Hallo daar was ik weer.
Ik heb combofix uitgevoerd, leek allemaal goed te gaan, ik heb nergens aangezeten tijdens de scan, na het opnieuw opstarten kon ik niet meer op internet explorer komen (kreeg een melding over het register en of ik het picrogram van ie wilde verwijderen) toen geprobeerd op via firefox het internet op te komen, lukt ook niet, toen gebprobeerd systeemherstel te doen, kreeg ik ook de melding dat het programma niet meer werkte en of ik het wilde verijderen, toen heb ik computer opnieuw opgestart in de veilige modus, en opnieuw systeemherstel gedaan, nadat dit was gedaan en de pc opnieuw opstartte, kreeg ik melding dat systeemherstel niet was gelukt.
Maar nu kon ik dus wel het internet op komen, dus waarschijnlijk is er wel iets veranderd van die laatste systeemherstel.
Hoe dan ook, ik heb iig het logje van combofix die ik hier zal plaatsen, plus een nieuwe hijackthislog, over die vervelende mannenstem kan ik zeggen dat die weg is, dit na het lezen van het bericht van Koot, ik heb nl ook een account bij google gmail, en stond aangemeld in internet erxplorer, ik heb me nu afgemeld, en hoor die stem niet meer. Ik ben wel benieuwd wat de schade nu aan mijn systeem is na al deze handelingen? enfin hier de logfiles van combofix en daarna hijackthis.
ComboFix 11-10-06.02 - Wil06-10-2011 13:39:53.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.4086.2733
Gestart vanuit: c:\users\Wil\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\google\common\google updater\googleupdaterservice.exe
c:\users\Wil\AppData\Local\Temp\ae201572-4813-4010-9ed2-ee29ddec066a\CliSecureRT.dll
c:\users\Wil\AppData\Roaming\vso_ts_preview.xml
c:\windows\shutdown.dll
c:\windows\SysWow64\comct332.ocx
c:\windows\SysWow64\muzapp.exe
c:\windows\SysWow64\system32
c:\windows\SysWow64\system32\3DAudio.ax
c:\windows\SysWow64\system32\avrt.dll
c:\windows\SysWow64\system32\cis-2.4.dll
c:\windows\SysWow64\system32\issacapi_bs-2.3.dll
c:\windows\SysWow64\system32\issacapi_pe-2.3.dll
c:\windows\SysWow64\system32\issacapi_se-2.3.dll
c:\windows\SysWow64\system32\MACXMLProto.dll
c:\windows\SysWow64\system32\MaDRM.dll
c:\windows\SysWow64\system32\MaJGUILib.dll
c:\windows\SysWow64\system32\MAMACExtract.dll
c:\windows\SysWow64\system32\MASetupCleaner.exe
c:\windows\SysWow64\system32\MaXMLProto.dll
c:\windows\SysWow64\system32\mfplat.dll
c:\windows\SysWow64\system32\MK_Lyric.dll
c:\windows\SysWow64\system32\MSCLib.dll
c:\windows\SysWow64\system32\MSFLib.dll
c:\windows\SysWow64\system32\MSLUR71.dll
c:\windows\SysWow64\system32\msvcp60.dll
c:\windows\SysWow64\system32\MTTELECHIP.dll
c:\windows\SysWow64\system32\MTXSYNCICON.dll
c:\windows\SysWow64\system32\muzaf1.dll
c:\windows\SysWow64\system32\muzapp.dll
c:\windows\SysWow64\system32\muzapp.exe
c:\windows\SysWow64\system32\muzdecode.ax
c:\windows\SysWow64\system32\muzeffect.ax
c:\windows\SysWow64\system32\muzmp4sp.ax
c:\windows\SysWow64\system32\muzmpgsp.ax
c:\windows\SysWow64\system32\muzoggsp.ax
c:\windows\SysWow64\system32\muzwmts.dll
c:\windows\SysWow64\system32\psapi.dll
D:\install.exe
.
.
(((((((((((((((((((( Bestanden Gemaakt van 2011-09-06 to 2011-10-06 ))))))))))))))))))))))))))))))
.
