Asus

Mogelijk is Offliberty (klik er op) dat wat je zoekt ?... Alles gebeurt online, je hoeft dus zelfs geen software te installeren...je kopieert in YouTube de link, plak die in Offliberty en klik dan op Off...je kan dan kiezen voor geluid (mp3) of voor het filmpje, dit vind je nadien terug in je map downloads.

Beste gompie, ik kwam deze vraag ook hier tegen...het openen van meerdere topics over hetzelfde probleem leidt enkel tot verwarring en verlies van het overzicht. Gelieve ook de forumregels (klik er op) door te nemen ivm het meermaals posten. Dit topic wordt dan ook hier afgesloten.

Da's een eerder mager resultaat, zeker voor een bekabelde verbinding én in vergelijking met de snelheid die je zou moeten behalen...nam je al eens contact op met je provider ivm dit probleem ?...

Mijn denkpiste was om de eRecovery software te verwijderen en opnieuw te installeren...maar, Acer biedt die software helaas niet aan als download voor je Aspire M7721...daar lopen we dus vast. Anderzijds kan je dan nog wel je recovery opstarten door de combinatie van de toetsen ALT+F10 in te drukken tijdens het (her)opstarten, check je handleiding eens voor de correcte procedure...maar, als je een recovery op die manier uitvoert (idem ook via de DVD's) dan ga je systeem terugbrengen naar zijn fabrieksintellingen...concreet betekent dit dan ook dat je (wanneer geïnstalleerd) ook je dualboot verwijdert op deze manier...dus, hier lopen we ook vast. Beste optie is hier mijns inziens dat je een volledige systeemkopie maakt, bijvoorbeeld met Paragon (klik er op). Op die manier heb je een veilige kopie van je HDD...bovendien kan je dan meerdere systeemkopies maken als back-up, ook nadat je je dualboot hebt geïnstalleerd, zo zit je altijd safe én hoef je geen volledige herinstallatie uit te voeren in geval van worst case scenario.

Dat zou best kunnen op dit tijdstip... ;-) Het is niet echt 'vroeg' meer te noemen op dit moment...iedereen die hier een handje toesteekt doet dat op vrijwillige basis...en, ja : af en toe hebben mensen al eens een paar uurtjes slaap nodig. Je dient niet de aanhalingstekens in te voeren, maar enkel wat tussen de aanhalingstekens wordt vermeld. Ik sloot eerder deze avond reeds dit topic van je af wegens dubbelpost, Clarkie vroeg je nadien hier opnieuw om niet telkens nieuwe topics te openen over hetzelfde probleem...gelieve dus je vragen in het reeds lopende topic te formuleren. Dit topic wordt dan ook hier afgesloten.

Heeft dit te maken met deze tip van Broekmanium in je andere topic ?...

Bedoel je hiermee de accenten uit het Frans, accent grave en accent aigu ?...

Kijk eens of het terugzetten van een herstelpunt (klik er op) je problemen oplost ?...

Clarkie, snippo opende twee topic over dezelfde problematiek...ik heb het andere topic afgesloten wegens dubbelpost, je kan het hier vinden. Het valt me op dat het over een Windows XP gaat met SP1.

Ik kwam deze vraag ook hier tegen...dubbel posten leidt enkel tot verwarring, ook voor jezelf. Dit topic wordt dan ook afgesloten wegens dubbelpost.

Deed je al een Speedtest en vergeleek je het resultaat met datgene dat je zou moeten behalen volgens je abonnementsformule bij je provider ?... Je kan een Speedtest uitvoeren als je hier klikt. Voer ook eens een twee Speedtest uit maar met een bekabelde verbinding.

Job finished... ;-) ComboFix succesvol verwijderd, lijntjes keurig gefixt. Norton stelde voor om (gratis) te upgraden naar versie 2012, licentie loopt nog 112 dagen...een volledige systeemscan uitgevoerd : clean. Meteen ook Norton ontmaskert als dé grote opstartvertrager en systeembelaster...rond de jaarwisseling heb ik dus mogelijk een gratis en véél minder belastend cadeautje in petto : Avast...xD Na een laatste opschoonactie met Ccleaner ook een nieuw herstelpuntje aangemaakt en de besmette herstelpunten verwijderd. Bedankt voor de snelle service en keurige opvolging !... Slotje.

