Ga naar inhoud

Lappie77

Lid
 Bekijk profiel  Bekijk hun activiteit

  • Items

    8

  • Registratiedatum

  • Laatst bezocht

 Inhoudstype 

Alles dat geplaatst werd door Lappie77

  1. Lappie77
    Hoi Kape, Ik heb het logje gevonden maar deze is wel erg lang aangezien alle (36512) bestanden erin vermeld staan die op mijn HD staan. Welk gedeelte heb je nodig? I.v.m. privacy zie ik het niet zo zitten om de gehele lijst op dit forum te plakken. Groeten!
  2. Lappie77
    Hoi Kape, Ik kon de instellingen niet instellen zoals jij dat aangaf. Ik kon enkel op start klikken en dan volgde de scan. Nu ben ik vergeten het logje op te slaan. Hij had wel een dll bestandje gevonden en deze verwijderd omdat het niet gerepareerd kon worden. Na herstart is de laptop nog even traag als altijd
  3. Lappie77
    Hallo Kape, Na een halve middag en een avond scannen - hoezo traag? - hierbij de gegevens uit het logbestand. Scanner heeft geen bijzonderheden gevonden. ESETSmartInstaller@High as downloader log: all ok esets_scanner_update returned -1 esets_gle=1 ESETSmartInstaller@High as downloader log: all ok # version=7 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6425 # api_version=3.0.2 # EOSSerial=5cdadd26a375334881baea6bb0f8c473 # end=finished # remove_checked=true # archives_checked=true # unwanted_checked=true # unsafe_checked=true # antistealth_checked=true # utc_time=2011-03-23 09:16:01 # local_time=2011-03-23 10:16:01 (+0100, West-Europa (standaardtijd)) # country="Netherlands" # lang=1033 # osver=5.1.2600 NT Service Pack 3 # compatibility_mode=512 16777215 100 0 161343 161343 0 0 # compatibility_mode=1024 16777215 100 0 0 0 0 0 # compatibility_mode=8201 39157157 100 100 4692 6038642 0 0 # scanned=107915 # found=0 # cleaned=0 # scan_time=33203 # nod_component=V3 Build:0x30000000
  4. Lappie77
    Hoi Kape, Allereerst: Bedankt voor je hulp! Ik heb ESET Smart security op de computer staan, deze zou toch alles moeten vinden? Groeten!
  5. Lappie77
    Helaas, helaas, nog steeds even traag. Hieronder de gegevens uit het logbestand: ComboFix 11-03-21.02 - Natasja 22-03-2011 14:25:24.2.1 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.503.200 [GMT 1:00] Gestart vanuit: c:\documents and settings\Natasja\Bureaublad\ComboFix.exe gebruikte Opdracht switches :: c:\documents and settings\Natasja\Bureaublad\CFScript.txt AV: ESET Smart Security 4.2 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0} FW: ESET Persoonlijke firewall *Enabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0} . . (((((((((((((((((((( Bestanden Gemaakt van 2011-02-22 to 2011-03-22 )))))))))))))))))))))))))))))) . . 2011-03-21 16:14 . 2011-03-21 16:14 388096 ----a-r- c:\documents and settings\Natasja\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2011-03-21 16:14 . 2011-03-21 16:14 -------- d-----w- c:\program files\Trend Micro 2011-03-21 14:52 . 2011-03-22 13:15 -------- d--h--r- c:\documents and settings\Natasja\Onlangs geopend 2011-03-02 20:09 . 2011-03-02 20:09 -------- d--h--w- c:\documents and settings\All Users\Application Data\CanonIJSolutionMenuEX 2011-03-02 20:09 . 2011-03-02 20:09 -------- d--h--w- c:\documents and settings\All Users\Application Data\CanonIJMyPrinter 2011-03-02 19:59 . 2011-03-02 20:24 -------- d-----w- c:\documents and settings\All Users\Application Data\CanonIJPLM 2011-03-01 13:53 . 2011-03-17 16:51 -------- d-----w- c:\documents and settings\Natasja\Application Data\Belastingdienst 2011-03-01 13:52 . 2011-03-03 08:05 -------- d-----w- c:\program files\Belastingdienst 2011-02-24 13:25 . 2011-02-24 13:25 -------- d-----w- c:\documents and settings\Natasja\Local Settings\Application Data\ESET 2011-02-24 13:25 . 2011-02-24 13:25 -------- d-----w- c:\documents and settings\Natasja\Application Data\ESET 2011-02-24 13:13 . 