karla.otten
-
Items
202 -
Registratiedatum
-
Laatst bezocht
Inhoudstype
Profielen
Forums
Store
Alles dat geplaatst werd door karla.otten
-
Ik heb problemen met java. Ik kan niet meer update! Kan het niet verwijderen, zodat ik het opnieuw kan installeren. Heb het idee dat deze beschadigd is. Ook heb ik systeemhestel uitgevoerd maar dit mocht niet baten. Wil deze versie verwijderen om opnieuw te installeren! Maar krijg het niet voor elkaar, kan iemand me helpen a.u.b. Voeg een logje bij: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 8:56:39, on 21-8-2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16876) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\TUProgSt.exe C:\Program Files\Canon\CAL\CALMAIN.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\IncrediMail\bin\IncMail.exe C:\Program Files\IncrediMail\bin\IMApp.exe C:\Program Files\IncrediMail\bin\ImNotfy.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\RunOnce: [uninstall Adobe Download Manager] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\NOS\bin\getPlus_Helper.dll",Uninstall /Get1noarp O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\RunOnce: [shockwave Updater] C:\WINDOWS\system32\Adobe\SHOCKW~1\SWHELP~1.EXE -Update -1103472 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; GTB6; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)" -"http://www.hotwheels.com/games/brakeless/nobrakes.dcr" O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user') O4 - .DEFAULT User Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user') O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {1851174C-97BD-4217-A0CC-E908F60D5B7A} (Hewlett-Packard Online Support Services) - https://h50203.www5.hp.com/HPISWeb/Customer/cabs/HPISDataManager.CAB O16 - DPF: {49232000-16E4-426C-A231-62846947304B} (SysData Class) - https://wimpro3.cce.hp.com/ChatEntry/downloads/sysinfo.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1223755509234 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1223755586421 O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextnl.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe -- End of file - 7142 bytes
-
Gelukt! Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 12:13:47, on 18-8-2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16876) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Canon\CAL\CALMAIN.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\IncrediMail\bin\IncMail.exe C:\Program Files\IncrediMail\bin\IMApp.exe C:\Program Files\IncrediMail\bin\ImNotfy.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\RunOnce: [shockwave Updater] C:\WINDOWS\system32\Adobe\SHOCKW~1\SWHELP~1.EXE -Update -1103472 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; GTB6; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)" -"http://www.hotwheels.com/games/brakeless/nobrakes.dcr" O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user') O4 - .DEFAULT User Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user') O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {1851174C-97BD-4217-A0CC-E908F60D5B7A} (Hewlett-Packard Online Support Services) - https://h50203.www5.hp.com/HPISWeb/Customer/cabs/HPISDataManager.CAB O16 - DPF: {49232000-16E4-426C-A231-62846947304B} (SysData Class) - https://wimpro3.cce.hp.com/ChatEntry/downloads/sysinfo.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1223755509234 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1223755586421 O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextnl.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe -- End of file - 6631 bytes
-
Het is niet te geloven, 3x geprobeerd. Het is niet te verwijderen, Heb precies gedaan wat je hierboven aangeeft. aanvinken- fix checked, en opnieuw laten opstarten, Raar. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 15:02:41, on 17-8-2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16876) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Canon\CAL\CALMAIN.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\IncrediMail\bin\IncMail.exe C:\Program Files\IncrediMail\bin\IMApp.exe C:\Program Files\IncrediMail\bin\ImNotfy.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\RunOnce: [shockwave Updater] C:\WINDOWS\system32\Adobe\SHOCKW~1\SWHELP~1.EXE -Update -1103472 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; GTB6; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)" -"http://www.hotwheels.com/games/brakeless/nobrakes.dcr" O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user') O4 - .DEFAULT User Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user') O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {1851174C-97BD-4217-A0CC-E908F60D5B7A} (Hewlett-Packard Online Support Services) - https://h50203.www5.hp.com/HPISWeb/Customer/cabs/HPISDataManager.CAB O16 - DPF: {49232000-16E4-426C-A231-62846947304B} (SysData Class) - https://wimpro3.cce.hp.com/ChatEntry/downloads/sysinfo.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1223755509234 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1223755586421 O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextnl.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Unknown owner - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe (file missing) O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe -- End of file - 6720 bytes
-
in de lade waar ik normaal alle dvd/ cd in leg zie ik bij deze alleen het icoontje voor dvd, ik zie verder helemaal niks, geen vermelding dat er iets in zit. ---------- Post toegevoegd om 14:04 ---------- Vorige post was om 13:58 ---------- er is volgens mij nogal wat mis met deze computer. Heb even een logje gemaakt. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 14:04:35, on 17-8-2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16876) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Canon\CAL\CALMAIN.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\ctfmon.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\IncrediMail\bin\IncMail.exe C:\Program Files\IncrediMail\bin\IMApp.exe C:\Program Files\IncrediMail\bin\ImNotfy.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\WINDOWS\system32\DllHost.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\RunOnce: [uninstall Adobe Download Manager] "C:\WINDOWS\system32\rundll32.exe" "C:\Program Files\NOS\bin\getPlus_Helper.dll",Uninstall /Get1noarp O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\RunOnce: [shockwave Updater] C:\WINDOWS\system32\Adobe\SHOCKW~1\SWHELP~1.EXE -Update -1103472 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; GTB6; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)" -"http://www.hotwheels.com/games/brakeless/nobrakes.dcr" O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user') O4 - .DEFAULT User Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user') O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {1851174C-97BD-4217-A0CC-E908F60D5B7A} (Hewlett-Packard Online Support Services) - https://h50203.www5.hp.com/HPISWeb/Customer/cabs/HPISDataManager.CAB O16 - DPF: {426784E5-24B2-4708-820D-117342FAD009} (Cimporter Object) - http://www.hyves.nl/cab/outlookaddressbook.cab O16 - DPF: {49232000-16E4-426C-A231-62846947304B} (SysData Class) - https://wimpro3.cce.hp.com/ChatEntry/downloads/sysinfo.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1223755509234 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1223755586421 O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextnl.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Unknown owner - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe (file missing) O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe -- End of file - 7126 bytes
-
Als ik het schijfje in de pc stop gebeurd er helemaal niks. Normaal gesproken start een schijf meteen op. Ik heb nu gezocht in Deze Computer, maar ook hier vind ik geen vermelding dat er een minidisk in mijn lade zit. Bestandsnaam heb geen idee, omdat ik nergens iets kan zien. Ik heb het geprobeerd met Mediaplayer 11 Ben nog maar een beginner wat betreft dvd schijfjes, dus als je een oplossing weet graag stap voor stap Alvast heel erg bedankt
-
Hallo, ik heb een minidisk (beeldmateriaal) waarop mijn trouwen is vastgelegd het is een minidisk van Maxwell, 30 min. 1.4 gB, DVD-R video recordable. ik weet niet of het een camcorder betreft die deze opnames heeft gemaakt. nu zou ik deze graag op mijn computer, pavillion 360a, windows xp, willen afspelen. Met zonder moeite kan ik het wel afspelen op mijn dvd recorder. maar niet op mijn pc. heb ik daar een iets voor nodig? kan me iemand helpen hierbij
-
Allemaal gelukt! Nogmaals bedank!
-
Ik heb nu geen enkel probleem meer!! Hartelijk bedankt voor je profecionele hulp.
