boutek
-
Items
134 -
Registratiedatum
-
Laatst bezocht
Inhoudstype
Profielen
Forums
Store
Alles dat geplaatst werd door boutek
-
De laatste tijd lukt het nogal moeilijk om gewoon te internetten omdat er constant ongevraagd andere pagina's verschijnen of internet zeer traag reageert zoals nu bij het uittikken van deze vraag. Meestal zijn het advertenties van clkmon.com. Heb al gescand en dergelijke, ook met ccleaner maar dat brengt geen soelaas. Ook op de internetpagina's zelf staan her en der willekeurige woorden in het vet die aangeklikt kunnen worden. Zeer vervelend dus......
-
Oke, dat weten we dan ook... Bedankt allen voor de tips en de moeite, nu ga ik op zoek naar een harde schijf....
-
HD Tune: WDC WD2500BPVT-00JJ5T0 Error Scan Scanned data : 238379 MB Damaged Blocks : 0.2 % Elapsed Time : 84:52
-
Ja, want anders lukt het niet. Hij loopt meteen vast....
-
Als ik Speccy draai krijg ik de volgende foutmelding: CPU-dll initialisatie is mislukt (Fout 2)! Bepaalde informatie zal niet worden weergegeven! Als ik dan op OK klik sluit het programma gewoon.
-
Hij blijft nog steeds vastlopen vanaf ik een pictogram aanklik, helaas...
-
ComboFix 13-08-31.01 - Koen Boute 01/09/2013 16:28:40.1.2 - x64 NETWORK Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.2937.2239 [GMT 2:00] Gestart vanuit: c:\users\Koen Boute\Desktop\ComboFix.exe AV: AVG AntiVirus 2013 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9} SP: AVG AntiVirus 2013 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Nieuw herstelpunt werd aangemaakt . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\users\Koen Boute\AppData\Roaming\7go c:\users\Koen Boute\AppData\Roaming\7go\7go.crx c:\users\Koen Boute\AppData\Roaming\7go\icon.ico . . (((((((((((((((((((( Bestanden Gemaakt van 2013-08-01 to 2013-09-01 )))))))))))))))))))))))))))))) . . 2013-09-01 14:16 . 2013-09-01 14:17 -------- d-----w- c:\users\Koen Boute\AppData\Local\Avg2013 2013-08-31 18:26 . 2013-08-31 20:47 -------- d-----w- C:\AdwCleaner 2013-08-31 16:37 . 2013-09-01 14:38 -------- d-----w- c:\users\Koen Boute\AppData\Local\Temp 2013-08-31 16:37 . 2013-08-31 16:22 24064 ----a-w- c:\windows\zoek-delete.exe 2013-08-31 16:07 . 2013-08-31 16:07 -------- d-----w- c:\program files (x86)\Speed Analysis 3 2013-08-31 15:44 . 2013-08-31 15:44 -------- d-----w- C:\rsit 2013-08-31 15:44 . 2013-08-31 15:44 -------- d-----w- c:\program files\trend micro 2013-08-30 16:29 . 2013-08-30 16:31 -------- d-----w- c:\programdata\AVG 2013-08-30 16:28 . 2013-08-30 16:28 -------- d-sh--w- c:\programdata\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F} 2013-08-30 16:11 . 2013-08-30 16:11 -------- d-----w- c:\users\Koen Boute\AppData\Local\MFAData 2013-08-30 09:02 . 2013-08-19 22:46 9515512 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E09FB260-2A9C-4A94-A459-FE829E46358A}\mpengine.dll 2013-08-21 18:05 . 2013-08-21 18:05 -------- d-----w- c:\users\Koen Boute\AppData\Roaming\AVS4YOU 2013-08-21 18:01 . 2013-08-29 20:43 -------- d-----w- c:\program files (x86)\Common Files\AVSMedia 2013-08-21 18:01 . 2013-08-21 18:05 -------- d-----w- c:\programdata\AVS4YOU 2013-08-21 18:01 . 2012-03-23 17:59 24576 ----a-w- c:\windows\SysWow64\msxml3a.dll 2013-08-21 18:01 . 2013-08-29 20:43 -------- d-----w- c:\program files (x86)\AVS4YOU 2013-08-21 18:01 . 2013-08-21 18:01 -------- d-----w- c:\users\Koen Boute\AppData\Local\Programs 2013-08-21 16:43 . 2013-08-21 16:44 -------- d-----w- c:\program files (x86)\MediaConverter 2013-08-16 12:35 . 2013-08-16 12:35 -------- d-----w- c:\program files (x86)\Hoo Technologies 2013-08-16 12:20 . 2013-08-16 12:21 -------- d-----w- c:\users\Koen Boute\AppData\Roaming\DVDVideoSoft 2013-08-16 11:09 . 2013-08-16 11:09 -------- d-----w- c:\users\Koen Boute\AppData\Local\cache 2013-08-16 11:08 . 2013-08-16 11:08 -------- d-----w- c:\programdata\VTech 2013-08-16 11:08 . 2013-08-16 11:08 -------- d-----w- c:\program files (x86)\VTech 2013-08-14 21:32 . 2013-08-14 21:32 -------- d-----w- c:\users\Seppe\AppData\Local\Adobe 2013-08-14 11:08 . 2013-07-09 05:52 224256 ----a-w- c:\windows\system32\wintrust.dll 2013-08-14 11:08 . 2013-07-09 05:46 1472512 ----a-w- c:\windows\system32\crypt32.dll 2013-08-14 11:08 . 2013-07-09 04:52 175104 ----a-w- c:\windows\SysWow64\wintrust.dll 2013-08-14 11:08 . 2013-07-09 04:46 1166848 ----a-w- c:\windows\SysWow64\crypt32.dll 2013-08-14 11:08 . 2013-07-09 05:46 184320 ----a-w- c:\windows\system32\cryptsvc.dll 2013-08-14 11:08 . 2013-07-09 05:46 139776 ----a-w- c:\windows\system32\cryptnet.dll 2013-08-14 11:08 . 2013-07-09 04:46 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll 2013-08-14 11:08 . 2013-07-09 04:46 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll 2013-08-14 11:06 . 2013-07-09 02:49 25600 ----a-w- c:\windows\SysWow64\setup16.exe 2013-08-14 11:06 . 2013-07-09 02:49 7680 ----a-w- c:\windows\SysWow64\instnm.exe 2013-08-14 11:06 . 2013-07-09 02:49 2048 ----a-w- c:\windows\SysWow64\user.exe 2013-08-14 11:06 . 2013-06-15 04:32 39936 ----a-w- c:\windows\system32\drivers\tssecsrv.sys 2013-08-14 11:06 . 2013-07-06 06:03 1910208 ----a-w- c:\windows\system32\drivers\tcpip.sys 2013-08-07 13:14 . 2013-08-07 13:14 -------- d-----w- c:\users\Seppe\AppData\Roaming\Guitar Pro 6 2013-08-06 12:49 . 2013-08-06 12:49 -------- d-----w- c:\users\Koen Boute\AppData\Roaming\dvdcss 2013-08-05 21:35 . 2013-08-12 15:44 -------- d-----w- c:\users\Seppe\AppData\Roaming\vlc . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2013-08-20 17:25 . 2012-07-28 11:51 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe 2013-08-20 17:25 . 2012-02-15 10:17 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2013-08-17 11:17 . 2012-09-04 15:26 45856 ----a-w- c:\windows\system32\drivers\avgtpx64.sys 2013-08-15 08:38 . 2012-02-15 10:41 78161360 ----a-w- c:\windows\system32\MRT.exe 2013-08-07 02:22 . 2010-11-21 03:27 278800 ------w- c:\windows\system32\MpSigStub.exe 2013-07-09 04:45 . 2013-08-14 11:07 44032 ----a-w- c:\windows\apppatch\acwow64.dll 2013-06-05 03:34 . 2013-07-13 13:46 3153920 ----a-w- c:\windows\system32\win32k.sys 2013-06-04 06:00 . 2013-07-13 13:47 624128 ----a-w- c:\windows\system32\qedit.dll 2013-06-04 04:53 . 2013-07-13 13:47 509440 ----a-w- c:\windows\SysWow64\qedit.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}] 2013-08-28 08:43 400704 ----a-w- c:\program files (x86)\Speed Analysis 3\ScriptHost.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-03-09 39408] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "HWSetup"="c:\program files\TOSHIBA\Utilities\HWSetup.exe" [2010-03-03 423936] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows] "LoadAppInit_DLLs"=1 (0x1) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv . R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x] R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x] R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x] R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x] S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys;c:\windows\SYSNATIVE\drivers\avgtpx64.sys [x] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x] S3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver;c:\windows\system32\DRIVERS\rtl8192Ce.sys;c:\windows\SYSNATIVE\DRIVERS\rtl8192Ce.sys [x] . . --- Andere Services/Drivers In Geheugen --- . *NewlyCreated* - AVGTP *NewlyCreated* - WS2IFSL . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}] 2013-08-20 18:02 1177552 ----a-w- c:\program files (x86)\Google\Chrome\Application\29.0.1547.57\Installer\chrmstp.exe . Inhoud van de 'Gedeelde Taken' map . 2013-08-31 c:\windows\Tasks\Adobe Flash Player Updater.job - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-16 17:25] . 2013-08-30 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1243529957-2392887556-3837762782-1000Core.job - c:\users\Koen Boute\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-03-03 12:58] . 2013-08-30 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1243529957-2392887556-3837762782-1000UA.job - c:\users\Koen Boute\AppData\Local\Facebook\Update\FacebookUpdate.exe [2012-03-03 12:58] . 2013-08-29 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1243529957-2392887556-3837762782-1003Core.job - c:\users\Leonie\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-07-18 19:50] . 