dspark

In energiebeheer staat gewoon; geen wachtwoord vereisen.

Ondertussen al iemand een nieuw idee?

hoi, ik heb op mn pc maar 1 acount maar word door win 7 toch telkens verplicht om aan te melden als ik uit slaapstand kom.Ik druk op enter en hij geeft gewoon mn bureaublad. Vroeger deed hij dit(verplichten om aan te melden) niet. Mn pc is wel eens zonder stroom gevallen en ik denk dat het daarmee te maken heeft.Ik heb al tips gezocht, en de meeste zeggen control userpasswords2 te gebruiken en dan paswoord uit te vinken of zo, maar ik heb maar 1acount en geen paswoord.

ook bij gewoon gebruik. muziek beluisteren bvb. er treed idd op het moment van de storing een merkbare verhoging van de cpubelasting op, alle 4 ongeveer 50%. het enige proces dat ik zie hoger gaan dan is dat van "system" zelf.

een zeer snel repetitief geluid (rrrrrrrrrrrrrrrrr) dat 1 seconde duurt uit de speakers. Als die niet aanstaan hoor ik niets van storing, maar het beeld blijft wel hangen gedurende die seconde (als het bewegende beelden zijn, gamen of films bvb.)

geheugen is ok; pass complete,no errors hoop dat je nog ideeen hebt wabbit

ja! gevonden; Het type bestandssysteem is NTFS. Volumenaam is OS. Waarschuwing. Parameter F niet opgegeven CHKDSK wordt uitgevoerd in alleen-lezenmodus. Bestanden controleren (stap 1 van 3)... 0 procent voltooid. (0 van 277760 bestandsrecords verwerkt) 0 procent voltooid. (4097 van 277760 bestandsrecords verwerkt) 0 procent voltooid. (9434 van 277760 bestandsrecords verwerkt) 0 procent voltooid. (15102 van 277760 bestandsrecords verwerkt) 1 procent voltooid. (27776 van 277760 bestandsrecords verwerkt) 1 procent voltooid. (39494 van 277760 bestandsrecords verwerkt) 1 procent voltooid. (53505 van 277760 bestandsrecords verwerkt) 2 procent voltooid. (55552 van 277760 bestandsrecords verwerkt) 2 procent voltooid. (67841 van 277760 bestandsrecords verwerkt) 2 procent voltooid. (75777 van 277760 bestandsrecords verwerkt) 2 procent voltooid. (81921 van 277760 bestandsrecords verwerkt) 3 procent voltooid. (83328 van 277760 bestandsrecords verwerkt) 3 procent voltooid. (93441 van 277760 bestandsrecords verwerkt) 3 procent voltooid. (107777 van 277760 bestandsrecords verwerkt) 4 procent voltooid. (111104 van 277760 bestandsrecords verwerkt) 4 procent voltooid. (123905 van 277760 bestandsrecords verwerkt) 5 procent voltooid. (138880 van 277760 bestandsrecords verwerkt) 5 procent voltooid. (145153 van 277760 bestandsrecords verwerkt) 5 procent voltooid. (152833 van 277760 bestandsrecords verwerkt) 5 procent voltooid. (164353 van 277760 bestandsrecords verwerkt) 6 procent voltooid. (166656 van 277760 bestandsrecords verwerkt) 6 procent voltooid. (179457 van 277760 bestandsrecords verwerkt) 6 procent voltooid. (187905 van 277760 bestandsrecords verwerkt) 7 procent voltooid. (194432 van 277760 bestandsrecords verwerkt) 7 procent voltooid. (203265 van 277760 bestandsrecords verwerkt) 7 procent voltooid. (210689 van 277760 bestandsrecords verwerkt) 7 procent voltooid. (220673 van 277760 bestandsrecords verwerkt) 8 procent voltooid. (222208 van 277760 bestandsrecords verwerkt) 8 procent voltooid. (233393 van 277760 bestandsrecords verwerkt) 8 procent voltooid. (244225 van 277760 bestandsrecords verwerkt) 9 procent voltooid. (249984 van 277760 bestandsrecords verwerkt) 9 procent voltooid. (260609 van 277760 bestandsrecords verwerkt) 9 procent voltooid. (268801 van 277760 bestandsrecords verwerkt) 277760 bestandsrecords verwerkt. De bestandscontrole is voltooid. 2188 records met grote bestanden verwerkt. 0 records met beschadigde bestanden verwerkt. 0 EA-records verwerkt. 76 reparserecords verwerkt. Indices controleren (stap 2 van 3)... 11 procent voltooid. (5240 van 350390 indexvermeldingen verwerkt) 12 procent voltooid. (11234 van 350390 indexvermeldingen verwerkt) 13 procent voltooid. (17228 van 350390 indexvermeldingen verwerkt) 14 procent voltooid. (23222 van 350390 indexvermeldingen verwerkt) 15 procent voltooid. (29215 van 350390 indexvermeldingen verwerkt) 16 procent voltooid. (35209 van 350390 indexvermeldingen verwerkt) 17 procent voltooid. (41203 van 350390 indexvermeldingen verwerkt) 18 procent voltooid. (47197 van 350390 indexvermeldingen verwerkt) 19 procent voltooid. (53191 van 350390 indexvermeldingen verwerkt) 20 procent voltooid. (59185 van 350390 indexvermeldingen verwerkt) 21 procent voltooid. (65179 van 350390 indexvermeldingen verwerkt) 22 procent voltooid. (71173 van 350390 indexvermeldingen verwerkt) 23 procent voltooid. (77167 van 350390 indexvermeldingen verwerkt) 24 procent voltooid. (83161 van 350390 indexvermeldingen verwerkt) 25 procent voltooid. (89155 van 350390 indexvermeldingen verwerkt) 26 procent voltooid. (95149 van 350390 indexvermeldingen verwerkt) 27 procent voltooid. (101143 van 350390 indexvermeldingen verwerkt) 28 procent voltooid. (107136 van 350390 indexvermeldingen verwerkt) 29 procent voltooid. (113130 van 350390 indexvermeldingen verwerkt) 30 procent voltooid. (119124 van 350390 indexvermeldingen verwerkt) 31 procent voltooid. (125118 van 350390 indexvermeldingen verwerkt) 32 procent voltooid. (131112 van 350390 indexvermeldingen verwerkt) 33 procent voltooid. (137106 van 350390 indexvermeldingen verwerkt) 34 procent voltooid. (143100 van 350390 indexvermeldingen verwerkt) 35 procent voltooid. (149094 van 350390 indexvermeldingen verwerkt) 36 procent voltooid. (155088 van 350390 indexvermeldingen verwerkt) 37 procent voltooid. (161082 van 350390 indexvermeldingen verwerkt) 38 procent voltooid. (167076 van 350390 indexvermeldingen verwerkt) 39 procent voltooid. (173070 van 350390 indexvermeldingen verwerkt) 40 procent voltooid. (179063 van 350390 indexvermeldingen verwerkt) 41 procent voltooid. (185057 van 350390 indexvermeldingen verwerkt) 42 procent voltooid. (191051 van 350390 indexvermeldingen verwerkt) 43 procent voltooid. (197045 van 350390 indexvermeldingen verwerkt) 44 procent voltooid. (203039 van 350390 indexvermeldingen verwerkt) 45 procent voltooid. (209033 van 350390 indexvermeldingen verwerkt) 46 procent voltooid. (215027 van 350390 indexvermeldingen verwerkt) 47 procent voltooid. (221021 van 350390 indexvermeldingen verwerkt) 48 procent voltooid. (227015 van 350390 indexvermeldingen verwerkt) 49 procent voltooid. (233009 van 350390 indexvermeldingen verwerkt) 50 procent voltooid. (239003 van 350390 indexvermeldingen verwerkt) 51 procent voltooid. (244997 van 350390 indexvermeldingen verwerkt) 52 procent voltooid. (250991 van 350390 indexvermeldingen verwerkt) 53 procent voltooid. (256984 van 350390 indexvermeldingen verwerkt) 54 procent voltooid. (262978 van 350390 indexvermeldingen verwerkt) 55 procent voltooid. (268972 van 350390 indexvermeldingen verwerkt) 56 procent voltooid. (274966 van 350390 indexvermeldingen verwerkt) 56 procent voltooid. (277773 van 350390 indexvermeldingen verwerkt) 56 procent voltooid. (278092 van 350390 indexvermeldingen verwerkt) 56 procent voltooid. (278327 van 350390 indexvermeldingen verwerkt) 56 procent voltooid. (279348 van 350390 indexvermeldingen verwerkt) 56 procent voltooid. (279646 van 350390 indexvermeldingen verwerkt) 56 procent voltooid. (280625 van 350390 indexvermeldingen verwerkt) 56 procent voltooid. (280864 van 350390 indexvermeldingen verwerkt) 57 procent voltooid. (280960 van 350390 indexvermeldingen verwerkt) 57 procent voltooid. (282026 van 350390 indexvermeldingen verwerkt) 57 procent voltooid. (283001 van 350390 indexvermeldingen verwerkt) 57 procent voltooid. (283118 van 350390 indexvermeldingen verwerkt) 57 procent voltooid. (283496 van 350390 indexvermeldingen verwerkt) 57 procent voltooid. (283958 van 350390 indexvermeldingen verwerkt) 57 procent voltooid. (284141 van 350390 indexvermeldingen verwerkt) 57 procent voltooid. (284363 van 350390 indexvermeldingen verwerkt) 58 procent voltooid. (286954 van 350390 indexvermeldingen verwerkt) 58 procent voltooid. (288749 van 350390 indexvermeldingen verwerkt) 58 procent voltooid. (291711 van 350390 indexvermeldingen verwerkt) 59 procent voltooid. (292948 van 350390 indexvermeldingen verwerkt) 59 procent voltooid. (296879 van 350390 indexvermeldingen verwerkt) 60 procent voltooid. (298942 van 350390 indexvermeldingen verwerkt) 60 procent voltooid. (299997 van 350390 indexvermeldingen verwerkt) 60 procent voltooid. (300897 van 350390 indexvermeldingen verwerkt) 60 procent voltooid. (302310 van 350390 indexvermeldingen verwerkt) 60 procent voltooid. (304300 van 350390 indexvermeldingen verwerkt) 61 procent voltooid. (304936 van 350390 indexvermeldingen verwerkt) 61 procent voltooid. (307660 van 350390 indexvermeldingen verwerkt) 61 procent voltooid. (308562 van 350390 indexvermeldingen verwerkt) 61 procent voltooid. (309469 van 350390 indexvermeldingen verwerkt) 61 procent voltooid. (310785 van 350390 indexvermeldingen verwerkt) 62 procent voltooid. (310930 van 350390 indexvermeldingen verwerkt) 62 procent voltooid. (311968 van 350390 indexvermeldingen verwerkt) 62 procent voltooid. (314024 van 350390 indexvermeldingen verwerkt) 350390 indexvermeldingen verwerkt. De indexcontrole voltooid. 0 niet-ge‹ndexeerde bestanden gecontroleerd. 0 niet-ge‹ndexeerde bestanden hersteld. CHKDSK controleert de security descriptors (stap 3 van 3)... 69 procent voltooid. (7491 van 277760 bestands-SD's/-SID's verwerkt) 70 procent voltooid. (25472 van 277760 bestands-SD's/-SID's verwerkt) 71 procent voltooid. (43454 van 277760 bestands-SD's/-SID's verwerkt) 72 procent voltooid. (61436 van 277760 bestands-SD's/-SID's verwerkt) 73 procent voltooid. (79418 van 277760 bestands-SD's/-SID's verwerkt) 74 procent voltooid. (97400 van 277760 bestands-SD's/-SID's verwerkt) 75 procent voltooid. (115381 van 277760 bestands-SD's/-SID's verwerkt) 76 procent voltooid. (133363 van 277760 bestands-SD's/-SID's verwerkt) 77 procent voltooid. (151345 van 277760 bestands-SD's/-SID's verwerkt) 78 procent voltooid. (169327 van 277760 bestands-SD's/-SID's verwerkt) 79 procent voltooid. (187308 van 277760 bestands-SD's/-SID's verwerkt) 80 procent voltooid. (205290 van 277760 bestands-SD's/-SID's verwerkt) 81 procent voltooid. (223272 van 277760 bestands-SD's/-SID's verwerkt) 82 procent voltooid. (241254 van 277760 bestands-SD's/-SID's verwerkt) 83 procent voltooid. (259235 van 277760 bestands-SD's/-SID's verwerkt) 84 procent voltooid. (277217 van 277760 bestands-SD's/-SID's verwerkt) 277760 bestands-SD's/-SID's verwerkt. De controle van security descriptors is voltooid. 36316 gegevensbestanden verwerkt. Het USN-logboek controleren... 99 procent voltooid. (0 van 33826512 USN-bytes verwerkt) 100 procent voltooid. (33824768 van 33826512 USN-bytes verwerkt) 33826512 USN-bytes verwerkt. Controle van USN-logboek is voltooid. Het bestandssysteem is gecontroleerd. Er zijn geen problemen vastgesteld. 1452360703 kB totale schijfruimte. 427204500 kB in 201177 bestanden. 120136 kB in 36317 indexen. 0 kB in beschadigde sectoren. 422023 kB in gebruik door het systeem. Het logboekbestand neemt 65536 kB in beslag. 1024614044 kB beschikbaar op schijf. 4096 bytes per cluster 363090175 clusters in totaal op schijf 256153511 clusters beschikbaar op schijf