-
Hieronder de twee gevraagde logjes. ComboFix 09-07-29.03 - Eigenaar 30-07-2009 9:16.2.1 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.503.165 [GMT 2:00] Gestart vanuit: c:\documents and settings\Eigenaar\Bureaublad\ComboFix.exe gebruikte Opdracht switches :: c:\documents and settings\Eigenaar\Bureaublad\CFScript.text..txt AV: avast! antivirus 4.8.1335 [VPS 090729-1] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D} AV: BitDefender Antivirus *On-access scanning disabled* (Updated) {6C4BB89C-B0ED-4F41-A29C-4373888923BB} FILE :: "c:\documents and settings\Administrator\Menu Start\Programma's\Opstarten\" "c:\windows\system32\3366530866.sys" . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\docume~1\Eigenaar\LOCALS~1\Temp\MFPL7014.DLL c:\documents and settings\Eigenaar\Local Settings\Temp\MFPL7014.DLL c:\windows\system32\3366530866.sys . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_HITMANPRO3 -------\Service_hitmanpro3 (((((((((((((((((((( Bestanden Gemaakt van 2009-06-28 to 2009-07-30 )))))))))))))))))))))))))))))) . 2009-07-28 19:28 . 2009-07-30 07:12 -------- d--h--r- c:\documents and settings\Eigenaar\Onlangs geopend 2009-07-28 18:59 . 2009-07-28 18:59 -------- d-----w- c:\windows\system32\wbem\Repository 2009-07-28 18:56 . 2009-07-28 18:56 -------- d-----w- c:\program files\Photo Viewer 2009-07-27 13:41 . 2009-07-27 13:41 -------- d-----w- c:\documents and settings\Eigenaar\Application Data\OpenOffice.org 2009-07-27 13:36 . 2009-07-27 13:36 -------- d-----w- c:\program files\OpenOffice.org 3 2009-07-26 08:23 . 2009-07-26 08:23 -------- d-----w- C:\MSOCache 2009-07-25 19:37 . 2009-07-28 18:39 -------- d-----w- c:\documents and settings\Eigenaar\Application Data\Reg Tool 2009-07-25 14:08 . 2009-07-28 18:50 -------- d-----w- c:\program files\Recovery for PowerPoint(2) 2009-07-02 11:49 . 2009-07-02 11:49 -------- d-----w- c:\program files\AH 2009-07-02 11:36 . 2009-07-28 18:56 -------- d-----w- c:\program files\Microsoft Windows Vista Upgrade Advisor 2009-07-02 11:32 . 2009-07-02 11:32 -------- d-----w- c:\documents and settings\Eigenaar\IECompatCache 2009-07-02 11:30 . 2009-07-02 11:30 -------- d-----w- c:\documents and settings\Eigenaar\PrivacIE 2009-07-02 11:28 . 2009-07-02 11:28 -------- d-----w- c:\documents and settings\Eigenaar\IETldCache . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-07-30 04:00 . 2004-12-12 09:07 -------- d-----w- c:\documents and settings\Eigenaar\Application Data\Image Zone Express 2009-07-28 18:58 . 2009-04-24 18:31 -------- d-----w- c:\documents and settings\Eigenaar\Application Data\CameraWindowDC 2009-07-28 18:55 . 2009-05-06 18:19 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-07-28 18:49 . 2006-12-20 16:58 -------- d-----w- c:\documents and settings\Eigenaar\Application Data\OfficeUpdate12 2009-07-28 18:39 . 2008-10-25 16:13 -------- d-----w- c:\program files\Microsoft Silverlight 2009-07-27 13:27 . 2003-08-01 20:13 -------- d-----w- c:\program files\Java 2009-07-25 19:47 . 2009-04-26 06:53 -------- d-----w- c:\program files\Free Window Registry Repair 2009-07-25 19:18 . 2003-08-01 19:55 73824 -c--a-w- c:\documents and settings\Eigenaar\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2009-07-25 18:51 . 2004-07-31 10:08 5058 -c--a-w- c:\windows\Help\hhcolreg.dat 2009-07-25 18:44 . 2003-08-01 17:04 -------- d-----w- c:\program files\microsoft frontpage 2009-07-25 10:21 . 2008-02-12 12:15 -------- d-----w- c:\program files\MSECACHE 2009-07-25 09:24 . 2007-02-14 07:26 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP 2009-07-07 16:49 . 2009-04-24 18:32 -------- d-----w- c:\documents and settings\Eigenaar\Application Data\ZoomBrowser EX 2009-06-29 16:01 . 2006-06-23 11:29 827392 ----a-w- c:\windows\system32\wininet.dll 2009-06-29 16:01 . 2008-10-11 20:36 78336 ------w- c:\windows\system32\ieencode.dll 2009-06-29 16:01 . 2003-08-27 23:43 17408 ----a-w- c:\windows\system32\corpol.dll 2009-06-16 14:40 . 2003-08-27 23:49 119808 ----a-w- c:\windows\system32\t2embed.dll 2009-06-16 14:40 . 2003-08-27 23:44 81920 ----a-w- c:\windows\system32\fontsub.dll 2009-06-03 19:11 . 2002-12-12 12:14 1295360 ------w- c:\windows\system32\quartz.dll 2009-05-28 16:40 . 2009-05-28 16:40 3371383 ----a-w- c:\documents and settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe 2009-05-26 11:20 . 2009-05-06 18:19 40160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-05-26 11:19 . 2009-05-06 18:19 19096 ----a-w- c:\windows\system32\drivers\mbam.sys 2009-05-07 15:34 . 2003-08-27 23:46 347136 ----a-w- c:\windows\system32\localspl.dll 2009-05-06 17:48 . 2009-04-26 12:15 162 ----a-w- c:\windows\system32\pinf.sys 2009-05-06 16:54 . 2009-05-06 16:55 55640 ----a-w- c:\windows\system32\drivers\avgntflt.sys 2009-05-05 18:08 . 2003-08-02 01:50 93888 ----a-w- c:\windows\system32\perfc013.dat 2009-05-05 18:08 . 2003-08-02 01:50 515922 ----a-w- c:\windows\system32\perfh013.dat 2009-05-04 20:16 . 2009-05-04 20:16 164 ----a-w- C:\install.dat 2007-07-22 07:42 . 2007-07-22 07:42 32 -csha-w- c:\windows\{3D1EBD19-DBE8-4EFA-9959-C72430ACE4DF}.dat . ((((((((((((((((((((((((((((( SnapShot@2009-07-30_05.42.41 ))))))))))))))))))))))))))))))))))))))))) . + 2009-07-30 07:27 . 2009-07-30 07:27 16384 c:\windows\Temp\Perflib_Perfdata_670.dat + 2009-07-30 07:27 . 2009-07-30 07:27 16384 c:\windows\Temp\Perflib_Perfdata_1c4.dat . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-06-30 68856] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-02-05 81000] c:\documents and settings\Administrator\Menu Start\Programma's\Opstarten\ AutoTBar.exe [2003-6-21 53248] mod_sm.lnk - c:\hp\bin\cloaker.exe [1999-11-7 27136] c:\documents and settings\Default User\Menu Start\Programma's\Opstarten\ AutoTBar.exe [2003-6-21 53248] mod_sm.lnk - c:\hp\bin\cloaker.exe [1999-11-7 27136] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] @="Service" [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^HP Digital Imaging Monitor.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\HP Digital Imaging Monitor.lnk backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^hp psc 1000 series.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\hp psc 1000 series.lnk backup=c:\windows\pss\hp psc 1000 series.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^hpoddt01.exe.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\hpoddt01.exe.lnk backup=c:\windows\pss\hpoddt01.exe.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office.lnk backup=c:\windows\pss\Microsoft Office.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled] "Reminder"="c:\windows\Creator\Remind_XP.exe" [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\IncrediMail\\bin\\IncMail.exe"= "c:\\Program Files\\IncrediMail\\bin\\ImApp.exe"= "c:\\Program Files\\IncrediMail\\bin\\ImpCnt.exe"= "c:\\Program Files\\IncrediMail\\bin\\ImSc.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqste08.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpofxm08.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hposfx08.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hposid01.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqscnvw.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqkygrp.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqCopy.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpfccopy.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpzwiz01.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\Unload\\HpqPhUnl.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpoews01.