PC is heel erg traag en in de systemtray staat netwerk met een rood kruis, echter internet werkt gewoon (maar traag)
HJT geeft aan dat ik: O1 - Hosts: ::1 localhost
moet verwijderen en daarna opslaan als 'hosts.' Daarna opnieuw opstarten.
Echter ik mag niet niets in de directory windows\sys32\drivers\etc opslan
Toegang geweigerd!
Hieronder mijn HJT log en ik hoop dat u mij kunt helpen.
Volgens opdracht gekleurd, maar bij mij grafisch alleen in kleurcode... ?
Alvast bedankt.
[hjt]
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:40:26, on 27-3-2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18939)
Boot mode: Normal
Running processes:
c:\program files (x86)\f-secure\fshoster32.exe
c:\program files (x86)\intel\intel matrix storage manager\iaanotif.exe
c:\program files (x86)\nvidia corporation\update core\nvbackend.exe
c:\program files (x86)\acer\hotkey utility\hotkeyutility.exe
c:\program files (x86)\nec electronics\usb 3.0 host controller driver\application\nusb3mon.exe
c:\program files (x86)\hp\hp software update\hpwuschd2.exe
c:\program files (x86)\easeus\easeus partition master 11.9\bin\epmnews.exe
c:\program files (x86)\easeus\easeus partition master 11.9\bin\cleanupui.exe
c:\program files (x86)\common files\java\java update\jusched.exe
c:\program files\malwarebytes\anti-malware\mbamtray.exe
c:\program files (x86)\common files\java\java update\jucheck.exe
c:\windows\syswow64\prevhost.exe
c:\program files (x86)\trend micro\hijackthis\hijackthis.exe
c:\program files (x86)\microsoft office\office14\winword.exe
r1 - hkcu\software\microsoft\internet explorer\main,default_page_url = [noparse]http://homepage.acer.com/rdr.aspx?b...10&r=17360210cn05973363k75qx8n1wl6s[/noparse]
r1 - hkcu\software\microsoft\internet explorer\main,search page = [noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,default_page_url = [noparse]http://go.microsoft.com/fwlink/p/?linkid=255141[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,default_search_url = [noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,search page = [noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse]
r0 - hklm\software\microsoft\internet explorer\main,start page = [noparse]http://go.microsoft.com/fwlink/p/?linkid=255141[/noparse]
r0 - hklm\software\microsoft\internet explorer\search,searchassistant =
r0 - hklm\software\microsoft\internet explorer\search,customizesearch =
r0 - hklm\software\microsoft\internet explorer\main,local page = c:\windows\syswow64\blank.htm
r1 - hkcu\software\microsoft\windows\currentversion\internet settings,proxyoverride = *.local
r0 - hkcu\software\microsoft\internet explorer\toolbar,linksfoldername =
f2 - reg:system.ini: userinit=userinit.exe,
o1 - hosts: ::1 localhost
o2 - bho: browsing protection by f-secure - {45bbe08d-81c5-4a67-af20-b2a077c67747} - c:\program files (x86)\f-secure\apps\ultralight\nif\1520854327\browser\install\fs_ie_https\fs_ie_https.dll
o2 - bho: groove gfs browser helper - {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\progra~2\micros~1\office14\grooveex.dll
o2 - bho: java(tm) plug-in ssv helper - {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files (x86)\java\jre1.8.0_144\bin\ssv.dll
o2 - bho: aanmeldhulp voor windows live id - {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll
o2 - bho: windows live messenger companion helper - {9fdde16b-836f-4806-ab1f-1455cbeff289} - c:\program files (x86)\windows live\companion\companioncore.dll
o2 - bho: google toolbar helper - {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files (x86)\google\google toolbar\googletoolbar_32.dll
o2 - bho: urlredirectionbho - {b4f3a835-0e21-4959-ba22-42b3008e02ff} - c:\progra~2\micros~1\office14\urlredir.dll
