Ga naar inhoud

Laptop Acer problemen met opstarten


Aanbevolen berichten

Je hebt AVG als antivirusprogramma. Is dat up-to-date ? En het valt ook op dat je keygens hebt gedownload. Dat is natuurlijk problemen zoeken, want je weet nooit wat voor rotzooi deze meebrengen op je computer. En vermits je deze download accepteert, maakt het niet uit of je bescherming OK is. Dan ben je natuurlijk (mogelijk) zelf de oorzaak van de besmetting.

Download 51a5bf3d99e8a-ComboFixlogo16.pngComboFix van één van de onderstaande locaties naar het bureaublad.

Bleeping Computer

Info Spyware

Schakel alle antivirus- en antispywareprogramma's uit, want deze kunnen namelijk conflicteren met ComboFix.

(hier of hier) kan je lezen hoe je de gebruikte beveiligingssoftware kunt uitschakelen.

  • Dubbelklik op "ComboFix" om de tool te starten, Windows Vista, 7 & 8 gebruikers zullen een melding krijgen van UAC (Gebruikersaccountbeheer), klik hier op Ja / yes.
  • Bij Windows XP computer zal ComboFix de "Recovery Console" installeren als deze nog niet aanwezig is. (Actieve internet verbinding is hier een vereiste).
  • Klik in het venster bij het 'Installeren van de Recovery Console' op "Ok"
  • Klik in het info scherm op "Ja" als de Recovery Console met succes is geïnstalleerd.
  • Klik in het scherm van de disclaimer op "I Agree", de benodigde onderdelen worden nu uitgepakt en middels ERUNT wordt er een register back-up gemaakt.
  • Wanneer dit gereed is zal ComboFix vanzelf starten, in het blauwe scherm zie u de voortgang van de systeemscan die wordt uitgevoerd.
  • Belangrijk! gebruik de computer tijdens de scan niet voor andere zaken.
  • Het kan voorkomen dat de computer meerdere malen opnieuw gestart moet worden zoals bijvoorbeeld bij de aanwezigheid van een rootkit, dit is normaal.
  • Wanneer ComboFix gereed is, zal het het een logbestand aanmaken. Post de inhoud van dit logbestand (te vinden als C:\ComboFix.txt) in je volgende bericht.

* Noot !!! Indien u één van de onderstaande meldingen krijgt na het gebruik van ComboFix herstart da de computer

  • Er is geprobeerd een ongeldige bewerking uit te voeren op een registersleutel die is gemarkeerd voor verwijdering.
  • Illegal operation attempted on a registry key that has been marked for deletion.

Zet het logje van Combofix in een volgende bericht.

Link naar reactie
Delen op andere sites

  • Reacties 26
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Beste reacties in dit topic

ComboFix 13-06-13.01 - Johan 14-06-2013 17:23:13.1.2 - x64

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.5813.3834 [GMT 2:00]

Gestart vanuit: c:\users\Johan\Desktop\ComboFix.exe

AV: AVG AntiVirus Free Edition 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}

SP: AVG AntiVirus Free Edition 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\programdata\1359067600.bdinstall.bin

c:\programdata\Wincert\WIN32C~1.DLL

c:\windows\SysWow64\Packet.dll

c:\windows\SysWow64\pthreadVC.dll

c:\windows\SysWow64\wpcap.dll

.

.

((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

-------\Legacy_NPF

-------\Service_npf

.

.

(((((((((((((((((((( Bestanden Gemaakt van 2013-05-14 to 2013-06-14 ))))))))))))))))))))))))))))))

.

.

2013-06-14 15:29 . 2013-06-14 15:29 -------- d-----w- c:\users\Default\AppData\Local\temp

2013-06-13 16:38 . 2013-06-13 16:38 388096 ----a-r- c:\users\Johan\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

2013-06-13 14:44 . 2013-06-13 14:44 -------- d-----w- c:\users\Johan\AppData\Roaming\Malwarebytes

2013-06-13 14:43 . 2013-06-13 14:43 -------- d-----w- c:\programdata\Malwarebytes

2013-06-13 14:43 . 2013-06-13 14:43 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware

2013-06-13 14:43 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys

2013-06-13 14:43 . 2013-06-13 14:43 -------- d-----w- c:\users\Johan\AppData\Local\Programs

2013-06-12 19:57 . 2013-06-12 19:57 -------- d-----w- c:\program files (x86)\Trend Micro

2013-06-12 09:33 . 2013-06-12 09:33 -------- d-----w- c:\programdata\Visan

2013-06-12 09:33 . 2013-06-12 09:33 -------- d-----w- c:\programdata\HP Photo Creations

2013-06-12 09:33 . 2013-06-12 09:33 -------- d-----w- c:\program files (x86)\HP Photo Creations

2013-06-12 09:32 . 2013-06-12 09:32 -------- d-----w- c:\users\Johan\AppData\Roaming\HpUpdate

2013-06-12 09:32 . 2012-10-17 02:31 741480 ------w- c:\windows\system32\HPDiscoPMa011.dll

2013-06-12 09:30 . 2013-06-12 09:30 -------- d-----w- c:\programdata\HP

2013-06-12 09:30 . 2013-06-12 09:32 -------- d-----w- c:\program files (x86)\HP

2013-06-12 09:29 . 2013-06-12 09:29 -------- d-----w- c:\program files\HP

2013-06-12 09:28 . 2013-06-12 09:35 -------- d-----w- c:\users\Johan\AppData\Local\HP

2013-06-03 17:39 . 2013-06-12 17:58 -------- d-----w- c:\program files (x86)\GreenTree Applications

2013-06-03 17:23 . 2013-06-12 17:58 -------- d-----w- c:\program files (x86)\DVDVideoSoft

2013-05-28 08:54 . 2013-06-09 08:56 -------- d-----w- c:\users\Johan\AppData\Local\Ahead

2013-05-28 08:54 . 2013-05-28 09:18 -------- d-----w- c:\users\Johan\AppData\Roaming\Ahead

2013-05-28 08:53 . 2013-05-28 08:54 -------- d-----w- c:\program files (x86)\Common Files\Ahead

2013-05-28 08:53 . 2013-05-28 08:53 -------- d-----w- c:\programdata\Nero

2013-05-28 08:53 . 2013-05-28 08:53 -------- d-----w- c:\program files (x86)\Nero