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= "c:\\Program Files\\IncrediMail\\bin\\ImLc.exe"= R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [6-5-2009 19:39 114768] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [6-5-2009 19:39 20560] R2 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [3-11-2006 19:19 13592] S3 bdfm;BDFM;c:\windows\system32\drivers\bdfm.sys [18-9-2008 12:09 111112] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] bdx REG_MULTI_SZ scan . Inhoud van de 'Gedeelde Taken' map 2009-07-27 c:\windows\Tasks\FRU Task 2003-04-06 08:52ewlett-Packard2003-04-06 08:52p psc 1200 series5E771253C1676EBED677BF361FDFC537825E15B8159687822.job - c:\program files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe [2003-04-05 22:52] 2009-07-27 c:\windows\Tasks\FRU Task 2003-04-06 08:52ewlett-Packard2003-04-06 08:52p psc 1200 series5E771253C1676EBED677BF361FDFC537825E15B8223796896.job - c:\program files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe [2003-04-05 22:52] 2009-07-30 c:\windows\Tasks\MP Scheduled Scan.job - c:\program files\Windows Defender\MpCmdRun.exe [2006-11-03 17:20] 2009-07-23 c:\windows\Tasks\Schedule Task Weekly.job - c:\program files\Registry Easy\RE.exe [2008-08-21 13:49] 2009-07-30 c:\windows\Tasks\User_Feed_Synchronization-{6DB5F3E4-9353-491F-97A5-DB05F7DEE07A}.job - c:\windows\system32\msfeedssync.exe [2007-08-13 16:36] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://mystart.incredimail.com/ mStart Page = hxxp://mystart.incredimail.com/dutch/ . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2009-07-30 09:27 Windows 5.1.2600 Service Pack 3 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\HP\EN] @DACL=(02 0000) "OnLineServicesDirName"="Online Services" [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\HP\FR] @DACL=(02 0000) "OnLineServicesDirName"="Services en ligne" [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\HP\MX] @DACL=(02 0000) "OnLineServicesDirName"="Servicios en línea" [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\HP\NL] @DACL=(02 0000) "OnLineServicesDirName"="Online Services" [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\HP\NW] @DACL=(02 0000) "OnLineServicesDirName"="Online tjenster" [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\HP\SP] @DACL=(02 0000) "OnLineServicesDirName"="Servicios en línea" [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\HP\SW] @DACL=(02 0000) "OnLineServicesDirName"="Online tjänster" [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\HP\UK] @DACL=(02 0000) "OnLineServicesDirName"="Online services" [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\HP\US] @DACL=(02 0000) "OnLineServicesDirName"="Online Services" . --------------------- DLLs Geladen Onder Lopende Processen --------------------- - - - - - - - > 'explorer.exe'(2660) c:\windows\system32\WPDShServiceObj.dll c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll . ------------------------ Andere Aktieve Processen ------------------------ . c:\program files\Alwil Software\Avast4\aswUpdSv.exe c:\program files\Alwil Software\Avast4\ashServ.exe c:\program files\Java\jre6\bin\jqs.exe c:\windows\system32\HPZipm12.exe c:\program files\Canon\CAL\CALMAIN.exe c:\program files\Alwil Software\Avast4\ashMaiSv.exe c:\program files\Alwil Software\Avast4\ashWebSv.exe . ************************************************************************** . Voltooingstijd: 2009-07-30 9:36 - machine werd herstart ComboFix-quarantined-files.txt 2009-07-30 07:35 ComboFix2.txt 2009-07-30 05:52 Pre-Run: 34.531.205.120 bytes beschikbaar Post-Run: 34.480.627.712 bytes beschikbaar 213 --- E O F --- 2009-07-28 20:26 Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 9:36:34, on 30-7-2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16876) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Canon\CAL\CALMAIN.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\explorer.exe C:\WINDOWS\system32\notepad.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\RunOnce: [shockwave Updater] C:\WINDOWS\system32\Adobe\SHOCKW~1\SWHELP~1.EXE -Update -1103472 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; GTB6; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)" -"http://www.hotwheels.com/games/brakeless/nobrakes.dcr" O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user') O4 - .DEFAULT User Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user') O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {1851174C-97BD-4217-A0CC-E908F60D5B7A} (Hewlett-Packard Online Support Services) - https://h50203.www5.hp.com/HPISWeb/Customer/cabs/HPISDataManager.CAB O16 - DPF: {49232000-16E4-426C-A231-62846947304B} (SysData Class) - https://wimpro3.cce.hp.com/ChatEntry/downloads/sysinfo.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1223755509234 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1223755586421 O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextnl.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Unknown owner - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe (file missing) O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe -- End of file - 6501 bytes
-
Het is gelukt, zie hieronder het logbestand van ComboFix; ComboFix 09-07-29.03 - Eigenaar 30-07-2009 7:26.1.1 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.503.182 [GMT 2:00] Gestart vanuit: c:\documents and settings\Eigenaar\Mijn documenten\ComboFix.exe AV: avast! antivirus 4.8.1335 [VPS 090729-1] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D} AV: BitDefender Antivirus *On-access scanning disabled* (Updated) {6C4BB89C-B0ED-4F41-A29C-4373888923BB} . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\docume~1\Eigenaar\LOCALS~1\Temp\MFPL7014.DLL c:\documents and settings\Eigenaar\Application Data\Microsoft\Internet Explorer\Quick Launch\avast! Antivirus.lnk c:\documents and settings\Eigenaar\Local Settings\Temp\MFPL7014.DLL c:\recycler\S-1-5-21-1488991735-2158848229-675259344-1003 c:\recycler\S-1-5-21-1989122380-656365767-1577453425-1003 c:\recycler\S-1-5-21-3020320528-3280028224-4517257-1003 c:\windows\Installer\104fc2e.msi c:\windows\Installer\109fef.msi c:\windows\Installer\11732fc.msi c:\windows\Installer\11ad43a.msp c:\windows\Installer\11ad44a.msp c:\windows\Installer\12454c.msp c:\windows\Installer\12455c.msp c:\windows\Installer\12456c.msp c:\windows\Installer\1278236.msp c:\windows\Installer\12828c.msi c:\windows\Installer\12ec81a.msi c:\windows\Installer\1396a4.msp c:\windows\Installer\1396b4.msp c:\windows\Installer\1396c4.msp c:\windows\Installer\13c68d0.msi c:\windows\Installer\13fab9.msp c:\windows\Installer\13fc15.msp c:\windows\Installer\13fc25.msp c:\windows\Installer\140ee0.msp c:\windows\Installer\1425b94.msi c:\windows\Installer\150875c.msp c:\windows\Installer\1541bae.msi c:\windows\Installer\15f4e1c.msp c:\windows\Installer\1601f9.msi c:\windows\Installer\1639f7.msi c:\windows\Installer\1771024.msi c:\windows\Installer\17909.msi c:\windows\Installer\17bbfd0.msi c:\windows\Installer\18b6d.msi c:\windows\Installer\18b73.msi c:\windows\Installer\18b7b.msi c:\windows\Installer\18b89.msi c:\windows\Installer\18b92.msi c:\windows\Installer\18b9b.msi c:\windows\Installer\18ba1.msi c:\windows\Installer\18baa.msi c:\windows\Installer\18bb3.msi c:\windows\Installer\18bbc.msi c:\windows\Installer\18bc5.msi c:\windows\Installer\18d0f5.msp c:\windows\Installer\18d105.msp c:\windows\Installer\18e066.msp c:\windows\Installer\18e3d4.msp c:\windows\Installer\194839.msp c:\windows\Installer\19f5f37.msi c:\windows\Installer\1a10f8a.msi c:\windows\Installer\1aa81b9.msp c:\windows\Installer\1aa81dd.msp c:\windows\Installer\1b3b416.msp c:\windows\Installer\1bb81.msi c:\windows\Installer\1bba1.msi c:\windows\Installer\1cc9896.msp c:\windows\Installer\1cdb5.msi c:\windows\Installer\1d7a7.msi c:\windows\Installer\1ebcbc.msi c:\windows\Installer\1ebcdb.msi c:\windows\Installer\1ecf7d8.msi c:\windows\Installer\1f3605.msi c:\windows\Installer\1fbd83.msi c:\windows\Installer\21cf72c.msp c:\windows\Installer\21cf73c.msp c:\windows\Installer\22f2b4.msi c:\windows\Installer\22f2be.msi c:\windows\Installer\22f2c8.msi c:\windows\Installer\23a28.msi