o2 - bho: java(tm) plug-in 2 ssv helper - {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files (x86)\java\jre1.8.0_144\bin\jp2ssv.dll
o3 - toolbar: google toolbar - {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files (x86)\google\google toolbar\googletoolbar_32.dll
o4 - hklm\..\run: [hotkey utility] c:\program files (x86)\acer\hotkey utility\hotkeyutility.exe
o4 - hklm\..\run: [nusb3mon] c:\program files (x86)\nec electronics\usb 3.0 host controller driver\application\nusb3mon.exe
o4 - hklm\..\run: [hp software update] c:\program files (x86)\hp\hp software update\hpwuschd2.exe
o4 - hklm\..\run: [easeus epm tray] c:\program files (x86)\easeus\easeus partition master 11.9\bin\epmnews.exe
o4 - hklm\..\run: [easeus cleanup] c:\program files (x86)\easeus\easeus partition master 11.9\bin\cleanupui.exe 10 300
o4 - hklm\..\run: [sunjavaupdatesched] c:\program files (x86)\common files\java\java update\jusched.exe
o4 - hkcu\..\run: [sidebar] c:\program files\windows sidebar\sidebar.exe /autorun
o4 - hkcu\..\run: [ccleaner monitoring] c:\program files (x86)\ccleaner\ccleaner64.exe /monitor
o4 - hkus\s-1-5-18\..\run: [copy] c:\users\john\appdata\roaming\copy\copyagent.exe (user 'system')
o4 - hkus\.default\..\run: [copy] c:\users\john\appdata\roaming\copy\copyagent.exe (user 'default user')
o4 - startup: inktwaarschuwingen controleren - hp officejet pro 8600.lnk = ?
o8 - extra context menu item: &verzenden naar onenote - res://c:\progra~2\micros~1\office14\onbttnie.dll/105
o8 - extra context menu item: e&xport to microsoft excel - res://c:\progra~2\micros~1\office12\excel.exe/3000
o8 - extra context menu item: e&xporteren naar microsoft excel - res://c:\progra~2\micros~1\office14\excel.exe/3000
o9 - extra button: @c:\program files (x86)\windows live\companion\companionlang.dll,-600 - {0000036b-c524-4050-81a0-243669a86b9f} - c:\program files (x86)\windows live\companion\companioncore.dll
o9 - extra button: @c:\program files (x86)\windows live\writer\windowslivewritershortcuts.dll,-1004 - {219c3416-8cb2-491a-a3c7-d9fcddc9d600} - c:\program files (x86)\windows live\writer\writerbrowserextension.dll
o9 - extra 'tools' menuitem: @c:\program files (x86)\windows live\writer\windowslivewritershortcuts.dll,-1003 - {219c3416-8cb2-491a-a3c7-d9fcddc9d600} - c:\program files (x86)\windows live\writer\writerbrowserextension.dll
o9 - extra button: verzenden naar onenote - {2670000a-7350-4f3c-8081-5663ee0c6c49} - c:\program files (x86)\microsoft office\office14\onbttnie.dll
o9 - extra 'tools' menuitem: &verzenden naar onenote - {2670000a-7350-4f3c-8081-5663ee0c6c49} - c:\program files (x86)\microsoft office\office14\onbttnie.dll
o9 - extra button: &gekoppelde notities van onenote - {789fe86f-6fc4-46a1-9849-ede0db0c95ca} - c:\program files (x86)\microsoft office\office14\onbttnielinkednotes.dll
o9 - extra 'tools' menuitem: &gekoppelde notities van onenote - {789fe86f-6fc4-46a1-9849-ede0db0c95ca} - c:\program files (x86)\microsoft office\office14\onbttnielinkednotes.dll
o10 - unknown file in winsock lsp: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
o10 - unknown file in winsock lsp: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
o11 - options group: [accelerated_graphics] accelerated graphics
o16 - dpf: {73ecb3aa-4717-450c-a2ab-d00dad9ee203} - [noparse]http://h20614.www2.hp.com/ediags/gmd/install/cab/hpdetect1259.cab[/noparse]
o18 - protocol: wlpg - {e43ef6cd-a37a-4a9b-9e6f-83f89b8e6324} - c:\program files (x86)\windows live\photo gallery\albumdownloadprotocolhandler.dll
o18 - filter hijack: text/xml - {807573e5-5146-11d5-a672-00b0d022e945} - c:\program files (x86)\common files\microsoft shared\office14\msoxmlmf.dll
