brr01
-
Items
26 -
Registratiedatum
-
Laatst bezocht
Inhoudstype
Profielen
Forums
Store
Berichten die geplaatst zijn door brr01
-
-
Heb me een starterskit Devolo Dlan 500 Wifi aangeschaft. Installatie geen probleem. Alleen wil ik weten of ik het Devolo netwerk kan integreren in het bestaande Telenet netwerk. Als ik nu in een plaats kom waar de adapter insteekt springt hij over op het Devolo netwerk. Wat ik mij nu afvraag is of die adapter het Telenet netwerk kan gebruiken, want nu zit ik dus met 2 verschillende netwerken. Ik heb op YouTube een paar filmpjes gevonden die aangeven van de adapter kort bij de modem te steken en dat op WPS knop van de modem te drukken om zo het Telenet netwerk over te nemen, maar blijkbaar werkt dat niet bij mij. Ik blijf het Devolo netwerk zien in de ruimte waar de adapter steekt.
Iemand een suggestie ?
-
Momenteel heb ik de pc niet in mijn bezit. Zou vlug ik hem terug heb hou ik je op de hoogte ! Alvast bedankt !
-
Schijfcontrole is gebeurd.
-
De foutmeldingen zijn 80071A91, 80073712, 80070663 : er is een onbekende fout in Windows update opgetreden.
Ik heb getracht ze ook 1 per 1 te installeren , maar dat lukt ook niet.
-
Nu stonden er plotseling 75 updates te wachten, heb getracht ze te downlaoden en te installeren , enkel deze van Microsoft Office worden geinstalleerd. De andere, Windows beveligings updates lukken niet, krijg ik niet geinstalleerd ( 62 in totaal ).
-
Terug zetten naar de fabrieksinstellingen kan ik nu niet doen. Het is nl. de laptop van mijn dochter en zij zit momenteel in de examen. Ook heeft zij er van alles op geinstalleerd voor school, vandaar.
Mochten er nog mogelijkheden zijn om alsnog te proberen zou ik eerst dit willen doen.
In ieder geval wil ik je al heel hartelijk danken voor je hulp en de tijd die je er reeds ingestoken hebt !!!
-
7 minuten geleden, brr01 zei:
Het uploaden van het bestand lukt niet, heb de rechten er niet voor. Dat zal waarschijnlijk ook de reden zijn dat het txt bestand op het bureaublad leeg is. Raar omdat ik toch als administrator aangelogd ben.
-
49 minuten geleden, droske zei:
Plaats hier dan dat CBS.log bestand maar.
Het uploaden van het bestand lukt niet, heb de rechten er niet voor. Dat zal waarschijnlijk ook de reden zijn dat het txt bestand op het bureaublad leeg is. Raar omdat ik toch als administrator aangelogd ben.
-
2 uren geleden, droske zei:
Ga naar start -alle programma's - bureauaccessoires.
Klik met rechts op het icoon van de opdrachtprompt en kies voor uitvoeren als administrator om het opdrachtprompt te openen.
Typ sfc /scannow en druk enter. (let op de spatie voor de / )
Alle windows systeembestanden worden nu gecontroleerd op fouten en indien nodig vervangen door een correcte versie.
Hou de windows installatie cd/dvd bij de hand (als je er een hebt) want er kan om gevraagd worden.
Na de scan krijg je een overzicht van de resultaten en een verwijzing naar een CBS logbestand.
Wanneer u de melding krijgt: "Er zijn geen schendingen van de integriteit gevonden", voert u onderstaande niet uit. Krijgt u wel foutmeldingen, dan kan u onderstaande uitvoeren zodat we in een logje naar je problemen kunnen zien.
Typ nu findstr /c:"[sR]" %windir%\Logs\CBS\CBS.log > "%userprofile%\Desktop\sfcdetails.txt" en druk enter.
Let op de spatie voor de / en %windir% en voor en na de >.
Nu zou je op je bureaublad het bestandje sfcdetails.txt moeten zien.
Voeg dit bestandje als bijlage toe aan een volgend bericht.
Hoe je een bijlage toevoegt aan een bericht, kan je lezen in deze handleiding.
Na sfc /scannow krijg ik volgende melding : Er zijn beschadigde bestanden gevonden, maar deze kunnen niet allemaal worden hersteld. De bestanden zijn opgenomen in CBS.log.
Als ik dan het commando findstr.......... uitvoer krijg ik echter een leeg bestand sfcdetails.txt. Als ik ga kijken in Logs zie ik daar het bestand CBS.log staan met 4763 kB.
-
18 uren geleden, droske zei:
Ik heb mijn archieven nog eens geraadpleegd.
Doe nadat je mijn adviezen van gisteren om 12:21 hebt uitgevoerd nog eens het volgende.
Download en installeer DEZE update.
Als deze lukt dan mag je wel 'Naar updates zoeken' nadat je de pc hebt afgesloten en opnieuw opgestart.
Na bijna 20 uren nog geen updates... nu opnieuw begonnen met uw adviezen van gisteren 12:21 en daarna getrachr van update KB172605 te installeren, maar ook
dit lukt helaas niet.
-
1 uur terug, droske zei:
Dat had je niet moeten doen. Had ik ook niet gezegd van te doen. Gewoon wachten had je moeten doen.
OK, ga het opnieuw doen en dan afwachten of het lukt.
-
1 uur terug, Passer zei:
Probeer eens of je deze kan binnenhalen?
Heb ik reeds gedaan, maar ook zonder resultaat ...
-
-
Is nu van gisterenavond 19u00 updates aan het zoeken ( = 16 uren ), maar nog niets gevonden ....
-
Spoiler
Deze lukt ook niet, krijg steeds " update installatie mislukt " , zelfde voor : KB3020369, KB3102810, KB3083710, KB3138612.
Enkel de Hotfix KB947821 is gelukt...
-
-
Bedankt voor de info. Maar ook dit heb ik reeds geprobeerd, zonder resultaat. Het lukt niet om de 2 updates , zijnde KB3020369 en KB3172605 te installeren. Krijg steeds de melding " update mislukt " .
-
Heb 2 dezelfde laptops met Windows 7 SP1. Op de ene gaan de updates vanzelf, de andere heeft sinds eind 2015 geen enkele update meer geinstalleerd. Heb reeds vanalles geprobeerd , maar tot op heden is het nog steeds niet gelukt. Hij blijft gewoon zoeken naar updates, maar vind er blijkbaar geen. Gisteren nog 12 uren laten zoeken, maar zonder resultaat. De info is volgende pagina's heb ik reeds toegepast, ook zonder resultaat :
Manueel dowloaden en daarna installeren lukt ook niet ( melding " installatie update mislukt ). Heb de firewalls, virusscanner enz. uitgeschakeld maar ook dan geen resultaat.AdwCleaner, Malwarebytes, Norton Antivirus, CCcleaner enz. laten lopen, geen resultaat...blijft zoeken naar updates.Iemand die dit probleem kent of ook gehad heeft ? Alvast bedankt voor jullie hulp ...is zeer welkom ! -
Heb sinds een paar dagen een probleem met de printer ( Probleem HP Photosmart Wireless B109n-z ). Wanneer ik iets wil afprinten krijg ik eerst de melding " Bezig met afdrukken .... ". Er gebeurt echter niets. Na wat een 20-tal seconden krijg ik dan " fout bij het afdrukken op HP Photosmart .... , de printer kan de pagina niet afdrukken ".
Heb de software reeds verwijderd en terug geïnstalleerd, heb de drivers al verwijderd en terug geïnstalleerd...maar ook dit helpt allemaal niet. Een testpagina afprinten lukt wel, de printer is gekend in het netwerk. Heb ook de stekker reeds uitgetrokken , even gewacht en daarna opnieuw ingestoken ook dit helpt niet. Daar de printer in een netwerk zit, heb ik het ook geprobeerd vanaf een andere laptop, ook dit helpt niet Hier krijt ik dan de melding : " printer is offline " .
Besturingssysteem : Windows 8.1 ( hij heeft hieronder gewerkt, dus normaal ligt het niet aan Windows.... )
Iemand enig idee ? Alvast bedankt voor de hulp.
-
Is gebeurd .
-
Is echt al veel beter, enkel eBay.com blijft heel traag en blijft soms hangen. Voor de rest is de snelheid merkbaar beter !! Waarvoor dank !!!!
-
Ziehier de nieuwe ComboFix log :
ComboFix 12-10-18.03 - Administrator 18/10/2012 20:50:56.4.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.31.1043.18.2047.1353 [GMT 2:00]
Gestart vanuit: c:\documents and settings\Administrator\Bureaublad\ComboFix.exe
gebruikte Opdracht switches :: c:\documents and settings\Administrator\Bureaublad\CFScript.txt
AV: Panda Antivirus Pro 2013 *Disabled/Updated* {EEE2D94A-D4C1-421A-AB2C-2CE8FE51747A}
FW: Panda Personal Firewall 2013 *Disabled* {7B090DC0-8905-4BAF-8040-FD98A41C8FB8}
.