er verschijnt niks na de controle.( ik gebruik win 7) . ik heb al gezocht om het log te vinden, op het web stond gebruik event viewer of zoiets om alle logjes te vinden, dat is gelukt, maar in dat bos van logjes vind ik het juiste log niet. Ik denk ook dat het loggen voor deze specifieke taak niet aanstaat. Ik denk dat het gaat over winlogon, maar weet dat eigenlijk al niet zeker. ik heb geprobeerd om het loggen hiervoor aan te zetten en nog maar eens een schijfcontrole uit te voeren, maar na het controleren verschijnt er niets, en vind ik niks in de logjes. ---------- Post toegevoegd om 10:21 ---------- Vorige post was om 10:17 ---------- Na de vorige controles had ik de fout in ieder geval nog altijd.Tijdens de conroles zag ik in ieder geval geen meldingen van fouten bij de eerste 4 taken, bij de laatste weet ik het niet, die duurt altijd uren.

de diskcheck is gedaan maar ik zag geen log. waar vind ik dat?

de diskcheck is gedaan maar ik zag geen log. waar vind ik dat? speccy; http://speccy.piriform.com/results/uABKx8Ed1yl1aMfK5leoBPT

nee dat was het niet.

Naar de winkel teruggaan is moeilijk daar ik al een andere videokaart en zwaardere voeding gestoken heb. Ik kan die er wel terug uithalen en de originele terug erin steken, maar dat is een pak werk voor mij(doe dat niet dagelijks) en waarschijnlijk gaan ze dat kunnen zien in de winkel en geld er dan toch geen garantie meer. a propos de pc werkte enkele weken prima met de andere videokaart en zwaardere voeding.

zou het ook een hardwareprobleem kunnen zijn?zal ik deze vraag ook eens in de categorie hardware stellen?of heeft dat geen zin?

jammer genoeg; beta driver van nvidia of ccleaner lossen het niet op.

Hij heeft het nog . Ik begin te denken aan een driver probleem, mijn nvidia videokaart(gtx 470) heeft de nieuwste goedgekeurde driver (285.62 ), ik zal eens een beta proberen.