o23 - service: adobe acrobat update service (adobearmservice) - adobe systems incorporated - c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe
o23 - service: adobe flash player update service (adobeflashplayerupdatesvc) - adobe systems incorporated - c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe
o23 - service: @%systemroot%\system32\alg.exe,-112 (alg) - unknown owner - c:\windows\system32\alg.exe (file missing)
o23 - service: apple mobile device - apple inc. - c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe
o23 - service: bonjour-service (bonjour service) - apple inc. - c:\program files\bonjour\mdnsresponder.exe
o23 - service: easeus agent service (easeus agent) - chengdu yiwo tech development co., ltd - c:\program files (x86)\easeus\todo backup\bin\agent.exe
o23 - service: @%systemroot%\system32\efssvc.dll,-100 (efs) - unknown owner - c:\windows\system32\lsass.exe (file missing)
o23 - service: @%systemroot%\system32\fxsresm.dll,-118 (fax) - unknown owner - c:\windows\system32\fxssvc.exe (file missing)
o23 - service: f-secure hoster (fshoster) - f-secure corporation - c:\program files (x86)\f-secure\fshoster32.exe
o23 - service: f-secure hoster (restricted) (fsnethoster) - f-secure corporation - c:\program files (x86)\f-secure\fshoster32.exe
o23 - service: f-secure ultralight hoster (fsulhoster) - f-secure corporation - c:\program files (x86)\f-secure\apps\ultralight\ulcore\1519387538\fshoster64.exe
o23 - service: f-secure ultralight orsp client (fsulorsp) - f-secure corporation - c:\program files (x86)\f-secure\apps\ultralight\ulcore\1519387538\fsorsp64.exe
o23 - service: gregservice (greg_service) - acer incorporated - c:\program files (x86)\acer\registration\greghsrw.exe
o23 - service: google updateservice (gupdate) (gupdate) - google inc. - c:\program files (x86)\google\update\googleupdate.exe
o23 - service: google update-service (gupdatem) (gupdatem) - google inc. - c:\program files (x86)\google\update\googleupdate.exe
o23 - service: google software updater (gusvc) - google - c:\program files (x86)\google\common\google updater\googleupdaterservice.exe
o23 - service: hp support solutions framework service (hpsupportsolutionsframeworkservice) - hewlett-packard company - c:\program files (x86)\hp\common\hpsupportsolutionsframeworkservice.exe
o23 - service: intel(r) matrix storage event monitor (iaantmon) - intel corporation - c:\program files (x86)\intel\intel matrix storage manager\iaantmon.exe
o23 - service: @%systemroot%\system32\ieetwcollectorres.dll,-1000 (ieetwcollectorservice) - unknown owner - c:\windows\system32\ieetwcollector.exe (file missing)
o23 - service: ipod-service (ipod service) - apple inc. - c:\program files\ipod\bin\ipodservice.exe
o23 - service: @keyiso.dll,-100 (keyiso) - unknown owner - c:\windows\system32\lsass.exe (file missing)
o23 - service: malwarebytes service (mbamservice) - malwarebytes - c:\program files\malwarebytes\anti-malware\mbamservice.exe
o23 - service: mozilla maintenance service (mozillamaintenance) - mozilla foundation - c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe
o23 - service: @comres.dll,-2797 (msdtc) - unknown owner - c:\windows\system32\msdtc.exe (file missing)
o23 - service: mywinlocker service (mwlservice) - egis technology inc. - c:\program files (x86)\egistec\mywinlocker 3\x86\\mwlservice.exe
o23 - service: nero backitup scheduler 4.0 - nero ag - c:\program files (x86)\common files\nero\nero backitup 4\nbservice.exe
o23 - service: @%systemroot%\system32\netlogon.dll,-102 (netlogon) - unknown owner - c:\windows\system32\lsass.exe (file missing)
o23 - service: nitropdfreaderdrivercreatorreadspool3 (nitroreaderdriverreadspool3) - nitro pdf software - c:\program files\common files\nitro\reader\3.0\nitropdfreaderdriverservice3x64.exe