.
(((((((((((((((((((( Bestanden Gemaakt van 2012-09-18 to 2012-10-18 ))))))))))))))))))))))))))))))
.
.
2012-10-15 19:11 . 2008-04-14 20:32 116736 -c--a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2012-10-15 19:10 . 2001-09-06 19:27 23040 -c--a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2012-10-15 19:10 . 2008-04-14 20:32 18944 -c--a-w- c:\windows\system32\dllcache\xrxscnui.dll
2012-10-15 19:10 . 2001-09-06 19:27 27648 -c--a-w- c:\windows\system32\dllcache\xrxftplt.exe
2012-10-15 19:10 . 2001-09-06 19:27 4608 -c--a-w- c:\windows\system32\dllcache\xrxflnch.exe
2012-10-15 19:10 . 2001-09-06 19:27 99865 -c--a-w- c:\windows\system32\dllcache\xlog.exe
2012-10-15 19:10 . 2001-08-17 18:11 16970 -c--a-w- c:\windows\system32\dllcache\xem336n5.sys
2012-10-15 19:10 . 2008-04-13 20:04 19455 -c--a-w- c:\windows\system32\dllcache\wvchntxx.sys
2012-10-15 19:10 . 2008-04-13 22:16 19200 -c--a-w- c:\windows\system32\dllcache\wstcodec.sys
2012-10-15 19:10 . 2008-04-13 20:04 12063 -c--a-w- c:\windows\system32\dllcache\wsiintxx.sys
2012-10-15 19:10 . 2008-04-14 20:32 8192 -c--a-w- c:\windows\system32\dllcache\wshirda.dll
2012-10-15 19:10 . 2008-04-13 22:06 8832 -c--a-w- c:\windows\system32\dllcache\wmiacpi.sys
2012-10-15 19:10 . 2008-04-13 20:05 154624 -c--a-w- c:\windows\system32\dllcache\wlluc48.sys
2012-10-15 19:08 . 2001-08-17 18:13 16925 -c--a-w- c:\windows\system32\dllcache\w940nd.sys
2012-10-15 19:07 . 2001-08-17 19:28 113762 -c--a-w- c:\windows\system32\dllcache\usrpda.sys
2012-10-15 19:06 . 2001-08-17 19:58 22912 -c--a-w- c:\windows\system32\dllcache\umaxpcls.sys
2012-10-15 19:06 . 2001-09-06 19:27 50176 -c--a-w- c:\windows\system32\dllcache\umaxp60.dll
2012-10-15 19:06 . 2001-09-06 19:27 47616 -c--a-w- c:\windows\system32\dllcache\umaxcam.dll
2012-10-15 19:06 . 2001-09-06 19:27 212480 -c--a-w- c:\windows\system32\dllcache\um54scan.dll
2012-10-15 19:06 . 2001-09-06 19:27 216576 -c--a-w- c:\windows\system32\dllcache\um34scan.dll
2012-10-15 19:06 . 2001-08-17 19:52 36736 -c--a-w- c:\windows\system32\dllcache\ultra.sys
2012-10-15 19:06 . 2008-04-13 22:06 44672 -c--a-w- c:\windows\system32\dllcache\uagp35.sys
2012-10-15 19:06 . 2001-08-17 19:48 11520 -c--a-w- c:\windows\system32\dllcache\twotrack.sys
2012-10-15 19:06 . 2001-08-17 18:51 166784 -c--a-w- c:\windows\system32\dllcache\tridxpm.sys
2012-10-15 19:06 . 2001-09-06 19:27 525568 -c--a-w- c:\windows\system32\dllcache\tridxp.dll
2012-10-15 19:06 . 2001-08-17 18:51 159232 -c--a-w- c:\windows\system32\dllcache\tridkbm.sys
2012-10-15 19:05 . 2001-09-06 19:26 440576 -c--a-w- c:\windows\system32\dllcache\tridkb.dll
2012-10-15 19:05 . 2001-08-17 18:51 222336 -c--a-w- c:\windows\system32\dllcache\trid3dm.sys
2012-10-15 19:05 . 2001-09-06 19:26 315520 -c--a-w- c:\windows\system32\dllcache\trid3d.dll
2012-10-15 19:05 . 2001-08-17 18:12 34375 -c--a-w- c:\windows\system32\dllcache\tpro4.sys
2012-10-15 19:05 . 2001-09-06 19:26 43008 -c--a-w- c:\windows\system32\dllcache\tp4res.dll
2012-10-15 19:05 . 2008-04-14 20:33 82944 -c--a-w- c:\windows\system32\dllcache\tp4mon.exe
2012-10-15 19:05 . 2001-09-06 19:27 31744 -c--a-w- c:\windows\system32\dllcache\tp4.dll
2012-10-15 19:05 . 2001-09-06 16:37 4992 -c--a-w- c:\windows\system32\dllcache\toside.sys
2012-10-15 19:05 . 2001-08-17 20:02 230912 -c--a-w- c:\windows\system32\dllcache\tosdvd03.sys
2012-10-15 19:05 . 2001-08-17 20:01 241664 -c--a-w- c:\windows\system32\dllcache\tosdvd02.sys
2012-10-15 19:05 . 2001-08-17 18:10 28232 -c--a-w- c:\windows\system32\dllcache\tos4mo.sys
2012-10-15 19:05 . 2001-08-17 18:14 123995 -c--a-w- c:\windows\system32\dllcache\tjisdn.sys
2012-10-15 19:04 . 2001-08-17 18:51 138528 -c--a-w- c:\windows\system32\dllcache\tgiulnt5.sys
2012-10-15 19:04 . 2001-09-06 19:26 81408 -c--a-w- c:\windows\system32\dllcache\tgiul50.dll
2012-10-15 19:04 . 2008-04-13 22:10 149376 -c--a-w- c:\windows\system32\dllcache\tffsport.sys
2012-10-15 19:04 . 2001-08-17 18:13 17129 -c--a-w- c:\windows\system32\dllcache\tdkcd31.sys
2012-10-15 19:04 . 2001-08-17 18:13 37961 -c--a-w- c:\windows\system32\dllcache\tdk100b.sys
2012-10-15 19:04 . 2001-08-17 19:49 30464 -c--a-w- c:\windows\system32\dllcache\tbatm155.sys
2012-10-15 19:04 . 2001-08-17 19:52 7040 -c--a-w- c:\windows\system32\dllcache\tandqic.sys
2012-10-15 19:04 . 2001-08-17 18:50 36640 -c--a-w- c:\windows\system32\dllcache\t2r4mini.sys
2012-10-15 19:04 . 2001-09-06 19:26 172768 -c--a-w- c:\windows\system32\dllcache\t2r4disp.dll
2012-10-15 19:04 . 2001-08-17 20:07 32640 -c--a-w- c:\windows\system32\dllcache\symc8xx.sys
2012-10-15 19:04 . 2001-08-17 20:07 16256 -c--a-w- c:\windows\system32\dllcache\symc810.sys
2012-10-15 19:02 . 2001-08-17 18:11 48736 -c--a-w- c:\windows\system32\dllcache\srwlnd5.sys
2012-10-15 19:02 . 2001-09-06 19:27 99840 -c--a-w- c:\windows\system32\dllcache\srusd.dll
2012-10-15 19:02 . 2001-09-06 19:27 24660 -c--a-w- c:\windows\system32\dllcache\spxupchk.dll
2012-10-15 19:02 . 2001-08-17 19:51 61824 -c--a-w- c:\windows\system32\dllcache\speed.sys
2012-10-15 19:02 . 2001-09-06 19:27 106584 -c--a-w- c:\windows\system32\dllcache\spdports.dll
2012-10-15 19:02 . 2001-08-17 20:07 19072 -c--a-w- c:\windows\system32\dllcache\sparrow.sys
2012-10-15 19:02 . 2001-08-17 19:56 7552 -c--a-w- c:\windows\system32\dllcache\sonypvu1.sys
2012-10-15 19:02 . 2001-08-17 18:51 37040 -c--a-w- c:\windows\system32\dllcache\sonypi.sys
2012-10-15 19:02 . 2001-09-06 19:27 114688 -c--a-w- c:\windows\system32\dllcache\sonypi.dll
2012-10-15 19:02 . 2001-08-17 18:51 20752 -c--a-w- c:\windows\system32\dllcache\sonync.sys
2012-10-15 19:00 . 2001-09-06 19:27 28672 -c--a-w- c:\windows\system32\dllcache\sma0w.dll
2012-10-15 18:59 . 2001-09-06 18:49 161760 -c--a-w- c:\windows\system32\dllcache\sgsmusb.sys
2012-10-15 18:58 . 2001-08-17 18:50 75392 -c--a-w- c:\windows\system32\dllcache\s3savmxm.sys