.
2011-10-06 11:45 . 2011-10-06 11:45 ——– d—–w- c:\users\UpdatusUser\AppData\Local\temp
2011-10-06 11:45 . 2011-10-06 11:45 ——– d—–w- c:\users\Default\AppData\Local\temp
2011-10-06 00:24 . 2011-10-06 00:24 ——– d—–w- c:\windows\system32\Macromed
2011-10-05 18:57 . 2011-10-05 18:57 388096 —-a-r- c:\users\Wil\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-10-05 18:57 . 2011-10-05 18:57 ——– d—–w- c:\program files (x86)\Trend Micro
2011-10-05 11:07 . 2011-10-05 11:07 ——– d—–w- c:\users\Wil\AppData\Roaming\SUPERAntiSpyware.com
2011-10-05 11:06 . 2011-10-05 11:07 ——– d—–w- c:\program files\SUPERAntiSpyware
2011-10-05 11:06 . 2011-10-05 11:06 ——– d—–w- c:\programdata\SUPERAntiSpyware.com
2011-09-30 11:24 . 2011-09-13 00:26 9049936 —-a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B691D4B9-2AE1-43EE-9758-1AD0A79D9746}\mpengine.dll
2011-09-30 01:19 . 2011-09-30 01:25 ——– d—–w- c:\users\Wil\AppData\Local\Loudtalks
2011-09-28 16:53 . 2011-09-28 16:53 ——– d–h–r- c:\users\Wil\AppData\Roaming\SecuROM
2011-09-28 12:21 . 2011-09-28 12:21 ——– d—–w- c:\users\Wil\AppData\Local\Babylon
2011-09-28 12:21 . 2011-09-28 12:21 ——– d—–w- c:\users\Wil\AppData\Roaming\Babylon
2011-09-28 12:21 . 2011-09-28 12:21 ——– d—–w- c:\programdata\Babylon
2011-09-28 12:21 . 2011-09-28 12:23 ——– d—–w- c:\program files (x86)\FoxTabFLVPlayer
2011-09-27 01:25 . 2011-09-27 01:25 ——– d—–w- c:\users\Wil\.swt
2011-09-26 03:24 . 2011-09-26 03:25 ——– d—–w- c:\programdata\Bluetooth
2011-09-26 03:19 . 2007-06-24 19:56 47368 —-a-w- c:\windows\system32\drivers\btcusb.sys
2011-09-26 03:19 . 2007-06-24 19:56 37384 —-a-w- c:\windows\system32\drivers\BlueletSCOAudio.sys
2011-09-26 03:19 . 2007-06-24 19:56 37896 —-a-w- c:\windows\system32\drivers\blueletaudio.sys
2011-09-26 03:19 . 2007-06-24 19:56 16392 —-a-w- c:\windows\system32\btinstall.dll
2011-09-26 03:19 . 2007-03-05 18:47 25360 —-a-w- c:\windows\system32\drivers\BtNetDrv.sys
2011-09-26 03:19 . 2007-03-05 18:44 23184 —-a-w- c:\windows\system32\drivers\VHIDMini.sys
2011-09-26 03:19 . 2007-03-05 18:42 49680 —-a-w- c:\windows\system32\drivers\BTHidMgr.sys
2011-09-26 03:19 . 2007-03-05 18:41 24976 —-a-w- c:\windows\system32\drivers\VBTEnum.sys
2011-09-26 03:19 . 2007-03-05 18:39 63248 —-a-w- c:\windows\system32\drivers\VcommMgr.sys
2011-09-26 03:19 . 2007-03-05 18:38 47120 —-a-w- c:\windows\system32\drivers\VComm.sys
