Jean Paul

Hallo, bedankt voor de gegeven gebruiksaanwijzing Algemeen. Maar .... het gaat hier niet over "EML" , of hoe u dat noemt want ik ken dat niet, maar gewoon een blanco nieuwbericht waarin een animatie is ingevoegd, wat op zichzelf geen probleem geeft met doorseining , maar de muziek in achtergrond gaat niet mee. Dus moet er iets worden gewijzigd aan de muziekjes , mijn gedacht, om deze te laten meegaan. Wat is een "midi" ? m.vr.gr. Jean Paul

Goede namiddag, Graag klein hulpje aub. Ik werk met Windows XP. Voor mail gebruik ik Outlook Express 6 en daar heb ik een probleempje. Wanneer ik een nieuw bericht maak en plaats daarin via " INVOEGEN" een animatie, vb voor verjaardag is dat geen probleem, daarbij ook een achtergrondmuziekje via "OPMAAK" is ook geen probleem.Het animatieplaatje wordt weergegeven maar de muziek niet. Ook wanneer de muziek alleen wordt verstuurd wordt ze niet weergegeven bij ontvangst. Voor het vertrek van de mail krijg ik een opmerkingsvenster dat er bepaalde gegevens niet kunnen worden gevonden en wordt de vraag gesteld of ik alsnog het bericht wil versturen,ja dan niet. Om beide gegevens bij ontvangst terug te krijgen dien ik misschien ergens iets te programmeren of aan te vinken. kan iemand mij dat goed uitleggen aub ? Bij voorbaat dank, Jean Paul

:ciao:Geachten, Mag ik jullie van harte danken voor het geduld en de geboden hulp. ik heb er veel van opgestoken maar wanneer er problemen zijn kan ik natuurlijk niet gaan zien wat de verkeerde bestanden zijn. Zo ver rijkt mijn kennis niet. vandaar het nut van jullie instelling. Prettig weekend, Vrolijke Kerst en een goed einde jaars en begin 2010. met vriendelijke groeten, Jean Paul

Wat ik bedoel is volgende: a)Ik open HiJackThis en klik op SCAN. Dan krijg ik dat LOG en is de eerste lijn geslecteerd. Bij het proberen met CTRL +A gebeurt er niets, dus kan ik dat LOG niet volledig selecteren en dan met CTRL-C vastleggen om achteraf met CTRL/V te plakken in mijn bericht. Ik klik op SAVE LOG en zo kan ik het in een MAP stockeren. zo kan ik het uit de MAP selecteren en kopiëren en hierin plakken. Maar hieronder zie ik geen knop BEHEER BIJLAGEN c) Is hieronder het juiste LOG weergegeven aub ? Logfile of Trend Micro HijackThis v2.0.3 (BETA) Scan saved at 9:42:23, on 11/12/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16945) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe C:\Program Files\McAfee.com\Agent\mcagent.exe C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE C:\HP\KBD\KBD.EXE C:\Program Files\SPAMfighter\SFAgent.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\Siemens\SANTIS WLAN\WlanMonitor.exe C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\McAfee\SiteAdvisor\McSACore.exe C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\McAfee\MPF\MPFSrv.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\SPAMfighter\sfus.exe C:\WINDOWS\System32\PAStiSvc.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\TUProgSt.exe C:\Program Files\Skype\Plugin Manager\skypePM.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe C:\Program Files\Outlook Express\msimn.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\TrendMicro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan\scriptsn.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect O4 - HKLM\..\Run: [mcagent_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe" O4 - HKLM\..\Run: [EPSON Stylus CX3200] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P19 "EPSON Stylus CX3200" /O6 "USB001" /M "Stylus CX3200" O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [sPAMfighter Agent] "C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60 O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [Gadwin PrintScreen] C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe /nosplash O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: SANTIS USB and PC Card Utility.lnk = C:\Program Files\Siemens\SANTIS WLAN\WlanMonitor.exe O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: EpsonBidirectionalService - Unknown owner - C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: SPAMfighter Update Service - SPAMfighter ApS - C:\Program Files\SPAMfighter\sfus.exe O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe -- End of file - 9474 bytes

Heb gedaan zoals vorgeschreven maar HiJackThis doet geen scan meer. heb dan LOG opgeslagen in map in mijn dokumenten en probeer hier bij te voegen maar knop BEHEER BIJLAGEN doet niets.