2013-05-16 18:19 . 2013-04-10 06:01 983400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys

2013-05-16 18:19 . 2013-04-10 06:01 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys

2013-05-16 18:19 . 2011-02-03 11:25 144384 ----a-w- c:\windows\system32\cdd.dll

2013-05-16 18:14 . 2013-02-27 05:52 14172672 ----a-w- c:\windows\system32\shell32.dll

2013-05-16 18:14 . 2013-02-27 05:48 1930752 ----a-w- c:\windows\system32\authui.dll

2013-05-16 18:14 . 2013-02-27 06:02 111448 ----a-w- c:\windows\system32\consent.exe

2013-05-16 18:14 . 2013-02-27 05:52 197120 ----a-w- c:\windows\system32\shdocvw.dll

2013-05-16 18:14 . 2013-02-27 05:47 70144 ----a-w- c:\windows\system32\appinfo.dll

2013-05-16 18:14 . 2013-02-27 04:49 1796096 ----a-w- c:\windows\SysWow64\authui.dll

2013-05-16 18:14 . 2013-03-19 05:53 48640 ----a-w- c:\windows\system32\wwanprotdim.dll

2013-05-16 18:14 . 2013-03-19 05:53 230400 ----a-w- c:\windows\system32\wwansvc.dll

2013-05-16 18:14 . 2013-04-10 03:30 3153920 ----a-w- c:\windows\system32\win32k.sys

.

.

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2013-06-12 10:56 . 2012-03-04 13:44 75825640 ----a-w- c:\windows\system32\MRT.exe

2013-06-12 09:31 . 2012-03-28 18:23 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe

2013-06-12 09:31 . 2011-10-27 12:12 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl

2013-05-24 19:11 . 2013-01-25 15:47 45856 ----a-w- c:\windows\system32\drivers\avgtpx64.sys

2013-05-17 12:01 . 2011-03-29 01:36 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

2013-05-15 08:14 . 2013-05-15 08:14 226304 ----a-w- c:\windows\system32\elshyph.dll

2013-05-15 08:14 . 2013-05-15 08:14 185344 ----a-w- c:\windows\SysWow64\elshyph.dll

2013-05-15 08:14 . 2013-05-15 08:14 158720 ----a-w- c:\windows\SysWow64\msls31.dll

2013-05-15 08:14 . 2013-05-15 08:14 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe

2013-05-15 08:14 . 2013-05-15 08:14 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll

2013-05-15 08:14 . 2013-05-15 08:14 523264 ----a-w- c:\windows\SysWow64\vbscript.dll

2013-05-15 08:14 . 2013-05-15 08:14 150528 ----a-w- c:\windows\SysWow64\iexpress.exe

2013-05-15 08:14 . 2013-05-15 08:14 138752 ----a-w- c:\windows\SysWow64\wextract.exe

2013-05-15 08:14 . 2013-05-15 08:14 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe

2013-05-15 08:14 . 2013-05-15 08:14 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll

2013-05-15 08:14 . 2013-05-15 08:14 38400 ----a-w- c:\windows\SysWow64\imgutil.dll

2013-05-15 08:14 . 2013-05-15 08:14 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe

2013-05-15 08:14 . 2013-05-15 08:14 12800 ----a-w- c:\windows\SysWow64\mshta.exe

2013-05-15 08:14 . 2013-05-15 08:14 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll

2013-05-15 08:14 . 2013-05-15 08:14 61952 ----a-w- c:\windows\SysWow64\tdc.ocx

2013-05-15 08:14 . 2013-05-15 08:14 361984 ----a-w- c:\windows\SysWow64\html.iec

2013-05-15 08:14 . 2013-05-15 08:14 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll

2013-05-15 08:14 . 2013-05-15 08:14 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl

2013-05-15 08:14 . 2013-05-15 08:14 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll

2013-05-15 08:14 . 2013-05-15 08:14 81408 ----a-w- c:\windows\system32\icardie.dll

2013-05-15 08:14 . 2013-05-15 08:14 762368 ----a-w- c:\windows\system32\ieapfltr.dll

2013-05-15 08:14 . 2013-05-15 08:14 452096 ----a-w- c:\windows\system32\dxtmsft.dll

2013-05-15 08:14 . 2013-05-15 08:14 441856 ----a-w- c:\windows\system32\html.iec

2013-05-15 08:14 . 2013-05-15 08:14 281600 ----a-w- c:\windows\system32\dxtrans.dll

2013-05-15 08:14 . 2013-05-15 08:14 270848 ----a-w- c:\windows\system32\iedkcs32.dll

2013-05-15 08:14 . 2013-05-15 08:14 235008 ----a-w- c:\windows\system32\url.dll

2013-05-15 08:14 . 2013-05-15 08:14 216064 ----a-w- c:\windows\system32\msls31.dll

2013-05-15 08:14 . 2013-05-15 08:14 197120 ----a-w- c:\windows\system32\msrating.dll

2013-05-15 08:14 . 2013-05-15 08:14 1400416 ----a-w- c:\windows\system32\ieapfltr.dat

2013-05-15 08:14 . 2013-05-15 08:14 97280 ----a-w- c:\windows\system32\mshtmled.dll

2013-05-15 08:14 . 2013-05-15 08:14 27648 ----a-w- c:\windows\system32\licmgr10.dll

2013-05-15 08:14 . 2013-05-15 08:14 247296 ----a-w- c:\windows\system32\webcheck.dll

2013-05-15 08:14 . 2013-05-15 08:14 167424 ----a-w- c:\windows\system32\iexpress.exe

2013-05-15 08:14 . 2013-05-15 08:14 1509376 ----a-w- c:\windows\system32\inetcpl.cpl

2013-05-15 08:14 . 2013-05-15 08:14 144896 ----a-w- c:\windows\system32\wextract.exe

2013-05-15 08:14 . 2013-05-15 08:14 102912 ----a-w- c:\windows\system32\inseng.dll

2013-05-15 08:14 . 2013-05-15 08:14 62976 ----a-w- c:\windows\system32\pngfilt.dll

2013-05-15 08:14 . 2013-05-15 08:14 599552 ----a-w- c:\windows\system32\vbscript.dll

