kan er iemand naar mijn logjes kijken

fazantje

16-09-2012 21:33

Hoi Marianne,
Ja, verwijder AVG maar.
Als het gewoon niet lukt, dan in veilige modus.
Dit doe je tijdens de opstart van de computer meerdere keren op F8 te klikken.
Als alles klaar is kun je beters Avast nemen.
Succes,
Huib;)
marianne40

16-09-2012 22:09

Ik heb avg in de veilige modus verwijderd. Hieronder mijn logjes van combofix en hijcthis.
ComboFix 12-09-15.02 - tamaraaa 16-09-2012 21:53:18.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.4001.2382
Gestart vanuit: c:\users\tamaraaa\Downloads\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Savings Sidekick
c:\program files (x86)\Savings Sidekick\ButtonUtil.dll
c:\program files (x86)\Savings Sidekick\Savings Sidekick-bg.exe
c:\program files (x86)\Savings Sidekick\Savings Sidekick.exe
c:\program files (x86)\Savings Sidekick\Savings Sidekick.ico
c:\program files (x86)\Savings Sidekick\Savings Sidekick.ini
c:\program files (x86)\Savings Sidekick\Savings SidekickInstaller.log
c:\program files (x86)\Savings Sidekick\Uninstall.exe
c:\programdata\FullRemove.exe
c:\users\tamaraaa\AppData\Local\Savings Sidekick
c:\users\tamaraaa\AppData\Local\Savings Sidekick\Chrome\Savings Sidekick.crx
c:\users\tamaraaa\AppData\Local\Temp\{D8C6F08A-EE7E-4D34-AE04-77929E1769D6}\fpb.tmp
c:\windows\msvcr71.dll
c:\windows\SysWow64\DEBUG.log
.
.
(((((((((((((((((((( Bestanden Gemaakt van 2012-08-16 to 2012-09-16 ))))))))))))))))))))))))))))))
.
.
2012-09-16 19:59 . 2012-09-16 19:59 ——– d—–w- c:\users\Default\AppData\Local\temp
2012-09-16 14:07 . 2012-09-16 14:07 ——– d—–w- c:\users\tamaraaa\AppData\Roaming\Malwarebytes
2012-09-16 14:06 . 2012-09-16 14:06 ——– d—–w- c:\programdata\Malwarebytes
2012-09-16 14:06 . 2012-09-16 14:34 ——– d—–w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-09-16 14:06 . 2012-09-07 15:04 25928 —-a-w- c:\windows\system32\drivers\mbam.sys
2012-09-16 12:50 . 2012-09-16 12:50 ——– d—–w- c:\program files (x86)\ESET
2012-09-15 21:23 . 2012-09-15 21:23 ——– d—–w- c:\programdata\2C3C9
2012-09-15 20:52 . 2012-09-15 20:52 ——– d—–w- c:\program files\Windows Live
2012-09-15 20:52 . 2010-04-28 06:57 61288 —-a-w- c:\windows\system32\drivers\fssfltr.sys
2012-09-15 20:51 . 2012-09-15 20:51 ——– d—–w- c:\program files (x86)\Microsoft Sync Framework
2012-09-15 20:50 . 2012-09-15 20:50 ——– d—–w- c:\program files (x86)\Microsoft SQL Server Compact Edition
2012-09-15 20:49 . 2012-09-15 20:49 ——– d—–w- c:\program files (x86)\Windows Live SkyDrive
2012-09-15 20:49 . 2012-09-15 20:49 ——– d—–w- c:\windows\PCHEALTH
2012-09-15 20:46 . 2008-06-17 14:13 74520 —-a-w- c:\program files (x86)\Common Files\Windows Live\.cache\3d5359811cd9383\DSETUP.dll
2012-09-15 20:46 . 2008-06-17 14:13 484632 —-a-w- c:\program files (x86)\Common Files\Windows Live\.cache\3d5359811cd9383\DXSETUP.exe
2012-09-15 20:46 . 2008-06-17 14:13 1670936 —-a-w- c:\program files (x86)\Common Files\Windows Live\.cache\3d5359811cd9383\dsetup32.dll
2012-09-15 20:29 . 2012-09-16 19:58 69000 —-a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{A6D856FB-7AB3-4F2A-94CE-0EFC1CD71A93}\offreg.dll
2012-09-15 20:17 . 2012-08-27 23:49 9310152 —-a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{A6D856FB-7AB3-4F2A-94CE-0EFC1CD71A93}\mpengine.dll
2012-09-15 20:17 . 2012-05-31 10:25 279656 ——w- c:\windows\system32\MpSigStub.exe
2012-09-15 18:24 . 2012-09-15 18:24 788536 —-a-r- c:\users\tamaraaa\AppData\Roaming\Microsoft\Installer\{B2F34D92-C5CF-4801-90CB-D04A5634B334}\TweetDeck.exe
2012-09-15 12:10 . 2012-09-15 12:12 ——– d—–w- c:\users\tamaraaa\AppData\Roaming\Easy MP3 Recorder
2012-09-15 12:10 . 2012-09-15 12:10 ——– d—–w- c:\windows\SysWow64\Extensions
2012-09-15 12:10 . 2012-09-15 12:10 ——– d—–w- c:\windows\SysWow64\searchplugins
2012-09-15 12:10 . 2012-09-15 15:12 ——– d—–w- c:\program files (x86)\Moozy
2012-09-15 12:03 . 2012-09-15 12:03 ——– d—–w- c:\programdata\1A1DE
2012-09-15 12:01 . 2012-09-15 12:01 ——– d—–w- c:\programdata\25CD
2012-09-15 09:26 . 2012-09-15 09:27 ——– d—–w- c:\program files (x86)\BearShare Applications
2012-09-15 09:26 . 2012-09-15 09:26 ——– d—–w- c:\programdata\BearShare
2012-09-15 09:25 . 2012-09-15 09:27 ——– dc-h–w- c:\programdata\{073730B2-6CAE-4854-85C6-D25002372130}
2012-09-15 09:12 . 2012-09-16 15:02 ——– d—–w- c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
2012-09-12 17:46 . 2012-08-22 18:12 950128 —-a-w- c:\windows\system32\drivers\ndis.sys
2012-09-12 17:46 . 2012-08-02 17:58 574464 —-a-w- c:\windows\system32\d3d10level9.dll
2012-09-12 17:46 . 2012-07-04 20:26 41472 —-a-w- c:\windows\system32\drivers\RNDISMP.sys
2012-09-12 17:46 . 2012-08-02 16:57 490496 —-a-w- c:\windows\SysWow64\d3d10level9.dll
2012-09-12 17:46 . 2012-08-22 18:12 1913200 —-a-w- c:\windows\system32\drivers\tcpip.sys
2012-09-12 17:46 . 2012-08-22 18:12 376688 —-a-w- c:\windows\system32\drivers\netio.sys
2012-09-12 17:46 . 2012-08-22 18:12 288624 —-a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2012-09-11 17:08 . 2012-09-11 17:08 ——– d—–w- c:\users\tamaraaa\AppData\Roaming\DVDVideoSoftIEHelpers
2012-09-11 17:07 . 2012-09-11 17:07 ——– d—–w- c:\program files (x86)\DVDVideoSoft
2012-09-11 16:34 . 2012-09-11 16:40 ——– d—–w- c:\users\tamaraaa\AppData\Roaming\PerformerSoft
2012-09-11 16:34 . 2012-03-14 13:47 19000 —-a-w- c:\windows\system32\roboot64.exe
2012-09-05 17:35 . 2012-09-05 17:35 ——– d—–w- c:\users\tamaraaa\AppData\Roaming\MusicNet
2012-09-05 17:35 . 2012-09-15 12:13 ——– d—–w- c:\users\tamaraaa\AppData\Local\iMesh
2012-09-05 17:33 . 2012-09-15 18:19 ——– d—–w- c:\program files (x86)\iMesh Applications
2012-09-05 17:32 . 2012-09-05 17:32 ——– d—–w- c:\users\tamaraaa\AppData\Local\PackageAware
.
.
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-16 19:45 . 2011-12-25 15:03 45056 —-a-w- c:\windows\system32\acovcnt.exe
2012-09-13 05:22 . 2012-04-02 05:18 64462936 —-a-w- c:\windows\system32\MRT.exe
