Ga naar inhoud

celleke1613

Lid
 Bekijk profiel  Bekijk hun activiteit

  • Items

    83

  • Registratiedatum

  • Laatst bezocht

Over celleke1613

  • Verjaardag 13-05-1944

celleke1613's prestaties

Enthousiasteling

Enthousiasteling (6/14)

  • Eerste post
  • Actief
  • Gespreksstarter
  • Week één klaar
  • Een maand later

Recente badges

0

Reputatie

  1. celleke1613
    werk met windows 7 ultimate enexplorer 9. Als ik inlog op facebook, duurt het enoerm lang en meestal geraak ik er niet in. Andere verbindingen werken wel vlug en normaal. Hoe op te lossen?
  2. celleke1613
    Bedankt, Ik heb scan laten lopen en alles is hersteld , kon servicepack downloaden en installeren
  3. celleke1613
    Ik krijg een update melding van wicrosoft voor een service pack van windows 7. Als ik het wil installeren, krijg ik de melding: kan niet geinstallerd worden wegens ontbreken van sqmap.dll op uw computer. Wat moet ik doen?
  4. celleke1613
    Heb nieuwe pc gekocht, werkt met windows7 ultimate en office 2010. Als ik map afbeeldingen op mijn externe schijf of c schijf open dan zie ik inplaats van de foto's als pictogram,allen dezelfde pictogram van het programma waarmee ik de foto's open. Hoe kan ik dit veranderen?
  5. celleke1613
    ja het is mijn draadloze muis en toetesebord die de oorzaak zijn. Hoe kan ik dit oplossen?
  6. celleke1613
    Heb onlangs nieuwe PC gekocht. Werkt met windows 7 ultimate en office 2010. Als ik bij mijn energieinstellingeninstel op: Beeldscherm afsluiten na 15 min Of PC op waakstand na 20 min Blijft beelscherm en pc aan bij langere tijd niet gebruik. Wat is oorzaak? Grtn
  7. celleke1613
    zoekprogramma heb ik ondertussen gevonden. Ik bedoel het scherm in slaapstand zetten na een aantal minuten niet gebruik.
  8. celleke1613
    Heb nieuwe pc moeten kopen. Werkt wet windows 7 ultimate en office XP Waar kan ik de zoekfunctie terug vinden en waar kan ik de instelling voor uitschakelen van beeldscherm vinden
  9. celleke1613
    Mijn pc heeft het begeven, kon zo niet meer antwoorden. Je mag de discussie sluite.
  10. celleke1613
    de emergency kit is wel blijven plakken aan 66 procent, na 1/2 uur stond hij nog op hetzelfde bestand zonder verder te werken, maar dit was wel al op mijn externe schijf. Heb opnieuw avg laten lopen en trojaanse paarden zitten er nog in. Heb nu ook vastgesteld dat ik via de input zoeken geen map of bestand meer kan opsporen. Ik krijg de melding:Onverwachte fout.De bewerking kan niet uitgevoerd worden. Hoe lang dit reeds is kan ik niet weten , maar ik denk max 7 dagen. an ook niet meer herstellen via herstelpunt omdat ik bij mijn eerste avg scan de herstelpunten gewist heb om te vermijden dat virus daar zou blijven zitten. Wordt ingewikkeld hé.
  11. celleke1613
    na het lopen van emisoftemergencykit hieronder het logbestand. mergency Kit - Versie 1.0 Laatste Update: 1/04/2012 18:36:10 Scaninstellingen: Scantype: Diepe Scan Objecten: Geheugen, Sporen, Cookies, C:\, D:\, F:\ Scan archieven: Aan Heuristieken: Uit ADS Scan: Aan Scan gestart: 1/04/2012 18:36:53 c:\program files\eGames Ontdekt: Trace.Directory.Bling-O!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\Advanced --> ScanFolder Ontdekt: Trace.Registry.Kazaa!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\InstantMessaging --> IgnoreAll Ontdekt: Trace.Registry.Kazaa!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\ResultsFilter --> adult_filter_level Ontdekt: Trace.Registry.Kazaa!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\ResultsFilter --> firewall_filter Ontdekt: Trace.Registry.Kazaa!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\Transfer --> NoUploadLimitWhenIdle Ontdekt: Trace.Registry.Kazaa!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\UserDetails --> AutoConnected Ontdekt: Trace.Registry.Kazaa!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\UserDetails --> CountryCode Ontdekt: Trace.Registry.Kazaa!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\UserDetails --> UserName Ontdekt: Trace.Registry.Kazaa!A2 Key: HKEY_CURRENT_USER\software\kazaa Ontdekt: Trace.Registry.KaZaA!A2 Value: HKEY_LOCAL_MACHINE\software\kazaa\bandwidth\in --> b0 Ontdekt: Trace.Registry.KaZaA!A2 Value: HKEY_LOCAL_MACHINE\software\kazaa\bandwidth\in --> b1 Ontdekt: Trace.Registry.KaZaA!A2 Value: HKEY_LOCAL_MACHINE\software\kazaa\bandwidth\lastestimate --> b Ontdekt: Trace.Registry.KaZaA!A2 Value: HKEY_LOCAL_MACHINE\software\kazaa\bandwidth\lastestimate --> time Ontdekt: Trace.Registry.KaZaA!A2 Key: HKEY_LOCAL_MACHINE\software\kazaa\connectioninfo Ontdekt: Trace.Registry.KaZaA!A2 Value: HKEY_LOCAL_MACHINE\software\kazaa\connectioninfo --> kazaanet Ontdekt: Trace.Registry.KaZaA!A2 Key: HKEY_LOCAL_MACHINE\software\kazaa\localcontent Ontdekt: Trace.Registry.KaZaA!A2 Value: HKEY_LOCAL_MACHINE\software\kazaa\localcontent --> databasedir Ontdekt: Trace.Registry.KaZaA!A2 Key: HKEY_LOCAL_MACHINE\software\kazaa Ontdekt: Trace.Registry.KaZaA!A2 Value: HKEY_LOCAL_MACHINE\software\kazaa --> listenport Ontdekt: Trace.Registry.KaZaA!A2 Value: HKEY_CLASSES_ROOT\sig2dat --> URL Protocol Ontdekt: Trace.Registry.Trustyfiles!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\sig2dat --> URL Protocol Ontdekt: Trace.Registry.Trustyfiles!A2 Value: HKEY_CURRENT_USER\Software\K++ --> DebugShowRealPL Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> DisablePort1214Listen Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> FindMoreSourcesTimeLimit Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> MaxFileSources Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> NetworkName Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> No.files Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> NoKppaddon Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> NoSysTrayIcon Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> PL1000 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> PurgeSearchesOnExit Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> RemoveBadIPs Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> ScanForNewFilesTimeMilliSecs Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> SupernodeForce Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> UseBanIpFeature Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> UsersCantCutInLine Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\Advanced --> MaxSearchResult Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\Advanced --> SuperNode Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\InstantMessaging --> IgnoredUsers Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\k-lite --> InstallSig Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\ResultsFilter --> bogus_filter Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\ResultsFilter --> custom_filter_phrases Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\ResultsFilter --> showDisableAdultFilter Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\ResultsFilter --> virus_filter Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\SOCKS --> Enabled Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\Transfer --> ConcurrentDownloads Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\Transfer --> ConcurrentUploads Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\Transfer --> UploadBandwidth Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\UserDetails --> Email Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\UserDetails --> Newsletter Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> AddToMainMenu Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> AskExit Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> ChangeDownloadMenu Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> ChangeFileManagerMenu Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> ChangeSystemBtn Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> ChangeToolbarBehave Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> ChangeTrayMenu Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> ForceCreation Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> HideAdBanner Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> IniTab Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> ShowAccelSttInTray Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> StartKLInTray Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> StatusWndMode Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> ClearDownloads Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> ClearUploads Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> CyclesDelay Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> ItemDelay Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> KeepDownloads Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> MinSpeed Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> NoSearchingConnecting Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> NumDownloadsMax Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> NumDownloadsMin Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> SearchResume Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> SkipBySpeed Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> SkipPaused Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> SkipQueued Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> TimesInSearchState Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\LastState --> Accelerator Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\LastState --> AutoSearchMore Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\LastState --> AutoSearchMoreNum Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\LastState --> AutoSearchMoreUnit Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\LastState --> ConfigDlg Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\LastState --> SearchOptShow Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\LastState --> StatusDlg Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\LastState --> StatusWnd Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Cmd1 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Cmd2 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Cmd3 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Cmd4 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Cmd5 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Preview1 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Title1 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Title2 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Title3 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Title4 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Title5 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Workdir1 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Workdir2 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Workdir3 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Workdir4 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Workdir5 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K-Sig --> UseAlternateMethod Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\K++ --> UseHKEY_CURRENT_USER Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Kazaa --> DisablePort80Listen Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Kazaa\InstantMessaging --> IgnoreAll Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Kazaa\k-lite --> Installsig Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Cmd1 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Cmd2 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Cmd3 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Cmd4 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Cmd5 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Title1 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Title2 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Title3 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Title4 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Title5 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Workdir1 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Workdir2 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Workdir3 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Workdir4 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Workdir5 Ontdekt: Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\zylom\Games\29\zgw --> dgfilename Ontdekt: Trace.Registry.GameFiesta Babel Deluxe!A2 Value: HKEY_CURRENT_USER\Software\JollyBear\Big City Adventure San Francisco\3DSettings --> Driver Ontdekt: Trace.Registry.GameFiesta Big City Adventure San Francisco!A2 Value: HKEY_CURRENT_USER\Software\JollyBear\Big City Adventure San Francisco\3DSettings --> DriverDate Ontdekt: Trace.Registry.GameFiesta Big City Adventure San Francisco!A2 Value: HKEY_CURRENT_USER\Software\JollyBear\Big City Adventure San Francisco\3DSettings --> DriverDescription Ontdekt: Trace.Registry.GameFiesta Big City Adventure San Francisco!A2 C:\Program Files\Application Updater\ApplicationUpdater.exe Ontdekt: Adware.Win32.Toolbar.Dealio.AMN!A2 C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe Ontdekt: Adware.Win32.Toolbar.Dealio.AMN!A2 Gescand Bestanden: 156818 Sporen: 406617 Cookies: 5 Processen: 44 Gevonden Bestanden: 2 Sporen: 126 Cookies: 0 Processen: 0 Registersleutels: 0 Scan Geëindigd: 1/04/2012 22:16:08 Scantijd: 3:39:15 C:\Program Files\Application Updater\ApplicationUpdater.exe Verwijderd Adware.Win32.Toolbar.Dealio.AMN!A2 C:\Program Files\Common Files\Spigot\Search Settings\SearchSettings.exe Verwijderd Adware.Win32.Toolbar.Dealio.AMN!A2 Value: HKEY_CURRENT_USER\Software\JollyBear\Big City