brus
-
Items
34 -
Registratiedatum
-
Laatst bezocht
Inhoudstype
Profielen
Forums
Store
Berichten die geplaatst zijn door brus
-
-
Heb nieuwe laptop gekocht ,software norton en office geinstaleerd alles ging goed .
ineens een blauw scherm met een melding wachdog..... en start weer opnieuw op en dit 4x per dag ongeveer .
hebben jullie hier een oplossing voor.
bvd brus
-
Hallo
Heb al lange tijd incredimail maar krijg de laatste tijd problemen met niet meer openen(20x klikken),Ik wil contacten en E-mail exporteren maar kriig dan deze melding en moet ik restarten
HException: ACCESS_VIOLATION (C0000005) - on reading from 8A3E4452
Faulting Offset: 000996ADModule: ImUtilsU.dll000996AD ImUtilsU.dllheb je hier een oplossing voor?
bvd
Mvg brus
-
hier is de volgende
-
hoop dat het zo goed is zoniet laat maar even weten
bvd brus
-
-
hieLogfile of random's system information tool 1.10 (written by random/random)
Run by Wim at 2015-01-28 19:07:23Microsoft® Windows Vista™ Home Premium Service Pack 2System drive C: has 106 GB (15%) free of 706 GBTotal RAM: 3070 MB (44% free)Logfile of Trend Micro HijackThis v2.0.4Scan saved at 19:07:25, on 28-1-2015Platform: Windows Vista SP2 (WinNT 6.00.1906)MSIE: Internet Explorer v9.00 (9.00.8112.16599)Boot mode: NormalRunning processes:C:\Windows\system32\Dwm.exeC:\Windows\Explorer.EXEC:\Windows\system32\taskeng.exeC:\Program Files\Windows Defender\MSASCui.exeC:\WINDOWS\RtHDVCpl.exeC:\WINDOWS\WindowsMobile\wmdc.exeC:\Program Files\Samsung\Kies\KiesTrayAgent.exeC:\Program Files\NVIDIA Corporation\Display\nvtray.exeC:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exeC:\Program Files\AVAST Software\Avast\avastui.exeC:\Program Files\Windows Sidebar\sidebar.exeC:\Program Files\IncrediMail\Bin\IncMail.exeC:\WINDOWS\ehome\ehtray.exeC:\Program Files\DAEMON Tools Lite\DTLite.exeC:\Program Files\Samsung\Kies\Kies.exeC:\Program Files\uTorrent\uTorrent.exeC:\Windows\ehome\ehmsas.exeC:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exeC:\Program Files\Windows Sidebar\sidebar.exeC:\Program Files\WinZip\WZQKPICK.EXEC:\Program Files\Windows Media Player\wmpnscfg.exeC:\Program Files\IncrediMail\bin\IMApp.exeC:\Windows\system32\wbem\unsecapp.exeC:\Windows\System32\mobsync.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Program Files\Google\Chrome\Application\chrome.exeC:\Users\Wim\Downloads\RSIT.exeC:\Windows\system32\SearchFilterHost.exeC:\Users\Wim\Downloads\RSIT (1).exeC:\Program Files\trend micro\Wim.exeR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = PreserveR1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.nl/0SENLNL/SAOS01?FORM=TOOLBRR0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.comR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=56626&homepage=http://go.microsoft.com/fwlink/?LinkId=69157R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.nl/0SENLNL/SAOS01?FORM=TOOLBRO1 - Hosts: ::1 localhostO2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dllO2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dllO3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dllO4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hideO4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exeO4 - HKLM\..\Run: [LaunchList] C:\Program Files\Pinnacle\Studio 10\LaunchList.exeO4 - HKLM\..\Run: [skytel] Skytel.exeO4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exeO4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exeO4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exeO4 - HKLM\..\Run: [CanonQuickMenu] C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE /logonO4 - HKLM\..\Run: [iJNetworkScannerSelectorEX] C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe /FORCEO4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /noguiO4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRunO4 - HKCU\..\Run: [incrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /cO4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exeO4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorunO4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe" -automountO4 - HKCU\..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe /preloadO4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"O4 - HKCU\..\Run: [] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exeO4 - HKCU\..\Run: [KiesPDLR.exe] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe RunO4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exeO4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exeO4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXEO9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dllO9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dllO9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dllO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLLO11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphicsO15 - Trusted IP range: http://192.168.1.131O15 - ESC Trusted IP range: http://192.168.1.131O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cabO22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dllO23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exeO23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exeO23 - Service: AvastVBox COM Service (AvastVBoxSvc) - Avast Software - C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exeO23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exeO23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.ExeO23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exeO23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exeO23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXEO23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exeO23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exeO23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exeO23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exeO23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exeO23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exeO23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exeO23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exeO23 - Service: Update service - Company - C:\Program Files\Popcorn Time\Updater.exe--End of file - 8560 bytes======Scheduled tasks folder======C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exeC:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /cC:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler======Registry dump======[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3785D0AD-BFFF-47F6-BF5B-A587C162FED9}]Canon Easy-WebPrint EX BHO - C:\Program Files\Canon\Easy-WebPrint EX\ewpexbho.dll [2010-11-08 202144][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-01-09 586968][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]{759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - Canon Easy-WebPrint EX - C:\Program Files\Canon\Easy-WebPrint EX\ewpexhlp.dll [2010-11-08 1619352][HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]"Windows Defender"=C:\Program Files\Windows Defender\MSASCui.exe [2008-01-21 1008184]"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-04-17 6111232]"LaunchList"=C:\Program Files\Pinnacle\Studio 10\LaunchList.exe [2007-01-04 50712]"Skytel"=C:\Windows\Skytel.exe [2007-11-20 1826816]"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2008-05-28 570664]"Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 648072]"KiesTrayAgent"=C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [2014-02-14 311616]"CanonQuickMenu"=C:\Program Files\Canon\Quick Menu\CNQMMAIN.EXE [2012-04-03 1273448]"IJNetworkScannerSelectorEX"=C:\Program Files\Canon\IJ Network Scanner Selector EX\CNMNSST.exe [2012-03-26 449168]"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2015-01-09 5227112][HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-04-11 1233920]"IncrediMail"=C:\Program Files\IncrediMail\bin\IncMail.exe [2012-01-22 353736]"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-21 125952]"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]"AlcoholAutomount"=C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe [2012-01-05 75624]"KiesPreload"=C:\Program Files\Samsung\Kies\Kies.exe [2014-02-14 1564992]"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2014-02-22 289072]""=C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2014-02-14 845120]"KiesPDLR.exe"=C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [2014-02-14 845120]C:\ProgramData\Microsoft\Windows\Start Menu\Programs\StartupAdobe Reader Synchronizer.lnk - C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exeWinZip Quick Pick.lnk - C:\Program Files\WinZip\WZQKPICK.EXEC:\Users\Wim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\StartupAdobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]"AppInit_DLLs"=".DLL"[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfPf][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfRd][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfPf][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfRd][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfSvc][HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WudfUsbccidDriver][HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]"dontdisplaylastusername"=0"legalnoticecaption"="legalnoticetext"="shutdownwithoutlogon"=1"undockwithoutlogon"=1"EnableUIADesktopToggle"=0"SoftwareSASGeneration"=1[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]"NoDriveTypeAutoRun"=145[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]"BindDirectlyToPropertySetStorage"=0[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list][HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list][HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]"vidc.mrle"=msrle32.dll"vidc.msvc"=msvidc32.dll"msacm.imaadpcm"=imaadp32.acm"msacm.msg711"=msg711.acm"msacm.msgsm610"=msgsm32.acm"msacm.msadpcm"=msadp32.acm"midimapper"=midimap.dll"wavemapper"=msacm32.drv"VIDC.UYVY"=msyuv.dll"VIDC.YUY2"=msyuv.dll"VIDC.YVYU"=msyuv.dll"VIDC.IYUV"=iyuv_32.dll"VIDC.YVU9"=tsbyuv.dll"msacm.l3acm"=C:\Windows\System32\l3codeca.acm"vidc.cvid"=iccvid.dll"VIDC.MJPG"=Pvmjpg30.dll"MSVideo8"=VfWWDM32.dll"wave"=wdmaud.drv"midi"=wdmaud.drv"mixer"=wdmaud.drv"aux"=wdmaud.drv======File associations======.js - edit - C:\Windows\System32\Notepad.exe %1.js - open - C:\Windows\System32\WScript.exe "%1" %*======List of files/folders created in the last 1 month======2015-01-28 19:05:18 ----D---- C:\rsit2015-01-28 19:05:18 ----D---- C:\Program Files\trend micro2015-01-24 15:20:37 ----D---- C:\AdwCleaner2015-01-24 14:39:28 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys2015-01-24 14:39:10 ----D---- C:\Program Files\Malwarebytes Anti-Malware2015-01-24 14:39:10 ----A---- C:\Windows\system32\drivers\mwac.sys2015-01-24 14:39:10 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys2015-01-14 22:49:02 ----A---- C:\Windows\system32\drivers\mrxdav.sys2015-01-14 22:41:39 ----A---- C:\Windows\system32\nlasvc.dll2015-01-14 22:41:39 ----A---- C:\Windows\system32\nlaapi.dll2015-01-14 22:41:39 ----A---- C:\Windows\system32\ncsi.dll2015-01-14 22:40:51 ----A---- C:\Windows\system32\profsvc.dll2015-01-10 16:23:10 ----D---- C:\Users\Wim\AppData\Roaming\AVG2015-01-10 16:17:19 ----D---- C:\Program Files\AVG2015-01-10 