c:\windows\Installer\23a82.msi c:\windows\Installer\23a96.msi c:\windows\Installer\23fc130.msi c:\windows\Installer\2547104.msi c:\windows\Installer\25f1f0b.msi c:\windows\Installer\2811455.msi c:\windows\Installer\28e81.msp c:\windows\Installer\2966584.msp c:\windows\Installer\2966594.msp c:\windows\Installer\2966595.msp c:\windows\Installer\296659e.msp c:\windows\Installer\2ba1fa.msp c:\windows\Installer\2c557.msi c:\windows\Installer\2c560.msi c:\windows\Installer\2c569.msi c:\windows\Installer\2c56f.msi c:\windows\Installer\2c578.msi c:\windows\Installer\2c582.msi c:\windows\Installer\2cc0c.msp c:\windows\Installer\2d5f12.msi c:\windows\Installer\2fafc8.msi c:\windows\Installer\31e570.msp c:\windows\Installer\32668.msp c:\windows\Installer\32677.msp c:\windows\Installer\32687.msp c:\windows\Installer\33f5577.msp c:\windows\Installer\33f5587.msp c:\windows\Installer\3599550.msp c:\windows\Installer\35c6820.msi c:\windows\Installer\371f83.msi c:\windows\Installer\371f90.msi c:\windows\Installer\371f9d.msi c:\windows\Installer\371fed.msi c:\windows\Installer\3cb017.msi c:\windows\Installer\3e54027.msi c:\windows\Installer\3e932b.msi c:\windows\Installer\3e9386.msi c:\windows\Installer\3e93e5.msi c:\windows\Installer\45f11.msp c:\windows\Installer\45f21.msp c:\windows\Installer\49b25.msi c:\windows\Installer\49b2c.msi c:\windows\Installer\49bab.msp c:\windows\Installer\4a9494.msi c:\windows\Installer\4a949d.msi c:\windows\Installer\4a94a6.msi c:\windows\Installer\4a94ac.msi c:\windows\Installer\4a94b5.msi c:\windows\Installer\4a94bf.msi c:\windows\Installer\4a94c9.msi c:\windows\Installer\4a94d2.msi c:\windows\Installer\4eaaa.msi c:\windows\Installer\4ef603.msi c:\windows\Installer\4f26a9.msi c:\windows\Installer\511e0.msi c:\windows\Installer\51200.msi c:\windows\Installer\5270e6.msp c:\windows\Installer\52711c.msp c:\windows\Installer\53d340.msp c:\windows\Installer\55da04.msp c:\windows\Installer\55da14.msp c:\windows\Installer\59420.msp c:\windows\Installer\5a44de.msp c:\windows\Installer\63bfb.msi c:\windows\Installer\642af.msi c:\windows\Installer\649c9a8.msp c:\windows\Installer\664a57.msi c:\windows\Installer\664a5c.msi c:\windows\Installer\69d98d.msi c:\windows\Installer\69d993.msi c:\windows\Installer\69d999.msi c:\windows\Installer\69d99f.msi c:\windows\Installer\69d9a5.msi c:\windows\Installer\69d9ab.msi c:\windows\Installer\69d9b1.msi c:\windows\Installer\69d9b7.msi c:\windows\Installer\69d9bd.msi c:\windows\Installer\69d9c4.msi c:\windows\Installer\69d9ca.msi c:\windows\Installer\69d9d0.msi c:\windows\Installer\69d9d6.msi c:\windows\Installer\69d9dd.msi c:\windows\Installer\69d9e4.msi c:\windows\Installer\69d9fe.msi c:\windows\Installer\69da04.msi c:\windows\Installer\69e6e.msp c:\windows\Installer\69edd.msp c:\windows\Installer\6d9b6.msp c:\windows\Installer\6eb9f.msi c:\windows\Installer\716b5.msp c:\windows\Installer\71707.msp c:\windows\Installer\76c22e.msi c:\windows\Installer\7a4e9.msi c:\windows\Installer\7a4f0.msi c:\windows\Installer\856e6.msi c:\windows\Installer\8cca69.msi c:\windows\Installer\93cd3.msi c:\windows\Installer\94484.msi c:\windows\Installer\945590.msp c:\windows\Installer\9455a0.msp c:\windows\Installer\95173.msi c:\windows\Installer\999a3.msp c:\windows\Installer\999b2.msp c:\windows\Installer\999c3.msp c:\windows\Installer\999cd.msp c:\windows\Installer\999ee.msp c:\windows\Installer\999ef.msp c:\windows\Installer\999f0.msp c:\windows\Installer\999f1.msp c:\windows\Installer\99a03.msp c:\windows\Installer\99a14.msp c:\windows\Installer\99a24.msp c:\windows\Installer\99a34.msp c:\windows\Installer\99a45.msp c:\windows\Installer\99a54.msp c:\windows\Installer\9cb787.msp c:\windows\Installer\9cb790.msp c:\windows\Installer\a6c7ec.msi c:\windows\Installer\ac18a.msi c:\windows\Installer\aef6c2.msp c:\windows\Installer\ba4b18.msp c:\windows\Installer\ba4b27.msp c:\windows\Installer\ba4b49.msp c:\windows\Installer\ba4b4a.msp c:\windows\Installer\ba4b4b.msp c:\windows\Installer\ba4b4c.msp c:\windows\Installer\ba4b5f.msp c:\windows\Installer\ba4b70.msp c:\windows\Installer\ba4b80.msp c:\windows\Installer\ba4b95.msp c:\windows\Installer\bcad2a.msi c:\windows\Installer\bf006d.msi c:\windows\Installer\bfebf3.msp c:\windows\Installer\bfec04.msp c:\windows\Installer\bfec14.msp c:\windows\Installer\c3a95.msp c:\windows\Installer\c3aa8.msp c:\windows\Installer\c3ab8.msp c:\windows\Installer\cbdad.msi c:\windows\Installer\cf8746.msp c:\windows\Installer\d19ff.msp c:\windows\Installer\d1a0f.msp c:\windows\Installer\d36ce.msp c:\windows\Installer\e51f4.msi c:\windows\Installer\edf3e.msp c:\windows\Installer\edf4e.msp c:\windows\Installer\f9a81.msi c:\windows\Installer\fa3ee.msi c:\windows\system32\iAlmcoin.dll D:\Autorun.inf . (((((((((((((((((((( Bestanden Gemaakt van 2009-06-28 to 2009-07-30 )))))))))))))))))))))))))))))) . 2009-07-28 19:28 . 2009-07-28 19:28 -------- d--h--r- c:\documents and settings\Eigenaar\Onlangs geopend 2009-07-28 18:59 . 2009-07-28 18:59 -------- d-----w- c:\windows\system32\wbem\Repository 2009-07-28 18:56 . 2009-07-28 18:56 -------- d-----w- c:\program files\Photo Viewer 2009-07-27 13:41 . 2009-07-27 13:41 -------- d-----w- c:\documents and settings\Eigenaar\Application Data\OpenOffice.org 2009-07-27 13:36 . 2009-07-27 13:36 -------- d-----w- c:\program files\OpenOffice.org 3 2009-07-26 08:23 . 2009-07-26 08:23 -------- d-----w- C:\MSOCache 2009-07-25 19:37 . 2009-07-28 18:39 -------- d-----w- c:\documents and settings\Eigenaar\Application Data\Reg Tool 2009-07-25 14:08 . 2009-07-28 18:50 -------- d-----w- c:\program files\Recovery for PowerPoint(2) 2009-07-02 11:49 . 2009-07-02 11:49 -------- d-----w- c:\program files\AH 2009-07-02 11:36 . 2009-07-28 18:56 -------- d-----w- c:\program files\Microsoft Windows Vista Upgrade Advisor 2009-07-02 11:32 . 2009-07-02 11:32 -------- d-----w- c:\documents and settings\Eigenaar\IECompatCache 2009-07-02 11:30 . 2009-07-02 11:30 -------- d-----w- c:\documents and settings\Eigenaar\PrivacIE 2009-07-02 11:28 . 2009-07-02 11:28 -------- d-----w- c:\documents and settings\Eigenaar\IETldCache . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-07-30 04:00 . 2004-12-12 09:07 -------- d-----w- c:\documents and settings\Eigenaar\Application Data\Image Zone Express 2009-07-28 18:58 . 2009-04-24 18:31 -------- d-----w- c:\documents and settings\Eigenaar\Application Data\CameraWindowDC 2009-07-28 18:55 . 2009-05-06 18:19 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-07-28 18:49 . 2006-12-20 16:58 -------- d-----w- c:\documents and settings\Eigenaar\Application Data\OfficeUpdate12 2009-07-28 18:39 . 2008-10-25 16:13 -------- d-----w- c:\program files\Microsoft Silverlight 2009-07-27 13:27 . 2003-08-01 20:13 -------- d-----w- c:\program files\Java 2009-07-25 19:47 . 2009-04-26 06:53 -------- d-----w- c:\program files\Free Window Registry Repair 2009-07-25 19:18 . 2003-08-01 19:55 73824 -c--a-w- c:\documents and settings\Eigenaar\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2009-07-25 18:51 . 2004-07-31 10:08 5058 -c--a-w- c:\windows\Help\hhcolreg.dat 2009-07-25 18:44 . 2003-08-01 17:04 -------- d-----w- c:\program files\microsoft frontpage 2009-07-25 10:21 . 2008-02-12 12:15 -------- d-----w- c:\program files\MSECACHE 2009-07-25 09:24 . 2007-02-14 07:26 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP 2009-07-07 16:49 . 2009-04-24 18:32 -------- d-----w- c:\documents and settings\Eigenaar\Application Data\ZoomBrowser EX 2009-06-29 16:01 . 2006-06-23 11:29 827392 ----a-w- c:\windows\system32\wininet.dll 2009-06-29 16:01 . 2008-10-11 20:36 78336 ------w- c:\windows\system32\ieencode.dll 2009-06-29 16:01 . 2003-08-27 23:43 17408 ----a-w- c:\windows\system32\corpol.dll 2009-06-16 14:40 . 2003-08-27 23:49 119808 ----a-w- c:\windows\system32\t2embed.dll 2009-06-16 14:40 . 2003-08-27 23:44 81920 ----a-w- c:\windows\system32\fontsub.dll 2009-06-03 19:11 . 