Ik heb nu gekeken in HiJackThis maar kan het LOGJE niet selecteren .Is er een andere wijze alsnog ?

Geachten, Hierbij het LOG na uitvoering heb internet Explorer geopend en blijkbaar geen hinder ondervonden. Dient er nog iets te worden gedaan nu aub ? PS : ik had graag geweten hoe een eventuele bijlage (printscreen file )mee te sturen met een bericht teneinde mij beter te kunnen uitdrukken, kan dat ? Jean Paul Malwarebytes' Anti-Malware 1.42 Database versie: 3341 Windows 5.1.2600 Service Pack 3 Internet Explorer 7.0.5730.13 10/12/2009 22:52:31 mbam-log-2009-12-10 (22-52-31).txt Scan type: Volledige Scan (C:\|D:\|H:\|) Objecten gescand: 167720 Verstreken tijd: 47 minute(s), 39 second(s) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 23 Registerwaarden geïnfecteerd: 0 Registerdata bestanden geïnfecteerd: 0 Mappen geïnfecteerd: 7 Bestanden geïnfecteerd: 73 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige items gevonden) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige items gevonden) Registersleutels geïnfecteerd: HKEY_CLASSES_ROOT\awesomebestshoppingtipsprogram.awesomebestshoppingtipsprogram (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\awesomebestshoppingtipsprogram.awesomebestshoppingtipsprogram.1 (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\megaswelladsforyou.megaswelladsforyou (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\megaswelladsforyou.megaswelladsforyou.1 (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\premiereadvertisingplatform.premiereadvertisingplatform (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\premiereadvertisingplatform.premiereadvertisingplatform.1 (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\primoadsforyou.primoadsforyou (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\primoadsforyou.primoadsforyou.1 (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{b8afa6f8-90af-2466-c153-04043912ffbc} (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{547395d9-934a-ced6-b851-f238c86079e5} (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6b0da396-2dee-e4c6-d02b-575ff7159670} (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{d35da2a5-1d09-03bb-fe6e-c569be05cfa0} (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\TypeLib\{47cf1bc5-0d95-c60c-8c16-1b04e0deed3b} (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{0f7edbe1-e0aa-4518-468c-2ad4b6d81e14} (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\AppID\AwesomeBestShoppingTipsProgram.dll (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\AppID\PremiereAdvertisingPlatform.dll (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\AVR (Rogue.AdvancedVirusRemover) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\AwesomeBestShoppingTipsProgram (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\DealAssistant (Trojan.Agent) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\MegaSwellAdsForYou (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\PremiereAdvertisingPlatform (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MegaSwellAdsForYou (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PremiereAdvertisingPlatform (Adware.PlayMP3z) -> Quarantined and deleted successfully. Registerwaarden geïnfecteerd: (Geen kwaadaardige items gevonden) Registerdata bestanden geïnfecteerd: (Geen kwaadaardige items gevonden) Mappen geïnfecteerd: C:\Documents and Settings\Jean Paul\Application Data\DealAssistant (Trojan.Agent) -> Quarantined and deleted successfully. C:\Program Files\MegaSwellAdsForYou (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. C:\Program Files\PremiereAdvertisingPlatform (Adware.PlayMP3z) -> Quarantined and deleted successfully. C:\Documents and Settings\Jean Paul\Menu Start\Programma's\AntiVirus Plus (Rogue.AntiVirusPlus) -> Quarantined and deleted successfully. C:\Documents and Settings\Jean Paul\Menu Start\Programma's\PlayMP3z (Adware.PLayMP3z) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86 (Worm.Archive) -> Quarantined and deleted successfully. Bestanden geïnfecteerd: C:\Program Files\windows_media_update.exe (Adware.Mirar) -> Quarantined and deleted successfully. C:\Program Files\MegaSwellAdsForYou\MegaSwellAdsForYou.dll (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. C:\Program Files\TrendMicro\HiJackThis\backups\backup-20091210-164952-370.dll (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP198\A0054534.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP199\A0054852.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP200\A0056228.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP201\A0056537.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP186\A0052607.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP188\A0052840.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP189\A0053000.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP190\A0053147.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP191\A0053303.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP192\A0053465.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP196\A0053972.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\WINDOWS\system32\win1e.exe (Trojan.Dropper) -> Quarantined and deleted successfully. C:\WINDOWS\system32\wine3.exe (Trojan.Dropper) -> Quarantined and deleted successfully. C:\WINDOWS\system32\winf7.exe (Trojan.Dropper) -> Quarantined and deleted successfully. C:\Documents and Settings\Jean Paul\Application Data\DealAssistant\config.cfg (Trojan.Agent) -> Quarantined and deleted successfully. C:\Program Files\MegaSwellAdsForYou\uninstall.exe (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. C:\Program Files\PremiereAdvertisingPlatform\uninstall.exe (Adware.PlayMP3z) -> Quarantined and deleted successfully. C:\Documents and Settings\Jean Paul\Menu Start\Programma's\AntiVirus Plus\EULA.url (Rogue.AntiVirusPlus) -> Quarantined and deleted successfully. C:\Documents and Settings\Jean Paul\Menu Start\Programma's\PlayMP3z\Run PlayMP3z.pif (Adware.PLayMP3z) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\285.crack.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\285.crack.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\286.keygen.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\286.keygen.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\287.serial.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\287.serial.