Ga naar inhoud

frabbit

Lid
 Bekijk profiel  Bekijk hun activiteit

  • Items

    9

  • Registratiedatum

  • Laatst bezocht

 Inhoudstype 

Alles dat geplaatst werd door frabbit

  1. frabbit
    haperingen zijn er nog steeds, heb meer het idee dat de pc andere problemen heeft, als ik bijvoorbeeld 2x de browser open dan hangt het systeem even en blijft de cursor / muis hangen kan dit niet iets met het virtueel geheugen of chace te maken hebben voor de duidelijkheid, er zat 512 mb in de pc ik heb er 1 gb bij gestoken.
  2. frabbit
    ComboFix 10-07-28.01 - Fred van Munster 07/29/2010 11:32:39.3.1 - x86 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1535.1048 [GMT 2:00] Running from: c:\documents and settings\Fred van Munster\Desktop\ComboFix.exe Command switches used :: c:\documents and settings\Fred van Munster\Desktop\CFScript.txt..txt AV: avast! antivirus 4.8.1368 [VPS 100728-1] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D} FILE :: "c:\windows\system32\drivers\krwyolm.sys" "c:\windows\system32\drivers\RkPavproc1.sys" "c:\windows\system32\drivers\RkPavproc2.sys" "c:\windows\system32\REN93.tmp" . ((((((((((((((((((((((((((((((((((((((( Other Deletions ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\documents and settings\Fred van Munster\Local Settings\Application Data\AskToolbar c:\documents and settings\Fred van Munster\Local Settings\Application Data\AskToolbar\cache.dat c:\documents and settings\Fred van Munster\Local Settings\Application Data\AskToolbar\config.xml c:\documents and settings\Fred van Munster\Local Settings\Application Data\AskToolbar\Downloaded Program Files\LimeWire.inf c:\documents and settings\Fred van Munster\Local Settings\Application Data\AskToolbar\Downloaded Program Files\LimeWireBDTB.dll c:\documents and settings\Fred van Munster\Local Settings\Application Data\AskToolbar\limewire.cab c:\windows\system32\drivers\krwyolm.sys c:\windows\system32\drivers\RkPavproc1.sys c:\windows\system32\drivers\RkPavproc2.sys c:\windows\system32\REN93.tmp . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Service_RkPavproc1 -------\Service_RkPavproc2 ((((((((((((((((((((((((( Files Created from 2010-06-28 to 2010-07-29 ))))))))))))))))))))))))))))))) . 2010-07-29 09:07 . 2010-05-11 10:00 20072 ----a-w- c:\windows\system32\drivers\cpuz133_x32.sys 2010-07-29 09:07 . 2010-07-29 09:07 -------- d-----w- c:\program files\CPUID 2010-07-28 16:55 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-07-28 16:55 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-07-28 16:55 . 2010-07-28 16:55 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-07-28 14:43 . 2010-07-28 14:43 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\Malwarebytes 2010-07-28 14:43 . 2010-07-28 14:43 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2010-07-28 14:36 . 2010-07-28 14:36 -------- d-----w- c:\windows\system32\Adobe 2010-07-28 14:30 . 2010-07-28 14:30 -------- d-----w- c:\program files\Common Files\Java 2010-07-28 14:26 . 2010-07-28 14:26 -------- d-----w- c:\program files\NOS 2010-07-28 14:01 . 2010-07-28 14:01 388096 ----a-r- c:\documents and settings\Fred van Munster\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2010-07-28 14:01 . 2010-07-28 14:01 -------- d-----w- c:\program files\Trend Micro 2010-07-26 08:05 . 2010-07-26 08:05 -------- d-----w- c:\documents and settings\All Users\Application Data\PhotoMail 2010-07-26 08:05 . 2010-07-26 08:05 -------- d-----w- c:\program files\PhotoMail Maker 2010-07-26 07:37 . 2010-07-26 07:37 -------- d-----w- c:\program files\NT Registry Optimizer 2010-07-24 11:51 . 2010-07-24 11:51 331304 ----a-w- c:\documents and settings\Fred van Munster\Application Data\OpenCandy\OpenCandy_4DA167BC0B2748D5978F04012BAA2B5A\DLMgr_3_1.6.44.exe 2010-07-24 11:51 . 2010-07-24 11:51 -------- d-----w- c:\program files\Winamp Detect 2010-07-24 10:58 . 2010-07-24 10:58 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\GRETECH 2010-07-24 10:56 . 2010-07-24 10:56 -------- d-----w- c:\program files\GRETECH 2010-07-22 14:03 . 2010-07-22 14:03 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\Ashampoo 2010-07-22 14:03 . 2010-07-22 14:03 -------- d-----w- c:\documents and settings\Fred van Munster\Local Settings\Application Data\ashampoo 2010-07-22 14:03 . 2010-07-22 14:03 -------- d-----w- c:\documents and settings\All Users\Application Data\ashampoo 2010-07-22 14:03 . 2010-07-22 14:03 -------- d-----w- c:\program files\Ashampoo 2010-07-19 07:17 . 2010-07-19 07:17 -------- d-----w- c:\program files\Microsoft Silverlight 2010-07-18 20:40 . 2010-07-18 20:40 -------- d-----w- c:\program files\Xvid 2010-07-18 20:40 . 2009-06-07 14:24 180224 ----a-w- c:\windows\system32\xvidvfw.dll 2010-07-18 20:40 . 2009-06-07 14:16 819200 ----a-w- c:\windows\system32\xvidcore.dll 2010-07-18 20:30 . 2010-07-18 20:31 -------- d-----w- c:\program files\QuickTime 2010-07-18 20:26 . 2010-07-18 20:26 -------- d-----w- c:\program files\Apple Software Update 2010-07-18 20:10 . 2010-07-18 20:11 -------- d-----w- c:\documents and settings\Fred van Munster\Local Settings\Application Data\Video Converter 2010-07-18 20:09 . 2010-07-18 20:11 -------- d-----w- c:\program files\Free Video Converter 2010-07-18 20:07 . 2010-07-18 20:07 -------- d-----w- c:\documents and settings\All Users\Application Data\VideoConverter 2010-07-17 22:14 . 2010-07-17 22:14 27632 ----a-w- c:\windows\system32\drivers\seehcri.sys 2010-07-17 22:12 . 2010-07-24 14:33 -------- d-----w- c:\program files\Sony Ericsson 2010-07-17 21:27 . 2010-07-17 21:27 -------- d-----w- c:\windows\system32\Samsung_USB_Drivers 2010-07-17 21:27 . 2010-07-17 21:27 -------- d-----w- c:\program files\DWD 2010-07-17 21:21 . 2010-07-17 21:21 -------- d-----w- c:\program files\Samsung 2010-07-16 07:53 . 2009-11-24 22:48 23120 ----a-w- c:\windows\system32\drivers\aswRdr.sys 2010-07-16 07:53 . 2009-11-24 22:49 48560 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2010-07-16 07:53 . 2009-11-24 22:47 27408 ----a-w- c:\windows\system32\drivers\aavmker4.sys 2010-07-16 07:53 . 2009-11-24 22:47 97480 ----a-w- c:\windows\system32\AvastSS.scr 2010-07-16 07:53 . 2009-11-24 22:51 93424 ----a-w- c:\windows\system32\drivers\aswmon.sys 2010-07-16 07:53 . 2009-11-24 22:50 94160 ----a-w- c:\windows\system32\drivers\aswmon2.sys 2010-07-16 07:53 . 2009-11-24 22:50 114768 ----a-w- c:\windows\system32\drivers\aswSP.sys 2010-07-16 07:53 . 