2011-09-26 03:19 . 2006-10-09 13:29 32832 —-a-w- c:\windows\system32\drivers\BTNetFilter.sys
2011-09-26 03:19 . 2011-09-26 03:19 ——– d—–w- c:\program files (x86)\IVT Corporation
2011-09-26 02:13 . 2011-09-26 02:16 ——– d—–w- c:\program files (x86)\Network Stumbler
2011-09-25 22:02 . 2011-09-25 22:02 ——– d—–w- c:\programdata\EA Logs
2011-09-21 23:27 . 2011-09-21 23:27 ——– d—–w- c:\users\Wil\AppData\Roaming\f-secure
2011-09-15 22:10 . 2011-09-15 22:10 ——– d—–w- c:\users\Wil\AppData\Local\Apple Computer
2011-09-13 22:42 . 2011-09-13 22:43 ——– d—–w- c:\windows\SysWow64\Adobe
2011-09-09 22:31 . 2011-09-09 22:31 ——– d—–w- c:\program files (x86)\MyFree Codec
2011-09-09 21:52 . 2011-09-09 21:52 ——– d—–w- c:\program files (x86)\MSECache
2011-09-09 21:00 . 2011-09-09 21:00 ——– d—–w- c:\users\Wil\.android
2011-09-07 00:50 . 2011-09-26 14:11 ——– d—–w- c:\users\Wil\AppData\Local\Samsung
2011-09-07 00:49 . 2011-07-18 04:24 36328 —-a-w- c:\windows\system32\drivers\ssadadb.sys
2011-09-07 00:49 . 2011-07-18 04:24 1917416 —-a-w- c:\windows\system32\WdfCoInstaller01005.dll
2011-09-07 00:49 . 2011-07-18 04:24 1917416 —-a-w- c:\windows\system32\drivers\WdfCoInstaller01005.dll
2011-09-07 00:49 . 2011-07-18 04:24 177640 —-a-w- c:\windows\system32\drivers\ssadmdm.sys
2011-09-07 00:49 . 2011-07-18 04:24 16872 —-a-w- c:\windows\system32\drivers\ssadmdfl.sys
2011-09-07 00:49 . 2011-07-18 04:24 157672 —-a-w- c:\windows\system32\drivers\ssadbus.sys
2011-09-07 00:49 . 2011-07-18 04:24 13800 —-a-w- c:\windows\system32\drivers\ssadwhnt.sys
2011-09-07 00:49 . 2011-07-18 04:24 13800 —-a-w- c:\windows\system32\drivers\ssadwh.sys
2011-09-07 00:49 . 2011-07-18 04:24 13288 —-a-w- c:\windows\system32\drivers\ssadcmnt.sys
2011-09-07 00:49 . 2011-07-18 04:24 13288 —-a-w- c:\windows\system32\drivers\ssadcm.sys
2011-09-07 00:49 . 2011-07-18 04:24 146920 —-a-w- c:\windows\system32\drivers\ssadserd.sys
2011-09-07 00:48 . 2011-07-26 15:26 4659712 —-a-w- c:\windows\SysWow64\Redemption.dll
2011-09-07 00:47 . 2011-09-07 00:47 ——– d—–w- c:\program files (x86)\MarkAny
2011-09-07 00:47 . 2011-07-26 15:26 821824 —-a-w- c:\windows\SysWow64\dgderapi.dll
2011-09-07 00:47 . 2011-09-07 00:48 ——– d—–w- c:\program files (x86)\Samsung
2011-09-07 00:47 . 2011-09-07 00:48 ——– d—–w- c:\programdata\Samsung
2011-09-07 00:47 . 2011-09-07 00:47 ——– d—–w- c:\users\Wil\AppData\Roaming\Samsung
.
.
