Inhoud van geoffke001 - Pagina 12

Lqp dj 300 mengpaneel

geoffke001 reageerde op geoffke001's topic in Archief Hardware algemeen

dus zou ik best een versterker er aanhangen? en kan ik zo geen kabeltje kopen met aan de ene kant jackingang rood en wit en aan de andere kant 5 vrouwtjes van 3.5mm om daar mijn boxen op aan te sluiten of bestaat dat niet?

27 juli 2008
12 antwoorden
- aansluiten
- hardware
- (en 8 meer)
  Getagd met:
  - aansluiten
  - hardware
  - kabel
  - moederbord
  - normaal
  - pc
  - probleem
  - problemen
  - sluiten
  - weet

Lqp dj 300 mengpaneel

geoffke001 reageerde op geoffke001's topic in Archief Hardware algemeen

en hoe moet ik dat dan doen?

27 juli 2008
12 antwoorden
- aansluiten
- hardware
- (en 8 meer)
  Getagd met:
  - aansluiten
  - hardware
  - kabel
  - moederbord
  - normaal
  - pc
  - probleem
  - problemen
  - sluiten
  - weet

Lqp dj 300 mengpaneel

geoffke001 plaatste een topic in Archief Hardware algemeen

ik heb een mengpaneel gekocht maar kan dit niet aansluiten op mijn pc. ik heb een 5.1 onbourd soundcard en mijn boxen zijn van logitech ook 5.1, Ik heb namelijki problemen om mijn output te verbinden met mijn boxen. ik heb vanuit mijn moederbord een kabel gelegd nar het mengpaneel naar ch1 en dan normaal naar mijn boxen. maar mijn boxen zitten origineel op mijn moederbord met 5 kabeltjes Ik weet geen raad meer. dank u op voorhand

27 juli 2008
12 antwoorden
- aansluiten
- hardware
- (en 8 meer)
  Getagd met:
  - aansluiten
  - hardware
  - kabel
  - moederbord
  - normaal
  - pc
  - probleem
  - problemen
  - sluiten
  - weet

[OPGELOST] controle

geoffke001 reageerde op geoffke001's topic in Archief Bestrijding malware & virussen

het internet is weer ok. zal waarschijnlijk aan de server liggen. Waar zou het probleem dan kunnen vandaag komen met dat balkje. Ik heb zelfs al IE7 opnieuw geinstaleerd. Zou ik mss moeten Windows herstellen? Ik heb geen idee.

11 juli 2008
12 antwoorden

[OPGELOST] controle

geoffke001 reageerde op geoffke001's topic in Archief Bestrijding malware & virussen

ja toch wel, ik kan niet meer terug keren

10 juli 2008
12 antwoorden

[OPGELOST] controle

geoffke001 reageerde op geoffke001's topic in Archief Bestrijding malware & virussen

ik heb wel geen herstelpunt meer, met dat van combofix

10 juli 2008
12 antwoorden

[OPGELOST] controle

geoffke001 reageerde op geoffke001's topic in Archief Bestrijding malware & virussen

laat dat nu maar achterwege, dat is nu zo erg niet. Ik heb een groter probleem, namelijk mijn downloadsnelheid is gedaald. Normaal download ik aan 400kb/s Nu is het plots 60kb/s En is zit niet op smallband want ik heb nog 15 gig over. Zou dat te maken hebben met tune up?

10 juli 2008
12 antwoorden

[OPGELOST] controle

geoffke001 reageerde op geoffke001's topic in Archief Bestrijding malware & virussen

het probleem blijft bestaan. ik heb het kunnen draaien, fix 1

10 juli 2008
12 antwoorden

[OPGELOST] controle

geoffke001 reageerde op geoffke001's topic in Archief Bestrijding malware & virussen

internet explorer 7 is currently not supported

10 juli 2008
12 antwoorden

[OPGELOST] controle

geoffke001 plaatste een topic in Archief Bestrijding malware & virussen

sorry kape, voor dit topic maar ik ondervind dat probleem nog altijd van dat balkje. ik heb hier een voorbeeldje Hjt logje Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 16:52:03, on 10-7-2008 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16674) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe C:\Program Files\Spyware Doctor\pctsTray.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe C:\Program Files\TuneUp Utilities 2008\MemOptimizer.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Spyware Doctor\pctsAuxs.exe C:\Program Files\Spyware Doctor\pctsSvc.exe C:\WINDOWS\System32\alg.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Live Search R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Live Search R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [skyTel] SkyTel.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [sW20] C:\WINDOWS\system32\sw20.exe O4 - HKLM\..\Run: [sW24] C:\WINDOWS\system32\sw24.exe O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe" O4 - HKLM\..\Run: [iSTray] "C:\Program Files\Spyware Doctor\pctsTray.exe" O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [TuneUp MemOptimizer] "C:\Program Files\TuneUp Utilities 2008\MemOptimizer.exe" autostart O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD42/JSCDL/jre/6u6-b90/jinstall-6u6-windows-i586-jc.cab?e=1215109472944&h=d1782c445abf40ce9d91335bf2ceff91/&filename=jinstall-6u6-windows-i586-jc.cab O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe -- End of file - 5449 bytes

10 juli 2008
12 antwoorden

[OPGELOST] pc is traag

geoffke001 reageerde op geoffke001's topic in Archief Bestrijding malware & virussen

ik zal het zo laten, je bent hartelijk bedankt om mij te helpen. ik hoop dat mijn pc nu beter zal draaien

9 juli 2008
17 antwoorden

[OPGELOST] pc is traag

geoffke001 reageerde op geoffke001's topic in Archief Bestrijding malware & virussen

neen dat is niet opgelost. maar misschien is het beter om dat zo te laten, beter prestatie

9 juli 2008
17 antwoorden

[OPGELOST] pc is traag

geoffke001 reageerde op geoffke001's topic in Archief Bestrijding malware & virussen

en nu moet ik nog combo fix verwijderen? en wat zou het probleem geweest zijn van het vastlopen van de pc?

9 juli 2008
17 antwoorden

[OPGELOST] pc is traag

geoffke001 reageerde op geoffke001's topic in Archief Bestrijding malware & virussen

ja dat is waar, maar ik zou wel niet weten hoe ik dit terug kan veranderen. ik zal eens checken

9 juli 2008
17 antwoorden

[OPGELOST] pc is traag

geoffke001 reageerde op geoffke001's topic in Archief Bestrijding malware & virussen

gisteren als ik een usb instak kwam er meteen een melding op en nu gebeurt dit niet meer

9 juli 2008
17 antwoorden

[OPGELOST] pc is traag

geoffke001 reageerde op geoffke001's topic in Archief Bestrijding malware & virussen

