Inhoud van Have0 - Pagina 16

Traag opstarten en traag reageren

Have0 plaatste een topic in Archief Windows Algemeen

Hoi, ondanks dat ik virusprogramma AVG Free, Advanced Systemcare en zeer regelmatig CCleaner gebruik start mijn p.c. sinds enige tijd zeer traag op. Hij doet er 3 minuten en 15 seconden over. Na het welkomscherm van Windows zie ik 90 seconden lang een blauw scherm. Ook als ik pictogrammen dubbel aanklik op het bureaublad reageert hij langzaam. Hieronder heb ik wat logs geplaatst. Bedankt alvast voor uw hulp. Malwarebytes' Anti-Malware 1.44 Database versie: 3663 Windows 5.1.2600 Service Pack 3 Internet Explorer 6.0.2900.5512 7-2-2010 15:19:48 mbam-log-2010-02-07 (15-19-48).txt Scan type: Snelle Scan Objecten gescand: 113967 Verstreken tijd: 9 minute(s), 38 second(s) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 0 Registerwaarden geïnfecteerd: 0 Registerdata bestanden geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 0 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige items gevonden) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige items gevonden) Registersleutels geïnfecteerd: (Geen kwaadaardige items gevonden) Registerwaarden geïnfecteerd: (Geen kwaadaardige items gevonden) Registerdata bestanden geïnfecteerd: (Geen kwaadaardige items gevonden) Mappen geïnfecteerd: (Geen kwaadaardige items gevonden) Bestanden geïnfecteerd: (Geen kwaadaardige items gevonden) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 15:20:51, on 7-2-2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\AVG\AVG9\avgchsvx.exe C:\Program Files\AVG\AVG9\avgrsx.exe C:\Program Files\AVG\AVG9\avgcsrvx.exe C:\WINDOWS\Explorer.EXE C:\Program Files\SurfRight\Caretaker\CaretakerService.exe C:\Program Files\SurfRight\Caretaker\AntispamService.exe C:\Program Files\SurfRight\Caretaker\CaretakerUpdater.exe C:\WINDOWS\system32\brsvc01a.exe C:\WINDOWS\system32\brss01a.exe C:\WINDOWS\system32\spoolsv.exe c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe C:\Program Files\AVG\AVG9\avgwdsvc.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\AVG\AVG9\avgnsx.exe C:\PROGRA~1\AVG\AVG9\avgtray.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Microsoft Office\Office10\WINWORD.EXE C:\WINDOWS\msagent\AgentSvr.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Startpagina.nl - alles op een rijtje! (ook op mobiel) R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://home.service.freesurf.nl/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy:8080 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\nl\msntb.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://start.home.nl/ O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab O16 - DPF: {426784E5-24B2-4708-820D-117342FAD009} (Cimporter Object) - http://www.hyves.nl/cab/outlookaddressbook.cab O16 - DPF: {45B69029-F3AB-4204-92DE-D5140C3E8E74} - O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} - http://www.famipix.nl/ImageUploader5.cab O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.kodakimages.com/DesktopModules/SpectorAlbum/ImageUploader4.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://activex.webcam.nl/AxisCamControl.cab O16 - DPF: {D6BBBC13-56A9-4E62-92AC-4DBEF6CCB38B} (SFAutoInstall Class) - http://playz.project.streamtech.nl/clientdownloads/SFAutoInstall.CAB O16 - DPF: {D83C1BD1-DCBB-11D4-9425-0050BF33FA6E} (CycloScopeLite Control) - http://www.cyclomedia.nl/download/components/CycloScopeLite.cab O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe O23 - Service: Caretaker Antispam Service (CaretakerAntispam) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\AntispamService.exe O23 - Service: Caretaker Proxy (CaretakerProxy) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\CaretakerProxy.exe O23 - Service: Caretaker Service (CaretakerSvc) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\CaretakerService.exe O23 - Service: Caretaker Updater (CaretakerUpdate) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\CaretakerUpdater.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe -- End of file - 7768 bytes

7 februari 2010
28 antwoorden

Advanced system care t.o.v. andere programma

Have0 plaatste een topic in Archief Andere software

Ik gebruik regelmatig Advanced Systemcare, een van de onderdelen geeft hij aan dat hij ook voorkomt dat er spyware wordt geinstalleerd. Biedt dit programma voldoende bescherming (hij zoekt het zo snel) of is het raadzaam om toch ook regelmatig Ad-Aware en Spybot search & destroy te blijven gebruiken daarnaast ? Aan de ene kant denk ik deze taken kun je uitvoeren met Advanced Systemcare, bij jullie bekend ? Aan de andere kant een scan van 20 seconden kun je toch nooit vergelijken met een scan van meer dan 60 minuten van Ad-Aware en 60 minuten Spybot ? Wat is jullie advies ?

4 februari 2010
1 antwoord

Prefetch

Have0 plaatste een topic in Archief Windows Algemeen

Hoi, ik las in blad computeridee dat je bij uitvoeren en vervolgens prefetch kunt zien een map met verwijzingen van programma's die vaak worden opgestart. Windows plaatst deze in het geheugen waardoor ze sneller openen. Het is belangrijk om de map zo af en toe te legen, wegens vervuiling van programma's die helemaal niet meer op de p.c. staan. Kan het kwaad om dit te doen, neem aan dat dit op een gegeven moment opnieuw gevuld wordt of moet ik hier zeer terughoudend mee zijn ? Via MSCONFIG start alleen NOD32 en CTFMON op. Watsd

27 januari 2010
1 antwoord

Advies aanschaf laptop

Have0 reageerde op Have0's topic in Archief Hardware algemeen

Heb jij nog een andere suggestie voor mij ? En ik neem aan dat processor T4300 beter en sneller is dan T3000 toch ?

19 januari 2010
7 antwoorden

Advies aanschaf laptop

Have0 reageerde op Have0's topic in Archief Hardware algemeen

Rond de 500-600 euro. In Nederland heb je dan wel veel keus. Ik overweeg Compaq CQ61-240ED Intern geheugen 4 GB, harde schijf 500 GB, processor Intel Duo T4300, deze kost 499 euro. Begrijp ik het goed dat een processor Intel Duo T4300 sneller is dan Intel Duo T3000 ? Ik ga geen zware games spelen maar wil wel kunnen surfen op internet. Heb internet Ziggo 20 MB vandaar. Bedankt alavast voor jullie advies.

18 januari 2010
7 antwoorden

Advies aanschaf laptop

Have0 plaatste een topic in Archief Hardware algemeen

Hoi ik overweeg een laptop aan te schaffen maar ben daar een beetje een leek in. Ik wil heel graag - DVD-brander erin - Gebruik is vooral internet en soms DVD's kijken. Ik dacht zelf als ik deze op zolder zet en hij toch redelijk snel moet zijn moet ik eisen stellen aan - processor - minimaal intern geheugen 3 GB ? Gebruik nu op mijn p.c. Windows XP, gebruikt niet zoveel geheugen maar dat zou wel niet meer kunnen op laptop aan de andere kant is de vraag of ik er niet over aantal jaren uitleg omdat programma's niet meer compatible zijn met Windows XP toch ? Graag jullie meningen/adviezen bedankt alvast.

17 januari 2010
7 antwoorden

surfen internet traag

Have0 reageerde op Have0's topic in Archief Internet & Netwerk

Het surfen is weer een stuk sneller geworden. Heb je enig idee hoe ik dit kan voorkomen dat na enige tijd er weer rommel op mijn p.c. geinstalleerd wordt ? Ik gebruik NOD32, Malwarebytes Anti-Malware, Advanced Systemcare. Ik download wel regelmatig films maar deze programma's houden toch bijna alles tegen. Ik neem aan dat er geen virussen door combofix maar fouter eruit gehaald worden ? Misschien een rare vraag. Mijn p.c. staat aan de andere kant van de muur waar de modem staat, kabel van 2 meter zou voldoende zijn. Heb echter bijgeleverde kabel van 7 meter gebruikt. Heeft het invloed op de snelheid als ik een groot stuk bijvoorbeeld 4 meter er vanaf haal. Lees op internet hierover tegenstrijdige berichten.