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-06 00:25 . 2011-05-17 12:32 414368 —-a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-10-05 23:36 . 2011-01-27 18:04 280736 —-a-w- c:\windows\SysWow64\PnkBstrB.exe
2011-10-05 23:36 . 2011-01-27 18:03 280736 —-a-w- c:\windows\SysWow64\PnkBstrB.xtr
2011-10-05 12:44 . 2011-01-27 18:04 280736 —-a-w- c:\windows\SysWow64\PnkBstrB.ex0
2011-10-02 23:50 . 2011-02-16 22:04 2516 –sha-w- c:\programdata\KGyGaAvL.sys
2011-09-29 21:13 . 2011-01-27 18:03 75136 —-a-w- c:\windows\SysWow64\PnkBstrA.exe
2011-09-28 22:39 . 2011-05-24 12:44 2434856 —-a-w- c:\windows\SysWow64\pbsvc_bc2.exe
2011-08-31 15:00 . 2011-01-28 02:28 25416 —-a-w- c:\windows\system32\drivers\mbam.sys
2011-08-05 14:38 . 2010-06-24 10:33 18328 —-a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-08-03 11:50 . 2011-08-10 00:01 8355944 —-a-w- c:\windows\system32\nvwgf2umx.dll
2011-08-03 11:50 . 2011-08-10 00:01 7254632 —-a-w- c:\windows\system32\nvcuda.dll
2011-08-03 11:50 . 2011-08-10 00:01 67176 —-a-w- c:\windows\system32\OpenCL.dll
2011-08-03 11:50 . 2011-08-10 00:01 57960 —-a-w- c:\windows\SysWow64\OpenCL.dll
2011-08-03 11:50 . 2011-08-10 00:01 5404776 —-a-w- c:\windows\SysWow64\nvcuda.dll
2011-08-03 11:50 . 2011-08-10 00:01 2532456 —-a-w- c:\windows\system32\nvcuvid.dll
2011-08-03 11:50 . 2011-08-10 00:01 24692840 —-a-w- c:\windows\system32\nvcompiler.dll
2011-08-03 11:50 . 2011-08-10 00:01 2412136 —-a-w- c:\windows\SysWow64\nvapi.dll
2011-08-03 11:50 . 2011-08-10 00:01 2391656 —-a-w- c:\windows\SysWow64\nvcuvid.dll
2011-08-03 11:50 . 2011-08-10 00:01 22470248 —-a-w- c:\windows\system32\nvoglv64.dll
2011-08-03 11:50 . 2011-08-10 00:01 2222184 —-a-w- c:\windows\system32\nvcuvenc.dll
2011-08-03 11:50 . 2011-08-10 00:01 2090088 —-a-w- c:\windows\SysWow64\nvcuvenc.dll
2011-08-03 11:50 . 2011-08-10 00:01 17193576 —-a-w- c:\windows\SysWow64\nvcompiler.dll
2011-08-03 11:50 . 2011-08-10 00:01 16595560 —-a-w- c:\windows\SysWow64\nvoglv32.dll
2011-08-03 11:50 . 2011-08-10 00:01 1519720 —-a-w- c:\windows\system32\nvdispco64.dll
2011-08-03 11:50 . 2011-08-10 00:01 15064168 —-a-w- c:\windows\system32\nvd3dumx.dll
2011-08-03 11:50 . 2011-08-10 00:01 1453160 —-a-w- c:\windows\system32\nvgenco64.dll
2011-08-03 11:50 . 2011-08-10 00:01 12909672 —-a-w- c:\windows\system32\drivers\nvlddmkm.sys
2011-08-03 11:50 . 2011-04-07 21:19 117864 —-a-w- c:\windows\system32\nvmctray.dll
2011-08-03 11:50 . 2011-04-07 21:19 980072 —-a-w- c:\windows\system32\nvvsvc.exe
2011-08-03 11:50 . 2011-04-07 21:19 836200 —-a-w- c:\windows\system32\easyupdatusapiu64.dll
2011-08-03 11:50 . 2011-04-07 21:19 6136936 —-a-w- c:\windows\system32\nvcpl.dll
2011-08-03 11:50 . 2011-04-07 21:19 2560616 —-a-w- c:\windows\system32\nvsvcr.dll
2011-08-03 11:50 . 2011-04-07 21:19 3021416 —-a-w- c:\windows\system32\nvsvc64.dll
2011-08-03 11:50 . 2011-04-01 20:55 6613096 —-a-w- c:\windows\SysWow64\nvwgf2um.dll
2011-08-03 11:50 . 2011-04-01 20:55 2758760 —-a-w- c:\windows\system32\nvapi64.dll
2011-08-03 11:50 . 2011-04-01 20:55 12636776 —-a-w- c:\windows\SysWow64\nvd3dum.dll
2011-08-03 11:50 . 2011-01-07 18:49 61544 —-a-w- c:\windows\system32\nvshext.dll
2011-08-03 01:31 . 2011-08-03 01:31 311912 —-a-w- c:\windows\SysWow64\nvStreaming.exe
2011-07-26 15:26 . 2011-07-26 15:26 90112 —-a-w- c:\windows\MAMCityDownload.ocx
2011-07-26 15:26 . 2011-07-26 15:26 325552 —-a-w- c:\windows\MASetupCaller.dll
2011-07-26 15:26 . 2011-07-26 15:26 30568 —-a-w- c:\windows\MusiccityDownload.exe
2011-07-26 15:26 . 2011-07-26 15:26 974848 —-a-w- c:\windows\SysWow64\cis-2.4.dll