2013-08-30 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1243529957-2392887556-3837762782-1003UA.job - c:\users\Leonie\AppData\Local\Facebook\Update\FacebookUpdate.exe [2013-07-18 19:50] . 2013-08-31 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-03-09 16:29] . 2013-08-31 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-03-09 16:29] . 2013-08-29 c:\windows\Tasks\pc-dis-upd.job - c:\program files (x86)\PC Cleaners\PCCleaners.exe [2013-07-17 08:07] . . --------- X64 Entries ----------- . . [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A66261FC-B82E-4EC7-9F6D-C2F36B871DF0}] 2013-08-28 08:43 381760 ----a-w- c:\program files (x86)\Speed Analysis 3\ScriptHost64.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-02-11 162328] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-02-11 386584] "Persistence"="c:\windows\system32\igfxpers.exe" [2011-02-11 417304] "BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512] . ------- Bijkomende Scan ------- . uLocal Page = c:\windows\system32\blank.htm uStart Page = hxxp://www.google.be/ mLocal Page = c:\windows\SysWOW64\blank.htm uInternet Settings,ProxyOverride = *.local IE: &Verzenden naar OneNote - c:\progra~1\MICROS~2\Office15\ONBttnIE.dll/105 IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office15\EXCEL.EXE/3000 TCP: DhcpNameServer = 195.130.131.5 195.130.130.133 . - - - - ORPHANS VERWIJDERD - - - - . Toolbar-Locked - (no file) HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start AddRemove-7go - c:\program files (x86)\7go\uninst.exe . . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.11" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}] @Denied: (A 2) (Everyone) @="IFlashBroker5" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*] @="?????????????????? v1" . [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID] @="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}" . [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*] @="?????????????????? v2" . [HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID] @="{9BE31822-FDAD-461B-AD51-BE1D1C159921}" . [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}] @Denied: (A) (Everyone) "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}" . [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3] @Denied: (A) (Everyone) . [HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0] "Key"="ActionsPane3" "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd" . [HKEY_LOCAL_MACHINE\system\ControlSet002\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2013-09-01 16:43:14 ComboFix-quarantined-files.txt 2013-09-01 14:43 . Pre-Run: 61.451.231.232 bytes beschikbaar Post-Run: 61.295.550.464 bytes beschikbaar . - - End Of File - - 94EA66A7D2E248C8558C8386E86EB4C1 A36C5E4F47E84449FF07ED3517B43A31
-
Ik geraak wel op mijn bureaublad maar als ik een pictogram aanklik blijft hij nog altijd vastlopen helaas...
-
# AdwCleaner v3.001 - Report created 31/08/2013 at 22:46:03 # Updated 24/08/2013 by Xplode # Operating System : Windows 7 Home Premium Service Pack 1 (64 bits) # Username : Koen Boute - TOSHIBA-LT # Running from : C:\Users\Koen Boute\Desktop\adwcleaner.exe # Option : Scan ***** [ Services ] ***** ***** [ Files / Folders ] ***** ***** [ Shortcuts ] ***** ***** [ Registry ] ***** ***** [ Browsers ] ***** -\\ Internet Explorer v10.0.9200.16660 -\\ Mozilla Firefox v [ File : C:\Users\Koen Boute\AppData\Roaming\Mozilla\Firefox\Profiles\aovp1xs9.default\prefs.js ] [ File : C:\Users\Koen Boute\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js ] ************************* AdwCleaner[R0].txt - [15416 octets] - [31/08/2013 20:26:53] AdwCleaner[R1].txt - [796 octets] - [31/08/2013 22:46:03] AdwCleaner[s0].txt - [14927 octets] - [31/08/2013 20:39:58] ########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [916 octets] ##########
-
[ATTACH]27767[/ATTACH] zoek-results.log
-
Ik heb dit wel via veilige modus met netwerkverbinding moeten uitvoeren hoor want gewoon inloggen lukt niet, de laptop loopt meteen vast.... Ik weet niet of dit invloed op het logbestand dan heeft.... Logfile of random's system information tool 1.09 (written by random/random) Run by Koen Boute at 2013-08-31 17:44:14 Microsoft Windows 7 Home Premium Service Pack 1 System drive C: has 57 GB (24%) free of 238 GB Total RAM: 2937 MB (62% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 17:44:18, on 31/08/2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v10.0 (10.00.9200.16660) Boot mode: Safe mode with network support Running processes: C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE C:\Program Files\trend micro\Koen Boute.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = www.bing.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer! R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R3 - URLSearchHook: uTorrentBar_NL Toolbar - {87775fdb-6972-41f9-ae51-8326e38cb206} - C:\Program Files (x86)\uTorrentBar_NL\prxtbuTor.dll F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll O2 - BHO: uTorrentBar_NL - {87775fdb-6972-41f9-ae51-8326e38cb206} - C:\Program Files (x86)\uTorrentBar_NL\prxtbuTor.dll O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: (no name) - {98889811-442D-49dd-99D7-DC866BE87DBC} - (no file) O3 - Toolbar: Incredibar Toolbar - {F9639E4A-801B-4843-AEE3-03D9DA199E77} - C:\Program Files (x86)\Incredibar.com\incredibar\1.5.11.14\incredibarTlbr.dll O3 - Toolbar: (no name) - {A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} - (no file) O3 - Toolbar: uTorrentBar_NL Toolbar - {87775fdb-6972-41f9-ae51-8326e38cb206} - C:\Program Files (x86)\uTorrentBar_NL\prxtbuTor.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\Utilities\HWSetup.exe hwSetUP O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office15\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office15\EXCEL.EXE/3000 O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: @C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll,-229 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll,-228 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.6.2.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - MSN Games - Free Online Games O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - MSN Games - Free Online Games O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O20 - AppInit_DLLs: c:\progra~3\browse~1\261339~1.144\{16cdf~1\browse~1.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: AVG PC TuneUp Service (TuneUp.UtilitiesSvc) - AVG - C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 10509 bytes ======Listing Processes====== \SystemRoot\System32\smss.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 wininit.exe %SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16 winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\Explorer.EXE ctfmon.exe C:\Windows\system32\DllHost.exe /Processid:{3EB3C877-1F16-487C-9050-104DBCD66683} "C:\Program Files\Internet Explorer\IEXPLORE.EXE" "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2016 CREDAT:209921 /prefetch:2 "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2016 CREDAT:603173 /prefetch:2 "C:\Users\Koen Boute\Desktop\RSITx64.exe" C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF} ======Scheduled tasks folder====== C:\Windows\tasks\Adobe Flash Player Updater.job C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1243529957-2392887556-3837762782-1000Core.job C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1243529957-2392887556-3837762782-1000UA.job C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1243529957-2392887556-3837762782-1003Core.job C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1243529957-2392887556-3837762782-1003UA.job C:\Windows\tasks\GoogleUpdateTaskMachineCore.job C:\Windows\tasks\GoogleUpdateTaskMachineUA.job C:\Windows\tasks\pc-dis-upd.