2012-10-15 18:57 . 2001-08-17 18:19 30720 -c--a-w- c:\windows\system32\dllcache\rthwcls.sys
2012-10-15 18:56 . 2001-08-17 19:52 49024 -c--a-w- c:\windows\system32\dllcache\ql1280.sys
2012-10-15 18:55 . 2001-09-06 19:27 121344 -c--a-w- c:\windows\system32\dllcache\phvfwext.dll
2012-10-15 18:54 . 2008-04-13 20:05 29502 -c--a-w- c:\windows\system32\dllcache\pca200e.sys
2012-10-15 18:54 . 2001-08-17 18:12 30495 -c--a-w- c:\windows\system32\dllcache\pc100nds.sys
2012-10-15 18:54 . 2001-09-06 19:27 42496 -c--a-w- c:\windows\system32\dllcache\ovui2rc.dll
2012-10-15 18:54 . 2001-09-06 19:27 44544 -c--a-w- c:\windows\system32\dllcache\ovui2.dll
2012-10-15 18:54 . 2001-08-17 20:05 25216 -c--a-w- c:\windows\system32\dllcache\ovsound2.sys
2012-10-15 18:54 . 2001-09-06 19:27 39424 -c--a-w- c:\windows\system32\dllcache\ovcoms.exe
2012-10-15 18:54 . 2001-09-06 19:27 20480 -c--a-w- c:\windows\system32\dllcache\ovcomc.dll
2012-10-15 18:54 . 2001-08-17 20:05 351616 -c--a-w- c:\windows\system32\dllcache\ovcodek2.sys
2012-10-15 18:54 . 2001-09-06 19:27 116736 -c--a-w- c:\windows\system32\dllcache\ovcodec2.dll
2012-10-15 18:54 . 2001-08-17 20:05 31872 -c--a-w- c:\windows\system32\dllcache\ovce.sys
2012-10-15 18:54 . 2001-08-17 20:05 28032 -c--a-w- c:\windows\system32\dllcache\ovcd.sys
2012-10-15 18:54 . 2001-08-17 20:05 48000 -c--a-w- c:\windows\system32\dllcache\ovcam2.sys
2012-10-15 18:54 . 2001-08-17 20:05 25088 -c--a-w- c:\windows\system32\dllcache\ovca.sys
2012-10-15 18:52 . 2001-08-17 18:20 126080 -c--a-w- c:\windows\system32\dllcache\nm5a2wdm.sys
2012-10-15 18:51 . 2001-09-06 17:31 131072 -c--a-w- c:\windows\system32\dllcache\n100325.sys
2012-10-15 18:50 . 2001-08-17 20:00 2944 -c--a-w- c:\windows\system32\dllcache\msmpu401.sys
2012-10-15 18:50 . 2008-04-13 22:24 22016 -c--a-w- c:\windows\system32\dllcache\msircomm.sys
2012-10-15 18:50 . 2001-08-17 20:02 35200 -c--a-w- c:\windows\system32\dllcache\msgame.sys
2012-10-15 18:50 . 2001-08-17 19:48 6016 -c--a-w- c:\windows\system32\dllcache\msfsio.sys
2012-10-15 18:50 . 2008-04-13 22:16 51200 -c--a-w- c:\windows\system32\dllcache\msdv.sys
2012-10-15 18:50 . 2001-08-17 19:52 17280 -c--a-w- c:\windows\system32\dllcache\mraid35x.sys
2012-10-15 18:50 . 2008-04-13 22:16 15232 -c--a-w- c:\windows\system32\dllcache\mpe.sys
2012-10-15 18:50 . 2001-08-17 19:57 16128 -c--a-w- c:\windows\system32\dllcache\modemcsa.sys
2012-10-15 18:48 . 2001-08-17 19:28 802683 -c--a-w- c:\windows\system32\dllcache\ltsm.sys
2012-10-15 18:47 . 2001-09-06 19:26 8192 -c--a-w- c:\windows\system32\dllcache\kbdkor.dll
2012-10-15 18:47 . 2001-09-06 19:26 8704 -c--a-w- c:\windows\system32\dllcache\kbdjpn.dll
2012-10-15 18:47 . 2008-04-14 20:31 6144 -c--a-w- c:\windows\system32\dllcache\kbd106.dll
2012-10-15 18:47 . 2001-08-17 20:55 5632 -c--a-w- c:\windows\system32\dllcache\kbd103.dll
2012-10-15 18:47 . 2001-08-17 20:55 6144 -c--a-w- c:\windows\system32\dllcache\kbd101c.dll
2012-10-15 18:47 . 2001-08-17 20:55 6144 -c--a-w- c:\windows\system32\dllcache\kbd101b.dll
2012-10-15 18:47 . 2001-08-17 19:49 26624 -c--a-w- c:\windows\system32\dllcache\irstusb.sys
2012-10-15 18:47 . 2001-08-17 19:51 18688 -c--a-w- c:\windows\system32\dllcache\irsir.sys
2012-10-15 18:47 . 2008-04-14 20:32 29184 -c--a-w- c:\windows\system32\dllcache\irmon.dll
2012-10-15 18:47 . 2001-08-17 19:49 23552 -c--a-w- c:\windows\system32\dllcache\irmk7.sys
2012-10-15 18:47 . 2008-04-14 20:33 153088 -c--a-w- c:\windows\system32\dllcache\irftp.exe
2012-10-15 18:47 . 2008-04-13 22:24 88192 -c--a-w- c:\windows\system32\dllcache\irda.sys
2012-10-15 18:47 . 2008-04-13 22:15 46592 -c--a-w- c:\windows\system32\dllcache\irbus.sys
2012-10-15 18:46 . 2001-08-17 18:12 45632 -c--a-w- c:\windows\system32\dllcache\ip5515.sys
2012-10-15 18:46 . 2001-09-06 19:26 90200 -c--a-w- c:\windows\system32\dllcache\io8ports.dll
2012-10-15 18:46 . 2001-08-17 19:50 38784 -c--a-w- c:\windows\system32\dllcache\io8.sys
2012-10-15 18:46 . 2001-09-06 16:16 13568 -c--a-w- c:\windows\system32\dllcache\inport.sys
2012-10-15 18:46 . 2001-08-17 19:52 16000 -c--a-w- c:\windows\system32\dllcache\ini910u.sys
2012-10-15 18:46 . 2001-09-06 19:26 372824 -c--a-w- c:\windows\system32\dllcache\iconf32.dll
2012-10-15 18:46 . 2001-08-17 20:06 100992 -c--a-w- c:\windows\system32\dllcache\icam5usb.sys
2012-10-15 18:46 . 2001-09-06 19:26 20992 -c--a-w- c:\windows\system32\dllcache\icam5ext.dll
2012-10-15 18:46 . 2001-09-06 19:26 45056 -c--a-w- c:\windows\system32\dllcache\icam5com.dll
2012-10-15 18:46 . 2001-08-17 20:06 154496 -c--a-w- c:\windows\system32\dllcache\icam4usb.sys
2012-10-15 18:46 . 2001-09-06 19:26 62976 -c--a-w- c:\windows\system32\dllcache\icam4ext.dll
2012-10-15 18:44 . 2001-08-17 19:28 57471 -c--a-w- c:\windows\system32\dllcache\hsf_samp.sys
2012-10-15 18:43 . 2001-08-17 20:02 2688 -c--a-w- c:\windows\system32\dllcache\hidswvd.sys
2012-10-15 18:42 . 2001-08-17 18:15 455680 -c--a-w- c:\windows\system32\dllcache\fus2base.sys
2012-10-15 18:41 . 2001-08-17 18:19 63360 -c--a-w- c:\windows\system32\dllcache\ess.sys
2012-10-15 18:40 . 2001-08-17 18:12 19594 -c--a-w- c:\windows\system32\dllcache\e100isa4.sys
2012-10-15 18:39 . 2001-08-17 18:13 91305 -c--a-w- c:\windows\system32\dllcache\dimaint.sys
2012-10-15 18:38 . 2001-09-06 17:27 14848 -c--a-w- c:\windows\system32\dllcache\cyclom-y.sys
2012-10-15 18:37 . 2008-04-13 22:11 8192 -c--a-w- c:\windows\system32\dllcache\changer.sys
2012-10-15 18:36 . 2001-09-06 16:47 13952 -c--a-w- c:\windows\system32\dllcache\bulltlp3.sys
2012-10-15 18:35 . 2008-04-13 20:04 73216 -c--a-w- c:\windows\system32\dllcache\atintuxx.sys
2012-10-15 18:34 . 2008-04-13 20:06 84480 -c--a-w- c:\windows\system32\dllcache\ac97via.sys
2012-10-15 06:45 . 2012-09-19 19:38 167424 ----a-w- c:\windows\zoek-delete.exe
.