2002-12-12 12:14 1295360 ------w- c:\windows\system32\quartz.dll 2009-05-28 16:40 . 2009-05-28 16:40 3371383 ----a-w- c:\documents and settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe 2009-05-26 11:20 . 2009-05-06 18:19 40160 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-05-26 11:19 . 2009-05-06 18:19 19096 ----a-w- c:\windows\system32\drivers\mbam.sys 2009-05-07 15:34 . 2003-08-27 23:46 347136 ----a-w- c:\windows\system32\localspl.dll 2009-05-06 17:48 . 2009-04-26 12:15 162 ----a-w- c:\windows\system32\pinf.sys 2009-05-06 16:54 . 2009-05-06 16:55 55640 ----a-w- c:\windows\system32\drivers\avgntflt.sys 2009-05-06 07:52 . 2009-04-26 11:34 321 --sh--w- c:\windows\system32\3366530866.sys 2009-05-05 18:08 . 2003-08-02 01:50 93888 ----a-w- c:\windows\system32\perfc013.dat 2009-05-05 18:08 . 2003-08-02 01:50 515922 ----a-w- c:\windows\system32\perfh013.dat 2009-05-04 20:16 . 2009-05-04 20:16 164 ----a-w- C:\install.dat 2007-07-22 07:42 . 2007-07-22 07:42 32 -csha-w- c:\windows\{3D1EBD19-DBE8-4EFA-9959-C72430ACE4DF}.dat . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-06-30 68856] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-02-05 81000] c:\documents and settings\Administrator\Menu Start\Programma's\Opstarten\ AutoTBar.exe [2003-6-21 53248] mod_sm.lnk - c:\hp\bin\cloaker.exe [1999-11-7 27136] c:\documents and settings\Default User\Menu Start\Programma's\Opstarten\ AutoTBar.exe [2003-6-21 53248] mod_sm.lnk - c:\hp\bin\cloaker.exe [1999-11-7 27136] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] @="Service" [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^HP Digital Imaging Monitor.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\HP Digital Imaging Monitor.lnk backup=c:\windows\pss\HP Digital Imaging Monitor.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^hp psc 1000 series.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\hp psc 1000 series.lnk backup=c:\windows\pss\hp psc 1000 series.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^hpoddt01.exe.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\hpoddt01.exe.lnk backup=c:\windows\pss\hpoddt01.exe.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office.lnk backup=c:\windows\pss\Microsoft Office.lnkCommon Startup [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled] "Reminder"="c:\windows\Creator\Remind_XP.exe" [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\IncrediMail\\bin\\IncMail.exe"= "c:\\Program Files\\IncrediMail\\bin\\ImApp.exe"= "c:\\Program Files\\IncrediMail\\bin\\ImpCnt.exe"= "c:\\Program Files\\IncrediMail\\bin\\ImSc.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqste08.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpofxm08.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hposfx08.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hposid01.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqscnvw.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqkygrp.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqCopy.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpfccopy.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpzwiz01.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\Unload\\HpqPhUnl.exe"= "c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpoews01.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= "c:\\Program Files\\IncrediMail\\bin\\ImLc.exe"= R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [6-5-2009 19:39 114768] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [6-5-2009 19:39 20560] R2 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [3-11-2006 19:19 13592] S3 bdfm;BDFM;c:\windows\system32\drivers\bdfm.sys [18-9-2008 12:09 111112] S3 hitmanpro3;Hitman Pro 3 Support Driver; [x] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] bdx REG_MULTI_SZ scan . Inhoud van de 'Gedeelde Taken' map 2009-07-27 c:\windows\Tasks\FRU Task 2003-04-06 08:52ewlett-Packard2003-04-06 08:52p psc 1200 series5E771253C1676EBED677BF361FDFC537825E15B8159687822.job - c:\program files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe [2003-04-05 22:52] 2009-07-27 c:\windows\Tasks\FRU Task 2003-04-06 08:52ewlett-Packard2003-04-06 08:52p psc 1200 series5E771253C1676EBED677BF361FDFC537825E15B8223796896.job - c:\program files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe [2003-04-05 22:52] 2009-07-30 c:\windows\Tasks\MP Scheduled Scan.job - c:\program files\Windows Defender\MpCmdRun.exe [2006-11-03 17:20] 2009-07-23 c:\windows\Tasks\Schedule Task Weekly.job - c:\program files\Registry Easy\RE.exe [2008-08-21 13:49] 2009-07-30 c:\windows\Tasks\User_Feed_Synchronization-{6DB5F3E4-9353-491F-97A5-DB05F7DEE07A}.job - c:\windows\system32\msfeedssync.exe [2007-08-13 16:36] . - - - - ORPHANS VERWIJDERD - - - - WebBrowser-{B2E293EE-FD7E-4C71-A714-5F4750D8D7B7} - (no file) WebBrowser-{8FF5E180-ABDE-46EB-B09E-D2AAB95CABE3} - (no file) . ------- Bijkomende Scan ------- . uStart Page = hxxp://mystart.incredimail.com/ mStart Page = hxxp://mystart.incredimail.com/dutch/ . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2009-07-30 07:42 Windows 5.1.2600 Service Pack 3 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\HP\EN] @DACL=(02 0000) "OnLineServicesDirName"="Online Services" [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\HP\FR] @DACL=(02 0000) "OnLineServicesDirName"="Services en ligne" [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\HP\MX] @DACL=(02 0000) "OnLineServicesDirName"="Servicios en línea" [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\HP\NL] @DACL=(02 0000) "OnLineServicesDirName"="Online Services" [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\HP\NW] @DACL=(02 0000) "OnLineServicesDirName"="Online tjenster" [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\HP\SP] @DACL=(02 0000) "OnLineServicesDirName"="Servicios en línea" [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\HP\SW] @DACL=(02 0000) "OnLineServicesDirName"="Online tjänster" [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\HP\UK] @DACL=(02 0000) "OnLineServicesDirName"="Online services" [HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\Shell Folders\HP\US] @DACL=(02 0000) "OnLineServicesDirName"="Online Services" . --------------------- DLLs Geladen Onder Lopende Processen --------------------- - - - - - - - > 'explorer.exe'(3048) c:\windows\system32\WPDShServiceObj.dll c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll . ------------------------ Andere Aktieve Processen ------------------------ . c:\program files\Alwil Software\Avast4\aswUpdSv.exe c:\program files\Alwil Software\Avast4\ashServ.exe c:\program files\Java\jre6\bin\jqs.exe c:\windows\system32\HPZipm12.exe c:\program files\Canon\CAL\CALMAIN.exe c:\program files\Alwil Software\Avast4\ashMaiSv.exe c:\program files\Alwil Software\Avast4\ashWebSv.exe . ************************************************************************** . Voltooingstijd: 2009-07-30 7:52 - machine werd herstart ComboFix-quarantined-files.txt 2009-07-30 05:52 Pre-Run: 34.705.178.624 bytes beschikbaar Post-Run: 34.554.032.128 bytes beschikbaar 422 --- E O F --- 2009-07-28 20:26
-
Nee, helaas niet. Ik kom in een spaanse site voor spyware en antivirus terecht. Wellicht dat je een link voor me hebt waardoor ik wel direct kan downloaden. ---------- Post toegevoegd om 06:47 ---------- Vorige post was om 06:32 ---------- Heb het nog een keer geprobeerd via: www.bleepingcomputer.com/combofix/nl. Daar kon ik het downloaden, maar kreeg ineens deze foutmelding: U kunt combofix niet herbenoemen als combofix (1). Gelieve een ander naam te gebruiken, bij voorkeur opgebouwd uit alfanumerische karakters. Wat nu?
-
Beste Kape, Toen ik de site opende wist ik al, hier kom ik niet uit. Alles in het Spaans. Ik zou niet weten hoe ik dit moet vinden. Sorry!