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\288.setup.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\288.setup.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\289.music.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\289.music.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\290.music2.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\290.music2.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\291.music3.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\291.music3.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\292.music4.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\292.music4.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\305.crack.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\305.crack.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\306.keygen.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\306.keygen.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\307.serial.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\307.serial.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\308.setup.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\308.setup.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\309.music.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\309.music.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\310.music2.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\310.music2.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\311.music3.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\311.music3.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\312.music4.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\312.music4.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\253.crack.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\253.crack.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\254.keygen.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\254.keygen.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\255.serial.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\255.serial.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\256.setup.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\256.setup.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\257.music.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\257.music.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\258.music2.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\258.music2.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\259.music3.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\259.music3.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\260.music.snd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\260.music.snd.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\GroupPolicy000.dat (Malware.Trace) -> Quarantined and deleted successfully. C:\WINDOWS\GnuHashes.ini (Malware.Trace) -> Quarantined and deleted successfully. C:\WINDOWS\system32\41.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Jurgen, jean Pierre, hieronder het LOG Scan uitgevoerd Hopelijk ben ik van deze vervelende venster af. Dit was een nieuwe ervaring en hoop in de toekomst, indien dergelijke zaken zich nog voordoen, terug beroep mag doen op jullie bereidwillige medewerking en hulp. Malwarebytes' Anti-Malware 1.42 Database versie: 3341 Windows 5.1.2600 Service Pack 3 Internet Explorer 7.0.5730.13 10/12/2009 22:52:31 mbam-log-2009-12-10 (22-52-31).txt Scan type: Volledige Scan (C:\|D:\|H:\|) Objecten gescand: 167720 Verstreken tijd: 47 minute(s), 39 second(s) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 23 Registerwaarden geïnfecteerd: 0 Registerdata bestanden geïnfecteerd: 0 Mappen geïnfecteerd: 7 Bestanden geïnfecteerd: 73 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige items gevonden) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige items gevonden) Registersleutels geïnfecteerd: HKEY_CLASSES_ROOT\awesomebestshoppingtipsprogram.awesomebestshoppingtipsprogram (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\awesomebestshoppingtipsprogram.awesomebestshoppingtipsprogram.1 (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\megaswelladsforyou.megaswelladsforyou (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\megaswelladsforyou.megaswelladsforyou.1 (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\premiereadvertisingplatform.premiereadvertisingplatform (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\premiereadvertisingplatform.premiereadvertisingplatform.1 (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\primoadsforyou.primoadsforyou (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\primoadsforyou.primoadsforyou.1 (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{b8afa6f8-90af-2466-c153-04043912ffbc} (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{547395d9-934a-ced6-b851-f238c86079e5} (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{6b0da396-2dee-e4c6-d02b-575ff7159670} (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{d35da2a5-1d09-03bb-fe6e-c569be05cfa0} (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\TypeLib\{47cf1bc5-0d95-c60c-8c16-1b04e0deed3b} (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{0f7edbe1-e0aa-4518-468c-2ad4b6d81e14} (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\AppID\AwesomeBestShoppingTipsProgram.dll (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\AppID\PremiereAdvertisingPlatform.dll (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\AVR (Rogue.AdvancedVirusRemover) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\AwesomeBestShoppingTipsProgram (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\DealAssistant (Trojan.Agent) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\MegaSwellAdsForYou (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. HKEY_CURRENT_USER\SOFTWARE\PremiereAdvertisingPlatform (Adware.PlayMP3z) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\MegaSwellAdsForYou (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\PremiereAdvertisingPlatform (Adware.PlayMP3z) -> Quarantined and deleted successfully. Registerwaarden geïnfecteerd: (Geen kwaadaardige items gevonden) Registerdata bestanden geïnfecteerd: (Geen kwaadaardige items gevonden) Mappen geïnfecteerd: C:\Documents and Settings\Jean Paul\Application Data\DealAssistant (Trojan.Agent) -> Quarantined and deleted successfully. C:\Program Files\MegaSwellAdsForYou (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. C:\Program Files\PremiereAdvertisingPlatform (Adware.PlayMP3z) -> Quarantined and deleted successfully. C:\Documents and Settings\Jean Paul\Menu Start\Programma's\AntiVirus Plus (Rogue.AntiVirusPlus) -> Quarantined and deleted successfully. C:\Documents and Settings\Jean Paul\Menu Start\Programma's\PlayMP3z (Adware.PLayMP3z) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86 (Worm.Archive) -> Quarantined and deleted successfully. Bestanden geïnfecteerd: C:\Program Files\windows_media_update.exe (Adware.Mirar) -> Quarantined and deleted successfully. C:\Program Files\MegaSwellAdsForYou\MegaSwellAdsForYou.dll (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. C:\Program Files\TrendMicro\HiJackThis\backups\backup-20091210-164952-370.dll (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP198\A0054534.