16:09:20 ----HD---- C:\ProgramData\Common Files2015-01-10 16:09:17 ----D---- C:\ProgramData\AVG2015-01-10 16:04:21 ----D---- C:\ProgramData\Ashampoo2015-01-10 16:04:19 ----D---- C:\Program Files\Ashampoo2015-01-10 15:50:12 ----D---- C:\Program Files\Software pack202015-01-09 18:56:16 ----D---- C:\Windows\system32\vbox2015-01-09 18:54:12 ----D---- C:\Users\Wim\AppData\Roaming\AVAST Software2015-01-09 18:52:13 ----A---- C:\Windows\system32\drivers\aswTdi.sys2015-01-09 18:52:12 ----A---- C:\Windows\system32\drivers\aswVmm.sys2015-01-09 18:52:11 ----A---- C:\Windows\system32\drivers\aswsp.sys2015-01-09 18:52:11 ----A---- C:\Windows\system32\drivers\aswRvrt.sys2015-01-09 18:52:10 ----A---- C:\Windows\system32\drivers\aswRdr.sys2015-01-09 18:52:10 ----A---- C:\Windows\system32\drivers\aswmonflt.sys2015-01-09 18:52:10 ----A---- C:\Windows\system32\drivers\aswHwid.sys2015-01-09 18:52:08 ----A---- C:\Windows\system32\drivers\aswsnx.sys2015-01-09 18:52:06 ----A---- C:\Windows\system32\aswBoot.exe2015-01-09 18:52:03 ----A---- C:\Windows\avastSS.scr2015-01-09 18:50:30 ----D---- C:\Program Files\AVAST Software2015-01-09 18:49:18 ----D---- C:\ProgramData\AVAST Software2015-01-09 18:15:07 ----A---- C:\Windows\efix.ini2014-12-31 14:01:56 ----D---- C:\Program Files\d659f3af-74e8-452d-9aec-3c9738c5efca2014-12-31 14:01:54 ----A---- C:\Users\Wim\AppData\Roaming\HXKJFFZA.exe======List of files/folders modified in the last 1 month======2015-01-28 19:07:20 ----D---- C:\Windows\Temp2015-01-28 19:05:18 ----RD---- C:\Program Files2015-01-28 19:03:03 ----D---- C:\Users\Wim\AppData\Roaming\uTorrent2015-01-28 18:59:24 ----SHD---- C:\Windows\Installer2015-01-28 18:59:15 ----SHD---- C:\System Volume Information2015-01-28 18:58:35 ----D---- C:\Windows\System322015-01-28 07:32:21 ----D---- C:\ProgramData\NVIDIA2015-01-25 14:07:07 ----D---- C:\Windows\Debug2015-01-25 14:06:46 ----D---- C:\WINDOWS2015-01-24 23:57:02 ----D---- C:\Windows\Prefetch2015-01-24 21:27:16 ----A---- C:\Windows\system32\FlashPlayerApp.exe2015-01-24 16:56:40 ----D---- C:\Users\Wim\AppData\Roaming\vlc2015-01-24 15:28:10 ----HD---- C:\ProgramData2015-01-24 14:39:28 ----D---- C:\Windows\system32\drivers2015-01-24 14:39:15 ----D---- C:\Users\Wim\AppData\Roaming\Malwarebytes2015-01-24 14:39:10 ----D---- C:\ProgramData\Malwarebytes2015-01-24 14:39:10 ----D---- C:\Program Files\Malwarebytes' Anti-Malware2015-01-24 14:22:34 ----D---- C:\ProgramData\CanonIJPLM2015-01-24 14:00:30 ----D---- C:\Windows\inf2015-01-24 14:00:30 ----A---- C:\Windows\system32\PerfStringBackup.INI2015-01-17 13:01:14 ----D---- C:\Windows\system32\catroot22015-01-14 22:49:06 ----D---- C:\Windows\winsxs2015-01-14 22:49:05 ----D---- C:\Windows\system32\catroot2015-01-14 22:49:02 ----D---- C:\Windows\system32\MRT2015-01-14 22:42:27 ----A---- C:\Windows\system32\mrt.exe2015-01-11 18:40:13 ----D---- C:\Windows\system32\Tasks2015-01-11 07:30:53 ----D---- C:\Windows\system32\WDI2015-01-10 16:37:06 ----D---- C:\Users\Wim\AppData\Roaming\HpUpdate2015-01-10 16:37:04 ----D---- C:\Windows\system32\sysprep2015-01-10 16:36:53 ----D---- C:\Windows\Tasks2015-01-09 21:06:04 ----D---- C:\ProgramData\Sophos2015-01-09 18:42:27 ----D---- C:\Program Files\Common Files2015-01-06 04:36:02 ----N---- C:\Windows\system32\MpSigStub.exe2014-12-31 14:43:16 ----D---- C:\Users\Wim\AppData\Roaming\Belastingdienst2014-12-31 14:02:08 ----D---- C:\Program Files\AdorageI-GfxDatas2014-12-31 13:55:34 ----D---- C:\ProgramData\QuickTime======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2015-01-09 49944]R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2015-01-09 206248]R0 PxHelp20;PxHelp20; C:\Windows\system32\DRIVERS\PxHelp20.sys [2013-01-26 20016]R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-04-14 477240]R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2015-01-09 55240]R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2015-01-09 787800]R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2015-01-09 423784]R1 aswTdi;aswTdi; C:\Windows\system32\drivers\aswTdi.sys [2015-01-09 57928]R1 ElRawDisk;ElRawDisk; \??\C:\Windows\system32\drivers\rsdrv.sys [2009-02-12 22312]R1 PCLEPCI;PCLEPCI; \??\C:\Windows\system32\drivers\pclepci.sys [2005-02-09 14165]R2 aswHwid;avast! HardwareID; C:\Windows\system32\drivers\aswHwid.sys [2015-01-09 24184]R2 aswMonFlt;aswMonFlt; C:\Windows\system32\drivers\aswMonFlt.sys [2015-01-09 73480]R2 VBoxAswDrv;VBoxAsw Support Driver; \??\C:\Program Files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [2015-01-09 218192]R3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [2013-03-20 37344]R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-04-17 2098904]R3 MarvinBus;Pinnacle Marvin Bus; C:\Windows\system32\DRIVERS\MarvinBus.sys [2005-06-02 171008]R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvmfdx32.sys [2007-09-10 1035168]R3 nvlddmkm;nvlddmkm; C:\Windows\system32\DRIVERS\nvlddmkm.sys [2013-02-25 8939296]R3 nvsmu;nvsmu; C:\Windows\system32\DRIVERS\nvsmu.sys [2007-10-12 13312]R3 UMPass;Microsoft UMPass Driver; C:\Windows\system32\DRIVERS\umpass.sys [2008-01-21 7680]R3 WudfPf;@%SystemRoot%\system32\drivers\Wudfpf.sys,-1000; C:\Windows\system32\drivers\WudfPf.sys [2012-07-26 66560]R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2012-07-26 155136]S3 61883;61883-eenheidsapparaat; C:\Windows\system32\DRIVERS\61883.sys [2008-01-21 45696]S3 a4zfdjbq;a4zfdjbq; C:\Windows\system32\drivers\a4zfdjbq.sys []S3 ajb8gqeh;ajb8gqeh; C:\Windows\system32\drivers\ajb8gqeh.sys []S3 Avc;AVC-apparaat; C:\Windows\system32\DRIVERS\avc.sys [2008-01-21 40448]S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2008-01-21 179712]S3 cpuz134;cpuz134; \??