Adventure San Francisco\3DSettings --> Driver Verwijderd Trace.Registry.GameFiesta Big City Adventure San Francisco!A2 Value: HKEY_CURRENT_USER\Software\JollyBear\Big City Adventure San Francisco\3DSettings --> DriverDate Verwijderd Trace.Registry.GameFiesta Big City Adventure San Francisco!A2 Value: HKEY_CURRENT_USER\Software\JollyBear\Big City Adventure San Francisco\3DSettings --> DriverDescription Verwijderd Trace.Registry.GameFiesta Big City Adventure San Francisco!A2 Value: HKEY_CURRENT_USER\Software\zylom\Games\29\zgw --> dgfilename Verwijderd Trace.Registry.GameFiesta Babel Deluxe!A2 Value: HKEY_CURRENT_USER\Software\K++ --> DebugShowRealPL Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> DisablePort1214Listen Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> FindMoreSourcesTimeLimit Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> MaxFileSources Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> NetworkName Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> No.files Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> NoKppaddon Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> NoSysTrayIcon Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> PL1000 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> PurgeSearchesOnExit Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> RemoveBadIPs Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> ScanForNewFilesTimeMilliSecs Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> SupernodeForce Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> UseBanIpFeature Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K++ --> UsersCantCutInLine Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\Advanced --> MaxSearchResult Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\Advanced --> SuperNode Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\InstantMessaging --> IgnoredUsers Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\k-lite --> InstallSig Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\ResultsFilter --> bogus_filter Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\ResultsFilter --> custom_filter_phrases Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\ResultsFilter --> showDisableAdultFilter Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\ResultsFilter --> virus_filter Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\SOCKS --> Enabled Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\Transfer --> ConcurrentDownloads Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\Transfer --> ConcurrentUploads Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\Transfer --> UploadBandwidth Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\UserDetails --> Email Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\UserDetails --> Newsletter Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> AddToMainMenu Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> AskExit Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> ChangeDownloadMenu Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> ChangeFileManagerMenu Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> ChangeSystemBtn Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> ChangeToolbarBehave Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> ChangeTrayMenu Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> ForceCreation Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> HideAdBanner Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> IniTab Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> ShowAccelSttInTray Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> StartKLInTray Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions --> StatusWndMode Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> ClearDownloads Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> ClearUploads Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> CyclesDelay Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> ItemDelay Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> KeepDownloads Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> MinSpeed Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> NoSearchingConnecting Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> NumDownloadsMax Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> NumDownloadsMin Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> SearchResume Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> SkipBySpeed Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> SkipPaused Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> SkipQueued Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Accelerator --> TimesInSearchState Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\LastState --> Accelerator Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\LastState --> AutoSearchMore Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\LastState --> AutoSearchMoreNum Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\LastState --> AutoSearchMoreUnit Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\LastState --> ConfigDlg Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\LastState --> SearchOptShow Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\LastState --> StatusDlg Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\LastState --> StatusWnd Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Cmd1 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Cmd2 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Cmd3 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Cmd4 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Cmd5 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Preview1 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Title1 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Title2 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Title3 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Title4 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Title5 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Workdir1 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Workdir2 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Workdir3 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Workdir4 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\KLExtensions\Tools --> Workdir5 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CURRENT_USER\Software\K-Sig --> UseAlternateMethod Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\K++ --> UseHKEY_CURRENT_USER Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Kazaa --> DisablePort80Listen Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Kazaa\InstantMessaging --> IgnoreAll Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Kazaa\k-lite --> Installsig Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Cmd1 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Cmd2 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Cmd3 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Cmd4 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Cmd5 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Title1 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Title2 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Title3 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Title4 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Title5 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Workdir1 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Workdir2 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Workdir3 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Workdir4 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\KLExtensions\Tools --> Workdir5 Verwijderd Trace.Registry.Kazaa Lite Resurrection!A2 Value: HKEY_CLASSES_ROOT\sig2dat --> URL Protocol Verwijderd Trace.Registry.Trustyfiles!