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-09 18:24 . 2012-07-01 14:09 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-10-09 18:24 . 2012-07-01 14:09 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-08-28 15:17 . 2008-04-15 12:00 916992 ----a-w- c:\windows\system32\wininet.dll
2012-08-28 15:17 . 2008-04-15 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2012-08-28 15:17 . 2008-04-15 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-08-28 12:07 . 2008-04-15 12:00 385024 ------w- c:\windows\system32\html.iec
2012-08-24 13:53 . 2008-04-15 12:00 177664 ----a-w- c:\windows\system32\wintrust.dll
2012-08-23 06:27 . 2008-04-15 12:00 2153472 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-08-23 06:27 . 2008-04-14 22:11 2032128 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-07-23 15:40 . 2012-07-23 15:40 1060864 ----a-w- c:\windows\system32\mfc71.dll
2011-06-09 10:03 . 2011-08-09 10:34 3486088 -c--a-w- c:\program files\Common Files\ApnToolbarInstaller.exe
2011-06-09 10:03 . 2011-08-09 10:34 143240 -c--a-w- c:\program files\Common Files\ApnStub.exe
2010-01-26 09:11 . 2011-08-09 10:34 444283 -c--a-w- c:\program files\Common Files\WinPcapNmap.exe
2011-04-14 16:57 . 2011-06-18 13:02 142296 -c--a-w- c:\program files\mozilla firefox\components\browsercomps.dll
2008-04-15 12:00 94784 -csh--w- c:\windows\twain.dll
2008-04-15 12:00 50688 --sh--w- c:\windows\twain_32.dll
2008-04-15 12:00 57344 -csh--w- c:\windows\system32\msvcirt.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb04.exe" [2001-08-04 196608]
"CXMon"="c:\program files\Hewlett-Packard\PhotoSmart\Photo Imaging\Hpi_Monitor.exe" [2001-08-09 45056]
"HP Software Update"="c:\program files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe" [2011-05-10 49208]
"hpqSRMon"="c:\program files\Hewlett-Packard\Digital Imaging\bin\hpqSRMon.exe" [2008-08-20 150016]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-09-08 98304]
"APVXDWIN"="c:\program files\Panda Security\Panda Antivirus Pro 2013\APVXDWIN.EXE" [2012-06-21 1053984]
"SCANINICIO"="c:\program files\Panda Security\Panda Antivirus Pro 2013\Inicio.exe" [2012-06-08 70432]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2009-05-26 413696]
"TkBellExe"="c:\program files\Real\RealPlayer\update\realsched.exe" [2012-10-10 296096]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-15 15360]
.
c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\
HP Digital Imaging Monitor.lnk - c:\program files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe [2009-11-18 275072]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLinkedConnections"= 1 (0x1)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avldr]
2010-03-24 10:55 55552 ----a-w- c:\windows\system32\avldr.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0SmartDefragBootTime.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PskSvcRetail]
@="Service"
.
[HKLM\~\startupfolder\C:^Documents and Settings^Administrator^Menu Start^Programma's^Opstarten^Adobe Gamma.lnk]
backup=c:\windows\pss\Adobe Gamma.lnkStartup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Windows Search.lnk]
backup=c:\windows\pss\Windows Search.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^WinZip Quick Pick.lnk]
backup=c:\windows\pss\WinZip Quick Pick.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-07-11 19:00 919008 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2012-07-31 11:20 38872 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
2010-08-20 11:03 33120 ----a-w- c:\program files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
2007-06-01 08:21 153136 ----a-w- c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesHelper]
2011-04-28 23:24 934800 ----a-w- c:\program files\Samsung\Kies\KiesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR]
2011-04-28 23:24 19856 ----a-w- c:\program files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
2011-04-28 23:24 3373968 ----a-w- c:\program files\Samsung\Kies\KiesTrayAgent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
2010-04-16 21:12 3872080 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2007-03-01 13:57 153136 ----a-w- c:\program files\Common Files\Ahead\Lib\NeroCheck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2009-05-26 15:18 413696 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ThrustTSR]
2000-10-11 22:15 151552 ----a-w- c:\program files\ThrustMaster\ThrustMapper\TMTMTSR.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe]
2010-06-24 14:41 247144 ----a-w- c:\program files\TomTom HOME 2\TomTomHOMERunner.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"TomTomHOMEService"=2 (0x2)
"StarWindServiceAE"=2 (0x2)
"ose"=3 (0x3)
"odserv"=3 (0x3)
"NMIndexingService"=3 (0x3)
"Microsoft Office Groove Audit Service"=3 (0x3)
"MDM"=2 (0x2)
"idsvc"=3 (0x3)
"IDriverT"=3 (0x3)
"gupdatem"=3 (0x3)
"gupdate"=2 (0x2)
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"d:\\Games\\GP4\\GP4.exe"=
"c:\\Program Files\\FrostWire\\FrostWire.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\{722B4A13-F24D-43AE-8813-5DB82C0B23C2}\\setup\\hpznui01.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpfcCopy.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpiscnapp.exe"=
"c:\\Program Files\\Common Files\\HP\\Digital Imaging\\Bin\\hpqPhotoCrm.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqsudi.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqpsapp.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqpse.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqgplgtupl.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqgpc01.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqusgm.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqusgh.exe"=
"c:\\Program Files\\Hewlett-Packard\\HP Software Update\\hpwucli.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\smart web printing\\SmartWebPrintExe.exe"=
"c:\\Program Files\\eBay\\Turbo Lister2\\Tl.exe"=
"d:\\Games\\f1 2010\\F1_2010_game.exe"=
"c:\\WINDOWS\\system32\\ftp.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
.
R0 pavboot;Panda boot driver;c:\windows\system32\drivers\pavboot.sys [26/09/2012 19:14 26696]
R0 SmartDefragDriver;SmartDefragDriver;c:\windows\system32\drivers\SmartDefragDriver.sys [10/01/2012 15:57 14776]
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [24/09/2010 15:18 436792]
R1 APPFLT;App Filter Plugin;c:\windows\system32\drivers\APPFLT.SYS [27/09/2012 20:30 83528]
R1 DSAFLT;DSA Filter Plugin;c:\windows\system32\drivers\dsaflt.sys [27/09/2012 20:30 53256]
R1 FNETMON;NetMon Filter Plugin;c:\windows\system32\drivers\fnetmon.sys [27/09/2012 20:30 22024]
R1 IDSFLT;Ids Filter Plugin;c:\windows\system32\drivers\idsflt.sys [27/09/2012 20:30 193864]
R1 NETFLTDI;Panda Net Driver [TDI Layer];c:\windows\system32\drivers\NETFLTDI.SYS [27/09/2012 20:30 159112]
R1 ShldDrv;Panda File Shield Driver;c:\windows\system32\drivers\ShlDrv51.sys [26/09/2012 19:13 37448]
R1 WNMFLT;Wifi Monitor Filter Plugin;c:\windows\system32\drivers\wnmflt.sys [27/09/2012 20:30 46856]
R2 AmFSM;AmFSM;c:\windows\system32\drivers\amm8651.sys [26/09/2012 19:13 63240]
R2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [27/01/2010 4:09 50704]
R2 PavProc;Panda Process Protection Driver;c:\windows\system32\drivers\PavProc.sys [26/09/2012 19:13 164488]
R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service;c:\program files\Common Files\PC Tools\sMonitor\StartManSvc.exe [8/07/2012 21:41 793048]
R2 PskSvcRetail;Panda PSK service;c:\program files\Panda Security\Panda Antivirus Pro 2013\psksvc.exe [26/09/2012 19:14 28992]
R3 AvFlt;Antivirus Filter Driver;c:\windows\system32\drivers\av5flt.sys --> c:\windows\system32\drivers\av5flt.sys [?]
R3 cmudax;C-Media High Definition Audio Interface;c:\windows\system32\drivers\cmudax.sys [15/02/2006 17:51 1301568]
R3 NETIMFLT01060044;PANDA NDIS IM Filter Miniport v1.6.0.44;c:\windows\system32\drivers\neti1644.sys [26/09/2012 19:13 201032]
R3 PavSRK.sys;PavSRK.sys;\??\c:\windows\system32\PavSRK.sys --> c:\windows\system32\PavSRK.sys [?]
R3 PavTPK.sys;PavTPK.sys;\??\c:\windows\system32\PavTPK.sys --> c:\windows\system32\PavTPK.sys [?]
R3 Pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [12/08/2009 20:25 47360]
S1 SBRE;SBRE;c:\windows\system32\drivers\SBREDrv.sys --> c:\windows\system32\drivers\SBREDrv.sys [?]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [1/07/2012 16:09 250808]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\drivers\ssadbus.sys [9/05/2011 17:01 121192]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\drivers\ssadmdfl.sys [9/05/2011 17:01 12776]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\drivers\ssadmdm.sys [9/05/2011 17:01 136680]
S4 gupdate;Google Updateservice (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2/06/2011 21:29 135664]
S4 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2/06/2011 21:29 135664]
S4 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [24/06/2010 16:41 92008]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
HPService REG_MULTI_SZ HPSLPSVC
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Inhoud van de 'Gedeelde Taken' map
.
2012-10-18 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-01 18:24]
.
2012-10-18 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-06-02 19:29]
.