2013-05-15 08:14 . 2013-05-15 08:14 51200 ----a-w- c:\windows\system32\imgutil.dll

2013-05-15 08:14 . 2013-05-15 08:14 173568 ----a-w- c:\windows\system32\ieUnatt.exe

2013-05-15 08:14 . 2013-05-15 08:14 149504 ----a-w- c:\windows\system32\occache.dll

2013-05-15 08:14 . 2013-05-15 08:14 13824 ----a-w- c:\windows\system32\mshta.exe

2013-05-15 08:14 . 2013-05-15 08:14 136192 ----a-w- c:\windows\system32\iepeers.dll

2013-05-15 08:14 . 2013-05-15 08:14 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe

2013-05-15 08:14 . 2013-05-15 08:14 77312 ----a-w- c:\windows\system32\tdc.ocx

2013-05-15 08:14 . 2013-05-15 08:14 52224 ----a-w- c:\windows\system32\msfeedsbs.dll

2013-05-15 08:14 . 2013-05-15 08:14 48640 ----a-w- c:\windows\system32\mshtmler.dll

2013-05-15 08:14 . 2013-05-15 08:14 135680 ----a-w- c:\windows\system32\IEAdvpack.dll

2013-05-15 08:14 . 2013-05-15 08:14 12800 ----a-w- c:\windows\system32\msfeedssync.exe

2013-05-15 08:13 . 2013-05-15 08:13 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 2560 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 2560 ---ha-w- c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 1158144 ----a-w- c:\windows\SysWow64\XpsPrint.dll

2013-05-15 08:13 . 2013-05-15 08:13 10752 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 10752 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 522752 ----a-w- c:\windows\system32\XpsGdiConverter.dll

2013-05-15 08:13 . 2013-05-15 08:13 465920 ----a-w- c:\windows\system32\WMPhoto.dll

2013-05-15 08:13 . 2013-05-15 08:13 364544 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll

2013-05-15 08:13 . 2013-05-15 08:13 2284544 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll

2013-05-15 08:13 . 2013-05-15 08:13 1682432 ----a-w- c:\windows\system32\XpsPrint.dll

2013-05-15 08:13 . 2013-05-15 08:13 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll

2013-05-15 08:13 . 2013-05-15 08:13 3928064 ----a-w- c:\windows\system32\d2d1.dll

2013-05-15 08:13 . 2013-05-15 08:13 363008 ----a-w- c:\windows\system32\dxgi.dll

2013-05-15 08:13 . 2013-05-15 08:13 2776576 ----a-w- c:\windows\system32\msmpeg2vdec.dll

2013-05-15 08:13 . 2013-05-15 08:13 2565120 ----a-w- c:\windows\system32\d3d10warp.dll

2013-05-15 08:13 . 2013-05-15 08:13 220160 ----a-w- c:\windows\SysWow64\d3d10core.dll

2013-05-15 08:13 . 2013-05-15 08:13 207872 ----a-w- c:\windows\SysWow64\WindowsCodecsExt.dll

2013-05-15 08:13 . 2013-05-15 08:13 1247744 ----a-w- c:\windows\SysWow64\DWrite.dll

2013-05-15 08:13 . 2013-05-15 08:13 1175552 ----a-w- c:\windows\system32\FntCache.dll

2013-05-15 08:13 . 2013-05-15 08:13 1080832 ----a-w- c:\windows\SysWow64\d3d10.dll

2013-05-15 08:13 . 2013-05-15 08:13 648192 ----a-w- c:\windows\system32\d3d10level9.dll

2013-05-15 08:13 . 2013-05-15 08:13 604160 ----a-w- c:\windows\SysWow64\d3d10level9.dll

2013-05-15 08:13 . 2013-05-15 08:13 3419136 ----a-w- c:\windows\SysWow64\d2d1.dll

2013-05-15 08:13 . 2013-05-15 08:13 333312 ----a-w- c:\windows\system32\d3d10_1core.dll

2013-05-15 08:13 . 2013-05-15 08:13 296960 ----a-w- c:\windows\system32\d3d10core.dll

2013-05-15 08:13 . 2013-05-15 08:13 293376 ----a-w- c:\windows\SysWow64\dxgi.dll

2013-05-15 08:13 . 2013-05-15 08:13 249856 ----a-w- c:\windows\SysWow64\d3d10_1core.dll

2013-05-15 08:13 . 2013-05-15 08:13 245248 ----a-w- c:\windows\system32\WindowsCodecsExt.dll

2013-05-15 08:13 . 2013-05-15 08:13 1988096 ----a-w- c:\windows\SysWow64\d3d10warp.dll

2013-05-15 08:13 . 2013-05-15 08:13 194560 ----a-w- c:\windows\system32\d3d10_1.dll

2013-05-15 08:13 . 2013-05-15 08:13 1643520 ----a-w- c:\windows\system32\DWrite.dll

2013-05-15 08:13 . 2013-05-15 08:13 161792 ----a-w- c:\windows\SysWow64\d3d10_1.dll

.

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Spotify Web Helper"="c:\users\Johan\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2013-04-01 1104280]

"Spotify"="c:\users\Johan\AppData\Roaming\Spotify\Spotify.exe" [2013-04-01 4480920]

"HP Deskjet 3050A J611 series (NET)"="c:\program files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe" [2012-10-17 2573416]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"SuiteTray"="c:\program files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [2011-09-20 341360]

"BackupManagerTray"="c:\program files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" [2011-04-24 297280]

"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2011-07-01 1103440]

"ArcadeMovieService"="c:\program files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe" [2011-08-26 177448]

"AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2013-04-28 4408368]

"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]

"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2011-10-28 49208]

.

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"IsMyWinLockerReboot"="msiexec.exe" [2010-11-21 73216]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]

"LoadAppInit_DLLs"=1 (0x1)

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]

"aux"=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

@=""

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]

"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"ROC_ROC_JULY_P1"="c:\program files (x86)\AVG Secure Search\ROC_ROC_JULY_P1.exe" / /PROMPT /CMPID=ROC_JULY_P1

.