Deed je al een Speedtest en vergeleek je het resultaat met datgene dat je zou moeten behalen volgens je abonnementsformule bij je provider ?... Je kan een Speedtest uitvoeren als je hier klikt. Mocht je draadloos verbonden zijn met het internet, voer dan een tweede Speedtest uit maar met een bekabelde verbinding.

Bedankt voor de feedback en het plaatsen van de oplossing... Als je binnen dit topic verder geen vragen of problemen meer hebt, mag je dit onderwerp afsluiten door een klik op de knop +Markeer als opgelost die je links onderaan kan terugvinden…zo blijft het voor iedereen overzichtelijk. Uiteraard kan je in geval van nieuwe/andere problemen steeds weer een nieuw topic openen… ;-)

Check die opstarters (Asus-software) eens in msconfig zoals aangegeven...normaliter gaat daar ook ALU of Asus Live Update tussen zitten, die durft wel al eens voor de (on)nodige belasting te zorgen. Op mijn systeem (Asus N61Jv) zijn dus enkel die 3 geïnstalleerd uit de vorige post...wil je nog meer info over die voorgeïnstalleerde Asus-software dan kan je die hier bekijken. Ik weet niet welke andere software je nog hebt geïnstalleerd...die kan je ook bekijken in msconfig en er daar nog eventueel uit je opstarters halen. Ben je daar niet ervaren in dan kan je veilig aan de slag met Soluto (klik er op). Een anti-virus kan ook voor de nodige belasting zorgen, de ene is lichter / zwaarder dan de andere. Mogelijk lossen deze acties, samen met de opruimbeurt die Kurtt reeds voorstelde in één klap ook je verkenner-probleem op.

Voor alle duidelijkheid : van waar is jouw geïnstalleerde MS Office 2010 afkomstig ?...

Nadat je Ccleaner hebt laten runnen en je je laptop hebt herstart mag je het volgende uitvoeren : Klik op de Windowsknop links onderaan je scherm en typ in het zoekvenster msconfig in...nadien klik je bovenaan op msconfig (zie afbeelding). Er opent zich een nieuw (kleiner) scherm : Systeemconfiguratie...in dit scherm ga je naar het tabblad Opstarten. Nu zoek je alle software van Asus...vink (enkel van de Asus-software !) alles uit behalve : ATKOSD2, ATK Media en ATK Hotkey...klik nadien eerst op toepassen, dan pas op ok. Nadien wordt er gevraagd om je laptop te herstarten. Indien dit geen verbetering heeft opgeleverd kan je nog twee dingen doen. Het eerste is een zogenaamde recovery...hierdoor zet je je laptop terug naar de fabrieksinstellingen, dus hou er rekening mee dat je eerst al je persoonlijke bestanden, documenten, etc. dient veilig te stellen op een externe harde schijf. De recovery start je op door tijdens het (her)opstarten meteen op de F9-toets te tokkelen, dus voor Windows opstart. Meteen na de recovery ga je dan opnieuw naar msconfig en voer je opnieuw het bovenstaande uit, dus voor de installatie van andere software. Lost dit alles het probleem nog niet op dan zitten we bij de laatste stap : de laptop aanmelden voor een herstelling / nazicht onder garantie...dit kan je als je hier klikt. Omschrijf bondig (max. 150 karakters) de problematiek en de reeds ondernomen stappen. Asus Support neemt via mail met jou contact op, mogelijk met nog een paar uit te voeren handelingen, mogelijk met een toelating om het toestel terug te sturen : RMA. Dit gebeurt kosteloos : toestel wordt aan huis opgehaald en terug afgeleverd. Mijn persoonlijke ervaring is dat dit veel sneller gaat als je dat rechtstreeks doet dan met tussenkomst van de PC-boer. Het eerste wat Asus Support je gaat voorstellen om het probleem op te lossen is een recovery, dus : die dien je zeker uit te voeren alvorens je RMA aanvraagt. Succes !