2011-07-26 15:26 . 2011-07-26 15:26 81920 —-a-w- c:\windows\SysWow64\issacapi_bs-2.3.dll
2011-07-26 15:26 . 2011-07-26 15:26 65536 —-a-w- c:\windows\SysWow64\issacapi_pe-2.3.dll
2011-07-26 15:26 . 2011-07-26 15:26 57344 —-a-w- c:\windows\SysWow64\MTXSYNCICON.dll
2011-07-26 15:26 . 2011-07-26 15:26 57344 —-a-w- c:\windows\SysWow64\MK_Lyric.dll
2011-07-26 15:26 . 2011-07-26 15:26 57344 —-a-w- c:\windows\SysWow64\issacapi_se-2.3.dll
2011-07-26 15:26 . 2011-07-26 15:26 569344 —-a-w- c:\windows\SysWow64\muzdecode.ax
2011-07-26 15:26 . 2011-07-26 15:26 491520 —-a-w- c:\windows\SysWow64\muzapp.dll
2011-07-26 15:26 . 2011-07-26 15:26 49152 —-a-w- c:\windows\SysWow64\MaJGUILib.dll
2011-07-26 15:26 . 2011-07-26 15:26 45056 —-a-w- c:\windows\SysWow64\MaXMLProto.dll
2011-07-26 15:26 . 2011-07-26 15:26 45056 —-a-w- c:\windows\SysWow64\MACXMLProto.dll
2011-07-26 15:26 . 2011-07-26 15:26 40960 —-a-w- c:\windows\SysWow64\MTTELECHIP.dll
2011-07-26 15:26 . 2011-07-26 15:26 40960 —-a-w- c:\windows\SysWow64\MAMACExtract.dll
2011-07-26 15:26 . 2011-07-26 15:26 352256 —-a-w- c:\windows\SysWow64\MSLUR71.dll
2011-07-26 15:26 . 2011-07-26 15:26 258048 —-a-w- c:\windows\SysWow64\muzoggsp.ax
2011-07-26 15:26 . 2011-07-26 15:26 245760 —-a-w- c:\windows\SysWow64\MSCLib.dll
2011-07-26 15:26 . 2011-07-26 15:26 24576 —-a-w- c:\windows\SysWow64\MASetupCleaner.exe
2011-07-26 15:26 . 2011-07-26 15:26 200704 —-a-w- c:\windows\SysWow64\muzwmts.dll
2011-07-26 15:26 . 2011-07-26 15:26 155648 —-a-w- c:\windows\SysWow64\MSFLib.dll
2011-07-26 15:26 . 2011-07-26 15:26 143360 —-a-w- c:\windows\SysWow64\3DAudio.ax
2011-07-26 15:26 . 2011-07-26 15:26 135168 —-a-w- c:\windows\SysWow64\muzaf1.dll
2011-07-26 15:26 . 2011-07-26 15:26 131072 —-a-w- c:\windows\SysWow64\muzmpgsp.ax
2011-07-26 15:26 . 2011-07-26 15:26 122880 —-a-w- c:\windows\SysWow64\muzeffect.ax
2011-07-26 15:26 . 2011-07-26 15:26 118784 —-a-w- c:\windows\SysWow64\MaDRM.dll
2011-07-26 15:26 . 2011-07-26 15:26 110592 —-a-w- c:\windows\SysWow64\muzmp4sp.ax
2011-07-22 05:42 . 2011-08-10 00:38 2303488 —-a-w- c:\windows\system32\jscript9.dll
2011-07-22 05:36 . 2011-08-10 00:38 1389056 —-a-w- c:\windows\system32\wininet.dll
2011-07-22 05:32 . 2011-08-10 00:38 2382848 —-a-w- c:\windows\system32\mshtml.tlb
2011-07-22 02:54 . 2011-08-10 00:38 1797632 —-a-w- c:\windows\SysWow64\jscript9.dll
2011-07-22 02:48 . 2011-08-10 00:38 1126912 —-a-w- c:\windows\SysWow64\wininet.dll
2011-07-22 02:44 . 2011-08-10 00:38 2382848 —-a-w- c:\windows\SysWow64\mshtml.tlb
2011-07-16 05:41 . 2011-08-09 22:47 362496 —-a-w- c:\windows\system32\wow64win.dll
2011-07-16 05:41 . 2011-08-09 22:47 243200 —-a-w- c:\windows\system32\wow64.dll
2011-07-16 05:41 . 2011-08-09 22:47 13312 —-a-w- c:\windows\system32\wow64cpu.dll
2011-07-16 05:39 . 2011-08-09 22:47 16384 —-a-w- c:\windows\system32\ntvdm64.dll
2011-07-16 05:37 . 2011-08-09 22:47 421888 —-a-w- c:\windows\system32\KernelBase.dll
2011-07-16 05:21 . 2011-08-09 22:47 6144 —ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 4608 —ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 4096 —ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 4096 —ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 3584 —ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 3072 —ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 3072 —ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 3072 —ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 4608 —ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 4096 —ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 3584 —ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 3584 —ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 