\C:\User [2012-01-21 2]S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2014-01-23 88576]S3 Dot4;Microsoft IEEE-1284.4-stuurprogramma; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-21 131584]S3 Dot4Print;Stuurprogramma voor printerklasse voor IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-21 16384]S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-21 36864]S3 drmkaud;Microsoft Kernel DRM-audiodecoder; C:\Windows\system32\drivers\drmkaud.sys [2008-01-21 5632]S3 HdAudAddService;Microsoft 1.1 UAA Functiestuurprogramma voor High Definition Audio-service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2006-10-19 1380864]S3 MSDV;Microsoft DV Camera and VCR; C:\Windows\system32\DRIVERS\msdv.sys [2008-01-21 52608]S3 MSKSSRV;Microsoft Streaming Service-proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-21 8192]S3 MSPCLOCK;Microsoft Streaming Clock-proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-21 5888]S3 MSPQM;Microsoft Streaming Kwaliteitsbeheer Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-21 5504]S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink-conversieprogramma; C:\Windows\system32\drivers\MSTEE.sys [2008-01-21 6016]S3 pwdrvio;pwdrvio; \??\C:\Windows\system32\pwdrvio.sys [2013-03-07 15576]S3 pwdspio;pwdspio; \??\C:\Windows\system32\pwdspio.sys [2013-03-07 10200]S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM); C:\Windows\system32\DRIVERS\ssadbus.sys [2013-02-22 136904]S3 ssadmdfl;SAMSUNG Android USB Modem (Filter); C:\Windows\system32\DRIVERS\ssadmdfl.sys [2013-02-22 17864]S3 ssadmdm;SAMSUNG Android USB Modem Drivers; C:\Windows\system32\DRIVERS\ssadmdm.sys [2013-02-22 153672]S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM); C:\Windows\system32\DRIVERS\ssadserd.sys [2013-02-22 130248]S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2014-01-23 184192]S3 ssudserd;SAMSUNG Mobile USB Diagnostic Serial Port(DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudserd.sys [2014-01-23 184192]S3 usb_rndisx;USB RNDIS-adapter; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 15872]S3 usbscan;Stuurprogramma voor USB-scanner; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 35328]S3 winusb;WinUsb-stuurprogramma; C:\Windows\system32\DRIVERS\winusb.sys [2009-07-14 34944]S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2009-10-01 40448]S4 ErrDev;Microsoft Hardware Error Device Driver; C:\Windows\system32\drivers\errdev.sys [2008-01-21 6656]S4 MegaSR;MegaSR; C:\Windows\system32\drivers\megasr.sys [2008-01-21 386616]======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2015-01-09 50344]R2 FontCache;@%systemroot%\system32\FntCache.dll,-100; C:\Windows\system32\svchost.exe [2008-01-21 21504]R2 FsUsbExService;FsUsbExService; C:\Windows\system32\FsUsbExService.Exe [2013-03-20 233472]R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2012-03-28 140456]R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-21 21504]R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-01-18 639776]R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\Windows\system32\IoctlSvc.exe [2006-12-19 81920]R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-21 21504]R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2008-01-21 21504]R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe [2009-12-23 370688]R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2013-01-18 383264]R2 TeamViewer8;TeamViewer 8; C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe [2013-04-23 3574624]R2 Update service;Update service; C:\Program Files\Popcorn Time\Updater.exe [2014-10-05 179200]R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2008-01-21 21504]R2 wlidsvc;Windows Live ID Sign-in Assistant; c:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]R3 AvastVBoxSvc;AvastVBox COM Service; C:\Program Files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [2015-01-09 3192344]R3 WPFFontCache_v0400;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe,-100; C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2013-09-11 770168]S2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service; C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe [2012-01-05 75624]S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]S2 gupdate;Google Update-service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-19 107912]S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-02-25 1260320]S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2015-01-24 267440]S3 gupdatem;Google Update-service (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-10-19 107912]S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2008-04-08 800040]S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2008-01-22 275752]S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]S4 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]-----------------EOF-----------------rbij de resultaten:
Mvg brus
-
Hallo Pc helper
Heb problemen met reclame.
Zogauw ik internet open en naar een site ga springen er en hoop reclames door het beeld,
Deze klik ik weg met kruisje maar komt weer terug,
Hebben jullie hier een oplossing voor
Mvg brus
-
oke het is gelukt krijg de updates niet meer binnen.
Bedankt voor alles .
Mvg brus
-
Updates komen nog steeds binnen en altijd de zelfde.
KB2468871: Update voor Microsoft .NET Framework 4 op Windows XP, Windows Server 2003, Windows Vista, Windows 7 en Windows Server 2008 x86
Downloadgrootte: 18,9 MB
U moet de computer mogelijk opnieuw opstarten om deze update van kracht te laten worden.