Zo! eerst combofix; ComboFix 12-01-17.01 - Danny 17/01/2012 19:52:25.5.4 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.6124.4469 [GMT 1:00] Gestart vanuit: c:\users\Danny\Desktop\ComboFix.exe gebruikte Opdracht switches :: c:\users\Danny\Desktop\CFScript.txt AV: Norton 360 *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF} FW: Norton 360 *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4} SP: Norton 360 *Disabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . FILE :: "c:\users\Danny\BIT4920.tmp" "c:\windows\SysWow64\tmpBDC92.FOT" . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\windows\SysWow64\tmpBDC92.FOT . . (((((((((((((((((((( Bestanden Gemaakt van 2011-12-18 to 2012-01-18 )))))))))))))))))))))))))))))) . . 2012-01-18 05:24 . 2012-01-18 05:24 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp 2012-01-18 05:24 . 2012-01-18 05:24 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-01-17 20:56 . 2012-01-17 20:56 -------- d-----w- c:\program files (x86)\Playlogic 2012-01-16 09:17 . 2012-01-16 09:17 -------- d-----w- c:\users\Danny\AppData\Roaming\Malwarebytes 2012-01-16 09:17 . 2012-01-16 09:17 -------- d-----w- c:\programdata\Malwarebytes 2012-01-16 09:17 . 2012-01-16 09:51 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware 2012-01-16 09:17 . 2011-12-10 14:24 23152 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-01-16 08:45 . 2012-01-16 08:45 388096 ----a-r- c:\users\Danny\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2012-01-16 08:45 . 2012-01-16 08:45 -------- d-----w- c:\program files (x86)\Trend Micro 2012-01-14 09:57 . 2012-01-14 09:57 -------- d-----w- c:\program files (x86)\GameSpy Arcade 2012-01-14 09:57 . 2012-01-14 09:57 -------- d-----w- c:\program files (x86)\MSXML 4.0 2012-01-14 09:56 . 2012-01-14 09:56 -------- d-----w- c:\program files (x86)\Microsoft Games 2012-01-12 21:19 . 2012-01-12 21:19 -------- d-----w- c:\program files (x86)\AL-Software 2012-01-11 13:09 . 2011-10-26 05:25 1572864 ----a-w- c:\windows\system32\quartz.dll 2012-01-11 13:09 . 2011-10-26 05:25 366592 ----a-w- c:\windows\system32\qdvd.dll 2012-01-11 13:09 . 2011-10-26 04:32 514560 ----a-w- c:\windows\SysWow64\qdvd.dll 2012-01-11 13:09 . 2011-10-26 04:32 1328128 ----a-w- c:\windows\SysWow64\quartz.dll 2012-01-11 13:09 . 2011-11-17 06:41 1731920 ----a-w- c:\windows\system32\ntdll.dll 2012-01-11 13:09 . 2011-11-17 05:38 1292080 ----a-w- c:\windows\SysWow64\ntdll.dll 2012-01-11 13:09 . 2011-11-19 14:58 77312 ----a-w- c:\windows\system32\packager.dll 2012-01-11 13:09 . 2011-11-19 14:01 67072 ----a-w- c:\windows\SysWow64\packager.dll 2012-01-10 19:55 . 2012-01-10 19:55 -------- d-----w- c:\program files\Key Metric Software 2012-01-10 19:55 . 2012-01-10 19:55 -------- d-----w- c:\users\Danny\AppData\Roaming\Key Metric Software 2012-01-10 09:43 . 2012-01-10 10:31 -------- d-----w- c:\users\Danny\Calibrebibliotheek 2012-01-10 09:43 . 2012-01-10 09:52 -------- d-----w- c:\users\Danny\AppData\Roaming\calibre 2012-01-10 09:42 . 2012-01-10 09:46 -------- d-----w- c:\program files (x86)\Calibre2 2012-01-09 11:50 . 2012-01-12 13:34 -------- d-----w- c:\users\Danny\AppData\Local\Newsbin 2012-01-09 11:50 . 2012-01-09 11:50 -------- d-----w- c:\program files\Newsbin 2012-01-09 09:17 . 2012-01-09 09:17 -------- d-----w- c:\program files\Mozilla Plugins 2012-01-09 09:16 . 2012-01-09 09:17 -------- d-----w- c:\program files\iTunes 2012-01-09 09:16 . 2012-01-09 09:16 -------- d-----w- c:\program files\iPod 2012-01-09 09:16 . 2012-01-09 09:16 -------- d-----w- c:\program files\CD Configuration 2012-01-08 17:53 . 2012-01-08 17:53 -------- d-----w- c:\users\Danny\AppData\Local\Apps 2012-01-08 17:50 . 2012-01-08 17:50 -------- d-----w- c:\users\Danny\Nieuwe map 2012-01-08 15:24 . 2012-01-15 19:29 -------- d-----w- c:\program files (x86)\1-Click PC Fix v4 2012-01-08 15:04 . 2012-01-08 15:04 -------- d-----w- c:\users\Danny\AppData\Local\Locktime 2012-01-08 14:08 . 2012-01-08 14:08 -------- d-----w- c:\programdata\Locktime 2012-01-08 14:08 . 2012-01-08 14:08 -------- d-----w- c:\program files\NetLimiter 3 2012-01-08 08:34 . 2011-10-15 06:31 723456 ----a-w- c:\windows\system32\EncDec.dll 2012-01-08 08:34 . 2011-10-15 05:38 534528 ----a-w- c:\windows\SysWow64\EncDec.dll 2012-01-08 08:34 . 2011-10-26 05:21 43520 ----a-w- c:\windows\system32\csrsrv.dll 2012-01-08 08:34 . 2011-11-24 04:52 3145216 ----a-w- c:\windows\system32\win32k.sys 2012-01-08 08:34 . 2011-11-05 05:32 2048 ----a-w- c:\windows\system32\tzres.dll 2012-01-08 08:34 . 2011-11-05 04:26 2048 ----a-w- c:\windows\SysWow64\tzres.dll . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-12-08 00:36 . 2011-12-08 00:36 293736 ----a-w- c:\program files\iTunesOutlookAddIn.dll 2011-12-08 00:36 . 2011-12-08 00:36 421736 ----a-w- c:\program files\iTunesHelper.exe 2011-12-08 00:36 . 2011-12-08 00:36 403304 ----a-w- c:\program files\iTunesAdmin.dll 2011-12-08 00:36 . 2011-12-08 00:36 156520 ----a-w- c:\program files\iTunesHelper.dll 2011-12-08 00:36 . 2011-12-08 00:36 9777000 ----a-w- c:\program files\iTunes.exe 2011-12-08 00:36 . 2011-12-08 00:36 20864360 ----a-w- c:\program files\iTunes.dll 2011-12-08 00:36 . 2011-12-08 00:36 797208 ----a-w- c:\program files\gnsdk_sdkmanager.dll 2011-12-08 00:36 . 2011-12-08 00:36 3029528 ----a-w- c:\program files\gnsdk_dsp.dll 2011-12-08 00:36 . 2011-12-08 00:36 281112 ----a-w- c:\program files\gnsdk_submit.dll 2011-12-08 00:36 . 2011-12-08 00:36 240152 ----a-w- c:\program files\gnsdk_musicid.dll 2011-12-04 09:24 . 2011-09-24 11:31 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2011-12-02 16:39 . 2011-12-02 16:39 189248 ----a-w- c:\windows\SysWow64\PnkBstrB.exe 2011-12-02 16:39 . 2011-12-02 16:39 75136 ----a-w- c:\windows\SysWow64\PnkBstrA.exe 2011-11-14 19:16 . 2011-11-14 19:16 112488 ----a-w- c:\program files\ITDetector.ocx 2010-04-07 04:25 . 2010-04-07 04:25 68112 ----a-w- c:\program files\Install.exe . . ((((((((((((((((((((((((((((( SnapShot@2012-01-17_12.09.03 ))))))))))))))))))))))))))))))))))))))))) . + 2009-07-14 05:10 . 2012-01-17 12:10 35444 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin + 2011-09-16 14:27 . 2012-01-17 12:10 10576 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1556954611-3077419938-1783922913-1001_UserData.bin + 2011-02-11 19:25 . 2012-01-18 05:51 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2011-02-11 19:25 . 2012-01-16 09:21 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2011-02-11 19:25 . 2012-01-16 09:21 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2011-02-11 19:25 . 2012-01-18 05:51 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-07-14 04:54 . 2012-01-18 05:51 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2009-07-14 04:54 . 2012-01-16 09:21 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2012-01-18 07:33 . 2012-01-18 07:33 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat - 2012-01-17 12:07 . 2012-01-17 12:08 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat + 2012-01-18 07:33 . 2012-01-18 07:33 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat - 2012-01-17 12:07 . 2012-01-17 12:07 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat + 2011-07-29 08:21 . 2012-01-17 17:27 746048 c:\windows\system32\perfh013.dat - 2011-07-29 08:21 . 2012-01-16 13:02 746048 c:\windows\system32\perfh013.dat - 2009-07-14 02:36 . 2012-01-16 13:02 654842 c:\windows\system32\perfh009.dat + 2009-07-14 02:36 . 2012-01-17 17:27 654842 c:\windows\system32\perfh009.dat + 2011-07-29 08:21 . 2012-01-17 17:27 153254 c:\windows\system32\perfc013.dat - 2011-07-29 08:21 . 2012-01-16 13:02 153254 c:\windows\system32\perfc013.dat + 2009-07-14 02:36 . 2012-01-17 17:27 121714 c:\windows\system32\perfc009.dat - 2009-07-14 02:36 . 2012-01-16 13:02 121714 c:\windows\system32\perfc009.dat + 2009-07-14 05:01 . 2012-01-18 06:52 385568 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat - 2009-07-14 05:01 . 2012-01-17 12:05 385568 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat + 2011-09-20 17:16 . 2012-01-18 06:53 4879120 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat - 2011-09-20 17:16 . 2012-01-17 12:05 4879120 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat + 2011-09-16 16:57 . 2012-01-18 06:53 30000108 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1556954611-3077419938-1783922913-1001-12288.dat . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NetLimiter"="c:\program files\NetLimiter 3\NLClientApp.exe" [2011-03-21 2910208] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584] "uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2011-10-20 641400] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "HP Remote Solution"="c:\program files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe" [2009-08-25 656896] "LaunchHPOSIAPP"="c:\program files (x86)\Hewlett-Packard\HP Keyboard\LaunchApp.exe" [2009-04-04 385024] "Norton Ghost 15.0"="c:\program files (x86)\Norton Ghost\Agent\VProTray.exe" [2009-10-01 2596712] "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-11-01 59240] "iTunesHelper"="c:\program files\iTunesHelper.exe" [2011-12-08 421736] "Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-12-24 460872] . c:\users\Danny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ HP SimpleSave Monitor.lnk - c:\users\Danny\AppData\Roaming\HP SimpleSave Application\StartHelper.exe [2011-11-2 477080] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) "HideFastUserSwitching"= 0 (0x0) "EnableLinkedConnections"= 1 (0x1) . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "EnableShellExecuteHooks"= 1 (0x1) . [hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks] . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "mixer3"=wdmaud.drv . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ PDBoot.exe\0autocheck autochk * . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer] @="Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SolutoService] @="Service" . R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-06-21 85560] R2 SolutoService;Soluto PCGenome Core Service;c:\program files\Soluto\SolutoService.exe [2011-08-31 396320] R3 dfg;dfg;c:\windows\system32\DRIVERS\dfg.sys [x] R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2011-08-15 130976] R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072] R3 GenericMount Helper Service;GenericMount Helper Service;c:\program files (x86)\Norton Ghost\Shared\Drivers\GenericMountHelper.exe [2009-09-21 1571336] R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536] R3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys [x] R3 NLNdisPT;NetLimiter Ndis Protocol Service;c:\windows\system32\DRIVERS\nlndis.sys [x] R3 NOBU;Norton Online Backup;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x] R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440] R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] R3 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe [2011-02-01 1127448] R3 RTCore64;RTCore64;c:\program files (x86)\MSI Afterburner\RTCore64.sys [2010-02-01 14648] R3 s1018bus;Sony Ericsson Device 1018 driver (WDM);c:\windows\system32\DRIVERS\s1018bus.sys [x] R3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s1018mdfl.sys [x] R3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s1018mdm.sys [x] R3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s1018mgmt.sys [x] R3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS);c:\windows\system32\DRIVERS\s1018nd5.sys [x] R3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s1018obex.sys [x] R3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM);c:\windows\system32\DRIVERS\s1018unic.sys [x] R3 Symantec SymSnap VSS Provider;Symantec SymSnap VSS Provider;c:\windows\system32\dllhost.exe [2009-07-14 9728] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x] R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x] R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184] S0 Soluto;Soluto;c:\windows\system32\DRIVERS\Soluto.sys [x] S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\N360x64\0501000.01D\SYMDS64.SYS [x] S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\N360x64\0501000.01D\SYMEFA64.SYS [x] S1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20111223.001\BHDrvx64.sys [2011-12-01 1157240] S1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20120114.005\IDSvia64.sys [2012-01-06 488568] S1 nltdi;nltdi;c:\program files\NetLimiter 3\nltdi.sys [2011-03-21 88200] S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\N360x64\0501000.01D\Ironx64.SYS [x] S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\System32\Drivers\N360x64\0501000.01D\SYMNETS.SYS [x] S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x] S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe [2009-03-02 89600] S2 BackupService;BackupService;c:\users\Danny\AppData\Roaming\HP SimpleSave Application\uUACTokenSvc.exe [2010-07-01 83512] S2 hcwD3bda_dvbt;Hauppauge MSi2500 DVBT Service;c:\windows\system32\hauppauge\hcwD3dvb\DVBT\DVBService.exe [x] S2 HP Power Assistant Service;HP Power Assistant Service;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2010-11-17 107576] S2 HPAuto;HP Auto;c:\program files\Hewlett-Packard\HP Auto\HPAuto.exe [2011-02-17 682040] S2 HPClientSvc;HP Client Services;c:\program files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-10-11 346168] S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-28 94264] S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-12-24 652872] S2 N360;Norton 360;c:\program files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe [2011-04-17 130008] S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-15 2253120] S2 PDFSFilter;PDFSFilter;c:\windows\system32\DRIVERS\PDFsFilter.sys [x] S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-10-14 381248] S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-02-01 2656280] S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-01-08 138360] S3 GenericMount;Generic Mount Driver;c:\windows\system32\DRIVERS\GenericMount.sys [x] S3 hcwD3bda;Driver for WinTV DVB-T (Model 133xxx);c:\windows\system32\DRIVERS\hcwD3bda64.sys [x] S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x] S3 MEIx64;Intel® Management Engine Interface;c:\windows\system32\drivers\HECIx64.sys [x] S3 NLNdisMP;NLNdisMP;c:\windows\system32\DRIVERS\nlndis.sys [x] S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x] S3 SymSnapService;SymSnapService;c:\program files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe [2009-09-21 2963960] S3 tihub3;TI USB3 Hub Service;c:\windows\system32\drivers\tihub3.sys [x] S3 tixhci;TI XHCI Service;c:\windows\system32\drivers\tixhci.sys [x] . . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{A8D647C8-65AC-409F-B7B2-3C0FEE1A32F2}] 2010-02-16 17:02 114688 ----a-w- c:\program files (x86)\PixiePack Codec Pack\InstallerHelper.exe . Inhoud van de 'Gedeelde Taken' map . 2012-01-15 c:\windows\Tasks\1-Click PC Fix Scheduled Scan.job - c:\program files (x86)\1-Click PC Fix v4\1-Click PC Fix.exe [2012-01-08 22:52] . 2012-01-15 c:\windows\Tasks\HPCeeScheduleForDANNY-HP$.job - c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 05:15] . 2012-01-18 c:\windows\Tasks\HPCeeScheduleForDanny.job - c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 05:15] . . --------- x86-64 ----------- . . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "BeatsOSDApp"="c:\program files\IDT\WDM\beats64.exe" [2010-10-21 37888] "hpsysdrv"="c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe" [2008-11-20 62768] "SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2011-06-24 1128448] . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/ uLocal Page = c:\windows\system32\blank.htm mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local IE: &Verzenden naar OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105 IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000 TCP: DhcpNameServer = 192.168.1.1 DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/3.0.1.0/GarminAxControl.CAB FF - ProfilePath - c:\users\Danny\AppData\Roaming\Mozilla\Firefox\Profiles\4bep9edt.default\ FF - prefs.js: browser.startup.homepage - hxxp://my.benl.ebay.be/ws/eBayISAPI.dll?MyEbay&gbh=1|http://h33t.com/index.php|http://h33t.com/torrents.php?search=nl&category=27&Go.x=40&Go.y=3|http://www.gamezonemail.com/eonapps/ft/wm/page/wm#%7B%22page%22:%22view%22,%22folder%22:%7B%22boxHandle%22:%7B%22owner%22:28877093,%22eonType%22:%22PersonalBoxHandle%22%7D,%22folderPath%22:%7B%22path%22:%22/INBOX%22,%22eonType%22:%22Path%22%7D,%22eonType%22:%22FolderHandle%22%7D,%22EV1%22:%22tLTe%22%7D|http://www.hetmultimediacafe.be/index.php|http://forum-mp3server.biz/index.php?sid=6dad632492143b7b6b271f8ec8d7cd55 FF - prefs.js: network.proxy.type - 0 . . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\N360] "ImagePath"="\"c:\program files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe\" /s \"N360\" /m \"c:\program files (x86)\Norton 360\Engine\5.1.0.29\diMaster.dll\" /prefetch:1" -- . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\pdfcDispatcher] "ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.10" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Andere Aktieve Processen ------------------------ . c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe c:\windows\SysWOW64\ezSharedSvcHost.exe c:\program files (x86)\Hewlett-Packard\HP Keyboard\ModLEDKey.exe c:\program files (x86)\Norton Ghost\Agent\VProSvc.exe c:\windows\SysWOW64\PnkBstrA.exe c:\program files (x86)\Hewlett-Packard\HP Keyboard\CNYHKEY.exe c:\program files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe . ************************************************************************** . Voltooingstijd: 2012-01-18 08:49:19 - machine werd herstart ComboFix-quarantined-files.txt 2012-01-18 07:49 ComboFix2.txt 2012-01-17 12:24 . Pre-Run: 1.107.711.361.024 bytes beschikbaar Post-Run: 1.110.539.309.056 bytes beschikbaar . - - End Of File - - 24AC99FBD49F3EE4B17CAB746B158A04 en nu emsisoftlog; ziet er ook heel proffesionele soft uit; Emsisoft Emergency Kit - Versie 1.0 Laatste Update: 1/18/2012 10:24:01 AM Scaninstellingen: Scantype: Diepe Scan Objecten: Geheugen, Sporen, Cookies, C:\, D:\ Scan archieven: Aan Heuristieken: Uit ADS Scan: Aan Scan gestart: 1/18/2012 10:25:08 AM c:\program files (x86)\GameSpy Arcade Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\AddIns Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\cstrike Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\cstrike\frontline Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\halflife Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\halflife\action Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\halflife\cstrike Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\halflife\firearms Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\halflife\frontline Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\halflife\gearbox Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\halflife\tfc Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2 Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\aq2 Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\battle Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\chaosdm Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\duel Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\freeze Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\gloom Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\gxmod Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\holywars Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\jail Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\kots Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\lfiredm Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\lithium2 Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\LMCTF Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\pball Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\q2comp Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\QPong Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\ra2 Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\requiem Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\sconfig Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\tourney Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\wf Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake2\wod Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake3 Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake3\alliance Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake3\beryllium Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake3\excessive Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake3\instagib Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake3\jailbreak Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake3\matchmod Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake3\osp Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake3\q3comp Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake3\q3f Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake3\q3ut2 Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake3\requiem Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake3\rocketarena3 Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\quake3\wfa Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\tribes Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\tribes\Arena Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\tribes\ch Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\tribes\CTF Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\tribes\CTFb Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\tribes\CTFplus Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\tribes\DD Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\tribes\DM Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\tribes\Duel Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\tribes\Fr Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\tribes\MT Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\tribes\Open Cal Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\tribes\RPG Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\tribes\TAC Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\ut Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\ut\Excessive Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\ut\RocketArena Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Custom\ut\Swat Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Images Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Images\portraits Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Profiles Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Profiles\(default) Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Services Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Services\_common Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Services\_demospy Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Services\_fplanet Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Services\_gnews Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Services\_gspyder Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Services\_news Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Services\_support Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Skins Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Sounds Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Sounds\(default) Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Sounds\classic Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\users\danny\appdata\roaming\microsoft\windows\start menu\programs\GameSpy Arcade Ontdekt: Trace.Directory.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\4dca9208.dat Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Aphex.exe Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\ArcRes.dll Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\dat.bmp Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\def_banner.gif Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\def_banner.html Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\def_bannerbg.jpg Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\def_loading.gif Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\def_logo.jpg Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\def_news.html Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\fpupdate.exe Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\GameSpy Arcade - Debug.lnk Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\GameSpy Arcade Help.url Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\GameSpy Arcade Website.url Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\GameSpy Arcade.lnk Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\GameSpy.com Gaming's Homepage.url Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\GSAPak.exe Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\gslan.dll Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\gsws.dll Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\INSTALL.LOG Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\pw32.dll Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\readme.html Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Register GameSpy Arcade.url Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\RptCrash.exe Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Services\_news\rsrc.dir Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Services\_news\service_tab.psd Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Services\_news\service_tab+.tga Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Services\_support\rsrc.dir Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Services\_support\service_tab.psd Ontdekt: Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\ws_default.html Ontdekt: Trace.File.GameSpy Arcade!A2 Value: HKEY_CURRENT_USER\Software\GameSpy\GameSpy Arcade --> InstDir Ontdekt: Trace.Registry.GameSpy Arcade!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\GameSpy Arcade --> DisplayName Ontdekt: Trace.Registry.GameSpy Arcade!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\GameSpy Arcade --> UninstallString Ontdekt: Trace.Registry.GameSpy Arcade!A2 C:\Users\Danny\AppData\Roaming\Mozilla\Firefox\Profiles\4bep9edt.default\cookies.sqlite:376 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Danny\AppData\Roaming\Mozilla\Firefox\Profiles\4bep9edt.default\cookies.sqlite:377 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Danny\Documents\7.UPDATE\nds movie\Nieuwe map (2)\BatchDPG%201.52[1]\BatchDPG 1.52\BatchDPG 1.52\BatchDPG.exe Ontdekt: Trojan-Dropper.Agent!IK C:\Users\Danny\Documents\My Trainers\CH Trainer Manager.exe Ontdekt: Trojan.Win32.Buzus.ezrz!A2 Gescand Bestanden: 835374 Sporen: 403649 Cookies: 850 Processen: 85 Gevonden Bestanden: 2 Sporen: 117 Cookies: 2 Processen: 0 Registersleutels: 0 Scan Geëindigd: 1/18/2012 5:12:40 PM Scantijd: 6:47:32 C:\Users\Danny\Documents\My Trainers\CH Trainer Manager.exe Verwijderd Trojan.Win32.Buzus.ezrz!A2 C:\Users\Danny\Documents\7.UPDATE\nds movie\Nieuwe map (2)\BatchDPG%201.52[1]\BatchDPG 1.52\BatchDPG 1.52\BatchDPG.exe Verwijderd Trojan-Dropper.Agent!IK C:\Users\Danny\AppData\Roaming\Mozilla\Firefox\Profiles\4bep9edt.default\cookies.sqlite:376 Verwijderd Trace.TrackingCookie.nl.sitestat.com!A2 C:\Users\Danny\AppData\Roaming\Mozilla\Firefox\Profiles\4bep9edt.default\cookies.sqlite:377 Verwijderd Trace.TrackingCookie.nl.sitestat.com!A2 Value: HKEY_CURRENT_USER\Software\GameSpy\GameSpy Arcade --> InstDir Verwijderd Trace.Registry.GameSpy Arcade!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\GameSpy Arcade --> DisplayName Verwijderd Trace.Registry.GameSpy Arcade!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\GameSpy Arcade --> UninstallString Verwijderd Trace.Registry.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\4dca9208.dat Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Aphex.exe Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\ArcRes.dll Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\dat.bmp Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\def_banner.gif Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\def_banner.html Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\def_bannerbg.jpg Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\def_loading.gif Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\def_logo.jpg Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\def_news.html Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\fpupdate.exe Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\GameSpy Arcade - Debug.lnk Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\GameSpy Arcade Help.url Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\GameSpy Arcade Website.url Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\GameSpy Arcade.lnk Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\GameSpy.com Gaming's Homepage.url Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\GSAPak.exe Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\gslan.dll Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\gsws.dll Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\INSTALL.LOG Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\pw32.dll Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\readme.html Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Register GameSpy Arcade.url Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\RptCrash.exe Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Services\_news\rsrc.dir Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Services\_news\service_tab.psd Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Services\_news\service_tab+.tga Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Services\_support\rsrc.dir Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\Services\_support\service_tab.psd Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade\ws_default.html Verwijderd Trace.File.GameSpy Arcade!A2 c:\program files (x86)\GameSpy Arcade Verwijderd Trace.Directory.GameSpy Arcade!A2 c:\users\danny\appdata\roaming\microsoft\windows\start menu\programs\GameSpy Arcade Verwijderd Trace.Directory.GameSpy Arcade!A2 Verwijderd Bestanden: 2 Sporen: 117 Cookies: 2 En nu nog testen!

