbit 15 berichten
Jion 2 berichten

Populaire dagen

Welkom op PC Helpforum
- 0
  
  Vriendelijk verzoek: whitelist www.pc-helpforum.be in je adblocker.
  
  Sarah · 4 september 2017
- 0
  
  Hoe vind ik mijn geplaatste berichten terug?
  
  Sarah · 9 december 2014
- 1
  
  Hoe stel ik mijn vraag ?
  
  Sarah · 29 mei 2014
- 0
  
  Hoe post ik een antwoord?
  
  Sarah · 31 mei 2014
Leden statistieken
- Aantal leden
  
  40.805
- Meeste online
  
  1.765
  15 januari 2020
Nieuwste lid
nvra
Registratiedatum Gisteren om 11:59

×

×

Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.