Type update: Aanbevolen
Installeer deze update om problemen in Microsoft .NET Framework 4 op te lossen. Zie voor een complete lijst met problemen die in deze update zijn opgenomen het bijbehorende Microsoft Knowledge Base-artikel voor meer informatie. Wanneer u deze update hebt geïnstalleerd, moet u de computer mogelijk opnieuw opstarten.
Meer informatie:
Update for the .NET Framework 4
Help en ondersteuning:
KB2487367: Beveiligingsupdate voor Microsoft .NET Framework 4 op Windows XP, Windows Server 2003, Windows Vista, Windows 7 en Windows Server 2008 x86
Downloadgrootte: 2,1 MB
U moet de computer mogelijk opnieuw opstarten om deze update van kracht te laten worden.
Type update: belangrijk
Er is een beveiligingsprobleem vastgesteld waardoor een kwaadwillende gebruiker uw Windows-systeem met Microsoft .NET Framework kan beschadigen en toegang tot gegevens kan krijgen. Installeer deze update van Microsoft om uw computer hiertegen te beveiligen. Wanneer u deze update hebt geïnstalleerd, moet u de computer mogelijk opnieuw opstarten.
Meer informatie:
Help en ondersteuning:
KB2533523: Update voor Microsoft .NET Framework 4 op Windows XP, Windows Server 2003, Windows Vista, Windows 7 en Windows Server 2008 x86
Downloadgrootte: 19,4 MB
U moet de computer mogelijk opnieuw opstarten om deze update van kracht te laten worden.
Type update: Aanbevolen
Deze update heeft betrekking op de stabiliteit, betrouwbaarheid en prestaties van Microsoft .NET Framework 4. Nadat u deze update hebt geïnstalleerd, moet u de computer opnieuw opstarten.
Meer informatie:
Reliability Update 1 for the .NET Framework 4
Help en ondersteuning:
KB2600217: Update voor Microsoft .NET Framework 4 op Windows XP, Windows Server 2003, Windows Vista, Windows 7 en Windows Server 2008 x86
Downloadgrootte: 17,0 MB
U moet de computer mogelijk opnieuw opstarten om deze update van kracht te laten worden.
Type update: Aanbevolen
Deze update heeft betrekking op de stabiliteit, betrouwbaarheid en prestaties van Microsoft .NET Framework 4. Nadat u deze update hebt geïnstalleerd, moet u de computer opnieuw opstarten.
Meer informatie:
Reliability Update 2 for the .NET Framework 4
Help en ondersteuning:
KB2656351: Beveiligingsupdate voor Microsoft .NET Framework 4 op Windows XP, Windows Server 2003, Windows Vista, Windows 7 en Windows Server 2008 x86
Downloadgrootte: 5,4 MB
U moet de computer mogelijk opnieuw opstarten om deze update van kracht te laten worden.
Type update: belangrijk
Er is een beveiligingsprobleem vastgesteld waardoor een niet-geverifieerde externe kwaadwillende gebruiker uw systeem kan beschadigen en beheer over het systeem kan krijgen. Installeer deze update van Microsoft om uw computer hiertegen te beveiligen. Wanneer u deze update hebt geïnstalleerd, moet u de computer mogelijk opnieuw opstarten.
Meer informatie:
Help en ondersteuning:
Gr brus
-
Na de eerste keer:Malwarebytes Anti-Malware 1.65.1.1000www.malwarebytes.org
Databaseversie: v2012.11.26.06
Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Wim :: PC_VAN_WIM [administrator]
26-11-2012 16:19:50
mbam-log-2012-11-26 (16-19-50).txt
Scantype: Snelle scan
Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
Uitgeschakelde scanopties: P2P
Objecten gescand: 222510
Verstreken tijd: 7 minuut/minuten, 51 seconde(n)
Geheugenprocessen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Geheugenmodulen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registersleutels gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerwaarden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerdata gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Mappen gedetecteerd: 4
C:\Users\Wim\Local Settings\Application Data\I Want This (Adware.GamePlayLab) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\Wim\Local Settings\Application Data\I Want This\Chrome (Adware.GamePlayLab) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\Wim\AppData\Local\I Want This (Adware.GamePlayLab) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\Wim\AppData\Local\I Want This\Chrome (Adware.GamePlayLab) -> Succesvol in quarantaine geplaatst en verwijderd.
Bestanden gedetecteerd: 5
C:\Users\Wim\Downloads\PDFReaderSetup.exe (PUP.AdBundle) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\Wim\Downloads\installer_utorrent.exe (PUP.Adbundler) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\Wim\Downloads\DD6E.tmp (PUP.Adware.InstallCore) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\Wim\Local Settings\Application Data\I Want This\Chrome\I Want This.crx (Adware.GamePlayLab) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Users\Wim\AppData\Local\I Want This\Chrome\I Want This.crx (Adware.GamePlayLab) -> Succesvol in quarantaine geplaatst en verwijderd.