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP199\A0054852.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP200\A0056228.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP201\A0056537.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP186\A0052607.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP188\A0052840.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP189\A0053000.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP190\A0053147.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP191\A0053303.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP192\A0053465.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\System Volume Information\_restore{A7958889-6D76-4D17-B56A-669C12276568}\RP196\A0053972.dll (Trojan.Tracur) -> Quarantined and deleted successfully. C:\WINDOWS\system32\win1e.exe (Trojan.Dropper) -> Quarantined and deleted successfully. C:\WINDOWS\system32\wine3.exe (Trojan.Dropper) -> Quarantined and deleted successfully. C:\WINDOWS\system32\winf7.exe (Trojan.Dropper) -> Quarantined and deleted successfully. C:\Documents and Settings\Jean Paul\Application Data\DealAssistant\config.cfg (Trojan.Agent) -> Quarantined and deleted successfully. C:\Program Files\MegaSwellAdsForYou\uninstall.exe (Adware.MegaSwellAdsForYou) -> Quarantined and deleted successfully. C:\Program Files\PremiereAdvertisingPlatform\uninstall.exe (Adware.PlayMP3z) -> Quarantined and deleted successfully. C:\Documents and Settings\Jean Paul\Menu Start\Programma's\AntiVirus Plus\EULA.url (Rogue.AntiVirusPlus) -> Quarantined and deleted successfully. C:\Documents and Settings\Jean Paul\Menu Start\Programma's\PlayMP3z\Run PlayMP3z.pif (Adware.PLayMP3z) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\285.crack.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\285.crack.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\286.keygen.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\286.keygen.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\287.serial.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\287.serial.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\288.setup.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\288.setup.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\289.music.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\289.music.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\290.music2.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\290.music2.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\291.music3.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\291.music3.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\292.music4.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\292.music4.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\305.crack.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\305.crack.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\306.keygen.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\306.keygen.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\307.serial.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\307.serial.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\308.setup.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\308.setup.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\309.music.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\309.music.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\310.music2.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\310.music2.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\311.music3.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\311.music3.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\312.music4.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\LocalService\312.music4.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\253.crack.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\253.crack.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\254.keygen.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\254.keygen.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\255.serial.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\255.serial.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\256.setup.zip (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\256.setup.zip.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\257.music.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\257.music.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\258.music2.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\258.music2.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\259.music3.au (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\259.music3.au.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\260.music.snd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\SystemX86\260.music.snd.kwd (Worm.Archive) -> Quarantined and deleted successfully. C:\WINDOWS\system32\GroupPolicy000.dat (Malware.Trace) -> Quarantined and deleted successfully. C:\WINDOWS\GnuHashes.ini (Malware.Trace) -> Quarantined and deleted successfully. C:\WINDOWS\system32\41.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Voor het verwijderen vanC:\Program Files \ AskBarDis krijg ik volgende venster : RODE BOIL MET WIT KRUIS: Fout bij verwijderen van bestand of map. controleer of de schijf vol of tegen schrijven is beveiligd of dat het bestand momenteel in gebruik is. : Dan KNOP MET OK