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]

R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]

R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys;c:\windows\SYSNATIVE\Drivers\ssadadb.sys [x]

R3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe [x]

R3 EgisTec Ticket Service;EgisTec Ticket Service;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [x]

R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]

R3 massfilter_hs;HS HandSet Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter_hs.sys;c:\windows\SYSNATIVE\drivers\massfilter_hs.sys [x]

R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssadbus.sys [x]

R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdfl.sys [x]

R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdm.sys [x]

R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys;c:\windows\SYSNATIVE\DRIVERS\ssadserd.sys [x]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]

R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]

R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]

R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]

S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x]

S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x]

S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x]

S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x]

S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]

S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x]

S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x]

S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x]

S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys;c:\windows\SYSNATIVE\drivers\avgtpx64.sys [x]

S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDFilter.sys [x]

S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDNServ.sys [x]

S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDVDisk.sys [x]

S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [x]

S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [x]

S2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.exe [x]

S2 DevoloNetworkService;devolo Network Service;c:\program files (x86)\devolo\dlan\devolonetsvc.exe;c:\program files (x86)\devolo\dlan\devolonetsvc.exe [x]

S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe;c:\program files (x86)\Launch Manager\dsiwmis.exe [x]

S2 ePowerSvc;ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [x]

S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe;c:\program files (x86)\Acer\Registration\GREGsvc.exe [x]

S2 Live Updater Service;Live Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe;c:\program files\Acer\Acer Updater\UpdaterService.exe [x]

S2 NPF_devolo;NetGroup Packet Filter Driver (devolo);c:\windows\sysWOW64\drivers\npf_devolo.sys;c:\windows\sysWOW64\drivers\npf_devolo.sys [x]

S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [x]

S2 UNS;Intel® Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]

S2 vToolbarUpdater15.2.0;vToolbarUpdater15.2.0;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe [x]

S3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\drivers\HECIx64.sys;c:\windows\SYSNATIVE\drivers\HECIx64.sys [x]

S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys;c:\windows\SYSNATIVE\DRIVERS\Impcd.sys [x]

S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]

S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x]

S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\System32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]

.

.

--- Andere Services/Drivers In Geheugen ---

.

*NewlyCreated* - WS2IFSL

.

Inhoud van de 'Gedeelde Taken' map

.

2013-06-13 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-28 09:31]

.

.

--------- X64 Entries -----------

.

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-08-15 167704]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-08-15 392472]

"Persistence"="c:\windows\system32\igfxpers.exe" [2011-08-15 416024]

"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-06-09 11860072]

"Power Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2011-08-02 1831016]

.

------- Bijkomende Scan -------

.

uStart Page = hxxp://www.google.be/

uLocal Page = c:\windows\system32\blank.htm

mLocal Page = c:\windows\SysWOW64\blank.htm

IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200

IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~4\Office12\EXCEL.EXE/3000

IE: Free YouTube Download - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm

IE: Free YouTube to MP3 Converter - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm

TCP: DhcpNameServer = 195.130.131.131 195.130.130.3

.

- - - - ORPHANS VERWIJDERD - - - -

.

Toolbar-Locked - (no file)

Wow6432Node-HKLM-Run-<NO NAME> - (no file)

HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start

Toolbar-Locked - (no file)

WebBrowser-{EBD898F8-FCF6-4694-BC3B-EABC7271EEB1} - (no file)

HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe

.

.

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.11"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\software\McAfee]

"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,

00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

------------------------ Andere Aktieve Processen ------------------------

.

c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

c:\program files (x86)\Launch Manager\LMutilps32.exe

c:\program files (x86)\Acer\clear.fi\MVP\.\Kernel\DMR\DMREngine.exe

c:\program files (x86)\Acer\clear.fi\MVP\clear.fiAgent.exe

c:\program files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

.

**************************************************************************

.

Voltooingstijd: 2013-06-14 17:36:43 - machine werd herstart

ComboFix-quarantined-files.txt 2013-06-14 15:36

.

Pre-Run: 410.907.516.928 bytes beschikbaar

Post-Run: 411.291.054.080 bytes beschikbaar

.

- - End Of File - - 8A84B6F1F02A35C53061196651D660CB

D41D8CD98F00B204E9800998ECF8427E

Link naar reactie
Delen op andere sites

Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

Schakel alle antivirus- en antispywareprogramma's uit, want deze kunnen namelijk conflicteren met ComboFix.

(hier of hier) kan je lezen hoe je de gebruikte beveiligingssoftware kunt uitschakelen.

Open een nieuw leeg Kladblok scherm, kopieer en plak hierin de volgende code.

Folder::

c:\program files (x86)\DVDVideoSoft

DDS::

IE: Free YouTube Download - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm

IE: Free YouTube to MP3 Converter - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytmp3downloader.htm

Sla dit op op je Bureaublad als CFScript.txt

Sleep CFScript.txt in ComboFix.exe zoals getoond in onderstaand voorbeeld:

CFScript.gif

Nu zal ComboFix vanzelf worden gestart.

Start opnieuw op als daarom gevraagd wordt, en post de inhoud van de Combofix.txt in je volgende bericht.

aangepast door kape
Link naar reactie
Delen op andere sites

ComboFix 13-06-13.01 - Johan 15-06-2013 9:26.2.2 - x64

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.5813.4261 [GMT 2:00]

Gestart vanuit: c:\users\Johan\Desktop\ComboFix.exe

gebruikte Opdracht switches :: c:\users\Johan\Desktop\CFScript.txt

AV: AVG AntiVirus Free Edition 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}

SP: AVG AntiVirus Free Edition 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

* Nieuw herstelpunt werd aangemaakt

.