2012-10-18 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-06-02 19:29]
.
2012-10-18 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-1757981266-220523388-1177238915-500.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2012-07-27 12:27]
.
2012-10-18 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-1757981266-220523388-1177238915-500.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2012-07-27 12:27]
.
2012-10-18 c:\windows\Tasks\SmartDefrag_Startup.job
- c:\program files\IObit\Smart Defrag 2\SmartDefrag.exe [2011-10-28 13:26]
.
.
------- Bijkomende Scan -------
.
uStart Page = hxxp://www.hln.be/
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949}
Trusted Zone: imes.be\citrix
Trusted Zone: localhost
TCP: DhcpNameServer = 195.130.131.3 195.130.130.131
FF - ProfilePath - c:\documents and settings\Administrator\Application Data\Mozilla\Firefox\Profiles\yc5h7gs5.default\
FF - ExtSQL: 2012-10-10 21:26; {0153E448-190B-4987-BDE1-F256CADA672F}; c:\documents and settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF - ExtSQL: !HIDDEN! 2010-09-03 00:17; smartwebprinting@hp.com; c:\program files\Hewlett-Packard\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover
Rootkit scan 2012-10-18 20:58
Windows 5.1.2600 Service Pack 3 NTFS
.
scannen van verborgen processen ...
.
scannen van verborgen autostart items ...
.
scannen van verborgen bestanden ...
.
Scan succesvol afgerond
verborgen bestanden: 0
.
**************************************************************************
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_USERS\S-1-5-21-1757981266-220523388-1177238915-500\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (Administrator)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,ae,01,4b,2b,3c,d8,b0,4a,aa,20,0f,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,0c,bc,f7,96,22,4d,88,40,be,e0,ca,\
"6256FFB019F8FDFBD36745B06F4540E9AEAF222A25"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,ae,01,4b,2b,3c,d8,b0,4a,aa,20,0f,\
.
[HKEY_USERS\S-1-5-21-1757981266-220523388-1177238915-500\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- DLLs Geladen Onder Lopende Processen ---------------------
.
- - - - - - - > 'winlogon.exe'(1100)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
c:\windows\system32\avldr.dll
.
- - - - - - - > 'explorer.exe'(7084)
c:\windows\system32\msi.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
c:\program files\Panda Security\Panda Antivirus Pro 2013\PavTrc.dll
.
Voltooingstijd: 2012-10-18 21:00:32
ComboFix-quarantined-files.txt 2012-10-18 19:00
ComboFix2.txt 2012-10-18 16:55
.
Pre-Run: 16.430.223.360 bytes beschikbaar
Post-Run: 16.480.571.392 bytes beschikbaar
.
- - End Of File - - 9EC7B1EDC588A2848B9A18DCF360C1DD
-
Hier is de ComboFix log :
ComboFix 12-10-18.03 - Administrator 18/10/2012 18:45:56.3.2 - x86
Microsoft Windows XP Professional 5.1.2600.3.1252.31.1043.18.2047.1304 [GMT 2:00]
Gestart vanuit: c:\documents and settings\Administrator\Bureaublad\ComboFix.exe
AV: Panda Antivirus Pro 2013 *Disabled/Updated* {EEE2D94A-D4C1-421A-AB2C-2CE8FE51747A}
FW: Panda Personal Firewall 2013 *Disabled* {7B090DC0-8905-4BAF-8040-FD98A41C8FB8}
.
.
(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\Version.dll . . . is geïnfecteerd!!
.
.
(((((((((((((((((((( Bestanden Gemaakt van 2012-09-18 to 2012-10-18 ))))))))))))))))))))))))))))))
.
.
2012-10-15 19:11 . 2008-04-14 20:32 116736 -c--a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2012-10-15 19:10 . 2001-09-06 19:27 23040 -c--a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2012-10-15 19:10 . 2008-04-14 20:32 18944 -c--a-w- c:\windows\system32\dllcache\xrxscnui.dll
2012-10-15 19:10 . 2001-09-06 19:27 27648 -c--a-w- c:\windows\system32\dllcache\xrxftplt.exe
2012-10-15 19:10 . 2001-09-06 19:27 4608 -c--a-w- c:\windows\system32\dllcache\xrxflnch.exe
2012-10-15 19:10 . 2001-09-06 19:27 99865 -c--a-w- c:\windows\system32\dllcache\xlog.exe
2012-10-15 19:10 . 2001-08-17 18:11 16970 -c--a-w- c:\windows\system32\dllcache\xem336n5.sys
2012-10-15 19:10 . 2008-04-13 20:04 19455 -c--a-w- c:\windows\system32\dllcache\wvchntxx.sys
2012-10-15 19:10 . 2008-04-13 22:16 19200 -c--a-w- c:\windows\system32\dllcache\wstcodec.sys
2012-10-15 19:10 . 2008-04-13 20:04 12063 -c--a-w- c:\windows\system32\dllcache\wsiintxx.sys
2012-10-15 19:10 . 2008-04-14 20:32 8192 -c--a-w- c:\windows\system32\dllcache\wshirda.dll
2012-10-15 19:10 . 2008-04-13 22:06 8832 -c--a-w- c:\windows\system32\dllcache\wmiacpi.sys
2012-10-15 19:10 . 2008-04-13 20:05 154624 -c--a-w- c:\windows\system32\dllcache\wlluc48.sys
2012-10-15 19:08 . 2001-08-17 18:13 16925 -c--a-w- c:\windows\system32\dllcache\w940nd.sys
2012-10-15 19:07 . 2001-08-17 19:28 113762 -c--a-w- c:\windows\system32\dllcache\usrpda.sys
2012-10-15 19:06 . 2001-08-17 19:58 22912 -c--a-w- c:\windows\system32\dllcache\umaxpcls.sys
2012-10-15 19:06 . 2001-09-06 19:27 50176 -c--a-w- c:\windows\system32\dllcache\umaxp60.dll
2012-10-15 19:06 . 2001-09-06 19:27 47616 -c--a-w- c:\windows\system32\dllcache\umaxcam.dll
2012-10-15 19:06 . 2001-09-06 19:27 212480 -c--a-w- c:\windows\system32\dllcache\um54scan.dll
2012-10-15 19:06 . 2001-09-06 19:27 216576 -c--a-w- c:\windows\system32\dllcache\um34scan.dll
2012-10-15 19:06 . 2001-08-17 19:52 36736 -c--a-w- c:\windows\system32\dllcache\ultra.sys
2012-10-15 19:06 . 2008-04-13 22:06 44672 -c--a-w- c:\windows\system32\dllcache\uagp35.sys
2012-10-15 19:06 . 2001-08-17 19:48 11520 -c--a-w- c:\windows\system32\dllcache\twotrack.sys
2012-10-15 19:06 . 2001-08-17 18:51 166784 -c--a-w- c:\windows\system32\dllcache\tridxpm.sys
2012-10-15 19:06 . 2001-09-06 19:27 525568 -c--a-w- c:\windows\system32\dllcache\tridxp.dll
2012-10-15 19:06 . 2001-08-17 18:51 159232 -c--a-w- c:\windows\system32\dllcache\tridkbm.sys
2012-10-15 19:05 . 2001-09-06 19:26 440576 -c--a-w- c:\windows\system32\dllcache\tridkb.dll
2012-10-15 19:05 . 2001-08-17 18:51 222336 -c--a-w- c:\windows\system32\dllcache\trid3dm.sys
2012-10-15 19:05 . 2001-09-06 19:26 315520 -c--a-w- c:\windows\system32\dllcache\trid3d.dll
2012-10-15 19:05 . 2001-08-17 18:12 34375 -c--a-w- c:\windows\system32\dllcache\tpro4.sys
2012-10-15 19:05 . 2001-09-06 19:26 43008 -c--a-w- c:\windows\system32\dllcache\tp4res.dll
2012-10-15 19:05 . 2008-04-14 20:33 82944 -c--a-w- c:\windows\system32\dllcache\tp4mon.exe
2012-10-15 19:05 . 2001-09-06 19:27 31744 -c--a-w- c:\windows\system32\dllcache\tp4.dll
2012-10-15 19:05 . 2001-09-06 16:37 4992 -c--a-w- c:\windows\system32\dllcache\toside.sys
2012-10-15 19:05 . 2001-08-17 20:02 230912 -c--a-w- c:\windows\system32\dllcache\tosdvd03.sys
2012-10-15 19:05 . 2001-08-17 20:01 241664 -c--a-w- c:\windows\system32\dllcache\tosdvd02.sys
2012-10-15 19:05 . 2001-08-17 18:10 28232 -c--a-w- c:\windows\system32\dllcache\tos4mo.sys
2012-10-15 19:05 . 2001-08-17 18:14 123995 -c--a-w- c:\windows\system32\dllcache\tjisdn.sys
2012-10-15 19:04 . 2001-08-17 18:51 138528 -c--a-w- c:\windows\system32\dllcache\tgiulnt5.sys
2012-10-15 19:04 . 2001-09-06 19:26 81408 -c--a-w- c:\windows\system32\dllcache\tgiul50.dll
2012-10-15 19:04 . 2008-04-13 22:10 149376 -c--a-w- c:\windows\system32\dllcache\tffsport.sys
2012-10-15 19:04 . 2001-08-17 18:13 17129 -c--a-w- c:\windows\system32\dllcache\tdkcd31.sys