2012-08-16 11:06 . 2012-04-09 09:41 426184 —-a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-08-16 11:06 . 2011-12-26 12:01 70344 —-a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-07-18 18:15 . 2012-08-15 08:27 3148800 —-a-w- c:\windows\system32\win32k.sys
2012-07-06 20:07 . 2012-08-16 11:13 552960 —-a-w- c:\windows\system32\drivers\bthport.sys
2012-07-04 22:16 . 2012-08-15 08:27 73216 —-a-w- c:\windows\system32\netapi32.dll
2012-07-04 22:13 . 2012-08-15 08:27 59392 —-a-w- c:\windows\system32\browcli.dll
2012-07-04 22:13 . 2012-08-15 08:27 136704 —-a-w- c:\windows\system32\browser.dll
2012-07-04 21:14 . 2012-08-15 08:27 41984 —-a-w- c:\windows\SysWow64\browcli.dll
2012-06-29 04:55 . 2012-08-16 11:12 17809920 —-a-w- c:\windows\system32\mshtml.dll
2012-06-29 04:09 . 2012-08-16 11:12 10925568 —-a-w- c:\windows\system32\ieframe.dll
2012-06-29 03:56 . 2012-08-16 11:12 2312704 —-a-w- c:\windows\system32\jscript9.dll
2012-06-29 03:49 . 2012-08-16 11:12 1346048 —-a-w- c:\windows\system32\urlmon.dll
2012-06-29 03:49 . 2012-08-16 11:12 1392128 —-a-w- c:\windows\system32\wininet.dll
2012-06-29 03:48 . 2012-08-16 11:12 1494528 —-a-w- c:\windows\system32\inetcpl.cpl
2012-06-29 03:47 . 2012-08-16 11:12 237056 —-a-w- c:\windows\system32\url.dll
2012-06-29 03:45 . 2012-08-16 11:12 85504 —-a-w- c:\windows\system32\jsproxy.dll
2012-06-29 03:44 . 2012-08-16 11:12 816640 —-a-w- c:\windows\system32\jscript.dll
2012-06-29 03:43 . 2012-08-16 11:12 173056 —-a-w- c:\windows\system32\ieUnatt.exe
2012-06-29 03:42 . 2012-08-16 11:12 2144768 —-a-w- c:\windows\system32\iertutil.dll
2012-06-29 03:40 . 2012-08-16 11:12 96768 —-a-w- c:\windows\system32\mshtmled.dll
2012-06-29 03:39 . 2012-08-16 11:12 2382848 —-a-w- c:\windows\system32\mshtml.tlb
2012-06-29 03:35 . 2012-08-16 11:12 248320 —-a-w- c:\windows\system32\ieui.dll
2012-06-29 00:16 . 2012-08-16 11:12 1800704 —-a-w- c:\windows\SysWow64\jscript9.dll
2012-06-29 00:09 . 2012-08-16 11:12 1129472 —-a-w- c:\windows\SysWow64\wininet.dll
2012-06-29 00:08 . 2012-08-16 11:12 1427968 —-a-w- c:\windows\SysWow64\inetcpl.cpl
2012-06-29 00:04 . 2012-08-16 11:12 142848 —-a-w- c:\windows\SysWow64\ieUnatt.exe
2012-06-29 00:00 . 2012-08-16 11:12 2382848 —-a-w- c:\windows\SysWow64\mshtml.tlb
.
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
.
“Spotify”=“c:\users\tamaraaa\AppData\Roaming\Spotify\Spotify.exe”
“Skype”=“c:\program files (x86)\Skype\Phone\Skype.exe”
“Spotify Web Helper”=“c:\users\tamaraaa\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe”
“GoogleChromeAutoLaunch_D75D34E0F04B8866EF9A7E420F5FE820”=“c:\program files (x86)\Google\Chrome\Application\chrome.exe”
.
“ASUSPRP”=“c:\program files (x86)\ASUS\APRP\APRP.EXE”
“ASUSWebStorage”=“c:\program files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe”
“SonicMasterTray”=“c:\program files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe”
“ATKOSD2”=“c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe”
“ATKMEDIA”=“c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe”
“HControlUser”=“c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe”
“Wireless Console 3”=“c:\program files (x86)\ASUS\Wireless Console 3\wcourier.exe”
“UpdateLBPShortCut”=“c:\program files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe”
“UpdateP2GoShortCut”=“c:\program files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe”
“SunJavaUpdateSched”=“c:\program files (x86)\Common Files\Java\Java Update\jusched.exe”
“RemoteControl11”=“c:\program files (x86)\CyberLink\PowerDVD11\PDVD11Serv.exe”
“YouCam Mirage”=“c:\program files (x86)\CyberLink\YouCam\YCMMirage.exe”
“YouCam Tray”=“c:\program files (x86)\CyberLink\YouCam\YouCamTray.exe”
“APSDaemon”=“c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe”
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
AsusVibeLauncher.lnk - c:\program files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
FancyStart daemon.lnk - c:\windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_94E3CE3704FE82FBF49A6A.exe
.
“ConsentPromptBehaviorAdmin”= 5 (0x5)
“ConsentPromptBehaviorUser”= 3 (0x3)
“EnableUIADesktopToggle”= 0 (0x0)
.
“aux”=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
R2 gupdate;Google Updateservice (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS
R3 gupdatem;Google Update-service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe
R3 netr7364;RT73 USB Extensible Wireless LAN Card Driver;c:\windows\system32\DRIVERS\netr7364.sys
R3 Partner Service;Partner Service;c:\programdata\Partner\Partner.exe
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe
S1 ATKWMIACPIIO;ATKWMIACPI Driver;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys
S2 {329F96B6-DF1E-4328-BFDA-39EA953C1312};Power Control ;c:\program files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
S2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe
S2 CLHNServiceForPowerDVD;CLHNServiceForPowerDVD;c:\program files (x86)\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe
S2 CyberLink PowerDVD 11.0 Monitor Service;CyberLink PowerDVD 11.0 Monitor Service;c:\program files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe
S2 CyberLink PowerDVD 11.0 Service;CyberLink PowerDVD 11.0 Service;c:\program files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe
S2 ntk_PowerDVD;ntk_PowerDVD;c:\program files (x86)\CyberLink\PowerDVD11\Kernel\DMP\ntk_PowerDVD_64.sys
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys
.
.
Inhoud van de ‘Gedeelde Taken’ map
.
2012-09-16 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
.
2012-09-16 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe
.
2012-09-16 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe
.
.
——— X64 Entries ———–
.
.
@=“{6D4133E5-0742-4ADC-8A8C-9303440F7190}”
2010-09-02 08:41 220160 —-a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSShellExt64.dll
.
@=“{64174815-8D98-4CE6-8646-4C039977D808}”
2010-09-02 08:41 220160 —-a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSShellExt64.dll