3584 —ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 3072 —ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 3584 —ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 3584 —ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 3072 —ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 3072 —ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 4096 —ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 5120 —ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 3072 —ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 3072 —ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2011-07-16 05:21 . 2011-08-09 22:47 3584 —ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
.
“msnmsgr”=“c:\program files (x86)\Windows Live\Messenger\msnmsgr.exe”
“IE New Window Maximizer”=“c:\program files (x86)\IE New Window Maximizer\iemaximizer.exe”
“Sidebar”=“c:\program files\Windows Sidebar\sidebar.exe”
“KiesPDLR”=“c:\program files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe”
“KiesHelper”=“c:\program files (x86)\Samsung\Kies\KiesHelper.exe”
“swg”=“c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe”
“SUPERAntiSpyware”=“c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe”
.
“RoxWatchTray”=“c:\program files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe”
“SunJavaUpdateSched”=“c:\program files (x86)\Common Files\Java\Java Update\jusched.exe”
“Adobe ARM”=“c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe”
“Google Desktop Search”=“c:\program files (x86)\Google\Google Desktop Search\GoogleDesktop.exe”
.
“ConsentPromptBehaviorAdmin”= 5 (0x5)
“ConsentPromptBehaviorUser”= 3 (0x3)
“EnableUIADesktopToggle”= 0 (0x0)
.
“AppInit_DLLs”=c:\progra~2\Google\GOOGLE~4\GoogleDesktopNetwork3.dll
.
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
@=“”
.
R0 Lbd;Lbd;c:\windows\system32\DRIVERS\Lbd.sys
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
R2 gupdate;Google Updateservice (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe
R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys
R3 btnetBUs;Bluetooth PAN Bus Service;c:\windows\system32\Drivers\btnetBus.sys
R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys
R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files (x86)\Google\Google Desktop Search\GoogleDesktop.exe
R3 gupdatem;Google Update-service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe
R3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\Drivers\IvtBtBus.sys
R3 Prot6Flt;Prot6Flt;c:\windows\system32\DRIVERS\Prot6Flt.sys
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe
S0 BtHidBus;Bluetooth HID Bus Service;c:\windows\System32\Drivers\BtHidBus.sys
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE
S2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7;c:\program files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
S2 AdobeActiveFileMonitor9.0;Adobe Active File Monitor V9;c:\program files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
S2 Akamai;Akamai NetSession Interface;c:\windows\System32\svchost.exe
S2 aksdf;aksdf;c:\windows\system32\drivers\aksdf.sys
S2 CDMA Device Service;CDMA Device Service;c:\program files (x86)\Samsung\USB Drivers\26_VIA_driver2\amd64\VIAService.exe
S2 hasplms;HASP License Manager;c:\windows\system32\hasplms.exe -run
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
S2 Start BT in service;Start BT in service;c:\program files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
S3 e1kexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver K;c:\windows\system32\DRIVERS\e1k62x64.sys
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys
.