o23 - service: nti ischedulesvc - newtech infosystems, inc. - c:\program files (x86)\newtech infosystems\acer backup manager\ischedulesvc.exe
o23 - service: nvidia network service (nvnetworkservice) - nvidia corporation - c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe
o23 - service: nvidia streamer network service (nvstreamnetworksvc) - nvidia corporation - c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe
o23 - service: nvidia streamer service (nvstreamsvc) - nvidia corporation - c:\program files\nvidia corporation\nvstreamsrv\nvstreamservice.exe
o23 - service: nvidia display driver service (nvsvc) - unknown owner - c:\windows\system32\nvvsvc.exe (file missing)
o23 - service: plex update service (plexupdateservice) - plex, inc. - c:\program files (x86)\plex\plex media server\plex update service.exe
o23 - service: @%systemroot%\system32\psbase.dll,-300 (protectedstorage) - unknown owner - c:\windows\system32\lsass.exe (file missing)
o23 - service: @%systemroot%\system32\locator.exe,-2 (rpclocator) - unknown owner - c:\windows\system32\locator.exe (file missing)
o23 - service: @%systemroot%\system32\samsrv.dll,-1 (samss) - unknown owner - c:\windows\system32\lsass.exe (file missing)
o23 - service: sandboxie service (sbiesvc) - sandboxie holdings, llc - c:\program files\sandboxie\sbiesvc.exe
o23 - service: @%systemroot%\system32\snmptrap.exe,-3 (snmptrap) - unknown owner - c:\windows\system32\snmptrap.exe (file missing)
o23 - service: @%systemroot%\system32\spoolsv.exe,-1 (spooler) - unknown owner - c:\windows\system32\spoolsv.exe (file missing)
o23 - service: @%systemroot%\system32\sppsvc.exe,-101 (sppsvc) - unknown owner - c:\windows\system32\sppsvc.exe (file missing)
o23 - service: nvidia stereoscopic 3d driver service (stereo service) - nvidia corporation - c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe
o23 - service: teamviewer 11 (teamviewer) - teamviewer gmbh - c:\program files (x86)\teamviewer\teamviewer_service.exe
o23 - service: tomtomhomeservice - tomtom - c:\program files (x86)\tomtom home 2\tomtomhomeservice.exe
o23 - service: @%systemroot%\system32\ui0detect.exe,-101 (ui0detect) - unknown owner - c:\windows\system32\ui0detect.exe (file missing)
o23 - service: umvpfsrv - logitech inc. - c:\program files (x86)\common files\logishrd\lvmvfm\umvpfsrv.exe
o23 - service: updater service - acer - c:\program files\acer\acer updater\updaterservice.exe
o23 - service: @%systemroot%\system32\vaultsvc.dll,-1003 (vaultsvc) - unknown owner - c:\windows\system32\lsass.exe (file missing)
o23 - service: @%systemroot%\system32\vds.exe,-100 (vds) - unknown owner - c:\windows\system32\vds.exe (file missing)
o23 - service: @%systemroot%\system32\vssvc.exe,-102 (vss) - unknown owner - c:\windows\system32\vssvc.exe (file missing)
o23 - service: @%systemroot%\system32\wat\watux.exe,-601 (watadminsvc) - unknown owner - c:\windows\system32\wat\watadminsvc.exe (file missing)
o23 - service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - unknown owner - c:\windows\system32\wbengine.exe (file missing)
o23 - service: wintab service (wintabservice) - unknown owner - c:\windows\system32\drivers\wtsrv.exe (file missing)
o23 - service: @%systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiapsrv) - unknown owner - c:\windows\system32\wbem\wmiapsrv.exe (file missing)
o23 - service: @%programfiles%\windows media player\wmpnetwk.exe,-101 (wmpnetworksvc) - unknown owner - c:\program files (x86)\windows media player\wmpnetwk.exe (file missing)
--
end of file - 14640 bytes
[/hjt]
HJT geeft aan dat ik: O1 - Hosts: ::1 localhost
moet verwijderen en daarna opslaan als 'hosts.' Daarna opnieuw opstarten.