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\program files (x86)\DVDVideoSoft

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\da-DK\DVDVideoSoft.AppFx.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\da-DK\DVDVideoSoft.DialogForms.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\da-DK\DVDVideoSoft.PresetEditor.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\da-DK\DVDVideoSoft.Resources.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\da-DK\FreeYouTubeToMP3Converter.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\de-DE\DVDVideoSoft.AppFx.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\de-DE\DVDVideoSoft.DialogForms.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\de-DE\DVDVideoSoft.PresetEditor.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\de-DE\DVDVideoSoft.Resources.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\de-DE\FreeYouTubeToMP3Converter.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\DVDVideoSoft.AVConverter.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\DVDVideoSoft.DVSiTunes.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\DVDVideoSoft.DVSVideoDownloader.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\DVDVideoSoft.MediaTagsEditor.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\DVDVideoSoft.PresetEditor.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\DVDVideoSoft.Presets.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\DVDVideoSoft.Resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\DVDVideoSoft.RockIdHelper.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\DVDVideoSoft.TaskbarManager.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\DVDVideoSoft.VideoFileToIPOD.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\DVDVideoSoft.YTConverterAppExt.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\el-GR\DVDVideoSoft.AppFx.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\el-GR\DVDVideoSoft.DialogForms.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\el-GR\DVDVideoSoft.PresetEditor.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\el-GR\DVDVideoSoft.Resources.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\el-GR\FreeYouTubeToMP3Converter.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\es-ES\DVDVideoSoft.AppFx.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\es-ES\DVDVideoSoft.DialogForms.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\es-ES\DVDVideoSoft.PresetEditor.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\es-ES\DVDVideoSoft.Resources.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\es-ES\FreeYouTubeToMP3Converter.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\fr-FR\DVDVideoSoft.AppFx.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\fr-FR\DVDVideoSoft.DialogForms.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\fr-FR\DVDVideoSoft.PresetEditor.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\fr-FR\DVDVideoSoft.Resources.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\fr-FR\FreeYouTubeToMP3Converter.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\FreeYouTubeToMP3Converter.exe

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\FreeYouTubeToMP3Converter.xml

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\FreeYouTubeToMP3ConverterProfile.xml

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\FreeYouTubeToMP3ConverterProfileD.xml

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\hu-HU\DVDVideoSoft.AppFx.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\hu-HU\DVDVideoSoft.DialogForms.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\hu-HU\DVDVideoSoft.PresetEditor.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\hu-HU\DVDVideoSoft.Resources.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\hu-HU\FreeYouTubeToMP3Converter.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\it-IT\DVDVideoSoft.AppFx.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\it-IT\DVDVideoSoft.DialogForms.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\it-IT\DVDVideoSoft.PresetEditor.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\it-IT\DVDVideoSoft.Resources.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\it-IT\FreeYouTubeToMP3Converter.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\ja-JP\DVDVideoSoft.AppFx.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\ja-JP\DVDVideoSoft.DialogForms.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\ja-JP\DVDVideoSoft.PresetEditor.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\ja-JP\DVDVideoSoft.Resources.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\ja-JP\FreeYouTubeToMP3Converter.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\nl-NL\DVDVideoSoft.AppFx.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\nl-NL\DVDVideoSoft.DialogForms.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\nl-NL\DVDVideoSoft.PresetEditor.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\nl-NL\DVDVideoSoft.Resources.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\nl-NL\FreeYouTubeToMP3Converter.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\pl-PL\DVDVideoSoft.AppFx.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\pl-PL\DVDVideoSoft.DialogForms.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\pl-PL\DVDVideoSoft.PresetEditor.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\pl-PL\DVDVideoSoft.Resources.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\pl-PL\FreeYouTubeToMP3Converter.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\pt-BR\DVDVideoSoft.AppFx.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\pt-BR\DVDVideoSoft.DialogForms.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\pt-BR\DVDVideoSoft.PresetEditor.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\pt-BR\DVDVideoSoft.Resources.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\pt-BR\FreeYouTubeToMP3Converter.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\pt-PT\DVDVideoSoft.AppFx.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\pt-PT\DVDVideoSoft.DialogForms.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\pt-PT\DVDVideoSoft.PresetEditor.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\pt-PT\DVDVideoSoft.Resources.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\pt-PT\FreeYouTubeToMP3Converter.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\ru-RU\DVDVideoSoft.AppFx.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\ru-RU\DVDVideoSoft.DialogForms.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\ru-RU\DVDVideoSoft.PresetEditor.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\ru-RU\DVDVideoSoft.Resources.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\ru-RU\FreeYouTubeToMP3Converter.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\sv-SE\DVDVideoSoft.AppFx.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\sv-SE\DVDVideoSoft.DialogForms.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\sv-SE\DVDVideoSoft.PresetEditor.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\sv-SE\DVDVideoSoft.Resources.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\sv-SE\FreeYouTubeToMP3Converter.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\taglib-sharp.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\tr-TR\DVDVideoSoft.AppFx.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\tr-TR\DVDVideoSoft.DialogForms.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\tr-TR\DVDVideoSoft.PresetEditor.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\tr-TR\DVDVideoSoft.Resources.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\tr-TR\FreeYouTubeToMP3Converter.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\zh-CHS\DVDVideoSoft.AppFx.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\zh-CHS\DVDVideoSoft.DialogForms.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\zh-CHS\DVDVideoSoft.PresetEditor.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\zh-CHS\DVDVideoSoft.Resources.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\zh-CHS\FreeYouTubeToMP3Converter.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\zh-CHT\DVDVideoSoft.AppFx.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\zh-CHT\DVDVideoSoft.DialogForms.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\zh-CHT\DVDVideoSoft.PresetEditor.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\zh-CHT\DVDVideoSoft.Resources.resources.dll

c:\program files (x86)\DVDVideoSoft\Free YouTube to MP3 Converter\zh-CHT\FreeYouTubeToMP3Converter.resources.dll

c:\program files (x86)\DVDVideoSoft\unins000.dat

c:\program files (x86)\DVDVideoSoft\unins000.exe

c:\program files (x86)\DVDVideoSoft\unins000.msg

.

.

(((((((((((((((((((( Bestanden Gemaakt van 2013-05-15 to 2013-06-15 ))))))))))))))))))))))))))))))

.

.