14 januari 2010
8 antwoorden

surfen internet traag

Have0 reageerde op Have0's topic in Archief Internet & Netwerk

Hopelijk is het zo goed gelukt. ComboFix 10-01-12.05 - Eigenaar 13-01-2010 17:45:02.10.1 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.2039.1643 [GMT 1:00] Gestart vanuit: c:\documents and settings\Eigenaar\Bureaublad\ComboFix2.exe AV: NOD32 antivirus systeem 2.51 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0} . De volgende bestanden werden uitgeschakeld tijdens de run: c:\program files\Common Files\Logitech\LVMVFM\LVPrcInj.dll (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . ---- Voorgaande Run ------- . c:\kittyfix5210k\CF20613.cfxxe c:\kittyfix869k\CF24905.cfxxe c:\kittyfix869k\NircmdB.exe c:\windows\system32\drivers\ctredr15.sys . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_ctredr15.sys -------\Service_ctredr15.sys (((((((((((((((((((( Bestanden Gemaakt van 2009-12-13 to 2010-01-13 )))))))))))))))))))))))))))))) . 2010-01-13 06:42 . 2009-11-21 16:03 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll 2010-01-12 17:53 . 2010-01-12 18:08 -------- dc----w- C:\ComboFix2 2010-01-12 17:07 . 2010-01-13 16:36 -------- dc-h--r- c:\documents and settings\Eigenaar\Onlangs geopend 2010-01-12 15:56 . 2010-01-12 17:53 -------- dc----w- C:\ComboFix 2010-01-08 19:43 . 2010-01-08 20:26 -------- d-----w- c:\program files\GemistDownloader 2009-12-28 17:07 . 2005-04-14 16:01 34816 ------w- c:\windows\system32\BrWiaNCp.dll 2009-12-28 17:07 . 2005-04-14 16:00 31744 ------w- c:\windows\system32\Brnsplg.dll 2009-12-28 17:07 . 2005-04-14 15:46 53248 ------w- c:\windows\system32\BrNetSti.dll 2009-12-28 17:07 . 2005-04-13 13:27 53248 ------r- c:\windows\system32\BrMfNt.dll 2009-12-28 17:07 . 2005-04-13 13:27 163840 ------w- c:\windows\system32\NSSearch.dll 2009-12-28 17:07 . 2002-11-26 12:43 106496 ------w- c:\windows\system32\BrMuSNMP.dll 2009-12-24 20:00 . 2009-12-24 20:00 -------- dc----w- c:\documents and settings\LocalService\Application Data\TuneUp Software 2009-12-24 19:08 . 2009-12-24 19:30 -------- dc----w- C:\DEFIANCE__2008__PAL_2LIONS_TEAM 2009-12-24 17:23 . 2009-12-24 17:29 -------- d-----w- c:\program files\RegistryFix8 2009-12-21 14:06 . 2009-12-21 17:25 -------- d-----w- c:\program files\CodeStuff 2009-12-20 18:55 . 2009-12-20 18:55 -------- dcsh--w- c:\documents and settings\All Users\Application Data\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC} . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-01-12 22:37 . 2009-11-16 18:59 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\uTorrent 2010-01-12 16:30 . 2009-10-14 20:42 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-01-12 16:29 . 2009-12-06 11:26 5115824 -c--a-w- c:\documents and settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe 2010-01-12 06:43 . 2007-07-30 16:17 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Vso 2010-01-10 21:22 . 2007-09-09 19:23 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\LimeWire 2010-01-10 19:37 . 2009-10-18 11:07 -------- dc----w- c:\documents and settings\All Users\Application Data\TuneUp Software 2010-01-07 15:07 . 2009-10-14 20:42 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-01-07 15:07 . 2009-10-14 20:42 19160 -c--a-w- c:\windows\system32\drivers\mbam.sys 2009-12-29 17:22 . 2006-11-07 18:39 -------- d-----w- c:\program files\Brother 2009-12-29 17:18 . 2003-01-21 17:18 -------- d--h--w- c:\program files\InstallShield Installation Information 2009-12-29 17:18 . 2003-01-21 17:18 -------- d-----w- c:\program files\Common Files\InstallShield 2009-12-29 17:17 . 2003-07-30 14:51 -------- d-----w- c:\program files\hp deskjet 3420 series 2009-12-28 17:12 . 2006-11-07 18:36 57 -c--a-w- c:\documents and settings\All Users\Application Data\Brother\BrLog\BrCollectDir\BR_cat.bat 2009-12-28 17:08 . 2006-11-07 18:40 50 -c--a-w- c:\windows\system32\bridf05a.dat 2009-12-27 11:57 . 2005-10-25 20:53 -------- d-----w- c:\program files\Eset 2009-12-24 18:57 . 2008-09-13 18:07 -------- dc--a-w- c:\documents and settings\All Users\Application Data\TEMP 2009-12-24 18:07 . 2006-02-28 19:29 -------- dc----w- c:\documents and settings\All Users\Application Data\DVD Shrink 2009-12-21 17:29 . 2005-03-16 21:08 -------- dc----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy 2009-12-21 17:26 . 2009-01-01 17:13 -------- d-----w- c:\program files\Uniblue 2009-12-10 15:43 . 2003-01-22 00:22 91518 -c--a-w- c:\windows\system32\perfc013.dat 2009-12-10 15:43 . 2003-01-22 00:22 510428 -c--a-w- c:\windows\system32\perfh013.dat 2009-12-08 22:29 . 2009-01-02 17:02 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\DVD Flick 2009-12-08 16:44 . 2009-12-07 18:46 -------- d-----w- c:\program files\DVD Shrink 2009-12-07 17:57 . 2009-12-07 17:57 -------- dc----w- c:\documents and settings\All Users\Application Data\Ad Muncher 2009-12-07 17:57 . 2009-12-07 17:57 -------- d-----w- c:\program files\Ad Muncher 2009-12-05 23:43 . 2003-02-06 15:43 -------- d-----w- c:\program files\Microsoft Works 2009-12-05 11:45 . 2009-12-05 11:45 -------- d-----w- c:\program files\Trend Micro 2009-12-01 19:34 . 2009-11-16 21:15 -------- d-----w- c:\program files\uTorrent 2009-12-01 16:53 . 2009-01-01 17:13 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Uniblue 2009-11-30 22:27 . 2003-01-21 16:34 79179 ----a-w- c:\windows\PCHealth\HelpCtr\OfflineCache\index.dat 2009-11-30 20:16 . 2009-11-26 18:02 -------- d-----w- c:\program files\DAP 2009-11-30 20:11 . 2008-12-25 10:20 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Azureus 2009-11-30 20:09 . 2009-11-15 19:20 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\uTorrent(2) 2009-11-29 17:54 . 2009-11-22 15:23 -------- d-----w- c:\program files\FlashGet 2009-11-29 17:53 . 2009-11-16 22:47 -------- d-----w- c:\program files\VSO 2009-11-29 15:58 . 2007-07-30 17:49 -------- dc----w- c:\documents and settings\All Users\Application Data\vsosdk 2009-11-27 21:24 . 2009-11-06 17:30 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\IObit 2009-11-27 21:24 . 2009-11-06 17:30 -------- d-----w- c:\program files\IObit 2009-11-26 22:14 . 2009-11-26 22:14 -------- d-----w- c:\program files\MSXML 4.0 2009-11-26 21:11 . 2009-11-26 19:09 -------- d-----w- c:\program files\Advanced Registry Optimizer 2009-11-26 19:09 . 2009-11-26 19:09 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Sammsoft 2009-11-26 18:03 . 2009-11-26 18:03 -------- dc----w- c:\documents and settings\All Users\Application Data\SpeedBit 2009-11-23 21:25 . 2009-11-20 16:47 -------- d-----w- c:\program files\EasyDVDShrink 2009-11-23 21:25 . 2009-01-03 19:28 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\ImgBurn 2009-11-23 21:25 . 2008-12-25 10:19 -------- d-----w- c:\program files\Vuze 2009-11-23 21:25 . 2008-09-13 17:00 -------- d-----w- c:\program files\LogMeIn 2009-11-23 21:25 . 2007-09-09 19:20 -------- d-----w- c:\program files\LimeWire 2009-11-23 21:25 . 2007-07-31 20:12 -------- dc----w- c:\documents and settings\All Users\Application Data\1Click DVD Copy Pro 2009-11-23 21:25 . 2007-07-30 16:18 -------- dc----w- c:\documents and settings\All Users\Application Data\1Click DVD Copy 2009-11-23 21:25 . 2005-12-16 19:59 -------- d-----w- c:\program files\Common Files\Logitech 2009-11-23 21:25 . 2005-03-30 10:29 -------- dc----w- c:\documents and settings\All Users\Application Data\QuickTime 2009-11-23 21:25 . 2003-08-29 20:09 -------- d-----w- c:\program files\Kazaa 2009-11-23 21:25 . 2003-01-21 17:45 -------- d-----w- c:\program files\Coloreal 2009-11-23 21:25 . 2003-01-21 17:18 -------- d-----w- c:\program files\USB Storage RW 2009-11-21 22:27 . 2009-11-20 18:19 -------- d-----w- c:\program files\UDPixel 2009-11-21 16:03 . 2003-03-25 17:15 471552 ----a-w- c:\windows\AppPatch\aclayers.dll 2009-11-20 21:43 . 2006-03-17 19:37 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Ahead 2009-11-20 17:07 . 2009-11-18 17:12 -------- d-----w- c:\program files\Yahoo! 2009-11-20 17:05 . 2009-10-18 11:07 -------- d-----w- c:\program files\TuneUp Utilities 2009 2009-11-18 17:12 . 2006-03-02 17:59 -------- d-----w- c:\program files\Ahead 2009-11-18 17:12 . 2009-11-18 17:12 -------- dc----w- c:\documents and settings\All Users\Application Data\Ahead 2009-11-18 17:02 . 2009-11-18 17:02 -------- d-----w- c:\program files\DVD Flick 2009-11-16 19:03 . 2004-07-19 20:57 -------- d-----w- c:\program files\KaZaA Lite 2009-11-16 19:03 . 2009-08-15 12:19 -------- d-----w- c:\program files\MSBuild 2009-11-16 19:03 . 2004-12-31 14:50 -------- d-----w- c:\program files\Codemasters 2009-11-16 19:03 . 2003-11-14 16:54 -------- d-----w- c:\program files\Red Storm Entertainment(2) 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\BLOKKER 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\Sony 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\Sonic 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\NovaLogic 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\Flitsservice 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\MSN Apps 2009-11-16 19:02 . 2009-11-16 19:02 -------- d-----w- c:\program files\Red Storm Entertainment 2009-11-16 18:59 . 2009-11-15 18:15 -------- d-----w- c:\program files\SUPERAntiSpyware 2009-11-15 20:14 . 2009-04-12 10:12 -------- d-----w- c:\program files\Hyves Desktop 2009-11-15 18:15 . 2009-10-24 17:39 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\SUPERAntiSpyware.com 2009-11-08 13:20 . 2009-11-07 09:56 127368 -c--a-w- c:\documents and settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat 2009-10-29 05:38 . 2004-08-23 18:35 670208 ------w- c:\windows\system32\wininet.dll 2009-10-23 15:33 . 2009-10-23 15:33 73728 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\xulrunner-stub.exe 2009-10-23 15:33 . 2009-10-23 15:33 499712 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\MSVCP71.DLL 2009-10-23 15:33 . 2009-10-23 15:33 348160 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\msvcr71.dll 2009-10-23 15:33 . 2009-10-23 15:33 102400 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\xulrunner.exe 2009-10-23 15:33 . 2009-10-23 15:32 8462336 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\xul.dll 2009-10-21 05:40 . 2004-08-04 08:03 75776 -c--a-w- c:\windows\system32\strmfilt.dll 2009-10-21 05:40 . 2004-08-04 08:03 25088 -c--a-w- c:\windows\system32\httpapi.dll 2009-10-20 16:20 . 2004-08-04 06:00 265728 -c----w- c:\windows\system32\drivers\http.sys 2006-08-27 11:18 . 2006-08-27 11:18 477 -c--a-w- c:\program files\Snelkoppeling naar Samsung.lnk 2002-09-30 01:12 . 2002-09-30 01:12 31477231 -c--a-w- c:\program files\fo-pm8.exe 2002-09-30 01:10 . 2002-09-30 01:10 154 -c--a-w- c:\program files\file_id.diz 2002-09-30 01:09 . 2002-09-30 01:09 5390 -c--a-w- c:\program files\fosi.nfo . ((((((((((((((((((((((((((((( SnapShot@2010-01-12_18.02.53 ))))))))))))))))))))))))))))))))))))))))) . + 2010-01-13 16:41 . 2010-01-13 16:41 16384 c:\windows\Temp\Perflib_Perfdata_548.dat - 2003-03-25 17:40 . 2009-06-16 14:40 81920 c:\windows\system32\fontsub.dll + 2003-03-25 17:40 . 2009-10-15 16:38 81920 c:\windows\system32\fontsub.dll - 2003-03-25 17:40 . 2009-06-16 14:40 81920 c:\windows\system32\dllcache\fontsub.dll + 2003-03-25 17:40 . 2009-10-15 16:38 81920 c:\windows\system32\dllcache\fontsub.dll + 2003-03-25 17:17 . 2009-10-15 16:38 119808 c:\windows\system32\t2embed.dll - 2003-03-25 17:17 . 2009-06-16 14:40 119808 c:\windows\system32\t2embed.dll - 2003-03-25 17:17 . 2009-06-16 14:40 119808 c:\windows\system32\dllcache\t2embed.dll + 2003-03-25 17:17 . 2009-10-15 16:38 119808 c:\windows\system32\dllcache\t2embed.dll + 2005-05-11 20:48 . 2010-01-05 00:17 29634504 c:\windows\system32\MRT.exe . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-07-11 68856] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "nod32kui"="c:\program files\Eset\nod32kui.exe" [2006-08-18 921600] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit] 2008-09-01 10:17 87352 ----a-w- c:\windows\system32\LMIinit.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WRNotifier] [bU] [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Bluetooth Manager.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Bluetooth Manager.lnk backup=c:\windows\pss\Bluetooth Manager.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office Snelstarten.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office Snelstarten.lnk backup=c:\windows\pss\Microsoft Office Snelstarten.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office Snelzoeken Indexer.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office Snelzoeken Indexer.lnk backup=c:\windows\pss\Microsoft Office Snelzoeken Indexer.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office.lnk backup=c:\windows\pss\Microsoft Office.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Statusvenster.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Statusvenster.lnk backup=c:\windows\pss\Statusvenster.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^Eigenaar^Menu Start^Programma's^Opstarten^Registration-Studio 8 LE.lnk] path=c:\documents and settings\Eigenaar\Menu Start\Programma's\Opstarten\Registration-Studio 8 LE.lnk backup=c:\windows\pss\Registration-Studio 8 LE.lnkStartup [HKLM\~\startupfolder\C:^Documents and Settings^Eigenaar^Menu Start^Programma's^Opstarten^TA_Start.lnk] path=c:\documents and settings\Eigenaar\Menu Start\Programma's\Opstarten\TA_Start.lnk backup=c:\windows\pss\TA_Start.lnkStartup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\combofix] c:\kittyfix5210k\CF20613.cfxxe [X] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KYE_Showicon] c:\program files\USB Storage RW\shwicon.exe -tKYE\USB Storage RW [X] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 3] 2009-11-20 12:51 2335880 ----a-w- c:\program files\IObit\Advanced SystemCare 3\AWC.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ContentTransferWMDetector.exe] 2008-07-11 15:51 423200 -c--a-w- c:\program files\Sony\Content Transfer\ContentTransferWMDetector.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe] 2008-04-14 17:02 15360 ------w- c:\windows\system32\ctfmon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpsysdrv] 1998-05-07 22:04 52736 -c--a-w- c:\windows\system\hpsysdrv.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray] 2002-10-16 12:18 155648 -c--a-w- c:\windows\system32\igfxtray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndexSearch] 2005-03-18 11:53 40960 -c--a-w- c:\program files\ScanSoft\PaperPort\IndexSearch.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCameraService(E)] 2004-11-01 17:22 262144 -c--a-w- c:\windows\system32\ElkCtrl.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechSoftwareUpdate] 2005-01-18 16:07 196608 -c--a-w- c:\program files\Logitech\Video\ManifestEngine.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideo[inspector]] 2005-09-07 05:39 73728 -c--a-w- c:\program files\Logitech\Video\InstallHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn GUI] 2008-07-24 16:46 63048 -c--a-w- c:\program files\LogMeIn\x86\LogMeInSystray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX] 2005-09-01 12:04 221184 -c--a-w- c:\windows\system32\LVCOMSX.EXE [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (reboot)] 2010-01-07 15:07 1394000 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbam.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] 2008-04-14 17:03 1695232 ------w- c:\program files\Messenger\msmsgs.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBJ] 2004-09-24 16:22 1916928 -c----w- c:\program files\Ahead\Nero BackItUp\NBJ.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] 2001-07-09 10:50 155648 -c--a-w- c:\windows\system32\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz] 2002-09-10 04:35 372736 -c--a-w- c:\windows\system32\nwiz.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Omnipage] 2002-06-03 09:38 49152 -c--a-w- c:\program files\ScanSoft\OmniPageSE\opware32.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PaperPort PTD] 2005-03-18 11:40 57393 -c--a-w- c:\program files\ScanSoft\PaperPort\pptd40nt.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2009-01-05 14:18 413696 -c--a-w- c:\program files\QuickTime\QTTask.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer] 2009-03-05 14:07 2260480 -csha-r- c:\program files\Spybot - Search & Destroy\TeaTimer.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StorageGuard] 2002-06-18 13:01 155648 -c--a-w- c:\program files\VERITAS Software\Update Manager\sgtray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] 2009-07-31 13:23 149280 -c--a-w- c:\program files\Java\jre6\bin\jusched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] 2007-07-11 16:07 68856 -c--a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] 2005-10-27 19:26 180269 -c--a-w- c:\program files\Common Files\Real\Update_OB\realsched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WCOLOREAL] 2002-11-26 23:14 131072 -c--a-w- c:\program files\Coloreal\COLOREAL.EXE [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "MSConfig"=c:\windows\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "c:\\Program Files\\Real\\RealPlayer\\realplay.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\WINDOWS\\system32\\sessmgr.exe"= "c:\\Program Files\\LimeWire\\LimeWire.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\uTorrent\\uTorrent.exe"= "c:\\Program Files\\Vuze\\Azureus.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= "c:\\Program Files\\Java\\jre6\\bin\\java.exe"= R2 CaretakerAntispam;Caretaker Antispam Service;c:\program files\SurfRight\Caretaker\AntispamService.exe [17-6-2008 14:30 172280] R2 CaretakerSvc;Caretaker Service;c:\program files\SurfRight\Caretaker\CaretakerService.exe [17-6-2008 14:27 1218296] R2 CaretakerUpdate;Caretaker Updater;c:\program files\SurfRight\Caretaker\CaretakerUpdater.exe [17-6-2008 14:27 187640] R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\LogMeIn\x86\rainfo.sys [24-7-2008 17:46 12856] R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [13-9-2008 18:04 47640] S2 CaretakerProxy;Caretaker Proxy;c:\program files\SurfRight\Caretaker\CaretakerProxy.exe [17-6-2008 14:30 1151736] S4 LMIRfsClientNP;LMIRfsClientNP; [x] S4 sptd;sptd;c:\windows\system32\drivers\sptd.sys [16-12-2006 17:54 639224] . Inhoud van de 'Gedeelde Taken' map 2010-01-08 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34] 2010-01-12 c:\windows\Tasks\FRU Task 2002-06-04 23:12ewlett-Packardeskjet768CF46A416DAEA075A48BB6EA78B0FA439DC8556BB62429D48976F92C495F5A420.job - c:\program files\Hewlett-Packard\upapp\hpqfruv.exe [2002-06-04 14:12] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.startpagina.nl/ uSearch Page = hxxp://www.google.com uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 uSearch Bar = hxxp://www.google.com/ie uInternet Connection Wizard,ShellNext = hxxp://home.service.freesurf.nl/ uInternet Settings,ProxyOverride = <local>;*.local uInternet Settings,ProxyServer = proxy:8080 uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: Block frame with Ad Muncher - Ad Muncher IE: Block image with Ad Muncher - Ad Muncher IE: Block link with Ad Muncher - Ad Muncher IE: Don't filter page with Ad Muncher - Ad Muncher IE: Report page to the Ad Muncher developers - Ad Muncher LSP: c:\windows\system32\imon.dll DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab DPF: {426784E5-24B2-4708-820D-117342FAD009} - hxxp://www.hyves.nl/cab/outlookaddressbook.cab DPF: {D6BBBC13-56A9-4E62-92AC-4DBEF6CCB38B} - hxxp://playz.project.streamtech.nl/clientdownloads/SFAutoInstall.CAB DPF: {D83C1BD1-DCBB-11D4-9425-0050BF33FA6E} - hxxp://www.cyclomedia.nl/download/components/CycloScopeLite.cab FF - ProfilePath - c:\documents and settings\Eigenaar\Application Data\Mozilla\Firefox\Profiles\12zgfw3k.default\ FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: browser.startup.homepage - hxxp://www.startpagina.nl/ FF - prefs.js: keyword.URL - hxxp://search.bearshare.com/webResults.html?src=ffb&q= FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\npqtplugin8.dll FF - plugin: c:\program files\QuickTime\Plugins\npqtplugin8.dll FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ ---- FIREFOX POLICIES ---- FF - user.js: browser.cache.memory.capacity - 65536 FF - user.js: browser.chrome.favicons - false FF - user.js: browser.display.show_image_placeholders - true FF - user.js: browser.turbo.enabled - true FF - user.js: browser.urlbar.autocomplete.enabled - true FF - user.js: browser.urlbar.autofill - true FF - user.js: content.interrupt.parsing - true FF - user.js: content.max.tokenizing.time - 2250000 FF - user.js: content.notify.backoffcount - 5 FF - user.js: content.notify.interval - 750000 FF - user.js: content.notify.ontimer - true FF - user.js: content.switch.threshold - 750000 FF - user.js: network.http.max-connections - 48 FF - user.js: network.http.max-connections-per-server - 16 FF - user.js: network.http.max-persistent-connections-per-proxy - 16 FF - user.js: network.http.max-persistent-connections-per-server - 8 FF - user.js: network.http.pipelining - true FF - user.js: network.http.pipelining.firstrequest - true FF - user.js: network.http.pipelining.maxrequests - 8 FF - user.js: network.http.proxy.pipelining - true FF - user.js: network.http.request.max-start-delay - 0 FF - user.js: nglayout.initialpaint.delay - 0 FF - user.js: plugin.expose_full_path - true FF - user.js: ui.submenuDelay - 0 . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2010-01-13 17:52 Windows 5.1.2600 Service Pack 3 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . --------------------- DLLs Geladen Onder Lopende Processen --------------------- - - - - - - - > 'winlogon.exe'(712) c:\windows\system32\LMIinit.dll c:\windows\system32\LMIRfsClientNP.dll - - - - - - - > 'explorer.exe'(272) c:\windows\system32\WPDShServiceObj.dll c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll c:\windows\system32\LMIRfsClientNP.dll . Voltooingstijd: 2010-01-13 17:57:58 ComboFix-quarantined-files.txt 2010-01-13 16:57 ComboFix2.txt 2010-01-12 18:08 ComboFix3.txt 2009-12-21 12:51 Pre-Run: 13.586.055.168 bytes beschikbaar Post-Run: 13.557.067.776 bytes beschikbaar Current=3 Default=3 Failed=1 LastKnownGood=4 Sets=,1,2,3,4 - - Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 18:00:34, on 13-1-2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\SurfRight\Caretaker\CaretakerService.exe C:\Program Files\SurfRight\Caretaker\AntispamService.exe C:\Program Files\SurfRight\Caretaker\CaretakerUpdater.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\brss01a.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe C:\Program Files\Eset\nod32krn.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Eset\nod32kui.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\WINDOWS\explorer.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\WINDOWS\system32\notepad.exe C:\Program Files\Microsoft Office\Office10\WINWORD.EXE C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\msagent\AgentSvr.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Startpagina.nl - alles op een rijtje! (ook op mobiel) R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = XB R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy:8080 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\nl\msntb.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O8 - Extra context menu item: Block frame with Ad Muncher - Ad Muncher O8 - Extra context menu item: Block image with Ad Muncher - Ad Muncher O8 - Extra context menu item: Block link with Ad Muncher - Ad Muncher O8 - Extra context menu item: Don't filter page with Ad Muncher - Ad Muncher O8 - Extra context menu item: Report page to the Ad Muncher developers - Ad Muncher O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://start.home.nl/ O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab O16 - DPF: {426784E5-24B2-4708-820D-117342FAD009} (Cimporter Object) - http://www.hyves.nl/cab/outlookaddressbook.cab O16 - DPF: {45B69029-F3AB-4204-92DE-D5140C3E8E74} - O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} - http://www.famipix.nl/ImageUploader5.cab O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.kodakimages.com/DesktopModules/SpectorAlbum/ImageUploader4.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://activex.webcam.nl/AxisCamControl.cab O16 - DPF: {D6BBBC13-56A9-4E62-92AC-4DBEF6CCB38B} (SFAutoInstall Class) - http://playz.project.streamtech.nl/clientdownloads/SFAutoInstall.CAB O16 - DPF: {D83C1BD1-DCBB-11D4-9425-0050BF33FA6E} (CycloScopeLite Control) - http://www.cyclomedia.nl/download/components/CycloScopeLite.cab O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe O23 - Service: Caretaker Antispam Service (CaretakerAntispam) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\AntispamService.exe O23 - Service: Caretaker Proxy (CaretakerProxy) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\CaretakerProxy.exe O23 - Service: Caretaker Service (CaretakerSvc) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\CaretakerService.exe O23 - Service: Caretaker Updater (CaretakerUpdate) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\CaretakerUpdater.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe -- End of file - 8644 bytesEnd Of File - - DE1BA8AECF4731E8497586E34429EC82