(einde)
Na de tweede keer na opnieuw opstarten:
Malwarebytes Anti-Malware 1.65.1.1000
Malwarebytes : Free anti-malware download
Databaseversie: v2012.11.26.06
Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Wim :: PC_VAN_WIM [administrator]
26-11-2012 16:36:19
mbam-log-2012-11-26 (16-36-19).txt
Scantype: Snelle scan
Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
Uitgeschakelde scanopties: P2P
Objecten gescand: 221875
Verstreken tijd: 8 minuut/minuten, 24 seconde(n)
Geheugenprocessen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Geheugenmodulen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registersleutels gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerwaarden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerdata gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Mappen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Bestanden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
(einde)
Hijacklog
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:49:51, on 26-11-2012
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16455)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\RtHDVCpl.exe
C:\Program Files\Sophos\AutoUpdate\ALMon.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\WINDOWS\WindowsMobile\wmdc.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\IncrediMail\Bin\IncMail.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Samsung\Kies\KiesAirMessage.exe
C:\Program Files\Samsung\Kies\Kies.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\IncrediMail\bin\IMApp.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
C:\Windows\system32\wuauclt.exe
C:\Users\Wim\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Wim\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Wim\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Wim\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Wim\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Wim\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Wim\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Sophos\Sophos Anti-Virus\SavProgress.exe
C:\Users\Wim\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Wim\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Wim\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Wim\Downloads\HijackThis (1).exe
C:\Users\Wim\Downloads\HijackThis (2).exe
C:\Windows\system32\SearchFilterHost.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Bing
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = Bing
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [sophos AutoUpdate Monitor] C:\Program Files\Sophos\AutoUpdate\almon.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [LaunchList] C:\Program Files\Pinnacle\Studio 10\LaunchList.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [skytel] Skytel.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [incrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe" -automount
O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Wim\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [KiesAirMessage] C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: [] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2196911203-743071290-3581171268-1006\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'UpdatusUser')
O4 - Global Startup: Adobe Reader Snelle start.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\programdata\sophos\web intelligence\swi_ifslsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos\web intelligence\swi_ifslsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos\web intelligence\swi_ifslsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos\web intelligence\swi_ifslsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos\web intelligence\swi_ifslsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos\web intelligence\swi_ifslsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos\web intelligence\swi_ifslsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos\web intelligence\swi_ifslsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos\web intelligence\swi_ifslsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://192.168.1.1
O15 - ESC Trusted IP range: http://192.168.1.1
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{92A73D25-7B86-44DA-8D55-AA2025E709F0}: NameServer = 192.168.1.1,88.159.1.200
O20 - AppInit_DLLs: C:\PROGRA~1\Sophos\SOPHOS~1\SOPHOS~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: Sophos Anti-Virus status reporter (SAVAdminService) - Sophos Limited - C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe
O23 - Service: Sophos Anti-Virus (SAVService) - Sophos Limited - C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe
O23 - Service: Sophos AutoUpdate Service - Sophos Limited - C:\Program Files\Sophos\AutoUpdate\ALsvc.exe
O23 - Service: Sophos Web Control Service - Sophos Limited - C:\Program Files\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Sophos Web Intelligence Service (swi_service) - Sophos Limited - C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
O23 - Service: Sophos Web Intelligence Update (swi_update) - Sophos Limited - C:\ProgramData\Sophos\Web Intelligence\swi_update.exe
--
End of file - 11286 bytes
-
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:41:45, on 24-11-2012
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16455)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\RtHDVCpl.exe
C:\Program Files\Sophos\AutoUpdate\ALMon.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\WINDOWS\WindowsMobile\wmdc.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\IncrediMail\Bin\IncMail.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Samsung\Kies\KiesAirMessage.exe
C:\Program Files\Samsung\Kies\Kies.exe
C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\IncrediMail\bin\IMApp.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\Macromed\Flash\FlashUtil32_11_5_502_110_ActiveX.exe
C:\Users\Wim\Downloads\HijackThis (1).exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Bing
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = Bing
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {87775fdb-6972-41f9-ae51-8326e38cb206} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [sophos AutoUpdate Monitor] C:\Program Files\Sophos\AutoUpdate\almon.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [LaunchList] C:\Program Files\Pinnacle\Studio 10\LaunchList.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [skytel] Skytel.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe
O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter
O4 - HKCU\..\Run: [incrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe" -automount
O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Wim\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [KiesAirMessage] C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup
O4 - HKCU\..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: [] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2196911203-743071290-3581171268-1006\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'UpdatusUser')
