luchia86

24 februari 2012

Okay, dat lukte gelukkig wel. Ik moest dan via een optie aangeven dat ik wel toegang kreeg tot de map.

23 februari 2012

Toegang nog steeds geweigerd:

Als je meer info hebt over SP1, dan hoor ik het graag.

15 februari 2012

Ik kan Qoobox niet verwijderen, ze zeggen dat de map niet leeg is. Ik krijg bij de installatie van SP1 de foutmelding die ik hierboven heb genoemd, dus Code 80073712.

Ik heb geen blauwe schermen meer gehad met herstart. Dan maar gewoon leven zonder SP1?

13 februari 2012

Ik kan de map niet verwijderen, ze zeggen dat ik er geen toegang tot heb, alleen als administator, maar ik ben de enige gebruiker?!? Ik heb System Update Readiness via windowsupdate en via een zelfstandig pakket geinstalleerd. Bij het zelfstandige pakket werd: KB947821: Hotfix voor Windows geinstalleerd. SP1 installeren werkt nog steeds niet. Ik heb zelfs geprobeerd het in veilige modus te installeren, mislukte ook Enig idee wat nu nog mis kan zijn?

12 februari 2012

Ik heb CF_UNIST.EXE gedownload en erop geklikt. Binnen een minuut zei die dat ie klaar was, maar ik zie nog wel allemaal mapjes, zoals: ASUS.DAT, ASUS.SYS, Boot, Recovery in mijn C-schijf, in de eerste zitten 1kb bestanden, de rest is wel allemaal leeg, maarre heb je een lijst van alle mappen die van Combofix komen? dan kan ik die mappen handmatig weghalen.

Bij SP1 had ik als fout:

Windows 7 Service Pack 1 voor x64-systemen (KB976932)

Installatiedatum: ‎9-‎2-‎2012 22:44

Installatiestatus: mislukt

Foutdetails: Code 80073712

Type update: belangrijk

Windows 7 Service Pack 1 is een aanbevolen verzameling updates en verbeteringen aan Windows die zijn gecombineerd in één enkele installeerbare update. Het servicepack maakt uw computer veiliger en betrouwbaarder. Een standaardinstallatie duurt ongeveer 30 minuten en u moet uw computer ongeveer halverwege het proces opnieuw opstarten.

Meer informatie:

What's included in Windows 7 Service Pack 1 (SP1)

Help en ondersteuning:

Support for Windows 7

Dit is de informatie van de productfoutinfo, de eerste heb ik al uitgevoerd, tweede is niet echt van toepassing, want ik had het al vanaf het begin, toen ik windows had opnieuw opgestart.

Alles weergeven

Alles verbergen

[h=1]Windows Update: fout 80073712[/h]Met het hulpprogramma System Update Readiness voor Windows kunnen bepaalde voorwaarden worden gecorrigeerd die leiden tot Windows Update-fout 80073712. Ga naar Wat is het System Update Readiness Tool? op de Windows-website voor meer informatie over dit hulpmiddel.

Als met het hulpprogramma System Update Readiness het probleem niet kan worden gecorrigeerd, moet u Windows herstellen. Als u Windows herstelt, worden uw persoonlijke bestanden of de programma's die op uw computer zijn geïnstalleerd, niet beschadigd.

Als u het herstel eenmaal hebt voltooid, moet u Windows Update opnieuw uitvoeren om eventuele updates te installeren die niet op de installatie-dvd staan. U kunt Windows aan de hand van de volgende stappen herstellen:

Sluit alle programma's en start de computer opnieuw op.
Plaats de dvd van Windows in het schijfstation van de computer. Wacht totdat Setup is gestart. Als Setup niet automatisch wordt gestart, voert u de volgende stappen uit:
- Klik op Start en typ Station:\setup.exe in het zoekvak, waarbij Station de letter is van het dvd-station van de computer (bijvoorbeeld D:\setup.exe).
- Klik in de lijst Programma's op Setup.exe.
[*]Klik op Nu Installeren.

[*]Klik op De nieuwste updates voor de installatie van internet downloaden (aanbevolen).

[*]Als u daarom wordt gevraagd, geeft u de productcode van Windows op.

[*]Klik in het vensterWelk type installatie wilt u uitvoeren? op Upgraden.