2013-06-15 07:32 . 2013-06-15 07:32 -------- d-----w- c:\users\Default\AppData\Local\temp

2013-06-13 16:38 . 2013-06-13 16:38 388096 ----a-r- c:\users\Johan\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

2013-06-13 14:44 . 2013-06-13 14:44 -------- d-----w- c:\users\Johan\AppData\Roaming\Malwarebytes

2013-06-13 14:43 . 2013-06-13 14:43 -------- d-----w- c:\programdata\Malwarebytes

2013-06-13 14:43 . 2013-06-13 14:43 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware

2013-06-13 14:43 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys

2013-06-13 14:43 . 2013-06-13 14:43 -------- d-----w- c:\users\Johan\AppData\Local\Programs

2013-06-12 19:57 . 2013-06-12 19:57 -------- d-----w- c:\program files (x86)\Trend Micro

2013-06-12 09:33 . 2013-06-12 09:33 -------- d-----w- c:\programdata\Visan

2013-06-12 09:33 . 2013-06-12 09:33 -------- d-----w- c:\programdata\HP Photo Creations

2013-06-12 09:33 . 2013-06-12 09:33 -------- d-----w- c:\program files (x86)\HP Photo Creations

2013-06-12 09:32 . 2013-06-12 09:32 -------- d-----w- c:\users\Johan\AppData\Roaming\HpUpdate

2013-06-12 09:32 . 2012-10-17 02:31 741480 ------w- c:\windows\system32\HPDiscoPMa011.dll

2013-06-12 09:30 . 2013-06-12 09:30 -------- d-----w- c:\programdata\HP

2013-06-12 09:30 . 2013-06-12 09:32 -------- d-----w- c:\program files (x86)\HP

2013-06-12 09:29 . 2013-06-12 09:29 -------- d-----w- c:\program files\HP

2013-06-12 09:28 . 2013-06-12 09:35 -------- d-----w- c:\users\Johan\AppData\Local\HP

2013-06-03 17:39 . 2013-06-12 17:58 -------- d-----w- c:\program files (x86)\GreenTree Applications

2013-05-28 08:54 . 2013-06-09 08:56 -------- d-----w- c:\users\Johan\AppData\Local\Ahead

2013-05-28 08:54 . 2013-05-28 09:18 -------- d-----w- c:\users\Johan\AppData\Roaming\Ahead

2013-05-28 08:53 . 2013-05-28 08:54 -------- d-----w- c:\program files (x86)\Common Files\Ahead

2013-05-28 08:53 . 2013-05-28 08:53 -------- d-----w- c:\programdata\Nero

2013-05-28 08:53 . 2013-05-28 08:53 -------- d-----w- c:\program files (x86)\Nero

2013-05-16 18:19 . 2013-04-10 06:01 983400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys

2013-05-16 18:19 . 2013-04-10 06:01 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys

2013-05-16 18:19 . 2011-02-03 11:25 144384 ----a-w- c:\windows\system32\cdd.dll

2013-05-16 18:14 . 2013-02-27 05:52 14172672 ----a-w- c:\windows\system32\shell32.dll

2013-05-16 18:14 . 2013-02-27 05:48 1930752 ----a-w- c:\windows\system32\authui.dll

2013-05-16 18:14 . 2013-02-27 06:02 111448 ----a-w- c:\windows\system32\consent.exe

2013-05-16 18:14 . 2013-02-27 05:52 197120 ----a-w- c:\windows\system32\shdocvw.dll

2013-05-16 18:14 . 2013-02-27 05:47 70144 ----a-w- c:\windows\system32\appinfo.dll

2013-05-16 18:14 . 2013-02-27 04:49 1796096 ----a-w- c:\windows\SysWow64\authui.dll

2013-05-16 18:14 . 2013-03-19 05:53 48640 ----a-w- c:\windows\system32\wwanprotdim.dll

2013-05-16 18:14 . 2013-03-19 05:53 230400 ----a-w- c:\windows\system32\wwansvc.dll

2013-05-16 18:14 . 2013-04-10 03:30 3153920 ----a-w- c:\windows\system32\win32k.sys

.

.

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2013-06-12 10:56 . 2012-03-04 13:44 75825640 ----a-w- c:\windows\system32\MRT.exe

2013-06-12 09:31 . 2012-03-28 18:23 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe

2013-06-12 09:31 . 2011-10-27 12:12 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl

2013-05-24 19:11 . 2013-01-25 15:47 45856 ----a-w- c:\windows\system32\drivers\avgtpx64.sys

2013-05-17 12:01 . 2011-03-29 01:36 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll

2013-05-15 08:14 . 2013-05-15 08:14 226304 ----a-w- c:\windows\system32\elshyph.dll

2013-05-15 08:14 . 2013-05-15 08:14 185344 ----a-w- c:\windows\SysWow64\elshyph.dll

2013-05-15 08:14 . 2013-05-15 08:14 158720 ----a-w- c:\windows\SysWow64\msls31.dll

2013-05-15 08:14 . 2013-05-15 08:14 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe

2013-05-15 08:14 . 2013-05-15 08:14 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll

2013-05-15 08:14 . 2013-05-15 08:14 523264 ----a-w- c:\windows\SysWow64\vbscript.dll

2013-05-15 08:14 . 2013-05-15 08:14 150528 ----a-w- c:\windows\SysWow64\iexpress.exe

2013-05-15 08:14 . 2013-05-15 08:14 138752 ----a-w- c:\windows\SysWow64\wextract.exe

2013-05-15 08:14 . 2013-05-15 08:14 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe

2013-05-15 08:14 . 2013-05-15 08:14 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll

2013-05-15 08:14 . 2013-05-15 08:14 38400 ----a-w- c:\windows\SysWow64\imgutil.dll

2013-05-15 08:14 . 2013-05-15 08:14 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe

2013-05-15 08:14 . 2013-05-15 08:14 12800 ----a-w- c:\windows\SysWow64\mshta.exe

2013-05-15 08:14 . 2013-05-15 08:14 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll

2013-05-15 08:14 . 2013-05-15 08:14 61952 ----a-w- c:\windows\SysWow64\tdc.ocx

2013-05-15 08:14 . 2013-05-15 08:14 361984 ----a-w- c:\windows\SysWow64\html.iec

2013-05-15 08:14 . 2013-05-15 08:14 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll

2013-05-15 08:14 . 2013-05-15 08:14 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl

2013-05-15 08:14 . 2013-05-15 08:14 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll

2013-05-15 08:14 . 2013-05-15 08:14 81408 ----a-w- c:\windows\system32\icardie.dll

2013-05-15 08:14 . 2013-05-15 08:14 762368 ----a-w- c:\windows\system32\ieapfltr.dll

2013-05-15 08:14 . 2013-05-15 08:14 452096 ----a-w- c:\windows\system32\dxtmsft.dll

2013-05-15 08:14 . 2013-05-15 08:14 441856 ----a-w- c:\windows\system32\html.iec

2013-05-15 08:14 . 2013-05-15 08:14 281600 ----a-w- c:\windows\system32\dxtrans.dll