2011-02-24 13:13 -------- d-----w- c:\program files\ESET 2011-02-24 13:13 . 2011-02-24 13:13 -------- d-----w- c:\documents and settings\All Users\Application Data\ESET 2011-02-23 15:17 . 2011-02-23 15:17 -------- d-----w- c:\documents and settings\All Users\Application Data\mquadr.at 2011-02-23 15:17 . 2011-02-23 15:17 3527680 ----a-w- c:\windows\system32\M2LU_Server.exe 2011-02-23 15:17 . 2011-02-23 15:17 1120768 ----a-w- c:\windows\system32\M2ElevatedCalls.dll 2011-02-23 15:11 . 2011-02-23 15:11 -------- d-----w- c:\documents and settings\All Users\Application Data\SupportSoft 2011-02-23 15:09 . 2011-02-23 15:17 -------- d-----w- c:\program files\KPN . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-02-09 13:54 . 2004-08-04 10:00 270848 ----a-w- c:\windows\system32\sbe.dll 2011-02-09 13:54 . 2004-08-04 10:00 186880 ----a-w- c:\windows\system32\encdec.dll 2011-02-02 07:58 . 2010-06-10 10:21 2067456 ----a-w- c:\windows\system32\mstscax.dll 2011-01-27 11:57 . 2010-06-10 10:21 677888 ----a-w- c:\windows\system32\mstsc.exe 2011-01-21 14:44 . 2004-08-04 10:00 441344 ----a-w- c:\windows\system32\shimgvw.dll 2011-01-07 14:09 . 2004-08-04 10:00 290048 ----a-w- c:\windows\system32\atmfd.dll 2010-12-31 14:04 . 2004-08-04 10:00 1855104 ----a-w- c:\windows\system32\win32k.sys 2003-04-22 22:14 . 2003-04-22 22:14 2736128 ------w- c:\program files\aiodrv.msi 2003-04-22 22:09 . 2003-04-22 22:09 2605056 ------w- c:\program files\aiosw.msi 2003-03-09 19:30 . 2003-03-09 19:30 184320 ----a-w- c:\program files\hpzscr07.dll 2003-03-09 19:30 . 2003-03-09 19:30 16352 ----a-w- c:\program files\HPZUCI12.DLL 2003-03-09 19:30 . 2003-03-09 19:30 274432 ----a-w- c:\program files\hpzglu07.exe 2003-03-09 19:30 . 2003-03-09 19:30 237568 ----a-w- c:\program files\hpzc3212.dll 2002-09-09 16:48 . 2002-09-09 16:48 22608 ----a-w- c:\program files\usbprint.sys 2002-09-09 16:48 . 2002-09-09 16:48 12288 ----a-w- c:\program files\usbmon.dll 2002-09-09 16:48 . 2002-09-09 16:48 458752 ----a-w- c:\program files\tls704d.dll 2002-09-09 16:47 . 2002-09-09 16:47 254005 ----a-w- c:\program files\msvcrt.dll 2002-09-09 16:47 . 2002-09-09 16:47 70656 ----a-w- c:\program files\msvcirt.dll 2002-09-09 16:47 . 2002-09-09 16:47 212992 ----a-w- c:\program files\hpzpnp07.dll 2002-09-09 16:46 . 2002-09-09 16:46 49212 ----a-w- c:\program files\hpzjvp01.dll 2002-09-09 16:46 . 2002-09-09 16:46 249913 ----a-w- c:\program files\hpzjut01.dll 2002-09-09 16:46 . 2002-09-09 16:46 417849 ----a-w- c:\program files\hpzjpp01.dll 2002-09-09 16:46 . 2002-09-09 16:46 28722 ----a-w- c:\program files\hpzjlog.dll 2002-09-06 08:54 . 2002-09-06 08:54 995383 ----a-w- c:\program files\MFC42.DLL . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 204288] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-01-12 2219184] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn] 2010-05-06 09:29 64592 ----a-w- c:\program files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "CTFMON.EXE"=c:\windows\system32\ctfmon.exe "TomTomHOME.exe"="c:\program files\TomTom HOME 2\TomTomHOMERunner.exe" "WMPNSCFG"=c:\program files\Windows Media Player\WMPNSCFG.exe . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" "BluetoothAuthenticationAgent"=rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent "igfxhkcmd"=c:\windows\system32\hkcmd.exe "igfxpers"=c:\windows\system32\igfxpers.exe "PCMService"="c:\program files\Dell\Media Experience\PCMService.exe" "SigmatelSysTrayApp"=%ProgramFiles%\SigmaTel\C-Major Audio\WDM\stsystra.exe "igfxtray"=c:\windows\system32\igfxtray.exe "CanonMyPrinter"=c:\program files\Canon\MyPrinter\BJMyPrt.exe /logon "CanonSolutionMenuEx"=c:\program files\Canon\Solution Menu EX\CNSEMAIN.EXE /logon "IJNetworkScanUtility"=c:\program files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe "KPN"="c:\program files\KPN\bin\sprtcmd.exe" /P KPN "KPNAssistentUpdater"=c:\program files\KPN\KPN Update\KPNAssistentUpdater.exe "EvtMgr6"=c:\program files\Logitech\SetPointP\SetPoint.exe /launchGaming . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\Adobe\\Adobe Dreamweaver CS3\\Dreamweaver.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\KPN\\agent\\bin\\bcont.exe"= "c:\\Program Files\\BankingTools\\Cashflow 4\\CashflowApp.exe"= . R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [21-12-2010 15:04 115008] R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [12-1-2011 16:41 810144] R2 LBeepKE;Logitech Beep Suppression Driver;c:\windows\system32\drivers\LBeepKE.sys [10-6-2010 13:45 10448] R2 sprtsvc_KPN;SupportSoft Sprocket Service (KPN);c:\program files\KPN\bin\sprtsvc.exe [6-6-2008 16:08 202016] R2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [24-6-2010 15:41 92008] R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [7-5-2010 16:32 1051976] R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [25-2-2010 10:18 10064] S2 gupdate;Google Updateservice (gupdate);"c:\program files\Google\Update\GoogleUpdate.exe" /svc --> c:\program files\Google\Update\GoogleUpdate.exe [?] S3 LgBttPort;LGE Bluetooth TransPort;c:\windows\system32\DRIVERS\lgbtport.sys --> c:\windows\system32\DRIVERS\lgbtport.sys [?] S3 lgbusenum;LG Bluetooth Bus Enumerator;c:\windows\system32\DRIVERS\lgbtbus.sys --> c:\windows\system32\DRIVERS\lgbtbus.sys [?] S3 LGVMODEM;LGE Virtual Modem;c:\windows\system32\DRIVERS\lgvmodem.sys --> c:\windows\system32\DRIVERS\lgvmodem.sys [?] . HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs UxTuneUp . . ------- Bijkomende Scan ------- . uInternet Settings,ProxyOverride = *.local IE: Append to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: Convert link target to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html IE: Convert link target to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: Convert selected links to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html IE: Convert selected links to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html IE: Convert selection to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html IE: Convert selection to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: Convert to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~4\OFFICE11\EXCEL.EXE/3000 FF - ProfilePath - c:\documents and settings\Natasja\Application Data\Mozilla\Firefox\Profiles\55a9gh9y.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.google.nl/ FF - prefs.js: network.proxy.type - 0 FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff FF - user.js: network.http.max-persistent-connections-per-server - 4 FF - user.js: nglayout.initialpaint.delay - 600 FF - user.js: content.notify.interval - 600000 FF - user.js: content.max.tokenizing.time - 1800000 FF - user.js: content.switch.threshold - 600000 . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2011-03-22 14:44 Windows 5.1.2600 Service Pack 3 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\h–€|ÿÿÿÿ¤•€|ù•9~*] "3140111900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL" . --------------------- DLLs Geladen Onder Lopende Processen --------------------- . - - - - - - - > 'winlogon.exe'(760) c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll . - - - - - - - > 'explorer.exe'(3748) c:\windows\system32\WPDShServiceObj.dll c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll . Voltooingstijd: 2011-03-22 14:53:37 ComboFix-quarantined-files.txt 2011-03-22 13:53 ComboFix2.txt 2011-03-22 11:23 . Pre-Run: 134.282.240.000 bytes beschikbaar Post-Run: 134.275.371.008 bytes beschikbaar . - - End Of File - - 53FC793DD9754A7BCA76BC2748C0DAE3