[*]Wanneer de installatie is voltooid, start u de computer opnieuw op en voert u Windows Update uit.

[h=2] Technische informatie[/h]Fout 80073712 treedt op als Windows-onderdeelarchief is beschadigd. In het onderdeelarchief staan de bestanden en gegevens die nodig zijn voor het installeren van updates. Met het hulpprogramma System Update Readiness Tool worden beschadigde bestanden en registergegevens hersteld. Lees het gedeelte 'Meer informatie' in het artikel met de beschriving van het System Update Readiness Tool op de website Microsoft Help en ondersteuning voor verdere details.

Foutcodes waarop dit van toepassing is:

WindowsUpdate_80073712
0x80073712

Was dit nuttig?

De onlineprivacyverklaring lezen

7 februari 2012

Ik kan combofix niet meer uninstalleren, ook niet in de veilige modus, kan het ook op een andere manier. Zie hieronder foutmelding combox en service pack update.

3 februari 2012

Bij deze, in veilige modus. En nu?

ComboFix 12-02-03.02 - Liyen 03-02-2012 14:07:40.2.2 - x64 MINIMAL

Microsoft Windows 7 Home Premium 6.1.7600.0.1252.31.1043.18.4061.3433 [GMT 1:00]

Gestart vanuit: c:\users\Liyen\Desktop\ComboFix.exe

AV: Symantec Endpoint Protection *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}

FW: Symantec Endpoint Protection *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}

SP: Symantec Endpoint Protection *Disabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

* Nieuw herstelpunt werd aangemaakt

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

c:\programdata\FullRemove.exe

c:\users\Liyen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Smc.exe

.

(((((((((((((((((((( Bestanden Gemaakt van 2012-01-03 to 2012-02-03 ))))))))))))))))))))))))))))))

.

2012-02-03 13:16 . 2012-02-03 13:16 -------- d-----w- c:\users\Default\AppData\Local\temp

2012-01-31 12:33 . 2012-01-31 12:33 -------- d-----w- c:\windows\system32\SPReview

2012-01-29 18:06 . 2012-01-29 18:07 -------- d-----w- c:\programdata\regid.1986-12.com.adobe

2012-01-29 17:00 . 2009-08-19 22:50 24416 ----a-r- c:\windows\system32\AdobePDFUI.dll

2012-01-25 14:51 . 2012-01-25 14:52 -------- d-----w- C:\7041b0c1e25c896f12

2012-01-23 13:18 . 2012-01-23 13:18 -------- d-----w- c:\programdata\ALM

2012-01-23 13:07 . 2012-01-23 13:20 -------- d-----w- c:\program files\Common Files\Adobe

2012-01-23 13:05 . 2012-01-23 13:05 -------- d-----w- c:\program files (x86)\Adobe Media Player

2012-01-23 13:02 . 2012-01-23 13:02 -------- d-----w- c:\windows\CheckSur

2012-01-23 12:43 . 2012-01-23 12:43 -------- d-----w- c:\programdata\FLEXnet

2012-01-23 10:49 . 2012-01-23 10:49 -------- d-----w- c:\windows\system32\EventProviders

2012-01-23 09:05 . 2011-03-25 03:23 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys

2012-01-23 09:05 . 2011-03-25 03:23 324608 ----a-w- c:\windows\system32\drivers\usbport.sys

2012-01-23 09:05 . 2011-03-25 03:22 52224 ----a-w- c:\windows\system32\drivers\usbehci.sys

2012-01-23 09:05 . 2011-03-25 03:23 98816 ----a-w- c:\windows\system32\drivers\usbccgp.sys

2012-01-23 09:05 . 2011-03-25 03:22 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys

2012-01-23 09:05 . 2011-03-25 03:22 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys

2012-01-23 09:05 . 2011-03-25 03:22 7936 ----a-w- c:\windows\system32\drivers\usbd.sys

2012-01-23 09:05 . 2011-04-28 03:58 552448 ----a-w- c:\windows\system32\drivers\bthport.sys

2012-01-23 09:05 . 2011-04-28 03:58 80384 ----a-w- c:\windows\system32\drivers\BTHUSB.SYS

2012-01-23 08:54 . 2012-01-23 08:54 -------- d-----w- c:\programdata\Malwarebytes

2012-01-23 08:54 . 2012-01-23 08:54 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware

2012-01-23 08:54 . 2011-12-10 14:24 23152 ----a-w- c:\windows\system32\drivers\mbam.sys

2012-01-23 08:53 . 2012-01-23 08:53 -------- d-----w- c:\program files (x86)\Trend Micro

2012-01-23 08:23 . 2012-01-23 08:23 -------- d-----w- c:\program files (x86)\Common Files\Macrovision Shared

2012-01-23 08:16 . 2009-08-19 22:50 52568 ----a-w- c:\windows\system32\AdobePDF.dll

2012-01-23 06:43 . 2011-03-11 06:23 1657216 ----a-w- c:\windows\system32\drivers\ntfs.sys

2012-01-23 06:43 . 2011-03-11 06:23 166272 ----a-w- c:\windows\system32\drivers\nvstor.sys

2012-01-23 06:43 . 2011-03-11 06:23 148352 ----a-w- c:\windows\system32\drivers\nvraid.sys

2012-01-23 06:43 . 2011-03-11 06:22 107904 ----a-w- c:\windows\system32\drivers\amdsata.sys

2012-01-23 06:43 . 2011-03-11 06:18 2566144 ----a-w- c:\windows\system32\esent.dll

2012-01-23 06:43 . 2011-03-11 06:23 187264 ----a-w- c:\windows\system32\drivers\storport.sys

2012-01-23 06:43 . 2011-03-11 06:23 410496 ----a-w- c:\windows\system32\drivers\iaStorV.sys

2012-01-23 06:43 . 2011-03-11 06:22 27008 ----a-w- c:\windows\system32\drivers\amdxata.sys

2012-01-23 06:43 . 2011-03-11 06:15 96768 ----a-w- c:\windows\system32\fsutil.exe

2012-01-23 06:43 . 2011-03-11 05:39 1686016 ----a-w- c:\windows\SysWow64\esent.dll

2012-01-23 06:43 . 2011-03-11 05:37 74240 ----a-w- c:\windows\SysWow64\fsutil.exe

2012-01-23 06:10 . 2012-01-23 06:10 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 8

2012-01-23 06:06 . 2012-01-25 08:50 -------- d-----w- c:\program files (x86)\Common Files\Tencent

2012-01-23 06:05 . 2012-01-23 06:05 -------- d-----w- c:\program files (x86)\Tencent

2012-01-23 06:05 . 2012-01-25 08:45 18760 ----a-w- c:\windows\SysWow64\QQVistaHelper.dll

2012-01-23 06:00 . 2012-01-23 06:00 834544 ----a-w- c:\windows\system32\drivers\sptd.sys

2012-01-23 06:00 . 2012-01-23 06:01 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite

2012-01-23 06:00 . 2012-01-23 06:00 -------- d-----w- c:\programdata\DAEMON Tools Lite

2012-01-23 05:56 . 2012-01-23 05:56 -------- d-----w- c:\program files (x86)\Microsoft Silverlight

2012-01-23 05:18 . 2012-01-23 05:19 -------- d-----w- c:\program files (x86)\SogouInput

2012-01-23 05:18 . 2012-01-23 05:18 -------- d-----w- c:\program files (x86)\SogouExtension

2012-01-23 05:18 . 2009-10-10 03:17 14336 ----a-w- c:\windows\system32\drivers\sffp_sd.sys

2012-01-23 05:17 . 2012-01-23 05:17 -------- d-----r- c:\program files (x86)\Skype

2012-01-23 05:17 . 2012-01-23 05:17 -------- d-----w- c:\programdata\Skype

2012-01-23 05:13 . 2012-01-23 05:13 -------- d-----w- c:\program files (x86)\Pidgin

2012-01-23 05:09 . 2012-01-23 05:09 -------- d-----w- c:\program files (x86)\Combined Community Codec Pack

2012-01-23 04:27 . 2012-01-23 04:27 -------- d-----w- c:\windows\SysWow64\Wat

2012-01-23 04:27 . 2012-01-23 04:27 -------- d-----w- c:\windows\system32\Wat

2012-01-23 03:31 . 2010-09-14 06:45 367104 ----a-w- c:\windows\system32\wcncsvc.dll

2012-01-23 03:31 . 2010-09-14 06:07 276992 ----a-w- c:\windows\SysWow64\wcncsvc.dll