Nieuw HijackThis-logje : Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 12:27:06, on 20/10/2011 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: c:\Program Files\Bioscrypt\VeriSoft\Bin\AsGHost.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\Dwm.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Program Files\HP\QuickPlay\QPService.exe C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe C:\Windows\System32\rundll32.exe C:\Program Files\Epson Software\Event Manager\EEventManager.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe C:\Windows\Explorer.exe C:\Windows\system32\conime.exe C:\Windows\system32\SearchFilterHost.exe F:\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Zita - het Web van Z tot A - Nieuws | Entertainment | Lifestyle | Fun R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file) O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: VeriSoft Access Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - c:\Program Files\Bioscrypt\VeriSoft\Bin\ItIEAddIn.dll O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Common Files\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe" O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start O4 - HKLM\..\Run: [HP Health Check Scheduler] C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe O4 - HKLM\..\Run: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe O4 - HKLM\..\Run: [WAWifiMessage] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe c:\PROGRA~1\BIOSCR~1\VeriSoft\Bin\ASTSVCC.dll,RegisterModule O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll" O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [EEventManager] "C:\Program Files\Epson Software\Event Manager\EEventManager.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O20 - AppInit_DLLs: C:\Windows\System32\APSHook.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Com4Qlb - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\isPwdSvc.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: Planner voor Automatische LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe -- End of file - 8688 bytes Nieuw ComboFix-logje : ComboFix 11-10-19.06 - Nick 20/10/2011 12:02:09.2.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.32.1043.18.1982.1067 [GMT 2:00] Gestart vanuit: c:\users\Nick\Desktop\ComboFix.exe gebruikte Opdracht switches :: c:\users\Nick\Desktop\CFScript.txt SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((( Bestanden Gemaakt van 2011-09-20 to 2011-10-20 )))))))))))))))))))))))))))))) . . 2011-10-20 10:13 . 2011-10-20 10:13 -------- d-----w- c:\users\Tiny\AppData\Local\temp 2011-10-20 10:13 . 2011-10-20 10:13 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-10-20 09:52 . 2011-10-20 09:52 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{654652BE-6B3B-4875-84A4-46BF389E9FDC}\offreg.dll 2011-10-20 05:45 . 2011-10-20 05:45 -------- d-----w- c:\programdata\LightScribe 2011-10-19 20:02 . 2011-10-19 20:02 -------- d-----w- c:\program files\ESET 2011-10-19 19:57 . 2011-10-20 10:14 -------- d-----w- c:\users\Nick\AppData\Local\temp 2011-10-19 16:17 . 2011-03-12 21:55 876032 ----a-w- c:\windows\system32\XpsPrint.dll 2011-10-19 14:52 . 2011-10-19 14:52 -------- d-----w- c:\users\Default\AppData\Roaming\hpqLog 2011-10-19 14:50 . 2011-10-19 14:50 -------- d-----w- c:\windows\QLB 2011-10-19 14:13 . 2011-10-19 14:13 -------- d-----w- c:\program files\Microsoft.NET 2011-10-19 13:34 . 2011-10-19 13:34 -------- d-----w- c:\program files\CCleaner 2011-10-19 13:30 . 2011-10-19 13:30 -------- d-----w- c:\users\Nick\AppData\Roaming\Malwarebytes 2011-10-19 13:30 . 2011-10-19 13:30 -------- d-----w- c:\programdata\Malwarebytes 2011-10-19 13:30 . 2011-10-19 13:30 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2011-10-19 13:30 . 2011-08-31 15:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-10-19 13:17 . 2011-10-19 13:17 -------- d-----w- c:\program files\Windows Portable Devices 2011-10-19 13:13 . 2009-09-10 02:00 92672 ----a-w- c:\windows\system32\UIAnimation.dll 2011-10-19 13:13 . 2009-09-10 02:01 3023360 ----a-w- c:\windows\system32\UIRibbon.dll 2011-10-19 13:13 . 2009-09-10 02:00 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll 2011-10-19 13:06 . 2011-10-19 13:06 979456 ----a-w- c:\windows\system32\MFH264Dec.dll 2011-10-19 13:05 . 2011-10-19 13:05 974848 ----a-w- c:\windows\system32\WindowsCodecs.dll 2011-10-19 13:05 . 