2009-11-24 22:50 20560 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys 2010-07-16 07:52 . 2009-11-24 22:54 1280480 ----a-w- c:\windows\system32\aswBoot.exe 2010-07-16 07:52 . 2010-07-16 07:52 -------- d-----w- c:\program files\Alwil Software 2010-07-16 07:43 . 2010-07-08 11:51 711168 ----a-w- c:\documents and settings\Fred van Munster\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\octoshape\pmv307hw-1007080-0-main.dll 2010-07-16 07:43 . 2010-07-16 07:43 348160 ----a-w- c:\documents and settings\Fred van Munster\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\octoshape\octoshape.exe 2010-07-14 10:36 . 2010-07-14 10:36 8 ----a-w- c:\windows\system32\nvModes.dat 2010-07-14 10:33 . 2010-07-14 10:33 -------- d-----w- c:\documents and settings\All Users\Application Data\nView_Profiles 2010-07-14 06:10 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe 2010-07-04 17:29 . 2010-07-04 17:29 -------- d-----w- c:\documents and settings\All Users\Application Data\HiYo 2010-07-01 17:07 . 2010-07-17 12:06 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\wsInspector 2010-07-01 17:04 . 2010-07-24 14:32 -------- d-----w- c:\program files\Startup Inspector for Windows 2010-07-01 16:52 . 2010-07-01 16:52 -------- d-----w- C:\Linksys Driver 2010-07-01 14:17 . 2010-07-01 14:17 -------- d-----w- c:\windows\nview 2010-07-01 14:17 . 2008-05-03 03:46 442368 ----a-w- c:\windows\system32\nvudisp.exe 2010-07-01 14:15 . 2008-04-30 15:27 442368 ----a-w- c:\windows\system32\NVUNINST.EXE 2010-07-01 14:11 . 2010-07-01 14:12 664 ----a-w- c:\windows\system32\d3d9caps.dat . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-07-29 07:15 . 2009-07-18 17:09 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\vlc 2010-07-29 07:15 . 2009-12-16 21:38 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\dvdcss 2010-07-28 20:47 . 2010-06-12 18:30 -------- d-----w- c:\documents and settings\All Users\Application Data\NCH Swift Sound 2010-07-28 20:47 . 2010-06-12 18:30 -------- d-----w- c:\program files\NCH Swift Sound 2010-07-28 14:35 . 2009-10-31 20:04 -------- d-----w- c:\program files\Google 2010-07-28 14:26 . 2010-06-05 11:52 -------- d-----w- c:\documents and settings\All Users\Application Data\NOS 2010-07-28 14:23 . 2009-07-12 08:36 -------- d-----w- c:\program files\Java 2010-07-26 08:04 . 2009-11-10 18:44 -------- d-----w- c:\program files\IncrediMail 2010-07-25 18:35 . 2009-07-12 10:34 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\Image Zone Express 2010-07-25 06:33 . 2009-07-14 14:01 -------- d-----w- c:\program files\Winamp 2010-07-24 15:15 . 2009-07-14 14:01 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\Winamp 2010-07-24 14:34 . 2010-06-19 18:30 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\NCH Swift Sound 2010-07-24 14:33 . 2010-06-12 18:29 -------- d-----w- c:\program files\NCH Software 2010-07-24 14:27 . 2010-02-18 20:38 -------- d-----w- c:\program files\Common Files\Apple 2010-07-24 11:51 . 2010-05-23 10:05 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\OpenCandy 2010-07-22 13:51 . 2010-01-23 10:49 -------- d-----w- c:\program files\YouTube Downloader 2010-07-20 15:30 . 2009-07-11 19:20 128352 ----a-w- c:\documents and settings\Fred van Munster\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2010-07-19 07:38 . 2010-06-12 18:30 -------- d-----w- c:\documents and settings\All Users\Application Data\NCH Software 2010-07-18 20:30 . 2010-05-08 14:17 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple Computer 2010-07-17 21:21 . 2009-07-11 14:16 -------- d--h--w- c:\program files\InstallShield Installation Information 2010-07-15 20:11 . 2009-11-10 18:06 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\LimeWire 2010-07-15 19:14 . 2009-11-07 12:39 -------- d-----w- c:\documents and settings\All Users\Application Data\Nero 2010-07-15 19:14 . 2009-11-07 12:39 -------- d-----w- c:\program files\Common Files\Nero 2010-07-15 18:49 . 2009-11-07 12:40 -------- d-----w- c:\program files\Nero 2010-07-15 18:09 . 2010-05-30 14:26 -------- d-----w- c:\program files\AoA MP4 Converter 2010-07-15 18:09 . 2010-05-30 14:27 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP 2010-07-14 21:51 . 2009-11-10 18:05 -------- d-----w- c:\program files\LimeWire 2010-07-10 06:46 . 2010-03-06 10:41 -------- d-----w- c:\documents and settings\All Users\Application Data\EPSON 2010-06-27 07:39 . 2010-06-27 07:38 -------- d-----w- c:\program files\SIW 2010-06-22 19:52 . 2010-06-22 19:52 69214784 ----a-w- c:\documents and settings\Fred van Munster\Application Data\Nokia\Ovi Suite\Software Updater\NokiaOviSuite2Installer.exe 2010-06-14 14:31 . 2009-07-11 12:41 744448 ----a-w- c:\windows\pchealth\helpctr\binaries\helpsvc.exe 2010-06-12 19:29 . 2010-06-12 19:29 -------- d-----w- c:\program files\AnvSoft 2010-06-12 19:11 . 2010-06-12 18:54 -------- d-----w- c:\program files\IrfanView 2010-06-12 18:30 . 2010-06-12 18:29 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\NCH Software 2010-06-05 17:41 . 2010-03-07 18:41 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\Research In Motion 2010-06-05 15:07 . 2010-06-05 15:07 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 2010-06-05 12:03 . 2009-07-13 16:54 -------- d-----w- c:\program files\Common Files\Adobe 2010-06-05 11:54 . 2010-06-05 11:54 86016 ----a-w- c:\documents and settings\All Users\Application Data\NOS\Adobe_Downloads\arh.exe 2010-06-04 18:18 . 2010-06-04 18:14 -------- d-----w- c:\documents and settings\All Users\Application Data\Research In Motion 2010-06-04 18:18 . 2010-03-07 18:39 -------- d-----w- c:\program files\Research In Motion 2010-06-04 18:13 . 2010-03-07 18:39 -------- d-----w- c:\program files\Common Files\Research In Motion 2010-06-04 17:24 . 2009-07-23 14:20 -------- d-----w- c:\program files\Common Files\Nokia 2010-06-04 17:24 . 2009-07-23 14:19 -------- d-----w- c:\program files\Nokia 2010-06-04 17:23 . 2010-06-04 17:23 -------- d-----w- c:\documents and settings\All Users\Application Data\NokiaMusic 2010-06-03 06:15 . 2009-07-12 10:22 110065 ----a-w- c:\windows\hpoins08.dat 2010-06-02 17:44 . 2010-06-02 17:42 -------- d-----w- c:\program files\Hyves Desktop 2010-06-01 17:11 . 2010-06-01 17:11 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01009.Wdf 2010-06-01 17:11 . 2010-06-01 17:11 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf 2010-06-01 16:23 . 