13 januari 2010
8 antwoorden

surfen internet traag

Have0 reageerde op Have0's topic in Archief Internet & Netwerk

Ik heb nogmaal combofix gedownload en nu lukte het. ComboFix 10-01-11.04 - Eigenaar 12-01-2010 18:55:34.8.1 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.2039.1621 [GMT 1:00] Gestart vanuit: c:\documents and settings\Eigenaar\Bureaublad\ComboFix2.exe AV: NOD32 antivirus systeem 2.51 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0} . De volgende bestanden werden uitgeschakeld tijdens de run: c:\program files\Common Files\Logitech\LVMVFM\LVPrcInj.dll (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . ---- Voorgaande Run ------- . c:\windows\$NtUninstallKB922582$\fltlib.dll c:\windows\$NtUninstallKB922582$\fltmc.exe c:\windows\$NtUninstallKB922582$\fltmgr.sys c:\windows\$NtUninstallKB922582$\spuninst\spuninst.exe c:\windows\$NtUninstallKB922582$\spuninst\spuninst.inf c:\windows\$NtUninstallKB922582$\spuninst\updspapi.dll c:\windows\system32\twain_32.dll c:\windows\unins000.dat c:\windows\unins000.exe . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_APPLE_MOBILE_DEVICE -------\Service_Apple Mobile Device (((((((((((((((((((( Bestanden Gemaakt van 2009-12-12 to 2010-01-12 )))))))))))))))))))))))))))))) . 2010-01-12 17:07 . 2010-01-12 17:07 -------- dc-h--r- c:\documents and settings\Eigenaar\Onlangs geopend 2010-01-12 15:56 . 2010-01-12 17:53 -------- dc----w- C:\ComboFix 2010-01-08 19:43 . 2010-01-08 20:26 -------- d-----w- c:\program files\GemistDownloader 2009-12-28 17:07 . 2005-04-14 16:01 34816 ------w- c:\windows\system32\BrWiaNCp.dll 2009-12-28 17:07 . 2005-04-14 16:00 31744 ------w- c:\windows\system32\Brnsplg.dll 2009-12-28 17:07 . 2005-04-14 15:46 53248 ------w- c:\windows\system32\BrNetSti.dll 2009-12-28 17:07 . 2005-04-13 13:27 53248 ------r- c:\windows\system32\BrMfNt.dll 2009-12-28 17:07 . 2005-04-13 13:27 163840 ------w- c:\windows\system32\NSSearch.dll 2009-12-28 17:07 . 2002-11-26 12:43 106496 ------w- c:\windows\system32\BrMuSNMP.dll 2009-12-24 20:00 . 2009-12-24 20:00 -------- dc----w- c:\documents and settings\LocalService\Application Data\TuneUp Software 2009-12-24 19:08 . 2009-12-24 19:30 -------- dc----w- C:\DEFIANCE__2008__PAL_2LIONS_TEAM 2009-12-24 17:23 . 2009-12-24 17:29 -------- d-----w- c:\program files\RegistryFix8 2009-12-21 17:15 . 2009-12-21 17:18 -------- dc----w- C:\KittyFix5210K 2009-12-21 14:06 . 2009-12-21 17:25 -------- d-----w- c:\program files\CodeStuff 2009-12-21 12:39 . 2009-12-21 12:51 -------- dc----w- C:\KittyFix5041K 2009-12-21 11:27 . 2009-12-21 11:42 -------- dc----w- C:\KittyFix28584K 2009-12-21 09:36 . 2009-12-21 09:55 -------- dc----w- C:\KittyFix22993K 2009-12-21 08:36 . 2009-12-21 08:40 -------- dc----w- C:\KittyFix869K 2009-12-20 18:55 . 2009-12-20 18:55 -------- dcsh--w- c:\documents and settings\All Users\Application Data\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC} 2009-12-20 17:17 . 2009-12-20 17:34 -------- dc----w- C:\KittyFix . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-01-12 16:30 . 2009-10-14 20:42 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-01-12 16:29 . 2009-12-06 11:26 5115824 -c--a-w- c:\documents and settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe 2010-01-12 06:43 . 2007-07-30 16:17 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Vso 2010-01-11 21:18 . 2009-11-16 18:59 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\uTorrent 2010-01-10 21:22 . 2007-09-09 19:23 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\LimeWire 2010-01-10 19:37 . 2009-10-18 11:07 -------- dc----w- c:\documents and settings\All Users\Application Data\TuneUp Software 2010-01-07 15:07 . 2009-10-14 20:42 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-01-07 15:07 . 2009-10-14 20:42 19160 -c--a-w- c:\windows\system32\drivers\mbam.sys 2009-12-29 17:22 . 2006-11-07 18:39 -------- d-----w- c:\program files\Brother 2009-12-29 17:18 . 2003-01-21 17:18 -------- d--h--w- c:\program files\InstallShield Installation Information 2009-12-29 17:18 . 2003-01-21 17:18 -------- d-----w- c:\program files\Common Files\InstallShield 2009-12-29 17:17 . 2003-07-30 14:51 -------- d-----w- c:\program files\hp deskjet 3420 series 2009-12-28 17:12 . 2006-11-07 18:36 57 -c--a-w- c:\documents and settings\All Users\Application Data\Brother\BrLog\BrCollectDir\BR_cat.bat 2009-12-28 17:08 . 2006-11-07 18:40 50 -c--a-w- c:\windows\system32\bridf05a.dat 2009-12-27 11:57 . 2005-10-25 20:53 -------- d-----w- c:\program files\Eset 2009-12-24 18:57 . 2008-09-13 18:07 -------- dc--a-w- c:\documents and settings\All Users\Application Data\TEMP 2009-12-24 18:07 . 2006-02-28 19:29 -------- dc----w- c:\documents and settings\All Users\Application Data\DVD Shrink 2009-12-21 17:29 . 2005-03-16 21:08 -------- dc----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy 2009-12-21 17:26 . 2009-01-01 17:13 -------- d-----w- c:\program files\Uniblue 2009-12-10 15:43 . 2003-01-22 00:22 91518 -c--a-w- c:\windows\system32\perfc013.dat 2009-12-10 15:43 . 2003-01-22 00:22 510428 -c--a-w- c:\windows\system32\perfh013.dat 2009-12-08 22:29 . 2009-01-02 17:02 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\DVD Flick 2009-12-08 16:44 . 2009-12-07 18:46 -------- d-----w- c:\program files\DVD Shrink 2009-12-07 17:57 . 2009-12-07 17:57 -------- dc----w- c:\documents and settings\All Users\Application Data\Ad Muncher 2009-12-07 17:57 . 2009-12-07 17:57 -------- d-----w- c:\program files\Ad Muncher 2009-12-05 23:43 . 2003-02-06 15:43 -------- d-----w- c:\program files\Microsoft Works 2009-12-05 11:45 . 2009-12-05 11:45 -------- d-----w- c:\program files\Trend Micro 2009-12-01 19:34 . 2009-11-16 21:15 -------- d-----w- c:\program files\uTorrent 2009-12-01 16:53 . 2009-01-01 17:13 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Uniblue 2009-11-30 22:27 . 2003-01-21 16:34 79179 ----a-w- c:\windows\PCHealth\HelpCtr\OfflineCache\index.dat 2009-11-30 20:16 . 2009-11-26 18:02 -------- d-----w- c:\program files\DAP 2009-11-30 20:11 . 2008-12-25 10:20 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Azureus 2009-11-30 20:09 . 2009-11-15 19:20 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\uTorrent(2) 2009-11-29 17:54 . 2009-11-22 15:23 -------- d-----w- c:\program files\FlashGet 2009-11-29 17:53 . 2009-11-16 22:47 -------- d-----w- c:\program files\VSO 2009-11-29 15:58 . 2007-07-30 17:49 -------- dc----w- c:\documents and settings\All Users\Application Data\vsosdk 2009-11-27 21:24 . 2009-11-06 17:30 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\IObit 2009-11-27 21:24 . 2009-11-06 17:30 -------- d-----w- c:\program files\IObit 2009-11-26 22:14 . 2009-11-26 22:14 -------- d-----w- c:\program files\MSXML 4.0 2009-11-26 21:11 . 2009-11-26 19:09 -------- d-----w- c:\program files\Advanced Registry Optimizer 2009-11-26 19:09 . 2009-11-26 19:09 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Sammsoft 2009-11-26 18:03 . 2009-11-26 18:03 -------- dc----w- c:\documents and settings\All Users\Application Data\SpeedBit 2009-11-23 21:25 . 2009-11-20 16:47 -------- d-----w- c:\program files\EasyDVDShrink 2009-11-23 21:25 . 2009-01-03 19:28 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\ImgBurn 2009-11-23 21:25 . 2008-12-25 10:19 -------- d-----w- c:\program files\Vuze 2009-11-23 21:25 . 2008-09-13 17:00 -------- d-----w- c:\program files\LogMeIn 2009-11-23 21:25 . 2007-09-09 19:20 -------- d-----w- c:\program files\LimeWire 2009-11-23 21:25 . 2007-07-31 20:12 -------- dc----w- c:\documents and settings\All Users\Application Data\1Click DVD Copy Pro 2009-11-23 21:25 . 2007-07-30 16:18 -------- dc----w- c:\documents and settings\All Users\Application Data\1Click DVD Copy 2009-11-23 21:25 . 2005-12-16 19:59 -------- d-----w- c:\program files\Common Files\Logitech 2009-11-23 21:25 . 2005-03-30 10:29 -------- dc----w- c:\documents and settings\All Users\Application Data\QuickTime 2009-11-23 21:25 . 2003-08-29 20:09 -------- d-----w- c:\program files\Kazaa 2009-11-23 21:25 . 2003-01-21 17:45 -------- d-----w- c:\program files\Coloreal 2009-11-23 21:25 . 2003-01-21 17:18 -------- d-----w- c:\program files\USB Storage RW 2009-11-21 22:27 . 2009-11-20 18:19 -------- d-----w- c:\program files\UDPixel 2009-11-20 21:43 . 2006-03-17 19:37 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Ahead 2009-11-20 17:07 . 2009-11-18 17:12 -------- d-----w- c:\program files\Yahoo! 2009-11-20 17:05 . 2009-10-18 11:07 -------- d-----w- c:\program files\TuneUp Utilities 2009 2009-11-18 17:12 . 2006-03-02 17:59 -------- d-----w- c:\program files\Ahead 2009-11-18 17:12 . 2009-11-18 17:12 -------- dc----w- c:\documents and settings\All Users\Application Data\Ahead 2009-11-18 17:02 . 2009-11-18 17:02 -------- d-----w- c:\program files\DVD Flick 2009-11-16 19:03 . 2004-07-19 20:57 -------- d-----w- c:\program files\KaZaA Lite 2009-11-16 19:03 . 2009-08-15 12:19 -------- d-----w- c:\program files\MSBuild 2009-11-16 19:03 . 2004-12-31 14:50 -------- d-----w- c:\program files\Codemasters 2009-11-16 19:03 . 2003-11-14 16:54 -------- d-----w- c:\program files\Red Storm Entertainment(2) 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\BLOKKER 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\Sony 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\Sonic 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\NovaLogic 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\Flitsservice 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\MSN Apps 2009-11-16 19:02 . 2009-11-16 19:02 -------- d-----w- c:\program files\Red Storm Entertainment 2009-11-16 18:59 . 2009-11-15 18:15 -------- d-----w- c:\program files\SUPERAntiSpyware 2009-11-15 20:14 . 2009-04-12 10:12 -------- d-----w- c:\program files\Hyves Desktop 2009-11-15 18:15 . 2009-10-24 17:39 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\SUPERAntiSpyware.com 2009-11-08 13:20 . 2009-11-07 09:56 127368 -c--a-w- c:\documents and settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat 2009-10-29 05:38 . 2004-08-23 18:35 670208 ------w- c:\windows\system32\wininet.dll 2009-10-23 15:33 . 2009-10-23 15:33 73728 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\xulrunner-stub.exe 2009-10-23 15:33 . 2009-10-23 15:33 499712 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\MSVCP71.DLL 2009-10-23 15:33 . 2009-10-23 15:33 348160 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\msvcr71.dll 2009-10-23 15:33 . 2009-10-23 15:33 102400 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\xulrunner.exe 2009-10-23 15:33 . 2009-10-23 15:32 8462336 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\xul.dll 2009-10-21 05:40 . 2004-08-04 08:03 75776 -c--a-w- c:\windows\system32\strmfilt.dll 2009-10-21 05:40 . 2004-08-04 08:03 25088 -c--a-w- c:\windows\system32\httpapi.dll 2009-10-20 16:20 . 2004-08-04 06:00 265728 -c----w- c:\windows\system32\drivers\http.sys 2009-10-14 22:06 . 2009-10-14 22:06 152576 -c--a-w- c:\documents and settings\Eigenaar\Application Data\Sun\Java\jre1.6.0_16\lzma.dll 2006-08-27 11:18 . 2006-08-27 11:18 477 -c--a-w- c:\program files\Snelkoppeling naar Samsung.lnk 2002-09-30 01:12 . 2002-09-30 01:12 31477231 -c--a-w- c:\program files\fo-pm8.exe 2002-09-30 01:10 . 2002-09-30 01:10 154 -c--a-w- c:\program files\file_id.diz 2002-09-30 01:09 . 2002-09-30 01:09 5390 -c--a-w- c:\program files\fosi.nfo . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-07-11 68856] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "nod32kui"="c:\program files\Eset\nod32kui.exe" [2006-08-18 921600] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit] 2008-09-01 10:17 87352 ----a-w- c:\windows\system32\LMIinit.dll [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Bluetooth Manager.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Bluetooth Manager.lnk backup=c:\windows\pss\Bluetooth Manager.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office Snelstarten.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office Snelstarten.lnk backup=c:\windows\pss\Microsoft Office Snelstarten.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office Snelzoeken Indexer.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office Snelzoeken Indexer.lnk backup=c:\windows\pss\Microsoft Office Snelzoeken Indexer.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office.lnk backup=c:\windows\pss\Microsoft Office.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Statusvenster.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Statusvenster.lnk backup=c:\windows\pss\Statusvenster.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^Eigenaar^Menu Start^Programma's^Opstarten^Registration-Studio 8 LE.lnk] path=c:\documents and settings\Eigenaar\Menu Start\Programma's\Opstarten\Registration-Studio 8 LE.lnk backup=c:\windows\pss\Registration-Studio 8 LE.lnkStartup [HKLM\~\startupfolder\C:^Documents and Settings^Eigenaar^Menu Start^Programma's^Opstarten^TA_Start.lnk] path=c:\documents and settings\Eigenaar\Menu Start\Programma's\Opstarten\TA_Start.lnk backup=c:\windows\pss\TA_Start.lnkStartup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\combofix] c:\kittyfix5210k\CF20613.cfxxe [X] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KYE_Showicon] c:\program files\USB Storage RW\shwicon.exe -tKYE\USB Storage RW [X] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 3] 2009-11-20 12:51 2335880 ----a-w- c:\program files\IObit\Advanced SystemCare 3\AWC.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ContentTransferWMDetector.exe] 2008-07-11 15:51 423200 -c--a-w- c:\program files\Sony\Content Transfer\ContentTransferWMDetector.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe] 2008-04-14 17:02 15360 ------w- c:\windows\system32\ctfmon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpsysdrv] 1998-05-07 22:04 52736 -c--a-w- c:\windows\system\hpsysdrv.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray] 2002-10-16 12:18 155648 -c--a-w- c:\windows\system32\igfxtray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndexSearch] 2005-03-18 11:53 40960 -c--a-w- c:\program files\ScanSoft\PaperPort\IndexSearch.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCameraService(E)] 2004-11-01 17:22 262144 -c--a-w- c:\windows\system32\ElkCtrl.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechSoftwareUpdate] 2005-01-18 16:07 196608 -c--a-w- c:\program files\Logitech\Video\ManifestEngine.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideo[inspector]] 2005-09-07 05:39 73728 -c--a-w- c:\program files\Logitech\Video\InstallHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn GUI] 2008-07-24 16:46 63048 -c--a-w- c:\program files\LogMeIn\x86\LogMeInSystray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX] 2005-09-01 12:04 221184 -c--a-w- c:\windows\system32\LVCOMSX.EXE [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (reboot)] 2010-01-07 15:07 1394000 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbam.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] 2008-04-14 17:03 1695232 ------w- c:\program files\Messenger\msmsgs.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBJ] 2004-09-24 16:22 1916928 -c----w- c:\program files\Ahead\Nero BackItUp\NBJ.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] 2001-07-09 10:50 155648 -c--a-w- c:\windows\system32\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz] 2002-09-10 04:35 372736 -c--a-w- c:\windows\system32\nwiz.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Omnipage] 2002-06-03 09:38 49152 -c--a-w- c:\program files\ScanSoft\OmniPageSE\opware32.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PaperPort PTD] 2005-03-18 11:40 57393 -c--a-w- c:\program files\ScanSoft\PaperPort\pptd40nt.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2009-01-05 14:18 413696 -c--a-w- c:\program files\QuickTime\QTTask.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer] 2009-03-05 14:07 2260480 -csha-r- c:\program files\Spybot - Search & Destroy\TeaTimer.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StorageGuard] 2002-06-18 13:01 155648 -c--a-w- c:\program files\VERITAS Software\Update Manager\sgtray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] 2009-07-31 13:23 149280 -c--a-w- c:\program files\Java\jre6\bin\jusched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] 2007-07-11 16:07 68856 -c--a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] 2005-10-27 19:26 180269 -c--a-w- c:\program files\Common Files\Real\Update_OB\realsched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WCOLOREAL] 2002-11-26 23:14 131072 -c--a-w- c:\program files\Coloreal\COLOREAL.EXE [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "MSConfig"=c:\windows\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "c:\\Program Files\\Real\\RealPlayer\\realplay.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\WINDOWS\\system32\\sessmgr.exe"= "c:\\Program Files\\LimeWire\\LimeWire.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\uTorrent\\uTorrent.exe"= "c:\\Program Files\\Vuze\\Azureus.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= "c:\\Program Files\\Java\\jre6\\bin\\java.exe"= R1 ctredr15.sys;ctredr15.sys;c:\windows\system32\drivers\ctredr15.sys [11-4-2008 8:56 18176] R2 CaretakerAntispam;Caretaker Antispam Service;c:\program files\SurfRight\Caretaker\AntispamService.exe [17-6-2008 14:30 172280] R2 CaretakerProxy;Caretaker Proxy;c:\program files\SurfRight\Caretaker\CaretakerProxy.exe [17-6-2008 14:30 1151736] R2 CaretakerSvc;Caretaker Service;c:\program files\SurfRight\Caretaker\CaretakerService.exe [17-6-2008 14:27 1218296] R2 CaretakerUpdate;Caretaker Updater;c:\program files\SurfRight\Caretaker\CaretakerUpdater.exe [17-6-2008 14:27 187640] R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\LogMeIn\x86\rainfo.sys [24-7-2008 17:46 12856] R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [13-9-2008 18:04 47640] S4 LMIRfsClientNP;LMIRfsClientNP; [x] S4 sptd;sptd;c:\windows\system32\drivers\sptd.sys [16-12-2006 17:54 639224] . Inhoud van de 'Gedeelde Taken' map 2010-01-08 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34] 2010-01-12 c:\windows\Tasks\FRU Task 2002-06-04 23:12ewlett-Packardeskjet768CF46A416DAEA075A48BB6EA78B0FA439DC8556BB62429D48976F92C495F5A420.job - c:\program files\Hewlett-Packard\upapp\hpqfruv.exe [2002-06-04 14:12] 2010-01-10 c:\windows\Tasks\SmartDefrag.job - c:\program files\IObit\IObit SmartDefrag\IObit SmartDefrag.exe [2009-11-27 12:48] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.startpagina.nl/ uSearch Page = hxxp://www.google.com uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 uSearch Bar = hxxp://www.google.com/ie uInternet Connection Wizard,ShellNext = hxxp://home.service.freesurf.nl/ uInternet Settings,ProxyOverride = <local>;*.local uInternet Settings,ProxyServer = proxy:8080 uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: Block frame with Ad Muncher - Ad Muncher IE: Block image with Ad Muncher - Ad Muncher IE: Block link with Ad Muncher - Ad Muncher IE: Don't filter page with Ad Muncher - Ad Muncher IE: Report page to the Ad Muncher developers - Ad Muncher LSP: c:\windows\system32\imon.dll DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab DPF: {426784E5-24B2-4708-820D-117342FAD009} - hxxp://www.hyves.nl/cab/outlookaddressbook.cab DPF: {D6BBBC13-56A9-4E62-92AC-4DBEF6CCB38B} - hxxp://playz.project.streamtech.nl/clientdownloads/SFAutoInstall.CAB DPF: {D83C1BD1-DCBB-11D4-9425-0050BF33FA6E} - hxxp://www.cyclomedia.nl/download/components/CycloScopeLite.cab FF - ProfilePath - c:\documents and settings\Eigenaar\Application Data\Mozilla\Firefox\Profiles\12zgfw3k.default\ FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: browser.startup.homepage - hxxp://www.startpagina.nl/ FF - prefs.js: keyword.URL - hxxp://search.bearshare.com/webResults.html?src=ffb&q= FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\npqtplugin8.dll FF - plugin: c:\program files\QuickTime\Plugins\npqtplugin8.dll FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ ---- FIREFOX POLICIES ---- FF - user.js: browser.cache.memory.capacity - 65536 FF - user.js: browser.chrome.favicons - false FF - user.js: browser.display.show_image_placeholders - true FF - user.js: browser.turbo.enabled - true FF - user.js: browser.urlbar.autocomplete.enabled - true FF - user.js: browser.urlbar.autofill - true FF - user.js: content.interrupt.parsing - true FF - user.js: content.max.tokenizing.time - 2250000 FF - user.js: content.notify.backoffcount - 5 FF - user.js: content.notify.interval - 750000 FF - user.js: content.notify.ontimer - true FF - user.js: content.switch.threshold - 750000 FF - user.js: network.http.max-connections - 48 FF - user.js: network.http.max-connections-per-server - 16 FF - user.js: network.http.max-persistent-connections-per-proxy - 16 FF - user.js: network.http.max-persistent-connections-per-server - 8 FF - user.js: network.http.pipelining - true FF - user.js: network.http.pipelining.firstrequest - true FF - user.js: network.http.pipelining.maxrequests - 8 FF - user.js: network.http.proxy.pipelining - true FF - user.js: network.http.request.max-start-delay - 0 FF - user.js: nglayout.initialpaint.delay - 0 FF - user.js: plugin.expose_full_path - true FF - user.js: ui.submenuDelay - 0 . - - - - ORPHANS VERWIJDERD - - - - Notify-WRNotifier - (no file) MSConfigStartUp-SetDefPrt - c:\program files\Brother\Brmfl05a\BrStDvPt.exe MSConfigStartUp-UniblueRegistryBooster - c:\program files\Uniblue\RegistryBooster\launcher.exe AddRemove-Spybot - Search & Destroy_is1 - c:\windows\unins000.exe ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2010-01-12 19:02 Windows 5.1.2600 Service Pack 3 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . --------------------- DLLs Geladen Onder Lopende Processen --------------------- - - - - - - - > 'winlogon.exe'(784) c:\windows\system32\LMIinit.dll c:\windows\system32\LMIRfsClientNP.dll - - - - - - - > 'explorer.exe'(1424) c:\windows\system32\WPDShServiceObj.dll c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll c:\windows\system32\LMIRfsClientNP.dll . Voltooingstijd: 2010-01-12 19:08:10 ComboFix-quarantined-files.txt 2010-01-12 18:08 ComboFix2.txt 2009-12-21 12:51 Pre-Run: 13.701.664.768 bytes beschikbaar Post-Run: 13.674.459.136 bytes beschikbaar Current=3 Default=3 Failed=1 LastKnownGood=4 Sets=,1,2,3,4 - - End Of File - - 6A8E2A153D07C8B1F9EE9A8AC4CC8B2F Malwarebytes' Anti-Malware 1.44 Database versie: 3549 Windows 5.1.2600 Service Pack 3 Internet Explorer 6.0.2900.5512 12-1-2010 19:16:45 mbam-log-2010-01-12 (19-16-45).txt Scan type: Snelle Scan Objecten gescand: 111619 Verstreken tijd: 5 minute(s), 53 second(s) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 0 Registerwaarden geïnfecteerd: 0 Registerdata bestanden geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 0 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige items gevonden) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige items gevonden) Registersleutels geïnfecteerd: (Geen kwaadaardige items gevonden) Registerwaarden geïnfecteerd: (Geen kwaadaardige items gevonden) Registerdata bestanden geïnfecteerd: (Geen kwaadaardige items gevonden) Mappen geïnfecteerd: (Geen kwaadaardige items gevonden) Bestanden geïnfecteerd: (Geen kwaadaardige items gevonden) Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 22:14:57, on 12-1-2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\SurfRight\Caretaker\CaretakerService.exe C:\Program Files\SurfRight\Caretaker\AntispamService.exe C:\Program Files\SurfRight\Caretaker\CaretakerProxy.exe C:\Program Files\SurfRight\Caretaker\CaretakerUpdater.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\brss01a.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe C:\Program Files\Eset\nod32krn.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Eset\nod32kui.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\WINDOWS\explorer.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\Microsoft Office\Office10\WINWORD.EXE C:\WINDOWS\msagent\AgentSvr.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Startpagina.nl - alles op een rijtje! (ook op mobiel) R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://home.service.freesurf.nl/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy:8080 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\nl\msntb.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O8 - Extra context menu item: Block frame with Ad Muncher - Ad Muncher O8 - Extra context menu item: Block image with Ad Muncher - Ad Muncher O8 - Extra context menu item: Block link with Ad Muncher - Ad Muncher O8 - Extra context menu item: Don't filter page with Ad Muncher - Ad Muncher O8 - Extra context menu item: Report page to the Ad Muncher developers - Ad Muncher O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://start.home.nl/ O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab O16 - DPF: {426784E5-24B2-4708-820D-117342FAD009} (Cimporter Object) - http://www.hyves.nl/cab/outlookaddressbook.cab O16 - DPF: {45B69029-F3AB-4204-92DE-D5140C3E8E74} - O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} - http://www.famipix.nl/ImageUploader5.cab O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.kodakimages.com/DesktopModules/SpectorAlbum/ImageUploader4.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://activex.webcam.nl/AxisCamControl.cab O16 - DPF: {D6BBBC13-56A9-4E62-92AC-4DBEF6CCB38B} (SFAutoInstall Class) - http://playz.project.streamtech.nl/clientdownloads/SFAutoInstall.CAB O16 - DPF: {D83C1BD1-DCBB-11D4-9425-0050BF33FA6E} (CycloScopeLite Control) - http://www.cyclomedia.nl/download/components/CycloScopeLite.cab O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe O23 - Service: Caretaker Antispam Service (CaretakerAntispam) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\AntispamService.exe O23 - Service: Caretaker Proxy (CaretakerProxy) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\CaretakerProxy.exe O23 - Service: Caretaker Service (CaretakerSvc) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\CaretakerService.exe O23 - Service: Caretaker Updater (CaretakerUpdate) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\CaretakerUpdater.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe -- End of file - 8556 bytes