2011-10-19 13:05 519680 ----a-w- c:\windows\system32\d3d11.dll 2011-10-19 13:05 . 2011-10-19 13:05 321024 ----a-w- c:\windows\system32\PhotoMetadataHandler.dll 2011-10-19 13:05 . 2011-10-19 13:05 189440 ----a-w- c:\windows\system32\WindowsCodecsExt.dll 2011-10-19 12:55 . 2011-09-06 13:30 2043392 ----a-w- c:\windows\system32\win32k.sys 2011-10-19 12:55 . 2011-06-17 16:03 375808 ----a-w- c:\windows\system32\winsrv.dll 2011-10-19 12:55 . 2011-07-11 13:25 2048 ----a-w- c:\windows\system32\tzres.dll 2011-10-19 12:54 . 2011-08-25 16:15 555520 ----a-w- c:\windows\system32\UIAutomationCore.dll 2011-10-19 12:54 . 2011-08-25 16:14 563712 ----a-w- c:\windows\system32\oleaut32.dll 2011-10-19 12:54 . 2011-08-25 16:14 238080 ----a-w- c:\windows\system32\oleacc.dll 2011-10-19 12:54 . 2011-08-25 13:31 4096 ----a-w- c:\windows\system32\oleaccrc.dll 2011-10-19 12:53 . 2011-01-20 16:08 160768 ----a-w- c:\windows\system32\d3d10_1.dll 2011-10-19 12:53 . 2011-01-20 14:12 1172480 ----a-w- c:\windows\system32\d3d10warp.dll 2011-10-19 12:53 . 2011-01-20 13:47 683008 ----a-w- c:\windows\system32\d2d1.dll 2011-10-19 12:53 . 2011-02-22 14:13 288768 ----a-w- c:\windows\system32\XpsGdiConverter.dll 2011-10-19 12:53 . 2011-02-22 13:33 1068544 ----a-w- c:\windows\system32\DWrite.dll 2011-10-19 12:53 . 2011-02-22 13:33 797696 ----a-w- c:\windows\system32\FntCache.dll 2011-10-19 12:53 . 2011-01-20 16:08 219648 ----a-w- c:\windows\system32\d3d10_1core.dll 2011-10-19 12:53 . 2011-01-20 16:08 189952 ----a-w- c:\windows\system32\d3d10core.dll 2011-10-19 12:53 . 2011-01-20 16:08 1029120 ----a-w- c:\windows\system32\d3d10.dll 2011-10-19 12:53 . 2011-01-20 14:28 1554432 ----a-w- c:\windows\system32\xpsservices.dll 2011-10-19 12:53 . 2011-01-20 14:11 486400 ----a-w- c:\windows\system32\d3d10level9.dll 2011-10-19 12:53 . 2011-01-20 14:25 847360 ----a-w- c:\windows\system32\OpcServices.dll 2011-10-19 12:48 . 2011-09-14 10:51 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat 2011-10-19 12:48 . 2011-06-20 08:54 3602832 ----a-w- c:\windows\system32\ntkrnlpa.exe 2011-10-19 12:48 . 2011-06-20 08:54 3550096 ----a-w- c:\windows\system32\ntoskrnl.exe 2011-10-19 12:48 . 2011-06-17 20:13 905104 ----a-w- c:\windows\system32\drivers\tcpip.sys 2011-10-19 12:21 . 2011-07-29 16:01 293376 ----a-w- c:\windows\system32\psisdecd.dll 2011-10-19 12:21 . 2011-07-29 16:01 217088 ----a-w- c:\windows\system32\psisrndr.ax 2011-10-19 12:21 . 2011-07-29 16:00 57856 ----a-w- c:\windows\system32\MSDvbNP.ax 2011-10-19 12:21 . 2011-07-29 16:00 69632 ----a-w- c:\windows\system32\Mpeg2Data.ax 2011-10-19 11:34 . 2011-10-19 11:35 -------- d-----w- c:\windows\system32\ca-ES 2011-10-19 11:34 . 2011-10-19 11:35 -------- d-----w- c:\windows\system32\eu-ES 2011-10-19 11:34 . 2011-10-19 11:35 -------- d-----w- c:\windows\system32\vi-VN 2011-10-19 11:05 . 2011-03-03 15:40 28672 ----a-w- c:\windows\system32\Apphlpdm.dll 2011-10-19 11:05 . 2011-03-03 13:35 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll 2011-10-19 10:58 . 2011-10-19 10:58 -------- d-----w- c:\windows\system32\EventProviders 2011-10-19 10:21 . 2008-05-27 04:59 18904 ----a-w- c:\windows\system32\StructuredQuerySchemaTrivial.bin 2011-10-19 10:05 . 2009-04-11 05:03 12240896 ----a-w- c:\windows\system32\NlsLexicons0007.dll 2011-10-19 10:05 . 2009-04-11 06:28 1081344 ----a-w- c:\windows\system32\SLCExt.dll 2011-10-19 10:05 . 2009-04-11 06:27 3408896 ----a-w- c:\windows\system32\SLsvc.exe 2011-10-19 10:05 . 2009-04-11 06:28 2134528 ----a-w- c:\windows\system32\FunctionDiscoveryFolder.dll 2011-10-19 10:05 . 2009-04-11 06:27 65536 ----a-w- c:\windows\system32\DevicePairingWizard.exe 2011-10-19 10:03 . 2009-04-11 06:28 324608 ----a-w- c:\windows\system32\sdohlp.dll 2011-10-19 10:02 . 2009-04-11 06:28 56320 ----a-w- c:\windows\system32\xmlfilter.dll 2011-10-19 10:01 . 2009-04-11 06:32 19944 ----a-w- c:\windows\system32\kdusb.dll 2011-10-19 10:00 . 2009-04-11 06:28 33280 ----a-w- c:\windows\system32\wscapi.dll 2011-10-19 09:59 . 2009-04-11 06:28 83968 ----a-w- c:\windows\system32\wbem\wmiutils.dll 2011-10-19 09:59 . 2009-04-11 06:28 744448 ----a-w- c:\windows\system32\wbem\wbemcore.dll 2011-10-19 09:59 . 2009-04-11 06:28 30208 ----a-w- c:\windows\system32\wbem\wbemprox.dll 2011-10-19 09:59 . 2009-04-11 06:28 265728 ----a-w- c:\windows\system32\wbem\repdrvfs.dll 2011-10-19 09:59 . 2009-04-11 06:28 189440 ----a-w- c:\windows\system32\wbem\mofd.dll 2011-10-19 09:59 . 