2009-07-23 14:15 -------- d-----w- c:\documents and settings\All Users\Application Data\Installations 2010-06-01 16:08 . 2010-06-01 16:08 3351812 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{09C468CA-2940-466A-AAE8-DCC0C6E9323C}\Installer\CommonCustomActions\msxml6Exec.exe 2010-06-01 16:08 . 2010-06-01 16:08 36864 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{09C468CA-2940-466A-AAE8-DCC0C6E9323C}\Installer\CommonCustomActions\Sleep.exe 2010-06-01 16:08 . 2010-06-01 16:08 3203453 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{09C468CA-2940-466A-AAE8-DCC0C6E9323C}\Installer\CommonCustomActions\vcredistExec.exe 2010-06-01 16:06 . 2010-06-01 16:09 35633752 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{09C468CA-2940-466A-AAE8-DCC0C6E9323C}\NokiaSoftwareUpdaterSetup_2.5.2NP.exe 2010-05-25 10:46 . 2010-05-25 10:46 503808 ----a-w- c:\documents and settings\Fred van Munster\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-1c7eb67a-n\msvcp71.dll 2010-05-25 10:46 . 2010-05-25 10:46 499712 ----a-w- c:\documents and settings\Fred van Munster\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-1c7eb67a-n\jmc.dll 2010-05-25 10:46 . 2010-05-25 10:46 348160 ----a-w- c:\documents and settings\Fred van Munster\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-1c7eb67a-n\msvcr71.dll 2010-05-25 10:46 . 2010-05-25 10:46 12800 ----a-w- c:\documents and settings\Fred van Munster\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-6968eba8-n\decora-d3d.dll 2010-05-25 10:46 . 2010-05-25 10:46 61440 ----a-w- c:\documents and settings\Fred van Munster\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-6968eba8-n\decora-sse.dll 2010-05-23 10:05 . 2010-05-23 10:05 257257 ----a-w- c:\documents and settings\Fred van Munster\Application Data\OpenCandy\OpenCandy_DA93A09B31784FF3BE877E217E44BC92\DLMgr3WrapperUniBlue.exe 2010-05-22 18:37 . 2010-05-22 17:43 12212040 ----a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\WMFDist11-WindowsXP-X86-ENU.exe 2010-05-22 18:36 . 2010-05-22 17:42 13930312 ----a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\WMFDist11-WindowsXP-X64-ENU.exe 2010-05-22 18:36 . 2010-05-22 17:42 61440 ----a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\WMF11Runx86.exe 2010-05-22 18:36 . 2010-05-22 17:42 58880 ----a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\WMF11Runx64.exe 2010-05-22 18:36 . 2010-05-22 17:42 77824 ----a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\Run_XML6_SP1.exe 2010-05-22 18:36 . 2010-05-22 17:42 50000 ----a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\pcswpc.exe 2010-05-22 18:19 . 2010-05-22 18:21 98366952 ----a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Nokia_Ovi_Suite_webinstaller_ALL.exe 2010-05-22 18:16 . 2010-05-22 18:44 34506392 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Nokia_PC_Suite_dut_web.exe 2010-05-22 17:38 . 2010-05-22 17:39 98366952 ----a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Nokia_Ovi_Suite_webinstaller_ALL[1].exe 2010-05-14 07:33 . 2010-03-07 18:41 256 ----a-w- c:\windows\system32\pool.bin 2010-05-13 09:54 . 2010-05-13 09:54 95232 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\pcswpcsi.exe 2010-05-13 09:54 . 2010-05-13 09:54 8192 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\UninstCCD.exe 2010-05-13 09:54 . 2010-05-13 09:54 61440 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\UninstPCSFEMsi.exe 2010-05-13 09:54 . 2010-05-13 09:54 10240 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\UninstPCS.exe 2010-05-13 09:54 . 2010-05-13 09:55 34506392 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Nokia_PC_Suite_dut_web[1].exe 2010-05-11 17:33 . 2009-07-11 12:41 22720 ----a-w- c:\windows\system32\emptyregdb.dat 2010-05-06 10:41 . 2005-01-06 04:00 916480 ----a-w- c:\windows\system32\wininet.dll 2010-05-02 05:22 . 2005-01-06 04:00 1851264 ----a-w- c:\windows\system32\win32k.sys . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 81000] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-05-03 13529088] "QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2010-03-18 421888] "nwiz"="nwiz.exe" [2008-05-03 1630208] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *sprestrt [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] @="Driver" [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusOverride"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Microsoft Office\\Office10\\OSA.EXE"= "c:\\WINDOWS\\system32\\Ati2evxx.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\BitLord\\BitLord.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= "c:\\Program Files\\BitTorrent\\bittorrent.exe"= "c:\\Program Files\\IncrediMail\\bin\\ImApp.exe"= "c:\\Program Files\\IncrediMail\\bin\\IncMail.exe"= "c:\\Program Files\\IncrediMail\\bin\\ImpCnt.exe"= "c:\\Program Files\\LimeWire\\LimeWire.exe"= "c:\\Program Files\\Nokia\\Nokia Software Updater\\nsu_ui_client.exe"= "c:\\Program Files\\Common Files\\Nokia\\Service Layer\\A\\nsl_host_process.exe"= "c:\\Documents and Settings\\Fred van Munster\\My Documents\\Downloads\\HiYo_Install.exe"= "c:\\Documents and Settings\\Fred van Munster\\Application Data\\Macromedia\\Flash Player\\www.macromedia.com\\bin\\octoshape\\octoshape.exe"= "c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"= R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [7/16/2010 9:53 AM 114768] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [7/16/2010 9:53 AM 20560] R2 cpuz133;cpuz133;c:\windows\system32\drivers\cpuz133_x32.sys [7/29/2010 11:07 AM 20072] R3 IPN2120;Instant Wireless-B PCI Adapter Driver;c:\windows\system32\drivers\LSIPNDS.sys [7/11/2009 5:48 PM 96256] R3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [7/18/2010 12:14 AM 27632] R3 swivsp;AC8xx Virtual Serial Port;c:\windows\system32\drivers\swivspnt.sys [3/26/2007 2:18 PM 20352] S1 ShldDrv;Panda File Shield Driver;c:\windows\system32\DRIVERS\ShlDrv51.sys --> c:\windows\system32\DRIVERS\ShlDrv51.sys [?] S2 PavProc;Panda Process Protection Driver;\??\c:\windows\system32\DRIVERS\PavProc.sys --> c:\windows\system32\DRIVERS\PavProc.sys [?] S2 StudioPro;StudioPro webcam;c:\windows\system32\drivers\StudioPro.sys [7/30/2009 9:40 AM 124416] S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files\MAGIX\Common\Database\bin\fbserver.exe [7/29/2009 9:35 PM 1527900] S3 FLASHSYS;FLASHSYS;\??\c:\program files\MSI\Live Update 4\LU4\FLASHSYS.sys --> c:\program files\MSI\Live Update 4\LU4\FLASHSYS.sys [?] S3 HwIOctl;HwIOctl;\??