ComboFix 08-07-08.5 - GeoF 2008-07-09 18:33:44.2 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.1609 [GMT 2:00] Gestart vanuit: C:\Documents and Settings\GeoF\Bureaublad\ComboFix.exe Command switches used :: C:\Documents and Settings\GeoF\Bureaublad\CFScript.txt * Nieuw herstelpunt werd aangemaakt WAARSCHUWING - DE RECOVERY CONSOLE IS NIET OP DIT SYSTEEM GEINSTALLEERD !! FILE :: C:\WINDOWS\hdnc32.ini C:\WINDOWS\iun6002.exe C:\WINDOWS\system32\muzika.xm . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . C:\WINDOWS\hdnc32.ini C:\WINDOWS\iun6002.exe C:\WINDOWS\system32\muzika.xm C:\WINDOWS\system32\server\ . (((((((((((((((((((( Bestanden Gemaakt van 2008-06-09 to 2008-07-09 )))))))))))))))))))))))))))))) . 2008-07-09 11:35 . 2008-07-09 11:35 <DIR> d-------- C:\Program Files\Malwarebytes' Anti-Malware 2008-07-09 11:35 . 2008-07-09 11:35 <DIR> d-------- C:\Documents and Settings\GeoF\Application Data\Malwarebytes 2008-07-09 11:35 . 2008-07-09 11:35 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2008-07-09 11:35 . 2008-07-07 17:35 34,296 --a------ C:\WINDOWS\system32\drivers\mbamcatchme.sys 2008-07-09 11:35 . 2008-07-07 17:35 17,144 --a------ C:\WINDOWS\system32\drivers\mbam.sys 2008-07-09 10:20 . 2008-07-09 10:21 <DIR> d-------- C:\Program Files\TuneUp Utilities 2008 2008-07-09 10:20 . 2008-07-09 10:20 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard 2008-07-09 10:20 . 2008-07-09 10:20 <DIR> d-------- C:\Documents and Settings\GeoF\Application Data\TuneUp Software 2008-07-09 10:20 . 2008-07-09 10:20 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\TuneUp Software 2008-07-09 10:20 . 2008-07-09 10:20 355,584 --a------ C:\WINDOWS\system32\TuneUpDefragService.exe 2008-07-09 10:20 . 2008-05-29 09:28 28,416 --a------ C:\WINDOWS\system32\uxtuneup.dll 2008-07-09 10:07 . 2008-07-09 10:07 <DIR> d-------- C:\Program Files\Replay Converter 2008-07-09 10:07 . 2008-07-09 11:55 <DIR> d-------- C:\Program Files\Replay AV 8 2008-07-09 10:07 . 2007-03-04 13:55 1,936,528 --a------ C:\WINDOWS\system32\ltmm15.dll 2008-07-09 10:07 . 2007-03-04 13:55 135,168 --a------ C:\WINDOWS\system32\DSKernel2.dll 2008-07-09 10:06 . 2008-07-09 10:06 <DIR> d-------- C:\Program Files\Freecorder 2008-07-09 10:05 . 2008-07-09 10:07 <DIR> d-------- C:\Documents and Settings\GeoF\Application Data\GetRightToGo 2008-07-09 09:50 . 2008-07-09 09:50 <DIR> d-------- C:\Program Files\LitexMedia 2008-07-08 22:35 . 2008-07-08 22:35 <DIR> d-------- C:\Program Files\Xara 2008-07-08 18:07 . 2008-07-09 12:18 43,401 --a------ C:\WINDOWS\system32\server 2008-07-07 21:29 . 2008-07-08 16:18 151 --a------ C:\WINDOWS\PhotoSnapViewer.INI 2008-07-07 11:11 . 2008-07-07 11:13 <DIR> d-------- C:\WINDOWS\ServicePackFiles 2008-07-05 19:18 . 2008-07-07 10:15 <DIR> d-------- C:\Program Files\PKR 2008-07-05 18:38 . 2008-07-05 18:38 <DIR> d-------- C:\Program Files\ADJ Video Decoder 2008-07-05 18:38 . 2008-07-05 18:38 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Adjustables 2008-07-04 10:21 . 2008-07-04 10:21 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\FLEXnet 2008-07-04 10:19 . 2008-07-04 10:19 <DIR> d-------- C:\Program Files\Bonjour 2008-07-04 10:11 . 2008-07-04 10:11 <DIR> d-------- C:\Program Files\Common Files\Macrovision Shared 2008-07-04 10:09 . 2008-07-04 10:18 <DIR> d-------- C:\Program Files\Common Files\Adobe 2008-07-04 08:05 . 2006-03-02 14:00 221,184 --a------ C:\WINDOWS\system32\wmpns.dll 2008-07-03 20:23 . 2008-07-03 20:23 <DIR> d-------- C:\WINDOWS\Sun 2008-07-03 20:23 . 2008-07-03 20:23 <DIR> d-------- C:\Program Files\Java 2008-07-03 20:23 . 2008-03-25 02:37 69,632 --a------ C:\WINDOWS\system32\javacpl.cpl 2008-07-03 20:22 . 2008-07-03 20:22 <DIR> d-------- C:\Program Files\Common Files\Java 2008-07-03 17:51 . 2008-07-04 11:41 69 --a------ C:\WINDOWS\NeroDigital.ini 2008-07-03 14:40 . 2008-04-23 06:22 6,066,176 -----c--- C:\WINDOWS\system32\dllcache\ieframe.dll 2008-07-03 14:40 . 2007-04-17 11:32 2,455,488 -----c--- C:\WINDOWS\system32\dllcache\ieapfltr.dat 2008-07-03 14:40 . 2007-03-08 07:11 1,032,192 -----c--- C:\WINDOWS\system32\dllcache\ieframe.dll.mui 2008-07-03 14:40 . 2008-04-23 06:22 459,264 -----c--- C:\WINDOWS\system32\dllcache\msfeeds.dll 2008-07-03 14:40 . 2008-04-23 06:22 383,488 -----c--- C:\WINDOWS\system32\dllcache\ieapfltr.dll 2008-07-03 14:40 . 2008-04-23 06:22 267,776 -----c--- C:\WINDOWS\system32\dllcache\iertutil.dll 2008-07-03 14:40 . 2008-04-23 06:22 63,488 -----c--- C:\WINDOWS\system32\dllcache\icardie.dll 2008-07-03 14:40 . 2008-04-23 06:22 52,224 -----c--- C:\WINDOWS\system32\dllcache\msfeedsbs.dll 2008-07-03 14:40 . 2008-04-22 09:39 13,824 -----c--- C:\WINDOWS\system32\dllcache\ieudinit.exe 2008-07-02 22:17 . 2008-07-02 22:17 <DIR> d-------- C:\Program Files\Trend Micro 2008-07-02 22:06 . 2008-07-02 22:06 <DIR> d-------- C:\Program Files\Windows Media Connect 2 2008-07-02 22:05 . 2008-07-02 22:05 <DIR> d-------- C:\WINDOWS\system32\drivers\UMDF 2008-07-02 22:05 . 2008-07-02 22:06 <DIR> d-------- C:\b5d0e36c605c8c005da0d96d4085 2008-07-02 20:36 . 2008-07-02 20:36 0 --a------ C:\WINDOWS\nsreg.dat 2008-07-02 20:31 . 2008-07-07 11:12 <DIR> d-------- C:\WINDOWS\system32\nl-nl 2008-07-02 20:31 . 2008-07-07 11:12 <DIR> d-------- C:\WINDOWS\system32\nl 2008-07-02 20:31 . 2008-07-07 11:12 <DIR> d-------- C:\WINDOWS\system32\bits 2008-07-02 20:31 . 2008-07-07 11:12 <DIR> d-------- C:\WINDOWS\l2schemas 2008-07-02 20:25 . 2008-07-07 11:07 <DIR> d-------- C:\WINDOWS\EHome 2008-07-02 18:08 . 2008-07-02 18:08 <DIR> d-------- C:\Program Files\BearShare 2008-07-02 18:08 . 2008-07-08 09:41 <DIR> d-------- C:\My Downloads 2008-07-02 17:34 . 2008-07-02 17:34 <DIR> d-------- C:\Program Files\Common Files\PC Tools 2008-07-02 17:34 . 2008-07-02 17:34 <DIR> d-------- C:\Documents and Settings\GeoF\Application Data\PC Tools 2008-07-02 17:34 . 2008-07-02 17:34 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\PC Tools 2008-07-02 17:34 . 