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Classes\sig2dat --> URL Protocol Verwijderd Trace.Registry.Trustyfiles!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\Advanced --> ScanFolder Verwijderd Trace.Registry.Kazaa!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\InstantMessaging --> IgnoreAll Verwijderd Trace.Registry.Kazaa!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\ResultsFilter --> adult_filter_level Verwijderd Trace.Registry.Kazaa!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\ResultsFilter --> firewall_filter Verwijderd Trace.Registry.Kazaa!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\Transfer --> NoUploadLimitWhenIdle Verwijderd Trace.Registry.Kazaa!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\UserDetails --> AutoConnected Verwijderd Trace.Registry.Kazaa!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\UserDetails --> CountryCode Verwijderd Trace.Registry.Kazaa!A2 Value: HKEY_CURRENT_USER\Software\Kazaa\UserDetails --> UserName Verwijderd Trace.Registry.Kazaa!A2 Key: HKEY_CURRENT_USER\software\kazaa Verwijderd Trace.Registry.Kazaa!A2 Value: HKEY_LOCAL_MACHINE\software\kazaa\bandwidth\in --> b0 Verwijderd Trace.Registry.Kazaa!A2 Value: HKEY_LOCAL_MACHINE\software\kazaa\bandwidth\in --> b1 Verwijderd Trace.Registry.Kazaa!A2 Value: HKEY_LOCAL_MACHINE\software\kazaa\bandwidth\lastestimate --> b Verwijderd Trace.Registry.Kazaa!A2 Value: HKEY_LOCAL_MACHINE\software\kazaa\bandwidth\lastestimate --> time Verwijderd Trace.Registry.Kazaa!A2 Key: HKEY_LOCAL_MACHINE\software\kazaa\connectioninfo Verwijderd Trace.Registry.Kazaa!A2 Value: HKEY_LOCAL_MACHINE\software\kazaa\connectioninfo --> kazaanet Verwijderd Trace.Registry.Kazaa!A2 Key: HKEY_LOCAL_MACHINE\software\kazaa\localcontent Verwijderd Trace.Registry.Kazaa!A2 Value: HKEY_LOCAL_MACHINE\software\kazaa\localcontent --> databasedir Verwijderd Trace.Registry.Kazaa!A2 Key: HKEY_LOCAL_MACHINE\software\kazaa Verwijderd Trace.Registry.Kazaa!A2 Value: HKEY_LOCAL_MACHINE\software\kazaa --> listenport Verwijderd Trace.Registry.Kazaa!A2 c:\program files\eGames Verwijderd Trace.Directory.Bling-O!A2
  12. celleke1613
    Heb nu bijkomende fout, kan echter al een paar dagen zijn omdat ik deze functie niet alle dagen gebruik. Als ik via "zoeken" een bestand wil opzoeken zowel op mijn C, en f schijf op mijn externe D schijf, krijg ik volgende melding: Onverwachte fout. De bewerking kan niet worden voltooid. Ik kan niet via Systeemherstel werken omdat ik het had uitgeschakeld alvorens te proberen virus te verwijderen. Dus nog geen herstelûnt.
  13. celleke1613
    Heb na het lopen can combifix 2e maal nu ook aVG laten lopen en virussen nog altijd aanwezig zie onderstaand protocol. "";"F:\Program Files\Advanced SystemCare 5\ASCService.exe (1080)";"Trojaans paard PSW.Agent.ARMW";"Verwijderd" "";"C:\WINDOWS\system32\wuauclt.exe (5188)";"Trojaans paard PSW.Agent.ARMW";"Verwijderd" "";"C:\WINDOWS\system32\winlogon.exe (832)";"Trojaans paard PSW.Agent.AUET";"Verwijderd" "";"C:\WINDOWS\system32\svchost.exe (5896)";"Trojaans paard PSW.Agent.AUET";"Verwijderd" "";"C:\WINDOWS\system32\svchost.exe (460)";"Trojaans paard PSW.Agent.AUET";"Verwijderd" "";"C:\WINDOWS\system32\svchost.exe (1312)";"Trojaans paard PSW.Agent.AUET";"Verwijderd" "";"C:\WINDOWS\system32\svchost.exe (1272)";"Trojaans paard PSW.Agent.AUET";"Verwijderd" "";"C:\WINDOWS\system32\svchost.exe (1156)";"Trojaans paard PSW.Agent.AUET";"Verwijderd" "";"C:\WINDOWS\system32\services.exe (880)";"Trojaans paard PSW.Agent.ASJX";"Verwijderd" "";"C:\WINDOWS\explorer.exe (3200)";"Trojaans paard PSW.Agent.AUET";"Verwijderd" "";"C:\Program Files\SMC\SMCWUSB-G 802.11g Wireless USB 2.0 Adapter\SMCWGUTI.exe (3532)";"Trojaans paard PSW.Agent.ARMW";"Verwijderd" "";"C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE (3216)";"Trojaans paard PSW.Agent.ARMW";"Verwijderd" "";"C:\Program Files\iTunes\iTunesHelper.exe (3168)";"Trojaans paard PSW.Agent.ARMW";"Verwijderd" "";"C:\Program Files\iPod\bin\iPodService.exe (4084)";"Trojaans paard PSW.Agent.ARMW";"Verwijderd" "";"C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe (1772)";"Trojaans paard PSW.Agent.ARMW";"Verwijderd" "";"C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (1620)";"Trojaans paard PSW.Agent.ARMW";"Verwijderd" "";"C:\Program Files\Common Files\Microsoft Shared\VS7Debug\MDM.EXE (1368)";"Trojaans paard PSW.Agent.ARMW";"Verwijderd" "";"C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe (308)";"Trojaans paard PSW.Agent.ARMW";"Verwijderd" "";"C:\Program Files\Common Files\Java\Java Update\jusched.exe (3204)";"Trojaans paard PSW.Agent.ARMW";"Verwijderd" "";"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (3680)";"Trojaans paard PSW.Agent.ARMW";"Verwijderd" "";"C:\Program Files\Bonjour\mDNSResponder.exe (3872)";"Trojaans paard PSW.Agent.ARMW";"Verwijderd" "";"C:\Program Files\AVG\AVG2012\avgwdsvc.exe (2024)";"Trojaans paard PSW.Agent.ARMW";"Verwijderd" "";"C:\Program Files\AVG\AVG2012\avgui.exe (5232)";"Trojaans paard PSW.Agent.ARMW";"Verwijderd" "";"C:\Program Files\AVG\AVG2012\avgtray.exe (3056)";"Trojaans paard PSW.Agent.ARMW";"Verwijderd" "";"C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe (2820)";"Trojaans paard PSW.Agent.ARMW";"Verwijderd" "";"F:\Program Files\Advanced SystemCare 5\ASCService.exe (1080):\memory_038a0000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\WINDOWS\system32\wuauclt.exe (5188):\memory_00d60000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\WINDOWS\system32\winlogon.exe (832):\memory_01470000";"Trojaans paard PSW.Agent.AUET";"Geïnfecteerd" "";"C:\WINDOWS\system32\svchost.exe (5896):\memory_00db0000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\WINDOWS\system32\svchost.exe (5896):\memory_00ce0000";"Trojaans