-
Beste Kape, Je zal het niet geloven maar ik kan Combofix niet downloaden. Ik krijg steeds de volgende vermelding, wat ik ook probeer Wat nu?? Hopelijk heb je een oplossing. DNS-fout - kan de server niet vinden Oeps! Deze link lijkt niet te werken - Suggesties: Ga naar bleepingcomputer.com Ga naar sitemap www.bleepingcomputer.com/sitemap.php Zoeken met Google: Google Toolbar Help - Waarom zie ik deze pagina? ©2009 Google - Google Startpagina
-
Hallo, Ik heb je advies opgevolgt, zie hieronder de logjes. Groetjes, Malwarebytes' Anti-Malware 1.39 Database versie: 2519 Windows 5.1.2600 Service Pack 3 28-7-2009 18:06:05 mbam-log-2009-07-28 (18-06-05).txt Scan type: Snelle Scan Objecten gescand: 98413 Verstreken tijd: 10 minute(s), 22 second(s) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 0 Registerwaarden geïnfecteerd: 0 Registerdata bestanden geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 0 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige items gevonden) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige items gevonden) Registersleutels geïnfecteerd: (Geen kwaadaardige items gevonden) Registerwaarden geïnfecteerd: (Geen kwaadaardige items gevonden) Registerdata bestanden geïnfecteerd: (Geen kwaadaardige items gevonden) Mappen geïnfecteerd: (Geen kwaadaardige items gevonden) Bestanden geïnfecteerd: (Geen kwaadaardige items gevonden) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 18:10:31, on 28-7-2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16850) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Canon\CAL\CALMAIN.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\IncrediMail\bin\IncMail.exe C:\Program Files\IncrediMail\bin\IMApp.exe C:\Program Files\IncrediMail\bin\ImNotfy.exe c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Netwerkservice') O4 - S-1-5-18 Startup: AutoTBar.exe (User 'SYSTEM') O4 - S-1-5-18 Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'SYSTEM') O4 - .DEFAULT Startup: AutoTBar.exe (User 'Default user') O4 - .DEFAULT Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user') O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user') O4 - .DEFAULT User Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user') O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {1851174C-97BD-4217-A0CC-E908F60D5B7A} (Hewlett-Packard Online Support Services) - https://h50203.www5.hp.com/HPISWeb/Customer/cabs/HPISDataManager.CAB O16 - DPF: {426784E5-24B2-4708-820D-117342FAD009} (Cimporter Object) - http://www.hyves.nl/cab/outlookaddressbook.cab O16 - DPF: {49232000-16E4-426C-A231-62846947304B} (SysData Class) - https://wimpro3.cce.hp.com/ChatEntry/downloads/sysinfo.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1223755509234 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1223755586421 O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextnl.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab O16 - DPF: {DEB21AD3-FDA4-42F6-B57D-EE696A675EE8} (IP-Uploader Control) - https://asp.photoprintit.de/microsite/8/defaults/activex/ImageUploader3.cab O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe -- End of file - 6988 bytes
-
Kan iemand even naar dit logje kijken. Internet 7 start erg langzaam op, ook blijven pagina's hangen of willen niet sluiten. Alvast bedankt voor de genome moeite. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 15:14:23, on 27-7-2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16850) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\windows\system\hpsysdrv.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\System32\hphmon05.exe C:\WINDOWS\system32\igfxtray.exe C:\Program Files\Unlocker\UnlockerAssistant.exe C:\HP\KBD\KBD.EXE C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Canon\CAL\CALMAIN.exe C:\PROGRA~1\HEWLET~1\DIGITA~1\bin\hpoevm08.exe C:\Program Files\IncrediMail\bin\IMApp.exe c:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\IncrediMail\bin\ImNotfy.exe C:\Program Files\IncrediMail\bin\IncMail.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect O4 - HKLM\..\Run: [icoSet] c:\hp\bin\cloaker.exe c:\hp\bin\IcoSet\adjust.bat seticon O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [unlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [Google Quick Search Box] "C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe" /autorun O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook O4 - HKCU\..\Run: [incrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\RunOnce: [shockwave Updater] C:\WINDOWS\system32\Adobe\SHOCKW~1\SWHELP~1.EXE -Update -1103472 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; GTB6; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)" -"Gamevial :: Play Online Games :: 2D 3D Web Game Arcade" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Netwerkservice') O4 - S-1-5-18 Startup: AutoTBar.exe (User 'SYSTEM') O4 - S-1-5-18 Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'SYSTEM') O4 - .DEFAULT Startup: AutoTBar.exe (User 'Default user') O4 - .DEFAULT Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user') O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user') O4 - .DEFAULT User Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: hp psc 1000 series.lnk = ? O4 - Global Startup: hpoddt01.exe.lnk = ? O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {1851174C-97BD-4217-A0CC-E908F60D5B7A} (Hewlett-Packard Online Support Services) - https://h50203.www5.hp.com/HPISWeb/Customer/cabs/HPISDataManager.CAB O16 - DPF: {426784E5-24B2-4708-820D-117342FAD009} (Cimporter Object) - http://www.hyves.nl/cab/outlookaddressbook.cab O16 - DPF: {49232000-16E4-426C-A231-62846947304B} (SysData Class) - https://wimpro3.cce.hp.com/ChatEntry/downloads/sysinfo.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1223755509234 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1223755586421 O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextnl.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab O16 - DPF: {DEB21AD3-FDA4-42F6-B57D-EE696A675EE8} (IP-Uploader Control) - https://asp.photoprintit.de/microsite/8/defaults/activex/ImageUploader3.cab O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe -- End of file - 10121 bytes
-
Ik kan illustratie niet openen in Powerpoint
karla.otten plaatste een topic in Archief Microsoft Office
Als ik de illustratie van Powerpoint 2000 wil openen heeft hij de volgende vermelding: Er is een niet nader omschreven fout opgetreden. De bewerking kan niet worden voltooid. Op de achtergrond verschijnt wel het kader van de illustraties. Hieronder heb ik een logje over mijn pc. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 13:19:27, on 25-7-2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16850) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\windows\system\hpsysdrv.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\System32\hphmon05.exe C:\WINDOWS\system32\igfxtray.exe C:\Program Files\Unlocker\UnlockerAssistant.exe C:\HP\KBD\KBD.EXE C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\HEWLET~1\DIGITA~1\bin\hpoevm08.exe C:\Program Files\IncrediMail\bin\IMApp.exe c:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Canon\CAL\CALMAIN.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\IncrediMail\bin\ImNotfy.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Microsoft Office\Office\POWERPNT.EXE C:\WINDOWS\msagent\AgentSvr.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect O4 - HKLM\..\Run: [icoSet] c:\hp\bin\cloaker.exe c:\hp\bin\IcoSet\adjust.bat seticon O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [unlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [Google Quick Search Box] "C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe" /autorun O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook O4 - HKCU\..\Run: [incrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\RunOnce: [shockwave Updater] C:\WINDOWS\system32\Adobe\SHOCKW~1\SWHELP~1.EXE -Update -1103472 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; GTB6; .NET CLR 1.1.4322; .NET CLR 2.0.50727; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729)" -"Gamevial :: Play Online Games :: 2D 3D Web Game Arcade" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Netwerkservice') O4 - S-1-5-18 Startup: AutoTBar.exe (User 'SYSTEM') O4 - S-1-5-18 Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'SYSTEM') O4 - .DEFAULT Startup: AutoTBar.exe (User 'Default user') O4 - .DEFAULT Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user') O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user') O4 - .DEFAULT User Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: hp psc 1000 series.lnk = ? O4 - Global Startup: hpoddt01.exe.lnk = ? O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {1851174C-97BD-4217-A0CC-E908F60D5B7A} (Hewlett-Packard Online Support Services) - https://h50203.www5.hp.com/HPISWeb/Customer/cabs/HPISDataManager.CAB O16 - DPF: {426784E5-24B2-4708-820D-117342FAD009} (Cimporter Object) - http://www.hyves.nl/cab/outlookaddressbook.cab O16 - DPF: {49232000-16E4-426C-A231-62846947304B} (SysData Class) - https://wimpro3.cce.hp.com/ChatEntry/downloads/sysinfo.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1223755509234 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1223755586421 O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextnl.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab O16 - DPF: {DEB21AD3-FDA4-42F6-B57D-EE696A675EE8} (IP-Uploader Control) - https://asp.photoprintit.de/microsite/8/defaults/activex/ImageUploader3.cab O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Unknown owner - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe (file missing) O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe -- End of file - 10245 bytes -
Ik heb de laatste 3 uur geen popup bills meer ontvangen van Platte (Media) International. Hopelijk blijft het weg, maar mocht dit niet het geval zijn doe ik weer een beroep op jullie, als dat mag? Het hierboven vermelde heb ik inmiddels gedaan, handige tip, zoiets weet een leek niet!! Alsvast erg bedankt voor de genome moeite, je hebt me erg professioneel geholpen. Met veel waardering de groeten, Karla Otten
-
Zoals gevraagd, Malwarebytes' Anti-Malware 1.36 Database versie: 2084 Windows 5.1.2600 Service Pack 3 6-5-2009 20:32:33 mbam-log-2009-05-06 (20-32-33).txt Scan type: Snelle Scan Objecten gescand: 87984 Verstreken tijd: 10 minute(s), 21 second(s) Geheugenprocessen geïnfecteerd: 1 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 11 Registerwaarden geïnfecteerd: 2 Registerdata bestanden geïnfecteerd: 0 Mappen geïnfecteerd: 15 Bestanden geïnfecteerd: 346 Geheugenprocessen geïnfecteerd: C:\WINDOWS\system32\pm_proc1.exe (Trojan.Agent) -> Unloaded process successfully. Geheugenmodulen geïnfecteerd: (Geen kwaadaardige items gevonden) Registersleutels geïnfecteerd: HKEY_CLASSES_ROOT\TypeLib\{497dddb6-6eee-4561-9621-b77dc82c1f84} (Adware.Ascentive) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{4e980492-027b-47f1-a7ab-ab086dacbb9e} (Adware.Ascentive) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{5ead8321-fcbb-4c3f-888c-ac373d366c3f} (Adware.Ascentive) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{31f3cf6e-a71a-4daa-852b-39ac230940b4} (Adware.Ascentive) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\TypeLib\{31a55ff6-32a4-4ae2-95fe-7891637f3dae} (Trojan.Agent) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{c056b0ec-6369-452b-9879-b95a1beb0f16} (Trojan.Agent) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{d760db63-50ba-43b5-9916-29577df6c959} (Trojan.Agent) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{9901d610-a360-4325-b787-d13bbf4f2a1c} (Trojan.Agent) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9901d610-a360-4325-b787-d13bbf4f2a1c} (Trojan.Agent) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\RegTool (Rogue.RegTool) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\RegTool (Rogue.RegTool) -> Quarantined and deleted successfully. Registerwaarden geïnfecteerd: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\SharedDLLs\C:\WINDOWS\system32\SysRestore.dll (Adware.Ascentive) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\plsi (Trojan.Agent) -> Quarantined and deleted successfully. Registerdata bestanden geïnfecteerd: (Geen kwaadaardige items gevonden) Mappen geïnfecteerd: C:\Documents and Settings\Eigenaar\Application Data\RegistrySmart (Rogue.RegistrySmart) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegistrySmart\Log (Rogue.RegistrySmart) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegistrySmart\Registry Backups (Rogue.RegistrySmart) -> Quarantined and deleted successfully. C:\Program Files\Platte (Adware.Platte) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorSmart (Rogue.ErrorSmart) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorSmart\Log (Rogue.ErrorSmart) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\Logs (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400 (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\Results (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\Logs (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310 (Rogue.ErrorFix) -> Quarantined and deleted successfully. Bestanden geïnfecteerd: C:\WINDOWS\system32\SysRestore.dll (Adware.Ascentive) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegistrySmart\Registry Backups\2008-10-26_16-02-01.reg (Rogue.RegistrySmart) -> Quarantined and deleted successfully. C:\Program Files\Platte\Platte utility.lnk (Adware.Platte) -> Quarantined and deleted successfully. C:\Program Files\Platte\platte.psys (Adware.Platte) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\Logs\2009-04-26 08-37-300.log (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\filelist.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-0.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-1.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-10.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-100.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-101.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-102.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-103.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-104.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-105.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-106.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-107.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-108.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-109.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-11.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-110.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-111.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-112.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-113.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-114.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-115.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-116.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-117.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-118.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-119.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-12.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-120.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-121.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-122.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-123.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-124.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-125.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-126.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-127.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-128.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-129.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-13.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-130.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-131.