12 januari 2010
8 antwoorden

surfen internet traag

Have0 reageerde op Have0's topic in Archief Internet & Netwerk

Er is iets misgegaan. Ik had eerst opdracht Hijackthis opgestart en de aangegeven regels verwijderd, dat lukte. Toen combofix opgestart , hij bleef hangen met bericht log rapport wordt voorbereid. Er kwam na dit bericht geen vooruitgang meer in combofix. Ik heb geprobeerd om combofix opnieuw op te starten maar dit lukt niet. Dacht dan verwijder ik combofix en download combofix opnieuw maar verwijderen van dit programma lukt niet. Weet niet hoe ik verder moet met combifix. Help thanks

12 januari 2010
8 antwoorden

surfen internet traag

Have0 plaatste een topic in Archief Internet & Netwerk

Allereerst nog beste wensen voor 2010 en complimenten voor de site. Veel mogelijkheden en goede adviezen. Fijn dat je bericht per mail krijgt als er een antwoord wordt gegeven. Het surfen op internet is soms zeer traag geworden. Ik gebruik de volgende programma's NOD 32 CCleaner zeer frequent Malwarebytesanti-malware Advanced Systemcare Defregmentatie van de schijvn C-schijf is 32,7 GB groot, waarvan 12,9 GB beschikbaar. Speedtest gedaan op internet 399,7 KByte/sec. Internetprovider Ziggo 20 MB Ziet u nog die ik moet herstellen ? Ik heb logfile bijgesloten. Bedankt alvast voor uw reactie. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 17:06:42, on 11-1-2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\SurfRight\Caretaker\CaretakerService.exe C:\Program Files\SurfRight\Caretaker\AntispamService.exe C:\Program Files\SurfRight\Caretaker\CaretakerProxy.exe C:\Program Files\SurfRight\Caretaker\CaretakerUpdater.exe C:\WINDOWS\system32\brsvc01a.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\brss01a.exe c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe C:\Program Files\Eset\nod32kui.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe C:\Program Files\Eset\nod32krn.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Startpagina.nl - alles op een rijtje! (ook op mobiel) R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://home.service.freesurf.nl/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy:8080 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\nl\msntb.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O8 - Extra context menu item: Block frame with Ad Muncher - Ad Muncher O8 - Extra context menu item: Block image with Ad Muncher - Ad Muncher O8 - Extra context menu item: Block link with Ad Muncher - Ad Muncher O8 - Extra context menu item: Don't filter page with Ad Muncher - Ad Muncher O8 - Extra context menu item: Report page to the Ad Muncher developers - Ad Muncher O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://start.home.nl/ O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab O16 - DPF: {426784E5-24B2-4708-820D-117342FAD009} (Cimporter Object) - http://www.hyves.nl/cab/outlookaddressbook.cab O16 - DPF: {45B69029-F3AB-4204-92DE-D5140C3E8E74} - O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} - http://www.famipix.nl/ImageUploader5.cab O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.kodakimages.com/DesktopModules/SpectorAlbum/ImageUploader4.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://activex.webcam.nl/AxisCamControl.cab O16 - DPF: {D6BBBC13-56A9-4E62-92AC-4DBEF6CCB38B} (SFAutoInstall Class) - http://playz.project.streamtech.nl/clientdownloads/SFAutoInstall.CAB O16 - DPF: {D83C1BD1-DCBB-11D4-9425-0050BF33FA6E} (CycloScopeLite Control) - http://www.cyclomedia.nl/download/components/CycloScopeLite.cab O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe O23 - Service: Caretaker Antispam Service (CaretakerAntispam) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\AntispamService.exe O23 - Service: Caretaker Proxy (CaretakerProxy) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\CaretakerProxy.exe O23 - Service: Caretaker Service (CaretakerSvc) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\CaretakerService.exe O23 - Service: Caretaker Updater (CaretakerUpdate) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\CaretakerUpdater.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe -- End of file - 8772 bytes

11 januari 2010
8 antwoorden

nieuwe processor

Have0 reageerde op Have0's topic in Archief Hardware algemeen

Hoop dat ik het zo goed heb gedaan. Na F3 gaf hij aan dat er geen andere code zijn. Ben erg benieuwd. zoektochtprocessor.txt

6 januari 2010
4 antwoorden

nieuwe processor

Have0 plaatste een topic in Archief Hardware algemeen

Hoi, ik heb een p.c. Compaq Presario S3650NL. Heb ooit grotere harde schijf en uitbreiding naar 2 maal 512 MB intern geheugen erin laten zetten. Enig idee of ik de processor nog kan vervangen, hoe vind ik de juiste hiervoor. Computer is al oud, aanschaf juli 2003. Zal wel niet meevallen om daarvoor een andere snellere processor in te laten zetten ? Op zich nog tevreden mee, dacht als ik voor een klein bedrag hem nog sneller kan laten maken wil het overwegen. Heb al rondgekeken op internet maar kan hierover niets vinden. Of moet ik dan het moederbord ook vervangen dan wordt het niet rendabel vrees ik. Bedankt alvast voor uw antwoord.

6 januari 2010
4 antwoorden

Print ineens niet meer

Have0 reageerde op Have0's topic in Archief Hardware algemeen

Inderdaad, na de verwijdering en opnieuw installeren, doet hij het weer. Bedankt !

29 december 2009
5 antwoorden

Print ineens niet meer

Have0 reageerde op Have0's topic in Archief Hardware algemeen

Bedankt voor de link, toch kom ik er niet verder mee. Heb dit nog nooit eerder gehad. Hij kopieert wel, scant wel. Dus ik ga er vanuit hij herkent de Brother wel. Volgens mij is het iets softwarematig maar weet niet wat. Documenten blijven in de wachtrij staan.Op het lcdschermpje op de printer geeft hij wel aan dat er genoeg inkt in zit in alle 3 kleuren en aparte zwarte cartridge. Op mijn p.c. geeft hij niets aan bij controle inkthoeveelheid. Heb dit daar nooit eerder gecontroleerd dus weet niet wat hij eerst aangaf. Voor de zekerheid heb ik de zwarte cardridge vervangen door een nieuwe. Op het lcd-scherm van de printer geeft hij geen problemen aan. Heb instructieboekje bij oplossingen doorgelezen maar kom er niet uit. Help.

29 december 2009
5 antwoorden

Print ineens niet meer

Have0 plaatste een topic in Archief Hardware algemeen

Goede avond, ik heb een printer, die daarnaast ook scant en kopieert. Ineens print hij niet meer. Kopiëren lukt nog wel. Het is een brother DCP-115C. Ik heb niet bewust iets veranderd. Geprobeerd om vanuit andere programma's te printen zoals Word, Wordpad, kladblok maar er gebeurt niets. Zover ik kan zien zitten stekkers er goed in, zijn inktpatronen niet leeg en er zit voldoende papier erin. Via help van mij p.c. werd aangegeven probeer te printen via opdrachtprompt of zoiets maar dat begrijp ik niet hoe ik dit moet doen. Ben maar een leek. Heeft u een tip voor mij ? Bedankt alvast voor uw reactie.

28 december 2009
5 antwoorden

Opstarten p.c. duurt bijna 90 seconden

Have0 reageerde op Have0's topic in Archief Windows Algemeen

Beste mevrouw/mijnheer Kape, nu is de computer een stuk sneller met opstarten. Heb nog 2 kleine vragen hierover. C:\Qoobox is wel aanwezig. Het lukt mij niet om deze te verwijderen. Boodschap:"Kan Catchme log niet verwijderen. Het is door iemand anders of door een ander programma in gebruik". Als ik via controle-alt-delete windows taakbeheer oproep zie ik toch geen andere programma's draaien. Er is ook geen andere gebruiker. Hoe belangrijk is het dat ik toch dit op een andere (weet u welke) manier kan verwijderen ? Neem aan dat ik systeemherstel nu weer moet inschakelen ? Bedankt voor uw adviezen.

21 december 2009
12 antwoorden

Opstarten p.c. duurt bijna 90 seconden

Have0 reageerde op Have0's topic in Archief Windows Algemeen

Hoi, eigenlijk geen verschil. Maar ik neem aan dat er weinig aan te doen is en er geen fouten in log te zien zijn ? Via MSconfig heb ik maar 1 programma aangevinkt NOD32, maar bij services staan daar veel programma's aangeklikt. Neem aan dat ik daar niets meer in hoef te veranderen ? Intern geheugen is 2 maal 512 MB. Gebruik regelmatig defragmenteren, CCleaner, Advanced Systemcare. Neem aan dat ik niets meer hieraan kan doen. Begrijp alleen niet omdat er maar 1 programma opstart toch het probleem kan zijn. Maar er zijn grotere (pc-)problemen. Of heeft u toch nog een tip ? Bedankt.