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 529664] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-08-24 254032] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 63912] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] Java Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-04-04 462752] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{87775fdb-6972-41f9-ae51-8326e38cb206}] uTorrentBar_NL Toolbar - C:\Program Files (x86)\uTorrentBar_NL\prxtbuTor.dll [2013-07-09 226592] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}] Aanmeldhulp voor Microsoft-account - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2012-07-17 441592] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-08-24 192592] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}] Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-04-04 171424] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll [2013-08-24 254032] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar] {98889811-442D-49dd-99D7-DC866BE87DBC} {F9639E4A-801B-4843-AEE3-03D9DA199E77} - Incredibar Toolbar - C:\Program Files (x86)\Incredibar.com\incredibar\1.5.11.14\incredibarTlbr.dll [2012-01-22 270336] {A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} {87775fdb-6972-41f9-ae51-8326e38cb206} - uTorrentBar_NL Toolbar - C:\Program Files (x86)\uTorrentBar_NL\prxtbuTor.dll [2013-07-09 226592] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll [2013-08-24 192592] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-02-11 162328] "HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-02-11 386584] "Persistence"=C:\Windows\system32\igfxpers.exe [2011-02-11 417304] "BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "swg"=C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2012-03-09 39408] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03 843712] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AgentMonitor] C:\Program Files (x86)\VTech\DownloadManager\System\AgentMonitor.exe [2013-06-20 391040] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] C:\Program Files (x86)\iTunes\iTunesHelper.exe [2013-05-31 152392] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] C:\Program Files (x86)\QuickTime\QTTask.exe [2013-05-01 421888] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] C:\Program Files (x86)\Skype\Phone\Skype.exe [2013-06-21 19876968] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify] C:\Users\Koen Boute\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-03-12 253816] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TosNC] C:\Program Files\Toshiba\BulletinBoard\TosNcCore.exe [2011-03-03 597928] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent] C:\Users\Seppe\AppData\Roaming\uTorrent\uTorrent.exe [2013-07-31 1130576] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\vProt] C:\Program Files (x86)\AVG Secure Search\vprot.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Koen Boute^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2010 Schermopname en Snel starten.lnk] C:\PROGRA~1\MICROS~2\Office14\ONENOTEM.EXE [2013-01-08 246368] [HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run] "HWSetup"=C:\Program Files\TOSHIBA\Utilities\HWSetup.exe [2010-03-04 423936] "AVG_UI"=C:\Program Files (x86)\AVG\AVG2013\avgui.exe [2013-07-01 4411440] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] C:\Windows\system32\igfxdev.dll [2011-02-11 272896] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2012-08-16 6670496] [HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2012-08-16 4171424] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"=credssp.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "ConsentPromptBehaviorAdmin"=5 "ConsentPromptBehaviorUser"=3 "EnableUIADesktopToggle"=0 "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktop"=1 "NoActiveDesktopChanges"=1 "ForceActiveDesktopOn"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32] "vidc.mrle"=msrle32.dll "vidc.msvc"=msvidc32.dll "msacm.imaadpcm"=imaadp32.acm "msacm.msg711"=msg711.acm "msacm.msgsm610"=msgsm32.acm "msacm.msadpcm"=msadp32.acm "midimapper"=midimap.dll "wavemapper"=msacm32.drv "VIDC.UYVY"=msyuv.dll "VIDC.YUY2"=msyuv.dll "VIDC.YVYU"=msyuv.dll "VIDC.IYUV"=iyuv_32.dll "vidc.i420"=iyuv_32.dll "VIDC.YVU9"=tsbyuv.dll "msacm.l3acm"=C:\Windows\System32\l3codeca.acm "wave"=wdmaud.drv "midi"=wdmaud.drv "mixer"=wdmaud.drv "aux"=wdmaud.drv "MSVideo8"=VfWWDM32.dll ======File associations====== .js - edit - C:\Windows\System32\Notepad.exe %1 .js - open - C:\Windows\System32\WScript.exe "%1" %* ======List of files/folders created in the last 1 month====== 2013-08-31 17:44:14 ----D---- C:\rsit 2013-08-31 17:44:14 ----D---- C:\Program Files\trend micro 2013-08-31 13:18:28 ----A---- C:\Windows\ntbtlog.txt 2013-08-30 18:31:00 ----A---- C:\Windows\system32\TURegOpt.exe 2013-08-30 18:30:54 ----A---- C:\Windows\SYSWOW64\authuitu.dll 2013-08-30 18:30:54 ----A---- C:\Windows\system32\authuitu.dll 2013-08-30 18:29:09 ----D---- C:\ProgramData\AVG 2013-08-30 18:28:55 ----SHD---- C:\ProgramData\{D1D4879F-2279-49C9-AEBF-3B95C84EAA8F} 2013-08-30 18:17:28 ----D---- C:\Users\Koen Boute\AppData\Roaming\AVG2013 2013-08-30 18:15:13 ----HD---- C:\$AVG 2013-08-30 18:15:12 ----D---- C:\ProgramData\AVG2013 2013-08-29 21:46:12 ----A---- C:\Windows\SYSWOW64\SBRC.dat 2013-08-21 20:05:19 ----D---- C:\Users\Koen Boute\AppData\Roaming\AVS4YOU 2013-08-21 20:01:53 ----D---- C:\ProgramData\AVS4YOU 2013-08-21 20:01:53 ----A---- C:\Windows\SYSWOW64\msxml3a.dll 2013-08-21 20:01:47 ----D---- C:\Program Files (x86)\AVS4YOU 2013-08-21 18:43:11 ----D---- C:\Program Files (x86)\MediaConverter 2013-08-16 14:35:37 ----D---- C:\Program Files (x86)\Hoo Technologies 2013-08-16 14:20:27 ----D---- C:\Users\Koen Boute\AppData\Roaming\DVDVideoSoft 2013-08-16 13:08:44 ----D---- C:\ProgramData\VTech 2013-08-16 13:08:44 ----D---- C:\Program Files (x86)\VTech 2013-08-15 10:57:58 ----A---- C:\Windows\SYSWOW64\ieui.dll 2013-08-15 10:57:57 ----A---- C:\Windows\system32\ieui.dll 2013-08-15 10:57:55 ----A---- C:\Windows\SYSWOW64\RegisterIEPKEYs.exe 2013-08-15 10:57:55 ----A---- C:\Windows\SYSWOW64\iesetup.dll 2013-08-15 10:57:55 ----A---- C:\Windows\SYSWOW64\iernonce.dll 2013-08-15 10:57:55 ----A---- C:\Windows\system32\iesetup.dll 2013-08-15 10:57:55 ----A---- C:\Windows\system32\iernonce.dll 2013-08-15 10:57:54 ----A---- C:\Windows\SYSWOW64\iesysprep.dll 2013-08-15 10:57:54 ----A---- C:\Windows\system32\RegisterIEPKEYs.exe 2013-08-15 10:57:54 ----A---- C:\Windows\system32\iesysprep.dll 2013-08-15 10:57:54 ----A---- C:\Windows\system32\ie4uinit.exe 2013-08-15 10:57:53 ----A---- C:\Windows\SYSWOW64\iertutil.dll 2013-08-15 10:57:52 ----A---- C:\Windows\system32\iertutil.dll 2013-08-15 10:57:50 ----A---- C:\Windows\SYSWOW64\msfeeds.dll 2013-08-15 10:57:50 ----A---- C:\Windows\system32\msfeeds.dll 2013-08-15 10:57:49 ----A---- C:\Windows\SYSWOW64\jscript.dll 2013-08-15 10:57:49 ----A---- C:\Windows\system32\jscript.dll 2013-08-15 10:57:48 ----A---- C:\Windows\system32\jscript9.dll 2013-08-15 10:57:46 ----A---- C:\Windows\SYSWOW64\jscript9.dll 2013-08-15 10:57:44 ----A---- C:\Windows\SYSWOW64\urlmon.dll 2013-08-15 10:57:44 ----A---- C:\Windows\system32\urlmon.dll 2013-08-15 10:57:41 ----A---- C:\Windows\SYSWOW64\wininet.dll 2013-08-15 10:57:41 ----A---- C:\Windows\SYSWOW64\jsproxy.dll 2013-08-15 10:57:41 ----A---- C:\Windows\system32\jsproxy.dll 2013-08-15 10:57:39 ----A---- C:\Windows\system32\wininet.dll 2013-08-15 10:57:36 ----A---- C:\Windows\SYSWOW64\ieframe.dll 2013-08-15 10:57:33 ----A---- C:\Windows\system32\ieframe.dll 2013-08-15 10:57:30 ----A---- C:\Windows\system32\mshtml.dll 2013-08-15 10:57:25 ----A---- C:\Windows\SYSWOW64\mshtml.dll 2013-08-14 13:08:23 ----A---- C:\Windows\SYSWOW64\wintrust.dll 2013-08-14 13:08:23 ----A---- C:\Windows\SYSWOW64\crypt32.dll 2013-08-14 13:08:23 ----A---- C:\Windows\system32\wintrust.dll 2013-08-14 13:08:23 ----A---- C:\Windows\system32\crypt32.dll 2013-08-14 13:08:22 ----A---- C:\Windows\SYSWOW64\cryptsvc.dll 2013-08-14 13:08:22 ----A---- C:\Windows\system32\cryptsvc.dll 2013-08-14 13:08:22 ----A---- C:\Windows\system32\cryptnet.dll 2013-08-14 13:08:21 ----A---- C:\Windows\SYSWOW64\cryptnet.dll 2013-08-14 13:07:26 ----A---- C:\Windows\SYSWOW64\tzres.dll 2013-08-14 13:07:26 ----A---- C:\Windows\system32\tzres.dll 2013-08-14 13:07:11 ----A---- C:\Windows\SYSWOW64\WMVDECOD.DLL 2013-08-14 13:07:11 ----A---- C:\Windows\system32\WMVDECOD.DLL 2013-08-14 13:07:10 ----A---- C:\Windows\SYSWOW64\rpcrt4.dll 2013-08-14 13:07:10 ----A---- C:\Windows\system32\rpcrt4.dll 2013-08-14 13:07:05 ----A---- C:\Windows\SYSWOW64\ntoskrnl.exe 2013-08-14 13:07:04 ----A---- C:\Windows\SYSWOW64\ntkrnlpa.exe 2013-08-14 13:07:04 ----A---- C:\Windows\system32\ntoskrnl.exe 2013-08-14 13:07:03 ----A---- C:\Windows\SYSWOW64\ntdll.dll 2013-08-14 13:07:03 ----A---- C:\Windows\system32\ntdll.dll 2013-08-14 13:07:02 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll 2013-08-14 13:07:02 ----A---- C:\Windows\system32\wow64.dll 2013-08-14 13:07:00 ----A---- C:\Windows\SYSWOW64\wow32.dll 2013-08-14 13:06:59 ----A---- C:\Windows\SYSWOW64\user.exe 2013-08-14 13:06:59 ----A---- C:\Windows\SYSWOW64\setup16.exe 2013-08-14 13:06:59 ----A---- C:\Windows\SYSWOW64\instnm.exe 2013-08-14 13:06:56 ----A---- C:\Windows\system32\drivers\tssecsrv.sys 2013-08-14 13:06:55 ----A---- C:\Windows\system32\drivers\tcpip.sys 2013-08-06 14:49:19 ----D---- C:\Users\Koen Boute\AppData\Roaming\dvdcss ======List of files/folders modified in the last 1 month====== 2013-08-31 17:44:14 ----RD---- C:\Program Files 2013-08-31 15:37:26 ----D---- C:\Windows\Temp 2013-08-31 15:26:11 ----SHD---- C:\Windows\Installer 2013-08-31 15:25:51 ----D---- C:\Windows\system32\config 2013-08-31 15:25:36 ----D---- C:\ProgramData\MFAData 2013-08-31 14:06:40 ----D---- C:\Windows\Prefetch 2013-08-31 13:35:35 ----SHD---- C:\Recovery 2013-08-31 13:18:28 ----D---- C:\Windows 2013-08-31 13:04:20 ----SHD---- C:\System Volume Information 2013-08-31 12:41:57 ----D---- C:\Windows\system32\catroot2 2013-08-30 18:31:00 ----D---- C:\Windows\System32 2013-08-30 18:30:54 ----D---- C:\Windows\SysWOW64 2013-08-30 18:30:04 ----D---- C:\Users\Koen Boute\AppData\Roaming\AVG 2013-08-30 18:29:49 ----D---- C:\Program Files (x86)\AVG 2013-08-30 18:29:09 ----HD---- C:\ProgramData 2013-08-30 18:27:51 ----D---- C:\Windows\system32\Tasks 2013-08-30 18:27:47 ----D---- C:\Windows\Tasks 2013-08-30 18:15:55 ----D---- C:\Windows\system32\drivers 2013-08-30 18:15:38 ----D---- C:\Windows\inf 2013-08-30 18:09:16 ----D---- C:\Windows\Minidump 2013-08-30 18:08:06 ----D---- C:\Windows\pss 2013-08-30 18:05:21 ----D---- C:\Users\Koen Boute\AppData\Roaming\Skype 2013-08-30 11:00:15 ----D---- C:\Windows\SoftwareDistribution 2013-08-30 10:37:26 ----RD---- C:\Program Files (x86) 2013-08-29 22:50:27 ----D---- C:\ProgramData\AVG2012 2013-08-29 22:42:21 ----D---- C:\Program Files (x86)\Common Files 2013-08-29 22:42:07 ----D---- C:\Windows\system32\drivers\AVG 2013-08-29 22:41:23 ----D---- C:\Users\Koen Boute\AppData\Roaming\TuneUp Software 2013-08-29 21:49:19 ----A---- C:\Windows\system32\PerfStringBackup.INI 2013-08-29 21:44:18 ----D---- C:\Users\Koen Boute\AppData\Roaming\uTorrent 2013-08-29 21:44:05 ----D---- C:\Windows\Panther 2013-08-29 21:44:05 ----D---- C:\Windows\debug 2013-08-29 10:59:44 ----D---- C:\ProgramData\Microsoft Help 2013-08-21 18:44:02 ----D---- C:\Windows\winsxs 2013-08-20 19:25:28 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe 2013-08-20 18:46:25 ----D---- C:\Windows\system32\wdi 2013-08-17 00:47:07 ----RSD---- C:\Windows\assembly 2013-08-17 00:47:07 ----D---- C:\Windows\Microsoft.NET 2013-08-17 00:34:43 ----D---- C:\Windows\rescache 2013-08-15 11:18:18 ----D---- C:\Windows\SYSWOW64\nl-NL 2013-08-15 11:18:18 ----D---- C:\Windows\system32\nl-NL 2013-08-15 11:18:18 ----D---- C:\Program Files (x86)\Internet Explorer 2013-08-15 11:18:17 ----D---- C:\Program Files\Internet Explorer 2013-08-15 11:18:15 ----D---- C:\Windows\AppPatch 2013-08-15 10:58:48 ----D---- C:\Windows\system32\catroot 2013-08-15 10:45:28 ----D---- C:\Windows\system32\MRT 2013-08-15 10:38:27 ----A---- C:\Windows\system32\MRT.exe 2013-08-11 23:39:58 ----D---- C:\Users\Koen Boute\AppData\Roaming\vlc 2013-08-07 04:22:02 ----N---- C:\Windows\system32\MpSigStub.exe 2013-08-05 11:04:54 ----A---- C:\Windows\win.ini 2013-08-05 11:04:53 ----D---- C:\Program Files\Common Files\System 2013-08-03 19:09:46 ----D---- C:\Program Files (x86)\NCH Software ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 AVGIDSHA;AVGIDSHA; C:\Windows\system32\DRIVERS\avgidsha.sys [2013-07-20 71480] R0 Avgloga;AVG Logging Driver; C:\Windows\system32\DRIVERS\avgloga.sys [2013-07-20 311608] R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield; C:\Windows\system32\DRIVERS\avgmfx64.sys [2013-07-01 116536] R0 Avgrkx64;AVG Anti-Rootkit Driver; C:\Windows\system32\DRIVERS\avgrkx64.sys [2013-07-10 45880] R0 LPCFilter;LPC Lower Filter Driver; C:\Windows\system32\DRIVERS\LPCFilter.sys [2009-07-30 44912] R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888] R0 TVALZ;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Driver; C:\Windows\system32\DRIVERS\TVALZ_O.SYS [2007-11-09 26968] R1 Avgtdia;AVG TDI Driver; C:\Windows\system32\DRIVERS\avgtdia.sys [2013-03-21 240952] R1 avgtp;avgtp; \??\C:\Windows\system32\drivers\avgtpx64.sys [2013-08-17 45856] R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904] R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2012-08-21 33240] R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-09-24 349800] R3 RTL8192Ce;Realtek Wireless LAN 802.11n PCI-E NIC Driver; C:\Windows\system32\DRIVERS\rtl8192Ce.sys [2010-04-28 932384] R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920] S1 AVGIDSDriver;AVGIDSDriver; C:\Windows\system32\DRIVERS\avgidsdrivera.sys [2013-07-20 246072] S1 Avgldx64;AVG AVI Loader Driver; C:\Windows\system32\DRIVERS\avgldx64.sys [2013-07-20 206648] S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2012-07-28 57280] S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-02-11 10628640] S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352] S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-21 59392] S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232] S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver64.sys [2012-07-04 11880] S3 USBAAPL64;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl64.sys [2012-12-13 54784] S3 VClone;VClone; C:\Windows\system32\DRIVERS\VClone.sys [2011-01-15 36352] S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== S2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928] S2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008] S2 AVGIDSAgent;AVGIDSAgent; C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2013-07-04 4939312] S2 avgwd;AVG WatchDog; C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2013-07-23 283136] S2 Bonjour Service;Bonjour-service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 462184] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] S2 gupdate;Google Updateservice (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-09 136176] S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-06-21 162408] S2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service; C:\Program Files (x86)\AVG\AVG PC TuneUp\TuneUpUtilitiesService64.exe [2012-08-23 2148216] S2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2012-07-17 2292480] S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-08-20 257416] S3 aspnet_state;ASP.NET-statusservice; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376] S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2012-09-12 1512448] S3 gupdatem;Google Update-service (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-03-09 136176] S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-13 194032] S3 iPod Service;iPod-service; C:\Program Files\iPod\bin\iPodService.exe [2013-05-31 641352] S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 50899608] S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440] S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-02-15 1255736] S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240] -----------------EOF-----------------
-
Laat de tips dan maar komen ! ;-)
-
Mijn laptop loopt steeds vast en ik zou hem graag terugzetten nr de fabrieksinstellingen. Ik ben er nog in geslaagd de nodige docs enz. te backuppen en nu lukt het niet de recovery op te starten via F8. Hij begint wel ah herstel mr vraagt telkens een wachtwoord wat ik niet heb. Hoe los ik dat op? Kan ik bijv.via veilige modus dat omzeilen of bestaat er een andere oplossing daarvoor?