ik heb de bug nog. over de volgende tip; hoe sla je op als CFScript ? ik kan alleen kiezen uit .txt of alle bestanden.

omg 13 uur scantijd, zal nu eens testen, logje; ComboFix 12-01-16.02 - Danny 16/01/2012 19:17:01.4.4 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.6124.4025 [GMT 1:00] Gestart vanuit: c:\users\Danny\Desktop\ComboFix.exe AV: Norton 360 *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF} FW: Norton 360 *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4} SP: Norton 360 *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . C:\install.exe c:\windows\system32\java.exe c:\windows\SysWow64\~GLH0034.TMP c:\windows\SysWow64\drivers\dfg.sys . . (((((((((((((((((((( Bestanden Gemaakt van 2011-12-17 to 2012-01-17 )))))))))))))))))))))))))))))) . . 2012-01-17 11:54 . 2012-01-17 11:54 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp 2012-01-17 11:54 . 2012-01-17 11:54 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-01-16 18:11 . 2012-01-16 18:11 0 ---ha-w- c:\users\Danny\BIT4920.tmp 2012-01-16 09:17 . 2012-01-16 09:17 -------- d-----w- c:\users\Danny\AppData\Roaming\Malwarebytes 2012-01-16 09:17 . 2012-01-16 09:17 -------- d-----w- c:\programdata\Malwarebytes 2012-01-16 09:17 . 2012-01-16 09:51 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware 2012-01-16 09:17 . 2011-12-10 14:24 23152 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-01-16 08:45 . 2012-01-16 08:45 388096 ----a-r- c:\users\Danny\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2012-01-16 08:45 . 2012-01-16 08:45 -------- d-----w- c:\program files (x86)\Trend Micro 2012-01-14 09:57 . 2012-01-14 09:57 -------- d-----w- c:\program files (x86)\GameSpy Arcade 2012-01-14 09:57 . 2012-01-14 09:57 -------- d-----w- c:\program files (x86)\MSXML 4.0 2012-01-14 09:56 . 2012-01-14 09:56 -------- d-----w- c:\program files (x86)\Microsoft Games 2012-01-12 21:19 . 2012-01-12 21:19 -------- d-----w- c:\program files (x86)\AL-Software 2012-01-11 13:09 . 2011-10-26 05:25 1572864 ----a-w- c:\windows\system32\quartz.dll 2012-01-11 13:09 . 2011-10-26 05:25 366592 ----a-w- c:\windows\system32\qdvd.dll 2012-01-11 13:09 . 2011-10-26 04:32 514560 ----a-w- c:\windows\SysWow64\qdvd.dll 2012-01-11 13:09 . 2011-10-26 04:32 1328128 ----a-w- c:\windows\SysWow64\quartz.dll 2012-01-11 13:09 . 2011-11-17 06:41 1731920 ----a-w- c:\windows\system32\ntdll.dll 2012-01-11 13:09 . 2011-11-17 05:38 1292080 ----a-w- c:\windows\SysWow64\ntdll.dll 2012-01-11 13:09 . 2011-11-19 14:58 77312 ----a-w- c:\windows\system32\packager.dll 2012-01-11 13:09 . 2011-11-19 14:01 67072 ----a-w- c:\windows\SysWow64\packager.dll 2012-01-10 19:55 . 2012-01-10 19:55 -------- d-----w- c:\program files\Key Metric Software 2012-01-10 19:55 . 2012-01-10 19:55 -------- d-----w- c:\users\Danny\AppData\Roaming\Key Metric Software 2012-01-10 14:10 . 2012-01-10 14:10 -------- d-----w- c:\program files (x86)\Nicolas Games 2012-01-10 09:43 . 2012-01-10 10:31 -------- d-----w- c:\users\Danny\Calibrebibliotheek 2012-01-10 09:43 . 2012-01-10 09:52 -------- d-----w- c:\users\Danny\AppData\Roaming\calibre 2012-01-10 09:42 . 2012-01-10 09:46 -------- d-----w- c:\program files (x86)\Calibre2 2012-01-09 11:50 . 2012-01-12 13:34 -------- d-----w- c:\users\Danny\AppData\Local\Newsbin 2012-01-09 11:50 . 2012-01-09 11:50 -------- d-----w- c:\program files\Newsbin 2012-01-09 09:17 . 2012-01-09 09:17 -------- d-----w- c:\program files\Mozilla Plugins 2012-01-09 09:16 . 2012-01-09 09:17 -------- d-----w- c:\program files\iTunes 2012-01-09 09:16 . 2012-01-09 09:16 -------- d-----w- c:\program files\iPod 2012-01-09 09:16 . 2012-01-09 09:16 -------- d-----w- c:\program files\CD Configuration 2012-01-08 17:53 . 2012-01-08 17:53 -------- d-----w- c:\users\Danny\AppData\Local\Apps 2012-01-08 17:50 . 2012-01-08 17:50 -------- d-----w- c:\users\Danny\Nieuwe map 2012-01-08 15:24 . 2012-01-15 19:29 -------- d-----w- c:\program files (x86)\1-Click PC Fix v4 2012-01-08 15:04 . 2012-01-08 15:04 -------- d-----w- c:\users\Danny\AppData\Local\Locktime 2012-01-08 14:08 . 2012-01-08 14:08 -------- d-----w- c:\programdata\Locktime 2012-01-08 14:08 . 2012-01-08 14:08 -------- d-----w- c:\program files\NetLimiter 3 2012-01-08 08:34 . 2011-10-15 06:31 723456 ----a-w- c:\windows\system32\EncDec.dll 2012-01-08 08:34 . 2011-10-15 05:38 534528 ----a-w- c:\windows\SysWow64\EncDec.dll 2012-01-08 08:34 . 2011-10-26 05:21 43520 ----a-w- c:\windows\system32\csrsrv.dll 2012-01-08 08:34 . 2011-11-24 04:52 3145216 ----a-w- c:\windows\system32\win32k.sys 2012-01-08 08:34 . 2011-11-05 05:32 2048 ----a-w- c:\windows\system32\tzres.dll 2012-01-08 08:34 . 2011-11-05 04:26 2048 ----a-w- c:\windows\SysWow64\tzres.dll . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-12-08 00:36 . 2011-12-08 00:36 293736 ----a-w- c:\program files\iTunesOutlookAddIn.dll 2011-12-08 00:36 . 2011-12-08 00:36 421736 ----a-w- c:\program files\iTunesHelper.exe 2011-12-08 00:36 . 2011-12-08 00:36 403304 ----a-w- c:\program files\iTunesAdmin.dll 2011-12-08 00:36 . 2011-12-08 00:36 156520 ----a-w- c:\program files\iTunesHelper.dll 2011-12-08 00:36 . 2011-12-08 00:36 9777000 ----a-w- c:\program files\iTunes.exe 2011-12-08 00:36 . 2011-12-08 00:36 20864360 ----a-w- c:\program files\iTunes.dll 2011-12-08 00:36 . 2011-12-08 00:36 797208 ----a-w- c:\program files\gnsdk_sdkmanager.dll 2011-12-08 00:36 . 2011-12-08 00:36 3029528 ----a-w- c:\program files\gnsdk_dsp.dll 2011-12-08 00:36 . 2011-12-08 00:36 281112 ----a-w- c:\program files\gnsdk_submit.dll 2011-12-08 00:36 . 2011-12-08 00:36 240152 ----a-w- c:\program files\gnsdk_musicid.dll 2011-12-04 09:24 . 2011-09-24 11:31 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2011-12-02 16:39 . 2011-12-02 16:39 189248 ----a-w- c:\windows\SysWow64\PnkBstrB.exe 2011-12-02 16:39 . 2011-12-02 16:39 75136 ----a-w- c:\windows\SysWow64\PnkBstrA.exe 2011-11-14 19:16 . 2011-11-14 19:16 112488 ----a-w- c:\program files\ITDetector.ocx 2011-10-22 12:31 . 2011-10-22 12:31 1409 ----a-w- c:\windows\SysWow64\tmpBDC92.FOT 2010-04-07 04:25 . 2010-04-07 04:25 68112 ----a-w- c:\program files\Install.exe . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NetLimiter"="c:\program files\NetLimiter 3\NLClientApp.exe" [2011-03-21 2910208] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "HP Remote Solution"="c:\program files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe" [2009-08-25 656896] "LaunchHPOSIAPP"="c:\program files (x86)\Hewlett-Packard\HP Keyboard\LaunchApp.exe" [2009-04-04 385024] "Norton Ghost 15.0"="c:\program files (x86)\Norton Ghost\Agent\VProTray.exe" [2009-10-01 2596712] "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-11-01 59240] "iTunesHelper"="c:\program files\iTunesHelper.exe" [2011-12-08 421736] "Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-12-24 460872] . c:\users\Danny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ HP SimpleSave Monitor.lnk - c:\users\Danny\AppData\Roaming\HP SimpleSave Application\StartHelper.exe [2011-11-2 477080] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) "HideFastUserSwitching"= 0 (0x0) "EnableLinkedConnections"= 1 (0x1) . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "EnableShellExecuteHooks"= 1 (0x1) . [hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks] . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "mixer3"=wdmaud.drv . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ PDBoot.exe\0autocheck autochk * . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer] @="Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SolutoService] @="Service" . R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-06-21 85560] R2 SolutoService;Soluto PCGenome Core Service;c:\program files\Soluto\SolutoService.exe [2011-08-31 396320] R3 dfg;dfg;c:\windows\system32\DRIVERS\dfg.sys [x] R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2011-08-15 130976] R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072] R3 GenericMount Helper Service;GenericMount Helper Service;c:\program files (x86)\Norton Ghost\Shared\Drivers\GenericMountHelper.exe [2009-09-21 1571336] R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536] R3 NLNdisPT;NetLimiter Ndis Protocol Service;c:\windows\system32\DRIVERS\nlndis.sys [x] R3 NOBU;Norton Online Backup;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x] R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440] R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] R3 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe [2011-02-01 1127448] R3 RTCore64;RTCore64;c:\program files (x86)\MSI Afterburner\RTCore64.sys [2010-02-01 14648] R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x] R3 s1018bus;Sony Ericsson Device 1018 driver (WDM);c:\windows\system32\DRIVERS\s1018bus.sys [x] R3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s1018mdfl.sys [x] R3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s1018mdm.sys [x] R3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s1018mgmt.sys [x] R3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS);c:\windows\system32\DRIVERS\s1018nd5.sys [x] R3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s1018obex.sys [x] R3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM);c:\windows\system32\DRIVERS\s1018unic.sys [x] R3 Symantec SymSnap VSS Provider;Symantec SymSnap VSS Provider;c:\windows\system32\dllhost.exe [2009-07-14 9728] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x] R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184] S0 Soluto;Soluto;c:\windows\system32\DRIVERS\Soluto.sys [x] S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\N360x64\0501000.01D\SYMDS64.SYS [x] S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\N360x64\0501000.01D\SYMEFA64.SYS [x] S1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20111223.001\BHDrvx64.sys [2011-12-01 1157240] S1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20120113.002\IDSvia64.sys [2012-01-06 488568] S1 nltdi;nltdi;c:\program files\NetLimiter 3\nltdi.sys [2011-03-21 88200] S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\N360x64\0501000.01D\Ironx64.SYS [x] S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\System32\Drivers\N360x64\0501000.01D\SYMNETS.SYS [x] S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x] S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe [2009-03-02 89600] S2 BackupService;BackupService;c:\users\Danny\AppData\Roaming\HP SimpleSave Application\uUACTokenSvc.exe [2010-07-01 83512] S2 hcwD3bda_dvbt;Hauppauge MSi2500 DVBT Service;c:\windows\system32\hauppauge\hcwD3dvb\DVBT\DVBService.exe [x] S2 HP Power Assistant Service;HP Power Assistant Service;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2010-11-17 107576] S2 HPAuto;HP Auto;c:\program files\Hewlett-Packard\HP Auto\HPAuto.exe [2011-02-17 682040] S2 HPClientSvc;HP Client Services;c:\program files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-10-11 346168] S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-28 94264] S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-12-24 652872] S2 N360;Norton 360;c:\program files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe [2011-04-17 130008] S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-15 2253120] S2 PDFSFilter;PDFSFilter;c:\windows\system32\DRIVERS\PDFsFilter.sys [x] S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-10-14 381248] S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-02-01 2656280] S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-01-08 138360] S3 GenericMount;Generic Mount Driver;c:\windows\system32\DRIVERS\GenericMount.sys [x] S3 hcwD3bda;Driver for WinTV DVB-T (Model 133xxx);c:\windows\system32\DRIVERS\hcwD3bda64.sys [x] S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x] S3 MEIx64;Intel® Management Engine Interface;c:\windows\system32\drivers\HECIx64.sys [x] S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys [x] S3 NLNdisMP;NLNdisMP;c:\windows\system32\DRIVERS\nlndis.sys [x] S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x] S3 SymSnapService;SymSnapService;c:\program files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe [2009-09-21 2963960] S3 tihub3;TI USB3 Hub Service;c:\windows\system32\drivers\tihub3.sys [x] S3 tixhci;TI XHCI Service;c:\windows\system32\drivers\tixhci.sys [x] S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x] . . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{A8D647C8-65AC-409F-B7B2-3C0FEE1A32F2}] 2010-02-16 17:02 114688 ----a-w- c:\program files (x86)\PixiePack Codec Pack\InstallerHelper.exe . Inhoud van de 'Gedeelde Taken' map . 2012-01-15 c:\windows\Tasks\1-Click PC Fix Scheduled Scan.job - c:\program files (x86)\1-Click PC Fix v4\1-Click PC Fix.exe [2012-01-08 22:52] . 2012-01-15 c:\windows\Tasks\HPCeeScheduleForDANNY-HP$.job - c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 05:15] . 2012-01-17 c:\windows\Tasks\HPCeeScheduleForDanny.job - c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 05:15] . . --------- x86-64 ----------- . . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "BeatsOSDApp"="c:\program files\IDT\WDM\beats64.exe" [2010-10-21 37888] "hpsysdrv"="c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe" [2008-11-20 62768] "SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2011-06-24 1128448] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "LoadAppInit_DLLs"=0x0 . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/ uLocal Page = c:\windows\system32\blank.htm mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local IE: &Verzenden naar OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105 IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000 DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/3.0.1.0/GarminAxControl.CAB FF - ProfilePath - c:\users\Danny\AppData\Roaming\Mozilla\Firefox\Profiles\4bep9edt.default\ FF - prefs.js: browser.startup.homepage - hxxp://my.benl.ebay.be/ws/eBayISAPI.dll?MyEbay&gbh=1|http://h33t.com/index.php|http://h33t.com/torrents.php?search=nl&category=27&Go.x=40&Go.y=3|http://www.gamezonemail.com/eonapps/ft/wm/page/wm#%7B%22page%22:%22view%22,%22folder%22:%7B%22boxHandle%22:%7B%22owner%22:28877093,%22eonType%22:%22PersonalBoxHandle%22%7D,%22folderPath%22:%7B%22path%22:%22/INBOX%22,%22eonType%22:%22Path%22%7D,%22eonType%22:%22FolderHandle%22%7D,%22EV1%22:%22tLTe%22%7D|http://www.hetmultimediacafe.be/index.php|http://forum-mp3server.biz/index.php?sid=6dad632492143b7b6b271f8ec8d7cd55 FF - prefs.js: network.proxy.type - 0 . - - - - ORPHANS VERWIJDERD - - - - . Wow6432Node-HKCU-Run-RESTART_STICKY_NOTES - c:\windows\System32\StikyNot.exe AddRemove-EasyBits Magic Desktop - c:\windows\system32\ezMDUninstall.exe AddRemove-PocketChapel - c:\windows\system32\SpoonUninstall.exe . . . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\N360] "ImagePath"="\"c:\program files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe\" /s \"N360\" /m \"c:\program files (x86)\Norton 360\Engine\5.1.0.29\diMaster.dll\" /prefetch:1" -- . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\pdfcDispatcher] "ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.10" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Andere Aktieve Processen ------------------------ . c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe c:\windows\SysWOW64\ezSharedSvcHost.exe c:\program files (x86)\Hewlett-Packard\HP Keyboard\ModLEDKey.exe c:\program files (x86)\Norton Ghost\Agent\VProSvc.exe c:\windows\SysWOW64\PnkBstrA.exe c:\program files (x86)\Hewlett-Packard\HP Keyboard\CNYHKEY.exe c:\program files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe . ************************************************************************** . Voltooingstijd: 2012-01-17 13:24:32 - machine werd herstart ComboFix-quarantined-files.txt 2012-01-17 12:24 . Pre-Run: 1.098.422.497.280 bytes beschikbaar Post-Run: 1.104.300.089.344 bytes beschikbaar . - - End Of File - - BFD4B61C7AEF5139A11C035BD4B87816