21 december 2009
12 antwoorden

Opstarten p.c. duurt bijna 90 seconden

Have0 reageerde op Have0's topic in Archief Windows Algemeen

Sorry, zoals ik al schreef, ben niet zo handig. Heb nu de file gesleept en op het rode icoontje geplaatst. Op een gegeven moment gaf de p.c. aan volgende sites hebben geen enkele binding met combofix; www.combifix.org/ www.combifix.download.com/ ComboFix 09-12-20.04 - Eigenaar 21-12-2009 13:42:03.6.1 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.2039.1539 [GMT 1:00] Gestart vanuit: g:\mijn documenten\Downloads\KittyFix.exe gebruikte Opdracht switches :: c:\documents and settings\Eigenaar\Bureaublad\CFScript.txt AV: NOD32 antivirus systeem 2.51 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0} FILE :: "c:\windows\system32\drivers\lvuvc.hs" "c:\windows\system32\drivers\sffp_mmc.sys" "c:\windows\system32\setupn.exe" . (((((((((((((((((((( Bestanden Gemaakt van 2009-11-21 to 2009-12-21 )))))))))))))))))))))))))))))) . 2009-12-21 11:27 . 2009-12-21 11:42 -------- dc----w- C:\KittyFix28584K 2009-12-21 09:36 . 2009-12-21 09:55 -------- dc----w- C:\KittyFix22993K 2009-12-21 08:36 . 2009-12-21 08:40 -------- dc----w- C:\KittyFix869K 2009-12-20 18:57 . 2009-12-10 09:04 30536 ----a-w- c:\windows\system32\TURegOpt.exe 2009-12-20 18:57 . 2009-12-10 08:58 30024 ----a-w- c:\windows\system32\uxtuneup.dll 2009-12-20 18:56 . 2009-12-20 18:57 -------- d-----w- c:\program files\TuneUp Utilities 2010 2009-12-20 18:55 . 2009-12-20 18:55 -------- dcsh--w- c:\documents and settings\All Users\Application Data\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC} 2009-12-20 17:17 . 2009-12-20 17:34 -------- dc----w- C:\KittyFix 2009-12-20 14:05 . 2009-12-21 12:38 -------- dc-h--r- c:\documents and settings\Eigenaar\Onlangs geopend 2009-12-07 18:46 . 2009-12-08 16:44 -------- d-----w- c:\program files\DVD Shrink 2009-12-07 17:57 . 2009-12-07 17:57 -------- dc----w- c:\documents and settings\All Users\Application Data\Ad Muncher 2009-12-07 17:57 . 2009-12-07 17:57 -------- d-----w- c:\program files\Ad Muncher 2009-12-06 11:26 . 2009-12-06 11:26 4844296 -c--a-w- c:\documents and settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe 2009-12-05 11:45 . 2009-12-05 11:45 -------- d-----w- c:\program files\Trend Micro 2009-12-01 16:18 . 2009-08-13 15:24 512000 -c----w- c:\windows\system32\dllcache\jscript.dll 2009-11-30 22:25 . 2009-11-30 22:25 -------- d-----w- c:\windows\l2schemas 2009-11-30 22:25 . 2009-11-30 22:25 -------- d-----w- c:\windows\system32\nl 2009-11-30 22:05 . 2009-11-30 22:07 -------- dc----w- c:\documents and settings\Eigenaar\Local Settings\Application Data\AskToolbar 2009-11-26 22:14 . 2009-11-26 22:14 -------- d-----w- c:\program files\MSXML 4.0 2009-11-26 21:17 . 2009-11-26 21:17 -------- d-----w- c:\windows\system32\wbem\Repository 2009-11-26 19:49 . 2009-11-26 19:49 -------- dc----w- c:\documents and settings\Eigenaar\Local Settings\Application Data\AskToolbar(2) 2009-11-26 19:09 . 2009-11-26 19:09 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Sammsoft 2009-11-26 19:09 . 2009-11-26 21:11 -------- d-----w- c:\program files\Advanced Registry Optimizer 2009-11-26 18:14 . 2008-04-14 17:02 69120 ------w- c:\windows\system32\wlanapi.dll 2009-11-26 18:14 . 2008-04-14 17:02 53248 ------w- c:\windows\system32\tsgqec.dll 2009-11-26 18:14 . 2008-04-14 17:02 50688 ------w- c:\windows\system32\tspkg.dll 2009-11-26 18:14 . 2008-04-14 17:03 32768 -c--a-w- c:\windows\system32\dllcache\setupn.exe 2009-11-26 18:14 . 2008-04-14 17:02 290304 ------w- c:\windows\system32\rhttpaa.dll 2009-11-26 18:14 . 2008-04-14 17:02 61952 ------w- c:\windows\system32\rasqec.dll 2009-11-26 18:14 . 2008-04-14 17:02 76800 ------w- c:\windows\system32\qutil.dll 2009-11-26 18:14 . 2008-04-14 17:02 62464 ------w- c:\windows\system32\qcliprov.dll 2009-11-26 18:14 . 2008-04-14 17:02 292864 ------w- c:\windows\system32\qagentrt.dll 2009-11-26 18:14 . 2008-04-14 17:02 150528 ------w- c:\windows\system32\qagent.dll 2009-11-26 18:14 . 2008-04-14 17:02 144896 ------w- c:\windows\system32\onex.dll 2009-11-26 18:12 . 2008-04-14 17:02 136192 ------w- c:\windows\system32\aaclient.dll 2009-11-26 18:03 . 2009-11-26 18:03 -------- dc----w- c:\documents and settings\All Users\Application Data\SpeedBit 2009-11-26 18:02 . 2009-11-30 20:16 -------- d-----w- c:\program files\DAP 2009-11-22 17:27 . 2009-11-29 16:14 -------- d-----w- c:\windows\system32\Uitzending Gemist dir 2009-11-22 15:29 . 2009-11-29 07:46 -------- dc----w- C:\Downloads 2009-11-22 15:23 . 2009-11-29 17:54 -------- d-----w- c:\program files\FlashGet . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-12-21 10:50 . 2005-03-16 21:08 -------- dc----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy 2009-12-20 18:56 . 2009-10-18 11:07 -------- dc----w- c:\documents and settings\All Users\Application Data\TuneUp Software 2009-12-19 11:57 . 2009-11-16 18:59 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\uTorrent 2009-12-12 13:14 . 2007-07-30 16:17 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Vso 2009-12-10 21:06 . 2007-09-09 19:23 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\LimeWire 2009-12-10 15:43 . 2003-01-22 00:22 91518 ----a-w- c:\windows\system32\perfc013.dat 2009-12-10 15:43 . 2003-01-22 00:22 510428 ----a-w- c:\windows\system32\perfh013.dat 2009-12-08 22:29 . 2009-01-02 17:02 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\DVD Flick 2009-12-08 16:45 . 2006-02-28 19:29 -------- dc----w- c:\documents and settings\All Users\Application Data\DVD Shrink 2009-12-08 16:36 . 2008-09-13 18:07 -------- dc--a-w- c:\documents and settings\All Users\Application Data\TEMP 2009-12-06 11:30 . 2009-10-14 20:42 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-12-05 23:43 . 2003-02-06 15:43 -------- d-----w- c:\program files\Microsoft Works 2009-12-03 15:14 . 2009-10-14 20:42 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-12-03 15:13 . 2009-10-14 20:42 19160 -c--a-w- c:\windows\system32\drivers\mbam.sys 2009-12-01 19:34 . 2009-11-16 21:15 -------- d-----w- c:\program files\uTorrent 2009-12-01 16:53 . 2009-01-01 17:13 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Uniblue 2009-12-01 16:52 . 2009-01-01 17:13 -------- d-----w- c:\program files\Uniblue 2009-11-30 22:27 . 2003-01-21 16:34 79179 ----a-w- c:\windows\PCHealth\HelpCtr\OfflineCache\index.dat 2009-11-30 20:11 . 2008-12-25 10:20 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Azureus 2009-11-30 20:09 . 2009-11-15 19:20 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\uTorrent(2) 2009-11-29 17:53 . 2009-11-16 22:47 -------- d-----w- c:\program files\VSO 2009-11-29 15:58 . 2007-07-30 17:49 -------- dc----w- c:\documents and settings\All Users\Application Data\vsosdk 2009-11-27 21:24 . 2009-11-06 17:30 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\IObit 2009-11-27 21:24 . 2009-11-06 17:30 -------- d-----w- c:\program files\IObit 2009-11-22 15:14 . 2003-01-21 17:18 -------- d--h--w- c:\program files\InstallShield Installation Information 2009-11-21 22:27 . 2009-11-20 18:19 -------- d-----w- c:\program files\UDPixel 2009-11-20 21:43 . 2006-03-17 19:37 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Ahead 2009-11-20 17:07 . 2009-11-18 17:12 -------- d-----w- c:\program files\Yahoo! 2009-11-20 17:05 . 2009-10-18 11:07 -------- d-----w- c:\program files\TuneUp Utilities 2009 2009-11-18 17:12 . 2006-03-02 17:59 -------- d-----w- c:\program files\Ahead 2009-11-18 17:12 . 2009-11-18 17:12 -------- dc----w- c:\documents and settings\All Users\Application Data\Ahead 2009-11-18 17:02 . 2009-11-18 17:02 -------- d-----w- c:\program files\DVD Flick 2009-11-16 19:03 . 2004-07-19 20:57 -------- d-----w- c:\program files\KaZaA Lite 2009-11-16 19:03 . 2009-08-15 12:19 -------- d-----w- c:\program files\MSBuild 2009-11-16 19:03 . 2004-12-31 14:50 -------- d-----w- c:\program files\Codemasters 2009-11-16 19:03 . 2003-11-14 16:54 -------- d-----w- c:\program files\Red Storm Entertainment(2) 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\BLOKKER 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\Sony 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\Sonic 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\NovaLogic 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\Flitsservice 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\MSN Apps 2009-11-16 19:02 . 2009-11-16 19:02 -------- d-----w- c:\program files\Red Storm Entertainment 2009-11-16 18:59 . 2009-11-15 18:15 -------- d-----w- c:\program files\SUPERAntiSpyware 2009-11-15 20:14 . 2009-04-12 10:12 -------- d-----w- c:\program files\Hyves Desktop 2009-11-15 18:15 . 2009-10-24 17:39 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\SUPERAntiSpyware.com 2009-11-08 13:20 . 2009-11-07 09:56 127368 -c--a-w- c:\documents and settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat 2009-11-06 18:06 . 2008-12-13 15:40 -------- d-----w- c:\program files\7-Zip 2009-11-06 18:03 . 2009-11-06 18:03 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\URSoft 2009-11-05 17:11 . 2009-11-05 17:11 -------- d-----w- c:\program files\Toshiba 2009-10-29 16:32 . 2009-10-29 16:32 -------- d-----w- c:\program files\CCleaner 2009-10-29 05:38 . 2004-08-23 18:35 670208 ------w- c:\windows\system32\wininet.dll 2009-10-28 18:11 . 2007-08-01 22:32 -------- dc----w- c:\documents and settings\All Users\Application Data\SlySoft 2009-10-24 17:39 . 2009-10-24 17:39 -------- dc----w- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com 2009-10-23 15:33 . 2009-10-23 15:33 73728 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\xulrunner-stub.exe 2009-10-23 15:33 . 2009-10-23 15:33 499712 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\MSVCP71.DLL 2009-10-23 15:33 . 2009-10-23 15:33 348160 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\msvcr71.dll 2009-10-23 15:33 . 2009-10-23 15:33 102400 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\xulrunner.exe 2009-10-23 15:33 . 2009-10-23 15:32 8462336 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\xul.dll 2009-10-21 05:40 . 2004-08-04 08:03 75776 ----a-w- c:\windows\system32\strmfilt.dll 2009-10-21 05:40 . 2004-08-04 08:03 25088 ----a-w- c:\windows\system32\httpapi.dll 2009-10-20 16:20 . 2004-08-04 06:00 265728 ------w- c:\windows\system32\drivers\http.sys 2009-10-14 22:06 . 2009-10-14 22:06 152576 -c--a-w- c:\documents and settings\Eigenaar\Application Data\Sun\Java\jre1.6.0_16\lzma.dll 2009-10-13 10:38 . 2003-03-25 17:16 270848 ----a-w- c:\windows\system32\oakley.dll 2009-10-12 13:40 . 2003-03-25 17:16 79872 ----a-w- c:\windows\system32\raschap.dll 2009-10-12 13:40 . 2003-03-25 17:16 150016 ----a-w- c:\windows\system32\rastls.dll 2009-09-25 05:37 . 2004-08-04 08:03 81920 -c--a-w- c:\windows\system32\ieencode.dll 2006-08-27 11:18 . 2006-08-27 11:18 477 -c--a-w- c:\program files\Snelkoppeling naar Samsung.lnk 2002-09-30 01:12 . 2002-09-30 01:12 31477231 -c--a-w- c:\program files\fo-pm8.exe 2002-09-30 01:10 . 2002-09-30 01:10 154 -c--a-w- c:\program files\file_id.diz 2002-09-30 01:09 . 2002-09-30 01:09 5390 -c--a-w- c:\program files\fosi.nfo . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-07-11 68856] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "nod32kui"="c:\program files\Eset\nod32kui.exe" [2006-08-18 921600] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit] 2008-09-01 10:17 87352 ----a-w- c:\windows\system32\LMIinit.dll [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\WRNotifier] [bU] [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Bluetooth Manager.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Bluetooth Manager.lnk backup=c:\windows\pss\Bluetooth Manager.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office Snelstarten.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office Snelstarten.lnk backup=c:\windows\pss\Microsoft Office Snelstarten.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office Snelzoeken Indexer.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office Snelzoeken Indexer.lnk backup=c:\windows\pss\Microsoft Office Snelzoeken Indexer.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office.lnk backup=c:\windows\pss\Microsoft Office.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Statusvenster.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Statusvenster.lnk backup=c:\windows\pss\Statusvenster.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^Eigenaar^Menu Start^Programma's^Opstarten^Registration-Studio 8 LE.lnk] path=c:\documents and settings\Eigenaar\Menu Start\Programma's\Opstarten\Registration-Studio 8 LE.lnk backup=c:\windows\pss\Registration-Studio 8 LE.lnkStartup [HKLM\~\startupfolder\C:^Documents and Settings^Eigenaar^Menu Start^Programma's^Opstarten^TA_Start.lnk] path=c:\documents and settings\Eigenaar\Menu Start\Programma's\Opstarten\TA_Start.lnk backup=c:\windows\pss\TA_Start.lnkStartup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KYE_Showicon] c:\program files\USB Storage RW\shwicon.exe -tKYE\USB Storage RW [X] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 3] 2009-11-20 12:51 2335880 ----a-w- c:\program files\IObit\Advanced SystemCare 3\AWC.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ContentTransferWMDetector.exe] 2008-07-11 15:51 423200 -c--a-w- c:\program files\Sony\Content Transfer\ContentTransferWMDetector.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe] 2008-04-14 17:02 15360 ------w- c:\windows\system32\ctfmon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpsysdrv] 1998-05-07 22:04 52736 -c--a-w- c:\windows\system\hpsysdrv.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray] 2002-10-16 12:18 155648 -c--a-w- c:\windows\system32\igfxtray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndexSearch] 2005-03-18 11:53 40960 -c--a-w- c:\program files\ScanSoft\PaperPort\IndexSearch.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCameraService(E)] 2004-11-01 17:22 262144 -c--a-w- c:\windows\system32\ElkCtrl.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechSoftwareUpdate] 2005-01-18 16:07 196608 -c--a-w- c:\program files\Logitech\Video\ManifestEngine.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideo[inspector]] 2005-09-07 05:39 73728 -c--a-w- c:\program files\Logitech\Video\InstallHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn GUI] 2008-07-24 16:46 63048 -c--a-w- c:\program files\LogMeIn\x86\LogMeInSystray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX] 2005-09-01 12:04 221184 -c--a-w- c:\windows\system32\LVCOMSX.EXE [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (reboot)] 2009-12-03 15:14 1394000 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbam.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] 2008-04-14 17:03 1695232 ------w- c:\program files\Messenger\msmsgs.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBJ] 2004-09-24 16:22 1916928 -c----w- c:\program files\Ahead\Nero BackItUp\NBJ.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] 2001-07-09 10:50 155648 -c--a-w- c:\windows\system32\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz] 2002-09-10 04:35 372736 -c--a-w- c:\windows\system32\nwiz.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Omnipage] 2002-06-03 09:38 49152 -c--a-w- c:\program files\ScanSoft\OmniPageSE\opware32.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PaperPort PTD] 2005-03-18 11:40 57393 -c--a-w- c:\program files\ScanSoft\PaperPort\pptd40nt.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2009-01-05 14:18 413696 -c--a-w- c:\program files\QuickTime\QTTask.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SetDefPrt] 2005-01-26 17:02 49152 -c----w- c:\program files\Brother\Brmfl05a\BrStDvPt.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer] 2009-03-05 14:07 2260480 -csha-r- c:\program files\Spybot - Search & Destroy\TeaTimer.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StorageGuard] 2002-06-18 13:01 155648 -c--a-w- c:\program files\VERITAS Software\Update Manager\sgtray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] 2009-07-31 13:23 149280 -c--a-w- c:\program files\Java\jre6\bin\jusched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] 2007-07-11 16:07 68856 -c--a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] 2005-10-27 19:26 180269 -c--a-w- c:\program files\Common Files\Real\Update_OB\realsched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UniblueRegistryBooster] 2009-11-10 14:25 59184 ----a-w- c:\program files\Uniblue\RegistryBooster\Launcher.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WCOLOREAL] 2002-11-26 23:14 131072 -c--a-w- c:\program files\Coloreal\COLOREAL.EXE [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "MSConfig"=c:\windows\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "c:\\Program Files\\Real\\RealPlayer\\realplay.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\WINDOWS\\system32\\sessmgr.exe"= "c:\\Program Files\\LimeWire\\LimeWire.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\uTorrent\\uTorrent.exe"= "c:\\Program Files\\Vuze\\Azureus.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= R1 ctredr15.sys;ctredr15.sys;c:\windows\system32\drivers\ctredr15.sys [11-4-2008 8:56 18176] R2 CaretakerAntispam;Caretaker Antispam Service;c:\program files\SurfRight\Caretaker\AntispamService.exe [17-6-2008 14:30 172280] R2 CaretakerProxy;Caretaker Proxy;c:\program files\SurfRight\Caretaker\CaretakerProxy.exe [17-6-2008 14:30 1151736] R2 CaretakerSvc;Caretaker Service;c:\program files\SurfRight\Caretaker\CaretakerService.exe [17-6-2008 14:27 1218296] R2 CaretakerUpdate;Caretaker Updater;c:\program files\SurfRight\Caretaker\CaretakerUpdater.exe [17-6-2008 14:27 187640] R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\LogMeIn\x86\rainfo.sys [24-7-2008 17:46 12856] R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [13-9-2008 18:04 47640] R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [10-12-2009 10:01 1044808] R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [14-10-2009 7:24 10064] S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [16-12-2006 17:54 639224] S3 STFSD;STFSD;\??\c:\program files\@Home\Playz Player\STFSD.SYS --> c:\program files\@Home\Playz Player\STFSD.SYS [?] S4 LMIRfsClientNP;LMIRfsClientNP; [x] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs UxTuneUp . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.startpagina.nl/ uSearch Page = hxxp://www.google.com uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 uSearch Bar = hxxp://www.google.com/ie uInternet Connection Wizard,ShellNext = hxxp://home.service.freesurf.nl/ uInternet Settings,ProxyOverride = <local>;*.local uInternet Settings,ProxyServer = proxy:8080 uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: Block frame with Ad Muncher - Ad Muncher IE: Block image with Ad Muncher - Ad Muncher IE: Block link with Ad Muncher - Ad Muncher IE: Don't filter page with Ad Muncher - Ad Muncher IE: Report page to the Ad Muncher developers - Ad Muncher LSP: c:\windows\system32\imon.dll DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab DPF: {426784E5-24B2-4708-820D-117342FAD009} - hxxp://www.hyves.nl/cab/outlookaddressbook.cab DPF: {D6BBBC13-56A9-4E62-92AC-4DBEF6CCB38B} - hxxp://playz.project.streamtech.nl/clientdownloads/SFAutoInstall.CAB DPF: {D83C1BD1-DCBB-11D4-9425-0050BF33FA6E} - hxxp://www.cyclomedia.nl/download/components/CycloScopeLite.cab FF - ProfilePath - c:\documents and settings\Eigenaar\Application Data\Mozilla\Firefox\Profiles\12zgfw3k.default\ FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: browser.startup.homepage - hxxp://www.startpagina.nl/ FF - prefs.js: keyword.URL - hxxp://search.bearshare.com/webResults.html?src=ffb&q= FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\npqtplugin8.dll FF - plugin: c:\program files\QuickTime\Plugins\npqtplugin8.dll FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ ---- FIREFOX POLICIES ---- FF - user.js: browser.cache.memory.capacity - 65536 FF - user.js: browser.chrome.favicons - false FF - user.js: browser.display.show_image_placeholders - true FF - user.js: browser.turbo.enabled - true FF - user.js: browser.urlbar.autocomplete.enabled - true FF - user.js: browser.urlbar.autofill - true FF - user.js: content.interrupt.parsing - true FF - user.js: content.max.tokenizing.time - 2250000 FF - user.js: content.notify.backoffcount - 5 FF - user.js: content.notify.interval - 750000 FF - user.js: content.notify.ontimer - true FF - user.js: content.switch.threshold - 750000 FF - user.js: network.http.max-connections - 48 FF - user.js: network.http.max-connections-per-server - 16 FF - user.js: network.http.max-persistent-connections-per-proxy - 16 FF - user.js: network.http.max-persistent-connections-per-server - 8 FF - user.js: network.http.pipelining - true FF - user.js: network.http.pipelining.firstrequest - true FF - user.js: network.http.pipelining.maxrequests - 8 FF - user.js: network.http.proxy.pipelining - true FF - user.js: network.http.request.max-start-delay - 0 FF - user.js: nglayout.initialpaint.delay - 0 FF - user.js: plugin.expose_full_path - true FF - user.js: ui.submenuDelay - 0 . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2009-12-21 13:47 Windows 5.1.2600 Service Pack 3 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . --------------------- DLLs Geladen Onder Lopende Processen --------------------- - - - - - - - > 'winlogon.exe'(772) c:\windows\system32\LMIinit.dll c:\windows\system32\LMIRfsClientNP.dll - - - - - - - > 'explorer.exe'(3200) c:\windows\system32\WPDShServiceObj.dll c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll c:\windows\system32\LMIRfsClientNP.dll . Voltooingstijd: 2009-12-21 13:51:41 ComboFix-quarantined-files.txt 2009-12-21 12:51 ComboFix2.txt 2009-12-21 11:42 ComboFix3.txt 2009-12-21 09:55 ComboFix4.txt 2009-12-20 17:34 Pre-Run: 14.495.125.504 bytes beschikbaar Post-Run: 14.484.746.240 bytes beschikbaar Current=3 Default=3 Failed=1 LastKnownGood=4 Sets=,1,2,3,4 - - End Of File - - 4BA18B689A781BAF61F84767BA746555 Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 14:02:40, on 21-12-2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\SurfRight\Caretaker\CaretakerService.exe C:\Program Files\SurfRight\Caretaker\AntispamService.exe C:\Program Files\SurfRight\Caretaker\CaretakerProxy.exe C:\Program Files\SurfRight\Caretaker\CaretakerUpdater.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\brss01a.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe C:\Program Files\Eset\nod32krn.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\WINDOWS\explorer.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Program Files\Microsoft Office\Office10\WINWORD.EXE C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\msagent\AgentSvr.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Startpagina.nl - alles op een rijtje! (ook op mobiel) R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://home.service.freesurf.nl/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy:8080 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\nl\msntb.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O8 - Extra context menu item: Block frame with Ad Muncher - Ad Muncher O8 - Extra context menu item: Block image with Ad Muncher - Ad Muncher O8 - Extra context menu item: Block link with Ad Muncher - Ad Muncher O8 - Extra context menu item: Don't filter page with Ad Muncher - Ad Muncher O8 - Extra context menu item: Report page to the Ad Muncher developers - Ad Muncher O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://start.home.nl/ O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab O16 - DPF: {426784E5-24B2-4708-820D-117342FAD009} (Cimporter Object) - http://www.hyves.nl/cab/outlookaddressbook.cab O16 - DPF: {45B69029-F3AB-4204-92DE-D5140C3E8E74} - O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} - http://www.famipix.nl/ImageUploader5.cab O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.kodakimages.com/DesktopModules/SpectorAlbum/ImageUploader4.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://activex.webcam.nl/AxisCamControl.cab O16 - DPF: {D6BBBC13-56A9-4E62-92AC-4DBEF6CCB38B} (SFAutoInstall Class) - http://playz.project.streamtech.nl/clientdownloads/SFAutoInstall.CAB O16 - DPF: {D83C1BD1-DCBB-11D4-9425-0050BF33FA6E} (CycloScopeLite Control) - http://www.cyclomedia.nl/download/components/CycloScopeLite.cab O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe O23 - Service: Caretaker Antispam Service (CaretakerAntispam) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\AntispamService.exe O23 - Service: Caretaker Proxy (CaretakerProxy) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\CaretakerProxy.exe O23 - Service: Caretaker Service (CaretakerSvc) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\CaretakerService.exe O23 - Service: Caretaker Updater (CaretakerUpdate) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\CaretakerUpdater.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe -- End of file - 9319 bytes