  6. Lappie77
    Bedankt! Zie hier de inhoud van het logbestand: AV: ESET Smart Security 4.2 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0} FW: ESET Persoonlijke firewall *Enabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\program files\autorun.inf c:\program files\Setup.exe . . (((((((((((((((((((( Bestanden Gemaakt van 2011-02-22 to 2011-03-22 )))))))))))))))))))))))))))))) . . 2011-03-21 16:14 . 2011-03-21 16:14 388096 ----a-r- c:\documents and settings\Natasja\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2011-03-21 16:14 . 2011-03-21 16:14 -------- d-----w- c:\program files\Trend Micro 2011-03-21 14:52 . 2011-03-21 14:52 -------- d--h--r- c:\documents and settings\Natasja\Onlangs geopend 2011-03-02 20:09 . 2011-03-02 20:09 -------- d--h--w- c:\documents and settings\All Users\Application Data\CanonIJSolutionMenuEX 2011-03-02 20:09 . 2011-03-02 20:09 -------- d--h--w- c:\documents and settings\All Users\Application Data\CanonIJMyPrinter 2011-03-02 19:59 . 2011-03-02 20:24 -------- d-----w- c:\documents and settings\All Users\Application Data\CanonIJPLM 2011-03-01 13:53 . 2011-03-17 16:51 -------- d-----w- c:\documents and settings\Natasja\Application Data\Belastingdienst 2011-03-01 13:52 . 2011-03-03 08:05 -------- d-----w- c:\program files\Belastingdienst 2011-02-24 13:25 . 2011-02-24 13:25 -------- d-----w- c:\documents and settings\Natasja\Local Settings\Application Data\ESET 2011-02-24 13:25 . 2011-02-24 13:25 -------- d-----w- c:\documents and settings\Natasja\Application Data\ESET 2011-02-24 13:13 . 2011-02-24 13:13 -------- d-----w- c:\program files\ESET 2011-02-24 13:13 . 2011-02-24 13:13 -------- d-----w- c:\documents and settings\All Users\Application Data\ESET 2011-02-23 15:17 . 2011-02-23 15:17 -------- d-----w- c:\documents and settings\All Users\Application Data\mquadr.at 2011-02-23 15:17 . 2011-02-23 15:17 3527680 ----a-w- c:\windows\system32\M2LU_Server.exe 2011-02-23 15:17 . 2011-02-23 15:17 1120768 ----a-w- c:\windows\system32\M2ElevatedCalls.dll 2011-02-23 15:11 . 2011-02-23 15:11 -------- d-----w- c:\documents and settings\All Users\Application Data\SupportSoft 2011-02-23 15:09 . 2011-02-23 15:17 -------- d-----w- c:\program files\KPN . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-02-09 13:54 . 2004-08-04 10:00 270848 ----a-w- c:\windows\system32\sbe.dll 2011-02-09 13:54 . 2004-08-04 10:00 186880 ----a-w- c:\windows\system32\encdec.dll 2011-02-02 07:58 . 2010-06-10 10:21 2067456 ----a-w- c:\windows\system32\mstscax.dll 2011-01-27 11:57 . 2010-06-10 10:21 677888 ----a-w- c:\windows\system32\mstsc.exe 2011-01-21 14:44 . 2004-08-04 10:00 441344 ----a-w- c:\windows\system32\shimgvw.dll 2011-01-07 14:09 . 2004-08-04 10:00 290048 ----a-w- c:\windows\system32\atmfd.dll 2010-12-31 14:04 . 2004-08-04 10:00 1855104 ----a-w- c:\windows\system32\win32k.sys 2010-12-22 12:34 . 2004-08-04 10:00 301568 ----a-w- c:\windows\system32\kerberos.dll 2003-04-22 22:14 . 2003-04-22 22:14 2736128 ------w- c:\program files\aiodrv.msi 2003-04-22 22:09 . 2003-04-22 22:09 2605056 ------w- c:\program files\aiosw.msi 2003-03-09 19:30 . 2003-03-09 19:30 184320 ----a-w- c:\program files\hpzscr07.dll 2003-03-09 19:30 . 2003-03-09 19:30 16352 ----a-w- c:\program files\HPZUCI12.DLL 2003-03-09 19:30 . 2003-03-09 19:30 274432 ----a-w- c:\program files\hpzglu07.exe 2003-03-09 19:30 . 2003-03-09 19:30 237568 ----a-w- c:\program files\hpzc3212.dll 2002-09-09 16:48 . 2002-09-09 16:48 22608 ----a-w- c:\program files\usbprint.sys 2002-09-09 16:48 . 2002-09-09 16:48 12288 ----a-w- c:\program files\usbmon.dll 2002-09-09 16:48 . 2002-09-09 16:48 458752 ----a-w- c:\program files\tls704d.dll 2002-09-09 16:47 . 