.
“IgfxTray”=“c:\windows\system32\igfxtray.exe”
“HotKeysCmds”=“c:\windows\system32\hkcmd.exe”
“Persistence”=“c:\windows\system32\igfxpers.exe”
“AmIcoSinglun64”=“c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe”
“RtHDVBg”=“c:\program files\Realtek\Audio\HDA\RAVBg64.exe”
“AtherosBtStack”=“c:\program files (x86)\Bluetooth Suite\BtvStack.exe”
“AthBtTray”=“c:\program files (x86)\Bluetooth Suite\AthBtTray.exe”
.
“LoadAppInit_DLLs”=0x1
“AppInit_DLLs”=c:\progra~2\IMESHA~1\MediaBar\Datamngr\x64\datamngr.dll c:\progra~2\IMESHA~1\MediaBar\Datamngr\x64\IEBHO.dll
.
——- Bijkomende Scan ——-
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.startpagina.nl/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.178.1
.
- - - - ORPHANS VERWIJDERD - - - -
.
Toolbar-Locked - (no file)
Toolbar-10 - (no file)
Toolbar-Locked - (no file)
Toolbar-10 - (no file)
HKLM-Run-ETDCtrl - c:\program files (x86)\Elantech\ETDCtrl.exe
HKLM-Run-Setwallpaper - c:\programdata\SetWallpaper.cmd
AddRemove-ASUS_Screensaver - c:\windows\system32\ASUS_Screensaver.scr
.
.
.
“ImagePath”=“\??\c:\program files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl”
.
——————— VERGRENDELDE REGISTER SLEUTELS ———————
.
@Denied: (A 2) (Everyone)
@=“FlashBroker”
“LocalizedString”=“@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe,-101”
.
“Enabled”=dword:00000001
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe”
.
@=“{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”
.
@Denied: (A 2) (Everyone)
@=“Shockwave Flash Object”
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx”
“ThreadingModel”=“Apartment”
.
@=“0”
.
@=“ShockwaveFlash.ShockwaveFlash.11”
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1”
.
@=“{D27CDB6B-AE6D-11cf-96B8-444553540000}”
.
@=“1.0”
.
@=“ShockwaveFlash.ShockwaveFlash”
.
@Denied: (A 2) (Everyone)
@=“Macromedia Flash Factory Object”
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx”
“ThreadingModel”=“Apartment”
.
@=“FlashFactory.FlashFactory.1”
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1”
.
@=“{D27CDB6B-AE6D-11cf-96B8-444553540000}”
.
@=“1.0”
.
@=“FlashFactory.FlashFactory”
.
@Denied: (A 2) (Everyone)
@=“IFlashBroker4”
.
@=“{00020424-0000-0000-C000-000000000046}”
.
@=“{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”
“Version”=“1.0”
.
@Denied: (Full) (Everyone)
.
Voltooingstijd: 2012-09-16 22:02:10
ComboFix-quarantined-files.txt 2012-09-16 20:02
.
Pre-Run: 67.298.578.432 bytes beschikbaar
Post-Run: 67.673.092.096 bytes beschikbaar
.
- - End Of File - - 15196EC78C9C94F20EA6B647FA42AD31
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:05:36, on 16-9-2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16448)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\ASUS\ASUS Live Update\LiveUpdate.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\Splendid\ACMON.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\CyberLink\PowerDVD11\PDVD11Serv.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe
C:\Users\tamaraaa\Desktop\hijckthis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.startpagina.nl/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll (file missing)
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: IESpeakDoc - {8D10F6C4-0E01-4BD4-8601-11AC1FDF8126} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll (file missing)
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll (file missing)
O4 - HKLM\..\Run: “C:\Program Files (x86)\ASUS\APRP\APRP.EXE”
O4 - HKLM\..\Run: C:\Program Files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S
O4 - HKLM\..\Run: C:\Program Files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe
O4 - HKLM\..\Run: C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: “C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe” “C:\Program Files (x86)\CyberLink\LabelPrint” UpdateWithCreateOnce “Software\CyberLink\LabelPrint\2.5”
O4 - HKLM\..\Run: “C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe” “C:\Program Files (x86)\CyberLink\Power2Go” UpdateWithCreateOnce “SOFTWARE\CyberLink\Power2Go\6.0”
O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe”
O4 - HKLM\..\Run: C:\Program Files (x86)\CyberLink\PowerDVD11\PDVD11Serv.exe
O4 - HKLM\..\Run: “C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe”
O4 - HKLM\..\Run: “C:\Program Files (x86)\CyberLink\YouCam\YouCamTray.exe” /s
O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe”
O4 - HKCU\..\Run: “C:\Users\tamaraaa\AppData\Roaming\Spotify\Spotify.exe” /uri spotify:autostart
O4 - HKCU\..\Run: “C:\Program Files (x86)\Skype\Phone\Skype.exe” /minimized /regrun
O4 - HKCU\..\Run: “C:\Users\tamaraaa\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe”
O4 - HKCU\..\Run: “C:\Program Files (x86)\Google\Chrome\Application\chrome.exe” –no-startup-window
O4 - Global Startup: AsusVibeLauncher.lnk = C:\Program Files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra ‘Tools’ menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: (no name) - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra ‘Tools’ menuitem: Send by Bluetooth to - {7815BE26-237D-41A8-A98F-F7BD75F71086} - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra ‘Tools’ menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
O11 - Options group: Accelerated graphics
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Atheros Bt&Wlan Coex Agent - Atheros - C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: CLHNServiceForPowerDVD - Unknown owner - C:\Program Files (x86)\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe
O23 - Service: CyberLink PowerDVD 11.0 Monitor Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe
O23 - Service: CyberLink PowerDVD 11.0 Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Partner Service - Unknown owner - C:\ProgramData\Partner\Partner.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
–
End of file - 12263 bytes
fazantje