2008-04-10 15:14 159,880 --a------ C:\WINDOWS\system32\drivers\pctfw2.sys 2008-07-02 17:34 . 2007-12-10 13:53 81,288 --a------ C:\WINDOWS\system32\drivers\iksyssec.sys 2008-07-02 17:34 . 2007-12-10 13:53 66,952 --a------ C:\WINDOWS\system32\drivers\iksysflt.sys 2008-07-02 17:34 . 2008-02-01 11:55 42,376 --a------ C:\WINDOWS\system32\drivers\ikfilesec.sys 2008-07-02 17:34 . 2007-12-10 13:53 29,576 --a------ C:\WINDOWS\system32\drivers\kcom.sys 2008-07-02 17:08 . 2008-07-09 18:37 <DIR> d-a------ C:\Documents and Settings\All Users\Application Data\TEMP 2008-07-02 16:10 . 2008-07-09 18:36 <DIR> d-------- C:\Program Files\Spyware Doctor 2008-07-02 10:15 . 2008-07-02 10:15 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\SupportSoft 2008-07-02 10:02 . 2008-07-02 10:02 <DIR> d-------- C:\Program Files\Common Files\SupportSoft 2008-07-01 19:49 . 2008-07-01 19:49 <DIR> d-------- C:\Program Files\GameSpy 2008-07-01 19:48 . 2008-07-02 17:01 <DIR> d-------- C:\WINDOWS\system32\URTTemp 2008-07-01 19:47 . 2008-07-02 22:05 <DIR> d-------- C:\WINDOWS\system32\LogFiles 2008-07-01 19:41 . 2008-07-01 19:41 <DIR> d-------- C:\Program Files\Electronic Arts 2008-07-01 10:09 . 2008-07-02 18:10 <DIR> d-------- C:\Program Files\K-Lite Codec Pack 2008-07-01 10:09 . 2008-07-01 10:09 <DIR> d-------- C:\Documents and Settings\GeoF\Application Data\Media Player Classic 2008-07-01 10:09 . 2006-09-24 17:11 389,120 --a------ C:\WINDOWS\system32\lameACM.acm 2008-07-01 10:09 . 2007-09-21 02:52 118,784 --a------ C:\WINDOWS\system32\ac3acm.acm 2008-07-01 10:09 . 2007-10-03 17:03 414 --a------ C:\WINDOWS\system32\lame_acm.xml 2008-06-29 19:07 . 2008-06-29 19:07 <DIR> d-------- C:\Program Files\Gabest 2008-06-29 15:45 . 2008-06-29 19:04 <DIR> d-------- C:\Documents and Settings\GeoF\Application Data\Ahead 2008-06-29 15:39 . 2008-06-29 15:39 <DIR> d-------- C:\Program Files\Nero 2008-06-29 15:39 . 2008-07-02 22:39 <DIR> d-------- C:\Program Files\Common Files\Ahead 2008-06-29 11:58 . 2008-07-03 17:51 <DIR> d-------- C:\Program Files\Extension Changer 2008-06-28 12:54 . 2008-06-28 12:54 <DIR> d--hs---- C:\Documents and Settings\GeoF\UserData 2008-06-28 12:12 . 2008-05-08 16:02 203,136 -----c--- C:\WINDOWS\system32\dllcache\rmcast.sys 2008-06-28 11:51 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll 2008-06-28 11:51 . 2007-07-30 19:19 207,736 --a------ C:\WINDOWS\system32\muweb.dll 2008-06-28 11:51 . 2007-07-30 19:18 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui 2008-06-28 11:45 . 2008-06-28 12:53 <DIR> d-------- C:\Documents and Settings\GeoF\Contacts 2008-06-27 21:30 . 2008-06-28 11:43 <DIR> d-------- C:\Program Files\Windows Live 2008-06-27 21:30 . 2008-06-28 11:43 <DIR> d--hsc--- C:\Program Files\Common Files\WindowsLiveInstaller 2008-06-27 21:30 . 2008-06-27 21:30 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller 2008-06-27 21:16 . 2008-07-09 18:31 53 --a------ C:\biosinfo 2008-06-27 21:15 . 2007-04-12 17:44 115,830 --a------ C:\WINDOWS\system32\nvapps.xml 2008-06-27 21:13 . 2008-06-27 21:13 13,646 --a------ C:\WINDOWS\system32\wpa.bak 2008-06-27 21:09 . 2008-06-27 21:09 <DIR> d-------- C:\WINDOWS\system32\Lang 2008-06-27 21:09 . 2008-06-27 21:09 940,794 --a------ C:\WINDOWS\system32\LoopyMusic.wav 2008-06-27 21:09 . 2008-06-27 21:09 146,650 --a------ C:\WINDOWS\system32\BuzzingBee.wav 2008-06-27 21:08 . 2008-06-27 21:08 <DIR> d-------- C:\WINDOWS\system32\RTCOM 2008-06-27 21:08 . 2008-04-14 19:03 129,536 --a------ C:\WINDOWS\system32\ksproxy.ax 2008-06-27 21:08 . 2006-08-01 09:02 49,152 -r------- C:\WINDOWS\system32\ChCfg.exe 2008-06-27 21:08 . 2007-08-10 20:52 26,488 --a------ C:\WINDOWS\system32\spupdsvc.exe 2008-06-27 21:08 . 2008-04-14 19:02 4,096 --a------ C:\WINDOWS\system32\ksuser.dll 2008-06-27 21:07 . 2008-06-27 21:07 <DIR> d-------- C:\Program Files\Realtek 2008-06-27 21:07 . 2008-06-27 21:07 <DIR> d-------- C:\Documents and Settings\GeoF\Application Data\InstallShield 2008-06-27 21:05 . 2008-06-28 11:44 <DIR> d----c--- C:\WINDOWS\system32\DRVSTORE 2008-06-27 21:05 . 2008-06-27 21:05 <DIR> d-------- C:\Program Files\DIFX 2008-06-27 21:05 . 2006-06-18 23:37 43,520 --a------ C:\WINDOWS\system32\drivers\AmdK8.sys 2008-06-27 21:04 . 2008-06-27 21:07 <DIR> d--h----- C:\Program Files\InstallShield Installation Information 2008-06-27 21:04 . 2008-06-27 21:04 <DIR> d-------- C:\Program Files\Common Files\InstallShield 2008-06-27 21:03 . 2008-07-04 10:19 <DIR> d--h----- C:\Documents and Settings\GeoF\Sjablonen 2008-06-27 21:03 . 2008-07-09 10:23 <DIR> dr-h----- C:\Documents and Settings\GeoF\Onlangs geopend 2008-06-27 21:03 . 2008-06-27 22:50 <DIR> d--h----- C:\Documents and Settings\GeoF\Netwerkprinteromgeving 2008-06-27 21:03 . 2008-07-09 10:05 <DIR> dr------- C:\Documents and Settings\GeoF\Mijn documenten 2008-06-27 21:03 . 2008-06-27 22:50 <DIR> dr------- C:\Documents and Settings\GeoF\Menu Start 2008-06-27 21:03 . 2008-07-08 13:49 <DIR> dr------- C:\Documents and Settings\GeoF\Favorieten 2008-06-27 21:03 . 2008-07-09 18:33 <DIR> d-------- C:\Documents and Settings\GeoF\Bureaublad 2008-06-27 21:03 . 2008-07-09 11:51 <DIR> d-------- C:\Documents and Settings\GeoF 2008-06-27 21:02 . 2008-06-27 21:02 <DIR> d---s---- C:\WINDOWS\system32\Microsoft 2008-06-27 21:02 . 2008-07-09 11:51 <DIR> d--hs---- C:\Documents and Settings\LocalService 2008-06-27 21:01 . 2008-07-09 11:51 <DIR> d--hs---- C:\Documents and Settings\NetworkService 2008-06-27 21:01 . 2008-06-27 21:01 8,192 --a------ C:\WINDOWS\REGLOCS.OLD 2008-06-27 21:00 . 2008-06-27 20:56 <DIR> d--h----- C:\WINDOWS\system32\config\systemprofile\Sjablonen 2008-06-27 21:00 . 2008-06-27 22:50 <DIR> d--h----- C:\WINDOWS\system32\config\systemprofile\Onlangs geopend 2008-06-27 21:00 . 2008-06-27 22:50 <DIR> d--h----- C:\WINDOWS\system32\config\systemprofile\Netwerkprinteromgeving 2008-06-27 21:00 . 2008-06-27 22:50 <DIR> d-------- C:\WINDOWS\system32\config\systemprofile\Mijn documenten . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-06-27 19:07 315,392 ----a-w C:\WINDOWS\HideWin.exe 2008-06-27 18:59 --------- d-----w C:\Program Files\microsoft frontpage 2008-06-20 11:51 361,600 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys 2008-06-20 11:40 138,496 ----a-w C:\WINDOWS\system32\drivers\afd.sys 2008-06-20 11:08 225,856 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys 2008-06-14 17:36 272,640 ------w C:\WINDOWS\system32\drivers\bthport.sys 2008-04-14 17:03 70,144 ----a-w C:\WINDOWS\notepad.exe 2008-04-14 17:03 32,866 ------w C:\WINDOWS\slrundll.exe 2008-04-14 17:03 287,232 ----a-w C:\WINDOWS\winhlp32.exe 2008-04-14 17:03 153,088 ----a-w C:\WINDOWS\regedit.exe 2008-04-14 17:03 10,752 ----a-w C:\WINDOWS\hh.exe 2008-04-14 17:02 50,688 ----a-w C:\WINDOWS\twain_32.dll 2008-04-14 17:02 1,037,312 ----a-w C:\WINDOWS\SET480.tmp 2008-04-14 17:02 1,037,312 ----a-w C:\WINDOWS\explorer.exe 2007-03-09 07:12 27,648 --sha-w C:\WINDOWS\system32\AVSredirect.dll . ((((((((((((((((((((((((((((( snapshot@2008-07-09_12.32.28.48 ))))))))))))))))))))))))))))))))))))))))) . - 2008-07-09 10:30:42 2,048 --s-a-w C:\WINDOWS\bootstat.dat + 2008-07-09 16:37:25 2,048 --s-a-w C:\WINDOWS\bootstat.dat . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 19:02 15360] "MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 11:34 5724184] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2006-06-01 13:32 94208] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-04-12 17:44 8429568] "SW20"="C:\WINDOWS\system32\sw20.exe" [2006-12-15 04:58 208896] "SW24"="C:\WINDOWS\system32\sw24.exe" [2006-12-15 04:58 69632] "NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2007-04-12 17:44 81920] "NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 16:40 155648] "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe" [2008-03-25 04:28 144784] "ISTray"="C:\Program Files\Spyware Doctor\pctsTray.exe" [2008-04-10 15:14 1107848] "RTHDCPL"="RTHDCPL.EXE" [2007-01-30 12:54 16116224 C:\WINDOWS\RTHDCPL.exe] "SkyTel"="SkyTel.EXE" [2006-05-16 12:04 2879488 C:\WINDOWS\SkyTel.exe] "nwiz"="nwiz.exe" [2007-04-12 17:44 1626112 C:\WINDOWS\system32\nwiz.exe] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 19:02 15360] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "msacm.iac2"= C:\PROGRA~1\REPLAY~1\iac25_32.ax "VIDC.YV12"= yv12vfw.dll [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Notification Packages REG_MULTI_SZ scecli scecli [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "C:\\Program Files\\Messenger\\msmsgs.exe"= "C:\\Program Files\\BearShare\\BearShare.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "C:\\Documents and Settings\\GeoF\\Bureaublad\\Nieuwe map\\Poison Ivy 2.3.2.exe"= "C:\\Program Files\\Bonjour\\mDNSResponder.exe"= "C:\\Documents and Settings\\GeoF\\Bureaublad\\Vietcong\\vietcong.exe"= "C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"= R1 pctfw2;pctfw2;C:\WINDOWS\system32\drivers\pctfw2.sys [2008-04-10 15:14] R2 UxTuneUp;TuneUp Thema-uitbreiding;C:\WINDOWS\System32\svchost.exe [2008-04-14 19:03] S3 SetupNTGLM7X;SetupNTGLM7X;E:\NTGLM7X.sys [] S3 TuneUp.Defrag;TuneUp Drive Defrag Service;C:\WINDOWS\System32\TuneUpDefragService.exe [2008-07-09 10:20] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs UxTuneUp [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{321437dd-4913-11dd-8abb-001a4d7bd29e}] \Shell\AutoRun\command - setup.exe [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\special] C:\WINDOWS\system32\server.exe . Inhoud van de 'Gedeelde Taken' map "2008-07-09 16:37:26 C:\WINDOWS\Tasks\Easy Onderhoud.job" - C:\Program Files\TuneUp Utilities 2008\OneClickStarter.exe . ************************************************************************** catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-07-09 18:37:34 Windows 5.1.2600 Service Pack 3 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . ------------------------ Other Running Processes ------------------------ . C:\WINDOWS\system32\rundll32.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Spyware Doctor\pctsAuxs.exe C:\Program Files\Spyware Doctor\pctsSvc.exe . ************************************************************************** . Voltooingstijd: 2008-07-09 18:39:46 - machine was rebooted ComboFix-quarantined-files.txt 2008-07-09 16:39:43 ComboFix2.txt 2008-07-09 10:33:04 Pre-Run: 133,385,650,176 bytes beschikbaar Post-Run: 133,375,213,568 bytes beschikbaar 247 --- E O F --- 2008-07-09 06:52:48 Hjt logje Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 18:42:37, on 9-7-2008 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16674) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe C:\Program Files\Spyware Doctor\pctsTray.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Spyware Doctor\pctsAuxs.exe C:\Program Files\Spyware Doctor\pctsSvc.exe C:\WINDOWS\System32\alg.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\explorer.exe C:\WINDOWS\system32\notepad.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Live Search R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Live Search R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [skyTel] SkyTel.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [sW20] C:\WINDOWS\system32\sw20.exe O4 - HKLM\..\Run: [sW24] C:\WINDOWS\system32\sw24.exe O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe" O4 - HKLM\..\Run: [iSTray] "C:\Program Files\Spyware Doctor\pctsTray.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD42/JSCDL/jre/6u6-b90/jinstall-6u6-windows-i586-jc.cab?e=1215109472944&h=d1782c445abf40ce9d91335bf2ceff91/&filename=jinstall-6u6-windows-i586-jc.cab O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe -- End of file - 4961 bytes Er is nog een klein probleempje, namelijk het automatisch opstarten van de aparatuur (usb, cd ...) gebeurt niet meer, sinds vandaag doet hij het niet meer.