Ik werk met Windows XP home, is er dan een andere werkwijze ?

Logfile of Trend Micro HijackThis v2.0.3 (BETA) Scan saved at 14:17:40, on 10/12/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16915) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe C:\Program Files\McAfee.com\Agent\mcagent.exe C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE C:\HP\KBD\KBD.EXE C:\Program Files\SPAMfighter\SFAgent.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Skype\Phone\Skype.exe C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe C:\Program Files\Siemens\SANTIS WLAN\WlanMonitor.exe C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\McAfee\SiteAdvisor\McSACore.exe C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\McAfee\MPF\MPFSrv.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\SPAMfighter\sfus.exe C:\WINDOWS\System32\PAStiSvc.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\TUProgSt.exe C:\Program Files\Skype\Plugin Manager\skypePM.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe C:\Program Files\Outlook Express\msimn.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\TrendMicro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Mirar= R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = Mirar= R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: AskBar BHO - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar2.dll O2 - BHO: PremiereAdvertisingPlatform - {547395D9-934A-CED6-B851-F238C86079E5} - (no file) O2 - BHO: AwesomeBestShoppingTipsProgram - {6B0DA396-2DEE-E4C6-D02B-575FF7159670} - (no file) O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan\scriptsn.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll O2 - BHO: MegaSwellAdsForYou - {B8AFA6F8-90AF-2466-C153-04043912FFBC} - C:\Program Files\MegaSwellAdsForYou\MegaSwellAdsForYou.dll O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O2 - BHO: PrimoAdsForYou - {D35DA2A5-1D09-03BB-FE6E-C569BE05CFA0} - (no file) O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll O3 - Toolbar: Ask Toolbar - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar2.dll O3 - Toolbar: (no name) - {D9DE8726-EC42-4638-B62E-BCCCFDBCDBBA} - (no file) O3 - Toolbar: (no name) - {7EA98A06-C68E-4AD6-9622-D1933060D981} - (no file) O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect O4 - HKLM\..\Run: [mcagent_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe" O4 - HKLM\..\Run: [EPSON Stylus CX3200] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P19 "EPSON Stylus CX3200" /O6 "USB001" /M "Stylus CX3200" O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [sPAMfighter Agent] "C:\Program Files\SPAMfighter\SFAgent.exe" update delay 60 O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [Gadwin PrintScreen] C:\Program Files\Gadwin Systems\PrintScreen\PrintScreen.exe /nosplash O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: SANTIS USB and PC Card Utility.lnk = C:\Program Files\Siemens\SANTIS WLAN\WlanMonitor.exe O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: EpsonBidirectionalService - Unknown owner - C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe O23 - Service: EPSON Printer Status Agent2 (EPSONStatusAgent2) - SEIKO EPSON CORPORATION - C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: SPAMfighter Update Service - SPAMfighter ApS - C:\Program Files\SPAMfighter\sfus.exe O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\WINDOWS\System32\TuneUpDefragService.exe O23 - Service: TuneUp Program Statistics Service (TuneUp.ProgramStatisticsSvc) - TuneUp Software - C:\WINDOWS\System32\TUProgSt.exe -- End of file - 10516 bytes Ik hoop juist te hebben gehandeld. groeten jean paul