\c:\program files\Setup Files\MS-6580 v4.00\HwIOctl.sys --> c:\program files\Setup Files\MS-6580 v4.00\HwIOctl.sys [?] S3 MsibiosDevice;MsibiosDevice;\??\c:\program files\MSI\Live Update 4\LU4\msibios.sys --> c:\program files\MSI\Live Update 4\LU4\msibios.sys [?] S3 SWNC8U80;Sierra Wireless MUX NDIS Driver (UMTS80);c:\windows\system32\drivers\swnc8u80.sys [5/20/2008 4:24 PM 167040] S3 SWUMX80;Sierra Wireless USB MUX Driver (UMTS80);c:\windows\system32\drivers\swumx80.sys [5/20/2008 4:25 PM 143360] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] getPlusHelper REG_MULTI_SZ getPlusHelper . Contents of the 'Scheduled Tasks' folder 2010-07-22 c:\windows\Tasks\expressburnDowngrade.job - c:\program files\NCH Swift Sound\ExpressBurn\expressburn.exe [2010-07-01 16:30] 2010-07-22 c:\windows\Tasks\expressburnShakeIcon.job - c:\program files\NCH Swift Sound\ExpressBurn\expressburn.exe [2010-07-01 16:30] . . ------- Supplementary Scan ------- . uStart Page = hxxp://www.startpagina.nl/ IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html DPF: {8167C273-DF59-4416-B647-C8BB2C7EE83E} - hxxp://liveupdate.msi.com.tw/autobios/LOnline/install.cab DPF: {BD324C84-E46E-11D3-83D0-00C04F4EB66B} - hxxps://portal.hecla.nl/synergy/cab/ebcasp.cab DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} - hxxp://nijverdalcam.viewnetcam.com:50001/activex/AMC.cab . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2010-07-29 11:44 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** . --------------------- LOCKED REGISTRY KEYS --------------------- [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10h_ActiveX.exe,-101" [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10h_ActiveX.exe" [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" [HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" [HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" [HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" [HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\€–€|ÿÿÿÿÀ•€|ù•A~*] "AB141C35E9F4BF344B9FC010BB17F68A"="" . --------------------- DLLs Loaded Under Running Processes --------------------- - - - - - - - > 'explorer.exe'(3684) c:\windows\system32\WININET.dll c:\windows\system32\nview.dll c:\windows\system32\ieframe.dll c:\windows\system32\webcheck.dll c:\windows\system32\WPDShServiceObj.dll c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\MSVCR80.dll c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_dut.nlr c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll . ------------------------ Other Running Processes ------------------------ . c:\program files\Alwil Software\Avast4\aswUpdSv.exe c:\program files\Alwil Software\Avast4\ashServ.exe c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe c:\program files\Java\jre6\bin\jqs.exe c:\program files\Common Files\Motive\McciCMService.exe c:\mysql\bin\mysqld-nt.exe c:\windows\system32\nvsvc32.exe c:\windows\system32\HPZipm12.exe c:\windows\system32\rundll32.exe . ************************************************************************** . Completion time: 2010-07-29 11:50:33 - machine was rebooted ComboFix-quarantined-files.txt 2010-07-29 09:50 ComboFix2.txt 2010-07-29 08:56 ComboFix3.txt 2010-06-05 16:05 Pre-Run: 78,220,824,576 bytes free Post-Run: 78,254,161,920 bytes free - - End Of File - - 23C6EEB1323EF7A029A3F942D51D899D
  3. frabbit
    ComboFix 10-07-28.01 - Fred van Munster 07/29/2010 10:44:47.2.1 - x86 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1535.1039 [GMT 2:00] Running from: c:\documents and settings\Fred van Munster\Desktop\ComboFix.exe AV: avast! antivirus 4.8.1368 [VPS 100720-0] *On-access scanning disabled* (Outdated) {7591DB91-41F0-48A3-B128-1A293FD8233D} . ((((((((((((((((((((((((( Files Created from 2010-06-28 to 2010-07-29 ))))))))))))))))))))))))))))))) . 2010-07-28 16:55 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-07-28 16:55 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-07-28 16:55 . 2010-07-28 16:55 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-07-28 16:39 . 2010-07-28 16:39 54016 ----a-w- c:\windows\system32\drivers\krwyolm.sys 2010-07-28 14:43 . 2010-07-28 14:43 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\Malwarebytes 2010-07-28 14:43 . 2010-07-28 14:43 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2010-07-28 14:36 . 2010-07-28 14:36 -------- d-----w- c:\windows\system32\Adobe 2010-07-28 14:30 . 2010-07-28 14:30 -------- d-----w- c:\program files\Common Files\Java 2010-07-28 14:26 . 2010-07-28 14:26 -------- d-----w- c:\program files\NOS 2010-07-28 14:01 . 2010-07-28 14:01 388096 ----a-r- c:\documents and settings\Fred van Munster\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2010-07-28 14:01 . 2010-07-28 14:01 -------- d-----w- c:\program files\Trend Micro 2010-07-26 08:05 . 2010-07-26 08:05 -------- d-----w- c:\documents and settings\All Users\Application Data\PhotoMail 2010-07-26 08:05 . 2010-07-26 08:05 -------- d-----w- c:\program files\PhotoMail Maker 2010-07-26 07:37 . 2010-07-26 07:37 -------- d-----w- c:\program files\NT Registry Optimizer 2010-07-24 11:51 . 2010-07-24 11:51 331304 ----a-w- c:\documents and settings\Fred van Munster\Application Data\OpenCandy\OpenCandy_4DA167BC0B2748D5978F04012BAA2B5A\DLMgr_3_1.6.44.exe 2010-07-24 11:51 . 2010-07-24 11:51 -------- d-----w- c:\program files\Winamp Detect 2010-07-24 10:58 . 2010-07-24 10:58 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\GRETECH 2010-07-24 10:56 . 2010-07-24 10:56 -------- d-----w- c:\program files\GRETECH 2010-07-22 14:03 . 2010-07-22 14:03 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\Ashampoo 2010-07-22 14:03 . 2010-07-22 14:03 -------- d-----w- c:\documents and settings\Fred van Munster\Local Settings\Application Data\ashampoo 2010-07-22 14:03 . 2010-07-22 14:03 -------- d-----w- c:\documents and settings\All Users\Application Data\ashampoo 2010-07-22 14:03 . 2010-07-22 14:03 -------- d-----w- c:\program files\Ashampoo 2010-07-19 07:17 . 2010-07-19 07:17 -------- d-----w- c:\program files\Microsoft Silverlight 2010-07-18 20:40 . 2010-07-18 20:40 -------- d-----w- c:\program files\Xvid 2010-07-18 20:40 . 2009-06-07 14:24 180224 ----a-w- c:\windows\system32\xvidvfw.dll 2010-07-18 20:40 . 2009-06-07 14:16 819200 ----a-w- c:\windows\system32\xvidcore.dll 2010-07-18 20:30 . 2010-07-18 20:31 -------- d-----w- c:\program files\QuickTime 2010-07-18 20:26 . 