9 juli 2008
17 antwoorden

[OPGELOST] pc is traag

geoffke001 reageerde op geoffke001's topic in Archief Bestrijding malware & virussen

ComboFix 08-07-08.5 - GeoF 2008-07-09 12:26:20.1 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1043.18.1565 [GMT 2:00] Gestart vanuit: C:\Documents and Settings\GeoF\Bureaublad\ComboFix.exe * Nieuw herstelpunt werd aangemaakt WAARSCHUWING - DE RECOVERY CONSOLE IS NIET OP DIT SYSTEEM GEINSTALLEERD !! . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . C:\install.exe C:\WINDOWS\system32\_004207_.tmp.dll C:\WINDOWS\system32\_004208_.tmp.dll C:\WINDOWS\system32\_004209_.tmp.dll C:\WINDOWS\system32\_004210_.tmp.dll C:\WINDOWS\system32\_004217_.tmp.dll C:\WINDOWS\system32\_004218_.tmp.dll C:\WINDOWS\system32\_004219_.tmp.dll C:\WINDOWS\system32\_004220_.tmp.dll C:\WINDOWS\system32\_004222_.tmp.dll C:\WINDOWS\system32\_004223_.tmp.dll C:\WINDOWS\system32\_004226_.tmp.dll C:\WINDOWS\system32\_004227_.tmp.dll C:\WINDOWS\system32\_004230_.tmp.dll C:\WINDOWS\system32\_004231_.tmp.dll C:\WINDOWS\system32\_004233_.tmp.dll C:\WINDOWS\system32\_004236_.tmp.dll C:\WINDOWS\system32\_004237_.tmp.dll C:\WINDOWS\system32\_004242_.tmp.dll C:\WINDOWS\system32\_004244_.tmp.dll C:\WINDOWS\system32\_004247_.tmp.dll C:\WINDOWS\system32\_004249_.tmp.dll C:\WINDOWS\system32\_004250_.tmp.dll C:\WINDOWS\system32\_004251_.tmp.dll C:\WINDOWS\system32\_004252_.tmp.dll C:\WINDOWS\system32\_004253_.tmp.dll C:\WINDOWS\system32\_004256_.tmp.dll C:\WINDOWS\system32\_004257_.tmp.dll C:\WINDOWS\system32\_004258_.tmp.dll C:\WINDOWS\system32\_004259_.tmp.dll C:\WINDOWS\system32\_004260_.tmp.dll C:\WINDOWS\system32\_004265_.tmp.dll C:\WINDOWS\system32\_004267_.tmp.dll C:\WINDOWS\system32\server.exe C:\WINDOWS\system32\twunk_16.exe . (((((((((((((((((((( Bestanden Gemaakt van 2008-06-09 to 2008-07-09 )))))))))))))))))))))))))))))) . 2008-07-09 11:35 . 2008-07-09 11:35 <DIR> d-------- C:\Program Files\Malwarebytes' Anti-Malware 2008-07-09 11:35 . 2008-07-09 11:35 <DIR> d-------- C:\Documents and Settings\GeoF\Application Data\Malwarebytes 2008-07-09 11:35 . 2008-07-09 11:35 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes 2008-07-09 11:35 . 2008-07-07 17:35 34,296 --a------ C:\WINDOWS\system32\drivers\mbamcatchme.sys 2008-07-09 11:35 . 2008-07-07 17:35 17,144 --a------ C:\WINDOWS\system32\drivers\mbam.sys 2008-07-09 10:20 . 2008-07-09 10:21 <DIR> d-------- C:\Program Files\TuneUp Utilities 2008 2008-07-09 10:20 . 2008-07-09 10:20 <DIR> d-------- C:\Program Files\Common Files\Wise Installation Wizard 2008-07-09 10:20 . 2008-07-09 10:20 <DIR> d-------- C:\Documents and Settings\GeoF\Application Data\TuneUp Software 2008-07-09 10:20 . 2008-07-09 10:20 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\TuneUp Software 2008-07-09 10:20 . 2008-07-09 10:20 355,584 --a------ C:\WINDOWS\system32\TuneUpDefragService.exe 2008-07-09 10:20 . 2008-05-29 09:28 28,416 --a------ C:\WINDOWS\system32\uxtuneup.dll 2008-07-09 10:07 . 2008-07-09 10:07 <DIR> d-------- C:\Program Files\Replay Converter 2008-07-09 10:07 . 2008-07-09 11:55 <DIR> d-------- C:\Program Files\Replay AV 8 2008-07-09 10:07 . 2007-03-04 13:55 1,936,528 --a------ C:\WINDOWS\system32\ltmm15.dll 2008-07-09 10:07 . 2007-03-04 13:55 135,168 --a------ C:\WINDOWS\system32\DSKernel2.dll 2008-07-09 10:06 . 2008-07-09 10:06 <DIR> d-------- C:\Program Files\Freecorder 2008-07-09 10:06 . 2008-07-09 10:07 737,280 --a------ C:\WINDOWS\iun6002.exe 2008-07-09 10:05 . 2008-07-09 10:07 <DIR> d-------- C:\Documents and Settings\GeoF\Application Data\GetRightToGo 2008-07-09 09:50 . 2008-07-09 09:50 <DIR> d-------- C:\Program Files\LitexMedia 2008-07-08 22:35 . 2008-07-08 22:35 <DIR> d-------- C:\Program Files\Xara 2008-07-08 22:35 . 2008-07-08 22:35 31 --a------ C:\WINDOWS\hdnc32.ini 2008-07-08 18:07 . 2008-07-09 12:18 43,401 --a------ C:\WINDOWS\system32\server 2008-07-07 21:29 . 2008-07-08 16:18 151 --a------ C:\WINDOWS\PhotoSnapViewer.INI 2008-07-07 11:11 . 2008-07-07 11:13 <DIR> d-------- C:\WINDOWS\ServicePackFiles 2008-07-05 19:18 . 2008-07-07 10:15 <DIR> d-------- C:\Program Files\PKR 2008-07-05 18:38 . 2008-07-05 18:38 <DIR> d-------- C:\Program Files\ADJ Video Decoder 2008-07-05 18:38 . 2008-07-05 18:38 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Adjustables 2008-07-04 10:21 . 2008-07-04 10:21 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\FLEXnet 2008-07-04 10:19 . 2008-07-04 10:19 <DIR> d-------- C:\Program Files\Bonjour 2008-07-04 10:11 . 2008-07-04 10:11 <DIR> d-------- C:\Program Files\Common Files\Macrovision Shared 2008-07-04 10:09 . 2008-07-04 10:18 <DIR> d-------- C:\Program Files\Common Files\Adobe 2008-07-04 08:05 . 2006-03-02 14:00 221,184 --a------ C:\WINDOWS\system32\wmpns.dll 2008-07-03 20:23 . 2008-07-03 20:23 <DIR> d-------- C:\WINDOWS\Sun 2008-07-03 20:23 . 2008-07-03 20:23 <DIR> d-------- C:\Program Files\Java 2008-07-03 20:23 . 2008-03-25 02:37 69,632 --a------ C:\WINDOWS\system32\javacpl.cpl 2008-07-03 20:22 . 2008-07-03 20:22 <DIR> d-------- C:\Program Files\Common Files\Java 2008-07-03 17:51 . 2008-07-04 11:41 69 --a------ C:\WINDOWS\NeroDigital.ini 2008-07-03 14:40 . 2008-04-23 06:22 6,066,176 -----c--- C:\WINDOWS\system32\dllcache\ieframe.dll 2008-07-03 14:40 . 2007-04-17 11:32 2,455,488 -----c--- C:\WINDOWS\system32\dllcache\ieapfltr.dat 2008-07-03 14:40 . 2007-03-08 07:11 1,032,192 -----c--- C:\WINDOWS\system32\dllcache\ieframe.dll.mui 2008-07-03 14:40 . 2008-04-23 06:22 459,264 -----c--- C:\WINDOWS\system32\dllcache\msfeeds.dll 2008-07-03 14:40 . 2008-04-23 06:22 383,488 -----c--- C:\WINDOWS\system32\dllcache\ieapfltr.dll 2008-07-03 14:40 . 2008-04-23 06:22 267,776 -----c--- C:\WINDOWS\system32\dllcache\iertutil.dll 2008-07-03 14:40 . 