2002-09-09 16:47 254005 ----a-w- c:\program files\msvcrt.dll 2002-09-09 16:47 . 2002-09-09 16:47 70656 ----a-w- c:\program files\msvcirt.dll 2002-09-09 16:47 . 2002-09-09 16:47 212992 ----a-w- c:\program files\hpzpnp07.dll 2002-09-09 16:46 . 2002-09-09 16:46 49212 ----a-w- c:\program files\hpzjvp01.dll 2002-09-09 16:46 . 2002-09-09 16:46 249913 ----a-w- c:\program files\hpzjut01.dll 2002-09-09 16:46 . 2002-09-09 16:46 417849 ----a-w- c:\program files\hpzjpp01.dll 2002-09-09 16:46 . 2002-09-09 16:46 28722 ----a-w- c:\program files\hpzjlog.dll 2002-09-06 08:54 . 2002-09-06 08:54 995383 ----a-w- c:\program files\MFC42.DLL . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2006-11-02 204288] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-01-12 2219184] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn] 2010-05-06 09:29 64592 ----a-w- c:\program files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-] "CTFMON.EXE"=c:\windows\system32\ctfmon.exe "TomTomHOME.exe"="c:\program files\TomTom HOME 2\TomTomHOMERunner.exe" "WMPNSCFG"=c:\program files\Windows Media Player\WMPNSCFG.exe . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 8.0\Acrobat\Acrotray.exe" "BluetoothAuthenticationAgent"=rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent "igfxhkcmd"=c:\windows\system32\hkcmd.exe "igfxpers"=c:\windows\system32\igfxpers.exe "PCMService"="c:\program files\Dell\Media Experience\PCMService.exe" "SigmatelSysTrayApp"=%ProgramFiles%\SigmaTel\C-Major Audio\WDM\stsystra.exe "igfxtray"=c:\windows\system32\igfxtray.exe "CanonMyPrinter"=c:\program files\Canon\MyPrinter\BJMyPrt.exe /logon "CanonSolutionMenuEx"=c:\program files\Canon\Solution Menu EX\CNSEMAIN.EXE /logon "IJNetworkScanUtility"=c:\program files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe "KPN"="c:\program files\KPN\bin\sprtcmd.exe" /P KPN "KPNAssistentUpdater"=c:\program files\KPN\KPN Update\KPNAssistentUpdater.exe "EvtMgr6"=c:\program files\Logitech\SetPointP\SetPoint.exe /launchGaming . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile] "EnableFirewall"= 0 (0x0) . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\Adobe\\Adobe Dreamweaver CS3\\Dreamweaver.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\KPN\\agent\\bin\\bcont.exe"= "c:\\Program Files\\BankingTools\\Cashflow 4\\CashflowApp.exe"= . R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [21-12-2010 15:04 115008] R2 LBeepKE;Logitech Beep Suppression Driver;c:\windows\system32\drivers\LBeepKE.sys [10-6-2010 13:45 10448] S3 LgBttPort;LGE Bluetooth TransPort;c:\windows\system32\DRIVERS\lgbtport.sys --> c:\windows\system32\DRIVERS\lgbtport.sys [?] S3 lgbusenum;LG Bluetooth Bus Enumerator;c:\windows\system32\DRIVERS\lgbtbus.sys --> c:\windows\system32\DRIVERS\lgbtbus.sys [?] S3 LGVMODEM;LGE Virtual Modem;c:\windows\system32\DRIVERS\lgvmodem.sys --> c:\windows\system32\DRIVERS\lgvmodem.sys [?] . HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs UxTuneUp . . ------- Bijkomende Scan ------- . uInternet Settings,ProxyOverride = *.local IE: Append to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: Convert link target to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html IE: Convert link target to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: Convert selected links to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html IE: Convert selected links to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html IE: Convert selection to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html IE: Convert selection to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html IE: Convert to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~4\OFFICE11\EXCEL.EXE/3000 FF - ProfilePath - c:\documents and settings\Natasja\Application Data\Mozilla\Firefox\Profiles\55a9gh9y.default\ FF - prefs.js: browser.search.selectedEngine - Ask.com FF - prefs.js: browser.startup.homepage - hxxp://www.google.nl/ FF - prefs.js: network.proxy.type - 0 FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff FF - user.js: network.http.max-persistent-connections-per-server - 4 FF - user.js: nglayout.initialpaint.delay - 600 FF - user.js: content.notify.interval - 600000 FF - user.js: content.max.tokenizing.time - 1800000 FF - user.js: content.switch.threshold - 600000 . - - - - ORPHANS VERWIJDERD - - - - . SafeBoot-Wdf01000.sys . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2011-03-22 12:15 Windows 5.1.2600 Service Pack 3 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\h–€|ÿÿÿÿ¤•€|ù•9~*] "3140111900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL" . --------------------- DLLs Geladen Onder Lopende Processen --------------------- . - - - - - - - > 'winlogon.exe'(760) c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll . Voltooingstijd: 2011-03-22 12:23:29 ComboFix-quarantined-files.txt 2011-03-22 11:23 . Pre-Run: 134.288.850.944 bytes beschikbaar Post-Run: 134.277.521.408 bytes beschikbaar . WindowsXP-KB310994-SP2-Home-BootDisk-NLD.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons UnsupportedDebug="do not select this" /debug multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect . - - End Of File - - 90E48681BE9A04222229BF9E196EA020
  7. Lappie77
    Niemand?
  8. Lappie77
    Hallo, Mijn laptop is erg traag. Windows opstarten gaat goed maar wanneer ik programma's op wil starten is hij een stuk slomer geworden. Ook het bekijken van filmpjes op youtube is niet meer te doen. Ik draai om de paar dagen het programma ccleaner, heb tuneup utilities op de pc en ESET virusscanner. Verder regelmatig register na laten kijken en gedefragmenteerd. Ook grote programma's verwijderd. Het haalt allemaal niets uit. Overweeg nu de c-schijf te formatteren en de hele reutemeteut opnieuw te installeren. Hieronder volgt een logfile van hijackthis. Ik hoop dat iemand er even naar wil kijken. Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 17:15:06, on 21-3-2011 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.17095) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\ESET\ESET Smart Security\ekrn.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\PSIService.exe C:\Program Files\KPN\bin\sprtsvc.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\Tablet.exe C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe C:\WINDOWS\system32\WTablet\TabUserW.exe C:\WINDOWS\system32\Tablet.exe C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe C:\Program Files\ESET\ESET Smart Security\egui.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Media Player\WMPNSCFG.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\WINDOWS\system32\msiexec.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = Bing: R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: Append to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~4\OFFICE11\EXCEL.EXE/3000 O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1276182240984 O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Unknown owner - C:\Program Files\Google\Update\GoogleUpdate.exe (file missing) O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\LogiShrd\Bluetooth\lbtserv.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe O23 - Service: SupportSoft Sprocket Service (KPN) (sprtsvc_KPN) - SupportSoft, Inc. - C:\Program Files\KPN\bin\sprtsvc.exe O23 - Service: TabletService - Wacom Technology, Corp. - C:\WINDOWS\system32\Tablet.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe -- End of file - 8460 bytes Hoop dat jullie mij kunnen helpen
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.