2013-05-15 08:14 . 2013-05-15 08:14 270848 ----a-w- c:\windows\system32\iedkcs32.dll

2013-05-15 08:14 . 2013-05-15 08:14 235008 ----a-w- c:\windows\system32\url.dll

2013-05-15 08:14 . 2013-05-15 08:14 216064 ----a-w- c:\windows\system32\msls31.dll

2013-05-15 08:14 . 2013-05-15 08:14 197120 ----a-w- c:\windows\system32\msrating.dll

2013-05-15 08:14 . 2013-05-15 08:14 1400416 ----a-w- c:\windows\system32\ieapfltr.dat

2013-05-15 08:14 . 2013-05-15 08:14 97280 ----a-w- c:\windows\system32\mshtmled.dll

2013-05-15 08:14 . 2013-05-15 08:14 27648 ----a-w- c:\windows\system32\licmgr10.dll

2013-05-15 08:14 . 2013-05-15 08:14 247296 ----a-w- c:\windows\system32\webcheck.dll

2013-05-15 08:14 . 2013-05-15 08:14 167424 ----a-w- c:\windows\system32\iexpress.exe

2013-05-15 08:14 . 2013-05-15 08:14 1509376 ----a-w- c:\windows\system32\inetcpl.cpl

2013-05-15 08:14 . 2013-05-15 08:14 144896 ----a-w- c:\windows\system32\wextract.exe

2013-05-15 08:14 . 2013-05-15 08:14 102912 ----a-w- c:\windows\system32\inseng.dll

2013-05-15 08:14 . 2013-05-15 08:14 62976 ----a-w- c:\windows\system32\pngfilt.dll

2013-05-15 08:14 . 2013-05-15 08:14 599552 ----a-w- c:\windows\system32\vbscript.dll

2013-05-15 08:14 . 2013-05-15 08:14 51200 ----a-w- c:\windows\system32\imgutil.dll

2013-05-15 08:14 . 2013-05-15 08:14 173568 ----a-w- c:\windows\system32\ieUnatt.exe

2013-05-15 08:14 . 2013-05-15 08:14 149504 ----a-w- c:\windows\system32\occache.dll

2013-05-15 08:14 . 2013-05-15 08:14 13824 ----a-w- c:\windows\system32\mshta.exe

2013-05-15 08:14 . 2013-05-15 08:14 136192 ----a-w- c:\windows\system32\iepeers.dll

2013-05-15 08:14 . 2013-05-15 08:14 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe

2013-05-15 08:14 . 2013-05-15 08:14 77312 ----a-w- c:\windows\system32\tdc.ocx

2013-05-15 08:14 . 2013-05-15 08:14 52224 ----a-w- c:\windows\system32\msfeedsbs.dll

2013-05-15 08:14 . 2013-05-15 08:14 48640 ----a-w- c:\windows\system32\mshtmler.dll

2013-05-15 08:14 . 2013-05-15 08:14 135680 ----a-w- c:\windows\system32\IEAdvpack.dll

2013-05-15 08:14 . 2013-05-15 08:14 12800 ----a-w- c:\windows\system32\msfeedssync.exe

2013-05-15 08:13 . 2013-05-15 08:13 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 2560 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 2560 ---ha-w- c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 1158144 ----a-w- c:\windows\SysWow64\XpsPrint.dll

2013-05-15 08:13 . 2013-05-15 08:13 10752 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 10752 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l1-1-0.dll

2013-05-15 08:13 . 2013-05-15 08:13 522752 ----a-w- c:\windows\system32\XpsGdiConverter.dll

2013-05-15 08:13 . 2013-05-15 08:13 465920 ----a-w- c:\windows\system32\WMPhoto.dll

2013-05-15 08:13 . 2013-05-15 08:13 364544 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll

2013-05-15 08:13 . 2013-05-15 08:13 2284544 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll

2013-05-15 08:13 . 2013-05-15 08:13 1682432 ----a-w- c:\windows\system32\XpsPrint.dll

2013-05-15 08:13 . 2013-05-15 08:13 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll

2013-05-15 08:13 . 2013-05-15 08:13 3928064 ----a-w- c:\windows\system32\d2d1.dll

2013-05-15 08:13 . 2013-05-15 08:13 363008 ----a-w- c:\windows\system32\dxgi.dll

2013-05-15 08:13 . 2013-05-15 08:13 2776576 ----a-w- c:\windows\system32\msmpeg2vdec.dll

2013-05-15 08:13 . 2013-05-15 08:13 2565120 ----a-w- c:\windows\system32\d3d10warp.dll

2013-05-15 08:13 . 2013-05-15 08:13 220160 ----a-w- c:\windows\SysWow64\d3d10core.dll

2013-05-15 08:13 . 2013-05-15 08:13 207872 ----a-w- c:\windows\SysWow64\WindowsCodecsExt.dll

2013-05-15 08:13 . 2013-05-15 08:13 1247744 ----a-w- c:\windows\SysWow64\DWrite.dll

2013-05-15 08:13 . 2013-05-15 08:13 1175552 ----a-w- c:\windows\system32\FntCache.dll

2013-05-15 08:13 . 2013-05-15 08:13 1080832 ----a-w- c:\windows\SysWow64\d3d10.dll

2013-05-15 08:13 . 2013-05-15 08:13 648192 ----a-w- c:\windows\system32\d3d10level9.dll

2013-05-15 08:13 . 2013-05-15 08:13 604160 ----a-w- c:\windows\SysWow64\d3d10level9.dll

2013-05-15 08:13 . 2013-05-15 08:13 3419136 ----a-w- c:\windows\SysWow64\d2d1.dll

2013-05-15 08:13 . 2013-05-15 08:13 333312 ----a-w- c:\windows\system32\d3d10_1core.dll

2013-05-15 08:13 . 2013-05-15 08:13 296960 ----a-w- c:\windows\system32\d3d10core.dll

2013-05-15 08:13 . 2013-05-15 08:13 293376 ----a-w- c:\windows\SysWow64\dxgi.dll

2013-05-15 08:13 . 2013-05-15 08:13 249856 ----a-w- c:\windows\SysWow64\d3d10_1core.dll

2013-05-15 08:13 . 2013-05-15 08:13 245248 ----a-w- c:\windows\system32\WindowsCodecsExt.dll

2013-05-15 08:13 . 2013-05-15 08:13 1988096 ----a-w- c:\windows\SysWow64\d3d10warp.dll

2013-05-15 08:13 . 2013-05-15 08:13 194560 ----a-w- c:\windows\system32\d3d10_1.dll

2013-05-15 08:13 . 2013-05-15 08:13 1643520 ----a-w- c:\windows\system32\DWrite.dll

2013-05-15 08:13 . 2013-05-15 08:13 161792 ----a-w- c:\windows\SysWow64\d3d10_1.dll

.