16-09-2012 22:11

Hoi Marianne,
Over een uurtje kijk ik er naar.
Moet even wat prive doen.
Combo heeft al een mooie verwijdering gemaakt;)
Tot zo en anders tot morgen.
Groetjes Huib;)
marianne40

16-09-2012 22:13

Hoi Huib
Dat moet ook gebeuren privedingen die gaan voor.
Maar ik ga nu naar bed dus ik kijk morgen weer en ga dan weer verder aan de slag.
Tot zover bedankt voor de hulp en tot morgen.
Groetjes Marianne
fazantje

17-09-2012 08:45

Hoi Marianne,
Ga even niet verder het net op heh met deze computer, omdat je nu geen virusscanner hebt.
Er kwam nog wat anders tussen gisteravond.
Voor dat ik verder ga met combo, wil ik eerst even wat weten voor het geval ik te veel weg laat halen.
De volgende zaken, hebben die te maken met Bearshare:S
c:\programdata\2C3C9
c:\programdata\1A1DE
c:\programdata\25CD
Groetjes Huib;)
fazantje

17-09-2012 09:19
Hoi Marianne,
Als jij die zaken in mijn vorige bericht niet kent, dan mag je met onderstaande verder gaan.
Open Kladblok, kopiëer en plak het volgende (vetgedrukte, blauwe tekst) in een leeg venster:
Registry::
“AppInit_DLLs”=-
Folder::
c:\programdata\1A1DE
c:\programdata\25CD
c:\programdata\2C3C9
c:\progra~2\IMESHA~1
Sla dit op op je Bureaublad als CFScript.txt
Sleep CFScript.txt in ComboFix.exe zoals getoond in onderstaand voorbeeld :
Dit zal ComboFix doen herstarten.
Start opnieuw op als daarom gevraagd wordt,
en post de inhoud van de Combofix.txt in je volgende antwoord samen met een nieuw HijackThislogje.
Succes,
Huib;)
marianne40

17-09-2012 13:00

Hoi Huib
Ik had al tegen mijn dochter gezegd dat ze nu niet op haar laptop mag.
Ik heb de bestanden die je opgeschreven hebt opgezocht en er staat dat het een shockwave flash object is.
Mogen deze gewoon verwijderd worden door combofix???
Groetjes Marianne
Ben

17-09-2012 14:01

Hallo,
Wegens omstandig heden van Huib ga ik je verder helpen.
Open een kladblok bestand. (Start>Alle programma’s>Bureau-accessoires>Kladblok),
kopieer en plak het volgende (vetgedrukte, blauwe tekst) in het lege kladblokvenster:
Registry::
“AppInit_DLLs”=-
Folder::
c:\progra~2\IMESHA~1
Sla dit op op je Bureaublad als CFScript.txt.
Sleep CFScript.txt in ComboFix.exe zoals getoond in onderstaand voorbeeld :
Dit zal ComboFix doen herstarten.
Na het herstarten van je computer, (indien het vraagt om te herstarten), kopieer en plak de inhoud van Combofix.txt in je volgende antwoord en vertel hoe het gaat.
Groeten Ben.
Antivirusprikbord.nl
marianne40