paard PSW.Agent.AUET";"Geïnfecteerd" "";"C:\WINDOWS\system32\svchost.exe (460):\memory_00bb0000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\WINDOWS\system32\svchost.exe (460):\memory_009f0000";"Trojaans paard PSW.Agent.AUET";"Geïnfecteerd" "";"C:\WINDOWS\system32\svchost.exe (1312):\memory_00a50000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\WINDOWS\system32\svchost.exe (1312):\memory_00640000";"Trojaans paard PSW.Agent.AUET";"Geïnfecteerd" "";"C:\WINDOWS\system32\svchost.exe (1272):\memory_01ca0000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\WINDOWS\system32\svchost.exe (1272):\memory_01c10000";"Trojaans paard PSW.Agent.AUET";"Geïnfecteerd" "";"C:\WINDOWS\system32\svchost.exe (1156):\memory_00c00000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\WINDOWS\system32\svchost.exe (1156):\memory_00a70000";"Trojaans paard PSW.Agent.AUET";"Geïnfecteerd" "";"C:\WINDOWS\system32\services.exe (880):\memory_012c0000";"Trojaans paard PSW.Generic9.RDX";"Geïnfecteerd" "";"C:\WINDOWS\system32\services.exe (880):\memory_00df0000";"Trojaans paard PSW.Agent.ASJX";"Geïnfecteerd" "";"C:\WINDOWS\explorer.exe (3200):\memory_00fe0000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\WINDOWS\explorer.exe (3200):\memory_00f20000";"Trojaans paard PSW.Agent.AUET";"Geïnfecteerd" "";"C:\Program Files\SMC\SMCWUSB-G 802.11g Wireless USB 2.0 Adapter\SMCWGUTI.exe (3532):\memory_010e0000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE (3216):\memory_01950000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\Program Files\iTunes\iTunesHelper.exe (3168):\memory_020f0000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\Program Files\iPod\bin\iPodService.exe (4084):\memory_00b20000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe (1772):\memory_022f0000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (1620):\memory_00dc0000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\Program Files\Common Files\Microsoft Shared\VS7Debug\MDM.EXE (1368):\memory_008f0000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\Program Files\Common Files\MAGIX Services\Database\bin\FABS.exe (308):\memory_00ef0000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\Program Files\Common Files\Java\Java Update\jusched.exe (3204):\memory_00b90000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (3680):\memory_01b20000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\Program Files\Bonjour\mDNSResponder.exe (3872):\memory_008a0000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\Program Files\AVG\AVG2012\avgwdsvc.exe (2024):\memory_036c0000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\Program Files\AVG\AVG2012\avgui.exe (5232):\memory_01d00000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\Program Files\AVG\AVG2012\avgtray.exe (3056):\memory_01aa0000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd" "";"C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe (2820):\memory_01930000";"Trojaans paard PSW.Agent.ARMW";"Geïnfecteerd"
  14. celleke1613
    Heb combofix laten lopen. Heironder logje ComboFix 12-03-30.06 - User 01/04/2012 15:09:06.7.1 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.1023.542 [GMT 2:00] Gestart vanuit: c:\documents and settings\User\Bureaublad\Ongebruikte bureaubladpictogrammen\ComboFix.exe gebruikte Opdracht switches :: c:\documents and settings\User\Bureaublad\CFScript.txt AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF} . WAARSCHUWING - DE RECOVERY CONSOLE IS NIET OP DIT SYSTEEM GEINSTALLEERD !! . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Service_xcpip . . (((((((((((((((((((( Bestanden Gemaakt van 2012-03-01 to 2012-04-01 )))))))))))))))))))))))))))))) . . 2012-03-30 18:00 . 2012-03-30 18:00 -------- d-----w- c:\documents and settings\User\Application Data\Malwarebytes 2012-03-30 18:00 . 2012-03-30 18:00 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2012-03-30 07:58 . 2012-03-30 07:59 -------- dc-h--w- c:\windows\ie8 2012-03-25 13:10 . 2012-03-25 13:10 -------- d-----w- c:\windows\system32\wbem\Repository 2012-03-09 15:50 . 2012-03-09 15:50 -------- d-----w- c:\program files\Common Files\Java 2012-03-09 15:49 . 2012-03-09 15:49 73728 ----a-w- c:\windows\system32\javacpl.cpl . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-03-09 15:49 . 2012-01-05 13:21 472808 ----a-w- c:\windows\system32\deployJava1.dll 2012-02-16 19:25 . 2009-08-06 21:33 47360 ----a-w- c:\documents and settings\User\Application Data\pcouffin.sys 2012-02-03 09:57 . 2002-09-11 12:00 1860224 ----a-w- c:\windows\system32\win32k.sys 2012-01-11 19:07 . 2012-02-14 19:18 3072 ------w- c:\windows\system32\iacenc.dll 2012-01-09 16:20 . 2003-01-10 12:54 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys . . ((((((((((((((((((((((((((((( SnapShot@2012-03-31_07.49.21 ))))))))))))))))))))))))))))))))))))))))) . + 2002-09-11 12:00 . 2012-04-01 11:00 87426 c:\windows\system32\perfc009.dat - 2002-09-11 12:00 . 2012-03-31 07:09 87426 c:\windows\system32\perfc009.dat + 2002-09-11 12:00 . 2012-04-01 11:00 636964 c:\windows\system32\perfh013.dat - 2002-09-11 12:00 . 2012-03-31 07:09 636964 c:\windows\system32\perfh013.dat + 2002-09-11 12:00 . 2012-04-01 11:00 517002 c:\windows\system32\perfh009.dat - 2002-09-11 12:00 . 2012-03-31 07:09 517002 c:\windows\system32\perfh009.dat + 2002-09-11 12:00 . 2012-04-01 11:00 128622 c:\windows\system32\perfc013.dat - 2002-09-11 12:00 . 2012-03-31 07:09 128622 c:\windows\system32\perfc013.dat . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OfficeSyncProcess"="c:\program files\Microsoft Office\Office14\MSOSYNC.EXE" [2011-07-21 718720] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2011-12-14 39408] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-10-24 421888] "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576] "BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520] "AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2012-01-24 2416480] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-02-14 7630848] "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-01-03 37296] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-02 843712] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-01-16 421736] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696] . c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\ SMCWUSB-G 802.11g Wireless USB Utility.lnk - c:\program files\SMC\SMCWUSB-G 802.11g Wireless USB 2.0 Adapter\SMCWGUTI.exe [2006-1-18 442368] . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system] "gxwhdduwemzlaowntsfaTaskMgr"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "NoResolveTrack"= 1 (0x1) "NoFileAssociate"= 0 (0x0) . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice] @="Service" . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Exif Launcher S.lnk] backup=c:\windows\pss\Exif Launcher S.lnkCommon Startup . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "AVG Security Toolbar Service"=3 (0x3) "avg9wd"=2 (0x2) . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Nokia\\Nokia Software Updater\\nsu_ui_client.exe"= "c:\\Program Files\\Common Files\\Nokia\\Service Layer\\A\\nsl_host_process.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\DNA\\btdna.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= "c:\\WINDOWS\\system32\\mmc.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= "c:\\Program Files\\LimeWire\\LimeWire.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqcopy2.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfcCopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"= "c:\\Program Files\\Common Files\\HP\\Digital Imaging\\Bin\\hpqPhotoCrm.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgm.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgh.exe"= "c:\\Program Files\\HP\\HP Software Update\\HPWUCli.exe"= "c:\\Program Files\\HP\\Digital Imaging\\smart web printing\\SmartWebPrintExe.exe"= "c:\\Program Files\\Microsoft Office\\Office14\\GROOVE.EXE"= "c:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE"= "c:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE"= "c:\\Program Files\\AVG\\AVG2012\\avgmfapx.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\AVG\\AVG2012\\avgnsx.exe"= "c:\\Program Files\\AVG\\AVG2012\\avgdiagex.exe"= "c:\\Program Files\\AVG\\AVG2012\\avgemcx.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= "c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"= . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "5985:TCP"= 5985:TCP:*:Disabled:Windows Remote Management "65533:TCP"= 65533:TCP:Services "52344:TCP"= 52344:TCP:Services "3389:TCP"= 3389:TCP:Remote Desktop . R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [22/02/2011 8:13 23120] R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [19/01/2011 4:32 32592] R0 DiskSec;Magix Volume Filter Driver;c:\windows\system32\drivers\disksec.sys [2/02/2010 17:11 14208] R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [7/01/2011 6:41 230608] R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [10/02/2011 7:54 295248] R2 AdvancedSystemCareService5;Advanced SystemCare Service 5;f:\program files\Advanced SystemCare 5\ASCService.exe [3/12/2011 14:55 913752] R2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2012\AVGIDSAgent.exe [12/10/2011 7:25 4433248] R2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2012\avgwdsvc.exe [2/08/2011 7:09 192776] R2 Fabs;FABS - Helping agent for MAGIX media database;c:\program files\Common Files\MAGIX Services\Database\bin\FABS.exe [27/08/2009 18:09 1253376] R2 IMFservice;IMF Service;c:\program files\IObit\IObit Malware Fighter\IMFsrv.exe [7/06/2011 17:23 821080] R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [30/03/2011 17:17 134608] R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [10/02/2011 7:53 24272] R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [10/02/2011 7:53 16720] R3 xpsec;IPSEC-stuurprogramma;c:\windows\system32\drivers\xpsec.sys --> c:\windows\system32\drivers\xpsec.sys [?] S0 TfFsMon;TfFsMon;c:\windows\system32\drivers\TfFsMon.sys --> c:\windows\system32\drivers\TfFsMon.sys [?] S0 TfSysMon;TfSysMon;c:\windows\system32\drivers\TfSysMon.sys --> c:\windows\system32\drivers\TfSysMon.sys [?] S2 gupdate;Google Updateservice (gupdate); [x] S3 APL531;OVT Scanner;c:\windows\system32\drivers\ov550i.sys [31/07/2006 14:44 580992] S3 AVFSFilter;AVFSFilter;c:\windows\system32\DRIVERS\avfsfilter.sys --> c:\windows\system32\DRIVERS\avfsfilter.sys [?] S3 CTUPnPSv;Creative Centrale Media Server;c:\program files\Creative\Creative Centrale\CTUPnPSv.exe [21/05/2008 13:42 64000] S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files\Common Files\MAGIX Services\Database\bin\fbserver.exe [7/08/2008 12:10 3276800] S3 gupdatem;Google Update-service (gupdatem); [x] S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [12/06/2011 11:15 31125880] S3 NEOWATCH;NEOWATCH;c:\windows\system32\Drivers\NWatch22.sys --> c:\windows\system32\Drivers\NWatch22.sys [?] S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [9/01/2010 22:37 4640000] S3 PciCon;PciCon;\??\e:\pcicon.sys --> e:\PciCon.sys [?] S3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [6/08/2009 23:33 47360] S3 RegFilter;RegFilter; [x] S3 SMCWGU(SMC);SMCWUSB-G 802.11g Wireless USB 2.0 Adapter(SMC);c:\windows\system32\drivers\SMCWGU.sys [16/08/2007 20:54 408064] S3 TfNetMon;TfNetMon; [x] S3 UrlFilter;UrlFilter; [x] S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [11/09/2002 14:00 14336] S4 FileMonitor;FileMonitor; [x] . --- Andere Services/Drivers In Geheugen --- . *Deregistered* - xcpip . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc WINRM REG_MULTI_SZ WINRM . [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}] 2008-06-09 08:14 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe . Inhoud van de 'Gedeelde Taken' map . 2012-04-01 c:\windows\Tasks\ASC5_AutoClean.job - f:\program files\Advanced SystemCare 5\AutoSweep.exe [2011-12-03 09:49] . 2012-03-31 c:\windows\Tasks\ASC5_AutoUpdate.job - f:\program files\Advanced SystemCare 5\AutoUpdate.exe [2011-12-03 18:13] . 2012-03-31 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1177238915-606747145-839522115-1004Core.job - c:\documents and settings\User\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-12-14 20:42] . 2012-04-01 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1177238915-606747145-839522115-1004UA.job - c:\documents and settings\User\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-12-14 20:42] . 2012-03-30 c:\windows\Tasks\NeroLiveEpgUpdate-USER-DJ4XE9X5VR_User.job - c:\program files\Nero\Nero 9\Nero Live\NeroLive.exe [2008-10-27 07:59] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/ uInternet Settings,ProxyServer = proxy.pandora.be:8080 uInternet Settings,ProxyOverride = 127.0.0.1 uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s TCP: DhcpNameServer = 192.168.2.1 DPF: DirectAnimation Java Classes DPF: Garmin Communicator Plug-In - hxxps://my.garmin.com/static/m/cab/2.8.3/GarminAxControl.CAB DPF: Microsoft XML Parser for Java DPF: {AE2B937E-EA7D-4A8D-888C-B68D7F72A3C4} - hxxp://as.photoprintit.de/ips-opdata/74914091/activex/IPSUploader4.cab . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2012-04-01 15:23 Windows 5.1.2600 Service Pack 3 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . --------------------- DLLs Geladen Onder Lopende Processen --------------------- . - - - - - - - > 'explorer.exe'(3200) c:\progra~1\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf c:\progra~1\MICROS~2\Office14\1043\GrooveIntlResource.dll c:\windows\system32\webcheck.dll c:\windows\system32\WPDShServiceObj.dll c:\program files\Nokia\Nokia PC Suite 6\phonebrowser.dll c:\program files\Nokia\Nokia PC Suite 6\PCSCM.dll c:\program files\Nokia\Nokia PC Suite 6\Lang\PhoneBrowser_dut.nlr c:\program files\Nokia\Nokia PC Suite 6\Resource\PhoneBrowser_Nokia.ngr c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll . ------------------------ Andere Aktieve Processen ------------------------ . c:\progra~1\AVG\AVG2012\avgrsx.exe c:\program files\AVG\AVG2012\avgcsrvx.exe c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe c:\program files\Bonjour\mDNSResponder.exe c:\program files\Creative\Shared Files\CTDevSrv.exe c:\program files\Java\jre6\bin\jqs.exe c:\program files\Common Files\LightScribe\LSSrvc.exe c:\program files\Common Files\Microsoft Shared\VS7Debug\mdm.exe c:\program files\Common Files\Nero\Nero BackItUp 4\NBService.exe c:\program files\AVG\AVG2012\avgnsx.exe c:\program files\AVG\AVG2012\avgemcx.exe c:\windows\system32\nvsvc32.exe c:\program files\Nero\Nero BackItUp 4\IoctlSvc.exe c:\program files\iPod\bin\iPodService.exe . ************************************************************************** . Voltooingstijd: 2012-04-01 15:29:00 - machine werd herstart ComboFix-quarantined-files.txt 2012-04-01 13:28 ComboFix2.txt 2012-03-31 07:57 ComboFix3.txt 2012-01-17 14:03 ComboFix4.txt 2011-12-15 15:27 ComboFix5.txt 2012-04-01 13:04 . Pre-Run: 16.269.942.784 bytes beschikbaar Post-Run: 16.248.233.984 bytes beschikbaar . - - End Of File - - C19A2B7339F87EB1A4E2858A9027764C
  15. celleke1613
    Hallo, Heb combofix laten lopen. Kreeg volgende melding: "Bootpartitie kan niet correct opgeteld worden", heb op ok gerukt en programma is gestart. Hieronder het logje 012 9:37.6.1 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.1023.443 [GMT 2:00] Gestart vanuit: c:\documents and settings\User\Bureaublad\ComboFix.exe AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {17DDD097-36FF-435F-9E1B-52D74245D6BF} . WAARSCHUWING - DE RECOVERY CONSOLE IS NIET OP DIT SYSTEEM GEINSTALLEERD !! . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . ---- Voorgaande Run ------- . c:\documents and settings\All Users\Application Data\TEMP c:\documents and settings\User\Application Data\inst.exe C:\RECYCLER(2) c:\recycler(2)\S-1-5-21-1177238915-606747145-839522115-1004(2)\INFO2 c:\windows\system32\dllcache\wmpvis.dll c:\windows\system32\roboot.exe c:\windows\system32\sycd5.dll . . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Service_xcpip -------\Service_xcpip . . (((((((((((((((((((( Bestanden Gemaakt van 2012-02-28 to 2012-03-31 )))))))))))))))))))))))))))))) . . 2012-03-30 18:00 . 2012-03-30 18:00 -------- d-----w- c:\documents and settings\User\Application Data\Malwarebytes 2012-03-30 18:00 . 2012-03-30 18:00 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2012-03-30 07:58 . 2012-03-30 07:59 -------- dc-h--w- c:\windows\ie8 2012-03-25 13:10 . 2012-03-25 13:10 -------- d-----w- c:\windows\system32\wbem\Repository 2012-03-09 15:50 . 2012-03-09 15:50 -------- d-----w- c:\program files\Common Files\Java 2012-03-09 15:49 . 2012-03-09 15:49 73728 ----a-w- c:\windows\system32\javacpl.cpl . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-03-09 15:49 . 2012-01-05 13:21 472808 ----a-w- c:\windows\system32\deployJava1.dll 2012-02-16 19:25 . 2009-08-06 21:33 47360 ----a-w- c:\documents and settings\User\Application Data\pcouffin.sys 2012-02-03 09:57 . 2002-09-11 12:00 1860224 ----a-w- c:\windows\system32\win32k.sys 2012-01-11 19:07 . 2012-02-14 19:18 3072 ------w- c:\windows\system32\iacenc.dll 2012-01-09 16:20 . 2003-01-10 12:54 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "OfficeSyncProcess"="c:\program files\Microsoft Office\Office14\MSOSYNC.EXE" [2011-07-21 718720] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2011-12-14 39408] "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-10-24 421888] "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576] "BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520] "AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2012-01-24 2416480] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-02-14 7630848] "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-01-03 37296] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-02 843712] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-01-16 421736] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696] . c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\ SMCWUSB-G 802.11g Wireless USB Utility.lnk - c:\program files\SMC\SMCWUSB-G 802.11g Wireless USB 2.0 Adapter\SMCWGUTI.exe [2006-1-18 442368] . [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system] "gxwhdduwemzlaowntsfaTaskMgr"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer] "NoResolveTrack"= 1 (0x1) "NoFileAssociate"= 0 (0x0) . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice] @="Service" . [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Exif Launcher S.lnk] backup=c:\windows\pss\Exif Launcher S.lnkCommon Startup . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services] "AVG Security Toolbar Service"=3 (0x3) "avg9wd"=2 (0x2) . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Nokia\\Nokia Software Updater\\nsu_ui_client.exe"= "c:\\Program Files\\Common Files\\Nokia\\Service Layer\\A\\nsl_host_process.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\DNA\\btdna.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= "c:\\WINDOWS\\system32\\mmc.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= "c:\\Program Files\\LimeWire\\LimeWire.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqcopy2.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfcCopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"= "c:\\Program Files\\Common Files\\HP\\Digital Imaging\\Bin\\hpqPhotoCrm.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgm.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgh.exe"= "c:\\Program Files\\HP\\HP Software Update\\HPWUCli.exe"= "c:\\Program Files\\HP\\Digital Imaging\\smart web printing\\SmartWebPrintExe.exe"= "c:\\Program Files\\Microsoft Office\\Office14\\GROOVE.EXE"= "c:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE"= "c:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE"= "c:\\Program Files\\AVG\\AVG2012\\avgmfapx.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\AVG\\AVG2012\\avgnsx.exe"= "c:\\Program Files\\AVG\\AVG2012\\avgdiagex.exe"= "c:\\Program Files\\AVG\\AVG2012\\avgemcx.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= "c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"= . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "5985:TCP"= 5985:TCP:*:Disabled:Windows Remote Management "65533:TCP"= 65533:TCP:Services "52344:TCP"= 52344:TCP:Services "3389:TCP"= 3389:TCP:Remote Desktop . R0 AVGIDSEH;AVGIDSEH;c:\windows\system32\drivers\AVGIDSEH.sys [22/02/2011 8:13 23120] R0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\drivers\avgrkx86.sys [19/01/2011 4:32 32592] R0 DiskSec;Magix Volume Filter Driver;c:\windows\system32\drivers\disksec.sys [2/02/2010 17:11 14208] R1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\drivers\avgldx86.sys [7/01/2011 6:41 230608] R1 Avgtdix;AVG TDI Driver;c:\windows\system32\drivers\avgtdix.sys [10/02/2011 7:54 295248] R2 AdvancedSystemCareService5;Advanced SystemCare Service 5;f:\program files\Advanced SystemCare 5\ASCService.exe [3/12/2011 14:55 913752] R2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2012\AVGIDSAgent.exe [12/10/2011 7:25 4433248] R2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2012\avgwdsvc.exe [2/08/2011 7:09 192776] R2 Fabs;FABS - Helping agent for MAGIX media database;c:\program files\Common Files\MAGIX Services\Database\bin\FABS.exe [27/08/2009 18:09 1253376] R2 IMFservice;IMF Service;c:\program files\IObit\IObit Malware Fighter\IMFsrv.exe [7/06/2011 17:23 821080] R3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\drivers\AVGIDSDriver.sys [30/03/2011 17:17 134608] R3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\drivers\AVGIDSFilter.sys [10/02/2011 7:53 24272] R3 AVGIDSShim;AVGIDSShim;c:\windows\system32\drivers\AVGIDSShim.sys [10/02/2011 7:53 16720] R3 xpsec;IPSEC-stuurprogramma;c:\windows\system32\drivers\xpsec.sys --> c:\windows\system32\drivers\xpsec.sys [?] S0 TfFsMon;TfFsMon;c:\windows\system32\drivers\TfFsMon.sys --> c:\windows\system32\drivers\TfFsMon.sys [?] S0 TfSysMon;TfSysMon;c:\windows\system32\drivers\TfSysMon.sys --> c:\windows\system32\drivers\TfSysMon.sys [?] S2 gupdate;Google Updateservice (gupdate); [x] S3 APL531;OVT Scanner;c:\windows\system32\drivers\ov550i.sys [31/07/2006 14:44 580992] S3 AVFSFilter;AVFSFilter;c:\windows\system32\DRIVERS\avfsfilter.sys --> c:\windows\system32\DRIVERS\avfsfilter.sys [?] S3 CTUPnPSv;Creative Centrale Media Server;c:\program files\Creative\Creative Centrale\CTUPnPSv.exe [21/05/2008 13:42 64000] S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files\Common Files\MAGIX Services\Database\bin\fbserver.exe [7/08/2008 12:10 3276800] S3 gupdatem;Google Update-service (gupdatem); [x] S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [12/06/2011 11:15 31125880] S3 NEOWATCH;NEOWATCH;c:\windows\system32\Drivers\NWatch22.sys --> c:\windows\system32\Drivers\NWatch22.sys [?] S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [9/01/2010 22:37 4640000] S3 PciCon;PciCon;\??\e:\pcicon.sys --> e:\PciCon.sys [?] S3 pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [6/08/2009 23:33 47360] S3 RegFilter;RegFilter; [x] S3 SMCWGU(SMC);SMCWUSB-G 802.11g Wireless USB 2.0 Adapter(SMC);c:\windows\system32\drivers\SMCWGU.sys [16/08/2007 20:54 408064] S3 TfNetMon;TfNetMon; [x] S3 UrlFilter;UrlFilter; [x] S3 WinRM;Windows Remote Management (WS-Management);c:\windows\system32\svchost.exe -k WINRM [11/09/2002 14:00 14336] S4 FileMonitor;FileMonitor; [x] . --- Andere Services/Drivers In Geheugen --- . *Deregistered* - xcpip . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc WINRM REG_MULTI_SZ WINRM . [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}] 2008-06-09 08:14 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe . Inhoud van de 'Gedeelde Taken' map . 2012-03-31 c:\windows\Tasks\ASC5_AutoClean.job - f:\program files\Advanced SystemCare 5\AutoSweep.exe [2011-12-03 09:49] . 2012-03-30 c:\windows\Tasks\ASC5_AutoUpdate.job - f:\program files\Advanced SystemCare 5\AutoUpdate.exe [2011-12-03 18:13] . 2012-03-30 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1177238915-606747145-839522115-1004Core.job - c:\documents and settings\User\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-12-14 20:42] . 2012-03-31 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1177238915-606747145-839522115-1004UA.job - c:\documents and settings\User\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-12-14 20:42] . 2012-03-30 c:\windows\Tasks\NeroLiveEpgUpdate-USER-DJ4XE9X5VR_User.job - c:\program files\Nero\Nero 9\Nero Live\NeroLive.exe [2008-10-27 07:59] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/ uInternet Settings,ProxyServer = proxy.pandora.be:8080 uInternet Settings,ProxyOverride = 127.0.0.1 uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s TCP: DhcpNameServer = 192.168.2.1 DPF: DirectAnimation Java Classes DPF: Garmin Communicator Plug-In - hxxps://my.garmin.com/static/m/cab/2.8.3/GarminAxControl.CAB DPF: Microsoft XML Parser for Java DPF: {AE2B937E-EA7D-4A8D-888C-B68D7F72A3C4} - hxxp://as.photoprintit.de/ips-opdata/74914091/activex/IPSUploader4.cab . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2012-03-31 09:51 Windows 5.1.2600 Service Pack 3 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . --------------------- DLLs Geladen Onder Lopende Processen --------------------- . - - - - - - - > 'explorer.exe'(4564) c:\progra~1\COMMON~1\MICROS~1\OFFICE14\Cultures\office.odf c:\progra~1\MICROS~2\Office14\1043\GrooveIntlResource.dll c:\windows\system32\webcheck.dll c:\windows\system32\WPDShServiceObj.dll c:\program files\Nokia\Nokia PC Suite 6\phonebrowser.dll c:\program files\Nokia\Nokia PC Suite 6\PCSCM.dll c:\program files\Nokia\Nokia PC Suite 6\Lang\PhoneBrowser_dut.nlr c:\program files\Nokia\Nokia PC Suite 6\Resource\PhoneBrowser_Nokia.ngr c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll . ------------------------ Andere Aktieve Processen ------------------------ . c:\progra~1\AVG\AVG2012\avgrsx.exe c:\program files\AVG\AVG2012\avgcsrvx.exe c:\program files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe c:\program files\Bonjour\mDNSResponder.exe c:\program files\Creative\Shared Files\CTDevSrv.exe c:\program files\Java\jre6\bin\jqs.exe c:\program files\Common Files\LightScribe\LSSrvc.exe c:\program files\Common Files\Microsoft Shared\VS7Debug\mdm.exe c:\program files\Common Files\Nero\Nero BackItUp 4\NBService.exe c:\windows\system32\nvsvc32.exe c:\program files\Nero\Nero BackItUp 4\IoctlSvc.exe c:\program files\AVG\AVG2012\avgnsx.exe c:\program files\AVG\AVG2012\avgemcx.exe c:\program files\iPod\bin\iPodService.exe . ************************************************************************** . Voltooingstijd: 2012-03-31 09:57:33 - machine werd herstart ComboFix-quarantined-files.txt 2012-03-31 07:57 ComboFix2.txt 2012-01-17 14:03 ComboFix3.txt 2011-12-15 15:27 ComboFix4.txt 2011-11-12 09:16 ComboFix5.txt 2012-03-31 06:45 . Pre-Run: 16.315.453.440 bytes beschikbaar Post-Run: 16.275.865.600 bytes beschikbaar . - - End Of File - - 49D2963E83E82879CAFA940EC9939AC1
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.