-
CCleaner blijft hangen bij het opruimen
boutek reageerde op boutek's topic in Archief Bestrijding malware & virussen
Er verschijnen dan 2 dmp. bestanden: Het eerste was op 16/08/2012 om 19:08:32 met volgende waarden Bug check string: BAD_POOL_HEADER Bug check code:0x00000019 Caused by driver:ntoskrnl.exe Parameter 1: 0x00000020 Parameter 2: 0x82f7a580 Parameter 3: 0x82f7a998 Parameter 4: 0x1a830003 Het tweede dmp bestand van 17/08/2012 om 12:15:07 toen ik nogmaals probeerde om Combofix te laten lopen. De waarden waren dan: Bug check string: BAD_POOL_HEADER Bug check code:0x00000019 Caused by driver:ntoskrnl.exe Parameter 1: 0x00000020 Parameter 2: 0x82e990a8 Parameter 3: 0x82e994c0 Parameter 4: 0x1a830004 -
CCleaner blijft hangen bij het opruimen
boutek reageerde op boutek's topic in Archief Bestrijding malware & virussen
Tijdens het lopen van Combofix opeens een blauw scherm met de vermelding in witte letters dat Windows afgesloten wordt wegens een ernstige fout en dan de vermelding: BAD_POOL_HEADER -
CCleaner blijft hangen bij het opruimen
boutek reageerde op boutek's topic in Archief Bestrijding malware & virussen
Ja, een volledige scan lukte dan wel... -
CCleaner blijft hangen bij het opruimen
boutek reageerde op boutek's topic in Archief Bestrijding malware & virussen
Heb dit gedaan, maar het werkte enkel in veilige modus... -
CCleaner blijft hangen bij het opruimen
boutek reageerde op boutek's topic in Archief Bestrijding malware & virussen
Blijft dus nog altijd hangen op 2%als hij de internetgeschiedenis begint op te ruimen....:-( -
CCleaner blijft hangen bij het opruimen
boutek reageerde op boutek's topic in Archief Bestrijding malware & virussen
# AdwCleaner v1.800 - Logfile created 08/07/2012 at 18:59:56 # Updated 01/08/2012 by Xplode # Operating system : Microsoft Windows XP Service Pack 3 (32 bits) # User : linkinboy - KOEN # Running from : C:\Documents and Settings\linkinboy\Local Settings\Temporary Internet Files\Content.IE5\MRVD64ZU\adwcleaner[1].exe # Option [Delete] ***** [services] ***** Stopped & Deleted : vToolbarUpdater11.2.0 ***** [Files / Folders] ***** Folder Deleted : C:\Documents and Settings\linkinboy\Local Settings\Application Data\AVG Secure Search Folder Deleted : C:\Documents and Settings\linkinboy\Local Settings\Application Data\Conduit Folder Deleted : C:\Documents and Settings\linkinboy\Local Settings\Application Data\ConduitEngine Folder Deleted : C:\Documents and Settings\linkinboy\Local Settings\Application Data\DVDVideoSoftTB Deleted on reboot : C:\Documents and Settings\linkinboy\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ndgonipadfipmlmdfofnjnhhlgojnjdn Deleted on reboot : C:\Documents and Settings\linkinboy\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\niapdbllcanepiiimjjndipklodoedlc Folder Deleted : C:\Documents and Settings\linkinboy\Local Settings\Application Data\ToggleDU Folder Deleted : C:\DOCUME~1\LINKIN~1\LOCALS~1\Temp\AskSearch Folder Deleted : C:\Documents and Settings\linkinboy\Application Data\AVG Secure Search Folder Deleted : C:\Documents and Settings\linkinboy\Application Data\Babylon Folder Deleted : C:\Documents and Settings\linkinboy\Application Data\PriceGong Folder Deleted : C:\Documents and Settings\All Users\Application Data\AVG Secure Search Folder Deleted : C:\Documents and Settings\All Users\Application Data\Tarma Installer Folder Deleted : C:\Program Files\AVG Secure Search Folder Deleted : C:\Program Files\Conduit Folder Deleted : C:\Program Files\ConduitEngine Folder Deleted : C:\Program Files\DAEMON Tools Toolbar Folder Deleted : C:\Program Files\DVDVideoSoftTB Folder Deleted : C:\Program Files\ToggleDU Folder Deleted : C:\Program Files\Common Files\AVG Secure Search File Deleted : C:\Program Files\Mozilla Firefox\searchplugins\avg-secure-search.xml File Deleted : C:\WINDOWS\system32\conduitEngine.tmp ***** [Registry] ***** [*] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2088433 [*] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2269050 [*] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2504091 [*] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2776682 [*] Key Deleted : HKLM\SOFTWARE\Classes\Toolbar.CT2849859 Key Deleted : HKCU\Software\AppDataLow\Software\Conduit Key Deleted : HKCU\Software\AVG Secure Search Key Deleted : HKCU\Software\Conduit Key Deleted : HKCU\Software\conduitEngine Key Deleted : HKCU\Software\ConduitSearchScopes Key Deleted : HKCU\Software\DVDVideoSoftTB Key Deleted : HKCU\Software\Google\Chrome\Extensions\ndgonipadfipmlmdfofnjnhhlgojnjdn Key Deleted : HKCU\Software\IM Key Deleted : HKCU\Software\PriceGong Key Deleted : HKCU\Software\Smartbar Key Deleted : HKCU\Software\Softonic Key Deleted : HKCU\Software\SweetIm Key Deleted : HKCU\Software\ToggleDU Key Deleted : HKLM\SOFTWARE\AskBarDis Key Deleted : HKLM\SOFTWARE\AVG Secure Search Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE Key Deleted : HKLM\SOFTWARE\Classes\AppID\ViProtocol.DLL Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.BrowserWndAPI.1 Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj Key Deleted : HKLM\SOFTWARE\Classes\AVG Secure Search.PugiObj.1 Key Deleted : HKLM\SOFTWARE\Classes\Conduit.Engine Key Deleted : HKLM\SOFTWARE\Classes\PROTOCOLS\Handler\viprotocol Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi Key Deleted : HKLM\SOFTWARE\Classes\ScriptHelper.ScriptHelperApi.1 Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE Key Deleted : HKLM\SOFTWARE\Classes\ViProtocol.ViProtocolOLE.1 Key Deleted : HKLM\SOFTWARE\Conduit Key Deleted : HKLM\SOFTWARE\conduitEngine Key Deleted : HKLM\SOFTWARE\DT Soft Key Deleted : HKLM\SOFTWARE\DVDVideoSoftTB Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\ndgonipadfipmlmdfofnjnhhlgojnjdn Key Deleted : HKLM\SOFTWARE\Iminent Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\conduitEngine Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Conduit Engine Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\DVDVideoSoftTB Toolbar Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\ToggleDU Toolbar Key Deleted : HKLM\SOFTWARE\MozillaPlugins\@avg.com/AVG SiteSafety plugin,version=11.0.0.1,application/x-avg-sitesafety-plugin Key Deleted : HKLM\SOFTWARE\SweetIM Key Deleted : HKLM\SOFTWARE\Tarma Installer Key Deleted : HKLM\SOFTWARE\ToggleDU Value Deleted : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [Avg@toolbar] ***** [Registre - GUID] ***** Key Deleted : HKLM\SOFTWARE\Classes\AppID\{1FDFF5A2-7BB1-48E1-8081-7236812B12B2} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{5B1881D1-D9C7-46DF-B041-1E593282C7D0} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB} Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{B658800C-F66E-4EF3-AB85-6C0C227862A9} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CC5AD34C-6F10-4CB3-B74A-C2DD4D5060A3} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F25AF245-4A81-40DC-92F9-E9021F207706} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F32C52FD-DDDD-4A1A-BEC8-08EEF827E3DA} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{71FAA07D-A484-4B5B-8E2D-291B58321B96} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{4E92DB5F-AAD9-49D3-8EAB-B40CBE5B1FF7} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC} Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C401D2CE-DC27-45C7-BC0C-8E6EA7F085D6} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{74FB6AFD-DD77-4CEB-83BD-AB2B63E63C93} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8} Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C2AC8A0E-E48E-484B-A71C-C7A937FAAB94} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B65C4DB4-04E8-4CCE-9401-230262F254F7} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5CCF0A4-93B3-4A5B-8AA9-531C093110BE} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{8883A424-16EA-46B7-9A5E-1992FB68B9E9} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{60D9183B-7E2C-466D-BCB8-8042A6D1CE62} Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{BFC68827-C485-41CA-AED2-9EBD5DB8BCA8} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{C6FDD0C3-266A-4DC3-B459-28C697C44CDC} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F25AF245-4A81-40DC-92F9-E9021F207706} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{F32C52FD-DDDD-4A1A-BEC8-08EEF827E3DA} Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{71FAA07D-A484-4B5B-8E2D-291B58321B96} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{201F27D4-3704-41D6-89C1-AA35E39143ED} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3041D03E-FD4B-44E0-B742-2D9B88305F98} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{32099AAC-C132-4136-9E9A-4E364A424E17} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{872B5B88-9DB5-4310-BDD0-AC189557E5F5} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3AD798D0-4642-4C55-BC14-CFE7DD19E0D1} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{201F27D4-3704-41D6-89C1-AA35E39143ED} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3041D03E-FD4B-44E0-B742-2D9B88305F98} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{872B5B88-9DB5-4310-BDD0-AC189557E5F5} Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3AD798D0-4642-4C55-BC14-CFE7DD19E0D1} Value Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{95B7759C-8C7F-4BF1-B163-73684A933233}] Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{3AD798D0-4642-4C55-BC14-CFE7DD19E0D1}] ***** [internet