17-09-2012 15:03

Hoi Ben
Alvast bedankt dat jij me verder wil helpen. Ik heb gedaan wat je hebt gezegt.
Maar moet ik ook nog de bestanden verwijderen met combofix wat huib had gezegt dat waren shockwave flash objecten?
Die mesha bestanden komen die van het programma Imesh want ik zie dat ze die op haar bureaublad heeft staan.
De laptop heeft nog steeds als je mappen wilt openen dat hij aangeeft dat de windows verkenner het niet meer doet.
Groetjes Marianne
ComboFix 12-09-16.01 - tamaraaa 17-09-2012 14:37:59.2.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.4001.2402
Gestart vanuit: c:\users\tamaraaa\Downloads\ComboFix.exe
gebruikte Opdracht switches :: c:\users\tamaraaa\Downloads\CFScript.txt
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\progra~2\IMESHA~1
c:\progra~2\IMESHA~1\MediaBar\Datamngr\~BrowserConnection.dll
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ChromeExtension\config\skin\css\new-tab.css
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ChromeExtension\config\skin\images\fav_amazon.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ChromeExtension\config\skin\images\fav_ebay.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ChromeExtension\config\skin\images\fav_facebook.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ChromeExtension\config\skin\images\fav_fantastigames.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ChromeExtension\config\skin\images\fav_ftalk.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ChromeExtension\config\skin\images\fav_youtube.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ChromeExtension\config\skin\images\IDR_WEBSTORE_ICON.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ChromeExtension\config\skin\images\imesh_logo_128.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ChromeExtension\config\skin\images\imesh_logo_128.png__
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ChromeExtension\config\skin\new-tab.html
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ChromeExtension\lib\analytics.js
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ChromeExtension\lib\constant.js
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ChromeExtension\lib\default-config.js
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ChromeExtension\lib\jquery.js
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ChromeExtension\lib\localStorage.js
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ChromeExtension\lib\new-tab.js
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ChromeExtension\lib\preferences.js
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ChromeExtension\manifest.json
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ChromeExtension\OurLocalPage.html
c:\progra~2\IMESHA~1\MediaBar\Datamngr\installhelper.dll
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\as_guid.dat
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\data\search\engines.xml
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\data\search\search.xsl
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\imeshcode.js
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\lib\about.xml
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\lib\dtxpanel.xul
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\lib\dtxpaneltransparent.xul
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\lib\dtxpanelwin.xul
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\lib\dtxprefwin.xul
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\lib\dtxtransparentwin.xul
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\lib\dtxwin.xul
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\lib\emailnotifierproviders.xml
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\lib\external.js
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\lib\imeshcode.js
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\lib\neterror.xhtml
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\lib\rsspreview.html
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\lib\rsswin.xml
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\lib\rsswin.xsl
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\lib\vmncode.js
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\lib\wmpstreamer.html
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\modules\datastore.jsm
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\modules\nsDragAndDrop.js
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\neterror.xhtml
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\partner.coupons.xml
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\preferences.xml
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\radiobeta.js
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\template.xml
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\toolbar.htm
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\toolbar.xul
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\vmncode.js
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\vmnrsswin.xml
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\widgets\com.djboxservice.dj.DJBox\tb_icon.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\widgets\com.djboxservice.dj.DJBox\tb_iconFF.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\widgets\com.djboxservice.dj.DJBox\tb_iconPressed.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\widgets\com.djboxservice.dj.DJBox\tb_iconPressedFF.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\widgets\com.djboxservice.dj.DJBox\tb_pref_icon.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\widgets\com.djboxservice.dj.DJBox\thumbs\tb_thumb_icon.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\widgets\com.djboxservice.dj.DJBox\widget.js
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\widgets\com.djboxservice.dj.DJBox\widget.jsw
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\content\widgets\com.djboxservice.dj.DJBox\widget.xml
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\about_logo.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\babylon_logo.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\bluelite.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\bluesky.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\btn-search-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\btn-search.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\btn-settings-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\btn-settings.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\btn-widgets-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\btn-widgets.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\btn_settings.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\ca.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\dictionary.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\divider.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\downloadcom.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\dtxlogo.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\ebay.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\ebay_png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\email.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\email_on.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\email_png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\facebook.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\games.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\go_idle.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\go_rollover.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\graphred0.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\graphred0_5.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\graphred1.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\graphred1_5.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\graphred2.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\graphred2_5.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\graphred3.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\graphred3_5.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\graphred4.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\graphred4_5.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\graphred5.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\graphredna.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\grey.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\ico-shield.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\icon_amazon.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\icon_games.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\icon_seperator_png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\icon_twitter.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\icon_youtube.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\images.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\imesh.css
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\add.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\aol.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\arrow-dn.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\arrow-right-disabled.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\arrow-right.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\arrow-up.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\bg-btn-divider.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\bg-btn-end.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\bg-btn-mdl.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\bg-btn-mdl_ff.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\bg-btn-start.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\bg-btnover-divider.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\bg-btnover-end.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\bg-btnover-mdl.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\bg-btnover-mdl_ff.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\bg-btnover-start.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\blank.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\btn-widgets-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\btn-widgets.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\btn_slider.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\btnback-down-vista.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\btnback-vista.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\btnleft-down-vista.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\btnleft-vista.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\btnright-down-vista.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\btnright-vista.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\button-splitter-down-vista.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\button-splitter-vista.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\checkmark.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\chevron.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\collapse.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\comcast.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\dtx.css
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\edit-back-hot.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\edit-back.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\expand.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\found.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\gmail.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\highlight.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\highlight_blue.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\highlight_cyan.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\highlight_lime.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\highlight_magenta.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\highlight_yellow.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\hotmail.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\ico-check.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\imap.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\lastsearch-thumb-back.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\loadingMid.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\lock.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\logo-separator.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\mailcom.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\menu_bg-basic.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\menu_separator_bar.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\menu_separator_white.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\menuitem-splitter.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\menuitemback-down-vista.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\menuitemback-vista.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\menuitemleft-down-vista.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\menuitemleft-vista.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\menuitemright-down-vista.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\menuitemright-vista.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\modify.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\move.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\movetarget.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\css\panels.css
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\css\popupAbout.css
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\css\popupGames.css
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\css\popupRSS.css
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\css\popupWidgets.css
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\css\dialog.css
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\bg.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\btn-search.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\btn-wide-close-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\btn-wide-close.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\default.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\tab-off-l.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\tab-off-r.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\tab-on-l.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\tab-on-r.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\transparent.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\ttlbar-left.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\ttlbar-mdl.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\ttlbar-right.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\win-btm-left.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\win-btm-mdl.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\win-btm-right-resize.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\win-btm-right.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\win-left.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\images\win-right.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\main.html
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\default\scripts\defscript.js
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\footer.htm
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\gamecategory.xsl
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\gameData.js
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\gameList.xsl
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\games.xsl
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\gametype.xsl