21 december 2009
12 antwoorden

Opstarten p.c. duurt bijna 90 seconden

Have0 reageerde op Have0's topic in Archief Windows Algemeen

Ik hoop dat het zo goed gelukt is. Ben niet zo superhandig met computers. Ter info ik heb een Compaq Presario S3650NL, Intel Celeron 2,4 GHZ. Origineel met 256 MB RAM, later uitgebreid met 2 maal 512 MB RAM. Alvast weer bedankt voor uw advies ! Hieronder de logs. ComboFix 09-12-20.04 - Eigenaar 21-12-2009 10:43:01.3.1 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.2039.1628 [GMT 1:00] Gestart vanuit: g:\mijn documenten\Downloads\KittyFix.exe AV: NOD32 antivirus systeem 2.51 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0} . De volgende bestanden werden uitgeschakeld tijdens de run: c:\program files\Common Files\Logitech\LVMVFM\LVPrcInj.dll (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Service_RDPWD -------\Service_TDTCP (((((((((((((((((((( Bestanden Gemaakt van 2009-11-21 to 2009-12-21 )))))))))))))))))))))))))))))) . 2009-12-21 08:36 . 2009-12-21 08:40 -------- dc----w- C:\KittyFix869K 2009-12-20 18:57 . 2009-12-10 09:04 30536 ----a-w- c:\windows\system32\TURegOpt.exe 2009-12-20 18:57 . 2009-12-10 08:58 30024 ----a-w- c:\windows\system32\uxtuneup.dll 2009-12-20 18:56 . 2009-12-20 18:57 -------- d-----w- c:\program files\TuneUp Utilities 2010 2009-12-20 18:55 . 2009-12-20 18:55 -------- dcsh--w- c:\documents and settings\All Users\Application Data\{D3742F82-1C1A-4DCC-ABBD-0E7C3C0185CC} 2009-12-20 17:17 . 2009-12-20 17:34 -------- dc----w- C:\KittyFix 2009-12-20 14:05 . 2009-12-21 09:41 -------- dc-h--r- c:\documents and settings\Eigenaar\Onlangs geopend 2009-12-07 18:46 . 2009-12-08 16:44 -------- d-----w- c:\program files\DVD Shrink 2009-12-07 17:57 . 2009-12-07 17:57 -------- dc----w- c:\documents and settings\All Users\Application Data\Ad Muncher 2009-12-07 17:57 . 2009-12-07 17:57 -------- d-----w- c:\program files\Ad Muncher 2009-12-06 11:26 . 2009-12-06 11:26 4844296 -c--a-w- c:\documents and settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe 2009-12-05 11:45 . 2009-12-05 11:45 -------- d-----w- c:\program files\Trend Micro 2009-12-01 16:18 . 2009-08-13 15:24 512000 -c----w- c:\windows\system32\dllcache\jscript.dll 2009-11-30 22:25 . 2009-11-30 22:25 -------- d-----w- c:\windows\l2schemas 2009-11-30 22:25 . 2009-11-30 22:25 -------- d-----w- c:\windows\system32\nl 2009-11-30 22:05 . 2009-11-30 22:07 -------- dc----w- c:\documents and settings\Eigenaar\Local Settings\Application Data\AskToolbar 2009-11-26 22:14 . 2009-11-26 22:14 -------- d-----w- c:\program files\MSXML 4.0 2009-11-26 21:17 . 2009-11-26 21:17 -------- d-----w- c:\windows\system32\wbem\Repository 2009-11-26 19:49 . 2009-11-26 19:49 -------- dc----w- c:\documents and settings\Eigenaar\Local Settings\Application Data\AskToolbar(2) 2009-11-26 19:09 . 2009-11-26 19:09 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Sammsoft 2009-11-26 19:09 . 2009-11-26 21:11 -------- d-----w- c:\program files\Advanced Registry Optimizer 2009-11-26 18:14 . 2008-04-14 17:02 69120 ------w- c:\windows\system32\wlanapi.dll 2009-11-26 18:14 . 2008-04-14 17:02 53248 ------w- c:\windows\system32\tsgqec.dll 2009-11-26 18:14 . 2008-04-14 17:02 50688 ------w- c:\windows\system32\tspkg.dll 2009-11-26 18:14 . 2008-04-13 18:40 10240 ------w- c:\windows\system32\drivers\sffp_mmc.sys 2009-11-26 18:14 . 2008-04-14 17:03 32768 ------w- c:\windows\system32\setupn.exe 2009-11-26 18:14 . 2008-04-14 17:02 290304 ------w- c:\windows\system32\rhttpaa.dll 2009-11-26 18:14 . 2008-04-14 17:02 61952 ------w- c:\windows\system32\rasqec.dll 2009-11-26 18:14 . 2008-04-14 17:02 76800 ------w- c:\windows\system32\qutil.dll 2009-11-26 18:14 . 2008-04-14 17:02 62464 ------w- c:\windows\system32\qcliprov.dll 2009-11-26 18:14 . 2008-04-14 17:02 292864 ------w- c:\windows\system32\qagentrt.dll 2009-11-26 18:14 . 2008-04-14 17:02 150528 ------w- c:\windows\system32\qagent.dll 2009-11-26 18:14 . 2008-04-14 17:02 144896 ------w- c:\windows\system32\onex.dll 2009-11-26 18:12 . 2008-04-14 17:02 136192 ------w- c:\windows\system32\aaclient.dll 2009-11-26 18:03 . 2009-11-26 18:03 -------- dc----w- c:\documents and settings\All Users\Application Data\SpeedBit 2009-11-26 18:02 . 2009-11-30 20:16 -------- d-----w- c:\program files\DAP 2009-11-22 17:27 . 2009-11-29 16:14 -------- d-----w- c:\windows\system32\Uitzending Gemist dir 2009-11-22 15:29 . 2009-11-29 07:46 -------- dc----w- C:\Downloads 2009-11-22 15:23 . 2009-11-29 17:54 -------- d-----w- c:\program files\FlashGet . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-12-21 09:37 . 2006-01-26 16:55 0 -c--a-w- c:\windows\system32\drivers\lvuvc.hs 2009-12-20 18:56 . 2009-10-18 11:07 -------- dc----w- c:\documents and settings\All Users\Application Data\TuneUp Software 2009-12-20 17:34 . 2005-03-16 21:08 -------- dc----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy 2009-12-19 11:57 . 2009-11-16 18:59 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\uTorrent 2009-12-12 13:14 . 2007-07-30 16:17 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Vso 2009-12-10 21:06 . 2007-09-09 19:23 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\LimeWire 2009-12-10 15:43 . 2003-01-22 00:22 91518 ----a-w- c:\windows\system32\perfc013.dat 2009-12-10 15:43 . 2003-01-22 00:22 510428 ----a-w- c:\windows\system32\perfh013.dat 2009-12-08 22:29 . 2009-01-02 17:02 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\DVD Flick 2009-12-08 16:45 . 2006-02-28 19:29 -------- dc----w- c:\documents and settings\All Users\Application Data\DVD Shrink 2009-12-08 16:36 . 2008-09-13 18:07 -------- dc--a-w- c:\documents and settings\All Users\Application Data\TEMP 2009-12-06 11:30 . 2009-10-14 20:42 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-12-05 23:43 . 2003-02-06 15:43 -------- d-----w- c:\program files\Microsoft Works 2009-12-03 15:14 . 2009-10-14 20:42 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-12-03 15:13 . 2009-10-14 20:42 19160 -c--a-w- c:\windows\system32\drivers\mbam.sys 2009-12-01 19:34 . 2009-11-16 21:15 -------- d-----w- c:\program files\uTorrent 2009-12-01 16:53 . 2009-01-01 17:13 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Uniblue 2009-12-01 16:52 . 2009-01-01 17:13 -------- d-----w- c:\program files\Uniblue 2009-11-30 22:27 . 2003-01-21 16:34 79179 ----a-w- c:\windows\PCHealth\HelpCtr\OfflineCache\index.dat 2009-11-30 20:11 . 2008-12-25 10:20 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Azureus 2009-11-30 20:09 . 2009-11-15 19:20 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\uTorrent(2) 2009-11-29 17:53 . 2009-11-16 22:47 -------- d-----w- c:\program files\VSO 2009-11-29 15:58 . 2007-07-30 17:49 -------- dc----w- c:\documents and settings\All Users\Application Data\vsosdk 2009-11-27 21:24 . 2009-11-06 17:30 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\IObit 2009-11-27 21:24 . 2009-11-06 17:30 -------- d-----w- c:\program files\IObit 2009-11-22 15:14 . 2003-01-21 17:18 -------- d--h--w- c:\program files\InstallShield Installation Information 2009-11-21 22:27 . 2009-11-20 18:19 -------- d-----w- c:\program files\UDPixel 2009-11-20 21:43 . 2006-03-17 19:37 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Ahead 2009-11-20 17:07 . 2009-11-18 17:12 -------- d-----w- c:\program files\Yahoo! 2009-11-20 17:05 . 2009-10-18 11:07 -------- d-----w- c:\program files\TuneUp Utilities 2009 2009-11-18 17:12 . 2006-03-02 17:59 -------- d-----w- c:\program files\Ahead 2009-11-18 17:12 . 2009-11-18 17:12 -------- dc----w- c:\documents and settings\All Users\Application Data\Ahead 2009-11-18 17:02 . 2009-11-18 17:02 -------- d-----w- c:\program files\DVD Flick 2009-11-16 19:03 . 2004-07-19 20:57 -------- d-----w- c:\program files\KaZaA Lite 2009-11-16 19:03 . 2009-08-15 12:19 -------- d-----w- c:\program files\MSBuild 2009-11-16 19:03 . 2004-12-31 14:50 -------- d-----w- c:\program files\Codemasters 2009-11-16 19:03 . 2003-11-14 16:54 -------- d-----w- c:\program files\Red Storm Entertainment(2) 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\BLOKKER 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\Sony 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\Sonic 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\NovaLogic 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\Flitsservice 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\MSN Apps 2009-11-16 19:02 . 2009-11-16 19:02 -------- d-----w- c:\program files\Red Storm Entertainment 2009-11-16 19:02 . 2009-11-16 19:02 -------- d-----w- c:\program files\BearShare Applications 2009-11-16 18:59 . 2009-11-15 18:15 -------- d-----w- c:\program files\SUPERAntiSpyware 2009-11-15 20:14 . 2009-04-12 10:12 -------- d-----w- c:\program files\Hyves Desktop 2009-11-15 18:15 . 2009-10-24 17:39 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\SUPERAntiSpyware.com 2009-11-08 13:20 . 2009-11-07 09:56 127368 -c--a-w- c:\documents and settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat 2009-11-06 18:06 . 2008-12-13 15:40 -------- d-----w- c:\program files\7-Zip 2009-11-06 18:03 . 2009-11-06 18:03 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\URSoft 2009-11-05 17:11 . 2009-11-05 17:11 -------- d-----w- c:\program files\Toshiba 2009-10-29 16:32 . 2009-10-29 16:32 -------- d-----w- c:\program files\CCleaner 2009-10-29 05:38 . 2004-08-23 18:35 670208 ------w- c:\windows\system32\wininet.dll 2009-10-28 18:11 . 2007-08-01 22:32 -------- dc----w- c:\documents and settings\All Users\Application Data\SlySoft 2009-10-24 17:39 . 2009-10-24 17:39 -------- dc----w- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com 2009-10-23 15:33 . 2009-10-23 15:33 73728 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\xulrunner-stub.exe 2009-10-23 15:33 . 2009-10-23 15:33 499712 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\MSVCP71.DLL 2009-10-23 15:33 . 2009-10-23 15:33 348160 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\msvcr71.dll 2009-10-23 15:33 . 2009-10-23 15:33 102400 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\xulrunner.exe 2009-10-23 15:33 . 2009-10-23 15:32 8462336 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\xul.dll 2009-10-21 05:40 . 2004-08-04 08:03 75776 ----a-w- c:\windows\system32\strmfilt.dll 2009-10-21 05:40 . 2004-08-04 08:03 25088 ----a-w- c:\windows\system32\httpapi.dll 2009-10-20 16:20 . 2004-08-04 06:00 265728 ------w- c:\windows\system32\drivers\http.sys 2009-10-14 22:06 . 2009-10-14 22:06 152576 -c--a-w- c:\documents and settings\Eigenaar\Application Data\Sun\Java\jre1.6.0_16\lzma.dll 2009-10-13 10:38 . 2003-03-25 17:16 270848 ----a-w- c:\windows\system32\oakley.dll 2009-10-12 13:40 . 2003-03-25 17:16 79872 ----a-w- c:\windows\system32\raschap.dll 2009-10-12 13:40 . 2003-03-25 17:16 150016 ----a-w- c:\windows\system32\rastls.dll 2009-09-25 05:37 . 2004-08-04 08:03 81920 -c--a-w- c:\windows\system32\ieencode.dll 2006-08-27 11:18 . 2006-08-27 11:18 477 -c--a-w- c:\program files\Snelkoppeling naar Samsung.lnk 2002-09-30 01:12 . 2002-09-30 01:12 31477231 -c--a-w- c:\program files\fo-pm8.exe 2002-09-30 01:10 . 2002-09-30 01:10 154 -c--a-w- c:\program files\file_id.diz 2002-09-30 01:09 . 2002-09-30 01:09 5390 -c--a-w- c:\program files\fosi.nfo . ((((((((((((((((((((((((((((( SnapShot@2009-12-20_17.29.37 ))))))))))))))))))))))))))))))))))))))))) . + 2009-12-21 09:38 . 2009-12-21 09:38 16384 c:\windows\Temp\Perflib_Perfdata_2d0.dat + 2009-12-20 18:56 . 2009-12-20 18:56 26624 c:\windows\Installer\617954.msi + 2009-12-20 18:57 . 2009-12-20 18:57 320000 c:\windows\Installer\617958.msi . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-07-11 68856] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "nod32kui"="c:\program files\Eset\nod32kui.exe" [2006-08-18 921600] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit] 2008-09-01 10:17 87352 ----a-w- c:\windows\system32\LMIinit.dll [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Bluetooth Manager.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Bluetooth Manager.lnk backup=c:\windows\pss\Bluetooth Manager.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office Snelstarten.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office Snelstarten.lnk backup=c:\windows\pss\Microsoft Office Snelstarten.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office Snelzoeken Indexer.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office Snelzoeken Indexer.lnk backup=c:\windows\pss\Microsoft Office Snelzoeken Indexer.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office.lnk backup=c:\windows\pss\Microsoft Office.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Statusvenster.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Statusvenster.lnk backup=c:\windows\pss\Statusvenster.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^Eigenaar^Menu Start^Programma's^Opstarten^Registration-Studio 8 LE.lnk] path=c:\documents and settings\Eigenaar\Menu Start\Programma's\Opstarten\Registration-Studio 8 LE.lnk backup=c:\windows\pss\Registration-Studio 8 LE.lnkStartup [HKLM\~\startupfolder\C:^Documents and Settings^Eigenaar^Menu Start^Programma's^Opstarten^TA_Start.lnk] path=c:\documents and settings\Eigenaar\Menu Start\Programma's\Opstarten\TA_Start.lnk backup=c:\windows\pss\TA_Start.lnkStartup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck] c:\windows\system32\dumprep 0 -k [X] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KYE_Showicon] c:\program files\USB Storage RW\shwicon.exe -tKYE\USB Storage RW [X] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 3] 2009-11-20 12:51 2335880 ----a-w- c:\program files\IObit\Advanced SystemCare 3\AWC.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ContentTransferWMDetector.exe] 2008-07-11 15:51 423200 -c--a-w- c:\program files\Sony\Content Transfer\ContentTransferWMDetector.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe] 2008-04-14 17:02 15360 ------w- c:\windows\system32\ctfmon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpsysdrv] 1998-05-07 22:04 52736 -c--a-w- c:\windows\system\hpsysdrv.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray] 2002-10-16 12:18 155648 -c--a-w- c:\windows\system32\igfxtray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndexSearch] 2005-03-18 11:53 40960 -c--a-w- c:\program files\ScanSoft\PaperPort\IndexSearch.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCameraService(E)] 2004-11-01 17:22 262144 -c--a-w- c:\windows\system32\ElkCtrl.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechSoftwareUpdate] 2005-01-18 16:07 196608 -c--a-w- c:\program files\Logitech\Video\ManifestEngine.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideo[inspector]] 2005-09-07 05:39 73728 -c--a-w- c:\program files\Logitech\Video\InstallHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn GUI] 2008-07-24 16:46 63048 -c--a-w- c:\program files\LogMeIn\x86\LogMeInSystray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX] 2005-09-01 12:04 221184 -c--a-w- c:\windows\system32\LVCOMSX.EXE [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (reboot)] 2009-12-03 15:14 1394000 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbam.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] 2008-04-14 17:03 1695232 ------w- c:\program files\Messenger\msmsgs.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBJ] 2004-09-24 16:22 1916928 -c----w- c:\program files\Ahead\Nero BackItUp\NBJ.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] 2001-07-09 10:50 155648 -c--a-w- c:\windows\system32\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz] 2002-09-10 04:35 372736 -c--a-w- c:\windows\system32\nwiz.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Omnipage] 2002-06-03 09:38 49152 -c--a-w- c:\program files\ScanSoft\OmniPageSE\opware32.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PaperPort PTD] 2005-03-18 11:40 57393 -c--a-w- c:\program files\ScanSoft\PaperPort\pptd40nt.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2009-01-05 14:18 413696 -c--a-w- c:\program files\QuickTime\QTTask.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SetDefPrt] 2005-01-26 17:02 49152 -c----w- c:\program files\Brother\Brmfl05a\BrStDvPt.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer] 2009-03-05 14:07 2260480 -csha-r- c:\program files\Spybot - Search & Destroy\TeaTimer.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StorageGuard] 2002-06-18 13:01 155648 -c--a-w- c:\program files\VERITAS Software\Update Manager\sgtray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] 2009-07-31 13:23 149280 -c--a-w- c:\program files\Java\jre6\bin\jusched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] 2007-07-11 16:07 68856 -c--a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] 2005-10-27 19:26 180269 -c--a-w- c:\program files\Common Files\Real\Update_OB\realsched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UniblueRegistryBooster] 2009-11-10 14:25 59184 ----a-w- c:\program files\Uniblue\RegistryBooster\Launcher.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WCOLOREAL] 2002-11-26 23:14 131072 -c--a-w- c:\program files\Coloreal\COLOREAL.EXE [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "MSConfig"=c:\windows\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "c:\\Program Files\\Real\\RealPlayer\\realplay.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\WINDOWS\\system32\\sessmgr.exe"= "c:\\Program Files\\LimeWire\\LimeWire.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\uTorrent\\uTorrent.exe"= "c:\\Program Files\\Vuze\\Azureus.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= R1 ctredr15.sys;ctredr15.sys;c:\windows\system32\drivers\ctredr15.sys [11-4-2008 8:56 18176] R2 CaretakerAntispam;Caretaker Antispam Service;c:\program files\SurfRight\Caretaker\AntispamService.exe [17-6-2008 14:30 172280] R2 CaretakerProxy;Caretaker Proxy;c:\program files\SurfRight\Caretaker\CaretakerProxy.exe [17-6-2008 14:30 1151736] R2 CaretakerSvc;Caretaker Service;c:\program files\SurfRight\Caretaker\CaretakerService.exe [17-6-2008 14:27 1218296] R2 CaretakerUpdate;Caretaker Updater;c:\program files\SurfRight\Caretaker\CaretakerUpdater.exe [17-6-2008 14:27 187640] R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\LogMeIn\x86\rainfo.sys [24-7-2008 17:46 12856] R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [13-9-2008 18:04 47640] R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [10-12-2009 10:01 1044808] R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [14-10-2009 7:24 10064] S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [16-12-2006 17:54 639224] S3 STFSD;STFSD;\??\c:\program files\@Home\Playz Player\STFSD.SYS --> c:\program files\@Home\Playz Player\STFSD.SYS [?] S4 LMIRfsClientNP;LMIRfsClientNP; [x] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs UxTuneUp . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.startpagina.nl/ uSearch Page = hxxp://www.google.com uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 uSearch Bar = hxxp://www.google.com/ie uInternet Connection Wizard,ShellNext = hxxp://home.service.freesurf.nl/ uInternet Settings,ProxyOverride = <local>;*.local uInternet Settings,ProxyServer = proxy:8080 uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: Block frame with Ad Muncher - Ad Muncher IE: Block image with Ad Muncher - Ad Muncher IE: Block link with Ad Muncher - Ad Muncher IE: Don't filter page with Ad Muncher - Ad Muncher IE: Report page to the Ad Muncher developers - Ad Muncher LSP: c:\windows\system32\imon.dll DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab DPF: {426784E5-24B2-4708-820D-117342FAD009} - hxxp://www.hyves.nl/cab/outlookaddressbook.cab DPF: {D6BBBC13-56A9-4E62-92AC-4DBEF6CCB38B} - hxxp://playz.project.streamtech.nl/clientdownloads/SFAutoInstall.CAB DPF: {D83C1BD1-DCBB-11D4-9425-0050BF33FA6E} - hxxp://www.cyclomedia.nl/download/components/CycloScopeLite.cab FF - ProfilePath - c:\documents and settings\Eigenaar\Application Data\Mozilla\Firefox\Profiles\12zgfw3k.default\ FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: browser.startup.homepage - hxxp://www.startpagina.nl/ FF - prefs.js: keyword.URL - hxxp://search.bearshare.com/webResults.html?src=ffb&q= FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\npqtplugin8.dll FF - plugin: c:\program files\QuickTime\Plugins\npqtplugin8.dll FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ ---- FIREFOX POLICIES ---- FF - user.js: browser.cache.memory.capacity - 65536 FF - user.js: browser.chrome.favicons - false FF - user.js: browser.display.show_image_placeholders - true FF - user.js: browser.turbo.enabled - true FF - user.js: browser.urlbar.autocomplete.enabled - true FF - user.js: browser.urlbar.autofill - true FF - user.js: content.interrupt.parsing - true FF - user.js: content.max.tokenizing.time - 2250000 FF - user.js: content.notify.backoffcount - 5 FF - user.js: content.notify.interval - 750000 FF - user.js: content.notify.ontimer - true FF - user.js: content.switch.threshold - 750000 FF - user.js: network.http.max-connections - 48 FF - user.js: network.http.max-connections-per-server - 16 FF - user.js: network.http.max-persistent-connections-per-proxy - 16 FF - user.js: network.http.max-persistent-connections-per-server - 8 FF - user.js: network.http.pipelining - true FF - user.js: network.http.pipelining.firstrequest - true FF - user.js: network.http.pipelining.maxrequests - 8 FF - user.js: network.http.proxy.pipelining - true FF - user.js: network.http.request.max-start-delay - 0 FF - user.js: nglayout.initialpaint.delay - 0 FF - user.js: plugin.expose_full_path - true FF - user.js: ui.submenuDelay - 0 . - - - - ORPHANS VERWIJDERD - - - - Notify-WRNotifier - (no file) ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2009-12-21 10:50 Windows 5.1.2600 Service Pack 3 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . --------------------- DLLs Geladen Onder Lopende Processen --------------------- - - - - - - - > 'winlogon.exe'(808) c:\windows\system32\LMIinit.dll c:\windows\system32\LMIRfsClientNP.dll - - - - - - - > 'explorer.exe'(196) c:\windows\system32\WPDShServiceObj.dll c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll c:\windows\system32\LMIRfsClientNP.dll . Voltooingstijd: 2009-12-21 10:55:12 ComboFix-quarantined-files.txt 2009-12-21 09:55 ComboFix2.txt 2009-12-20 17:34 Pre-Run: 14.559.645.696 bytes beschikbaar Post-Run: 14.531.428.352 bytes beschikbaar Current=3 Default=3 Failed=1 LastKnownGood=4 Sets=,1,2,3,4 - - End Of File - - 4F9117EA6967DE917BD01DFFF258F0F9 Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10:57:54, on 21-12-2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\SurfRight\Caretaker\CaretakerService.exe C:\Program Files\SurfRight\Caretaker\AntispamService.exe C:\Program Files\SurfRight\Caretaker\CaretakerProxy.exe C:\Program Files\SurfRight\Caretaker\CaretakerUpdater.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\brss01a.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe C:\Program Files\Eset\nod32krn.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Eset\nod32kui.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\WINDOWS\explorer.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\WINDOWS\system32\notepad.exe C:\Program Files\Microsoft Office\Office10\WINWORD.EXE C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\msagent\AgentSvr.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Startpagina.nl - alles op een rijtje! (ook op mobiel) R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://home.service.freesurf.nl/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy:8080 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\nl\msntb.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O8 - Extra context menu item: Block frame with Ad Muncher - Ad Muncher O8 - Extra context menu item: Block image with Ad Muncher - Ad Muncher O8 - Extra context menu item: Block link with Ad Muncher - Ad Muncher O8 - Extra context menu item: Don't filter page with Ad Muncher - Ad Muncher O8 - Extra context menu item: Report page to the Ad Muncher developers - Ad Muncher O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://start.home.nl/ O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab O16 - DPF: {426784E5-24B2-4708-820D-117342FAD009} (Cimporter Object) - http://www.hyves.nl/cab/outlookaddressbook.cab O16 - DPF: {45B69029-F3AB-4204-92DE-D5140C3E8E74} - O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} - http://www.famipix.nl/ImageUploader5.cab O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.kodakimages.com/DesktopModules/SpectorAlbum/ImageUploader4.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://activex.webcam.nl/AxisCamControl.cab O16 - DPF: {D6BBBC13-56A9-4E62-92AC-4DBEF6CCB38B} (SFAutoInstall Class) - http://playz.project.streamtech.nl/clientdownloads/SFAutoInstall.CAB O16 - DPF: {D83C1BD1-DCBB-11D4-9425-0050BF33FA6E} (CycloScopeLite Control) - http://www.cyclomedia.nl/download/components/CycloScopeLite.cab O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe O23 - Service: Caretaker Antispam Service (CaretakerAntispam) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\AntispamService.exe O23 - Service: Caretaker Proxy (CaretakerProxy) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\CaretakerProxy.exe O23 - Service: Caretaker Service (CaretakerSvc) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\CaretakerService.exe O23 - Service: Caretaker Updater (CaretakerUpdate) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\CaretakerUpdater.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe -- End of file - 9339 bytes