Echter ik mag niet niets in de directory windows\sys32\drivers\etc opslan
Toegang geweigerd!
Hieronder mijn HJT log en ik hoop dat u mij kunt helpen.
Volgens opdracht gekleurd, maar bij mij grafisch alleen in kleurcode... ?
Alvast bedankt.
[hjt]
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:40:26, on 27-3-2018
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.18939)
Boot mode: Normal
Running processes:
c:\program files (x86)\f-secure\fshoster32.exe
c:\program files (x86)\intel\intel matrix storage manager\iaanotif.exe
c:\program files (x86)\nvidia corporation\update core\nvbackend.exe
c:\program files (x86)\acer\hotkey utility\hotkeyutility.exe
c:\program files (x86)\nec electronics\usb 3.0 host controller driver\application\nusb3mon.exe
c:\program files (x86)\hp\hp software update\hpwuschd2.exe
c:\program files (x86)\easeus\easeus partition master 11.9\bin\epmnews.exe
c:\program files (x86)\easeus\easeus partition master 11.9\bin\cleanupui.exe
c:\program files (x86)\common files\java\java update\jusched.exe
c:\program files\malwarebytes\anti-malware\mbamtray.exe
c:\program files (x86)\common files\java\java update\jucheck.exe
c:\windows\syswow64\prevhost.exe
c:\program files (x86)\trend micro\hijackthis\hijackthis.exe
c:\program files (x86)\microsoft office\office14\winword.exe
r1 - hkcu\software\microsoft\internet explorer\main,default_page_url = [noparse]http://homepage.acer.com/rdr.aspx?b...10&r=17360210cn05973363k75qx8n1wl6s[/noparse]
r1 - hkcu\software\microsoft\internet explorer\main,search page = [noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,default_page_url = [noparse]http://go.microsoft.com/fwlink/p/?linkid=255141[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,default_search_url = [noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse]
r1 - hklm\software\microsoft\internet explorer\main,search page = [noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse]
r0 - hklm\software\microsoft\internet explorer\main,start page = [noparse]http://go.microsoft.com/fwlink/p/?linkid=255141[/noparse]
r0 - hklm\software\microsoft\internet explorer\search,searchassistant =
r0 - hklm\software\microsoft\internet explorer\search,customizesearch =
r0 - hklm\software\microsoft\internet explorer\main,local page = c:\windows\syswow64\blank.htm
r1 - hkcu\software\microsoft\windows\currentversion\internet settings,proxyoverride = *.local
r0 - hkcu\software\microsoft\internet explorer\toolbar,linksfoldername =
f2 - reg:system.ini: userinit=userinit.exe,
o1 - hosts: ::1 localhost
o2 - bho: browsing protection by f-secure - {45bbe08d-81c5-4a67-af20-b2a077c67747} - c:\program files (x86)\f-secure\apps\ultralight\nif\1520854327\browser\install\fs_ie_https\fs_ie_https.dll
o2 - bho: groove gfs browser helper - {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\progra~2\micros~1\office14\grooveex.dll
o2 - bho: java(tm) plug-in ssv helper - {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files (x86)\java\jre1.8.0_144\bin\ssv.dll
o2 - bho: aanmeldhulp voor windows live id - {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files (x86)\common files\microsoft shared\windows live\windowslivelogin.dll
o2 - bho: windows live messenger companion helper - {9fdde16b-836f-4806-ab1f-1455cbeff289} - c:\program files (x86)\windows live\companion\companioncore.dll
o2 - bho: google toolbar helper - {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files (x86)\google\google toolbar\googletoolbar_32.dll
o2 - bho: urlredirectionbho - {b4f3a835-0e21-4959-ba22-42b3008e02ff} - c:\progra~2\micros~1\office14\urlredir.dll