Malwarebytes Anti-Malware (-evaluatieversie-) 1.60.0.1800 www.malwarebytes.org Databaseversie: v2012.01.16.01 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Danny :: DANNY-HP [administrator] Realtime bescherming: Ingeschakeld 16/01/2012 10:53:26 mbam-log-2012-01-16 (10-53-26).txt Scantype: Snelle scan Ingeschakelde scanopties: Geheugen | Opstarten | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM Uitgeschakelde scanopties: P2P Objecten gescand: 198952 Verstreken tijd: 4 minuut/minuten, 20 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerwaarden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerdata gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Mappen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Bestanden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) (einde) en een hijackthislog; Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 10:44:19, on 16/01/2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe C:\Program Files (x86)\Hewlett-Packard\HP Keyboard\ModLEDKey.exe C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe C:\Program Files\iTunesHelper.exe C:\Program Files (x86)\Hewlett-Packard\HP Keyboard\CNYHKEY.exe C:\Program Files (x86)\uTorrent\uTorrent.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe C:\Program Files (x86)\PrinterShare\paConsole.exe C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe C:\Program Files (x86)\CursorXP\CursorXP.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HP | MSN R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HP | MSN R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = HP | MSN R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\coIEPlg.dll O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\IPS\IPSBHO.DLL O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\coIEPlg.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O4 - HKLM\..\Run: [HP Remote Solution] %ProgramFiles%\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe O4 - HKLM\..\Run: [LaunchHPOSIAPP] C:\Program Files (x86)\Hewlett-Packard\HP Keyboard\LaunchApp.exe O4 - HKLM\..\Run: [Norton Ghost 15.0] "C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunesHelper.exe" O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKCU\..\Run: [NetLimiter] C:\Program Files\NetLimiter 3\NLClientApp.exe /tray O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-1556954611-3077419938-1783922913-1003\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser') O4 - HKUS\S-1-5-21-1556954611-3077419938-1783922913-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser') O4 - Startup: HP SimpleSave Monitor.lnk = Danny\AppData\Roaming\HP SimpleSave Application\StartHelper.exe O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/3.0.1.0/GarminAxControl.CAB O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: BackupService - ArcSoft, Inc. - C:\Users\Danny\AppData\Roaming\HP SimpleSave Application\uUACTokenSvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe O23 - Service: GenericMount Helper Service - Symantec - C:\Program Files (x86)\Norton Ghost\Shared\Drivers\GenericMountHelper.exe O23 - Service: Hauppauge MSi2500 DVBT Service (hcwD3bda_dvbt) - Unknown owner - C:\Windows\system32\hauppauge\hcwD3dvb\DVBT\DVBService.exe (file missing) O23 - Service: HP Power Assistant Service - Unknown owner - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe O23 - Service: HP Auto (HPAuto) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~2\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NetLimiter 3 Service (nlsvc) - Locktime Software - C:\Program Files\NetLimiter 3\nlsvc.exe O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe O23 - Service: Norton Ghost - Symantec Corporation - C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe O23 - Service: PDAgent - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDAgent.exe O23 - Service: PDEngine - Raxco Software, Inc. - C:\Program Files\Common Files\Raxco\Shared\PDEngine.exe O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: Soluto PCGenome Core Service (SolutoService) - Soluto - C:\Program Files\Soluto\SolutoService.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: SymSnapService - Symantec - C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 14434 bytes Jammer genoeg heeft hij het nog