2008-04-23 06:22 63,488 -----c--- C:\WINDOWS\system32\dllcache\icardie.dll 2008-07-03 14:40 . 2008-04-23 06:22 52,224 -----c--- C:\WINDOWS\system32\dllcache\msfeedsbs.dll 2008-07-03 14:40 . 2008-04-22 09:39 13,824 -----c--- C:\WINDOWS\system32\dllcache\ieudinit.exe 2008-07-02 22:17 . 2008-07-02 22:17 <DIR> d-------- C:\Program Files\Trend Micro 2008-07-02 22:06 . 2008-07-02 22:06 <DIR> d-------- C:\Program Files\Windows Media Connect 2 2008-07-02 22:05 . 2008-07-02 22:05 <DIR> d-------- C:\WINDOWS\system32\drivers\UMDF 2008-07-02 22:05 . 2008-07-02 22:06 <DIR> d-------- C:\b5d0e36c605c8c005da0d96d4085 2008-07-02 20:36 . 2008-07-02 20:36 0 --a------ C:\WINDOWS\nsreg.dat 2008-07-02 20:31 . 2008-07-07 11:12 <DIR> d-------- C:\WINDOWS\system32\nl-nl 2008-07-02 20:31 . 2008-07-07 11:12 <DIR> d-------- C:\WINDOWS\system32\nl 2008-07-02 20:31 . 2008-07-07 11:12 <DIR> d-------- C:\WINDOWS\system32\bits 2008-07-02 20:31 . 2008-07-07 11:12 <DIR> d-------- C:\WINDOWS\l2schemas 2008-07-02 20:25 . 2008-07-07 11:07 <DIR> d-------- C:\WINDOWS\EHome 2008-07-02 18:08 . 2008-07-02 18:08 <DIR> d-------- C:\Program Files\BearShare 2008-07-02 18:08 . 2008-07-08 09:41 <DIR> d-------- C:\My Downloads 2008-07-02 17:34 . 2008-07-02 17:34 <DIR> d-------- C:\Program Files\Common Files\PC Tools 2008-07-02 17:34 . 2008-07-02 17:34 <DIR> d-------- C:\Documents and Settings\GeoF\Application Data\PC Tools 2008-07-02 17:34 . 2008-07-02 17:34 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\PC Tools 2008-07-02 17:34 . 2008-04-10 15:14 159,880 --a------ C:\WINDOWS\system32\drivers\pctfw2.sys 2008-07-02 17:34 . 2007-12-10 13:53 81,288 --a------ C:\WINDOWS\system32\drivers\iksyssec.sys 2008-07-02 17:34 . 2007-12-10 13:53 66,952 --a------ C:\WINDOWS\system32\drivers\iksysflt.sys 2008-07-02 17:34 . 2008-02-01 11:55 42,376 --a------ C:\WINDOWS\system32\drivers\ikfilesec.sys 2008-07-02 17:34 . 2007-12-10 13:53 29,576 --a------ C:\WINDOWS\system32\drivers\kcom.sys 2008-07-02 17:08 . 2008-07-09 12:29 <DIR> d-a------ C:\Documents and Settings\All Users\Application Data\TEMP 2008-07-02 16:56 . 2008-07-02 17:35 51,355 --a------ C:\WINDOWS\system32\muzika.xm 2008-07-02 16:10 . 2008-07-09 12:22 <DIR> d-------- C:\Program Files\Spyware Doctor 2008-07-02 10:15 . 2008-07-02 10:15 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\SupportSoft 2008-07-02 10:02 . 2008-07-02 10:02 <DIR> d-------- C:\Program Files\Common Files\SupportSoft 2008-07-01 19:49 . 2008-07-01 19:49 <DIR> d-------- C:\Program Files\GameSpy 2008-07-01 19:48 . 2008-07-02 17:01 <DIR> d-------- C:\WINDOWS\system32\URTTemp 2008-07-01 19:47 . 2008-07-02 22:05 <DIR> d-------- C:\WINDOWS\system32\LogFiles 2008-07-01 19:41 . 2008-07-01 19:41 <DIR> d-------- C:\Program Files\Electronic Arts 2008-07-01 10:09 . 2008-07-02 18:10 <DIR> d-------- C:\Program Files\K-Lite Codec Pack 2008-07-01 10:09 . 2008-07-01 10:09 <DIR> d-------- C:\Documents and Settings\GeoF\Application Data\Media Player Classic 2008-07-01 10:09 . 2006-09-24 17:11 389,120 --a------ C:\WINDOWS\system32\lameACM.acm 2008-07-01 10:09 . 2007-09-21 02:52 118,784 --a------ C:\WINDOWS\system32\ac3acm.acm 2008-07-01 10:09 . 2007-10-03 17:03 414 --a------ C:\WINDOWS\system32\lame_acm.xml 2008-06-29 19:07 . 2008-06-29 19:07 <DIR> d-------- C:\Program Files\Gabest 2008-06-29 15:45 . 2008-06-29 19:04 <DIR> d-------- C:\Documents and Settings\GeoF\Application Data\Ahead 2008-06-29 15:39 . 2008-06-29 15:39 <DIR> d-------- C:\Program Files\Nero 2008-06-29 15:39 . 2008-07-02 22:39 <DIR> d-------- C:\Program Files\Common Files\Ahead 2008-06-29 11:58 . 2008-07-03 17:51 <DIR> d-------- C:\Program Files\Extension Changer 2008-06-28 12:54 . 2008-06-28 12:54 <DIR> d--hs---- C:\Documents and Settings\GeoF\UserData 2008-06-28 12:12 . 2008-05-08 16:02 203,136 -----c--- C:\WINDOWS\system32\dllcache\rmcast.sys 2008-06-28 11:51 . 2007-07-30 19:19 271,224 --a------ C:\WINDOWS\system32\mucltui.dll 2008-06-28 11:51 . 2007-07-30 19:19 207,736 --a------ C:\WINDOWS\system32\muweb.dll 2008-06-28 11:51 . 2007-07-30 19:18 30,072 --a------ C:\WINDOWS\system32\mucltui.dll.mui 2008-06-28 11:45 . 2008-06-28 12:53 <DIR> d-------- C:\Documents and Settings\GeoF\Contacts 2008-06-27 21:30 . 2008-06-28 11:43 <DIR> d-------- C:\Program Files\Windows Live 2008-06-27 21:30 . 2008-06-28 11:43 <DIR> d--hsc--- C:\Program Files\Common Files\WindowsLiveInstaller 2008-06-27 21:30 . 2008-06-27 21:30 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\WLInstaller 2008-06-27 21:16 . 2008-07-09 11:52 53 --a------ C:\biosinfo 2008-06-27 21:15 . 2007-04-12 17:44 115,830 --a------ C:\WINDOWS\system32\nvapps.xml 2008-06-27 21:13 . 2008-06-27 21:13 13,646 --a------ C:\WINDOWS\system32\wpa.bak 2008-06-27 21:09 . 2008-06-27 21:09 <DIR> d-------- C:\WINDOWS\system32\Lang 2008-06-27 21:09 . 2008-06-27 21:09 940,794 --a------ C:\WINDOWS\system32\LoopyMusic.wav 2008-06-27 21:09 . 2008-06-27 21:09 146,650 --a------ C:\WINDOWS\system32\BuzzingBee.wav 2008-06-27 21:08 . 2008-06-27 21:08 <DIR> d-------- C:\WINDOWS\system32\RTCOM 2008-06-27 21:08 . 2008-04-14 19:03 129,536 --a------ C:\WINDOWS\system32\ksproxy.ax 2008-06-27 21:08 . 2006-08-01 09:02 49,152 -r------- C:\WINDOWS\system32\ChCfg.exe 2008-06-27 21:08 . 2007-08-10 20:52 26,488 --a------ C:\WINDOWS\system32\spupdsvc.exe 2008-06-27 21:08 . 2008-04-14 19:02 4,096 --a------ C:\WINDOWS\system32\ksuser.dll 2008-06-27 21:07 . 2008-06-27 21:07 <DIR> d-------- C:\Program Files\Realtek 2008-06-27 21:07 . 2008-06-27 21:07 <DIR> d-------- C:\Documents and Settings\GeoF\Application Data\InstallShield 2008-06-27 21:05 . 2008-06-28 11:44 <DIR> d----c--- C:\WINDOWS\system32\DRVSTORE 2008-06-27 21:05 . 2008-06-27 21:05 <DIR> d-------- C:\Program Files\DIFX 2008-06-27 21:05 . 