2010-07-18 20:26 -------- d-----w- c:\program files\Apple Software Update 2010-07-18 20:10 . 2010-07-18 20:11 -------- d-----w- c:\documents and settings\Fred van Munster\Local Settings\Application Data\Video Converter 2010-07-18 20:09 . 2010-07-18 20:11 -------- d-----w- c:\program files\Free Video Converter 2010-07-18 20:07 . 2010-07-18 20:07 -------- d-----w- c:\documents and settings\All Users\Application Data\VideoConverter 2010-07-17 22:14 . 2010-07-17 22:14 27632 ----a-w- c:\windows\system32\drivers\seehcri.sys 2010-07-17 22:12 . 2010-07-24 14:33 -------- d-----w- c:\program files\Sony Ericsson 2010-07-17 21:27 . 2010-07-17 21:27 -------- d-----w- c:\windows\system32\Samsung_USB_Drivers 2010-07-17 21:27 . 2010-07-17 21:27 -------- d-----w- c:\program files\DWD 2010-07-17 21:21 . 2010-07-17 21:21 -------- d-----w- c:\program files\Samsung 2010-07-16 07:53 . 2009-11-24 22:48 23120 ----a-w- c:\windows\system32\drivers\aswRdr.sys 2010-07-16 07:53 . 2009-11-24 22:49 48560 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2010-07-16 07:53 . 2009-11-24 22:47 27408 ----a-w- c:\windows\system32\drivers\aavmker4.sys 2010-07-16 07:53 . 2009-11-24 22:47 97480 ----a-w- c:\windows\system32\AvastSS.scr 2010-07-16 07:53 . 2009-11-24 22:51 93424 ----a-w- c:\windows\system32\drivers\aswmon.sys 2010-07-16 07:53 . 2009-11-24 22:50 94160 ----a-w- c:\windows\system32\drivers\aswmon2.sys 2010-07-16 07:53 . 2009-11-24 22:50 114768 ----a-w- c:\windows\system32\drivers\aswSP.sys 2010-07-16 07:53 . 2009-11-24 22:50 20560 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys 2010-07-16 07:52 . 2009-11-24 22:54 1280480 ----a-w- c:\windows\system32\aswBoot.exe 2010-07-16 07:52 . 2010-07-16 07:52 -------- d-----w- c:\program files\Alwil Software 2010-07-16 07:43 . 2010-07-08 11:51 711168 ----a-w- c:\documents and settings\Fred van Munster\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\octoshape\pmv307hw-1007080-0-main.dll 2010-07-16 07:43 . 2010-07-16 07:43 348160 ----a-w- c:\documents and settings\Fred van Munster\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\octoshape\octoshape.exe 2010-07-14 21:57 . 2010-07-14 21:58 -------- d-----w- c:\documents and settings\Fred van Munster\Local Settings\Application Data\AskToolbar 2010-07-14 10:36 . 2010-07-14 10:36 8 ----a-w- c:\windows\system32\nvModes.dat 2010-07-14 10:33 . 2010-07-14 10:33 -------- d-----w- c:\documents and settings\All Users\Application Data\nView_Profiles 2010-07-14 06:10 . 2010-06-14 14:31 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe 2010-07-04 17:29 . 2010-07-04 17:29 -------- d-----w- c:\documents and settings\All Users\Application Data\HiYo 2010-07-01 17:07 . 2010-07-17 12:06 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\wsInspector 2010-07-01 17:04 . 2010-07-24 14:32 -------- d-----w- c:\program files\Startup Inspector for Windows 2010-07-01 16:52 . 2010-07-01 16:52 -------- d-----w- C:\Linksys Driver 2010-07-01 14:17 . 2010-07-01 14:17 -------- d-----w- c:\windows\nview 2010-07-01 14:17 . 2008-05-03 03:46 442368 ----a-w- c:\windows\system32\nvudisp.exe 2010-07-01 14:15 . 2008-04-30 15:27 442368 ----a-w- c:\windows\system32\NVUNINST.EXE 2010-07-01 14:11 . 2010-07-01 14:12 664 ----a-w- c:\windows\system32\d3d9caps.dat . (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-07-29 07:15 . 2009-07-18 17:09 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\vlc 2010-07-29 07:15 . 2009-12-16 21:38 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\dvdcss 2010-07-28 20:47 . 2010-06-12 18:30 -------- d-----w- c:\documents and settings\All Users\Application Data\NCH Swift Sound 2010-07-28 20:47 . 2010-06-12 18:30 -------- d-----w- c:\program files\NCH Swift Sound 2010-07-28 14:35 . 2009-10-31 20:04 -------- d-----w- c:\program files\Google 2010-07-28 14:29 . 2010-07-28 14:30 423656 ----a-w- c:\windows\system32\REN93.tmp 2010-07-28 14:26 . 2010-06-05 11:52 -------- d-----w- c:\documents and settings\All Users\Application Data\NOS 2010-07-28 14:23 . 2009-07-12 08:36 -------- d-----w- c:\program files\Java 2010-07-26 08:04 . 2009-11-10 18:44 -------- d-----w- c:\program files\IncrediMail 2010-07-25 18:35 . 2009-07-12 10:34 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\Image Zone Express 2010-07-25 06:33 . 2009-07-14 14:01 -------- d-----w- c:\program files\Winamp 2010-07-24 15:15 . 2009-07-14 14:01 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\Winamp 2010-07-24 14:34 . 2010-06-19 18:30 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\NCH Swift Sound 2010-07-24 14:33 . 2010-06-12 18:29 -------- d-----w- c:\program files\NCH Software 2010-07-24 14:27 . 2010-02-18 20:38 -------- d-----w- c:\program files\Common Files\Apple 2010-07-24 11:51 . 2010-05-23 10:05 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\OpenCandy 2010-07-22 13:51 . 2010-01-23 10:49 -------- d-----w- c:\program files\YouTube Downloader 2010-07-20 15:30 . 2009-07-11 19:20 128352 ----a-w- c:\documents and settings\Fred van Munster\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2010-07-19 07:38 . 2010-06-12 18:30 -------- d-----w- c:\documents and settings\All Users\Application Data\NCH Software 2010-07-18 20:30 . 2010-05-08 14:17 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple Computer 2010-07-17 21:21 . 2009-07-11 14:16 -------- d--h--w- c:\program files\InstallShield Installation Information 2010-07-15 20:11 . 2009-11-10 18:06 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\LimeWire 2010-07-15 19:14 . 2009-11-07 12:39 -------- d-----w- c:\documents and settings\All Users\Application Data\Nero 2010-07-15 19:14 . 2009-11-07 12:39 -------- d-----w- c:\program files\Common Files\Nero 2010-07-15 18:49 . 2009-11-07 12:40 -------- d-----w- c:\program files\Nero 2010-07-15 18:09 . 2010-05-30 14:26 -------- d-----w- c:\program files\AoA MP4 Converter 2010-07-15 18:09 . 2010-05-30 14:27 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP 2010-07-14 21:51 . 2009-11-10 18:05 -------- d-----w- c:\program files\LimeWire 2010-07-10 06:46 . 2010-03-06 10:41 -------- d-----w- c:\documents and settings\All Users\Application Data\EPSON 2010-06-27 07:39 . 2010-06-27 07:38 -------- d-----w- c:\program files\SIW 2010-06-22 19:52 . 2010-06-22 19:52 69214784 ----a-w- c:\documents and settings\Fred van Munster\Application Data\Nokia\Ovi Suite\Software Updater\NokiaOviSuite2Installer.exe 2010-06-14 14:31 . 