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\arrow-dn.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\arrow-sml-drop.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\arrow-sml.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\arrow-up.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\arrowr-bluew5.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\bg-aboutbox.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\bg-btnover.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\bg-pnl520x390.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-addtoolbar-left-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-addtoolbar-left.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-addtoolbar-right.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-back.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-close-grey.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-close-greyover.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-drag.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-mdl-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-mdl.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-moredetails.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-next-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-next.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-play-left-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-play-left.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-previous-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-previous.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-right-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-search-pnlbtm-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-search-pnlbtm.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-try-left-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\btn-try-left.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\bullet-orange.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\gamethumb-on.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\gamethumb2-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\ico-calendar.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\ico-dollar.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\ico-download.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\ico-joystick24.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\ico-news24.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\ico-play.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\ico-tags.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\icon-Add.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\icon-download.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\icon-Info.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\icon-play.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\icon-shop.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\menul-bgon.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\menul-bgover.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\panel-botm-noscroll.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scroll-bg-206.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scroll-bg.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scroll-topwin.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scrollb-disable.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scrollb-down.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scrollb-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scrollb.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scrollt-disable.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scrollt-down.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scrollt-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\scrollt.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\searchbox-pnlbtm.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\star_x_grey.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\star_x_orange.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\TRUSTe_about.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\view-detailed-on.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\view-detailed-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\view-thumb-on.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\view-thumb-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\widgets-square-16px.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\widgets-square-24px.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\images\widgets.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\initHTML.html
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\popupGames.html
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\popupHTML.html
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\popupRSS.html
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\popupWidgets.html
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\panels\scroll.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\pop.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\css\manager.css
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\css\slider.css
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\bg-pnl.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\btn-close-grey.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\btn-close-greyover.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\collapsed_button.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\expanded_button.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\ico-playstation-down.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\ico-playstation-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\ico-playstation.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\ico-radio.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\music-note.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-btn-pause-on.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-btn-pause.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-btn-play-on.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-btn-play.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-eq-bg.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-eq-buffer.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-eq-busy.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-eq-off.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-eq-on.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-eq-warning.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-options-design-on.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-options-design.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-options-on.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-options.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-volume-0.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-volume-1.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-volume-2.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-volume-3.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\radio-volume-mute.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\scrollbar-handle.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\scrollbar-track.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\slider.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\slideron.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\images\track.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\managerpanel.html
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radio\volumeslider.html
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radiobeta-buffering.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radiobeta-connecting.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radiobeta-playing.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radiobeta-stopped.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\radiobeta.ico
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\reload.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\remove.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\rename.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\resize-box.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\rss.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\rsschannelback.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\RSSLogo.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\rsstabdivider.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\scroll-left.png
c:\progra~2\IMESHc:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_07.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_08.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_09.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_10.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_11.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_12.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_13.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_14.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_15.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_16.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_18.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_19.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_20.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_21.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\btn-close-grey.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\btn-close-greyover.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\close-hot.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\close-normal.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\loadingMid.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\proxy.html
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\template.html
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\template.xml
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\templateFF.html
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\throbber.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\icons\cond999.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\icons\icons.xml
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\icons\na-s.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\icons\na-t.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\icons\na.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\add.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\arrowr-bluew5.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\bg-pnl.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\bg-pnl520x350.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\bg-pnl520x350blue-whitebg.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\bg-pnl520x350blue.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\box-check.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\box-uncheck.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btn-close-grey.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btn-close-greyover.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btn-delete.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btn-search-pnlbtm-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btn-search-pnlbtm.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btnarrow-next-off.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btnarrow-next.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btnarrow-previous-off.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\btnarrow-previous.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\ico-check.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\ico-hotandhumid-s.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\ico-hotandhumid.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\options-weather.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\over-blue.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\over-orange.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\powered-by-weatherbug.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\powered-by-weatherbug2.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\radio-checked.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\radio-unchecked.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\searchbox-pnlbtm.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\images\weather-contour.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\popupWeather.css
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\weatherbutton\panels\popupWeather.html
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\yahoo.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lichen.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\logo-about.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\logo-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\logo-separator.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\logo.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\logo_about_png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\logo_over_png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\logo_over_t_png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\logo_png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\logo_t_png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\mail.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\maps.bmp
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\menuseparatorback.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\modify-save.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\modify.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\modifyhot.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\music.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\news.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\options\options-main.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\options\options-search.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\options\options-weather.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\options\options-weather.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\options\options-widgets.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\orange.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\pixsy.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\protect-id.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\radiobeta-buffering.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\radiobeta-connecting.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\radiobeta-playing.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\radiobeta-stopped.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\radiobeta.ico
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\relatedlinks.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\rss-collapse.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\rss-delete.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\rss-expand.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\rss-feed.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\rss-folder-remove.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\rss-folder-rename.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\rss-folder.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\rss-found.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\rss-reload.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\rss-subscribe.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\rss.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\rssback.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\rsstopback.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\search-over.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\search.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\search_button_over_png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\search_button_png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\searchbar\searchbar-background-left.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\searchbar\searchbar-background-middle.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\searchbar\searchbar-background-right.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\settings.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\shopping.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\siteinfo.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\skin-bluelite.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\skin-bluesky.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\skin-grey.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\skin-lichen.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\skin-orange.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\skin-yellow.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\skin.xml
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\technorati.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\throbber.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\toolbarsplitter.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\translate.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\TRUSTe_about.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\video.bmp
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\vmn.css
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\vmn.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\weather.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\web.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\widgets-square-16px.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\wikipedia.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\Wincore_icon20.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\Wincore_with_shade.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\Wincore_with_shade16.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\yahoosearch.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\yellow.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\youtube.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\zoom.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\components\windowmediator.js
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\dtUser.exe
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\manifest.xml
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\uninstall.exe
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\wincoreimband.dll
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\wincoreimdtx.dll
c:\progra~2\IMESHA~1\MediaBar\Datamngr\x64\BrowserConnection.dll
c:\progra~2\IMESHA~1\MediaBar\Datamngr\x64\datamngr.dll
c:\progra~2\IMESHA~1\MediaBar\Datamngr\x64\datamngrUI.exe
c:\progra~2\IMESHA~1\MediaBar\Datamngr\x64\DnsBHO.dll
c:\progra~2\IMESHA~1\MediaBar\Datamngr\x64\IEBHO.dll
c:\progra~2\IMESHA~1\MediaBar\sysid.ini
c:\progra~2\IMESHA~1\MediaBar\uninstall.exe
.
.
marianne40