Sorry, maar wat is het "logje " ? Ik ken dat niet

Plak nu het HJT logje in je bericht door CTRL en V-toets. Graag even uitleg hoe, wat , waar aub Dank Jean paul

Goede morgen geachten, Steeds wanneer ik inlog naar Inter explorer en het beeld van Google krijg komt er plots een andere venster ervoor met recleme zoals van Telenet, casino games, Youtube, Wineen PC (in het frans dan nog) bonsparen enz..... . De pop-upblokkering staat aangevinkt in IE en toch komen die vervelende venster binnen. In de Browser staat : http://c5.zedo.com/jsc/c5/ff2.html?n=377;c=456;s=36;d=27;w=1024;h=768 kan dit voor eens en altijd voorkomen worden ? Graag een oplossing indien mogelijk aub. Bij voorbaat dank, M.vr.gr. Jean Paul

Beste Jurgen Mijn probleem is opgelost maar niet op de manier zoals is doorgegeven.Ik kreeg die fout met de toepassing niet opgelost. Ik heb mij volledige HD moeten cleenen en alles opnieuw installeren en opstarten.geen senicure maar nu kan ik tenminste verder genieten. Ik wil u hierbij ook bedanken voor uw tussenkomst en steun. Met vriendelijke groeten, Jean Paul

zie mail hierboven aub. m.vr.gr. Jean paul

Jurgen, sorry er was shet weekend en had nu wat problemen met mijn Outlook Express. Kon niet naar buiten. Heb nu CCleaner gedownload en geprobeerd. Die heeft zijn werk gedaan maar wanneer ik Windows media Player wil downloaden dan krijg ik , na de knop "UITVOEREN" terug die opmerking die Toepassing 0xc0000034 die niet kan worden geinitialid-seerd.Er zijn nog andere bestandjes die ik niet kan terugzetten zoals Gadwin printscreen, Pixresizer, Frostwire, Limewire . Wat nu ?

bedoelde u deze ? :Download latest version 3.04 MB (in 't groen )

Geachte,Ik trachtte de eerste te nemen die op het scherm kwam (nieuwste versie) en dit werd mij aangeraden door jurgen.. indien er een andere is had ik graag geweten als ik CCleaner intik in Google hoeveelste link ik moet nemen om de juiste (gratis) te downloaden graag. bij voorbaat dank (ik had me mijn 60e verjaardag anders voorgesteld) jean paul

Jurgen, Ik heb dit geprobeerd maar ..... ik moet een SMS sturen naar 7222 en dan zou ik een code krijgen. nadat ik dat had gedaan kreeg ik een bericht terug dat ik deze handeling moet herhalen en dat gebeurde zo twee maal na elkaar. Dit is geen vriendelijke aktie want ik betaal nu al 3 mails aan 4.5 euro en heb nog geen code!!!!! is dit een free download ?????

Geachte Jurgen, Bedankt, maar je moet het maar weten en je hoort zo veel dingenover een PC. Ik ga eerst proberen uw tip met CC Cleaner te proberen. Ik laat iets weten. groeten Jean Paul

Geachte, bedankt voor uw tussenkomst, ik waardeer dit oprecht. Maar .... ik heb reeds een tiental keren getracht dit te doen en steeds krijg ik weer die opmerking. Sorry, maar HET REGISTER, ?? Wat is dat , waar zit dat ? Wat valt er dan uiteindelik te doen ?

Geachte leden, ik ben nieuw en heb een ernstig probleem met mijn PC. door een lectriciteitspanne is mijn pc onderhevig geweest bij die actie. namelijk : ik kan Windows Media Player doordat ik steeds de volgende vermelding krijg : Setup_wm.exe - Toepassingsfout X kan de toepassing niet juist initialiseren (0xc0000034) Klik op OK om de toepassing te beeïndigen Kan iemandd mij helpen aub ? Ik ben geen gevorderde maar beginneling. met vriendelijke groeten en bij voorbaat dank. Jean Paul