2009-07-11 12:41 744448 ----a-w- c:\windows\pchealth\helpctr\binaries\helpsvc.exe 2010-06-12 19:29 . 2010-06-12 19:29 -------- d-----w- c:\program files\AnvSoft 2010-06-12 19:11 . 2010-06-12 18:54 -------- d-----w- c:\program files\IrfanView 2010-06-12 18:30 . 2010-06-12 18:29 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\NCH Software 2010-06-05 17:41 . 2010-03-07 18:41 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\Research In Motion 2010-06-05 15:07 . 2010-06-05 15:07 -------- d-----w- c:\documents and settings\Fred van Munster\Application Data\com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 2010-06-05 12:03 . 2009-07-13 16:54 -------- d-----w- c:\program files\Common Files\Adobe 2010-06-05 11:54 . 2010-06-05 11:54 86016 ----a-w- c:\documents and settings\All Users\Application Data\NOS\Adobe_Downloads\arh.exe 2010-06-04 18:18 . 2010-06-04 18:14 -------- d-----w- c:\documents and settings\All Users\Application Data\Research In Motion 2010-06-04 18:18 . 2010-03-07 18:39 -------- d-----w- c:\program files\Research In Motion 2010-06-04 18:13 . 2010-03-07 18:39 -------- d-----w- c:\program files\Common Files\Research In Motion 2010-06-04 17:24 . 2009-07-23 14:20 -------- d-----w- c:\program files\Common Files\Nokia 2010-06-04 17:24 . 2009-07-23 14:19 -------- d-----w- c:\program files\Nokia 2010-06-04 17:23 . 2010-06-04 17:23 -------- d-----w- c:\documents and settings\All Users\Application Data\NokiaMusic 2010-06-03 06:15 . 2009-07-12 10:22 110065 ----a-w- c:\windows\hpoins08.dat 2010-06-02 17:44 . 2010-06-02 17:42 -------- d-----w- c:\program files\Hyves Desktop 2010-06-01 17:11 . 2010-06-01 17:11 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01009.Wdf 2010-06-01 17:11 . 2010-06-01 17:11 0 ---ha-w- c:\windows\system32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf 2010-06-01 16:23 . 2009-07-23 14:15 -------- d-----w- c:\documents and settings\All Users\Application Data\Installations 2010-06-01 16:08 . 2010-06-01 16:08 3351812 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{09C468CA-2940-466A-AAE8-DCC0C6E9323C}\Installer\CommonCustomActions\msxml6Exec.exe 2010-06-01 16:08 . 2010-06-01 16:08 36864 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{09C468CA-2940-466A-AAE8-DCC0C6E9323C}\Installer\CommonCustomActions\Sleep.exe 2010-06-01 16:08 . 2010-06-01 16:08 3203453 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{09C468CA-2940-466A-AAE8-DCC0C6E9323C}\Installer\CommonCustomActions\vcredistExec.exe 2010-06-01 16:06 . 2010-06-01 16:09 35633752 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{09C468CA-2940-466A-AAE8-DCC0C6E9323C}\NokiaSoftwareUpdaterSetup_2.5.2NP.exe 2010-05-25 10:46 . 2010-05-25 10:46 503808 ----a-w- c:\documents and settings\Fred van Munster\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-1c7eb67a-n\msvcp71.dll 2010-05-25 10:46 . 2010-05-25 10:46 499712 ----a-w- c:\documents and settings\Fred van Munster\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-1c7eb67a-n\jmc.dll 2010-05-25 10:46 . 2010-05-25 10:46 348160 ----a-w- c:\documents and settings\Fred van Munster\Application Data\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-1c7eb67a-n\msvcr71.dll 2010-05-25 10:46 . 2010-05-25 10:46 12800 ----a-w- c:\documents and settings\Fred van Munster\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-6968eba8-n\decora-d3d.dll 2010-05-25 10:46 . 2010-05-25 10:46 61440 ----a-w- c:\documents and settings\Fred van Munster\Application Data\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-6968eba8-n\decora-sse.dll 2010-05-23 10:05 . 2010-05-23 10:05 257257 ----a-w- c:\documents and settings\Fred van Munster\Application Data\OpenCandy\OpenCandy_DA93A09B31784FF3BE877E217E44BC92\DLMgr3WrapperUniBlue.exe 2010-05-22 18:37 . 2010-05-22 17:43 12212040 ----a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\WMFDist11-WindowsXP-X86-ENU.exe 2010-05-22 18:36 . 2010-05-22 17:42 13930312 ----a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\WMFDist11-WindowsXP-X64-ENU.exe 2010-05-22 18:36 . 2010-05-22 17:42 61440 ----a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\WMF11Runx86.exe 2010-05-22 18:36 . 2010-05-22 17:42 58880 ----a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\WMF11Runx64.exe 2010-05-22 18:36 . 2010-05-22 17:42 77824 ----a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\Run_XML6_SP1.exe 2010-05-22 18:36 . 2010-05-22 17:42 50000 ----a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Installer\CommonCustomActions\pcswpc.exe 2010-05-22 18:19 . 2010-05-22 18:21 98366952 ----a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Nokia_Ovi_Suite_webinstaller_ALL.exe 2010-05-22 18:16 . 2010-05-22 18:44 34506392 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Nokia_PC_Suite_dut_web.exe 2010-05-22 17:38 . 2010-05-22 17:39 98366952 ----a-w- c:\documents and settings\All Users\Application Data\OviInstallerCache\{DEE1E2E5-B553-4F88-9DE7-23CBEA5D739C}\Nokia_Ovi_Suite_webinstaller_ALL[1].exe 2010-05-14 07:33 . 2010-03-07 18:41 256 ----a-w- c:\windows\system32\pool.bin 2010-05-13 09:54 . 2010-05-13 09:54 95232 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\pcswpcsi.exe 2010-05-13 09:54 . 2010-05-13 09:54 8192 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\UninstCCD.exe 2010-05-13 09:54 . 2010-05-13 09:54 61440 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\UninstPCSFEMsi.exe 2010-05-13 09:54 . 2010-05-13 09:54 10240 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Installer\CommonCustomActions\UninstPCS.exe 2010-05-13 09:54 . 2010-05-13 09:55 34506392 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{19DC9559-9C20-4A46-A67D-7ECBA52A2788}\Nokia_PC_Suite_dut_web[1].exe 2010-05-11 17:33 . 2009-07-11 12:41 22720 ----a-w- c:\windows\system32\emptyregdb.dat 2010-05-06 10:41 . 2005-01-06 04:00 916480 ----a-w- c:\windows\system32\wininet.dll 2010-05-02 05:22 . 2005-01-06 04:00 1851264 ----a-w- c:\windows\system32\win32k.sys . ((((((((((((((((((((((((((((((((((((( Reg Loading Points )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Note* empty entries & legit default entries are not shown REGEDIT4 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "avast!"="c:\progra~1\ALWILS~1\Avast4\ashDisp.exe" [2009-11-24 81000] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-05-03 13529088] "QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2010-03-18 421888] "nwiz"="nwiz.exe" [2008-05-03 1630208] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360] [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *sprestrt [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] @="Driver" [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusOverride"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Microsoft Office\\Office10\\OSA.EXE"= "c:\\WINDOWS\\system32\\Ati2evxx.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqnrs08.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\BitLord\\BitLord.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= "c:\\Program Files\\BitTorrent\\bittorrent.exe"= "c:\\Program Files\\IncrediMail\\bin\\ImApp.exe"= "c:\\Program Files\\IncrediMail\\bin\\IncMail.exe"= "c:\\Program Files\\IncrediMail\\bin\\ImpCnt.exe"= "c:\\Program Files\\LimeWire\\LimeWire.exe"= "c:\\Program Files\\Nokia\\Nokia Software Updater\\nsu_ui_client.exe"= "c:\\Program Files\\Common Files\\Nokia\\Service Layer\\A\\nsl_host_process.exe"= "c:\\Documents and Settings\\Fred van Munster\\My Documents\\Downloads\\HiYo_Install.exe"= "c:\\Documents and Settings\\Fred van Munster\\Application Data\\Macromedia\\Flash Player\\www.macromedia.com\\bin\\octoshape\\octoshape.exe"= "c:\\Program Files\\VideoLAN\\VLC\\vlc.exe"= R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [7/16/2010 9:53 AM 114768] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [7/16/2010 9:53 AM 20560] R3 IPN2120;Instant Wireless-B PCI Adapter Driver;c:\windows\system32\drivers\LSIPNDS.sys [7/11/2009 5:48 PM 96256] R3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\drivers\seehcri.sys [7/18/2010 12:14 AM 27632] R3 swivsp;AC8xx Virtual Serial Port;c:\windows\system32\drivers\swivspnt.sys [3/26/2007 2:18 PM 20352] S1 ShldDrv;Panda File Shield Driver;c:\windows\system32\DRIVERS\ShlDrv51.sys --> c:\windows\system32\DRIVERS\ShlDrv51.sys [?] S2 PavProc;Panda Process Protection Driver;\??\c:\windows\system32\DRIVERS\PavProc.sys --> c:\windows\system32\DRIVERS\PavProc.sys [?] S2 StudioPro;StudioPro webcam;c:\windows\system32\drivers\StudioPro.sys [7/30/2009 9:40 AM 124416] S3 FirebirdServerMAGIXInstance;Firebird Server - MAGIX Instance;c:\program files\MAGIX\Common\Database\bin\fbserver.exe [7/29/2009 9:35 PM 1527900] S3 FLASHSYS;FLASHSYS;\??\c:\program files\MSI\Live Update 4\LU4\FLASHSYS.sys --> c:\program files\MSI\Live Update 4\LU4\FLASHSYS.sys [?] S3 HwIOctl;HwIOctl;\??\c:\program files\Setup Files\MS-6580 v4.00\HwIOctl.sys --> c:\program files\Setup Files\MS-6580 v4.00\HwIOctl.sys [?] S3 MsibiosDevice;MsibiosDevice;\??\c:\program files\MSI\Live Update 4\LU4\msibios.sys --> c:\program files\MSI\Live Update 4\LU4\msibios.sys [?] S3 RkPavproc1;RkPavproc1;c:\windows\system32\drivers\RkPavproc1.sys [8/17/2009 9:10 PM 16952] S3 RkPavproc2;RkPavproc2;c:\windows\system32\drivers\RkPavproc2.sys [1/11/2010 8:20 PM 16952] S3 SWNC8U80;Sierra Wireless MUX NDIS Driver (UMTS80);c:\windows\system32\drivers\swnc8u80.sys [5/20/2008 4:24 PM 167040] S3 SWUMX80;Sierra Wireless USB MUX Driver (UMTS80);c:\windows\system32\drivers\swumx80.sys [5/20/2008 4:25 PM 143360] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] getPlusHelper REG_MULTI_SZ getPlusHelper . Contents of the 'Scheduled Tasks' folder 2010-07-22 c:\windows\Tasks\expressburnDowngrade.job - c:\program files\NCH Swift Sound\ExpressBurn\expressburn.exe [2010-07-01 16:30] 2010-07-22 c:\windows\Tasks\expressburnShakeIcon.job - c:\program files\NCH Swift Sound\ExpressBurn\expressburn.exe [2010-07-01 16:30] . . ------- Supplementary Scan ------- . uStart Page = hxxp://www.startpagina.nl/ IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html DPF: {8167C273-DF59-4416-B647-C8BB2C7EE83E} - hxxp://liveupdate.msi.com.tw/autobios/LOnline/install.cab DPF: {BD324C84-E46E-11D3-83D0-00C04F4EB66B} - hxxps://portal.hecla.nl/synergy/cab/ebcasp.cab DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} - hxxp://nijverdalcam.viewnetcam.com:50001/activex/AMC.cab . - - - - ORPHANS REMOVED - - - - WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file) AddRemove-Adobe AIR - c:\program files\Common Files\Adobe AIR\Versions\1.0\Resources\Adobe AIR Updater.exe AddRemove-{b760c3d6-3c91-4cc5-803f-007e7ca539e7} - c:\program files\Common Files\Nero\Nero ProductInstaller 4\SetupX.exe AddRemove-{E2883E8F-472F-4fb0-9522-AC9BF37916A7} - c:\program files\NOS\bin\getPlus_Helper.dll ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2010-07-29 10:52 Windows 5.1.2600 Service Pack 3 NTFS scanning hidden processes ... scanning hidden autostart entries ... scanning hidden files ... scan completed successfully hidden files: 0 ************************************************************************** . --------------------- LOCKED REGISTRY KEYS --------------------- [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10h_ActiveX.exe,-101" [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10h_ActiveX.exe" [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" [HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" [HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" [HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" [HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\€–€|ÿÿÿÿÀ•€|ù•A~*] "AB141C35E9F4BF344B9FC010BB17F68A"="" . --------------------- DLLs Loaded Under Running Processes --------------------- - - - - - - - > 'explorer.exe'(3156) c:\windows\system32\WININET.dll c:\windows\system32\nview.dll c:\windows\system32\ieframe.dll c:\windows\system32\webcheck.dll c:\windows\system32\WPDShServiceObj.dll c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\MSVCR80.dll c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_dut.nlr c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll . Completion time: 2010-07-29 10:56:27 ComboFix-quarantined-files.txt 2010-07-29 08:56 ComboFix2.txt 2010-06-05 16:05 Pre-Run: 77,930,897,408 bytes free Post-Run: 78,251,761,664 bytes free - - End Of File - - 359610E4B8A1D7AE3323CC37A839C8C3 groet fred
  4. frabbit
    haperingen zijn er nog steeds...
  5. frabbit
    ik heb een vaste adsl aansluiting prive en een zakelijke aansluiting draadloos. twee providers dus. Ik heb een vaste netwerk kaart in mijn PC en een draadloze kaart in mijn PC. Kan ik deze combineren op mijn pc, dus zowel de vaste adsl aansluiting als de zakelijke draadloze aansluiting tegelijk gebruiken? Verhoogt dat de download snelheid?