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-132.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-133.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-134.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-135.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-136.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-137.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-138.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-139.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-14.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-140.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-141.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-142.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-143.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-15.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-16.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-17.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-18.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-19.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-2.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-20.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-21.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-22.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-23.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-24.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-25.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-26.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-27.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-28.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-29.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-3.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-30.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-31.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-32.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-33.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-34.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-35.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-36.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-37.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-38.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-39.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-4.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-40.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-41.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-42.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-43.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-44.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-45.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-46.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-47.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-48.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-49.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-5.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-50.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-51.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-52.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-53.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-54.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-55.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-56.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-57.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-58.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-59.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-6.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-60.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-61.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-62.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-63.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-64.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-65.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-66.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-67.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-68.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-69.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-7.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-70.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-71.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-72.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-73.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-74.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-75.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-76.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-77.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-78.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-79.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-8.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-80.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-81.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-82.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-83.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-84.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-85.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-86.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-87.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-88.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-89.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-9.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-90.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-91.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-92.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-93.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-94.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-95.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-96.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-97.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-98.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\QuarantineW\2009-04-26 08-45-400\regb-99.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\Results\Evidence.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\Results\Junk.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\Results\Registry.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\RegTool\Results\Update.db (Rogue.RegTool) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\resultsw.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\Logs\2009-01-25 15-38-180.log (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\Logs\2009-01-25 15-46-390.log (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\Logs\2009-01-25 16-54-300.log (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\filelist.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-1.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-10.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-100.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-101.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-102.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-103.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-104.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-105.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-106.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-107.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-108.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-109.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-11.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-110.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-111.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-112.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-113.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-114.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-115.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-116.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-117.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-118.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-119.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-12.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-120.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-121.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-122.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-123.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-124.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-125.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-126.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-127.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-128.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-129.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-13.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-130.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-131.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-132.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-133.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-134.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-135.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-136.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-137.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-138.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-139.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-14.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-140.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-141.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-142.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-143.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-144.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-145.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-146.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-147.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-148.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-149.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-15.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-150.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-151.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-152.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-153.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-154.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-155.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-156.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-157.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-158.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-159.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-16.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-160.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-161.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-162.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-163.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-164.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-165.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-166.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-167.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-168.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-169.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-17.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-170.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-171.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-172.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-173.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-174.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-175.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-176.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-177.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-178.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-179.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-18.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-180.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-181.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-182.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-19.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-2.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-20.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-21.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-22.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-23.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-24.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-25.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-26.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-27.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-28.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-29.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-3.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-30.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-31.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-32.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-33.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-34.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-35.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-36.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-37.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-38.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-39.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-4.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-40.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-41.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-42.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-43.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-44.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-45.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-46.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-47.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-48.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-49.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-5.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-50.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-51.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-52.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-53.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-54.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-55.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-56.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-57.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-58.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-59.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-6.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-60.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-61.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-62.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-63.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-64.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-65.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-66.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-67.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-68.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-69.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-7.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-70.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-71.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-72.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-73.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-74.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-75.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-76.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-77.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-78.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-79.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-8.