Browsers] ***** -\\ Internet Explorer v8.0.6001.18702 Replaced : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://isearch.avg.com/tab?cid={75D2906C-D5F2-408D-A7F5-35D566001F9E}&mid=f112692e4f4bb45bbfe5421dd5ba6208-06ce4fc639803a2e3563922518183d8e94088cb9〈=nl&ds=AVG&pr=fr&d=2012-06-04 19:42:13&v=11.1.0.12&sap=nt --> hxxp://www.google.com -\\ Mozilla Firefox v13.0.1 (nl) Profile name : default File : C:\Documents and Settings\linkinboy\Application Data\Mozilla\Firefox\Profiles\cir9yuqw.default\prefs.js [OK] File is clean. -\\ Google Chrome v21.0.1180.60 File : C:\Documents and Settings\linkinboy\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences Deleted : "icon_url": "hxxp://search.conduit.com/fav.ico", Deleted : "keyword": "search.conduit.com", Deleted : "name": "Conduit", Deleted : "search_url": "hxxp://search.conduit.com/Results.aspx?q={searchTerms}&SearchSource=49&ctid=CT2[...] Deleted : "suggest_url": "hxxp://search.conduit.com/" Deleted : "update_url": "hxxp://autoupdate.chromewebtb.conduit-services.com/?productId=CT284985[...] ************************* AdwCleaner[s1].txt - [11883 octets] - [07/08/2012 18:59:56] ########## EOF - C:\AdwCleaner[s1].txt - [12012 octets] ########## -
CCleaner blijft hangen bij het opruimen
boutek reageerde op boutek's topic in Archief Bestrijding malware & virussen
Malwarebytes Anti-Malware 1.62.0.1300 www.malwarebytes.org Databaseversie: v2012.08.07.04 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 linkinboy :: KOEN [administrator] 7/08/2012 14:14:50 mbam-log-2012-08-07 (14-14-50).txt Scantype: Snelle scan Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM Uitgeschakelde scanopties: P2P Objecten gescand: 259168 Verstreken tijd: 45 minuut/minuten, 19 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerwaarden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerdata gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Mappen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Bestanden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) (einde) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 16:42:34, on 7/08/2012 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\AVG\AVG9\avgchsvx.exe C:\Program Files\AVG\AVG9\avgrsx.exe C:\Program Files\AVG\AVG9\avgcsrvx.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\AVG\AVG9\avgwdsvc.exe C:\WINDOWS\system32\FsUsbExService.Exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\System32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe C:\Program Files\AVG\AVG9\avgnsx.exe C:\WINDOWS\system32\SearchIndexer.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\mHotkey.exe C:\WINDOWS\CNYHKey.exe C:\WINDOWS\StartupMonitor.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\AVG Secure Search\vprot.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\linkinboy\Bureaublad\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN | Hotmail | Messenger | Nieuws, sport, entertainment, video, lifestyle, auto en nog veel meer, dat is MSN ! R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [CHotkey] mHotkey.exe O4 - HKLM\..\Run: [ledpointer] CNYHKey.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [Run StartupMonitor] StartupMonitor.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.telenet.be O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe O23 - Service: vToolbarUpdater11.2.0 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe -- End of file - 10330 bytes -
CCleaner blijft hangen bij het opruimen
boutek plaatste een topic in Archief Bestrijding malware & virussen
Ik heb soortgelijk onderwerp hier al tegen gekomen en die raadgevingen opgevolgd maar het helpt niet vandaar dat ik een HJT-loge aangemaakt heb dat misschien eens door de experts kan bekeken worden. Het is een probleem op mijn zoon zijn pc, dus ik zou er niet van verschieten dat er rommel tussen zit die AVG niet detecteert.... R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN | Hotmail | Messenger | Nieuws, sport, entertainment, video, lifestyle, auto en nog veel meer, dat is MSN ! R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = Customize Your Settings R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen R3 - URLSearchHook: (no name) - {A3BC75A2-1F87-4686-AA43-5347D756017C} - (no file) O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll O2 - BHO: ToggleDU - {3ad798d0-4642-4c55-bc14-cfe7dd19e0d1} - C:\Program Files\ToggleDU\prxtbTog2.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: DVDVideoSoftTB - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\prxtbDVD2.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: (no name) - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file) O3 - Toolbar: ToggleDU Toolbar - {3ad798d0-4642-4c55-bc14-cfe7dd19e0d1} - C:\Program Files\ToggleDU\prxtbTog2.dll O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll O3 - Toolbar: DVDVideoSoftTB Toolbar - {872b5b88-9db5-4310-bdd0-ac189557e5f5} - C:\Program Files\DVDVideoSoftTB\prxtbDVD2.dll O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [CHotkey] mHotkey.exe O4 - HKLM\..\Run: [ledpointer] CNYHKey.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [Run StartupMonitor] StartupMonitor.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Windows &Live Favorites - http://favorites.live.com/quickadd.aspx O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://www.telenet.be O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing) O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe O23 - Service: FsUsbExService - Teruten - C:\WINDOWS\system32\FsUsbExService.Exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe O23 - Service: vToolbarUpdater11.2.0 - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe -- End of file - 11093 bytes -
Draadloos internet valt weg eens de stekker uit het stopcontact is
boutek reageerde op boutek's topic in Archief Internet & Netwerk
Dan gaan we dat eens doen, bedankt voor de tips ! -
Draadloos internet valt weg eens de stekker uit het stopcontact is
boutek reageerde op boutek's topic in Archief Internet & Netwerk
Als ik dat doe blijft het ongewijzigd, er staat maar 1 draadloos netwerk, het onze dus op het scherm.... -
Draadloos internet valt weg eens de stekker uit het stopcontact is
boutek reageerde op boutek's topic in Archief Internet & Netwerk
Nee, het lukt aan geen kanten zonder mijn stekker in het stopcontact te steken. Ik heb echter eens een kopij gemaakt van hetgeen hij vaststelt bij "verbindingsproblemen vaststellen". Zie hieronder. Een kleine kanttekening daarbij: met mijn andere laptop heb ik die netwerkproblemen totaal niet, dus klopt dit ook wel niet helemaal denk ik dan.... Misschien is er echter iets te zien wat niet klopt; Mijn modem heb ik in het vet gezet: de telenet 5D441 [TABLE=class: MsoNormalTable] [TR] [TD=bgcolor: transparent] Windows Netwerkcontrole [/TD] [TD=bgcolor: transparent, colspan: 3] Gedetailleerde informatie van de uitgever [/TD] [/TR] [TR] [TD=bgcolor: transparent, colspan: 3] Gevonden problemen [/TD] [/TR] [TR] [TD=bgcolor: transparent] De verbinding tussen uw toegangspunt, router of kabelmodem en internet is defect De verbinding tussen uw toegangspunt, router of kabelmodem en internet is defect De netwerkgateway is toegankelijk, maar er kan geen netwerkverkeer van internet worden ontvangen. [/TD] [TD=width: 90, bgcolor: transparent] Gedetecteerd [/TD] [TD=width: 20, bgcolor: transparent] [/TD] [/TR] [TR] [TD=bgcolor: transparent, colspan: 4] [TABLE=class: MsoNormalTable, width: 97%] [TR] [TD=bgcolor: transparent] Er zijn verbindingsproblemen met uw breedbandmodem [/TD] [TD=width: 110, bgcolor: transparent] Niet uitgevoerd [/TD] [/TR] [/TABLE] [/TD] [/TR] [TR] [TD=bgcolor: transparent] De standaardgateway is niet beschikbaar De standaardgateway is niet beschikbaar De standaardgateway is een apparaat waarmee een lokaal netwerk of een lokale computer met internet wordt verbonden. De standaardgateway is meestal een breedbandmodem of router. [/TD] [TD=width: 90, bgcolor: transparent] Opgelost [/TD] [TD=width: 20, bgcolor: transparent] [/TD] [TD=bgcolor: transparent][/TD] [/TR] [TR] [TD=bgcolor: transparent, colspan: 4] [TABLE=class: MsoNormalTable, width: 97%] [TR] [TD=bgcolor: transparent] Stel de adapter voor Draadloze netwerkverbinding opnieuw in [/TD] [TD=width: 110, bgcolor: transparent] Voltooid [/TD] [/TR] [TR] [TD=bgcolor: transparent] Problemen met router of breedbandmodem onderzoeken [/TD] [TD=width: 110, bgcolor: transparent] Niet uitgevoerd [/TD] [/TR] [/TABLE] [/TD] [/TR] [/TABLE] [TABLE=class: MsoNormalTable] [TR] [TD=bgcolor: transparent] Gevonden problemen [/TD] [TD=bgcolor: transparent] Details van detectieproces [/TD] [/TR] [TR] [TD=bgcolor: transparent, colspan: 2] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=width: 20, bgcolor: transparent] 6 [/TD] [TD=bgcolor: transparent] De verbinding tussen uw toegangspunt, router of kabelmodem en internet is defect [/TD] [TD=width: 90, bgcolor: transparent] Gedetecteerd [/TD] [TD=width: 20, bgcolor: transparent] [/TD] [/TR] [/TABLE] [/TD] [/TR] [TR] [TD=bgcolor: transparent, colspan: 2] De netwerkgateway is toegankelijk, maar er kan geen netwerkverkeer van internet worden ontvangen. [/TD] [/TR] [TR] [TD=bgcolor: transparent, colspan: 2] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=bgcolor: transparent] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=bgcolor: transparent] Er zijn verbindingsproblemen met uw breedbandmodem [/TD] [TD=width: 110, bgcolor: transparent] Niet uitgevoerd [/TD] [/TR] [/TABLE] [/TD] [/TR] [TR] [TD=bgcolor: transparent] Start de breedbandmodem opnieuw op: 1. Koppel de modem los of schakel de modem uit. 2. Wacht minimaal tien seconden nadat alle lampjes op de modem zijn uitgeschakeld. 