o2 - bho: java(tm) plug-in 2 ssv helper - {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files (x86)\java\jre1.8.0_144\bin\jp2ssv.dll
o3 - toolbar: google toolbar - {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files (x86)\google\google toolbar\googletoolbar_32.dll
o4 - hklm\..\run: [hotkey utility] c:\program files (x86)\acer\hotkey utility\hotkeyutility.exe
o4 - hklm\..\run: [nusb3mon] c:\program files (x86)\nec electronics\usb 3.0 host controller driver\application\nusb3mon.exe
o4 - hklm\..\run: [hp software update] c:\program files (x86)\hp\hp software update\hpwuschd2.exe
o4 - hklm\..\run: [easeus epm tray] c:\program files (x86)\easeus\easeus partition master 11.9\bin\epmnews.exe
o4 - hklm\..\run: [easeus cleanup] c:\program files (x86)\easeus\easeus partition master 11.9\bin\cleanupui.exe 10 300
o4 - hklm\..\run: [sunjavaupdatesched] c:\program files (x86)\common files\java\java update\jusched.exe
o4 - hkcu\..\run: [sidebar] c:\program files\windows sidebar\sidebar.exe /autorun
o4 - hkcu\..\run: [ccleaner monitoring] c:\program files (x86)\ccleaner\ccleaner64.exe /monitor
o4 - hkus\s-1-5-18\..\run: [copy] c:\users\john\appdata\roaming\copy\copyagent.exe (user 'system')
o4 - hkus\.default\..\run: [copy] c:\users\john\appdata\roaming\copy\copyagent.exe (user 'default user')
o4 - startup: inktwaarschuwingen controleren - hp officejet pro 8600.lnk = ?
o8 - extra context menu item: &verzenden naar onenote - res://c:\progra~2\micros~1\office14\onbttnie.dll/105
o8 - extra context menu item: e&xport to microsoft excel - res://c:\progra~2\micros~1\office12\excel.exe/3000
o8 - extra context menu item: e&xporteren naar microsoft excel - res://c:\progra~2\micros~1\office14\excel.exe/3000
o9 - extra button: @c:\program files (x86)\windows live\companion\companionlang.dll,-600 - {0000036b-c524-4050-81a0-243669a86b9f} - c:\program files (x86)\windows live\companion\companioncore.dll
o9 - extra button: @c:\program files (x86)\windows live\writer\windowslivewritershortcuts.dll,-1004 - {219c3416-8cb2-491a-a3c7-d9fcddc9d600} - c:\program files (x86)\windows live\writer\writerbrowserextension.dll
o9 - extra 'tools' menuitem: @c:\program files (x86)\windows live\writer\windowslivewritershortcuts.dll,-1003 - {219c3416-8cb2-491a-a3c7-d9fcddc9d600} - c:\program files (x86)\windows live\writer\writerbrowserextension.dll
o9 - extra button: verzenden naar onenote - {2670000a-7350-4f3c-8081-5663ee0c6c49} - c:\program files (x86)\microsoft office\office14\onbttnie.dll
o9 - extra 'tools' menuitem: &verzenden naar onenote - {2670000a-7350-4f3c-8081-5663ee0c6c49} - c:\program files (x86)\microsoft office\office14\onbttnie.dll
o9 - extra button: &gekoppelde notities van onenote - {789fe86f-6fc4-46a1-9849-ede0db0c95ca} - c:\program files (x86)\microsoft office\office14\onbttnielinkednotes.dll
o9 - extra 'tools' menuitem: &gekoppelde notities van onenote - {789fe86f-6fc4-46a1-9849-ede0db0c95ca} - c:\program files (x86)\microsoft office\office14\onbttnielinkednotes.dll
o10 - unknown file in winsock lsp: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
o10 - unknown file in winsock lsp: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
o11 - options group: [accelerated_graphics] accelerated graphics
o16 - dpf: {73ecb3aa-4717-450c-a2ab-d00dad9ee203} - [noparse]http://h20614.www2.hp.com/ediags/gmd/install/cab/hpdetect1259.cab[/noparse]
o18 - protocol: wlpg - {e43ef6cd-a37a-4a9b-9e6f-83f89b8e6324} - c:\program files (x86)\windows live\photo gallery\albumdownloadprotocolhandler.dll
o18 - filter hijack: text/xml - {807573e5-5146-11d5-a672-00b0d022e945} - c:\program files (x86)\common files\microsoft shared\office14\msoxmlmf.dll