2006-06-18 23:37 43,520 --a------ C:\WINDOWS\system32\drivers\AmdK8.sys 2008-06-27 21:04 . 2008-06-27 21:07 <DIR> d--h----- C:\Program Files\InstallShield Installation Information 2008-06-27 21:04 . 2008-06-27 21:04 <DIR> d-------- C:\Program Files\Common Files\InstallShield 2008-06-27 21:03 . 2008-07-04 10:19 <DIR> d--h----- C:\Documents and Settings\GeoF\Sjablonen 2008-06-27 21:03 . 2008-07-09 10:23 <DIR> dr-h----- C:\Documents and Settings\GeoF\Onlangs geopend 2008-06-27 21:03 . 2008-06-27 22:50 <DIR> d--h----- C:\Documents and Settings\GeoF\Netwerkprinteromgeving 2008-06-27 21:03 . 2008-07-09 10:05 <DIR> dr------- C:\Documents and Settings\GeoF\Mijn documenten 2008-06-27 21:03 . 2008-06-27 22:50 <DIR> dr------- C:\Documents and Settings\GeoF\Menu Start 2008-06-27 21:03 . 2008-07-08 13:49 <DIR> dr------- C:\Documents and Settings\GeoF\Favorieten 2008-06-27 21:03 . 2008-07-09 12:22 <DIR> d-------- C:\Documents and Settings\GeoF\Bureaublad 2008-06-27 21:03 . 2008-07-09 11:51 <DIR> d-------- C:\Documents and Settings\GeoF 2008-06-27 21:02 . 2008-06-27 21:02 <DIR> d---s---- C:\WINDOWS\system32\Microsoft 2008-06-27 21:02 . 2008-07-09 11:51 <DIR> d--hs---- C:\Documents and Settings\LocalService 2008-06-27 21:01 . 2008-07-09 11:51 <DIR> d--hs---- C:\Documents and Settings\NetworkService 2008-06-27 21:01 . 2008-06-27 21:01 8,192 --a------ C:\WINDOWS\REGLOCS.OLD 2008-06-27 21:00 . 2008-06-27 20:56 <DIR> d--h----- C:\WINDOWS\system32\config\systemprofile\Sjablonen . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-06-27 19:07 315,392 ----a-w C:\WINDOWS\HideWin.exe 2008-06-27 18:59 --------- d-----w C:\Program Files\microsoft frontpage 2008-06-20 11:51 361,600 ----a-w C:\WINDOWS\system32\drivers\tcpip.sys 2008-06-20 11:40 138,496 ----a-w C:\WINDOWS\system32\drivers\afd.sys 2008-06-20 11:08 225,856 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys 2008-06-14 17:36 272,640 ------w C:\WINDOWS\system32\drivers\bthport.sys 2008-04-14 17:03 70,144 ----a-w C:\WINDOWS\notepad.exe 2008-04-14 17:03 32,866 ------w C:\WINDOWS\slrundll.exe 2008-04-14 17:03 287,232 ----a-w C:\WINDOWS\winhlp32.exe 2008-04-14 17:03 153,088 ----a-w C:\WINDOWS\regedit.exe 2008-04-14 17:03 10,752 ----a-w C:\WINDOWS\hh.exe 2008-04-14 17:02 50,688 ----a-w C:\WINDOWS\twain_32.dll 2008-04-14 17:02 1,037,312 ----a-w C:\WINDOWS\SET480.tmp 2008-04-14 17:02 1,037,312 ----a-w C:\WINDOWS\explorer.exe 2007-03-09 07:12 27,648 --sha-w C:\WINDOWS\system32\AVSredirect.dll . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . REGEDIT4 *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2008-04-14 19:02 15360] "MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" [2007-10-18 11:34 5724184] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2006-06-01 13:32 94208] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-04-12 17:44 8429568] "SW20"="C:\WINDOWS\system32\sw20.exe" [2006-12-15 04:58 208896] "SW24"="C:\WINDOWS\system32\sw24.exe" [2006-12-15 04:58 69632] "NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2007-04-12 17:44 81920] "NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 16:40 155648] "SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe" [2008-03-25 04:28 144784] "ISTray"="C:\Program Files\Spyware Doctor\pctsTray.exe" [2008-04-10 15:14 1107848] "RTHDCPL"="RTHDCPL.EXE" [2007-01-30 12:54 16116224 C:\WINDOWS\RTHDCPL.exe] "SkyTel"="SkyTel.EXE" [2006-05-16 12:04 2879488 C:\WINDOWS\SkyTel.exe] "nwiz"="nwiz.exe" [2007-04-12 17:44 1626112 C:\WINDOWS\system32\nwiz.exe] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 19:02 15360] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "msacm.iac2"= C:\PROGRA~1\REPLAY~1\iac25_32.ax "VIDC.YV12"= yv12vfw.dll [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Notification Packages REG_MULTI_SZ scecli scecli [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "C:\\Program Files\\Messenger\\msmsgs.exe"= "C:\\Program Files\\BearShare\\BearShare.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "C:\\Documents and Settings\\GeoF\\Bureaublad\\Nieuwe map\\Poison Ivy 2.3.2.exe"= "C:\\Program Files\\Bonjour\\mDNSResponder.exe"= "C:\\Documents and Settings\\GeoF\\Bureaublad\\Vietcong\\vietcong.exe"= "C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"= R1 pctfw2;pctfw2;C:\WINDOWS\system32\drivers\pctfw2.sys [2008-04-10 15:14] R2 UxTuneUp;TuneUp Thema-uitbreiding;C:\WINDOWS\System32\svchost.exe [2008-04-14 19:03] S3 SetupNTGLM7X;SetupNTGLM7X;E:\NTGLM7X.sys [] S3 TuneUp.Defrag;TuneUp Drive Defrag Service;C:\WINDOWS\System32\TuneUpDefragService.exe [2008-07-09 10:20] HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs UxTuneUp [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{321437dd-4913-11dd-8abb-001a4d7bd29e}] \Shell\AutoRun\command - setup.exe [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\special] C:\WINDOWS\system32\server.exe . Inhoud van de 'Gedeelde Taken' map "2008-07-09 10:30:44 C:\WINDOWS\Tasks\Easy Onderhoud.job" - C:\Program Files\TuneUp Utilities 2008\OneClickStarter.exe . ************************************************************************** catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-07-09 12:30:50 Windows 5.1.2600 Service Pack 3 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . ------------------------ Other Running Processes ------------------------ . C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Spyware Doctor\pctsAuxs.exe C:\Program Files\Spyware Doctor\pctsSvc.exe C:\WINDOWS\system32\rundll32.exe . ************************************************************************** . Voltooingstijd: 2008-07-09 12:33:03 - machine was rebooted ComboFix-quarantined-files.txt 2008-07-09 10:32:59 Pre-Run: 133,436,084,224 bytes beschikbaar Post-Run: 133,397,118,976 bytes beschikbaar 267 --- E O F --- 2008-07-09 06:52:48