17-09-2012 15:04

Dit is de rest van het bericht het was te groot om in 1 keer te posten
(((((((((((((((((((( Bestanden Gemaakt van 2012-08-17 to 2012-09-17 ))))))))))))))))))))))))))))))
.
.
2012-09-17 12:43 . 2012-09-17 12:43 ——– d—–w- c:\users\Default\AppData\Local\temp
2012-09-16 14:07 . 2012-09-16 14:07 ——– d—–w- c:\users\tamaraaa\AppData\Roaming\Malwarebytes
2012-09-16 14:06 . 2012-09-16 14:06 ——– d—–w- c:\programdata\Malwarebytes
2012-09-16 14:06 . 2012-09-16 14:34 ——– d—–w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-09-16 14:06 . 2012-09-07 15:04 25928 —-a-w- c:\windows\system32\drivers\mbam.sys
2012-09-16 12:50 . 2012-09-16 12:50 ——– d—–w- c:\program files (x86)\ESET
2012-09-15 21:23 . 2012-09-15 21:23 ——– d—–w- c:\programdata\2C3C9
2012-09-15 20:52 . 2012-09-15 20:52 ——– d—–w- c:\program files\Windows Live
2012-09-15 20:52 . 2010-04-28 06:57 61288 —-a-w- c:\windows\system32\drivers\fssfltr.sys
2012-09-15 20:51 . 2012-09-15 20:51 ——– d—–w- c:\program files (x86)\Microsoft Sync Framework
2012-09-15 20:50 . 2012-09-15 20:50 ——– d—–w- c:\program files (x86)\Microsoft SQL Server Compact Edition
2012-09-15 20:49 . 2012-09-15 20:49 ——– d—–w- c:\program files (x86)\Windows Live SkyDrive
2012-09-15 20:49 . 2012-09-15 20:49 ——– d—–w- c:\windows\PCHEALTH
2012-09-15 20:46 . 2008-06-17 14:13 74520 —-a-w- c:\program files (x86)\Common Files\Windows Live\.cache\3d5359811cd9383\DSETUP.dll
2012-09-15 20:46 . 2008-06-17 14:13 484632 —-a-w- c:\program files (x86)\Common Files\Windows Live\.cache\3d5359811cd9383\DXSETUP.exe
2012-09-15 20:46 . 2008-06-17 14:13 1670936 —-a-w- c:\program files (x86)\Common Files\Windows Live\.cache\3d5359811cd9383\dsetup32.dll
2012-09-15 20:29 . 2012-09-16 19:58 69000 —-a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{A6D856FB-7AB3-4F2A-94CE-0EFC1CD71A93}\offreg.dll
2012-09-15 20:17 . 2012-08-27 23:49 9310152 —-a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{A6D856FB-7AB3-4F2A-94CE-0EFC1CD71A93}\mpengine.dll
2012-09-15 20:17 . 2012-05-31 10:25 279656 ——w- c:\windows\system32\MpSigStub.exe
2012-09-15 18:24 . 2012-09-15 18:24 788536 —-a-r- c:\users\tamaraaa\AppData\Roaming\Microsoft\Installer\{B2F34D92-C5CF-4801-90CB-D04A5634B334}\TweetDeck.exe
2012-09-15 12:10 . 2012-09-15 12:12 ——– d—–w- c:\users\tamaraaa\AppData\Roaming\Easy MP3 Recorder
2012-09-15 12:10 . 2012-09-15 12:10 ——– d—–w- c:\windows\SysWow64\Extensions
2012-09-15 12:10 . 2012-09-15 12:10 ——– d—–w- c:\windows\SysWow64\searchplugins
2012-09-15 12:10 . 2012-09-15 15:12 ——– d—–w- c:\program files (x86)\Moozy
2012-09-15 12:03 . 2012-09-15 12:03 ——– d—–w- c:\programdata\1A1DE
2012-09-15 12:01 . 2012-09-15 12:01 ——– d—–w- c:\programdata\25CD
2012-09-15 09:26 . 2012-09-15 09:27 ——– d—–w- c:\program files (x86)\BearShare Applications
2012-09-15 09:26 . 2012-09-15 09:26 ——– d—–w- c:\programdata\BearShare
2012-09-15 09:25 . 2012-09-15 09:27 ——– dc-h–w- c:\programdata\{073730B2-6CAE-4854-85C6-D25002372130}
2012-09-15 09:12 . 2012-09-16 15:02 ——– d—–w- c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
2012-09-12 17:46 . 2012-08-22 18:12 950128 —-a-w- c:\windows\system32\drivers\ndis.sys
2012-09-12 17:46 . 2012-08-02 17:58 574464 —-a-w- c:\windows\system32\d3d10level9.dll
2012-09-12 17:46 . 2012-07-04 20:26 41472 —-a-w- c:\windows\system32\drivers\RNDISMP.sys
2012-09-12 17:46 . 2012-08-02 16:57 490496 —-a-w- c:\windows\SysWow64\d3d10level9.dll
2012-09-12 17:46 . 2012-08-22 18:12 1913200 —-a-w- c:\windows\system32\drivers\tcpip.sys
2012-09-12 17:46 . 2012-08-22 18:12 376688 —-a-w- c:\windows\system32\drivers\netio.sys
2012-09-12 17:46 . 2012-08-22 18:12 288624 —-a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2012-09-11 17:08 . 2012-09-11 17:08 ——– d—–w- c:\users\tamaraaa\AppData\Roaming\DVDVideoSoftIEHelpers
2012-09-11 17:07 . 2012-09-11 17:07 ——– d—–w- c:\program files (x86)\DVDVideoSoft
2012-09-11 16:34 . 2012-09-11 16:40 ——– d—–w- c:\users\tamaraaa\AppData\Roaming\PerformerSoft
2012-09-11 16:34 . 2012-03-14 13:47 19000 —-a-w- c:\windows\system32\roboot64.exe
2012-09-05 17:35 . 2012-09-05 17:35 ——– d—–w- c:\users\tamaraaa\AppData\Roaming\MusicNet
2012-09-05 17:35 . 2012-09-15 12:13 ——– d—–w- c:\users\tamaraaa\AppData\Local\iMesh
2012-09-05 17:32 . 2012-09-05 17:32 ——– d—–w- c:\users\tamaraaa\AppData\Local\PackageAware
.
.
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-09-16 19:45 . 2011-12-25 15:03 45056 —-a-w- c:\windows\system32\acovcnt.exe
2012-09-13 05:22 . 2012-04-02 05:18 64462936 —-a-w- c:\windows\system32\MRT.exe
2012-08-16 11:06 . 2012-04-09 09:41 426184 —-a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-08-16 11:06 . 2011-12-26 12:01 70344 —-a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-07-18 18:15 . 2012-08-15 08:27 3148800 —-a-w- c:\windows\system32\win32k.sys
2012-07-06 20:07 . 2012-08-16 11:13 552960 —-a-w- c:\windows\system32\drivers\bthport.sys
2012-07-04 22:16 . 2012-08-15 08:27 73216 —-a-w- c:\windows\system32\netapi32.dll
2012-07-04 22:13 . 2012-08-15 08:27 59392 —-a-w- c:\windows\system32\browcli.dll
2012-07-04 22:13 . 2012-08-15 08:27 136704 —-a-w- c:\windows\system32\browser.dll
2012-07-04 21:14 . 2012-08-15 08:27 41984 —-a-w- c:\windows\SysWow64\browcli.dll
2012-06-29 04:55 . 2012-08-16 11:12 17809920 —-a-w- c:\windows\system32\mshtml.dll
2012-06-29 04:09 . 2012-08-16 11:12 10925568 —-a-w- c:\windows\system32\ieframe.dll
2012-06-29 03:56 . 2012-08-16 11:12 2312704 —-a-w- c:\windows\system32\jscript9.dll
2012-06-29 03:49 . 2012-08-16 11:12 1346048 —-a-w- c:\windows\system32\urlmon.dll
2012-06-29 03:49 . 2012-08-16 11:12 1392128 —-a-w- c:\windows\system32\wininet.dll
2012-06-29 03:48 . 2012-08-16 11:12 1494528 —-a-w- c:\windows\system32\inetcpl.cpl
2012-06-29 03:47 . 2012-08-16 11:12 237056 —-a-w- c:\windows\system32\url.dll
2012-06-29 03:45 . 2012-08-16 11:12 85504 —-a-w- c:\windows\system32\jsproxy.dll
2012-06-29 03:44 . 2012-08-16 11:12 816640 —-a-w- c:\windows\system32\jscript.dll
2012-06-29 03:43 . 2012-08-16 11:12 173056 —-a-w- c:\windows\system32\ieUnatt.exe
2012-06-29 03:42 . 2012-08-16 11:12 2144768 —-a-w- c:\windows\system32\iertutil.dll
2012-06-29 03:40 . 2012-08-16 11:12 96768 —-a-w- c:\windows\system32\mshtmled.dll
2012-06-29 03:39 . 2012-08-16 11:12 2382848 —-a-w- c:\windows\system32\mshtml.tlb
2012-06-29 03:35 . 2012-08-16 11:12 248320 —-a-w- c:\windows\system32\ieui.dll
2012-06-29 00:16 . 2012-08-16 11:12 1800704 —-a-w- c:\windows\SysWow64\jscript9.dll
2012-06-29 00:09 . 2012-08-16 11:12 1129472 —-a-w- c:\windows\SysWow64\wininet.dll
2012-06-29 00:08 . 2012-08-16 11:12 1427968 —-a-w- c:\windows\SysWow64\inetcpl.cpl
2012-06-29 00:04 . 2012-08-16 11:12 142848 —-a-w- c:\windows\SysWow64\ieUnatt.exe
2012-06-29 00:00 . 2012-08-16 11:12 2382848 —-a-w- c:\windows\SysWow64\mshtml.tlb
.
.
((((((((((((((((((((((((((((( SnapShot@2012-09-16_20.00.14 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-12-26 15:43 . 2012-09-17 12:25 221490 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S4.bin