2009-04-11 06:28 614912 ----a-w- c:\windows\system32\wbem\fastprox.dll 2011-10-19 09:59 . 2009-04-11 06:28 265728 ----a-w- c:\windows\system32\wbem\esscli.dll 2011-10-19 09:59 . 2009-04-11 06:28 705536 ----a-w- c:\windows\system32\SmiEngine.dll 2011-10-19 09:59 . 2009-04-11 06:28 218624 ----a-w- c:\windows\system32\wdscore.dll 2011-10-19 09:59 . 2009-04-11 06:27 130560 ----a-w- c:\windows\system32\PkgMgr.exe 2011-10-19 09:57 . 2009-04-11 06:28 247808 ----a-w- c:\windows\system32\drvstore.dll 2011-10-19 09:53 . 2009-11-08 08:55 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll 2011-10-19 09:53 . 2009-11-08 08:55 49472 ----a-w- c:\windows\system32\netfxperf.dll 2011-10-19 09:53 . 2009-11-08 08:55 297808 ----a-w- c:\windows\system32\mscoree.dll 2011-10-19 09:53 . 2009-11-08 08:55 295264 ----a-w- c:\windows\system32\PresentationHost.exe 2011-10-19 09:53 . 2009-11-08 08:55 1130824 ----a-w- c:\windows\system32\dfshim.dll 2011-10-19 09:45 . 2009-10-09 21:56 2048 ----a-w- c:\windows\system32\winrsmgr.dll 2011-10-19 09:38 . 2010-08-31 15:46 954752 ----a-w- c:\windows\system32\mfc40.dll 2011-10-19 09:38 . 2010-08-31 15:46 954288 ----a-w- c:\windows\system32\mfc40u.dll 2011-10-19 09:38 . 2011-02-16 14:02 292864 ----a-w- c:\windows\system32\atmfd.dll 2011-10-19 09:38 . 2010-06-16 15:30 72704 ----a-w- c:\windows\system32\fontsub.dll 2011-10-19 09:38 . 2011-02-16 16:16 34304 ----a-w- c:\windows\system32\atmlib.dll 2011-10-19 09:38 . 2011-04-21 13:58 273408 ----a-w- c:\windows\system32\drivers\afd.sys 2011-10-19 09:38 . 2010-05-04 19:13 231424 ----a-w- c:\windows\system32\msshsq.dll 2011-10-19 09:38 . 2010-08-26 16:37 157184 ----a-w- c:\windows\system32\t2embed.dll 2011-10-19 09:19 . 2010-10-15 13:48 1205080 ----a-w- c:\windows\system32\ntdll.dll 2011-10-19 09:19 . 2010-01-29 15:40 1616384 ----a-w- c:\program files\Windows Mail\msoe.dll 2011-10-19 09:19 . 2010-08-17 14:11 128000 ----a-w- c:\windows\system32\spoolsv.exe 2011-10-19 09:19 . 2010-06-28 17:00 1316864 ----a-w- c:\windows\system32\ole32.dll 2011-10-19 09:19 . 2010-06-28 14:54 339968 ----a-w- c:\program files\Windows NT\Accessories\wordpad.exe 2011-10-19 09:19 . 2011-02-22 13:23 69632 ----a-w- c:\windows\system32\drivers\bowser.sys 2011-10-19 09:19 . 2010-06-18 17:31 36864 ----a-w- c:\windows\system32\rtutils.dll 2011-10-19 09:17 . 2010-06-11 16:15 1248768 ----a-w- c:\windows\system32\msxml3.dll 2011-10-19 09:17 . 2010-06-17 18:08 10926592 ----a-w- c:\program files\Movie Maker\MOVIEMK.dll 2011-10-19 09:17 . 2010-06-17 16:16 150016 ----a-w- c:\program files\Movie Maker\MOVIEMK.exe 2011-10-19 09:17 . 2010-08-20 16:05 867328 ----a-w- c:\windows\system32\wmpmde.dll 2011-10-19 09:17 . 2010-12-17 15:45 2067968 ----a-w- c:\windows\system32\mstscax.dll 2011-10-19 09:17 . 2010-12-17 13:54 677888 ----a-w- c:\windows\system32\mstsc.exe 2011-10-19 09:17 . 2009-04-11 06:28 63488 ----a-w- c:\windows\system32\tscupgrd.exe 2011-10-19 09:17 . 2010-08-31 15:44 531968 ----a-w- c:\windows\system32\comctl32.dll 2011-10-19 09:17 . 2011-04-20 15:50 49152 ----a-w- c:\windows\system32\csrsrv.dll 2011-10-19 08:58 . 2011-04-29 15:59 276992 ----a-w- c:\windows\system32\schannel.dll 2011-10-19 08:27 . 2011-10-19 08:27 -------- d-----w- C:\PerfLogs 2011-10-18 19:21 . 2011-09-12 23:14 7269712 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{654652BE-6B3B-4875-84A4-46BF389E9FDC}\mpengine.dll . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-10-19 13:06 . 2011-10-19 13:06 4096 ----a-w- c:\windows\system32\drivers\nl-NL\dxgkrnl.sys.mui 2011-10-19 08:00 . 2006-11-02 10:32 101888 ----a-w- c:\windows\system32\ifxcardm.dll 2011-10-19 08:00 . 2006-11-02 10:32 82432 ----a-w- c:\windows\system32\axaltocm.dll 2011-10-03 03:06 . 2010-05-09 18:20 472808 ----a-w- c:\windows\system32\deployJava1.dll 2011-09-29 07:28 . 