o23 - service: adobe acrobat update service (adobearmservice) - adobe systems incorporated - c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe
o23 - service: adobe flash player update service (adobeflashplayerupdatesvc) - adobe systems incorporated - c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe
o23 - service: @%systemroot%\system32\alg.exe,-112 (alg) - unknown owner - c:\windows\system32\alg.exe (file missing)
o23 - service: apple mobile device - apple inc. - c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe
o23 - service: bonjour-service (bonjour service) - apple inc. - c:\program files\bonjour\mdnsresponder.exe
o23 - service: easeus agent service (easeus agent) - chengdu yiwo tech development co., ltd - c:\program files (x86)\easeus\todo backup\bin\agent.exe
o23 - service: @%systemroot%\system32\efssvc.dll,-100 (efs) - unknown owner - c:\windows\system32\lsass.exe (file missing)
o23 - service: @%systemroot%\system32\fxsresm.dll,-118 (fax) - unknown owner - c:\windows\system32\fxssvc.exe (file missing)
o23 - service: f-secure hoster (fshoster) - f-secure corporation - c:\program files (x86)\f-secure\fshoster32.exe
o23 - service: f-secure hoster (restricted) (fsnethoster) - f-secure corporation - c:\program files (x86)\f-secure\fshoster32.exe
o23 - service: f-secure ultralight hoster (fsulhoster) - f-secure corporation - c:\program files (x86)\f-secure\apps\ultralight\ulcore\1519387538\fshoster64.exe
o23 - service: f-secure ultralight orsp client (fsulorsp) - f-secure corporation - c:\program files (x86)\f-secure\apps\ultralight\ulcore\1519387538\fsorsp64.exe
o23 - service: gregservice (greg_service) - acer incorporated - c:\program files (x86)\acer\registration\greghsrw.exe
o23 - service: google updateservice (gupdate) (gupdate) - google inc. - c:\program files (x86)\google\update\googleupdate.exe
o23 - service: google update-service (gupdatem) (gupdatem) - google inc. - c:\program files (x86)\google\update\googleupdate.exe
o23 - service: google software updater (gusvc) - google - c:\program files (x86)\google\common\google updater\googleupdaterservice.exe
o23 - service: hp support solutions framework service (hpsupportsolutionsframeworkservice) - hewlett-packard company - c:\program files (x86)\hp\common\hpsupportsolutionsframeworkservice.exe
o23 - service: intel(r) matrix storage event monitor (iaantmon) - intel corporation - c:\program files (x86)\intel\intel matrix storage manager\iaantmon.exe
o23 - service: @%systemroot%\system32\ieetwcollectorres.dll,-1000 (ieetwcollectorservice) - unknown owner - c:\windows\system32\ieetwcollector.exe (file missing)
o23 - service: ipod-service (ipod service) - apple inc. - c:\program files\ipod\bin\ipodservice.exe
o23 - service: @keyiso.dll,-100 (keyiso) - unknown owner - c:\windows\system32\lsass.exe (file missing)
o23 - service: malwarebytes service (mbamservice) - malwarebytes - c:\program files\malwarebytes\anti-malware\mbamservice.exe
o23 - service: mozilla maintenance service (mozillamaintenance) - mozilla foundation - c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe
o23 - service: @comres.dll,-2797 (msdtc) - unknown owner - c:\windows\system32\msdtc.exe (file missing)
o23 - service: mywinlocker service (mwlservice) - egis technology inc. - c:\program files (x86)\egistec\mywinlocker 3\x86\\mwlservice.exe
o23 - service: nero backitup scheduler 4.0 - nero ag - c:\program files (x86)\common files\nero\nero backitup 4\nbservice.exe
o23 - service: @%systemroot%\system32\netlogon.dll,-102 (netlogon) - unknown owner - c:\windows\system32\lsass.exe (file missing)
o23 - service: nitropdfreaderdrivercreatorreadspool3 (nitroreaderdriverreadspool3) - nitro pdf software - c:\program files\common files\nitro\reader\3.0\nitropdfreaderdriverservice3x64.exe