O4 - Global Startup: Adobe Reader Snelle start.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: c:\programdata\sophos\web intelligence\swi_ifslsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos\web intelligence\swi_ifslsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos\web intelligence\swi_ifslsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos\web intelligence\swi_ifslsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos\web intelligence\swi_ifslsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos\web intelligence\swi_ifslsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos\web intelligence\swi_ifslsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos\web intelligence\swi_ifslsp.dll
O10 - Unknown file in Winsock LSP: c:\programdata\sophos\web intelligence\swi_ifslsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O15 - Trusted IP range: http://192.168.1.1
O15 - ESC Trusted IP range: http://192.168.1.1
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{92A73D25-7B86-44DA-8D55-AA2025E709F0}: NameServer = 192.168.1.1,88.159.1.200
O20 - AppInit_DLLs: C:\PROGRA~1\Sophos\SOPHOS~1\SOPHOS~1.DLL
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe
O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: Sophos Anti-Virus status reporter (SAVAdminService) - Sophos Limited - C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe
O23 - Service: Sophos Anti-Virus (SAVService) - Sophos Limited - C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe
O23 - Service: Sophos AutoUpdate Service - Sophos Limited - C:\Program Files\Sophos\AutoUpdate\ALsvc.exe
O23 - Service: Sophos Web Control Service - Sophos Limited - C:\Program Files\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Sophos Web Intelligence Service (swi_service) - Sophos Limited - C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
O23 - Service: Sophos Web Intelligence Update (swi_update) - Sophos Limited - C:\ProgramData\Sophos\Web Intelligence\swi_update.exe
--
End of file - 10670 bytes
-
Logfile of Trend Micro HijackThis v2.0.4Scan saved at 16:23:29, on 16-11-2012
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16455)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\WINDOWS\RtHDVCpl.exe
C:\Program Files\Sophos\AutoUpdate\ALMon.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
C:\WINDOWS\WindowsMobile\wmdc.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\IncrediMail\Bin\IncMail.exe
C:\WINDOWS\ehome\ehtray.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Samsung\Kies\KiesAirMessage.exe
C:\Program Files\Samsung\Kies\Kies.exe
C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Windows\ehome\ehmsas.exe
C:\Program Files\NVIDIA Corporation\Display\nvtray.exe
C:\Program Files\IncrediMail\bin\IMApp.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Utorrent\uTorrent.exe
C:\Users\Wim\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Wim\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Wim\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Wim\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Wim\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Wim\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Wim\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Wim\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Wim\Downloads\HijackThis (1).exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe
O23 - Service: Sophos Anti-Virus status reporter (SAVAdminService) - Sophos Limited - C:\Program Files\Sophos\Sophos Anti-Virus\SAVAdminService.exe
O23 - Service: Sophos Anti-Virus (SAVService) - Sophos Limited - C:\Program Files\Sophos\Sophos Anti-Virus\SavService.exe
O23 - Service: Sophos AutoUpdate Service - Sophos Limited - C:\Program Files\Sophos\AutoUpdate\ALsvc.exe
O23 - Service: Sophos Web Control Service - Sophos Limited - C:\Program Files\Sophos\Sophos Anti-Virus\Web Control\swc_service.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Sophos Web Intelligence Service (swi_service) - Sophos Limited - C:\Program Files\Sophos\Sophos Anti-Virus\Web Intelligence\swi_service.exe
O23 - Service: Sophos Web Intelligence Update (swi_update) - Sophos Limited - C:\ProgramData\Sophos\Web Intelligence\swi_update.exe
--
End of file - 3675 bytes
-
CC Cleaner laten lopen verschillende keren tot alles weg was.
Vandaag weer computer aan en de updates (dezelfde) staan weer klaar.
Wat nu?
Mvg brus
-
Hallo Asus
Heb gedaan zoals hier boven geschreven maar de updates blijven gewoon terug komen.
Krijg ook nog een foutmelding bij opstarten(stuur ik zo op)
Mvg brus
- - - Updated - - -
Dit is de foutmelding ( C:\Users\Wim\AppData\Local\Temp\zlrkqt was not found.)
Misschien kun je hier iets mee.
Mvg brus
-
Hallo asus
Heb zojuist gelezen en proberen uit te voeren maar ik kan niet herstellen (staat er niet bij) alleen maar verwijderen.Hoe nu.
Mvg brus
- - - Updated - - -
KB2468871: Update voor Microsoft .NET Framework 4 op Windows XP, Windows Server 2003, Windows Vista, Windows 7 en Windows Server 2008 x86
Downloadgrootte: 18,9 MB
U moet de computer mogelijk opnieuw opstarten om deze update van kracht te laten worden.
Type update: Aanbevolen
Installeer deze update om problemen in Microsoft .NET Framework 4 op te lossen. Zie voor een complete lijst met problemen die in deze update zijn opgenomen het bijbehorende Microsoft Knowledge Base-artikel voor meer informatie. Wanneer u deze update hebt geïnstalleerd, moet u de computer mogelijk opnieuw opstarten.
Meer informatie:
http://go.microsoft.com/fwlink/?LinkID=210664
Help en ondersteuning:
KB2487367: Beveiligingsupdate voor Microsoft .NET Framework 4 op Windows XP, Windows Server 2003, Windows Vista, Windows 7 en Windows Server 2008 x86
Downloadgrootte: 2,1 MB
U moet de computer mogelijk opnieuw opstarten om deze update van kracht te laten worden.
Type update: belangrijk
Er is een beveiligingsprobleem vastgesteld waardoor een kwaadwillende gebruiker uw Windows-systeem met Microsoft .NET Framework kan beschadigen en toegang tot gegevens kan krijgen. Installeer deze update van Microsoft om uw computer hiertegen te beveiligen. Wanneer u deze update hebt geïnstalleerd, moet u de computer mogelijk opnieuw opstarten.
Meer informatie:
http://go.microsoft.com/fwlink/?LinkID=242826
Help en ondersteuning:
KB2533523: Update voor Microsoft .NET Framework 4 op Windows XP, Windows Server 2003, Windows Vista, Windows 7 en Windows Server 2008 x86
Downloadgrootte: 19,4 MB
U moet de computer mogelijk opnieuw opstarten om deze update van kracht te laten worden.
Type update: Aanbevolen
Deze update heeft betrekking op de stabiliteit, betrouwbaarheid en prestaties van Microsoft .NET Framework 4. Nadat u deze update hebt geïnstalleerd, moet u de computer opnieuw opstarten.
Meer informatie:
http://go.microsoft.com/fwlink/?LinkId=219466
Help en ondersteuning:
KB2600217: Update voor Microsoft .NET Framework 4 op Windows XP, Windows Server 2003, Windows Vista, Windows 7 en Windows Server 2008 x86
Downloadgrootte: 17,0 MB
U moet de computer mogelijk opnieuw opstarten om deze update van kracht te laten worden.
Type update: Aanbevolen
Deze update heeft betrekking op de stabiliteit, betrouwbaarheid en prestaties van Microsoft .NET Framework 4. Nadat u deze update hebt geïnstalleerd, moet u de computer opnieuw opstarten.