2011-10-19 17:28 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952] "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-01-13 827392] "ccApp"="c:\program files\Common Files\Symantec Shared\ccApp.exe" [2007-01-10 115816] "QPService"="c:\program files\HP\QuickPlay\QPService.exe" [2007-04-23 176128] "QlbCtrl"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2007-02-13 159744] "HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2007-03-12 50696] "hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2007-03-01 472776] "WAWifiMessage"="c:\program files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe" [2007-01-10 317128] "CognizanceTS"="c:\progra~1\BIOSCR~1\VeriSoft\Bin\ASTSVCC.dll" [2003-12-22 17920] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792] "Symantec PIF AlertEng"="c:\program files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [2008-01-29 583048] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-12-04 13556256] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-12-04 92704] "EEventManager"="c:\program files\Epson Software\Event Manager\EEventManager.exe" [2009-12-03 976320] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "Launcher"="c:\windows\SMINST\launcher.exe" [2006-11-07 44128] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [1999-2-17 65588] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"=c:\windows\System32\APSHook.dll . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update] 2005-02-16 21:11 49152 ----a-w- c:\program files\HP\HP Software Update\hpwuSchd2.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel] 2007-04-19 11:26 484904 ----a-w- c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2010-11-29 15:38 421888 ----a-w- c:\program files\QuickTime\QTTask.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] 2008-08-31 13:17 39408 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TomTomHOME.exe] 2011-04-22 12:21 247728 ----a-w- c:\program files\TomTom HOME 2\TomTomHOMERunner.exe . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 . R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 gupdate;Google Updateservice (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-01-31 135664] R3 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2010-01-31 135664] R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504] S1 IDSvix86;Symantec Intrusion Prevention Driver;c:\progra~2\Symantec\DEFINI~1\SymcData\idsdefs\20111013.001\IDSvix86.sys [2010-09-15 287792] S2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;c:\program files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048] S2 ASBroker;Logon Session Broker;c:\windows\System32\svchost.exe [2008-01-19 21504] S2 ASChannel;Local Communication Channel;c:\windows\System32\svchost.exe [2008-01-19 21504] S2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [2011-04-22 92592] S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-07-28 105592] S3 SYMNDISV;SYMNDISV;c:\windows\System32\Drivers\SYMNDISV.SYS [2007-01-09 38200] . . --- Andere Services/Drivers In Geheugen --- . *NewlyCreated* - COMHOST . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] Cognizance REG_MULTI_SZ ASBroker ASChannel LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}] 2007-04-19 11:23 452136 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe . Inhoud van de 'Gedeelde Taken' map . 2011-10-20 c:\windows\Tasks\Google Software Updater.job - c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-12-11 19:31] . 2011-10-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-01-31 10:42] . 2011-10-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-01-31 10:42] . 2011-03-21 c:\windows\Tasks\Norton Internet Security - Volledige systeemscan - Nick.job - c:\program files\Norton Internet Security\Norton AntiVirus\Navw32.exe [2007-01-14 07:09] . . ------- Bijkomende Scan ------- . mStart Page = hxxp://breedband.telenet.be mWindow Title = Telenet Internet IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html TCP: DhcpNameServer = 195.130.131.129 195.130.130.1 FF - ProfilePath - c:\users\Nick\AppData\Roaming\Mozilla\Firefox\Profiles\xaspnpxb.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.google.be/ FF - prefs.js: network.proxy.type - 0 . - - - - ORPHANS VERWIJDERD - - - - . AddRemove-conduitEngine - c:\progra~1\CONDUI~1\ConduitEngineUninstall.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2011-10-20 12:14 Windows 6.0.6002 Service Pack 2 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . --------------------- DLLs Geladen Onder Lopende Processen --------------------- . - - - - - - - > 'Explorer.exe'(5844) c:\windows\system32\APSHook.dll c:\program files\Bioscrypt\VeriSoft\Bin\ItClient.dll . Voltooingstijd: 2011-10-20 12:23:10 ComboFix-quarantined-files.txt 2011-10-20 10:23 ComboFix2.txt 2011-10-19 19:57 . Pre-Run: 59.067.891.712 bytes beschikbaar Post-Run: 58.821.873.664 bytes beschikbaar . - - End Of File - - AF8C862D2C4073BCC31A8703B1226106