.
Akamai REG_MULTI_SZ Akamai
.
Inhoud van de ‘Gedeelde Taken’ map
.
2011-10-06 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe
.
2011-10-06 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe
.
2011-10-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2976122148-4144669142-3091294923-1001Core.job
- c:\users\Wil\AppData\Local\Google\Update\GoogleUpdate.exe
.
2011-10-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2976122148-4144669142-3091294923-1001UA.job
- c:\users\Wil\AppData\Local\Google\Update\GoogleUpdate.exe
.
.
——— x86-64 ———–
.
.
“SunJavaUpdateSched”=“c:\program files\Java\jre6\bin\jusched.exe”
“RtHDVCpl”=“c:\program files\Realtek\Audio\HDA\RAVCpl64.exe”
“AdobeAAMUpdater-1.0”=“c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe”
.
“LoadAppInit_DLLs”=0x0
.
——- Bijkomende Scan ——-
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.nl/
mLocal Page = c:\windows\SysWOW64\blank.htm
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
TCP: DhcpNameServer = 212.54.40.25 212.54.35.25
FF - ProfilePath - c:\users\Wil\AppData\Roaming\Mozilla\Firefox\Profiles\gmpmkr2w.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.nl/
FF - prefs.js: keyword.URL - hxxp://nl.search.yahoo.com/search?ei=utf-8&fr=panda&type=panda2_0yatb&p=
FF - Ext: TexthelpHTMLControl: {34f35907-1bd4-4769-8143-960b725af31e} - c:\program files (x86)\Mozilla Firefox\extensions\{34f35907-1bd4-4769-8143-960b725af31e}
FF - Ext: Click to call with Skype: {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} - c:\program files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - c:\program files (x86)\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
.
- - - - ORPHANS VERWIJDERD - - - -
.
ShellIconOverlayIdentifiers-{F5D1CF73-C196-48F8-AAAC-B9181E22B4E6} - (no file)
ShellIconOverlayIdentifiers-{9AE343CB-BA45-4618-AF6A-0230EE6FC793} - (no file)
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc_bc2.exe
.
.
.
——————— VERGRENDELDE REGISTER SLEUTELS ———————
.
@Denied: (2) (LocalSystem)
“Progid”=“WindowsLiveMail.Email.1”
.
@Denied: (2) (LocalSystem)
“Progid”=“WindowsLiveMail.VCard.1”
.
“datasecu”=hex:d1,12,74,bc,d5,f9,78,7b,36,03,88,4e,6d,8b,54,77,16,ec,91,1d,25,
39,e0,c7,87,94,37,41,82,b5,32,1f,39,e7,fe,3f,0b,09,b0,61,42,4c,9b,cc,fa,51,\
“rkeysecu”=hex:74,6f,04,23,dd,5a,12,cf,9d,11,48,59,b8,d8,ed,c2
.
@Denied: (A 2) (Everyone)
@=“FlashBroker”
“LocalizedString”=“@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11c_ActiveX.exe,-101”
.
“Enabled”=dword:00000001
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11c_ActiveX.exe”
.
@=“{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”
.
@Denied: (A 2) (Everyone)
@=“Shockwave Flash Object”
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx”
“ThreadingModel”=“Apartment”
.
@=“0”
.
@=“ShockwaveFlash.ShockwaveFlash.10”
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx, 1”
.
@=“{D27CDB6B-AE6D-11cf-96B8-444553540000}”
.
@=“1.0”
.
@=“ShockwaveFlash.ShockwaveFlash”
.
@Denied: (A 2) (Everyone)
@=“Macromedia Flash Factory Object”
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx”
“ThreadingModel”=“Apartment”
.