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Spotify Web Helper"="c:\users\Johan\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2013-04-01 1104280]

"Spotify"="c:\users\Johan\AppData\Roaming\Spotify\Spotify.exe" [2013-04-01 4480920]

"HP Deskjet 3050A J611 series (NET)"="c:\program files\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe" [2012-10-17 2573416]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"SuiteTray"="c:\program files (x86)\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [2011-09-20 341360]

"BackupManagerTray"="c:\program files (x86)\NTI\Acer Backup Manager\BackupManagerTray.exe" [2011-04-24 297280]

"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2011-07-01 1103440]

"ArcadeMovieService"="c:\program files (x86)\Acer\clear.fi\Movie\clear.fiMovieService.exe" [2011-08-26 177448]

"AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2013-04-28 4408368]

"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]

"HP Software Update"="c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe" [2011-10-28 49208]

.

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"IsMyWinLockerReboot"="msiexec.exe" [2010-11-21 73216]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]

"LoadAppInit_DLLs"=1 (0x1)

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]

"aux"=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

@=""

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]

"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"ROC_ROC_JULY_P1"="c:\program files (x86)\AVG Secure Search\ROC_ROC_JULY_P1.exe" / /PROMPT /CMPID=ROC_JULY_P1

.

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]

R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]

R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys;c:\windows\SYSNATIVE\Drivers\ssadadb.sys [x]

R3 EgisTec Ticket Service;EgisTec Ticket Service;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [x]

R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]

R3 massfilter_hs;HS HandSet Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter_hs.sys;c:\windows\SYSNATIVE\drivers\massfilter_hs.sys [x]

R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssadbus.sys [x]

R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdfl.sys [x]

R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdm.sys [x]

R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys;c:\windows\SYSNATIVE\DRIVERS\ssadserd.sys [x]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]

R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]

R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]

R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]

S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x]

S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x]

S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x]

S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x]

S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]

S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x]

S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x]

S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x]

S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys;c:\windows\SYSNATIVE\drivers\avgtpx64.sys [x]

S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDFilter.sys [x]

S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDNServ.sys [x]

S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDVDisk.sys [x]

S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [x]

S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [x]

S2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.1.355.0\BBSvc.exe [x]

S2 DevoloNetworkService;devolo Network Service;c:\program files (x86)\devolo\dlan\devolonetsvc.exe;c:\program files (x86)\devolo\dlan\devolonetsvc.exe [x]

S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe;c:\program files (x86)\Launch Manager\dsiwmis.exe [x]

S2 ePowerSvc;ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [x]

S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe;c:\program files (x86)\Acer\Registration\GREGsvc.exe [x]

S2 Live Updater Service;Live Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe;c:\program files\Acer\Acer Updater\UpdaterService.exe [x]

S2 NPF_devolo;NetGroup Packet Filter Driver (devolo);c:\windows\sysWOW64\drivers\npf_devolo.sys;c:\windows\sysWOW64\drivers\npf_devolo.sys [x]

S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe;c:\program files (x86)\NTI\Acer Backup Manager\IScheduleSvc.exe [x]

S2 UNS;Intel® Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]

S2 vToolbarUpdater15.2.0;vToolbarUpdater15.2.0;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\15.2.0\ToolbarUpdater.exe [x]

S3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.1.355.0\SeaPort.exe [x]

S3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\drivers\HECIx64.sys;c:\windows\SYSNATIVE\drivers\HECIx64.sys [x]

S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys;c:\windows\SYSNATIVE\DRIVERS\Impcd.sys [x]

S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]

S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x]

S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\System32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]

.

.

Inhoud van de 'Gedeelde Taken' map

.

2013-06-15 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-28 09:31]

.

.

--------- X64 Entries -----------

.

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-08-15 167704]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-08-15 392472]

"Persistence"="c:\windows\system32\igfxpers.exe" [2011-08-15 416024]

"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [bU]

"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-06-09 11860072]

"Power Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2011-08-02 1831016]

.

------- Bijkomende Scan -------

.

uStart Page = hxxp://www.google.be/

uLocal Page = c:\windows\system32\blank.htm

mLocal Page = c:\windows\SysWOW64\blank.htm

IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200

IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~4\Office12\EXCEL.EXE/3000

TCP: DhcpNameServer = 195.130.131.131 195.130.130.3

.

- - - - ORPHANS VERWIJDERD - - - -

.

Toolbar-Locked - (no file)

Wow6432Node-HKLM-Run-<NO NAME> - (no file)

WebBrowser-{EBD898F8-FCF6-4694-BC3B-EABC7271EEB1} - (no file)

.

.

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.11"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\software\McAfee]

"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,

00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Voltooingstijd: 2013-06-15 09:34:27

ComboFix-quarantined-files.txt 2013-06-15 07:34

ComboFix2.txt 2013-06-14 15:36

.

Pre-Run: 412.684.369.920 bytes beschikbaar

Post-Run: 412.274.388.992 bytes beschikbaar

.

- - End Of File - - F49B4ED2000889C4C6E13C73EB2E0092

D41D8CD98F00B204E9800998ECF8427E

Link naar reactie
Delen op andere sites

Misschien laad u teveel in bij internet explorer...

Verwijder toolbars als u deze heeft ook doe dit :

-start internet explorer op

-druk rechtsboven aan op het tandwieltje

-ga naar internet opties

-ga naar de tab programmas

-en druk op manage add ons/ beheer invoegtoepassingen.

Er opent zich een nieuw scherm,

Klik in de kolom, toolbars and extensions.

Schakel alles uit wat u in de lijst ziet, en start vervolgens internet explorer op.

Link naar reactie
Delen op andere sites


×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.