  6. frabbit
    bij deze de logjes Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Databaseversie: 4363 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 7/28/2010 6:39:02 PM mbam-log-2010-07-28 (18-39-02).txt Scantype: Snelle scan Objecten gescand: 143708 Verstreken tijd: 20 minuut/minuten, 44 seconde(n) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 40 Registerwaarden geïnfecteerd: 1 Registerdata geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 1 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registersleutels geïnfecteerd: HKEY_CLASSES_ROOT\Interface\{07b18eaa-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{07b18eac-a523-4961-b6bb-170de4475cca} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{1093995a-ba37-41d2-836e-091067c4ad17} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{120927bf-1700-43bc-810f-fab92549b390} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{17de5e5e-bfe3-4e83-8e1f-8755795359ec} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{1f52a5fa-a705-4415-b975-88503b291728} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{247a115f-06c2-4fb3-967d-2d62d3cf4f0a} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{2e3537fc-cf2f-4f56-af54-5a6a3dd375cc} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{2e9937fc-cf2f-4f56-af54-5a6a3dd375cc} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{3e1656ed-f60e-4597-b6aa-b6a58e171495} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{3e53e2cb-86db-4a4a-8bd9-ffeb7a64df82} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{3e720451-b472-4954-b7aa-33069eb53906} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{3e720453-b472-4954-b7aa-33069eb53906} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{63d0ed2b-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{63d0ed2d-b45b-4458-8b3b-60c69bbbd83c} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{6e74766c-4d93-4cc0-96d1-47b8e07ff9ca} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{72ee7f04-15bd-4845-a005-d6711144d86a} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{741de825-a6f0-4497-9aa6-8023cf9b0fff} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{7473d291-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{7473d293-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{7473d295-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{7473d297-b7bb-4f24-ae82-7e2ce94bb6a9} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{90449521-d834-4703-bb4e-d3aa44042ff8} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{991aac62-b100-47ce-8b75-253965244f69} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{a626cdbd-3d13-4f78-b819-440a28d7e8fc} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{bbabdc90-f3d5-4801-863a-ee6ae529862d} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{cf54be1c-9359-4395-8533-1657cf209cfe} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{d6ff3684-ad3b-48eb-bbb4-b9e6c5a355c1} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{de38c398-b328-4f4c-a3ad-1b5e4ed93477} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{e342af55-b78a-4cd0-a2bb-da7f52d9d25e} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{e342af55-b78a-4cd0-a2bb-da7f52d9d25f} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{e79dfbc9-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{e79dfbcb-5697-4fbd-94e5-5b2a9c7c1612} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{eb9e5c1c-b1f9-4c2b-be8a-27d6446fdaf8} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{f87d7fb5-9dc5-4c8c-b998-d8dfe02e2978} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{1e0de227-5ce4-4ea3-ab0c-8b03e1aa76bc} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Typelib\{d518921a-4a03-425e-9873-b9a71756821e} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Typelib\{e47caee0-deea-464a-9326-3f2801535a4d} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Typelib\{f42228fb-e84e-479e-b922-fbbd096e792c} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully. Registerwaarden geïnfecteerd: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Media\WMSDK\Sources\f3popularscreensavers (Adware.MyWebSearch) -> Quarantined and deleted successfully. Registerdata geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Mappen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Bestanden geïnfecteerd: C:\Documents and Settings\Fred van Munster\x.exe (Trojan.KillAV) -> Quarantined and deleted successfully. Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 6:57:26 PM, on 7/28/2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\SYSTEM32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\Motive\McciCMService.exe C:\mysql\bin\mysqld-nt.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\system32\svchost.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Startpagina.nl - alles op een rijtje! (ook op mobiel) R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll (file missing) O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (file missing) O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: LimeWire Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (file missing) O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O15 - Trusted Zone: http://asia.msi.com.tw O15 - Trusted Zone: http://global.msi.com.tw O15 - Trusted Zone: MSI Portal ? Computer, laptop, Notebook, Desktop, Mainboard, Graphics and more O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://oas.support.microsoft.com/ActiveX/MSDcode.cab O16 - DPF: {33704B0F-9EB7-434B-B752-EA6CFFB87423} (pmjpegaudio Class) - http://195.240.114.122:50003/JpegInst.cab O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://verkopen.marktplaats.nl/js/widgets/imageUploader/aurigma/5_7_24_0/ImageUploader5.cab O16 - DPF: {8167C273-DF59-4416-B647-C8BB2C7EE83E} (WebSDev Control) - http://liveupdate.msi.com.tw/autobios/LOnline/install.cab O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://www.fctwente.nl/twenteradio/AxisCamControl.cab O16 - DPF: {BD324C84-E46E-11D3-83D0-00C04F4EB66B} (HTMLParser Class) - https://portal.hecla.nl/synergy/cab/ebcasp.cab O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} - http://nijverdalcam.viewnetcam.com:50001/activex/AMC.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: ArcSoft Connect Daemon (ACDaemon) - Unknown owner - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (file missing) O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe O23 - Service: MySql - Unknown owner - C:\mysql\bin\mysqld-nt.exe O23 - Service: Nero BackItUp Scheduler 4.0 - Unknown owner - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (file missing) O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Unknown owner - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe (file missing) -- End of file - 7817 bytes groet Fred.
  7. frabbit
    hier de log Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 4:02:41 PM, on 7/28/2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\SYSTEM32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\Motive\McciCMService.exe C:\mysql\bin\mysqld-nt.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\HPZipm12.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\Program Files\internet explorer\iexplore.exe C:\Program Files\internet explorer\iexplore.exe C:\Program Files\internet explorer\iexplore.exe C:\Program Files\internet explorer\iexplore.exe C:\WINDOWS\system32\msiexec.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Startpagina.nl - alles op een rijtje! (ook op mobiel) R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: LimeWire Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O15 - Trusted Zone: http://asia.msi.com.tw O15 - Trusted Zone: http://global.msi.com.tw O15 - Trusted Zone: MSI Portal ? Computer, laptop, Notebook, Desktop, Mainboard, Graphics and more O16 - DPF: {0742B9EF-8C83-41CA-BFBA-830A59E23533} (Microsoft Data Collection Control) - https://oas.support.microsoft.com/ActiveX/MSDcode.cab O16 - DPF: {33704B0F-9EB7-434B-B752-EA6CFFB87423} (pmjpegaudio Class) - http://195.240.114.122:50003/JpegInst.cab O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - http://verkopen.marktplaats.nl/js/widgets/imageUploader/aurigma/5_7_24_0/ImageUploader5.cab O16 - DPF: {8167C273-DF59-4416-B647-C8BB2C7EE83E} (WebSDev Control) - http://liveupdate.msi.com.tw/autobios/LOnline/install.cab O16 - DPF: {917623D1-D8E5-11D2-BE8B-00104B06BDE3} (CamImage Class) - http://www.fctwente.nl/twenteradio/AxisCamControl.cab O16 - DPF: {BD324C84-E46E-11D3-83D0-00C04F4EB66B} (HTMLParser Class) - https://portal.hecla.nl/synergy/cab/ebcasp.cab O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} - http://nijverdalcam.viewnetcam.com:50001/activex/AMC.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: ArcSoft Connect Daemon (ACDaemon) - Unknown owner - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe (file missing) O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\Program Files\MAGIX\Common\Database\bin\fbserver.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: McciCMService - Motive Communications, Inc. - C:\Program Files\Common Files\Motive\McciCMService.exe O23 - Service: MySql - Unknown owner - C:\mysql\bin\mysqld-nt.exe O23 - Service: Nero BackItUp Scheduler 4.0 - Unknown owner - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe (file missing) O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Unknown owner - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe (file missing) -- End of file - 7949 bytes
  8. frabbit
    PC is brandschoon van binnen, bij het inzetten van de nieuwe videokaart uitgeblazen en gezogen. blauwe schermen heb ik niet, het gaat over haperende stotterende video's. Fred ---------- Post toegevoegd om 13:50 ---------- Vorige post was om 13:49 ---------- procedure zie ik niet ! ---------- Post toegevoegd om 13:51 ---------- Vorige post was om 13:50 ---------- ik zie geen procedure ?
  9. frabbit
    al een hele tijd ben ik bezig om een probleem op te lossen, krijg het echter niet voor elkaar. ik heb een Pentium 4 pc met windows XP 1'5 gb geheugen en een nieuwe videokaart 256 mb DVI out Het probleem is dat filmpjes van youtube, en andere sites niet goed afspelen, ze blijven haperen, ook als ik het filmpje volledig is geladen en ik op play druk blijft het hetzelfde. Ook blijft mijn muis dan hangen, ook als ik programma's opstart hangt de muis even en dan beweegt de cursor weer. Ik heb al diverse topics gelezen op heel veel sites, maar dat brengt geen oplossing. Virussen zijn het ook niet want ik heb Avast pro en die is up to date en hitman pro vind ook niets. ik heb dus 1 gig geheugen bijgeplaatst en de videokaart maar vervangen in de hoop dat dit de oplossing zou zijn. wie oh wie heeft er enig idee wat er aan de hand kan zijn. het probleem doet zich al een tijdje voor. Fred.
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.