o23 - service: nti ischedulesvc - newtech infosystems, inc. - c:\program files (x86)\newtech infosystems\acer backup manager\ischedulesvc.exe
o23 - service: nvidia network service (nvnetworkservice) - nvidia corporation - c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe
o23 - service: nvidia streamer network service (nvstreamnetworksvc) - nvidia corporation - c:\program files\nvidia corporation\nvstreamsrv\nvstreamnetworkservice.exe
o23 - service: nvidia streamer service (nvstreamsvc) - nvidia corporation - c:\program files\nvidia corporation\nvstreamsrv\nvstreamservice.exe
o23 - service: nvidia display driver service (nvsvc) - unknown owner - c:\windows\system32\nvvsvc.exe (file missing)
o23 - service: plex update service (plexupdateservice) - plex, inc. - c:\program files (x86)\plex\plex media server\plex update service.exe
o23 - service: @%systemroot%\system32\psbase.dll,-300 (protectedstorage) - unknown owner - c:\windows\system32\lsass.exe (file missing)
o23 - service: @%systemroot%\system32\locator.exe,-2 (rpclocator) - unknown owner - c:\windows\system32\locator.exe (file missing)
o23 - service: @%systemroot%\system32\samsrv.dll,-1 (samss) - unknown owner - c:\windows\system32\lsass.exe (file missing)
o23 - service: sandboxie service (sbiesvc) - sandboxie holdings, llc - c:\program files\sandboxie\sbiesvc.exe
o23 - service: @%systemroot%\system32\snmptrap.exe,-3 (snmptrap) - unknown owner - c:\windows\system32\snmptrap.exe (file missing)
o23 - service: @%systemroot%\system32\spoolsv.exe,-1 (spooler) - unknown owner - c:\windows\system32\spoolsv.exe (file missing)
o23 - service: @%systemroot%\system32\sppsvc.exe,-101 (sppsvc) - unknown owner - c:\windows\system32\sppsvc.exe (file missing)
o23 - service: nvidia stereoscopic 3d driver service (stereo service) - nvidia corporation - c:\program files (x86)\nvidia corporation\3d vision\nvscpapisvr.exe
o23 - service: teamviewer 11 (teamviewer) - teamviewer gmbh - c:\program files (x86)\teamviewer\teamviewer_service.exe
o23 - service: tomtomhomeservice - tomtom - c:\program files (x86)\tomtom home 2\tomtomhomeservice.exe
o23 - service: @%systemroot%\system32\ui0detect.exe,-101 (ui0detect) - unknown owner - c:\windows\system32\ui0detect.exe (file missing)
o23 - service: umvpfsrv - logitech inc. - c:\program files (x86)\common files\logishrd\lvmvfm\umvpfsrv.exe
o23 - service: updater service - acer - c:\program files\acer\acer updater\updaterservice.exe
o23 - service: @%systemroot%\system32\vaultsvc.dll,-1003 (vaultsvc) - unknown owner - c:\windows\system32\lsass.exe (file missing)
o23 - service: @%systemroot%\system32\vds.exe,-100 (vds) - unknown owner - c:\windows\system32\vds.exe (file missing)
o23 - service: @%systemroot%\system32\vssvc.exe,-102 (vss) - unknown owner - c:\windows\system32\vssvc.exe (file missing)
o23 - service: @%systemroot%\system32\wat\watux.exe,-601 (watadminsvc) - unknown owner - c:\windows\system32\wat\watadminsvc.exe (file missing)
o23 - service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - unknown owner - c:\windows\system32\wbengine.exe (file missing)
o23 - service: wintab service (wintabservice) - unknown owner - c:\windows\system32\drivers\wtsrv.exe (file missing)
o23 - service: @%systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiapsrv) - unknown owner - c:\windows\system32\wbem\wmiapsrv.exe (file missing)
o23 - service: @%programfiles%\windows media player\wmpnetwk.exe,-101 (wmpnetworksvc) - unknown owner - c:\program files (x86)\windows media player\wmpnetwk.exe (file missing)
--
end of file - 14640 bytes
[/hjt]