2012-10-15 19:04 . 2001-08-17 18:13 37961 -c--a-w- c:\windows\system32\dllcache\tdk100b.sys
2012-10-15 19:04 . 2001-08-17 19:49 30464 -c--a-w- c:\windows\system32\dllcache\tbatm155.sys
2012-10-15 19:04 . 2001-08-17 19:52 7040 -c--a-w- c:\windows\system32\dllcache\tandqic.sys
2012-10-15 19:04 . 2001-08-17 18:50 36640 -c--a-w- c:\windows\system32\dllcache\t2r4mini.sys
2012-10-15 19:04 . 2001-09-06 19:26 172768 -c--a-w- c:\windows\system32\dllcache\t2r4disp.dll
2012-10-15 19:04 . 2001-08-17 20:07 32640 -c--a-w- c:\windows\system32\dllcache\symc8xx.sys
2012-10-15 19:04 . 2001-08-17 20:07 16256 -c--a-w- c:\windows\system32\dllcache\symc810.sys
2012-10-15 19:02 . 2001-08-17 18:11 48736 -c--a-w- c:\windows\system32\dllcache\srwlnd5.sys
2012-10-15 19:02 . 2001-09-06 19:27 99840 -c--a-w- c:\windows\system32\dllcache\srusd.dll
2012-10-15 19:02 . 2001-09-06 19:27 24660 -c--a-w- c:\windows\system32\dllcache\spxupchk.dll
2012-10-15 19:02 . 2001-08-17 19:51 61824 -c--a-w- c:\windows\system32\dllcache\speed.sys
2012-10-15 19:02 . 2001-09-06 19:27 106584 -c--a-w- c:\windows\system32\dllcache\spdports.dll
2012-10-15 19:02 . 2001-08-17 20:07 19072 -c--a-w- c:\windows\system32\dllcache\sparrow.sys
2012-10-15 19:02 . 2001-08-17 19:56 7552 -c--a-w- c:\windows\system32\dllcache\sonypvu1.sys
2012-10-15 19:02 . 2001-08-17 18:51 37040 -c--a-w- c:\windows\system32\dllcache\sonypi.sys
2012-10-15 19:02 . 2001-09-06 19:27 114688 -c--a-w- c:\windows\system32\dllcache\sonypi.dll
2012-10-15 19:02 . 2001-08-17 18:51 20752 -c--a-w- c:\windows\system32\dllcache\sonync.sys
2012-10-15 19:00 . 2001-09-06 19:27 28672 -c--a-w- c:\windows\system32\dllcache\sma0w.dll
2012-10-15 18:59 . 2001-09-06 18:49 161760 -c--a-w- c:\windows\system32\dllcache\sgsmusb.sys
2012-10-15 18:58 . 2001-08-17 18:50 75392 -c--a-w- c:\windows\system32\dllcache\s3savmxm.sys
2012-10-15 18:57 . 2001-08-17 18:19 30720 -c--a-w- c:\windows\system32\dllcache\rthwcls.sys
2012-10-15 18:56 . 2001-08-17 19:52 49024 -c--a-w- c:\windows\system32\dllcache\ql1280.sys
2012-10-15 18:55 . 2001-09-06 19:27 121344 -c--a-w- c:\windows\system32\dllcache\phvfwext.dll
2012-10-15 18:54 . 2008-04-13 20:05 29502 -c--a-w- c:\windows\system32\dllcache\pca200e.sys
2012-10-15 18:54 . 2001-08-17 18:12 30495 -c--a-w- c:\windows\system32\dllcache\pc100nds.sys
2012-10-15 18:54 . 2001-09-06 19:27 42496 -c--a-w- c:\windows\system32\dllcache\ovui2rc.dll
2012-10-15 18:54 . 2001-09-06 19:27 44544 -c--a-w- c:\windows\system32\dllcache\ovui2.dll
2012-10-15 18:54 . 2001-08-17 20:05 25216 -c--a-w- c:\windows\system32\dllcache\ovsound2.sys
2012-10-15 18:54 . 2001-09-06 19:27 39424 -c--a-w- c:\windows\system32\dllcache\ovcoms.exe
2012-10-15 18:54 . 2001-09-06 19:27 20480 -c--a-w- c:\windows\system32\dllcache\ovcomc.dll
2012-10-15 18:54 . 2001-08-17 20:05 351616 -c--a-w- c:\windows\system32\dllcache\ovcodek2.sys
2012-10-15 18:54 . 2001-09-06 19:27 116736 -c--a-w- c:\windows\system32\dllcache\ovcodec2.dll
2012-10-15 18:54 . 2001-08-17 20:05 31872 -c--a-w- c:\windows\system32\dllcache\ovce.sys
2012-10-15 18:54 . 2001-08-17 20:05 28032 -c--a-w- c:\windows\system32\dllcache\ovcd.sys
2012-10-15 18:54 . 2001-08-17 20:05 48000 -c--a-w- c:\windows\system32\dllcache\ovcam2.sys
2012-10-15 18:54 . 2001-08-17 20:05 25088 -c--a-w- c:\windows\system32\dllcache\ovca.sys
2012-10-15 18:52 . 2001-08-17 18:20 126080 -c--a-w- c:\windows\system32\dllcache\nm5a2wdm.sys
2012-10-15 18:51 . 2001-09-06 17:31 131072 -c--a-w- c:\windows\system32\dllcache\n100325.sys
2012-10-15 18:50 . 2001-08-17 20:00 2944 -c--a-w- c:\windows\system32\dllcache\msmpu401.sys
2012-10-15 18:50 . 2008-04-13 22:24 22016 -c--a-w- c:\windows\system32\dllcache\msircomm.sys
2012-10-15 18:50 . 2001-08-17 20:02 35200 -c--a-w- c:\windows\system32\dllcache\msgame.sys
2012-10-15 18:50 . 2001-08-17 19:48 6016 -c--a-w- c:\windows\system32\dllcache\msfsio.sys
2012-10-15 18:50 . 2008-04-13 22:16 51200 -c--a-w- c:\windows\system32\dllcache\msdv.sys
2012-10-15 18:50 . 2001-08-17 19:52 17280 -c--a-w- c:\windows\system32\dllcache\mraid35x.sys
2012-10-15 18:50 . 2008-04-13 22:16 15232 -c--a-w- c:\windows\system32\dllcache\mpe.sys
2012-10-15 18:50 . 2001-08-17 19:57 16128 -c--a-w- c:\windows\system32\dllcache\modemcsa.sys
2012-10-15 18:48 . 2001-08-17 19:28 802683 -c--a-w- c:\windows\system32\dllcache\ltsm.sys
2012-10-15 18:47 . 2001-09-06 19:26 8192 -c--a-w- c:\windows\system32\dllcache\kbdkor.dll
2012-10-15 18:47 . 2001-09-06 19:26 8704 -c--a-w- c:\windows\system32\dllcache\kbdjpn.dll
2012-10-15 18:47 . 2008-04-14 20:31 6144 -c--a-w- c:\windows\system32\dllcache\kbd106.dll
2012-10-15 18:47 . 2001-08-17 20:55 5632 -c--a-w- c:\windows\system32\dllcache\kbd103.dll
2012-10-15 18:47 . 2001-08-17 20:55 6144 -c--a-w- c:\windows\system32\dllcache\kbd101c.dll
2012-10-15 18:47 . 2001-08-17 20:55 6144 -c--a-w- c:\windows\system32\dllcache\kbd101b.dll
2012-10-15 18:47 . 2001-08-17 19:49 26624 -c--a-w- c:\windows\system32\dllcache\irstusb.sys
2012-10-15 18:47 . 2001-08-17 19:51 18688 -c--a-w- c:\windows\system32\dllcache\irsir.sys
2012-10-15 18:47 . 2008-04-14 20:32 29184 -c--a-w- c:\windows\system32\dllcache\irmon.dll
2012-10-15 18:47 . 2001-08-17 19:49 23552 -c--a-w- c:\windows\system32\dllcache\irmk7.sys
2012-10-15 18:47 . 2008-04-14 20:33 153088 -c--a-w- c:\windows\system32\dllcache\irftp.exe
2012-10-15 18:47 . 2008-04-13 22:24 88192 -c--a-w- c:\windows\system32\dllcache\irda.sys
2012-10-15 18:47 . 2008-04-13 22:15 46592 -c--a-w- c:\windows\system32\dllcache\irbus.sys
2012-10-15 18:46 . 2001-08-17 18:12 45632 -c--a-w- c:\windows\system32\dllcache\ip5515.sys
2012-10-15 18:46 . 2001-09-06 19:26 90200 -c--a-w- c:\windows\system32\dllcache\io8ports.dll
2012-10-15 18:46 . 2001-08-17 19:50 38784 -c--a-w- c:\windows\system32\dllcache\io8.sys
2012-10-15 18:46 . 2001-09-06 16:16 13568 -c--a-w- c:\windows\system32\dllcache\inport.sys
2012-10-15 18:46 . 2001-08-17 19:52 16000 -c--a-w- c:\windows\system32\dllcache\ini910u.sys
2012-10-15 18:46 . 2001-09-06 19:26 372824 -c--a-w- c:\windows\system32\dllcache\iconf32.dll
2012-10-15 18:46 . 2001-08-17 20:06 100992 -c--a-w- c:\windows\system32\dllcache\icam5usb.sys
2012-10-15 18:46 . 2001-09-06 19:26 20992 -c--a-w- c:\windows\system32\dllcache\icam5ext.dll
2012-10-15 18:46 . 2001-09-06 19:26 45056 -c--a-w- c:\windows\system32\dllcache\icam5com.dll
2012-10-15 18:46 . 2001-08-17 20:06 154496 -c--a-w- c:\windows\system32\dllcache\icam4usb.sys
2012-10-15 18:46 . 2001-09-06 19:26 62976 -c--a-w- c:\windows\system32\dllcache\icam4ext.dll
2012-10-15 18:44 . 2001-08-17 19:28 57471 -c--a-w- c:\windows\system32\dllcache\hsf_samp.sys
2012-10-15 18:43 . 2001-08-17 20:02 2688 -c--a-w- c:\windows\system32\dllcache\hidswvd.sys
2012-10-15 18:42 . 2001-08-17 18:15 455680 -c--a-w- c:\windows\system32\dllcache\fus2base.sys
2012-10-15 18:41 . 2001-08-17 18:19 63360 -c--a-w- c:\windows\system32\dllcache\ess.sys
2012-10-15 18:40 . 2001-08-17 18:12 19594 -c--a-w- c:\windows\system32\dllcache\e100isa4.sys
2012-10-15 18:39 . 2001-08-17 18:13 91305 -c--a-w- c:\windows\system32\dllcache\dimaint.sys
2012-10-15 18:38 . 2001-09-06 17:27 14848 -c--a-w- c:\windows\system32\dllcache\cyclom-y.sys
2012-10-15 18:37 . 2008-04-13 22:11 8192 -c--a-w- c:\windows\system32\dllcache\changer.sys
2012-10-15 18:36 . 2001-09-06 16:47 13952 -c--a-w- c:\windows\system32\dllcache\bulltlp3.sys