21 december 2009
12 antwoorden

Opstarten p.c. duurt bijna 90 seconden

Have0 reageerde op Have0's topic in Archief Windows Algemeen

ComboFix 09-12-19.03 - Eigenaar 20-12-2009 18:21:13.1.1 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.2039.1551 [GMT 1:00] Gestart vanuit: g:\mijn documenten\Downloads\KittyFix.exe AV: NOD32 antivirus systeem 2.51 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0} . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\documents and settings\Eigenaar\Application Data\inst.exe C:\install.exe c:\windows\Readme.txt c:\windows\system32\ATHPRXY(2).DLL c:\windows\system32\gzmrot-uninst.exe c:\windows\system32\iAlmcoin.dll c:\windows\system32\inf c:\windows\system32\inf\H1e10220.inf c:\windows\system32\ps2.bat c:\windows\winhelp.ini D:\Autorun.inf . (((((((((((((((((((( Bestanden Gemaakt van 2009-11-20 to 2009-12-20 )))))))))))))))))))))))))))))) . 2009-12-20 14:05 . 2009-12-20 14:05 -------- dc-h--r- c:\documents and settings\Eigenaar\Onlangs geopend 2009-12-07 18:46 . 2009-12-08 16:44 -------- d-----w- c:\program files\DVD Shrink 2009-12-07 17:57 . 2009-12-07 17:57 -------- dc----w- c:\documents and settings\All Users\Application Data\Ad Muncher 2009-12-07 17:57 . 2009-12-07 17:57 -------- d-----w- c:\program files\Ad Muncher 2009-12-06 11:26 . 2009-12-06 11:26 4844296 -c--a-w- c:\documents and settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe 2009-12-05 11:45 . 2009-12-05 11:45 -------- d-----w- c:\program files\Trend Micro 2009-12-01 16:18 . 2009-08-13 15:24 512000 -c----w- c:\windows\system32\dllcache\jscript.dll 2009-11-30 22:25 . 2009-11-30 22:25 -------- d-----w- c:\windows\l2schemas 2009-11-30 22:25 . 2009-11-30 22:25 -------- d-----w- c:\windows\system32\nl 2009-11-30 22:05 . 2009-11-30 22:07 -------- dc----w- c:\documents and settings\Eigenaar\Local Settings\Application Data\AskToolbar 2009-11-26 22:14 . 2009-11-26 22:14 -------- d-----w- c:\program files\MSXML 4.0 2009-11-26 21:17 . 2009-11-26 21:17 -------- d-----w- c:\windows\system32\wbem\Repository 2009-11-26 19:49 . 2009-11-26 19:49 -------- dc----w- c:\documents and settings\Eigenaar\Local Settings\Application Data\AskToolbar(2) 2009-11-26 19:09 . 2009-11-26 19:09 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Sammsoft 2009-11-26 19:09 . 2009-11-26 21:11 -------- d-----w- c:\program files\Advanced Registry Optimizer 2009-11-26 18:14 . 2008-04-14 17:02 69120 ------w- c:\windows\system32\wlanapi.dll 2009-11-26 18:14 . 2008-04-14 17:02 53248 ------w- c:\windows\system32\tsgqec.dll 2009-11-26 18:14 . 2008-04-14 17:02 50688 ------w- c:\windows\system32\tspkg.dll 2009-11-26 18:14 . 2008-04-13 18:40 10240 ------w- c:\windows\system32\drivers\sffp_mmc.sys 2009-11-26 18:14 . 2008-04-14 17:03 32768 ------w- c:\windows\system32\setupn.exe 2009-11-26 18:14 . 2008-04-14 17:02 290304 ------w- c:\windows\system32\rhttpaa.dll 2009-11-26 18:14 . 2008-04-14 17:02 61952 ------w- c:\windows\system32\rasqec.dll 2009-11-26 18:14 . 2008-04-14 17:02 76800 ------w- c:\windows\system32\qutil.dll 2009-11-26 18:14 . 2008-04-14 17:02 62464 ------w- c:\windows\system32\qcliprov.dll 2009-11-26 18:14 . 2008-04-14 17:02 292864 ------w- c:\windows\system32\qagentrt.dll 2009-11-26 18:14 . 2008-04-14 17:02 150528 ------w- c:\windows\system32\qagent.dll 2009-11-26 18:14 . 2008-04-14 17:02 144896 ------w- c:\windows\system32\onex.dll 2009-11-26 18:12 . 2008-04-14 17:02 136192 ------w- c:\windows\system32\aaclient.dll 2009-11-26 18:03 . 2009-11-26 18:03 -------- dc----w- c:\documents and settings\All Users\Application Data\SpeedBit 2009-11-26 18:02 . 2009-11-30 20:16 -------- d-----w- c:\program files\DAP 2009-11-22 17:27 . 2009-11-29 16:14 -------- d-----w- c:\windows\system32\Uitzending Gemist dir 2009-11-22 15:29 . 2009-11-29 07:46 -------- dc----w- C:\Downloads 2009-11-22 15:23 . 2009-11-29 17:54 -------- d-----w- c:\program files\FlashGet 2009-11-20 18:19 . 2009-11-21 22:27 -------- d-----w- c:\program files\UDPixel . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-12-20 17:09 . 2006-01-26 16:55 0 -c--a-w- c:\windows\system32\drivers\lvuvc.hs 2009-12-19 11:57 . 2009-11-16 18:59 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\uTorrent 2009-12-12 13:14 . 2007-07-30 16:17 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Vso 2009-12-10 21:06 . 2007-09-09 19:23 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\LimeWire 2009-12-10 15:43 . 2003-01-22 00:22 91518 ----a-w- c:\windows\system32\perfc013.dat 2009-12-10 15:43 . 2003-01-22 00:22 510428 ----a-w- c:\windows\system32\perfh013.dat 2009-12-08 22:29 . 2009-01-02 17:02 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\DVD Flick 2009-12-08 16:45 . 2006-02-28 19:29 -------- dc----w- c:\documents and settings\All Users\Application Data\DVD Shrink 2009-12-08 16:36 . 2008-09-13 18:07 -------- dc--a-w- c:\documents and settings\All Users\Application Data\TEMP 2009-12-06 11:30 . 2009-10-14 20:42 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-12-05 23:43 . 2003-02-06 15:43 -------- d-----w- c:\program files\Microsoft Works 2009-12-03 15:14 . 2009-10-14 20:42 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-12-03 15:13 . 2009-10-14 20:42 19160 -c--a-w- c:\windows\system32\drivers\mbam.sys 2009-12-01 19:34 . 2009-11-16 21:15 -------- d-----w- c:\program files\uTorrent 2009-12-01 16:53 . 2009-01-01 17:13 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Uniblue 2009-12-01 16:52 . 2009-01-01 17:13 -------- d-----w- c:\program files\Uniblue 2009-11-30 22:27 . 2003-01-21 16:34 79179 ----a-w- c:\windows\PCHealth\HelpCtr\OfflineCache\index.dat 2009-11-30 20:11 . 2008-12-25 10:20 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Azureus 2009-11-30 20:09 . 2009-11-15 19:20 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\uTorrent(2) 2009-11-29 17:53 . 2009-11-16 22:47 -------- d-----w- c:\program files\VSO 2009-11-29 15:58 . 2007-07-30 17:49 -------- dc----w- c:\documents and settings\All Users\Application Data\vsosdk 2009-11-27 21:24 . 2009-11-06 17:30 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\IObit 2009-11-27 21:24 . 2009-11-06 17:30 -------- d-----w- c:\program files\IObit 2009-11-22 15:14 . 2003-01-21 17:18 -------- d--h--w- c:\program files\InstallShield Installation Information 2009-11-20 21:43 . 2006-03-17 19:37 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\Ahead 2009-11-20 17:07 . 2009-11-18 17:12 -------- d-----w- c:\program files\Yahoo! 2009-11-20 17:05 . 2009-10-18 11:07 -------- d-----w- c:\program files\TuneUp Utilities 2009 2009-11-18 17:12 . 2006-03-02 17:59 -------- d-----w- c:\program files\Ahead 2009-11-18 17:12 . 2009-11-18 17:12 -------- dc----w- c:\documents and settings\All Users\Application Data\Ahead 2009-11-18 17:02 . 2009-11-18 17:02 -------- d-----w- c:\program files\DVD Flick 2009-11-16 19:03 . 2004-07-19 20:57 -------- d-----w- c:\program files\KaZaA Lite 2009-11-16 19:03 . 2009-08-15 12:19 -------- d-----w- c:\program files\MSBuild 2009-11-16 19:03 . 2004-12-31 14:50 -------- d-----w- c:\program files\Codemasters 2009-11-16 19:03 . 2003-11-14 16:54 -------- d-----w- c:\program files\Red Storm Entertainment(2) 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\BLOKKER 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\Sony 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\Sonic 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\NovaLogic 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\Flitsservice 2009-11-16 19:03 . 2009-11-16 19:03 -------- d-----w- c:\program files\MSN Apps 2009-11-16 19:02 . 2009-11-16 19:02 -------- d-----w- c:\program files\Red Storm Entertainment 2009-11-16 19:02 . 2009-11-16 19:02 -------- d-----w- c:\program files\BearShare Applications 2009-11-16 18:59 . 2009-11-15 18:15 -------- d-----w- c:\program files\SUPERAntiSpyware 2009-11-15 20:14 . 2009-04-12 10:12 -------- d-----w- c:\program files\Hyves Desktop 2009-11-15 18:15 . 2009-10-24 17:39 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\SUPERAntiSpyware.com 2009-11-08 13:20 . 2009-11-07 09:56 127368 -c--a-w- c:\documents and settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat 2009-11-07 20:12 . 2005-03-16 21:08 -------- dc----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy 2009-11-06 18:06 . 2008-12-13 15:40 -------- d-----w- c:\program files\7-Zip 2009-11-06 18:03 . 2009-11-06 18:03 -------- dc----w- c:\documents and settings\Eigenaar\Application Data\URSoft 2009-11-05 17:11 . 2009-11-05 17:11 -------- d-----w- c:\program files\Toshiba 2009-10-29 16:32 . 2009-10-29 16:32 -------- d-----w- c:\program files\CCleaner 2009-10-29 05:38 . 2004-08-23 18:35 670208 ----a-w- c:\windows\system32\wininet.dll 2009-10-28 18:11 . 2007-08-01 22:32 -------- dc----w- c:\documents and settings\All Users\Application Data\SlySoft 2009-10-24 17:39 . 2009-10-24 17:39 -------- dc----w- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com 2009-10-23 15:33 . 2009-10-23 15:33 73728 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\xulrunner-stub.exe 2009-10-23 15:33 . 2009-10-23 15:33 499712 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\MSVCP71.DLL 2009-10-23 15:33 . 2009-10-23 15:33 348160 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\msvcr71.dll 2009-10-23 15:33 . 2009-10-23 15:33 102400 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\xulrunner.exe 2009-10-23 15:33 . 2009-10-23 15:32 8462336 -c--a-w- c:\documents and settings\Eigenaar\Application Data\LimeWire\browser\xulrunner\xul.dll 2009-10-21 05:40 . 2004-08-04 08:03 75776 ----a-w- c:\windows\system32\strmfilt.dll 2009-10-21 05:40 . 2004-08-04 08:03 25088 ----a-w- c:\windows\system32\httpapi.dll 2009-10-20 16:20 . 2004-08-04 06:00 265728 ------w- c:\windows\system32\drivers\http.sys 2009-10-14 22:06 . 2009-10-14 22:06 152576 -c--a-w- c:\documents and settings\Eigenaar\Application Data\Sun\Java\jre1.6.0_16\lzma.dll 2009-10-13 10:38 . 2003-03-25 17:16 270848 ----a-w- c:\windows\system32\oakley.dll 2009-10-12 13:40 . 2003-03-25 17:16 79872 ----a-w- c:\windows\system32\raschap.dll 2009-10-12 13:40 . 2003-03-25 17:16 150016 ----a-w- c:\windows\system32\rastls.dll 2009-09-25 05:37 . 2004-08-04 08:03 81920 -c--a-w- c:\windows\system32\ieencode.dll 2006-08-27 11:18 . 2006-08-27 11:18 477 -c--a-w- c:\program files\Snelkoppeling naar Samsung.lnk 2002-09-30 01:12 . 2002-09-30 01:12 31477231 -c--a-w- c:\program files\fo-pm8.exe 2002-09-30 01:10 . 2002-09-30 01:10 154 -c--a-w- c:\program files\file_id.diz 2002-09-30 01:09 . 2002-09-30 01:09 5390 -c--a-w- c:\program files\fosi.nfo . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "nod32kui"="c:\program files\Eset\nod32kui.exe" [2006-08-18 921600] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LMIinit] 2008-09-01 10:17 87352 ----a-w- c:\windows\system32\LMIinit.dll [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Bluetooth Manager.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Bluetooth Manager.lnk backup=c:\windows\pss\Bluetooth Manager.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office Snelstarten.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office Snelstarten.lnk backup=c:\windows\pss\Microsoft Office Snelstarten.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office Snelzoeken Indexer.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office Snelzoeken Indexer.lnk backup=c:\windows\pss\Microsoft Office Snelzoeken Indexer.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office.lnk backup=c:\windows\pss\Microsoft Office.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Statusvenster.lnk] path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\Statusvenster.lnk backup=c:\windows\pss\Statusvenster.lnkCommon Startup [HKLM\~\startupfolder\C:^Documents and Settings^Eigenaar^Menu Start^Programma's^Opstarten^Registration-Studio 8 LE.lnk] path=c:\documents and settings\Eigenaar\Menu Start\Programma's\Opstarten\Registration-Studio 8 LE.lnk backup=c:\windows\pss\Registration-Studio 8 LE.lnkStartup [HKLM\~\startupfolder\C:^Documents and Settings^Eigenaar^Menu Start^Programma's^Opstarten^TA_Start.lnk] path=c:\documents and settings\Eigenaar\Menu Start\Programma's\Opstarten\TA_Start.lnk backup=c:\windows\pss\TA_Start.lnkStartup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck] c:\windows\system32\dumprep 0 -k [X] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KYE_Showicon] c:\program files\USB Storage RW\shwicon.exe -tKYE\USB Storage RW [X] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 3] 2009-11-20 12:51 2335880 ----a-w- c:\program files\IObit\Advanced SystemCare 3\AWC.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ContentTransferWMDetector.exe] 2008-07-11 15:51 423200 -c--a-w- c:\program files\Sony\Content Transfer\ContentTransferWMDetector.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe] 2008-04-14 17:02 15360 ------w- c:\windows\system32\ctfmon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpsysdrv] 1998-05-07 22:04 52736 -c--a-w- c:\windows\system\hpsysdrv.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray] 2002-10-16 12:18 155648 -c--a-w- c:\windows\system32\igfxtray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndexSearch] 2005-03-18 11:53 40960 -c--a-w- c:\program files\ScanSoft\PaperPort\IndexSearch.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechCameraService(E)] 2004-11-01 17:22 262144 -c--a-w- c:\windows\system32\ElkCtrl.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechSoftwareUpdate] 2005-01-18 16:07 196608 -c--a-w- c:\program files\Logitech\Video\ManifestEngine.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideo[inspector]] 2005-09-07 05:39 73728 -c--a-w- c:\program files\Logitech\Video\InstallHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn GUI] 2008-07-24 16:46 63048 -c--a-w- c:\program files\LogMeIn\x86\LogMeInSystray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX] 2005-09-01 12:04 221184 -c--a-w- c:\windows\system32\LVCOMSX.EXE [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (reboot)] 2009-12-03 15:14 1394000 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbam.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS] 2008-04-14 17:03 1695232 ------w- c:\program files\Messenger\msmsgs.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBJ] 2004-09-24 16:22 1916928 -c----w- c:\program files\Ahead\Nero BackItUp\NBJ.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] 2001-07-09 10:50 155648 -c--a-w- c:\windows\system32\NeroCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz] 2002-09-10 04:35 372736 -c--a-w- c:\windows\system32\nwiz.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Omnipage] 2002-06-03 09:38 49152 -c--a-w- c:\program files\ScanSoft\OmniPageSE\opware32.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PaperPort PTD] 2005-03-18 11:40 57393 -c--a-w- c:\program files\ScanSoft\PaperPort\pptd40nt.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2009-01-05 14:18 413696 -c--a-w- c:\program files\QuickTime\QTTask.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SetDefPrt] 2005-01-26 17:02 49152 -c----w- c:\program files\Brother\Brmfl05a\BrStDvPt.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpybotSD TeaTimer] 2009-03-05 14:07 2260480 -csha-r- c:\program files\Spybot - Search & Destroy\TeaTimer.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StorageGuard] 2002-06-18 13:01 155648 -c--a-w- c:\program files\VERITAS Software\Update Manager\sgtray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] 2009-07-31 13:23 149280 -c--a-w- c:\program files\Java\jre6\bin\jusched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] 2007-07-11 16:07 68856 -c--a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] 2005-10-27 19:26 180269 -c--a-w- c:\program files\Common Files\Real\Update_OB\realsched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UniblueRegistryBooster] 2009-11-10 14:25 59184 ----a-w- c:\program files\Uniblue\RegistryBooster\Launcher.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WCOLOREAL] 2002-11-26 23:14 131072 -c--a-w- c:\program files\Coloreal\COLOREAL.EXE [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-] "MSConfig"=c:\windows\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "c:\\Program Files\\Real\\RealPlayer\\realplay.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\WINDOWS\\system32\\sessmgr.exe"= "c:\\Program Files\\LimeWire\\LimeWire.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\uTorrent\\uTorrent.exe"= "c:\\Program Files\\Vuze\\Azureus.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= R1 ctredr15.sys;ctredr15.sys;c:\windows\system32\drivers\ctredr15.sys [11-4-2008 8:56 18176] R2 CaretakerAntispam;Caretaker Antispam Service;c:\program files\SurfRight\Caretaker\AntispamService.exe [17-6-2008 14:30 172280] R2 CaretakerProxy;Caretaker Proxy;c:\program files\SurfRight\Caretaker\CaretakerProxy.exe [17-6-2008 14:30 1151736] R2 CaretakerSvc;Caretaker Service;c:\program files\SurfRight\Caretaker\CaretakerService.exe [17-6-2008 14:27 1218296] R2 CaretakerUpdate;Caretaker Updater;c:\program files\SurfRight\Caretaker\CaretakerUpdater.exe [17-6-2008 14:27 187640] R2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\LogMeIn\x86\rainfo.sys [24-7-2008 17:46 12856] R2 LMIRfsDriver;LogMeIn Remote File System Driver;c:\windows\system32\drivers\LMIRfsDriver.sys [13-9-2008 18:04 47640] S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [16-12-2006 17:54 639224] S3 STFSD;STFSD;\??\c:\program files\@Home\Playz Player\STFSD.SYS --> c:\program files\@Home\Playz Player\STFSD.SYS [?] S4 LMIRfsClientNP;LMIRfsClientNP; [x] . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.startpagina.nl/ uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8 uInternet Connection Wizard,ShellNext = hxxp://home.service.freesurf.nl/ uInternet Settings,ProxyOverride = <local>;*.local uInternet Settings,ProxyServer = proxy:8080 uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: Block frame with Ad Muncher - Ad Muncher IE: Block image with Ad Muncher - Ad Muncher IE: Block link with Ad Muncher - Ad Muncher IE: Don't filter page with Ad Muncher - Ad Muncher IE: Report page to the Ad Muncher developers - Ad Muncher LSP: c:\windows\system32\imon.dll DPF: DirectAnimation Java Classes - file://c:\windows\Java\classes\dajava.cab DPF: Microsoft XML Parser for Java - file://c:\windows\Java\classes\xmldso.cab DPF: {426784E5-24B2-4708-820D-117342FAD009} - hxxp://www.hyves.nl/cab/outlookaddressbook.cab DPF: {D6BBBC13-56A9-4E62-92AC-4DBEF6CCB38B} - hxxp://playz.project.streamtech.nl/clientdownloads/SFAutoInstall.CAB DPF: {D83C1BD1-DCBB-11D4-9425-0050BF33FA6E} - hxxp://www.cyclomedia.nl/download/components/CycloScopeLite.cab FF - ProfilePath - c:\documents and settings\Eigenaar\Application Data\Mozilla\Firefox\Profiles\12zgfw3k.default\ FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: browser.startup.homepage - hxxp://www.startpagina.nl/ FF - prefs.js: keyword.URL - hxxp://search.bearshare.com/webResults.html?src=ffb&q= FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\npqtplugin8.dll FF - plugin: c:\program files\QuickTime\Plugins\npqtplugin8.dll FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ ---- FIREFOX POLICIES ---- FF - user.js: browser.cache.memory.capacity - 65536 FF - user.js: browser.chrome.favicons - false FF - user.js: browser.display.show_image_placeholders - true FF - user.js: browser.turbo.enabled - true FF - user.js: browser.urlbar.autocomplete.enabled - true FF - user.js: browser.urlbar.autofill - true FF - user.js: content.interrupt.parsing - true FF - user.js: content.max.tokenizing.time - 2250000 FF - user.js: content.notify.backoffcount - 5 FF - user.js: content.notify.interval - 750000 FF - user.js: content.notify.ontimer - true FF - user.js: content.switch.threshold - 750000 FF - user.js: network.http.max-connections - 48 FF - user.js: network.http.max-connections-per-server - 16 FF - user.js: network.http.max-persistent-connections-per-proxy - 16 FF - user.js: network.http.max-persistent-connections-per-server - 8 FF - user.js: network.http.pipelining - true FF - user.js: network.http.pipelining.firstrequest - true FF - user.js: network.http.pipelining.maxrequests - 8 FF - user.js: network.http.proxy.pipelining - true FF - user.js: network.http.request.max-start-delay - 0 FF - user.js: nglayout.initialpaint.delay - 0 FF - user.js: plugin.expose_full_path - true FF - user.js: ui.submenuDelay - 0 . - - - - ORPHANS VERWIJDERD - - - - WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file) MSConfigStartUp-AnyDVD - c:\program files\SlySoft\AnyDVD\AnyDVD.exe MSConfigStartUp-fcm3 - c:\program files\Flitsservice\Flitsservice Controle Melder\Flitsservice 3.exe MSConfigStartUp-Flashget - c:\program files\FlashGet\FlashGet.exe MSConfigStartUp-iTunesHelper - c:\program files\iTunes\iTunesHelper.exe MSConfigStartUp-SUPERAntiSpyware - c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe MSConfigStartUp-UniblueSpeedUpMyPC - c:\program files\Uniblue\SpeedUpMyPC\Launcher.exe ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2009-12-20 18:29 Windows 5.1.2600 Service Pack 3 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . --------------------- DLLs Geladen Onder Lopende Processen --------------------- - - - - - - - > 'winlogon.exe'(796) c:\windows\system32\LMIinit.dll c:\windows\system32\LMIRfsClientNP.dll . Voltooingstijd: 2009-12-20 18:34:09 ComboFix-quarantined-files.txt 2009-12-20 17:33 Pre-Run: 14.782.054.400 bytes beschikbaar Post-Run: 14.810.357.760 bytes beschikbaar WindowsXP-KB310994-SP2-Home-BootDisk-NLD.exe [boot loader] default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Home Edition" /fastdetect /NoExecute=OptIn Current=3 Default=3 Failed=1 LastKnownGood=4 Sets=,1,2,3,4 - - End Of File - - 85CD2B8E5F66751288BCCE0B6955A73F

20 december 2009
12 antwoorden

Opstarten p.c. duurt bijna 90 seconden

Have0 plaatste een topic in Archief Windows Algemeen

Goedemorgen, ik weet niet of dit lang duurt, voor een p.c. van 6 jaar oud. Ik weet wel dat het vroeger sneller ging. Bij opstarten staan alleen NOD32KUI en CTFMON.EXE aangevinkt. Ik dacht als hij maar 2 programma's opstart dan zou het sneller moeten kunnen. Bij de computer van mijn schoonvader gaat het binnen 20 seconden. Natuurlijk geen wereldsprobleem, maar misschien moet ik een en ander aanpassen ? Gebruik regelmatig CCleaner, defregmentatie, opruimen onnodige bestanden, Advanced Systemcare. Maar misschien heeft u nog tips voor mij ? Bedankt alvast en goede feestdagen ! Hieronder vindt u een logfile. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 11:02:24, on 20-12-2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\SurfRight\Caretaker\CaretakerService.exe C:\Program Files\SurfRight\Caretaker\AntispamService.exe C:\Program Files\SurfRight\Caretaker\CaretakerProxy.exe C:\Program Files\SurfRight\Caretaker\CaretakerUpdater.exe C:\WINDOWS\system32\brsvc01a.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\brss01a.exe c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe C:\Program Files\Eset\nod32krn.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Eset\nod32kui.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,SearchAssistant = Search R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Startpagina.nl - alles op een rijtje! (ook op mobiel) R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://start.home.nl/ R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = Search R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://home.service.freesurf.nl/ R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy:8080 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 5.0\Reader\ActiveX\AcroIEHelper.ocx O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\MSN Toolbar\01.02.5000.1021\nl\msntb.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Netwerkservice') O8 - Extra context menu item: Block frame with Ad Muncher - Ad Muncher O8 - Extra context menu item: Block image with Ad Muncher - Ad Muncher O8 - Extra context menu item: Block link with Ad Muncher - Ad Muncher O8 - Extra context menu item: Don't filter page with Ad Muncher - Ad Muncher O8 - Extra context menu item: Report page to the Ad Muncher developers - Ad Muncher O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O14 - IERESET.INF: START_PAGE_URL=http://start.home.nl/ O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab O16 - DPF: {426784E5-24B2-4708-820D-117342FAD009} (Cimporter Object) - http://www.hyves.nl/cab/outlookaddressbook.cab O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} - http://www.famipix.nl/ImageUploader5.cab O16 - DPF: {6E5E167B-1566-4316-B27F-0DDAB3484CF7} (Image Uploader Control) - http://www.kodakimages.com/DesktopModules/SpectorAlbum/ImageUploader4.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://activex.webcam.nl/AxisCamControl.cab O16 - DPF: {D6BBBC13-56A9-4E62-92AC-4DBEF6CCB38B} (SFAutoInstall Class) - http://playz.project.streamtech.nl/clientdownloads/SFAutoInstall.CAB O16 - DPF: {D83C1BD1-DCBB-11D4-9425-0050BF33FA6E} (CycloScopeLite Control) - http://www.cyclomedia.nl/download/components/CycloScopeLite.cab O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab O16 - DPF: {F6BF0D00-0B2A-4A75-BF7B-F385591623AF} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab O18 - Filter: x-sdch - {B1759355-3EEC-4C1E-B0F1-B719FE26E377} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_A8904FB862BD9564.dll O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe O23 - Service: Caretaker Antispam Service (CaretakerAntispam) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\AntispamService.exe O23 - Service: Caretaker Proxy (CaretakerProxy) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\CaretakerProxy.exe O23 - Service: Caretaker Service (CaretakerSvc) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\CaretakerService.exe O23 - Service: Caretaker Updater (CaretakerUpdate) - SurfRight B.V. - C:\Program Files\SurfRight\Caretaker\CaretakerUpdater.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe -- End of file - 8913 bytes

20 december 2009
12 antwoorden

Tegelijk bestanden openen

Have0 plaatste een topic in Archief Multimedia

Ik heb een map met inhoud verschillende MP3 liedjes. Ik wil deze omzetten naar WAV en daarvoor een programmatje gevonden. In mijn gemaakte map, moet ik liedje voor liedje openen. Hoe kan ik de hele map openen tegelijk en deze om laten zetten ? Als ik dan van mapinhoud verschillende mp3 liedjes naar boven gaat opent hij niet de map. Ik dacht dat als je de shift-knop ingedrukt hield en met de muis klikte voor liedje dat dit ook ging maar dan lukt niet ? Bedankt alvast voor uw reactie.

12 december 2009
2 antwoorden

Wat is bandwith

Have0 reageerde op Have0's topic in Archief Internet & Netwerk

Het programma'tje geeft aan je moet eerst de bandwidth kiezen, die moet je met een schuifje van min 56 K tot maximaal 1 G aangeven dan start de automatic optimization. Dit betekent toch dat hij mij helpt om iets te optimaliseren zodra ik de bandwidth heb aangegeven. Is bandwidth de maximum download snelheid ? Ik heb Ziggo (Nederland) met max 20 MB downloadsnelheid, zou hij dit bedoelen ? Bedankt alweer.

7 december 2009
3 antwoorden

Wat is bandwith

Have0 plaatste een topic in Archief Internet & Netwerk

Ik gebruik o.a. het programma Advanced Systemcare. Hierin kun je naast scannen, problemen oplossen ook gebruik maken van enkele opties. Een van deze is internet booster. Daarin wordt gevraagd wat is je bandwidth. Wat betekent dit en hoe kan ik dit vinden welke bandwidth ik heb ? Bedankt alvast voor uw antwoord.

7 december 2009
3 antwoorden

Inloggen

Profielen

Forums

Store

Alles dat geplaatst werd door Have0

OVER ONS

SITEMAP

Belangrijke informatie