2012-01-23 03:23 . 2009-11-25 11:47 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll

2012-01-23 03:23 . 2009-11-25 11:47 49472 ----a-w- c:\windows\SysWow64\netfxperf.dll

2012-01-23 03:23 . 2009-11-25 11:47 48960 ----a-w- c:\windows\system32\netfxperf.dll

2012-01-23 03:23 . 2009-11-25 11:47 297808 ----a-w- c:\windows\SysWow64\mscoree.dll

2012-01-23 03:23 . 2009-11-25 11:47 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe

2012-01-23 03:23 . 2009-11-25 11:47 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll

2012-01-23 03:23 . 2009-11-25 11:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll

2012-01-23 03:23 . 2009-11-25 11:47 444752 ----a-w- c:\windows\system32\mscoree.dll

2012-01-23 03:23 . 2009-11-25 11:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe

2012-01-23 03:23 . 2009-11-25 11:47 1942856 ----a-w- c:\windows\system32\dfshim.dll

2012-01-23 03:22 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe

2012-01-23 02:22 . 2010-03-04 04:40 184832 ----a-w- c:\windows\system32\drivers\usbvideo.sys

2012-01-23 02:22 . 2010-03-04 04:32 243712 ----a-w- c:\windows\system32\drivers\ks.sys

2012-01-23 01:49 . 2012-01-23 01:49 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help

2012-01-23 00:12 . 2010-12-21 06:15 264192 ----a-w- c:\windows\system32\upnp.dll

2012-01-23 00:12 . 2010-12-21 06:13 2003968 ----a-w- c:\windows\system32\msxml6.dll

2012-01-23 00:12 . 2010-12-21 06:13 1880576 ----a-w- c:\windows\system32\msxml3.dll

2012-01-23 00:10 . 2010-12-18 06:11 714752 ----a-w- c:\windows\system32\kerberos.dll

2012-01-23 00:09 . 2010-03-04 07:57 2080256 ----a-w- c:\program files\Windows Mail\msoe.dll

2012-01-23 00:08 . 2011-04-22 20:18 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys

2012-01-23 00:08 . 2009-09-26 06:20 223448 ----a-w- c:\windows\system32\drivers\fvevol.sys

2012-01-23 00:08 . 2011-03-03 06:17 182272 ----a-w- c:\windows\system32\dnsrslvr.dll

2012-01-23 00:08 . 2011-03-03 06:14 30208 ----a-w- c:\windows\system32\dnscacheugc.exe

2012-01-23 00:08 . 2011-03-03 05:27 28672 ----a-w- c:\windows\SysWow64\dnscacheugc.exe

2012-01-23 00:06 . 2011-02-05 12:41 556928 ----a-w- c:\windows\system32\winresume.efi

2012-01-23 00:05 . 2011-08-27 05:40 861184 ----a-w- c:\windows\system32\oleaut32.dll

2012-01-22 22:46 . 2011-11-19 15:07 77312 ----a-w- c:\windows\system32\packager.dll

2012-01-22 22:46 . 2011-11-19 14:06 67072 ----a-w- c:\windows\SysWow64\packager.dll

2012-01-22 22:34 . 2012-01-22 22:34 -------- d-----w- c:\program files (x86)\Common Files\Symantec Shared

2012-01-22 22:21 . 2012-01-22 22:21 174200 ----a-w- c:\windows\system32\drivers\SYMEVENT64x86.SYS

2012-01-22 22:21 . 2012-01-22 22:21 -------- d-----w- c:\program files\Symantec

2012-01-22 22:21 . 2012-01-22 22:21 -------- d-----w- c:\program files\Common Files\Symantec Shared

2012-01-22 22:04 . 2009-12-29 08:03 220672 ----a-w- c:\windows\system32\wintrust.dll

2012-01-22 22:04 . 2009-12-29 06:55 172032 ----a-w- c:\windows\SysWow64\wintrust.dll

2012-01-22 22:04 . 2010-01-09 07:19 139264 ----a-w- c:\windows\system32\cabview.dll

2012-01-22 22:04 . 2010-01-09 06:52 132608 ----a-w- c:\windows\SysWow64\cabview.dll

2012-01-22 22:03 . 2012-01-22 22:03 -------- d-----w- c:\windows\system32\Service