2012-10-15 18:35 . 2008-04-13 20:04 73216 -c--a-w- c:\windows\system32\dllcache\atintuxx.sys
2012-10-15 18:34 . 2008-04-13 20:06 84480 -c--a-w- c:\windows\system32\dllcache\ac97via.sys
2012-10-15 06:45 . 2012-09-19 19:38 167424 ----a-w- c:\windows\zoek-delete.exe
.
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-09 18:24 . 2012-07-01 14:09 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-10-09 18:24 . 2012-07-01 14:09 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-08-28 15:17 . 2008-04-15 12:00 916992 ----a-w- c:\windows\system32\wininet.dll
2012-08-28 15:17 . 2008-04-15 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2012-08-28 15:17 . 2008-04-15 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-08-28 12:07 . 2008-04-15 12:00 385024 ------w- c:\windows\system32\html.iec
2012-08-24 13:53 . 2008-04-15 12:00 177664 ----a-w- c:\windows\system32\wintrust.dll
2012-08-23 06:27 . 2008-04-15 12:00 2153472 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-08-23 06:27 . 2008-04-14 22:11 2032128 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-07-23 15:40 . 2012-07-23 15:40 1060864 ----a-w- c:\windows\system32\mfc71.dll
2011-06-09 10:03 . 2011-08-09 10:34 3486088 -c--a-w- c:\program files\Common Files\ApnToolbarInstaller.exe
2011-06-09 10:03 . 2011-08-09 10:34 143240 -c--a-w- c:\program files\Common Files\ApnStub.exe
2010-01-26 09:11 . 2011-08-09 10:34 444283 -c--a-w- c:\program files\Common Files\WinPcapNmap.exe
2011-04-14 16:57 . 2011-06-18 13:02 142296 -c--a-w- c:\program files\mozilla firefox\components\browsercomps.dll
2008-04-15 12:00 94784 -csh--w- c:\windows\twain.dll
2008-04-15 12:00 50688 --sh--w- c:\windows\twain_32.dll
2008-04-15 12:00 57344 -csh--w- c:\windows\system32\msvcirt.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{90b49673-5506-483e-b92b-ca0265bd9ca8}]
2010-12-09 11:51 3911776 ----a-w- c:\program files\IMVU_Inc\tbIMVU.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{90b49673-5506-483e-b92b-ca0265bd9ca8}"= "c:\program files\IMVU_Inc\tbIMVU.dll" [2010-12-09 3911776]
.
[HKEY_CLASSES_ROOT\clsid\{90b49673-5506-483e-b92b-ca0265bd9ca8}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{90B49673-5506-483E-B92B-CA0265BD9CA8}"= "c:\program files\IMVU_Inc\tbIMVU.dll" [2010-12-09 3911776]
.
[HKEY_CLASSES_ROOT\clsid\{90b49673-5506-483e-b92b-ca0265bd9ca8}]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb04.exe" [2001-08-04 196608]
"CXMon"="c:\program files\Hewlett-Packard\PhotoSmart\Photo Imaging\Hpi_Monitor.exe" [2001-08-09 45056]
"HP Software Update"="c:\program files\Hewlett-Packard\HP Software Update\HPWuSchd2.exe" [2011-05-10 49208]
"hpqSRMon"="c:\program files\Hewlett-Packard\Digital Imaging\bin\hpqSRMon.exe" [2008-08-20 150016]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-09-08 98304]
"APVXDWIN"="c:\program files\Panda Security\Panda Antivirus Pro 2013\APVXDWIN.EXE" [2012-06-21 1053984]
"SCANINICIO"="c:\program files\Panda Security\Panda Antivirus Pro 2013\Inicio.exe" [2012-06-08 70432]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2009-05-26 413696]
"TkBellExe"="c:\program files\Real\RealPlayer\update\realsched.exe" [2012-10-10 296096]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-15 15360]
.
c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\
HP Digital Imaging Monitor.lnk - c:\program files\Hewlett-Packard\Digital Imaging\bin\hpqtra08.exe [2009-11-18 275072]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableLinkedConnections"= 1 (0x1)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avldr]
2010-03-24 10:55 55552 ----a-w- c:\windows\system32\avldr.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0SmartDefragBootTime.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PskSvcRetail]
@="Service"
.
[HKLM\~\startupfolder\C:^Documents and Settings^Administrator^Menu Start^Programma's^Opstarten^Adobe Gamma.lnk]
backup=c:\windows\pss\Adobe Gamma.lnkStartup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Windows Search.lnk]
backup=c:\windows\pss\Windows Search.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^WinZip Quick Pick.lnk]
backup=c:\windows\pss\WinZip Quick Pick.lnkCommon Startup
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-07-11 19:00 919008 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2012-07-31 11:20 38872 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
2010-08-20 11:03 33120 ----a-w- c:\program files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
2007-06-01 08:21 153136 ----a-w- c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesHelper]
2011-04-28 23:24 934800 ----a-w- c:\program files\Samsung\Kies\KiesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesPDLR]
2011-04-28 23:24 19856 ----a-w- c:\program files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KiesTrayAgent]
2011-04-28 23:24 3373968 ----a-w- c:\program files\Samsung\Kies\KiesTrayAgent.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
2010-04-16 21:12 3872080 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2007-03-01 13:57 153136 ----a-w- c:\program files\Common Files\Ahead\Lib\NeroCheck.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2009-05-26 15:18 413696 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ThrustTSR]
2000-10-11 22:15 151552 ----a-w- c:\program files\ThrustMaster\ThrustMapper\TMTMTSR.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe]
2010-06-24 14:41 247144 ----a-w- c:\program files\TomTom HOME 2\TomTomHOMERunner.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"TomTomHOMEService"=2 (0x2)
"StarWindServiceAE"=2 (0x2)
"ose"=3 (0x3)
"odserv"=3 (0x3)
"NMIndexingService"=3 (0x3)
"Microsoft Office Groove Audit Service"=3 (0x3)
"MDM"=2 (0x2)
"idsvc"=3 (0x3)
"IDriverT"=3 (0x3)
"gupdatem"=3 (0x3)
"gupdate"=2 (0x2)
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"d:\\Games\\GP4\\GP4.exe"=
"c:\\Program Files\\FrostWire\\FrostWire.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\{722B4A13-F24D-43AE-8813-5DB82C0B23C2}\\setup\\hpznui01.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqtra08.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqste08.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hposid01.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqkygrp.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpfcCopy.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpoews01.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpiscnapp.exe"=
"c:\\Program Files\\Common Files\\HP\\Digital Imaging\\Bin\\hpqPhotoCrm.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqsudi.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqpsapp.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqpse.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqgplgtupl.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqgpc01.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqusgm.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\bin\\hpqusgh.exe"=
"c:\\Program Files\\Hewlett-Packard\\HP Software Update\\hpwucli.exe"=
"c:\\Program Files\\Hewlett-Packard\\Digital Imaging\\smart web printing\\SmartWebPrintExe.exe"=
"c:\\Program Files\\eBay\\Turbo Lister2\\Tl.exe"=
"d:\\Games\\f1 2010\\F1_2010_game.exe"=
"c:\\WINDOWS\\system32\\ftp.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
.