@=“FlashFactory.FlashFactory.1”
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx, 1”
.
@=“{D27CDB6B-AE6D-11cf-96B8-444553540000}”
.
@=“1.0”
.
@=“FlashFactory.FlashFactory”
.
@Denied: (A 2) (Everyone)
@=“IFlashBroker4”
.
@=“{00020424-0000-0000-C000-000000000046}”
.
@=“{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”
“Version”=“1.0”
.
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
“BlindDial”=dword:00000000
.
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
“BlindDial”=dword:00000000
.
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
“BlindDial”=dword:00000000
.
@Denied: (Full) (Everyone)
.
———————— Andere Aktieve Processen ————————
.
c:\program files (x86)\IVT Corporation\BlueSoleil\BTNtService.exe
c:\windows\system32\hasplms.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
c:\program files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
c:\program files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
.
**************************************************************************
.
Voltooingstijd: 2011-10-06 13:50:52 - machine werd herstart
ComboFix-quarantined-files.txt 2011-10-06 11:50
.
Pre-Run: 189.831.725.056 bytes beschikbaar
Post-Run: 189.304.487.936 bytes beschikbaar
.
- - End Of File - - 993C026BC755E667B1306F40EC6E0D78
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:49:16, on 6-10-2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\IE New Window Maximizer\iemaximizer.exe
C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil11c_ActiveX.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O3 - Toolbar: WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files (x86)\WOT\WOT.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe”
O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe”
O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe”
O4 - HKLM\..\Run: “C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe” /startup
O4 - HKCU\..\Run: “C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe” /background
O4 - HKCU\..\Run: C:\Program Files (x86)\IE New Window Maximizer\iemaximizer.exe
O4 - HKCU\..\Run: C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: C:\Program Files (x86)\Samsung\Kies\KiesHelper.exe /s
O4 - HKCU\..\Run: “C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe”
O4 - HKCU\..\Run: C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra ‘Tools’ menuitem: Uninstall BitDefender Online Scanner - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\Windows\bdoscandel.exe
O9 - Extra button: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra ‘Tools’ menuitem: Click to call with Skype - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: Accelerated graphics
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
O16 - DPF: {4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} (BitDefender QuickScan Control) - http://quickscan.bitdefender.com/qsax/qsax.cab
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scanner/sources/en/scan8/oscan8.cab
O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://activex.unlimited.nl/AxisCamControl.cab
O16 - DPF: {BB21F850-63F4-4EC9-BF9D-565BD30C9AE9} (Emsisoft Web Malware Scan) - http://ax.emsisoft.com/emsisoft_webscan.cab
O16 - DPF: {CFCDAA03-8BE4-11CF-B84B-0020AFBBCCFA} - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\SysWOW64\Skype4COM.dll
O18 - Protocol: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files (x86)\WOT\WOT.dll
O20 - AppInit_DLLs: C:\PROGRA~2\Google\GOOGLE~4\GoogleDesktopNetwork3.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Active File Monitor V9 (AdobeActiveFileMonitor9.0) - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Elements 9 Organizer\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files (x86)\IVT Corporation\BlueSoleil\BTNtService.exe
O23 - Service: CDMA Device Service - Unknown owner - C:\Program Files (x86)\Samsung\USB Drivers\26_VIA_driver2\amd64\VIAService.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files (x86)\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Unknown owner - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe (file missing)
O23 - Service: HASP License Manager (hasplms) - Unknown owner - C:\Windows\system32\hasplms.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: Roxio UPnP Renderer 9 - Sonic Solutions - C:\Program Files (x86)\Common Files\Sonic Shared\RoxioUPnPRenderer9.exe
O23 - Service: Roxio Upnp Server 9 - Sonic Solutions - C:\Program Files (x86)\Common Files\Sonic Shared\RoxioUpnpService9.exe
O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files (x86)\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Start BT in service - Unknown owner - C:\Program Files (x86)\IVT Corporation\BlueSoleil\StartSkysolSvc.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version6\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
–
End of file - 11639 bytes
Doorzoek het forum
Zoeken met Startpagina
Startpagina Thema's