2012-01-22 21:58 . 2006-11-29 12:06 4398360 ----a-w- c:\windows\system32\d3dx9_32.dll

2012-01-22 21:58 . 2006-11-29 12:06 3426072 ----a-w- c:\windows\SysWow64\d3dx9_32.dll

2012-01-22 21:58 . 2012-01-22 21:58 -------- d-----w- c:\program files (x86)\Microsoft SQL Server Compact Edition

2012-01-22 21:57 . 2012-01-22 21:59 -------- d-----w- c:\program files (x86)\Microsoft

2012-01-22 21:57 . 2012-01-22 21:57 -------- d-----w- c:\program files (x86)\Windows Live SkyDrive

2012-01-22 21:56 . 2012-01-22 21:59 -------- d-----w- c:\program files (x86)\Windows Live

2012-01-22 21:55 . 2012-01-22 21:55 -------- d-----w- c:\program files (x86)\Common Files\Windows Live

2012-01-22 21:54 . 2012-01-22 22:03 -------- d-----w- C:\ASUS.DAT

2012-01-22 21:53 . 2012-01-23 13:11 -------- d-----w- c:\users\Liyen

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]

@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]

2011-12-05 19:17 94208 ----a-w- c:\users\Liyen\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]

@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]

2011-12-05 19:17 94208 ----a-w- c:\users\Liyen\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]

@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]

2011-12-05 19:17 94208 ----a-w- c:\users\Liyen\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"UpdateLBPShortCut"="c:\program files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]

"UpdateP2GoShortCut"="c:\program files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]

"HControlUser"="c:\program files (x86)\ASUS\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]

"ATKOSD2"="c:\program files (x86)\ASUS\ATKOSD2\ATKOSD2.exe" [2009-10-09 6937216]

"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Media\DMedia.exe" [2009-08-20 170624]

"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]

"Adobe Acrobat Speed Launcher"="c:\program files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" [2012-01-03 40376]

"Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" [2012-01-03 640440]

"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]

"AdobeCS5ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-07-22 402432]

"SwitchBoard"="c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]

.

c:\users\Liyen\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

Dropbox.lnk - c:\users\Liyen\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-1-18 24246216]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]

"mixer2"=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\keyboard layouts\e0200804]

Ime File REG_SZ SOGOUPY.IME

.

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]

"DisableMonitoring"=dword:00000001

.

R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]

R1 BHDrvx64;BHDrvx64;c:\programdata\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Data\Definitions\BASHDefs\20120123.011\BHDrvx64.sys [2012-01-06 1157240]

R1 IDSVia64;IDSVia64;c:\programdata\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Data\Definitions\IPSDefs\20120201.002\IDSvia64.sys [2011-07-26 488568]

R1 SymIRON;Symantec Iron Driver;c:\windows\system32\Drivers\SEP\0C01029F\136B.105\x64\Ironx64.SYS [x]

R1 SYMNETS;Symantec Network Security WFP Driver;c:\windows\system32\Drivers\SEP\0C01029F\136B.105\x64\SYMNETS.SYS [x]

R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]

R2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [x]

R2 ASMMAP64;ASMMAP64;c:\program files\ATKGFNEX\ASMMAP64.sys [2007-07-24 14904]

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

R2 OberonGameConsoleService;Oberon Media Game Console service;c:\program files (x86)\Asus\Game Park\GameConsole\OberonGameConsoleService.exe [2009-09-15 44312]

R2 SepMasterService;Symantec Endpoint Protection;c:\program files (x86)\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin\ccSvcHst.exe [2011-06-14 137224]

R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS [x]

R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]

R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-01-22 138360]

R3 IntcHdmiAddService;Intel® High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [x]

R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\DRIVERS\L1C62x64.sys [x]

R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys [x]

R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

R3 SyDvCtrl;SyDvCtrl;c:\program files (x86)\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin64\SyDvCtrl64.sys [2011-06-17 29664]

R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]

R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x]

S0 SymDS;Symantec Data Store;c:\windows\system32\Drivers\SEP\0C01029F\136B.105\x64\SYMDS64.SYS [x]

S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\Drivers\SEP\0C01029F\136B.105\x64\SYMEFA64.SYS [x]

S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [x]

.

Inhoud van de 'Gedeelde Taken' map

.

2012-02-02 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3349072658-4253292652-3246423825-1001Core.job

- c:\users\Liyen\AppData\Local\Google\Update\GoogleUpdate.exe [2012-01-26 14:07]

.

2012-02-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3349072658-4253292652-3246423825-1001UA.job

- c:\users\Liyen\AppData\Local\Google\Update\GoogleUpdate.exe [2012-01-26 14:07]

.

--------- x86-64 -----------

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]

@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"

[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]

2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]

@="{64174815-8D98-4CE6-8646-4C039977D808}"

[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]

2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]

@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]

2011-12-05 19:17 97792 ----a-w- c:\users\Liyen\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]

@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]

2011-12-05 19:17 97792 ----a-w- c:\users\Liyen\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]

@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"

[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]

2011-12-05 19:17 97792 ----a-w- c:\users\Liyen\AppData\Roaming\Dropbox\bin\DropboxExt64.14.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"ETDWare"="c:\program files\Elantech\ETDCtrl.exe" [2009-09-30 621440]

"EeeStorageBackup"="c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe" [2009-11-26 1732608]

"AmIcoSinglun64"="c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2009-09-01 323584]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-02-11 162328]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-02-11 386584]

"Persistence"="c:\windows\system32\igfxpers.exe" [2011-02-11 417304]

"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]

"LoadAppInit_DLLs"=0x0

.

------- Bijkomende Scan -------

.

uStart Page = hxxp://asus.msn.com

uLocal Page = c:\windows\system32\blank.htm

mLocal Page = c:\windows\SysWOW64\blank.htm

IE: Afbeelding verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

IE: Append to existing PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html

IE: Convert link target to Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html

IE: Convert link target to existing PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html

IE: Convert to Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html

IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000

IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000

IE: Pagina verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

TCP: DhcpNameServer = 212.54.40.25 212.54.35.25

FF - ProfilePath - c:\users\Liyen\AppData\Roaming\Mozilla\Firefox\Profiles\lug4czmk.default\

FF - prefs.js: browser.search.selectedEngine - Vinden.nl

FF - prefs.js: browser.startup.homepage - hxxp://www.vinden.nl/

.

- - - - ORPHANS VERWIJDERD - - - -

.

Toolbar-Locked - (no file)

AddRemove-Asus_ULSeries_ScreenSaver - c:\windows\system32\Asus_ULSeries_ScreenSaver.scr

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SepMasterService]

"ImagePath"="\"c:\program files (x86)\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin\ccSvcHst.exe\" /s \"Symantec Endpoint Protection\" /m \"c:\program files (x86)\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin\sms.dll\" /prefetch:1"

--

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\SmcService]

"ImagePath"="\"c:\program files (x86)\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin64\Smc.exe\" /prefetch:1"

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10g_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10g_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10g.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.10"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10g.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10g.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10g.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]

@Denied: (A 2) (Everyone)

@="IFlashBroker4"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Symantec\Symantec Endpoint Protection\CurrentVersion]

"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,

00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Symantec\Symantec Endpoint Protection\CurrentVersion]

"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,

00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Voltooingstijd: 2012-02-03 14:22:49

ComboFix-quarantined-files.txt 2012-02-03 13:22

.

Pre-Run: 26.516.701.184 bytes beschikbaar

Post-Run: 26.450.907.136 bytes beschikbaar

.

- - End Of File - - 063B34F822CF2BDF24837AD5B15D7AE2

1 februari 2012

Hoe lang is lang? Ik kan geen combofix.txt vinden

1 februari 2012

Hoe lang duurt de Combofix scan? Ik heb hem laten draaien en na ongeveer 10/15 min had hij 4 delen voltooid, maar hij sloot zich niet af of maakte geen log, ik heb hem toen ong een uur laten draaien en daarna gewoon gestopt. Volgens mij hoort dit niet. Zie bijlage voor wat het combofix scherm liet zien. Ik heb hem gerund als administator en heb mijn antivirusprog uitgedaan en ook mijn internetverbinding. In mijn c-schijf zit nu wel een combofix-icoontje die lijkt op die van deze computer en als ik daarop klik dan wordt deze computer geopend.

29 januari 2012

Het downloaden via de tweede link geeft een virus, gelukkig heeft mijn antivirusprogramma het verwijderd. Wat doet Combofix precies, ik vond de methode die combofix gebruikte zo onprettig uitzien, hij kon iets niet lezen, dus heb ik hem maar gestopt.

25 januari 2012

Niets gevonden, zie bijlage.

25 januari 2012

HiJackthis stappen heb ik gedaan. SogouCloud.exe heb ik gescand met Jotti, SogouPinyin.exe kon ik niet vinden. Ik heb geprobeerd om de Service Pack nogmaals te installeren via Windows Update, ik krijg een Code 80073712 fout. Nieuwe HiJackthis scan:

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 16:22:57, on 25-1-2012

Platform: Windows 7 (WinNT 6.00.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16912)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe

C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe

C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe

C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe

C:\Users\Liyen\AppData\Roaming\Dropbox\bin\Dropbox.exe

C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe

C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe

C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe

C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe

C:\Windows\AsScrPro.exe

C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe

C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin\ccSvcHst.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Asus | MSN

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Asus | MSN

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\bin\IPS\IPSBHO.DLL

O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll

O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll

O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll

O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll

O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll

O4 - HKLM\..\Run: [updateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"

O4 - HKLM\..\Run: [updateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"

O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe

O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe

O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe

O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"

O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"

O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

O4 - HKLM\..\Run: [switchBoard] C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - Startup: Dropbox.lnk = Liyen\AppData\Roaming\Dropbox\bin\Dropbox.exe

O8 - Extra context menu item: Afbeelding verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm

O8 - Extra context menu item: Append to existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html

O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html

O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html

O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html

O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000

O8 - Extra context menu item: Pagina verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL

O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm

O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll

O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe

O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - Unknown owner - C:\Program Files\ATKGFNEX\GFNEXSrv.exe

O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Oberon Media Game Console service (OberonGameConsoleService) - Unknown owner - C:\Program Files (x86)\Asus\Game Park\GameConsole\OberonGameConsoleService.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Symantec Endpoint Protection (SepMasterService) - Symantec Corporation - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin\ccSvcHst.exe

O23 - Service: Symantec Management Client (SmcService) - Symantec Corporation - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin64\Smc.exe

O23 - Service: Symantec Network Access Control (SNAC) - Symantec Corporation - C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin64\snac64.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 12195 bytes

25 januari 2012

Mijn pc situatie is gewijzigd, ik heb nu weer de Windows 7 die bij mijn Asus laptop was meegeleverd. Hij loopt nu nog niet vast *afkloppen*. Ik heb alle updates gedaan, hij wil alleen niet Service Pack 1 downloaden, die update mislukt dan steeds, nl deze:

Windows 7 Service Pack 1 voor x64-systemen (KB976932).

Ik heb al een zelfstandig pakket van microsoft gedownload (windows6.1-KB976932-X64) en deze geprobeerd te downloaden en ik heb de: Hulpprogramma System Update Readiness voor Windows 7 voor x64-systemen (KB947821) [augustus 2011] al geinstalleerd. MBAM heb ik al geinstalleerd en laten runnen, geen kwaadaardige objecten gedetecteerd.

Wat kan ik nu doen om toch de service pack te kunnen downloaden?

Zo ziet mijn pc info eruit volgens HiJackthis:

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 11:24:26, on 25-1-2012

Platform: Windows 7 (WinNT 6.00.3504)

MSIE: Internet Explorer v8.00 (8.00.7600.16912)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe

C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe

C:\Program Files (x86)\ASUS\ASUS Live Update\ALU.exe

C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe

C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe

C:\Program Files (x86)\ASUS\ATKOSD2\ATKOSD2.exe

C:\Program Files (x86)\ASUS\ATK Media\DMedia.exe

C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe

C:\Users\Liyen\AppData\Roaming\Dropbox\bin\Dropbox.exe

C:\Windows\AsScrPro.exe

C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin\ccSvcHst.exe

C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

C:\Program Files (x86)\Windows Media Player\wmplayer.exe

C:\Program Files (x86)\SogouInput\5.1.1.4851\SogouCloud.exe

C:\Users\Liyen\AppData\Local\Temp\SogouPinyin.exe

C:\Program Files (x86)\Tencent\QQIntl\Bin\QQ.exe

C:\Program Files (x86)\Tencent\QQIntl\Bin\TXPlatform.exe

C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Asus | MSN

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Asus | MSN

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

F2 - REG:system.ini: UserInit=userinit.exe

O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)