R0 pavboot;Panda boot driver;c:\windows\system32\drivers\pavboot.sys [26/09/2012 19:14 26696]
R0 SmartDefragDriver;SmartDefragDriver;c:\windows\system32\drivers\SmartDefragDriver.sys [10/01/2012 15:57 14776]
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [24/09/2010 15:18 436792]
R1 APPFLT;App Filter Plugin;c:\windows\system32\drivers\APPFLT.SYS [27/09/2012 20:30 83528]
R1 DSAFLT;DSA Filter Plugin;c:\windows\system32\drivers\dsaflt.sys [27/09/2012 20:30 53256]
R1 FNETMON;NetMon Filter Plugin;c:\windows\system32\drivers\fnetmon.sys [27/09/2012 20:30 22024]
R1 IDSFLT;Ids Filter Plugin;c:\windows\system32\drivers\idsflt.sys [27/09/2012 20:30 193864]
R1 NETFLTDI;Panda Net Driver [TDI Layer];c:\windows\system32\drivers\NETFLTDI.SYS [27/09/2012 20:30 159112]
R1 ShldDrv;Panda File Shield Driver;c:\windows\system32\drivers\ShlDrv51.sys [26/09/2012 19:13 37448]
R1 WNMFLT;Wifi Monitor Filter Plugin;c:\windows\system32\drivers\wnmflt.sys [27/09/2012 20:30 46856]
R2 AmFSM;AmFSM;c:\windows\system32\drivers\amm8651.sys [26/09/2012 19:13 63240]
R2 npf;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [27/01/2010 4:09 50704]
R2 PavProc;Panda Process Protection Driver;c:\windows\system32\drivers\PavProc.sys [26/09/2012 19:13 164488]
R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service;c:\program files\Common Files\PC Tools\sMonitor\StartManSvc.exe [8/07/2012 21:41 793048]
R2 PskSvcRetail;Panda PSK service;c:\program files\Panda Security\Panda Antivirus Pro 2013\psksvc.exe [26/09/2012 19:14 28992]
R3 AvFlt;Antivirus Filter Driver;c:\windows\system32\drivers\av5flt.sys --> c:\windows\system32\drivers\av5flt.sys [?]
R3 cmudax;C-Media High Definition Audio Interface;c:\windows\system32\drivers\cmudax.sys [15/02/2006 17:51 1301568]
R3 NETIMFLT01060044;PANDA NDIS IM Filter Miniport v1.6.0.44;c:\windows\system32\drivers\neti1644.sys [26/09/2012 19:13 201032]
R3 PavSRK.sys;PavSRK.sys;\??\c:\windows\system32\PavSRK.sys --> c:\windows\system32\PavSRK.sys [?]
R3 PavTPK.sys;PavTPK.sys;\??\c:\windows\system32\PavTPK.sys --> c:\windows\system32\PavTPK.sys [?]
R3 Pcouffin;VSO Software pcouffin;c:\windows\system32\drivers\pcouffin.sys [12/08/2009 20:25 47360]
S1 SBRE;SBRE;c:\windows\system32\drivers\SBREDrv.sys --> c:\windows\system32\drivers\SBREDrv.sys [?]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [1/07/2012 16:09 250808]
S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\drivers\ssadbus.sys [9/05/2011 17:01 121192]
S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\drivers\ssadmdfl.sys [9/05/2011 17:01 12776]
S3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\drivers\ssadmdm.sys [9/05/2011 17:01 136680]
S4 gupdate;Google Updateservice (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2/06/2011 21:29 135664]
S4 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2/06/2011 21:29 135664]
S4 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [24/06/2010 16:41 92008]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
HPService REG_MULTI_SZ HPSLPSVC
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
Inhoud van de 'Gedeelde Taken' map
.
2012-10-18 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-07-01 18:24]
.
2012-10-18 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-06-02 19:29]
.
2012-10-18 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-06-02 19:29]
.
2012-10-18 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-1757981266-220523388-1177238915-500.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2012-07-27 12:27]
.
2012-10-18 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-1757981266-220523388-1177238915-500.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2012-07-27 12:27]
.
2012-10-18 c:\windows\Tasks\SmartDefrag_Startup.job
- c:\program files\IObit\Smart Defrag 2\SmartDefrag.exe [2011-10-28 13:26]
.
.
------- Bijkomende Scan -------
.
uStart Page = hxxp://www.hln.be/
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949}
Trusted Zone: imes.be\citrix
Trusted Zone: localhost
TCP: DhcpNameServer = 195.130.131.3 195.130.130.131
FF - ProfilePath - c:\documents and settings\Administrator\Application Data\Mozilla\Firefox\Profiles\yc5h7gs5.default\
FF - prefs.js: browser.search.selectedEngine - Web Search
FF - prefs.js: browser.startup.homepage - hxxp://startsear.ch/?aff=1&cf=80fb3fac-60b3-11e1-abf4-0011092bd3d1
FF - prefs.js: keyword.URL - hxxp://startsear.ch/?aff=1&src=sp&cf=80fb3fac-60b3-11e1-abf4-0011092bd3d1&q=
FF - ExtSQL: 2012-10-10 21:26; {0153E448-190B-4987-BDE1-F256CADA672F}; c:\documents and settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF - ExtSQL: !HIDDEN! 2010-09-03 00:17; smartwebprinting@hp.com; c:\program files\Hewlett-Packard\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF - user.js: network.cookie.cookieBehavior - 0
FF - user.js: privacy.clearOnShutdown.cookies - false
FF - user.js: security.warn_viewing_mixed - false
FF - user.js: security.warn_viewing_mixed.show_once - false
FF - user.js: security.warn_submit_insecure - false
FF - user.js: security.warn_submit_insecure.show_once - false
.
- - - - ORPHANS VERWIJDERD - - - -
.
HKLM-Run-Cmaudio - cmicnfg.cpl
MSConfigStartUp-Eraser RiskMonitor - c:\program files\East-Tec Eraser 2010\Launch.exe
MSConfigStartUp-ftweak_RAMRush - c:\program files\RAMRush\RAMRush.exe
MSConfigStartUp-Malwarebytes' Anti-Malware - c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover
Rootkit scan 2012-10-18 18:52
Windows 5.1.2600 Service Pack 3 NTFS
.
scannen van verborgen processen ...
.
scannen van verborgen autostart items ...
.
scannen van verborgen bestanden ...
.
Scan succesvol afgerond
verborgen bestanden: 0
.
**************************************************************************
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_USERS\S-1-5-21-1757981266-220523388-1177238915-500\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (Administrator)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,ae,01,4b,2b,3c,d8,b0,4a,aa,20,0f,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,0c,bc,f7,96,22,4d,88,40,be,e0,ca,\
"6256FFB019F8FDFBD36745B06F4540E9AEAF222A25"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,ae,01,4b,2b,3c,d8,b0,4a,aa,20,0f,\
.
[HKEY_USERS\S-1-5-21-1757981266-220523388-1177238915-500\Software\Microsoft\SystemCertificates\AddressBook*]
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- DLLs Geladen Onder Lopende Processen ---------------------
.
- - - - - - - > 'winlogon.exe'(1100)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
c:\windows\system32\avldr.dll
.
- - - - - - - > 'explorer.exe'(5444)
c:\windows\system32\msi.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
c:\program files\Panda Security\Panda Antivirus Pro 2013\PavTrc.dll
.
Voltooingstijd: 2012-10-18 18:55:23
ComboFix-quarantined-files.txt 2012-10-18 16:55
.
Pre-Run: 16.521.834.496 bytes beschikbaar
Post-Run: 16.542.109.696 bytes beschikbaar
.
- - End Of File - - BAF06A1779673E6805469F93C8C21F34
-
Heb ComboFix laten lopen maar als hij Windows wil restarten gbeurt er niets, drie kwartier gewacht maar er blijft steeds het volgende staan : windows wordt herstart...gelieve even te wachten. Ook kan ik de ComboFix.txt file niet vinden op de C-schijf...
OST bestand omzetten naar PST
in Archief Outlook
Geplaatst:
Hoe kan ik een OST bestand omzetten naar een PST bestand ? Wat is een goed programma hiervoor ?