3. Schakel de modem opnieuw in of steek de stekker weer in het stopcontact. Druk op de knop Reset en laat deze snel los als u een modem met ingebouwde accu opnieuw wilt opstarten. Neem contact op met de internetprovider als het probleem hiermee niet is opgelost. [/TD] [/TR] [/TABLE] [/TD] [/TR] [/TABLE] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=bgcolor: transparent, colspan: 2] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=width: 20, bgcolor: transparent] 6 [/TD] [TD=bgcolor: transparent] De standaardgateway is niet beschikbaar [/TD] [TD=width: 90, bgcolor: transparent] Opgelost [/TD] [TD=width: 20, bgcolor: transparent] [/TD] [/TR] [/TABLE] [/TD] [/TR] [TR] [TD=bgcolor: transparent, colspan: 2] De standaardgateway is een apparaat waarmee een lokaal netwerk of een lokale computer met internet wordt verbonden. De standaardgateway is meestal een breedbandmodem of router. [/TD] [/TR] [TR] [TD=bgcolor: transparent, colspan: 2] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=bgcolor: transparent] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=bgcolor: transparent] Stel de adapter voor Draadloze netwerkverbinding opnieuw in [/TD] [TD=width: 110, bgcolor: transparent] Voltooid [/TD] [/TR] [/TABLE] [/TD] [/TR] [TR] [TD=bgcolor: transparent] Dit kan een onregelmatig probleem soms oplossen. [/TD] [/TR] [TR] [TD=bgcolor: transparent] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=bgcolor: transparent] Logboek van netwerkdiagnose [/TD] [/TR] [TR] [TD=bgcolor: transparent] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=width: 120, bgcolor: transparent] Bestandsnaam: [/TD] [TD] 54D069A9-1E40-4C6D-97F8-B52E08DF839E.Repair.1.etl [/TD] [/TR] [/TABLE] [/TD] [/TR] [/TABLE] [/TD] [/TR] [/TABLE] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=bgcolor: transparent] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=bgcolor: transparent] Problemen met router of breedbandmodem onderzoeken [/TD] [TD=width: 110, bgcolor: transparent] Niet uitgevoerd [/TD] [/TR] [/TABLE] [/TD] [/TR] [TR] [TD=bgcolor: transparent] Neem contact op met de netwerkbeheerder als u verbinding hebt met een hotspot of domeinnetwerk. Anders doet u het volgende: 1. Koppel het apparaat los of schakel het apparaat uit. 2. Wacht minimaal tien seconden nadat alle lampjes op het apparaat zijn uit gegaan. 3. Schakel het apparaat opnieuw in of steek de stekker weer in het stopcontact. Druk op de knop Reset en laat deze snel los als u een router of modem met ingebouwde accu opnieuw wilt opstarten. [/TD] [/TR] [/TABLE] [/TD] [/TR] [TR] [TD=bgcolor: transparent] Details van detectieproces [/TD] [TD=bgcolor: transparent] [/TD] [/TR] [/TABLE] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=bgcolor: transparent] Diagnostische gegevens van Netwerkadapter [/TD] [/TR] [TR] [TD=bgcolor: transparent] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=bgcolor: transparent] Details over diagnose van van netwerkadapter: Informatie over netwerkadapterstuurprogramma voor Draadloze netwerkverbinding: Beschrijving . . . . . . . . . : Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC Fabrikant . . . . . . . . . . . : Realtek Semiconductor Corp. Provider . . . . . . . . . . . : Realtek Semiconductor Corp. Versie . . . . . . . . . . . . : 1002.2.428.2010 Naam van informatiebestand . . : C:\Windows\INF\oem6.inf Datum van informatiebestand . . : woensdag 28 april 2010 2:32:20 Sectienaam . . . . . . . . . . : RTL8192Ce.ndi Hardware-id . . . . . . . . . . : pci\ven_10ec&dev_8176&subsys_818410ec Vlaggen voor instantiestatus . .: 0x180200a Statuscode van Apparaatbeheer . : 0 IfType . . . . . . . . . . . . : 71 Type fysieke media . . . . . . : 9 [/TD] [/TR] [/TABLE] [/TD] [/TR] [/TABLE] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=bgcolor: transparent] Diagnostische gegevens van Draadloze Verbindingsmogelijkheden [/TD] [/TR] [TR] [TD=bgcolor: transparent] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=bgcolor: transparent] Details over diagnose van van draadloze verbindingsmogelijkheden: Gegevens van verbinding die wordt gecontroleerd GUID van interface: da2cd73f-ef93-4976-b161-3d0e4d60845d Interfacenaam: Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC Interfacetype: Systeemeigen WiFi Verbindingsincident vastgesteld Automatische-configuratie-id: 1 Verbindings-id: 2 Samenvatting verbindingsstatus Verbinding gestart om: 2012-07-23 21:09:46-675 Overeenkomstig profiel: Geslaagd Prekoppeling: Geslaagd Koppeling: Geslaagd Beveiliging en verificatie: Geslaagd Lijst met zichtbare toegangspunten: totaal 15 item(s), 15 item(s) weergegeven BSSID BSS-type PHY Signaal(dB) Kanaal/frequentie SSID ------------------------------------------------------------------------- 5C-35-3B-35-D4-46 Infrastructuur <onbekend> -86 1 telenet-5D441 00-19-70-9B-6A-8C Infrastructuur g -93 1 Wifi_De_Jonge 02-35-3B-35-D4-47 Infrastructuur <onbekend> -71 1 TELENETHOMESPOT 3E-75-4A-75-ED-5B Infrastructuur g -92 1 TELENETHOMESPOT 3C-75-4A-75-ED-5A Infrastructuur g -93 1 telenet-76AD0 5C-35-3B-0D-85-28 Infrastructuur <onbekend> -93 1 telenet-F546B 5C-35-3B-01-6A-68 Infrastructuur <onbekend> -89 6 telenet-D4861 5C-35-3B-01-6A-69 Infrastructuur <onbekend> -89 6 TELENETHOMESPOT 5C-35-3B-32-71-60 Infrastructuur <onbekend> -91 7 telenet-D93E4 5C-35-3B-20-0C-EE Infrastructuur <onbekend> -91 9 Benzai 00-11-50-5A-B3-33 Infrastructuur g -93 11 nanc telenet 5C-33-8E-66-63-4E Infrastructuur g -93 6 CIA672606d26d F0-7D-68-54-F5-D0 Infrastructuur <onbekend> -93 1 telenet-apn-E8636 5E-35-3B-0D-85-29 Infrastructuur <onbekend> -93 1 TELENETHOMESPOT 00-25-9C-33-DC-59 Infrastructuur g -93 11 linksys Verbindingsgeschiedenis Gegevens van automatische-configuratie-id 1 Lijst met zichtbare netwerken : totaal 12 item(s), 12 item(s) weergegeven BSS-type PHY Beveiliging Signaal(RSSI) Compatible SSID ------------------------------------------------------------------------------ Infrastructuur <onbekend> Ja 17 Ja telenet-5D441 Infrastructuur g Ja 3 Ja Wifi_De_Jonge Infrastructuur <onbekend> Nee 47 Ja TELENETHOMESPOT Infrastructuur g Ja 4 Ja telenet-76AD0 Infrastructuur <onbekend> Ja 4 Ja telenet-F546B Infrastructuur <onbekend> Ja 12 Ja telenet-D4861 Infrastructuur <onbekend> Ja 8 Ja telenet-D93E4 Infrastructuur <onbekend> Ja 8 Ja Benzai Infrastructuur g Ja 3 Ja nanc telenet Infrastructuur g Ja 3 Ja CIA672606d26d Infrastructuur <onbekend> Ja 4 Ja telenet-apn-E8636 Infrastructuur g Ja 4 Ja linksys Lijst met voorkeursnetwerken: 1 item(s) Profiel: telenet-5D441 SSID: telenet-5D441 SSID-lengte: 13 Verbindingsmodus: Infrastructuur Beveiliging: Ja Instellen per groepsbeleid: Nee Verbinding maken, zelfs wanneer het netwerk niet uitzendt: Nee Verbinding mogelijk: Ja Gegevens van verbindings-id 2 Verbinding gestart om: 2012-07-23 21:09:46-675 Automatische-configuratie-id: 1 Profiel: telenet-5D441 SSID: telenet-5D441 SSID-lengte: 13 Verbindingsmodus: Infrastructuur Beveiliging: Ja Prekoppeling en koppeling Connectiviteitsinstellingen van onafhankelijke hardwareleverancier: Nee Beveiligingsinstellingen van onafhankelijke hardwareleverancier: Nee Profiel komt overeen met netwerkvereisten: Geslaagd Status prekoppeling: geslaagd Koppelingsstatus: geslaagd Laatste toegangspunt: 5c-35-3b-35-d4-46 Beveiliging en verificatie Geconfigureerd beveiligingstype: WPA2-PSK Geconfigureerd versleutelingstype: CCMP(AES) 802.1X-protocol: Nee Sleuteluitwisseling gestart: Ja Unicastsleutel ontvangen: Ja Multicastsleutel ontvangen: Ja Aantal ontvangen beveiligingspakketten: 0 Aantal verzonden beveiligingspakketten: 0 Status beveiligingspoging: Geslaagd Connectiviteit Pakketstatistieken Ndis Rx: 2509 Ndis Tx: 2523 Unicastontsleuteling geslaagd: 0 Multicastontsleuteling geslaagd: 0 Unicastontsleuteling mislukt: 0 Multicastontsleuteling mislukt: 0 Rx geslaagd: 766 Rx mislukt: 0 Tx geslaagd: 97 Tx mislukt: 0 Transactie opnieuw proberen: 0 Transactie meerdere keren opnieuw proberen: 0 Maximale levensduur transactie overschreden: 0 ACK-fout transactie: 0 Geschiedenis voor zwerven: 0 