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-80.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-81.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-82.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-83.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-84.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-85.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-86.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-87.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-88.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-89.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-9.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-90.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-91.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-92.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-93.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-94.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-95.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-96.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-97.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-98.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\Documents and Settings\Eigenaar\Application Data\ErrorFix\QuarantineW\2009-01-25 15-41-310\regb-99.db (Rogue.ErrorFix) -> Quarantined and deleted successfully. C:\WINDOWS\Peugeot - 307.dat (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\pm_proc1.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\system32\pm_ax.ocx (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\Tasks\RegTool Scan.job (Rogue.RegTool) -> Quarantined and deleted successfully. En andere log Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 20:44:03, on 6-5-2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16827) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\windows\system\hpsysdrv.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\System32\hphmon05.exe C:\WINDOWS\system32\igfxtray.exe C:\Program Files\Unlocker\UnlockerAssistant.exe C:\HP\KBD\KBD.EXE C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe C:\Program Files\IncrediMail\bin\IMApp.exe C:\PROGRA~1\HEWLET~1\DIGITA~1\bin\hpoevm08.exe C:\Program Files\Java\jre6\bin\jqs.exe c:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Canon\CAL\CALMAIN.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\IncrediMail\bin\ImNotfy.exe C:\WINDOWS\System32\msiexec.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Live Search R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - (no file) O2 - BHO: (no name) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - (no file) O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect O4 - HKLM\..\Run: [icoSet] c:\hp\bin\cloaker.exe c:\hp\bin\IcoSet\adjust.bat seticon O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [unlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [Google Quick Search Box] "C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe" /autorun O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook O4 - HKCU\..\Run: [incrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Netwerkservice') O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user') O4 - .DEFAULT User Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: hp psc 1000 series.lnk = ? O4 - Global Startup: hpoddt01.exe.lnk = ? O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {1851174C-97BD-4217-A0CC-E908F60D5B7A} (Hewlett-Packard Online Support Services) - https://h50203.www5.hp.com/HPISWeb/Customer/cabs/HPISDataManager.CAB O16 - DPF: {49232000-16E4-426C-A231-62846947304B} (SysData Class) - https://wimpro3.cce.hp.com/ChatEntry/downloads/sysinfo.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1223755509234 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1223755586421 O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextnl.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Unknown owner - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe (file missing) O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe -- End of file - 9485 bytes
-
Hieronder het gevraagde logje, wellicht kan je er iets mee? Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10:23:32, on 6-5-2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16827) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\System32\svchost.exe C:\windows\system\hpsysdrv.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\System32\hphmon05.exe C:\WINDOWS\system32\igfxtray.exe C:\Program Files\Unlocker\UnlockerAssistant.exe C:\HP\KBD\KBD.EXE C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\WINDOWS\system32\pm_proc1.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe C:\Program Files\PC Tools AntiVirus\PCTAV.exe C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe C:\Program Files\IncrediMail\bin\IMApp.exe C:\Program Files\Canon\CAL\CALMAIN.exe C:\WINDOWS\System32\alg.exe C:\Program Files\IncrediMail\bin\ImNotfy.exe c:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe C:\PROGRA~1\HEWLET~1\DIGITA~1\bin\hpoevm08.exe C:\Program Files\IncrediMail\bin\IncMail.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Trend Micro\HijackThis\HijackThis.exe C:\WINDOWS\system32\wbem\wmiprvse.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Live Search R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: (no name) - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - (no file) O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect O4 - HKLM\..\Run: [icoSet] c:\hp\bin\cloaker.exe c:\hp\bin\IcoSet\adjust.bat seticon O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [unlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [plsi] C:\WINDOWS\system32\pm_proc1.exe O4 - HKLM\..\Run: [Google Quick Search Box] "C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe" /autorun O4 - HKLM\..\Run: [PCTAVApp] "C:\Program Files\PC Tools AntiVirus\PCTAV.exe" /MONITORSCAN O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook O4 - HKCU\..\Run: [incrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Netwerkservice') O4 - S-1-5-18 Startup: AutoTBar.exe (User 'SYSTEM') O4 - S-1-5-18 Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'SYSTEM') O4 - .DEFAULT Startup: AutoTBar.exe (User 'Default user') O4 - .DEFAULT Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user') O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user') O4 - .DEFAULT User Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: hp psc 1000 series.lnk = ? O4 - Global Startup: hpoddt01.exe.lnk = ? O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} (SpinTop DRM Control) - file:///C:/Program%20Files/Monopoly/Images/stg_drm.ocx O16 - DPF: {1851174C-97BD-4217-A0CC-E908F60D5B7A} (Hewlett-Packard Online Support Services) - https://h50203.www5.hp.com/HPISWeb/Customer/cabs/HPISDataManager.CAB O16 - DPF: {49232000-16E4-426C-A231-62846947304B} (SysData Class) - https://wimpro3.cce.hp.com/ChatEntry/downloads/sysinfo.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1223755509234 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1223755586421 O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextnl.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: PC Tools AntiVirus Engine (PCTAVSvc) - PC Tools Research Pty Ltd - C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe -- End of file - 10625 bytes
-
Hallo, Na enkele dagen problemen te hebben gehad met mijn pc, had ik besloten om een systeemherstel uit te voeren. Bijna alles naar wens, 2 problemen blijven hangen: 1e: Als ik probeer om mijn IncrediMail XE bij te werken, verschijnt het volgende bericht: Geen aansluiting met de server Controleer dat je computer met Internet is verbonden en probeer het opnieuw Error: 1232 Raar want ik kan mailen en surfen. Graag een oplossing a.u.b. 2e: Popup bills van een firma genaamd Platte International Deze popup bills verschijnen op mijn bureaublad als ik aan het surfen ben op Internet, anders niet. Heb Ccleaner gebruikt, Spybot-Seach & Destroy, Antivirus gedraaid, en een programma Anti Maleware gedownload. Dit alles mocht niet helpen. Zal hieronder een logje plaatsen, wellicht dat het voor iemand duidelijk wordt en me kan helpen. Ook wil ik van Alle overbodige programma's af o.a. Avira Alvast bedankt voor de genome moeite. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 23:36:41, on 5-5-2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16827) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Canon\CAL\CALMAIN.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\system32\ctfmon.exe C:\windows\system\hpsysdrv.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\System32\hphmon05.exe C:\WINDOWS\system32\igfxtray.exe C:\Program Files\Unlocker\UnlockerAssistant.exe C:\HP\KBD\KBD.EXE C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\WINDOWS\system32\pm_proc1.exe C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe C:\Program Files\IncrediMail\bin\IMApp.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe C:\PROGRA~1\HEWLET~1\DIGITA~1\bin\hpoevm08.exe c:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\IncrediMail\bin\ImNotfy.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe C:\Program Files\PC Tools AntiVirus\PCTAV.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\IncrediMail\bin\IncMail.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe C:\WINDOWS\system32\wbem\wmiprvse.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Live Search R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.3572\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: (no name) - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - (no file) O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect O4 - HKLM\..\Run: [icoSet] c:\hp\bin\cloaker.exe c:\hp\bin\IcoSet\adjust.bat seticon O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [unlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [plsi] C:\WINDOWS\system32\pm_proc1.exe O4 - HKLM\..\Run: [Google Quick Search Box] "C:\Program Files\Google\Quick Search Box\GoogleQuickSearchBox.exe" /autorun O4 - HKLM\..\Run: [PCTAVApp] "C:\Program Files\PC Tools AntiVirus\PCTAV.exe" /MONITORSCAN O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook O4 - HKCU\..\Run: [incrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Netwerkservice') O4 - S-1-5-18 Startup: AutoTBar.exe (User 'SYSTEM') O4 - S-1-5-18 Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'SYSTEM') O4 - .DEFAULT Startup: AutoTBar.exe (User 'Default user') O4 - .DEFAULT Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user') O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user') O4 - .DEFAULT User Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: hp psc 1000 series.lnk = ? O4 - Global Startup: hpoddt01.exe.lnk = ? O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} (SpinTop DRM Control) - file:///C:/Program%20Files/Monopoly/Images/stg_drm.ocx O16 - DPF: {1851174C-97BD-4217-A0CC-E908F60D5B7A} (Hewlett-Packard Online Support Services) - https://h50203.www5.hp.com/HPISWeb/Customer/cabs/HPISDataManager.CAB O16 - DPF: {49232000-16E4-426C-A231-62846947304B} (SysData Class) - https://wimpro3.cce.hp.com/ChatEntry/downloads/sysinfo.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1223755509234 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1223755586421 O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextnl.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: PC Tools AntiVirus Engine (PCTAVSvc) - PC Tools Research Pty Ltd - C:\Program Files\PC Tools AntiVirus\PCTAVSvc.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe -- End of file - 10862 bytes
-
Allereerst sorry dat ik in het verkeerde forum zit. Avast antivirus heb ik, Ccleaner heb ik al uitgevoerd. Ga nu een Anie-mailware installeren en een Spybot. Ik zal je over een paar dagen laten weten of het heeft geholpen, voorzover alvast erg bedankt!! Gr. K. Otten
-
Ik krijg sinds kort, om de 2 dagen, een Popup rekening gestuurd van Platte Media. Ineens verschijnt op mijn Bureaublad een icoon van Platte Media Met de erin een rekening van €60.00 of ik even dit wil overmaken. Vraag me af hoe ze aan mijn emailadress komen. Heb namelijk nooit niks besteld bij deze firma. Ik wil geen popup rekeningen meer op mijn computer ontvangen. Hoe kan ik dit stopzetten of verwijderen. Het is me een groot raadsel. Graag iemand die me hierbij kan helpen a.u.b. Met vriendelijke groet, K. Otten
-
Heb AVG opnieuw gedownload, en vervolgens weer verwijderd. Wat er precies gebeurd is weet ik niet maar, er zijn geen resten meer van AVG te ondekken, ook niet door Kaspersky. Erg bedankt voor de moeite die je voor me hebt genomen. Het was een duidelijke uitleg voor mijn probleem. Groetjes, Karla
-
Gedaan wat je gevraagd heb met Ccleaner . Regedit/ gezocht, maar kan geen sporen van Grisoft of AVG vinden.
-
Heb gedaan wat je adviseerde. Ik weet alleen niet of het juist is. Nogmaals geprobeerd Kaspersky te downloaden, maar blijft aangeven dat er AVG 8.0 opzit. Geeft niet aan in welke root. Heb de pc laten zoeken: Grisoft, AVG. maar hij kan niks vinden. Toch blijft Kaspersky beweren dat AVG erop staat, vreemd Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 11:07:22, on 31-1-2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16762) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Windows Defender\MsMpEng.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe C:\windows\system\hpsysdrv.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\System32\hphmon05.exe C:\WINDOWS\system32\igfxtray.exe C:\Program Files\Unlocker\UnlockerAssistant.exe C:\HP\KBD\KBD.EXE C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\IncrediMail\bin\IMApp.exe C:\PROGRA~1\HEWLET~1\DIGITA~1\bin\hpoevm08.exe c:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\IncrediMail\bin\ImNotfy.exe C:\Program Files\IncrediMail\bin\IncMail.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Live Search R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MyStart by IncrediMail.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll O3 - Toolbar: (no name) - {381FFDE8-2394-4f90-B10D-FC6124A40F8C} - (no file) O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\Hewlett-Packard\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect O4 - HKLM\..\Run: [icoSet] c:\hp\bin\cloaker.exe c:\hp\bin\IcoSet\adjust.bat seticon O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [unlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [updateManager] "C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" /r O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min O4 - HKLM\..\Run: [Microsoft Works Update Detection] C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe O4 - HKCU\..\Run: [NVIEW] rundll32.exe nview.dll,nViewLoadHook O4 - HKCU\..\Run: [incrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Netwerkservice') O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user') O4 - .DEFAULT User Startup: mod_sm.lnk = C:\hp\bin\cloaker.exe (User 'Default user') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: hp psc 1000 series.lnk = ? O4 - Global Startup: hpoddt01.exe.lnk = ? O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\shdocvw.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\shdocvw.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {1851174C-97BD-4217-A0CC-E908F60D5B7A} (Hewlett-Packard Online Support Services) - https://h50203.www5.hp.com/HPISWeb/Customer/cabs/HPISDataManager.CAB O16 - DPF: {49232000-16E4-426C-A231-62846947304B} (SysData Class) - https://wimpro3.cce.hp.com/ChatEntry/downloads/sysinfo.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1223755509234 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1223755586421 O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - http://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab O16 - DPF: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} (Oberon Flash Game Host) - http://gamenextnl.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe -- End of file - 7739 bytes