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
.
“Spotify”=“c:\users\tamaraaa\AppData\Roaming\Spotify\Spotify.exe”
“Skype”=“c:\program files (x86)\Skype\Phone\Skype.exe”
“Spotify Web Helper”=“c:\users\tamaraaa\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe”
“GoogleChromeAutoLaunch_D75D34E0F04B8866EF9A7E420F5FE820”=“c:\program files (x86)\Google\Chrome\Application\chrome.exe”
.
“ASUSPRP”=“c:\program files (x86)\ASUS\APRP\APRP.EXE”
“ASUSWebStorage”=“c:\program files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe”
“SonicMasterTray”=“c:\program files (x86)\ASUS\Sonic Focus\SonicFocusTray.exe”
“ATKOSD2”=“c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe”
“ATKMEDIA”=“c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe”
“HControlUser”=“c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe”
“Wireless Console 3”=“c:\program files (x86)\ASUS\Wireless Console 3\wcourier.exe”
“UpdateLBPShortCut”=“c:\program files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe”
“UpdateP2GoShortCut”=“c:\program files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe”
“SunJavaUpdateSched”=“c:\program files (x86)\Common Files\Java\Java Update\jusched.exe”
“RemoteControl11”=“c:\program files (x86)\CyberLink\PowerDVD11\PDVD11Serv.exe”
“YouCam Mirage”=“c:\program files (x86)\CyberLink\YouCam\YCMMirage.exe”
“YouCam Tray”=“c:\program files (x86)\CyberLink\YouCam\YouCamTray.exe”
“APSDaemon”=“c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe”
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
AsusVibeLauncher.lnk - c:\program files (x86)\ASUS\AsusVibe\AsusVibeLauncher.exe
FancyStart daemon.lnk - c:\windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_94E3CE3704FE82FBF49A6A.exe
.
“ConsentPromptBehaviorAdmin”= 5 (0x5)
“ConsentPromptBehaviorUser”= 3 (0x3)
“EnableUIADesktopToggle”= 0 (0x0)
.
“aux”=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
R2 gupdate;Google Updateservice (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS
R3 gupdatem;Google Update-service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe
R3 netr7364;RT73 USB Extensible Wireless LAN Card Driver;c:\windows\system32\DRIVERS\netr7364.sys
R3 Partner Service;Partner Service;c:\programdata\Partner\Partner.exe
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe
S1 ATKWMIACPIIO;ATKWMIACPI Driver;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys
S2 {329F96B6-DF1E-4328-BFDA-39EA953C1312};Power Control ;c:\program files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
S2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe
S2 CLHNServiceForPowerDVD;CLHNServiceForPowerDVD;c:\program files (x86)\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe
S2 CyberLink PowerDVD 11.0 Monitor Service;CyberLink PowerDVD 11.0 Monitor Service;c:\program files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe
S2 CyberLink PowerDVD 11.0 Service;CyberLink PowerDVD 11.0 Service;c:\program files (x86)\CyberLink\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe
S2 ntk_PowerDVD;ntk_PowerDVD;c:\program files (x86)\CyberLink\PowerDVD11\Kernel\DMP\ntk_PowerDVD_64.sys
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys
.
.
Inhoud van de ‘Gedeelde Taken’ map
.
2012-09-17 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
.
2012-09-16 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe
.
2012-09-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe
.
.
——— X64 Entries ———–
.
.
@=“{6D4133E5-0742-4ADC-8A8C-9303440F7190}”
2010-09-02 08:41 220160 —-a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSShellExt64.dll
.
@=“{64174815-8D98-4CE6-8646-4C039977D808}”
2010-09-02 08:41 220160 —-a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSShellExt64.dll
.
“IgfxTray”=“c:\windows\system32\igfxtray.exe”
“HotKeysCmds”=“c:\windows\system32\hkcmd.exe”
“Persistence”=“c:\windows\system32\igfxpers.exe”
“ETDCtrl”=“c:\program files (x86)\Elantech\ETDCtrl.exe”
“AmIcoSinglun64”=“c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe”
“RtHDVBg”=“c:\program files\Realtek\Audio\HDA\RAVBg64.exe”
“AtherosBtStack”=“c:\program files (x86)\Bluetooth Suite\BtvStack.exe”
“AthBtTray”=“c:\program files (x86)\Bluetooth Suite\AthBtTray.exe”
“Setwallpaper”=“c:\programdata\SetWallpaper.cmd”
.
——- Bijkomende Scan ——-
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.startpagina.nl/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.178.1
.
- - - - ORPHANS VERWIJDERD - - - -
.
Toolbar-Locked - (no file)
Toolbar-10 - (no file)
.
.
.
“ImagePath”=“\??\c:\program files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl”
.
——————— VERGRENDELDE REGISTER SLEUTELS ———————
.
@Denied: (A 2) (Everyone)
@=“FlashBroker”
“LocalizedString”=“@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe,-101”
.
“Enabled”=dword:00000001
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe”
.
@=“{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”
.
@Denied: (A 2) (Everyone)
@=“Shockwave Flash Object”
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx”
“ThreadingModel”=“Apartment”
.
@=“0”
.
@=“ShockwaveFlash.ShockwaveFlash.11”
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1”
.
@=“{D27CDB6B-AE6D-11cf-96B8-444553540000}”
.
@=“1.0”
.
@=“ShockwaveFlash.ShockwaveFlash”
.
@Denied: (A 2) (Everyone)
@=“Macromedia Flash Factory Object”
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx”
“ThreadingModel”=“Apartment”
.
@=“FlashFactory.FlashFactory.1”
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1”
.
@=“{D27CDB6B-AE6D-11cf-96B8-444553540000}”
.
@=“1.0”
.
@=“FlashFactory.FlashFactory”A~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\scroll-right.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\search-go.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\search.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\text-ellipsis.xml
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\throbber.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\toolbarsplitter.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\transparent_1px.gif
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_02.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_03.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_04.png
c:\progra~2\IMESHA~1\MediaBar\Datamngr\ToolBar\chrome\skin\lib\uwa\border_06.png
.
@Denied: (A 2) (Everyone)
@=“IFlashBroker4”
.
@=“{00020424-0000-0000-C000-000000000046}”
.
@=“{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”
“Version”=“1.0”
.
@Denied: (Full) (Everyone)
.
Voltooingstijd: 2012-09-17 14:45:15
ComboFix-quarantined-files.txt 2012-09-17 12:45
ComboFix2.txt 2012-09-16 20:02
.
Pre-Run: 68.059.115.520 bytes beschikbaar
Post-Run: 67.760.226.304 bytes beschikbaar
.
- - End Of File - - 85431462D2EB78C0FB4A263DE6121AB6

Dit topic is gesloten, er kunnen geen reacties meer worden geplaatst.

kan er iemand naar mijn logjes kijken

fazantje

marianne40

fazantje

marianne40

fazantje

fazantje

marianne40

Ben

marianne40

marianne40