Hier is het logje; Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 9:46:30, on 16/01/2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe C:\Program Files (x86)\Hewlett-Packard\HP Keyboard\ModLEDKey.exe C:\Program Files (x86)\Hewlett-Packard\HP Odometer\hpsysdrv.exe C:\Program Files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe C:\Program Files\iTunesHelper.exe C:\Users\Danny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktopComic.exe C:\Users\Danny\AppData\Roaming\HP SimpleSave Application\StartHelper.exe C:\Program Files (x86)\Hewlett-Packard\HP Keyboard\CNYHKEY.exe C:\Program Files (x86)\uTorrent\uTorrent.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe c:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe C:\Program Files (x86)\PrinterShare\paConsole.exe C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe C:\Program Files (x86)\CursorXP\CursorXP.exe C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HP | MSN R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HP | MSN R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = HP | MSN R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = Facemoods Search R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\coIEPlg.dll O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\IPS\IPSBHO.DLL O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\coIEPlg.dll O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll O4 - HKLM\..\Run: [HP Remote Solution] %ProgramFiles%\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe O4 - HKLM\..\Run: [LaunchHPOSIAPP] C:\Program Files (x86)\Hewlett-Packard\HP Keyboard\LaunchApp.exe O4 - HKLM\..\Run: [Norton Ghost 15.0] "C:\Program Files (x86)\Norton Ghost\Agent\VProTray.exe" O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunesHelper.exe" O4 - HKCU\..\Run: [NetLimiter] C:\Program Files\NetLimiter 3\NLClientApp.exe /tray O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-1556954611-3077419938-1783922913-1003\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser') O4 - HKUS\S-1-5-21-1556954611-3077419938-1783922913-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser') O4 - Startup: desktopComic.exe O4 - Startup: HP SimpleSave Monitor.lnk = Danny\AppData\Roaming\HP SimpleSave Application\StartHelper.exe O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/3.0.1.0/GarminAxControl.CAB O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: BackupService - ArcSoft, Inc. - C:\Users\Danny\AppData\Roaming\HP SimpleSave Application\uUACTokenSvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe O23 - Service: GenericMount Helper Service - Symantec - C:\Program Files (x86)\Norton Ghost\Shared\Drivers\GenericMountHelper.exe O23 - Service: Hauppauge MSi2500 DVBT Service (hcwD3bda_dvbt) - Unknown owner - C:\Windows\system32\hauppauge\hcwD3dvb\DVBT\DVBService.exe (file missing) O23 - Service: HP Power Assistant Service - Unknown owner - C:\Program Files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe O23 - Service: HP Auto (HPAuto) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~2\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NetLimiter 3 Service (nlsvc) - Locktime Software - C:\Program Files\NetLimiter 3\nlsvc.exe O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe O23 - Service: Norton Ghost - Symantec Corporation - C:\Program Files (x86)\Norton Ghost\Agent\VProSvc.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing) O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe O23 - Service: PDAgent - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk\PDAgent.exe O23 - Service: PDEngine - Raxco Software, Inc. - C:\Program Files\Common Files\Raxco\Shared\PDEngine.exe O23 - Service: PDF Document Manager (pdfcDispatcher) - PDF Complete Inc - C:\Program Files (x86)\PDF Complete\pdfsvc.exe O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: Soluto PCGenome Core Service (SolutoService) - Soluto - C:\Program Files\Soluto\SolutoService.exe O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: SymSnapService - Symantec - C:\Program Files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 14588 bytes

hoi, ik heb al een paar maanden een nieuwe pc, hp i5 6 gb ram win 7 home premium 64 bit, en die draaide prima, maar de laatste weken blijft hij regelmatig 1 seconde vast zitten. Het beeld beweegt dan niet meer en ik hoor een zeer snel repetitief geluid, en daarna gaat hij gewoon verder. het gebeurt onregelmatig, soms uren niet en dan elke 10 minuten. Het gebeurt zowel bij surfen als gamen.Iemand een idee?

das dan goed want bijna iedereen heeft minder dan 27 inch , de mijne is 22 inch thx

ben nog altijd aan het twijfelen omdat analoog mooie diepe kleuren geeft , vooral zwart ,en hdmi niet.Ik heb al wat instellingen geprobeerd, maar nog geen verbetering. Geeft een mini hdmi minder goed beeld dan een hdmi?

hdmi kabel is nieuw, er staat niks op. resolutie is de aanbevolen 1920x1080 laatste drivers van nvidia vooral bij zwart zie je verschil. analoog is het diepzwart, en digitaal is het grijszwart.