Meer informatie:
http://go.microsoft.com/fwlink/?LinkId=232526
Help en ondersteuning:
KB2656351: Beveiligingsupdate voor Microsoft .NET Framework 4 op Windows XP, Windows Server 2003, Windows Vista, Windows 7 en Windows Server 2008 x86
Downloadgrootte: 5,4 MB
U moet de computer mogelijk opnieuw opstarten om deze update van kracht te laten worden.
Type update: belangrijk
Er is een beveiligingsprobleem vastgesteld waardoor een niet-geverifieerde externe kwaadwillende gebruiker uw systeem kan beschadigen en beheer over het systeem kan krijgen. Installeer deze update van Microsoft om uw computer hiertegen te beveiligen. Wanneer u deze update hebt geïnstalleerd, moet u de computer mogelijk opnieuw opstarten.
Meer informatie:
http://go.microsoft.com/fwlink/?LinkID=237373
Help en ondersteuning:
-
Hallo
Iedere keer dat ik mijn computer aanzet krijg ik bericht van windows update.
Dit zijn 5 updates van framework 4 maar zijn ieder dag de zelfde.
hoe komt dit en wat moet ik hiermee doen.
Mvg brus
-
ik denk dat ik de computer helemaal leeg maak en alles nieuw erop zetten mischien zijn dan de problemen opgelost
Gr brus
-
heb hem vandaag al 4 x opnieuw opgestart ,vaak wil incredimail niet openen maar soms opent het wel en krijg dan de melding programma reageert niet meer.
Gr brus
-
had hem na dr web opnieuw opgestart en toen mijn e mail geopend kreeg ik mijn berichten niet meer open dus moest ik hem weer opnieuw opstarten en nu doet ie het wel maar voor hoelang weet ik niet gr brus
-
sorry voor het lange wachten[TABLE=width: 192]
[TR]
[TD=width: 64, bgcolor: transparent]cnet_Alcohol120_trial_2_0_1_2033_exe.exe[/TD]
[TD=width: 64, bgcolor: transparent]C:\Documents and Settings\Wim Brusselers\DoctorWeb\Quarantine[/TD]
[TD=width: 64, bgcolor: transparent]Adware.InstallCore.2[/TD]
[TD=width: 64, bgcolor: transparent]Verplaatst.[/TD]
[/TR]
[/TABLE]
[TABLE=width: 192]
[TR]
[TD=width: 64, bgcolor: transparent]installer_azureus.exe[/TD]
[TD=width: 64, bgcolor: transparent]C:\Documents and Settings\Wim Brusselers\DoctorWeb\Quarantine[/TD]
[TD=width: 64, bgcolor: transparent]Adware.Downware.23[/TD]
[TD=width: 64, bgcolor: transparent]Verplaatst.[/TD]
[/TR]
[/TABLE]
-
Nee nu nog niet alleen af en toe heel erg traag
-
Emsisoft Emergency Kit - Versie 1.0
Laatste Update: 7-1-2012 13:09:26
Scaninstellingen:
Scantype: Diepe Scan
Objecten: Geheugen, Sporen, Cookies, C:\
Scan archieven: Aan
Heuristieken: Uit
ADS Scan: Aan
Scan gestart: 7-1-2012 13:10:43
c:\users\wim brusselers\appdata\roaming\LimeWireTurbo Ontdekt: Trace.Directory.LimeWire Turbo 5.4.2.0!A2
C:\Users\Wim Brusselers\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\2\29a77082-5f56078c/vmain.class Ontdekt: Exploit.Java.CVE-2009-3867!IK
C:\Users\Wim Brusselers\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\4ba1196c-448e9079/vmain.class Ontdekt: Exploit.Java.CVE-2009!IK
C:\Users\Wim Brusselers\Documents\LimeWire\Saved\nisno liedjes (instrumental version).mp3 Ontdekt: Trojan-Downloader.WMA.GetCodec!IK
C:\Users\Wim Brusselers\Documents\LimeWire\Saved\x factor - lisa - haleluja 2009.mp3 Ontdekt: Trojan-Downloader.ASX.Wimad!IK
Gescand
Bestanden: 502010
Sporen: 403649
Cookies: 35
Processen: 68
Gevonden
Bestanden: 4
Sporen: 1
Cookies: 0
Processen: 0
Registersleutels: 0
Scan Geëindigd: 7-1-2012 16:22:01
Scantijd: 3:11:18
C:\Users\Wim Brusselers\Documents\LimeWire\Saved\x factor - lisa - haleluja 2009.mp3 Verwijderd Trojan-Downloader.ASX.Wimad!IK
C:\Users\Wim Brusselers\Documents\LimeWire\Saved\nisno liedjes (instrumental version).mp3 Verwijderd Trojan-Downloader.WMA.GetCodec!IK
C:\Users\Wim Brusselers\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\44\4ba1196c-448e9079/vmain.class Verwijderd Exploit.Java.CVE-2009!IK
C:\Users\Wim Brusselers\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\2\29a77082-5f56078c/vmain.class Verwijderd Exploit.Java.CVE-2009-3867!IK
c:\users\wim brusselers\appdata\roaming\LimeWireTurbo Verwijderd Trace.Directory.LimeWire Turbo 5.4.2.0!A2
Verwijderd
Bestanden: 4
Sporen: 1
Cookies: 0
-
Ok had ik al gedaan gisteren ccleaner gedownload en gedraait maar het probleem bleef bestaan
PS krijg vaak de melding ""programma reageert niet meer""
-
Het probleem is nu zodra ik hem opstart is er niets aan de hand maar na een poosje wordt hij steeds trager en dan loopt hij weer vast ra ra
windows 10
in Archief Windows 10
Geplaatst: