Mennno

Lid

Bekijk profiel Bekijk hun activiteit

Items
37
Registratiedatum
29 juli 2012
Laatst bezocht
26 oktober 2012

Inhoudstype

Alle activiteit

Profielen

Forums

Store

Product Reviews

Alles dat geplaatst werd door Mennno

Laptop loopt vast

Mennno reageerde op Mennno's topic in Archief Hardware algemeen

De scan zal over 2 uur klaar zijn.
- 1 augustus 2012
- 65 antwoorden
Laptop loopt vast

Mennno reageerde op Mennno's topic in Archief Hardware algemeen

http://speccy.piriform.com/results/8qq0aC2yJTNILntA6716IwY
- 1 augustus 2012
- 65 antwoorden
Laptop loopt vast

Mennno reageerde op Mennno's topic in Archief Hardware algemeen

Opeens verdwijnen er nu ook een aantal afbeeldingen, kan dat door de scans komen? EDIT: Laat maar, heb er nu geen last van, zal wel een internet fout zijn.
- 31 juli 2012
- 65 antwoorden
Laptop loopt vast

Mennno reageerde op Mennno's topic in Archief Hardware algemeen

Laptop liep net voor het eerst vast vandaag. EDIT: In totaal al 4x vast gelopen.
- 31 juli 2012
- 65 antwoorden
Laptop loopt vast

Mennno reageerde op Mennno's topic in Archief Hardware algemeen

ComboFix 12-07-30.03 - Menno 31-07-2012 18:00:22.1.2 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.4026.2576 [GMT 2:00] Gestart vanuit: c:\users\Menno\Downloads\ComboFix.exe AV: Avira Desktop *Disabled/Updated* {F67B4DE5-C0B4-6C3F-0EFF-6C83BD5D0C2C} SP: Avira Desktop *Disabled/Updated* {4D1AAC01-E68E-63B1-344F-57F1C6DA4691} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . C:\Install.exe c:\program files (x86)\Common Files\packardbell.ico c:\programdata\FullRemove.exe c:\users\Menno\AppData\Roaming\.# c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\chrome.manifest c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\chrome\content\background.html c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\chrome\content\browser.xul c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\chrome\content\crossrider.js c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\chrome\content\crossriderapi.js c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\chrome\content\dialog.js c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\chrome\content\lib\faye-browser-min.js c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\chrome\content\manage-apps-style.css c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\chrome\content\manage-apps.html c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\chrome\content\messaging.js c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\chrome\content\options.js c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\chrome\content\options.xul c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\chrome\content\push.html c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\chrome\content\search_dialog.xul c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\chrome\content\update.html c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\defaults\preferences\prefs.js c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\install.rdf c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\locale\en-US\translations.dtd c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\skin\button1.png c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\skin\button2.png c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\skin\button3.png c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\skin\button4.png c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\skin\button5.png c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\skin\crossrider_statusbar.png c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\skin\icon128.png c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\skin\icon16.png c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\skin\icon24.png c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\skin\icon48.png c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\skin\panelarrow-up.png c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\skin\popup.css c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\skin\popup.html c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\skin\popup_binding.xml c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\skin\skin.css c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\crossriderapp498@crossrider.com\skin\update.css c:\users\Menno\AppData\Roaming\RSBot.db c:\users\Menno\videos\SRTtoSUBv11.exe c:\windows\iun6002.exe c:\windows\SysWow64\weber . . (((((((((((((((((((( Bestanden Gemaakt van 2012-06-28 to 2012-07-31 )))))))))))))))))))))))))))))) . . 2012-07-31 16:20 . 2012-07-31 16:20 -------- d-----w- c:\users\Het Gezin\AppData\Local\temp 2012-07-31 16:20 . 2012-07-31 16:20 -------- d-----w- c:\users\Default\AppData\Local\temp 2012-07-31 10:39 . 2012-06-29 10:04 9133488 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{96E7FE92-A23A-4405-B270-3D2A6114F114}\mpengine.dll 2012-07-30 18:04 . 2012-07-30 18:04 -------- d-----w- c:\program files (x86)\YTD Toolbar 2012-07-30 10:45 . 2012-07-30 10:45 388096 ----a-r- c:\users\Menno\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2012-07-30 10:45 . 2012-07-30 10:45 -------- d-----w- c:\program files (x86)\Trend Micro 2012-07-30 10:29 . 2012-07-30 10:29 -------- d-----w- c:\program files\Speccy 2012-07-22 12:24 . 2012-07-22 12:24 -------- d-----w- c:\program files (x86)\uTorrent 2012-07-22 12:24 . 2012-07-31 15:59 -------- d-----w- c:\users\Menno\AppData\Roaming\uTorrent 2012-07-20 23:14 . 2012-07-21 13:09 -------- d-----w- c:\users\Menno\AppData\Roaming\Systweak 2012-07-20 23:14 . 2012-07-16 12:25 18856 ----a-w- c:\windows\system32\roboot64.exe 2012-07-20 23:10 . 2012-07-20 23:10 22528 ----a-w- c:\windows\system32\drivers\nhcDriver.sys 2012-07-20 23:10 . 2012-07-20 23:10 -------- d-----w- c:\program files (x86)\Notebook Hardware Control 2012-07-20 14:36 . 2012-07-20 14:36 -------- d-----w- c:\program files\CCleaner 2012-07-20 10:39 . 2012-06-12 03:08 3148800 ----a-w- c:\windows\system32\win32k.sys 2012-07-04 14:36 . 2012-07-04 14:36 -------- d-----w- c:\programdata\YTD Video Downloader . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-07-28 15:29 . 2012-04-23 20:30 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2012-07-28 15:29 . 2011-06-08 19:29 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2012-07-20 10:33 . 2010-12-15 01:28 59701280 ----a-w- c:\windows\system32\MRT.exe 2012-06-28 18:23 . 2012-05-05 11:13 476976 ----a-w- c:\windows\SysWow64\npdeployJava1.dll 2012-06-28 18:23 . 2011-01-29 19:41 472880 ----a-w- c:\windows\SysWow64\deployJava1.dll 2012-06-17 08:56 . 2012-06-17 08:56 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys 2012-06-02 22:19 . 2012-06-22 10:23 38424 ----a-w- c:\windows\system32\wups.dll 2012-06-02 22:19 . 2012-06-22 10:24 2428952 ----a-w- c:\windows\system32\wuaueng.dll 2012-06-02 22:19 . 2012-06-22 10:24 57880 ----a-w- c:\windows\system32\wuauclt.exe 2012-06-02 22:19 . 2012-06-22 10:24 44056 ----a-w- c:\windows\system32\wups2.dll 2012-06-02 22:19 . 2012-06-22 10:23 701976 ----a-w- c:\windows\system32\wuapi.dll 2012-06-02 22:15 . 2012-06-22 10:24 2622464 ----a-w- c:\windows\system32\wucltux.dll 2012-06-02 22:15 . 2012-06-22 10:23 99840 ----a-w- c:\windows\system32\wudriver.dll 2012-06-02 13:19 . 2012-06-22 10:22 186752 ----a-w- c:\windows\system32\wuwebv.dll 2012-06-02 13:15 . 2012-06-22 10:22 36864 ----a-w- c:\windows\system32\wuapp.exe 2012-05-31 10:25 . 2010-12-14 20:39 279656 ------w- c:\windows\system32\MpSigStub.exe 2012-05-08 13:18 . 2011-10-22 13:10 98848 ----a-w- c:\windows\system32\drivers\avgntflt.sys 2012-05-08 13:18 . 2011-10-22 13:10 132832 ----a-w- c:\windows\system32\drivers\avipbb.sys 2012-05-04 11:06 . 2012-06-13 08:35 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe 2012-05-04 10:03 . 2012-06-13 08:35 3968368 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe 2012-05-04 10:03 . 2012-06-13 08:35 3913072 ----a-w- c:\windows\SysWow64\ntoskrnl.exe . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Spotify Web Helper"="c:\users\Menno\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2012-06-04 932528] "DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "BackupManagerTray"="c:\program files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe" [2010-03-08 258560] "OOTag"="c:\program files (x86)\Packard Bell\OOBEOffer\OOTag.exe" [2010-02-23 13856] "LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2009-08-18 1157640] "VideoWebCamera"="c:\program files (x86)\VideoWebCamera\VideoWebCamera.exe" [2010-03-11 1541472] "IJNetworkScanUtility"="c:\program files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe" [2009-05-19 136544] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712] "RIMBBLaunchAgent.exe"="c:\program files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe" [2011-11-02 90448] "APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-05-30 59280] "avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2012-05-08 348624] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696] "QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2012-04-18 421888] "iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-06-07 421776] . c:\users\Menno\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ OneNote 2010 Schermopname en Snel starten.lnk - c:\program files (x86)\Microsoft Office\Office14\ONENOTEM.EXE [2010-12-21 227712] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux1"=wdmaud.drv . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp . R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 gupdate;Google Updateservice (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-14 135664] R2 HsfXAudioService;HsfXAudioService;c:\windows\system32\svchost.exe [2009-07-14 27136] R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-02-29 158856] R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-28 250056] R3 gupdatem;Google Update-service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-14 135664] R3 NETw5s64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;c:\windows\system32\DRIVERS\NETw5s64.sys [2009-10-05 6952960] R3 netw5v64;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\netw5v64.sys [2009-06-10 5434368] R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-09-02 225280] R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864] R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312] R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392] R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys [2012-02-15 52736] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-12-15 1255736] R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184] S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2008-06-16 55024] S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2011-09-15 27760] S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-06-17 283200] S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] S2 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;c:\program files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-10-09 169312] S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928] S2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2012-05-08 86224] S2 ePowerSvc;Acer ePower Service;c:\program files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [2010-02-26 841248] S2 GREGService;GREGService;c:\program files (x86)\Packard Bell\Registration\GREGsvc.exe [2010-01-08 23584] S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe [2010-03-08 250368] S2 Updater Service;Updater Service;c:\program files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2010-01-28 243232] S3 IntcHdmiAddService;Intel® High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [2009-07-09 139264] S3 k57nd60a;Broadcom NetLink Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [2009-06-06 317480] S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920] . . --- Andere Services/Drivers In Geheugen --- . *NewlyCreated* - WS2IFSL . Inhoud van de 'Gedeelde Taken' map . 2012-07-31 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-23 15:29] . 2012-07-31 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-14 20:48] . 2012-07-31 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-14 20:48] . 2012-07-31 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-470499141-1940763738-2483332497-1001Core.job - c:\users\Menno\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-15 20:54] . 2012-07-31 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-470499141-1940763738-2483332497-1001UA.job - c:\users\Menno\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-15 20:54] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-07-28 7982112] "Acer ePower Management"="c:\program files\Packard Bell\Packard Bell Power Management\ePowerTray.exe" [2010-02-26 818720] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-03-15 165912] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-03-15 387608] "Persistence"="c:\windows\system32\igfxpers.exe" [2010-03-15 365592] "PLFSetI"="c:\windows\PLFSetI.exe" [2009-12-16 206208] "CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2009-07-26 2184520] "CanonSolutionMenu"="c:\program files (x86)\Canon\SolutionMenu\CNSLMAIN.exe" [2009-03-17 767312] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "LoadAppInit_DLLs"=0x0 . ------- Bijkomende Scan ------- . uLocal Page = c:\windows\system32\blank.htm mStart Page = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0413&m=easynote_lj65&r=27361210r215l0434z175f47n2r750 mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local IE: &Verzenden naar OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105 IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000 IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html TCP: DhcpNameServer = 213.46.228.196 62.179.104.196 FF - ProfilePath - c:\users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\ FF - prefs.js: browser.search.selectedEngine - Yahoo FF - prefs.js: keyword.URL - hxxp://nl.search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=937811&p= . - - - - ORPHANS VERWIJDERD - - - - . Toolbar-Locked - (no file) Wow6432Node-HKCU-Run-EA Core - c:\program files (x86)\Electronic Arts\EADM\Core.exe Wow6432Node-HKLM-Run-UnlockerAssistant - c:\program files (x86)\Unlocker\UnlockerAssistant.exe Toolbar-Locked - (no file) HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe AddRemove-RewardsArcade - c:\program files (x86)\RewardsArcade\Uninstall.exe . . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_USERS\S-1-5-21-470499141-1940763738-2483332497-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice] @Denied: (2) (LocalSystem) "Progid"="WindowsLiveMail.Email.1" . [HKEY_USERS\S-1-5-21-470499141-1940763738-2483332497-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice] @Denied: (2) (LocalSystem) "Progid"="WindowsLiveMail.VCard.1" . [HKEY_USERS\S-1-5-21-470499141-1940763738-2483332497-1001_Classes\Wow6432Node\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}] @Denied: (Full) (Everyone) @Allowed: (Read) (RestrictedCode) "scansk"=hex(0):f5,d6,b0,c7,b0,58,08,7f,01,5f,ee,07,5f,4d,63,cf,a0,8d,f1,44,b1, b1,80,d6,55,9f,1c,31,64,2a,d7,36,b2,16,25,19,c4,53,c0,06,00,00,00,00,00,00,\ . [HKEY_USERS\S-1-5-21-470499141-1940763738-2483332497-1001_Classes\Wow6432Node\CLSID\{ed28653d-3509-4458-b2b4-6e87e86eb8d7}] @Denied: (Full) (Everyone) @Allowed: (Read) (RestrictedCode) "Model"=dword:000000c9 "Therad"=dword:00000016 . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_268_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_268_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_268.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_268.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_268.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_268.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*] @="?????????????????? v1" . [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID] @="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}" . [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*] @="?????????????????? v2" . [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID] @="{9BE31822-FDAD-461B-AD51-BE1D1C159921}" . [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}] @Denied: (A) (Everyone) "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}" . [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3] @Denied: (A) (Everyone) . [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0] "Key"="ActionsPane3" "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd" . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Andere Aktieve Processen ------------------------ . c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe c:\program files (x86)\Canon\IJPLM\IJPLMSVC.EXE . ************************************************************************** . Voltooingstijd: 2012-07-31 18:45:18 - machine werd herstart ComboFix-quarantined-files.txt 2012-07-31 16:45 . Pre-Run: 220.864.393.216 bytes beschikbaar Post-Run: 220.685.783.040 bytes beschikbaar . - - End Of File - - 866386AB02FF08CFA2C327F82BFB7E5D
- 31 juli 2012
- 65 antwoorden
Laptop loopt vast

Mennno reageerde op Mennno's topic in Archief Hardware algemeen

Gister 1x dat hij vast liep (een paar uur nadat ik mijn laatste logje had gepost), vandaag even aankijken wat mijn laptop doet en zal dan posten of er nog wat gebeurd is. Heb wel het idee dat de laptop sneller is geworden, niet dat hij hiervoor traag was, maar nu is het opstarten zo gedaan. PS: Sorry voor dubbele post, zag die pagina 2 niet.
- 31 juli 2012
- 65 antwoorden
Laptop loopt vast

Mennno reageerde op Mennno's topic in Archief Hardware algemeen

Gister is mijn laptop 1x vastgelopen, aantal uren na mijn laatste post van het logje. Vandaag aankijken of het weer gebeurd en zal dan laten weten hoe het verlopen is.
- 31 juli 2012
- 65 antwoorden
Laptop loopt vast

Mennno reageerde op Mennno's topic in Archief Hardware algemeen

Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 20:28:12, on 30-7-2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16447) Boot mode: Normal Running processes: C:\Windows\PLFSetI.exe C:\Users\Menno\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe C:\Program Files (x86)\Launch Manager\LManager.exe C:\Program Files (x86)\VideoWebCamera\VideoWebCamera.exe C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Users\Menno\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Menno\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Menno\AppData\Local\Google\Chrome\Application\chrome.exe C:\Windows\SysWOW64\rundll32.exe C:\Users\Menno\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Menno\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Menno\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Menno\AppData\Local\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = iGoogle Redirect R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll O4 - HKLM\..\Run: [backupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe" -h -k O4 - HKLM\..\Run: [OOTag] C:\Program Files (x86)\Packard Bell\OOBEOffer\OOTag.exe O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe O4 - HKLM\..\Run: [VideoWebCamera] "C:\Program Files (x86)\VideoWebCamera\VideoWebCamera.exe" -a O4 - HKLM\..\Run: [iJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [unlockerAssistant] "C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKCU\..\Run: [Google Update] "C:\Users\Menno\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent O4 - HKCU\..\Run: [spotify Web Helper] "C:\Users\Menno\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Startup: OneNote 2010 Schermopname en Snel starten.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - http://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework//microsoft/wrc32.ocx O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Active File Monitor V8 (AdobeActiveFileMonitor8.0) - Adobe Systems Incorporated - c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira Realtime Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: ASP.NET-statusservice (aspnet_state) - Unknown owner - C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (file missing) O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: Nero BackItUp Scheduler 4.0 - Unknown owner - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Updater Service - Acer Group - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 14736 bytes
- 30 juli 2012
- 65 antwoorden
Laptop loopt vast

Mennno reageerde op Mennno's topic in Archief Hardware algemeen

Hier is het logje van AdwCleaner, die van MBAM & HijackThis volgen nog: # AdwCleaner v1.703 - Logfile created 07/30/2012 at 20:12:06 # Updated 20/07/2012 by Xplode # Operating system : Windows 7 Home Premium Service Pack 1 (64 bits) # User : Menno - MENNO-LAPTOP # Running from : C:\Users\Menno\Downloads\adwcleaner.exe # Option [Delete] ***** [services] ***** Stopped & Deleted : Application Updater ***** [Files / Folders] ***** Folder Deleted : C:\Users\Menno\AppData\Local\APN Folder Deleted : C:\Users\Menno\AppData\LocalLow\AskToolbar Folder Deleted : C:\Users\Menno\AppData\LocalLow\Search Settings Folder Deleted : C:\Users\Het Gezin\AppData\LocalLow\Search Settings Folder Deleted : C:\Users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\extensions\{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF} Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DealPly Folder Deleted : C:\Program Files (x86)\Application Updater Folder Deleted : C:\Program Files (x86)\DealPly Folder Deleted : C:\Program Files (x86)\RewardsArcade Folder Deleted : C:\Program Files (x86)\Common Files\spigot File Deleted : C:\Users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\searchplugins\Askcom.xml ***** [Registry] ***** Key Deleted : HKCU\Software\AppDataLow\Software\RewardsArcade Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings Key Deleted : HKCU\Software\Cr_Installer Key Deleted : HKCU\Software\DealPly Key Deleted : HKCU\Software\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje Key Deleted : HKCU\Software\Search Settings Key Deleted : HKCU\Software\Softonic Key Deleted : HKCU\Software\Zugo Key Deleted : HKLM\SOFTWARE\Application Updater Key Deleted : HKLM\SOFTWARE\DealPly Key Deleted : HKLM\SOFTWARE\DT Soft Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje Key Deleted : HKLM\SOFTWARE\Messenger Plus!\OpenCandy Key Deleted : HKLM\SOFTWARE\Microsoft\SystemCertificates\AuthRoot\Certificates\0563B8630D62D75ABBC8AB1E4BDFB5A899B24D43 Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DealPly Key Deleted : HKLM\SOFTWARE\OpenCandy NSIS SDK Key Deleted : HKLM\SOFTWARE\Search Settings ***** [Registre - GUID] ***** Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2D5E2D34-BED5-4B9F-9793-A31E26E6806E} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{18EAB056-9057-F224-FD4C-1F6569C4D8D2} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{F3FEE66E-E034-436A-86E4-9690573BEE8A} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F3FEE66E-E034-436A-86E4-9690573BEE8A} ***** [internet Browsers] ***** -\\ Internet Explorer v9.0.8112.16421 [OK] Registry is clean. -\\ Mozilla Firefox v8.0.1 (nl) Profile name : default File : C:\Users\Menno\AppData\Roaming\Mozilla\Firefox\Profiles\pke2uvtt.default\prefs.js Deleted : user_pref("browser.search.defaultengine", "Ask.com"); Deleted : user_pref("browser.search.order.1", "Ask.com"); Deleted : user_pref("browser.startup.homepage", "hxxp://nl.ask.com/?l=dis&o=14200"); Deleted : user_pref("extensions.crossriderapp498.498.InstallationThankYouPage", true); Deleted : user_pref("extensions.crossriderapp498.498.InstallationTime", 1335895721); Deleted : user_pref("extensions.crossriderapp498.498.InstallationUserSettings.searchUserConifrmation", false); Deleted : user_pref("extensions.crossriderapp498.498.InstallationUserSettings.setHomepage", false); Deleted : user_pref("extensions.crossriderapp498.498.InstallationUserSettings.setNewTab", false); Deleted : user_pref("extensions.crossriderapp498.498.InstallationUserSettings.setSearch", false); Deleted : user_pref("extensions.crossriderapp498.498.active", true); Deleted : user_pref("extensions.crossriderapp498.498.addressbar", ""); Deleted : user_pref("extensions.crossriderapp498.498.affid", "0"); Deleted : user_pref("extensions.crossriderapp498.498.backgroundjs", "\n\n_GPL_PID = 18;\nfunction parse_url(st[...] Deleted : user_pref("extensions.crossriderapp498.498.backgroundver", 9); Deleted : user_pref("extensions.crossriderapp498.498.can_run_bg_code", true); Deleted : user_pref("extensions.crossriderapp498.498.certdomaininstaller", ""); Deleted : user_pref("extensions.crossriderapp498.498.changeprevious", false); Deleted : user_pref("extensions.crossriderapp498.498.cookie.InstallationTime.expiration", "Fri Feb 01 2030 00:[...] Deleted : user_pref("extensions.crossriderapp498.498.cookie.InstallationTime.value", "1335895721"); Deleted : user_pref("extensions.crossriderapp498.498.cookie.InstallerParams.expiration", "Fri Feb 01 2030 00:0[...] Deleted : user_pref("extensions.crossriderapp498.498.cookie._GPL_aoi.expiration", "Fri Feb 01 2030 00:00:00 GM[...] Deleted : user_pref("extensions.crossriderapp498.498.cookie._GPL_aoi.value", "1335895721"); Deleted : user_pref("extensions.crossriderapp498.498.cookie._GPL_crr.expiration", "Fri Feb 01 2030 00:00:00 GM[...] Deleted : user_pref("extensions.crossriderapp498.498.cookie._GPL_crr.value", "1339681553"); Deleted : user_pref("extensions.crossriderapp498.498.cookie._GPL_geo.expiration", "Thu Jun 21 2012 15:45:53 GM[...] Deleted : user_pref("extensions.crossriderapp498.498.cookie._GPL_geo.value", "%7B%22geoplugin_request%22%3A%22[...] Deleted : user_pref("extensions.crossriderapp498.498.cookie._GPL_hotfix20111102645.expiration", "Fri Feb 01 20[...] Deleted : user_pref("extensions.crossriderapp498.498.cookie._GPL_hotfix20111102645.value", "%221%22"); Deleted : user_pref("extensions.crossriderapp498.498.cookie._GPL_parent_zoneid.expiration", "Fri Feb 01 2030 0[...] Deleted : user_pref("extensions.crossriderapp498.498.cookie._GPL_parent_zoneid.value", "%2214019%22"); Deleted : user_pref("extensions.crossriderapp498.498.cookie._GPL_product_id.expiration", "Fri Feb 01 2030 00:0[...] Deleted : user_pref("extensions.crossriderapp498.498.cookie._GPL_product_id.value", "%2221%22"); Deleted : user_pref("extensions.crossriderapp498.498.cookie._GPL_zoneid.expiration", "Fri Feb 01 2030 00:00:00[...] Deleted : user_pref("extensions.crossriderapp498.498.cookie._GPL_zoneid.value", "%2233517%22"); Deleted : user_pref("extensions.crossriderapp498.498.description", "RewardsArcade is a platform that allows us[...] Deleted : user_pref("extensions.crossriderapp498.498.domain", "www.rewardsarcade.com"); Deleted : user_pref("extensions.crossriderapp498.498.emailsig", ""); Deleted : user_pref("extensions.crossriderapp498.498.enablesearch", false); Deleted : user_pref("extensions.crossriderapp498.498.exposesites", ""); Deleted : user_pref("extensions.crossriderapp498.498.fbremoteurl", ""); Deleted : user_pref("extensions.crossriderapp498.498.group", 0); Deleted : user_pref("extensions.crossriderapp498.498.homepage", ""); Deleted : user_pref("extensions.crossriderapp498.498.iframe", false); Deleted : user_pref("extensions.crossriderapp498.498.js", "\n\nvar _GPL_PID=18;\nArray.prototype.indexOf||(Arr[...] Deleted : user_pref("extensions.crossriderapp498.498.manifesturl", ""); Deleted : user_pref("extensions.crossriderapp498.498.name", "RewardsArcade"); Deleted : user_pref("extensions.crossriderapp498.498.newtab", ""); Deleted : user_pref("extensions.crossriderapp498.498.opensearch", ""); Deleted : user_pref("extensions.crossriderapp498.498.plugins.plugin_13.code", "(function©{c.selectedText=fun[...] Deleted : user_pref("extensions.crossriderapp498.498.plugins.plugin_13.name", "CrossriderAppUtils"); Deleted : user_pref("extensions.crossriderapp498.498.plugins.plugin_13.ver", 1); Deleted : user_pref("extensions.crossriderapp498.498.plugins.plugin_14.code", "\"undefined\"===typeof appAPI&&[...] Deleted : user_pref("extensions.crossriderapp498.498.plugins.plugin_14.name", "CrossriderUtils"); Deleted : user_pref("extensions.crossriderapp498.498.plugins.plugin_14.ver", 1); Deleted : user_pref("extensions.crossriderapp498.498.plugins.plugin_15.code", "(function(e){function u(c,{fo[...] Deleted : user_pref("extensions.crossriderapp498.498.plugins.plugin_15.name", "FacebookFFIE"); Deleted : user_pref("extensions.crossriderapp498.498.plugins.plugin_15.ver", 1); Deleted : user_pref("extensions.crossriderapp498.498.plugins.plugin_16.code", "(function(b,a){function h(){var[...] Deleted : user_pref("extensions.crossriderapp498.498.plugins.plugin_16.name", "FFAppAPIWrapper"); Deleted : user_pref("extensions.crossriderapp498.498.plugins.plugin_16.ver", 3); Deleted : user_pref("extensions.crossriderapp498.498.plugins.plugin_17.code", "var $$jquery;\n(function(l,n){f[...] Deleted : user_pref("extensions.crossriderapp498.498.plugins.plugin_17.name", "jQuery"); Deleted : user_pref("extensions.crossriderapp498.498.plugins.plugin_17.ver", 1); Deleted : user_pref("extensions.crossriderapp498.498.plugins_lists.plugins_0", "17,14,16"); Deleted : user_pref("extensions.crossriderapp498.498.plugins_lists.plugins_1", "17,14,13,16,15"); Deleted : user_pref("extensions.crossriderapp498.498.pluginsurl", "hxxp://app-static.crossrider.com/plugin/app[...] Deleted : user_pref("extensions.crossriderapp498.498.pluginsversion", 6); Deleted : user_pref("extensions.crossriderapp498.498.premium", true); Deleted : user_pref("extensions.crossriderapp498.498.publisher", "215 Apps"); Deleted : user_pref("extensions.crossriderapp498.498.searchstatus", 0); Deleted : user_pref("extensions.crossriderapp498.498.setnewtab", false); Deleted : user_pref("extensions.crossriderapp498.498.settingsurl", ""); Deleted : user_pref("extensions.crossriderapp498.498.thankyou", "hxxp://www.rewardsarcade.com/r.php?app_id=498[...] Deleted : user_pref("extensions.crossriderapp498.498.updateinterval", 360); Deleted : user_pref("extensions.crossriderapp498.498.ver", 89); Deleted : user_pref("extensions.crossriderapp498.apps", "498"); Deleted : user_pref("extensions.crossriderapp498.bic", "137ad6395bb6bcb4a02e553254f45b3f"); Deleted : user_pref("extensions.crossriderapp498.cid", 498); Deleted : user_pref("extensions.crossriderapp498.firstrun", false); Deleted : user_pref("extensions.crossriderapp498.hadappinstalled", true); Deleted : user_pref("extensions.crossriderapp498.installationdate", 1338643814); Deleted : user_pref("extensions.crossriderapp498.lastcheck", 22328026); Deleted : user_pref("extensions.crossriderapp498.lastcheckitem", 22328026); Deleted : user_pref("extensions.crossriderapp498.misc.lastBgWorkerTimer", "1338644715377"); Deleted : user_pref("extensions.crossriderapp498.misc.lastDomWorkerTimer", "1338644715365"); Deleted : user_pref("extensions.enabledAddons", "{EB9394A3-4AD6-4918-9537-31A1FD8E8EDF}:2.0,wtxpcom@mybrowserb[...] -\\ Google Chrome v20.0.1132.57 File : C:\Users\Menno\AppData\Local\Google\Chrome\User Data\Default\Preferences Deleted : "homepage": "hxxp://www.ask.com/?l=dis&o=14200cr", Deleted : "homepage": "hxxp://www.ask.com/?l=dis&o=14200cr", ************************* AdwCleaner[s1].txt - [11426 octets] - [30/07/2012 20:12:06] ########## EOF - C:\AdwCleaner[s1].txt - [11555 octets] ########## _________________________________________________________________________ Malwarebytes Anti-Malware (-evaluatieversie-) 1.62.0.1300 www.malwarebytes.org Databaseversie: v2012.07.30.09 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Menno :: MENNO-LAPTOP [administrator] Realtime bescherming: Uitgeschakeld 30-7-2012 20:18:31 mbam-log-2012-07-30 (20-18-31).txt Scantype: Snelle scan Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM Uitgeschakelde scanopties: P2P Objecten gescand: 216295 Verstreken tijd: 6 minuut/minuten, 9 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerwaarden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerdata gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Mappen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Bestanden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) (einde)
- 30 juli 2012
- 65 antwoorden
Laptop loopt vast

Mennno reageerde op Mennno's topic in Archief Hardware algemeen

Onderin heb ik ook nog een logje van me virusscanner gedaan, misschien is dit relevant. Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 12:48:20, on 30-7-2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16447) Boot mode: Normal Running processes: C:\Windows\PLFSetI.exe C:\Users\Menno\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe C:\Program Files (x86)\Launch Manager\LManager.exe C:\Program Files (x86)\VideoWebCamera\VideoWebCamera.exe C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe C:\Users\Menno\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Menno\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Menno\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Menno\AppData\Local\Google\Chrome\Application\chrome.exe C:\Windows\SysWOW64\rundll32.exe C:\Users\Menno\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Menno\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\Menno\AppData\Local\Google\Chrome\Application\chrome.exe C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Ask.com Nederland - De andere zoekmachine R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = iGoogle Redirect R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = iGoogle Redirect R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: YouTube Downloader Toolbar - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YouTube Downloader Toolbar\IE\6.1\youtubedownloaderToolbarIE.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Canon Easy-WebPrint EX BHO - {3785D0AD-BFFF-47F6-BF5B-A587C162FED9} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexbho.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O2 - BHO: DealPly - {A6174F27-1FFF-E1D6-A93F-BA48AD5DD448} - C:\Program Files (x86)\DealPly\DealPlyIE.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O2 - BHO: YouTube Downloader Toolbar - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YouTube Downloader Toolbar\IE\6.1\youtubedownloaderToolbarIE.dll O3 - Toolbar: Canon Easy-WebPrint EX - {759D9886-0C6F-4498-BAB6-4A5F47C6C72F} - C:\Program Files (x86)\Canon\Easy-WebPrint EX\ewpexhlp.dll O3 - Toolbar: YouTube Downloader Toolbar - {F3FEE66E-E034-436a-86E4-9690573BEE8A} - C:\Program Files (x86)\YouTube Downloader Toolbar\IE\6.1\youtubedownloaderToolbarIE.dll O4 - HKLM\..\Run: [backupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe" -h -k O4 - HKLM\..\Run: [OOTag] C:\Program Files (x86)\Packard Bell\OOBEOffer\OOTag.exe O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe O4 - HKLM\..\Run: [VideoWebCamera] "C:\Program Files (x86)\VideoWebCamera\VideoWebCamera.exe" -a O4 - HKLM\..\Run: [iJNetworkScanUtility] C:\Program Files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [RIMBBLaunchAgent.exe] C:\Program Files (x86)\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [unlockerAssistant] "C:\Program Files (x86)\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [searchSettings] "C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe" O4 - HKCU\..\Run: [Google Update] "C:\Users\Menno\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent O4 - HKCU\..\Run: [spotify Web Helper] "C:\Users\Menno\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - Startup: OneNote 2010 Schermopname en Snel starten.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {C345E174-3E87-4F41-A01C-B066A90A49B4} (WRC Class) - http://trial.trymicrosoftoffice.com/trialoaa/buymsoffice_assets/framework//microsoft/wrc32.ocx O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Active File Monitor V8 (AdobeActiveFileMonitor8.0) - Adobe Systems Incorporated - c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira Realtime Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe O23 - Service: ASP.NET-statusservice (aspnet_state) - Unknown owner - C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (file missing) O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: Nero BackItUp Scheduler 4.0 - Unknown owner - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: Updater Service - Acer Group - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 15775 bytes _________________________________________________________________________________________________________ Avira Free Antivirus Report file date: zondag 29 juli 2012 14:00 Scanning for 4004854 virus strains and unwanted programs. The program is running as an unrestricted full version. Online services are available. Licensee : Avira AntiVir Personal - Free Antivirus Serial number : 0000149996-ADJIE-0000001 Platform : Windows 7 Home Premium Windows version : (Service Pack 1) [6.1.7601] Boot mode : Normally booted Username : SYSTEM Computer name : MENNO-LAPTOP Version information: BUILD.DAT : 12.0.0.1125 41829 Bytes 2-5-2012 17:40:00 AVSCAN.EXE : 12.3.0.15 466896 Bytes 8-5-2012 13:18:30 AVSCAN.DLL : 12.3.0.15 54736 Bytes 8-5-2012 13:18:30 LUKE.DLL : 12.3.0.15 68304 Bytes 8-5-2012 13:18:31 AVSCPLR.DLL : 12.3.0.14 97032 Bytes 8-5-2012 13:18:32 AVREG.DLL : 12.3.0.17 232200 Bytes 11-5-2012 13:19:06 VBASE000.VDF : 7.10.0.0 19875328 Bytes 6-11-2009 18:18:34 VBASE001.VDF : 7.11.0.0 13342208 Bytes 14-12-2010 09:07:39 VBASE002.VDF : 7.11.19.170 14374912 Bytes 20-12-2011 22:21:34 VBASE003.VDF : 7.11.21.238 4472832 Bytes 1-2-2012 16:33:23 VBASE004.VDF : 7.11.26.44 4329472 Bytes 28-3-2012 13:43:01 VBASE005.VDF : 7.11.34.116 4034048 Bytes 29-6-2012 19:35:03 VBASE006.VDF : 7.11.34.117 2048 Bytes 29-6-2012 19:35:03 VBASE007.VDF : 7.11.34.118 2048 Bytes 29-6-2012 19:35:03 VBASE008.VDF : 7.11.34.119 2048 Bytes 29-6-2012 19:35:03 VBASE009.VDF : 7.11.34.120 2048 Bytes 29-6-2012 19:35:03 VBASE010.VDF : 7.11.34.121 2048 Bytes 29-6-2012 19:35:03 VBASE011.VDF : 7.11.34.122 2048 Bytes 29-6-2012 19:35:03 VBASE012.VDF : 7.11.34.123 2048 Bytes 29-6-2012 19:35:03 VBASE013.VDF : 7.11.34.124 2048 Bytes 29-6-2012 19:35:03 VBASE014.VDF : 7.11.34.201 169472 Bytes 2-7-2012 13:11:39 VBASE015.VDF : 7.11.35.19 122368 Bytes 4-7-2012 13:51:00 VBASE016.VDF : 7.11.35.87 146944 Bytes 6-7-2012 10:21:45 VBASE017.VDF : 7.11.35.143 126464 Bytes 9-7-2012 10:21:46 VBASE018.VDF : 7.11.35.235 151552 Bytes 12-7-2012 10:21:47 VBASE019.VDF : 7.11.36.45 118784 Bytes 13-7-2012 10:21:52 VBASE020.VDF : 7.11.36.107 123904 Bytes 16-7-2012 10:22:01 VBASE021.VDF : 7.11.36.147 238592 Bytes 17-7-2012 10:22:06 VBASE022.VDF : 7.11.36.209 135168 Bytes 19-7-2012 10:22:11 VBASE023.VDF : 7.11.37.19 116224 Bytes 21-7-2012 10:57:48 VBASE024.VDF : 7.11.37.79 149504 Bytes 23-7-2012 14:04:11 VBASE025.VDF : 7.11.37.137 992256 Bytes 25-7-2012 14:04:12 VBASE026.VDF : 7.11.37.195 120832 Bytes 26-7-2012 14:04:12 VBASE027.VDF : 7.11.37.196 2048 Bytes 26-7-2012 14:04:12 VBASE028.VDF : 7.11.37.197 2048 Bytes 26-7-2012 14:04:12 VBASE029.VDF : 7.11.37.198 2048 Bytes 26-7-2012 14:04:12 VBASE030.VDF : 7.11.37.199 2048 Bytes 26-7-2012 14:04:12 VBASE031.VDF : 7.11.37.246 141312 Bytes 29-7-2012 11:59:18 Engine version : 8.2.10.120 AEVDF.DLL : 8.1.2.10 102772 Bytes 20-7-2012 10:23:44 AESCRIPT.DLL : 8.1.4.36 459131 Bytes 28-7-2012 14:04:15 AESCN.DLL : 8.1.8.2 131444 Bytes 27-1-2012 15:36:42 AESBX.DLL : 8.2.5.12 606578 Bytes 14-6-2012 12:44:02 AERDL.DLL : 8.1.9.15 639348 Bytes 8-9-2011 21:16:06 AEPACK.DLL : 8.3.0.18 807287 Bytes 28-7-2012 14:04:15 AEOFFICE.DLL : 8.1.2.42 201083 Bytes 20-7-2012 10:23:32 AEHEUR.DLL : 8.1.4.80 5075318 Bytes 28-7-2012 14:04:14 AEHELP.DLL : 8.1.23.2 258422 Bytes 28-6-2012 19:34:51 AEGEN.DLL : 8.1.5.34 434548 Bytes 20-7-2012 10:22:33 AEEXP.DLL : 8.1.0.72 86389 Bytes 28-7-2012 14:04:15 AEEMU.DLL : 8.1.3.2 393587 Bytes 20-7-2012 10:22:27 AECORE.DLL : 8.1.27.2 201078 Bytes 20-7-2012 10:22:25 AEBB.DLL : 8.1.1.0 53618 Bytes 1-9-2011 21:46:01 AVWINLL.DLL : 12.3.0.15 27344 Bytes 8-5-2012 13:18:30 AVPREF.DLL : 12.3.0.15 51920 Bytes 8-5-2012 13:18:30 AVREP.DLL : 12.3.0.15 179208 Bytes 8-5-2012 13:18:32 AVARKT.DLL : 12.3.0.15 211408 Bytes 8-5-2012 13:18:30 AVEVTLOG.DLL : 12.3.0.15 169168 Bytes 8-5-2012 13:18:30 SQLITE3.DLL : 3.7.0.1 398288 Bytes 8-5-2012 13:18:31 AVSMTP.DLL : 12.3.0.15 63440 Bytes 8-5-2012 13:18:30 NETNT.DLL : 12.3.0.15 17104 Bytes 8-5-2012 13:18:31 RCIMAGE.DLL : 12.3.0.15 4450000 Bytes 8-5-2012 13:18:30 RCTEXT.DLL : 12.3.0.15 96720 Bytes 8-5-2012 13:18:30 Configuration settings for the scan: Jobname.............................: Complete system scan Configuration file..................: C:\program files (x86)\avira\antivir desktop\sysscan.avp Logging.............................: default Primary action......................: Interactive Secondary action....................: Ignore Scan master boot sector.............: on Scan boot sector....................: on Boot sectors........................: C:, Process scan........................: on Extended process scan...............: on Scan registry.......................: on Search for rootkits.................: on Integrity checking of system files..: off Scan all files......................: All files Scan archives.......................: on Recursion depth.....................: 20 Smart extensions....................: on Macro heuristic.....................: on File heuristic......................: extended Start of the scan: zondag 29 juli 2012 14:00 Starting master boot sector scan: Master boot sector HD0 [iNFO] No virus was found! Start scanning boot sectors: Boot sector 'C:\' [iNFO] No virus was found! Starting search for hidden objects. While loading the module (AVARKT.DLL) the following error occured: The file does not exist! AVARKT.DLL The scan of running processes will be started Scan process 'chrome.exe' - '45' Module(s) have been scanned Scan process 'avscan.exe' - '76' Module(s) have been scanned Scan process 'chrome.exe' - '76' Module(s) have been scanned Scan process 'chrome.exe' - '68' Module(s) have been scanned Scan process 'chrome.exe' - '45' Module(s) have been scanned Scan process 'chrome.exe' - '93' Module(s) have been scanned Scan process 'SearchSettings.exe' - '33' Module(s) have been scanned Scan process 'iTunesHelper.exe' - '72' Module(s) have been scanned Scan process 'jusched.exe' - '25' Module(s) have been scanned Scan process 'avgnt.exe' - '78' Module(s) have been scanned Scan process 'RIMBBLaunchAgent.exe' - '45' Module(s) have been scanned Scan process 'CNMNSUT.exe' - '37' Module(s) have been scanned Scan process 'VideoWebCamera.exe' - '45' Module(s) have been scanned Scan process 'LManager.exe' - '53' Module(s) have been scanned Scan process 'BackupManagerTray.exe' - '37' Module(s) have been scanned Scan process 'ONENOTEM.EXE' - '24' Module(s) have been scanned Scan process 'DTLite.exe' - '53' Module(s) have been scanned Scan process 'SpotifyWebHelper.exe' - '37' Module(s) have been scanned Scan process 'PLFSetI.exe' - '40' Module(s) have been scanned Scan process 'UpdaterService.exe' - '23' Module(s) have been scanned Scan process 'IScheduleSvc.exe' - '61' Module(s) have been scanned Scan process 'IJPLMSVC.EXE' - '22' Module(s) have been scanned Scan process 'GREGsvc.exe' - '11' Module(s) have been scanned Scan process 'ApplicationUpdater.exe' - '27' Module(s) have been scanned Scan process 'AppleMobileDeviceService.exe' - '64' Module(s) have been scanned Scan process 'avguard.exe' - '69' Module(s) have been scanned Scan process 'armsvc.exe' - '24' Module(s) have been scanned Scan process 'PhotoshopElementsFileAgent.exe' - '28' Module(s) have been scanned Scan process 'sched.exe' - '42' Module(s) have been scanned Starting to scan executable files (registry). C:\Program Files (x86)\PS3 Media Server\Uninst.exe [WARNING] Invalid end of file C:\Program Files (x86)\Gabest\VobSub\uninstall.exe [WARNING] Invalid compressed data The registry was scanned ( '3432' files ). Starting the file scan: Begin scan in 'C:\' <Packard Bell> C:\Program Files\WinRAR\rarnew.dat [WARNING] Error no files to extract C:\Program Files (x86)\Gabest\VobSub\uninstall.exe [WARNING] Invalid compressed data C:\Program Files (x86)\PS3 Media Server\Uninst.exe [WARNING] Invalid end of file C:\ProgramData\Microsoft\WLSetup\CabLogs\Logs.CAB [WARNING] Error multiple volume C:\Users\Het Gezin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\WQW2JOCC\CardReader_Realtek_6.0.6000.20125_Vistax64Vistax86_A[1].zip [WARNING] Invalid end of file C:\Users\Menno\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00000c [WARNING] Error multiple volume C:\Users\Menno\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00000d [WARNING] The file is password protected C:\Users\Menno\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00000e [WARNING] The file is password protected C:\Users\Menno\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00000f [WARNING] The file is password protected C:\Users\Menno\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000010 [WARNING] The file is password protected C:\Users\Menno\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000011 [WARNING] The file is password protected C:\Users\Menno\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000012 [WARNING] The file is password protected C:\Users\Menno\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000013 [WARNING] The file is password protected C:\Users\Menno\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000014 [WARNING] The file is password protected C:\Users\Menno\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000015 [WARNING] The file is password protected C:\Users\Menno\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000016 [WARNING] The file is password protected C:\Users\Menno\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000017 [WARNING] The file is password protected C:\Users\Menno\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000018 [WARNING] The file is password protected C:\Users\Menno\AppData\Local\Google\Chrome\User Data\Default\Cache\f_000019 [WARNING] The file is password protected C:\Users\Menno\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00001a [WARNING] The file is password protected C:\Users\Menno\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00001b [WARNING] The file is password protected C:\Users\Menno\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00001c [WARNING] The file is password protected C:\Users\Menno\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00001d [WARNING] The file is password protected C:\Users\Menno\AppData\Local\Google\Chrome\User Data\Default\Cache\f_00001e [WARNING] The file is password protected C:\Users\Menno\AppData\LocalLow\Microsoft\Silverlight\is\n50ecrfl.a11\dgk1o2jz.ypp\1\s\2i2x10bli1rodyl3rd0dywq2ogc4vearzedbnqfrrn1k45zki0aaafba\f\P1 [WARNING] The file is password protected C:\Users\Menno\AppData\LocalLow\Microsoft\Silverlight\is\n50ecrfl.a11\dgk1o2jz.ypp\1\s\2i2x10bli1rodyl3rd0dywq2ogc4vearzedbnqfrrn1k45zki0aaafba\f\P10 [WARNING] The file is password protected C:\Users\Menno\AppData\LocalLow\Microsoft\Silverlight\is\n50ecrfl.a11\dgk1o2jz.ypp\1\s\2i2x10bli1rodyl3rd0dywq2ogc4vearzedbnqfrrn1k45zki0aaafba\f\P2 [WARNING] The file is password protected C:\Users\Menno\AppData\LocalLow\Microsoft\Silverlight\is\n50ecrfl.a11\dgk1o2jz.ypp\1\s\2i2x10bli1rodyl3rd0dywq2ogc4vearzedbnqfrrn1k45zki0aaafba\f\P3 [WARNING] The file is password protected C:\Users\Menno\AppData\LocalLow\Microsoft\Silverlight\is\n50ecrfl.a11\dgk1o2jz.ypp\1\s\2i2x10bli1rodyl3rd0dywq2ogc4vearzedbnqfrrn1k45zki0aaafba\f\P4 [WARNING] The file is password protected C:\Users\Menno\AppData\LocalLow\Microsoft\Silverlight\is\n50ecrfl.a11\dgk1o2jz.ypp\1\s\2i2x10bli1rodyl3rd0dywq2ogc4vearzedbnqfrrn1k45zki0aaafba\f\P5 [WARNING] The file is password protected C:\Users\Menno\AppData\LocalLow\Microsoft\Silverlight\is\n50ecrfl.a11\dgk1o2jz.ypp\1\s\2i2x10bli1rodyl3rd0dywq2ogc4vearzedbnqfrrn1k45zki0aaafba\f\P6 [WARNING] The file is password protected C:\Users\Menno\AppData\LocalLow\Microsoft\Silverlight\is\n50ecrfl.a11\dgk1o2jz.ypp\1\s\2i2x10bli1rodyl3rd0dywq2ogc4vearzedbnqfrrn1k45zki0aaafba\f\P7 [WARNING] The file is password protected C:\Users\Menno\AppData\LocalLow\Microsoft\Silverlight\is\n50ecrfl.a11\dgk1o2jz.ypp\1\s\2i2x10bli1rodyl3rd0dywq2ogc4vearzedbnqfrrn1k45zki0aaafba\f\P8 [WARNING] The file is password protected C:\Users\Menno\AppData\LocalLow\Microsoft\Silverlight\is\n50ecrfl.a11\dgk1o2jz.ypp\1\s\2i2x10bli1rodyl3rd0dywq2ogc4vearzedbnqfrrn1k45zki0aaafba\f\P9 [WARNING] The file is password protected C:\Users\Menno\AppData\Roaming\Apple Computer\MobileSync\Backup\4694c7d0ec202de79e8cd198c989a523a3c9c8e8-20120114-134250\2a89325c3769438d6ae0665c47ffaf35cb65f779 [WARNING] The file is password protected C:\Users\Menno\AppData\Roaming\Apple Computer\MobileSync\Backup\4694c7d0ec202de79e8cd198c989a523a3c9c8e8-20120114-134250\5d15c06ef39b7a5aa229bdcfc71baaab241a2b18 [WARNING] The file is password protected C:\Users\Menno\AppData\Roaming\Apple Computer\MobileSync\Backup\4694c7d0ec202de79e8cd198c989a523a3c9c8e8-20120114-140143\2a89325c3769438d6ae0665c47ffaf35cb65f779 [WARNING] The file is password protected C:\Users\Menno\AppData\Roaming\Apple Computer\MobileSync\Backup\4694c7d0ec202de79e8cd198c989a523a3c9c8e8-20120114-140143\5d15c06ef39b7a5aa229bdcfc71baaab241a2b18 [WARNING] The file is password protected C:\Users\Menno\AppData\Roaming\GrabIt\Temp\THCIIFS.2011.VODRIP.CUSTOM.NL.SRT.part45.rar [WARNING] Error multiple volume C:\Users\Menno\AppData\Roaming\GrabIt\Temp\THCIIFS.2011.VODRIP.CUSTOM.NL.SRT.part46.rar [WARNING] Error multiple volume C:\Users\Menno\AppData\Roaming\GrabIt\Temp\THCIIFS.2011.VODRIP.CUSTOM.NL.SRT.part47.rar [WARNING] Error multiple volume C:\Users\Menno\Downloads\EBooks\Baldacci, David\Geniaal geheim\Geniaal geheim - David Baldacci.epub [WARNING] Invalid end of file C:\Users\Menno\Downloads\EBooks\Bruijn, Cor\Cor Bruijn - Sil de Strandjutter.epub [WARNING] Invalid end of file C:\Users\Menno\Downloads\EBooks\COLLINS, JACKIE\De Hollywood Connectie deel 4 Wraak\De Hollywood Connectie deel 4 Wraak - Jacky Collins.epub [WARNING] Invalid end of file C:\Users\Menno\Downloads\EBooks\Gemmell, David\David Gemmell - Waylander 1.epub [WARNING] The archive header is damaged C:\Users\Menno\Downloads\EBooks\Hunter, Gwen\Gwen Hunter - Bloedschande.epub [WARNING] Invalid end of file C:\Users\Menno\Downloads\EBooks\Kooten, Kees van\Veertig drie verhalen\Veertig drie verhalen - Kees van Kooten.epub [WARNING] The archive header is damaged C:\Users\Menno\Downloads\EBooks\Raay, Carla van\Carla van Raay - God's Callgirl.epub [WARNING] Invalid end of file C:\Users\Menno\Downloads\EBooks\Ruiz Zafon, Carlos\Carlos Ruiz Zafon - Het Spel van de Engel.epub [WARNING] Invalid end of file C:\Users\Menno\Downloads\EBooks\Schrijnen, Jos\Nederlandsche Volkskunde\Nederlandsche Volkskunde - Jos Schrijnen.epub [WARNING] Invalid end of file C:\Users\Menno\Downloads\EBooks\Vermeer, Suzanne\Cruise\Cruise - Suzanne Vermeer.epub [WARNING] The archive header is damaged C:\Users\Menno\Downloads\EBooks\Vestdijk, Simon\De vuuraanbidders (I-XIII)\De vuuraanbidders (I-XIII) - Simon Vestdijk.epub [WARNING] The archive header is damaged End of the scan: zondag 29 juli 2012 16:22 Used time: 2:22:27 Hour(s) The scan has been done completely. 39618 Scanned directories 966836 Files were scanned 0 Viruses and/or unwanted programs were found 0 Files were classified as suspicious 0 Files were deleted 0 Viruses and unwanted programs were repaired 0 Files were moved to quarantine 0 Files were renamed 0 Files cannot be scanned 966836 Files not concerned 7961 Archives were scanned 54 Warnings 0 Notes
- 30 juli 2012
- 65 antwoorden
Laptop loopt vast

Mennno reageerde op Mennno's topic in Archief Hardware algemeen

Oke, alsjeblieft, hoop dat het de goede is: http://speccy.piriform.com/results/y6qUxxQg5MbSZtfdt4w8j3F
- 30 juli 2012
- 65 antwoorden
Laptop loopt vast

Mennno plaatste een topic in Archief Hardware algemeen

Hallo, Ik heb sinds een korte tijd dat mijn beeld bevriest op een willekeurig moment (naar mijn idee). Vanaf het moment dat mijn beeld stil staat, kan ik de muis niet meer bewegen of een andere taak uitvoeren. Als ik dan mijn accu eruit haal of de netstroom er van af haal en daarna weer de accu erin doe of netstroom aansluit, doet mijn Laptop het weer. Tijdens elke crash draaien altijd Google Chrome & uTorrent + een aantal andere programma's. Mijn laptop [windows] is van packerd bell (EasyNote LJ65) en gebruik als virusscanner Avira Free Antivirus en MalwareBytes: Free anti-malware. Heeft iemand enig idee waar het aan kan liggen (Temperatuur, virus, systeemfout)? Alvast bedankt.
- 29 juli 2012
- 65 antwoorden

Inloggen

Mennno

Items

Registratiedatum

Laatst bezocht

Inhoudstype

Profielen

Forums

Store

Alles dat geplaatst werd door Mennno

Laptop loopt vast

Laptop loopt vast

Laptop loopt vast

Laptop loopt vast

Laptop loopt vast

Laptop loopt vast

Laptop loopt vast

Laptop loopt vast

Laptop loopt vast

Laptop loopt vast

Laptop loopt vast

Laptop loopt vast

OVER ONS

SITEMAP

Home

Info

Handleidingen & Tips

Activiteit

Belangrijke informatie