item(s) Gegevens van verbindings-id 1 Verbinding gestart om: 2012-07-23 21:09:45-225 Automatische-configuratie-id: 1 Profiel: telenet-5D441 SSID: telenet-5D441 SSID-lengte: 13 Verbindingsmodus: Infrastructuur Beveiliging: Ja Prekoppeling en koppeling Connectiviteitsinstellingen van onafhankelijke hardwareleverancier: Nee Beveiligingsinstellingen van onafhankelijke hardwareleverancier: Nee Profiel komt overeen met netwerkvereisten: Geslaagd Status prekoppeling: geslaagd Koppelingsstatus: geslaagd Laatste toegangspunt: 5c-35-3b-35-d4-46 Beveiliging en verificatie Geconfigureerd beveiligingstype: WPA2-PSK Geconfigureerd versleutelingstype: CCMP(AES) 802.1X-protocol: Nee Sleuteluitwisseling gestart: Ja Unicastsleutel ontvangen: Ja Multicastsleutel ontvangen: Ja Aantal ontvangen beveiligingspakketten: 0 Aantal verzonden beveiligingspakketten: 0 Status beveiligingspoging: Geslaagd Connectiviteit Pakketstatistieken Ndis Rx: 0 Ndis Tx: 0 Unicastontsleuteling geslaagd: <onbekend> Multicastontsleuteling geslaagd: <onbekend> Unicastontsleuteling mislukt: <onbekend> Multicastontsleuteling mislukt: <onbekend> Rx geslaagd: <onbekend> Rx mislukt: <onbekend> Tx geslaagd: <onbekend> Tx mislukt: <onbekend> Transactie opnieuw proberen: <onbekend> Transactie meerdere keren opnieuw proberen: <onbekend> Maximale levensduur transactie overschreden: <onbekend> ACK-fout transactie: <onbekend> Geschiedenis voor zwerven: 1 item(s) Tijden: 2012-07-23 21:09:46-675 Zwerven vanaf BSSID: 00-00-00-00-00-00 Reden: 0x00010001 Verbinding met BSSID verbroken: 00-00-00-00-00-00 Reden: 0x00000101 [/TD] [/TR] [/TABLE] [/TD] [/TR] [/TABLE] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=bgcolor: transparent] Diagnostische gegevens van Draadloze Verbindingsmogelijkheden [/TD] [/TR] [TR] [TD=bgcolor: transparent] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=bgcolor: transparent] Details over diagnose van van draadloze verbindingsmogelijkheden: Zie de informatieve gebeurtenis bij draadloze verbindingen voor uitgebreide informatie over deze sessie. Helperklasse: Automatische configuratie Status van initialisatie: Geslaagd Gegevens van verbinding die wordt gecontroleerd GUID van interface: da2cd73f-ef93-4976-b161-3d0e4d60845d Interfacenaam: Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC Interfacetype: Systeemeigen WiFi Resultaat van controle: Er kan een probleem zijn [/TD] [/TR] [/TABLE] [/TD] [/TR] [/TABLE] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=bgcolor: transparent] Diagnostische gegevens van Draadloze Netwerkadapter [/TD] [/TR] [TR] [TD=bgcolor: transparent] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=bgcolor: transparent] Details over diagnose van van draadloze netwerkadapter: Zie de informatieve gebeurtenis bij draadloze verbindingen voor uitgebreide informatie over deze sessie. Helperklasse: Systeemeigen WiFi MSM Status van initialisatie: Geslaagd Gegevens van verbinding die wordt gecontroleerd GUID van interface: da2cd73f-ef93-4976-b161-3d0e4d60845d Interfacenaam: Realtek RTL8188CE Wireless LAN 802.11n PCI-E NIC Interfacetype: Systeemeigen WiFi Profiel: telenet-5D441 SSID: telenet-5D441 SSID-lengte: 13 Verbindingsmodus: Infrastructuur Beveiliging: Ja Verbinding maken, zelfs wanneer het netwerk niet uitzendt: Nee Resultaat van controle: Er kan een probleem zijn [/TD] [/TR] [/TABLE] [/TD] [/TR] [/TABLE] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=bgcolor: transparent] Logboek van netwerkdiagnose [/TD] [/TR] [TR] [TD=bgcolor: transparent] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=width: 120, bgcolor: transparent] Bestandsnaam: [/TD] [TD] 54D069A9-1E40-4C6D-97F8-B52E08DF839E.Diagnose.0.etl [/TD] [/TR] [/TABLE] [/TD] [/TR] [/TABLE] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=bgcolor: transparent] Andere netwerkconfiguraties en -logboekbestanden [/TD] [/TR] [TR] [TD=bgcolor: transparent] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=width: 120, bgcolor: transparent] Bestandsnaam: [/TD] [TD] NetworkConfiguration.cab [/TD] [/TR] [/TABLE] [/TD] [/TR] [/TABLE] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=bgcolor: transparent, colspan: 2] Informatie over het verzamelen [/TD] [/TR] [TR] [TD=width: 120, bgcolor: transparent] Computernaam: [/TD] [TD] TOSHIBA-LT [/TD] [/TR] [TR] [TD=width: 120, bgcolor: transparent] Windows-versie: [/TD] [TD] 6.1 [/TD] [/TR] [TR] [TD=width: 120, bgcolor: transparent] Architectuur: [/TD] [TD] amd64 [/TD] [/TR] [TR] [TD=width: 120, bgcolor: transparent] Tijd: [/TD] [TD] maandag 23 juli 2012 21:23:07 [/TD] [/TR] [TR] [TD=bgcolor: transparent] Gedetailleerde informatie van de uitgever [/TD] [TD=bgcolor: transparent] [/TD] [/TR] [/TABLE] [TABLE=class: MsoNormalTable, width: 100%] [TR] [TD=bgcolor: transparent, colspan: 2] Windows Netwerkcontrole [/TD] [/TR] [TR] [TD=bgcolor: transparent, colspan: 2] Hiermee kunnen problemen met netwerkverbindingen worden vastgesteld. [/TD] [/TR] [TR] [TD=width: 120, bgcolor: transparent] Pakketversie: [/TD] [TD] 1.0 [/TD] [/TR] [TR] [TD=width: 120, bgcolor: transparent] Uitgever: [/TD] [TD] Microsoft Windows [/TD] [/TR] [/TABLE] -
Draadloos internet valt weg eens de stekker uit het stopcontact is
boutek reageerde op boutek's topic in Archief Internet & Netwerk
Malwarebytes Anti-Malware 1.62.0.1300 www.malwarebytes.org Databaseversie: v2012.07.23.08 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Koen Boute :: TOSHIBA-LT [administrator] Realtime bescherming: Ingeschakeld 23/07/2012 13:55:30 mbam-log-2012-07-23 (13-55-30).txt Scantype: Snelle scan Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM Uitgeschakelde scanopties: P2P Objecten gescand: 205946 Verstreken tijd: 4 minuut/minuten, 23 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerwaarden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerdata gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Mappen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Bestanden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) (einde) Malwarebytes Anti-Malware 1.62.0.1300 www.malwarebytes.org Databaseversie: v2012.07.23.08 Windows 7 Service Pack 1 x64 NTFS Internet Explorer 9.0.8112.16421 Koen Boute :: TOSHIBA-LT [administrator] Realtime bescherming: Ingeschakeld 23/07/2012 13:55:30 mbam-log-2012-07-23 (13-55-30).txt Scantype: Snelle scan Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM Uitgeschakelde scanopties: P2P Objecten gescand: 205946 Verstreken tijd: 4 minuut/minuten, 23 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerwaarden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerdata gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Mappen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Bestanden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) (einde) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 14:19:39, on 23/07/2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16447) Boot mode: Normal Running processes: C:\Program Files (x86)\iTunes\iTunesHelper.exe C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE C:\Program Files (x86)\AVG\AVG2012\avgtray.exe C:\Program Files (x86)\AVG Secure Search\vprot.exe C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files (x86)\Microsoft Office\Office14\OUTLOOK.EXE C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe C:\Windows\SysWOW64\Macromed\Flash\FlashUtil11e_ActiveX.exe C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = www.bing.com R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: AVG Do Not Track - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files (x86)\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [bCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\Run: [HWSetup] C:\Program Files\TOSHIBA\Utilities\HWSetup.exe hwSetUP O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe" O4 - HKLM\..\Run: [vProt] "C:\Program Files (x86)\AVG Secure Search\vprot.exe" O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [Google Update] "C:\Users\Koen Boute\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - Startup: OneNote 2010 Screen Clipper and Launcher.lnk = C:\Program Files (x86)\Microsoft Office\Office14\ONENOTEM.EXE O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Toevoegen aan TOSHIBA Bulletin Board - res://C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll/1000 O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files (x86)\AVG\AVG2012\avgdtiex.dll O9 - Extra button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: @C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll,-229 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\TOSHIBA\BulletinBoard\TosNcUi.dll,-228 - {97F922BD-8563-4184-87EE-8C4ACA438823} - C:\Program Files\TOSHIBA\BulletinBoard\TosBBCom.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files (x86)\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgidsagent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: vToolbarUpdater11.2.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\11.2.0\ToolbarUpdater.exe O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 10702 bytes