9 juli 2008
17 antwoorden

[OPGELOST] pc is traag

geoffke001 reageerde op geoffke001's topic in Archief Bestrijding malware & virussen

pc loopt ook regelmatig vast.

9 juli 2008
17 antwoorden

[OPGELOST] pc is traag

geoffke001 reageerde op geoffke001's topic in Archief Bestrijding malware & virussen

Malwarebytes' Anti-Malware 1.20 Database versie: 933 Windows 5.1.2600 Service Pack 3 11:40:47 9-7-2008 mbam-log-7-9-2008 (11-40-47).txt Scan type: Snelle Scan Objecten gescand: 38519 Verstreken tijd: 1 minute(s), 41 second(s) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 0 Registerwaarden geïnfecteerd: 1 Registerdata bestanden geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 2 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige items gevonden) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige items gevonden) Registersleutels geïnfecteerd: (Geen kwaadaardige items gevonden) Registerwaarden geïnfecteerd: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\WinSys2 (Trojan.Agent) -> Quarantined and deleted successfully. Registerdata bestanden geïnfecteerd: (Geen kwaadaardige items gevonden) Mappen geïnfecteerd: (Geen kwaadaardige items gevonden) Bestanden geïnfecteerd: C:\Documents and Settings\GeoF\Local Settings\Temp\nsz30.tmp\System.dll (Trojan.Downloader) -> Quarantined and deleted successfully. C:\WINDOWS\system32\WinSys2.exe (Trojan.Agent) -> Delete on reboot. hjt logje Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 11:41:43, on 9-7-2008 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16674) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Spyware Doctor\pctsAuxs.exe C:\Program Files\Spyware Doctor\pctsSvc.exe C:\Program Files\Spyware Doctor\pctsTray.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\system32\winsys2.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe C:\WINDOWS\System32\alg.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe C:\WINDOWS\system32\NOTEPAD.EXE C:\Program Files\Trend Micro\HijackThis\HijackThis.exe C:\WINDOWS\system32\wbem\wmiprvse.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [skyTel] SkyTel.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [sW20] C:\WINDOWS\system32\sw20.exe O4 - HKLM\..\Run: [sW24] C:\WINDOWS\system32\sw24.exe O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe" O4 - HKLM\..\Run: [iSTray] "C:\Program Files\Spyware Doctor\pctsTray.exe" O4 - HKLM\..\Run: [special] C:\WINDOWS\system32\server.exe O4 - HKLM\..\Run: [Malwarebytes Anti-Malware Reboot] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD42/JSCDL/jre/6u6-b90/jinstall-6u6-windows-i586-jc.cab?e=1215109472944&h=d1782c445abf40ce9d91335bf2ceff91/&filename=jinstall-6u6-windows-i586-jc.cab O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software GmbH - C:\WINDOWS\System32\TuneUpDefragService.exe -- End of file - 5556 bytes

9 juli 2008
17 antwoorden

[OPGELOST] pc is traag

geoffke001 plaatste een topic in Archief Bestrijding malware & virussen

bij het uitvouwen van een balkje doet hij dat traag, eerst komt het wit en dan pas komt er iets in. Logje Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 11:01:41, on 7-7-2008 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16674) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\csrss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Bonjour\mDNSResponder.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Spyware Doctor\pctsAuxs.exe C:\Program Files\Spyware Doctor\pctsSvc.exe C:\Program Files\Spyware Doctor\pctsTray.exe C:\WINDOWS\system32\server.exe C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\system32\winsys2.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe C:\WINDOWS\System32\alg.exe C:\Program Files\Windows Live\Messenger\usnsvc.exe C:\Program Files\WinRAR\WinRAR.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe C:\WINDOWS\system32\wbem\wmiprvse.exe C:\Program Files\Internet Explorer\iexplore.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Live Search R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Live Search R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [skyTel] SkyTel.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [sW20] C:\WINDOWS\system32\sw20.exe O4 - HKLM\..\Run: [sW24] C:\WINDOWS\system32\sw24.exe O4 - HKLM\..\Run: [WinSys2] C:\WINDOWS\system32\winsys2.exe O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [iSTray] "C:\Program Files\Spyware Doctor\pctsTray.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_06\bin\jusched.exe" O4 - HKLM\..\Run: [special] C:\WINDOWS\system32\server.exe O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_06\bin\ssv.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} (Java Runtime Environment 1.6.0) - http://dl8-cdn-01.sun.com/s/ESD42/JSCDL/jre/6u6-b90/jinstall-6u6-windows-i586-jc.cab?e=1215109472944&h=d1782c445abf40ce9d91335bf2ceff91/&filename=jinstall-6u6-windows-i586-jc.cab O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe -- End of file - 5592 bytes

7 juli 2008
17 antwoorden

port forwarding

geoffke001 reageerde op geoffke001's topic in Archief Hardware algemeen

dus je bedoelt dat ik in mijn programma de poorten kan open zetten? het is voor VNC poort = TCP 5500, 580, 5900

13 juni 2008
30 antwoorden
- hardware
- hierbij
- (en 5 meer)
  Getagd met:
  - hardware
  - hierbij
  - open
  - probleem
  - router
  - scan
  - server

port forwarding

geoffke001 reageerde op geoffke001's topic in Archief Hardware algemeen

dus, ik heb een adsl modem/router SNA6600/18 ik zou daar graag poorten willen open zetten, maar gelijk welke poort ik openzet, is ze niet te zien als ik ze scan. of kan je dat op een andere manier weten dat je poort goed openstaat. dank u

12 juni 2008
30 antwoorden
- hardware
- hierbij
- (en 5 meer)
  Getagd met:
  - hardware
  - hierbij
  - open
  - probleem
  - router
  - scan
  - server

port forwarding

geoffke001 reageerde op geoffke001's topic in Archief Hardware algemeen

neen het is niet opgelost, maar ik moest van serge50 zeggen dat dit opgelost is, omdat ik een nieuw topic moest openen met de juist gegevens. kan jij me anders helpen?