Fijn dat te lezen !... ;-) Als je binnen dit topic verder geen vragen of problemen meer hebt, mag je dit onderwerp afsluiten door een klik op de knop +Markeer als opgelost die je links onderaan kan terugvinden…zo blijft het voor iedereen overzichtelijk. Uiteraard kan je in geval van nieuwe/andere problemen steeds weer een nieuw topic openen…

ESET Online Scan = clean !

CF-logje : ComboFix 11-10-19.06 - Nick 19/10/2011 21:10:09.1.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.32.1043.18.1982.981 [GMT 2:00] Gestart vanuit: c:\users\Nick\Desktop\ComboFix.exe SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\windows\animbigN.bmp c:\windows\animsmalN.bmp c:\windows\system32\rnaph.dll . . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Service_usnjsvc . . (((((((((((((((((((( Bestanden Gemaakt van 2011-09-19 to 2011-10-19 )))))))))))))))))))))))))))))) . . 2011-10-19 19:44 . 2011-10-19 19:44 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{654652BE-6B3B-4875-84A4-46BF389E9FDC}\offreg.dll 2011-10-19 19:41 . 2011-10-19 19:41 -------- d-----w- c:\users\Tiny\AppData\Local\temp 2011-10-19 19:41 . 2011-10-19 19:41 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-10-19 16:17 . 2011-03-12 21:55 876032 ----a-w- c:\windows\system32\XpsPrint.dll 2011-10-19 14:52 . 2011-10-19 14:52 -------- d-----w- c:\users\Default\AppData\Roaming\hpqLog 2011-10-19 14:50 . 2011-10-19 14:50 -------- d-----w- c:\windows\QLB 2011-10-19 14:13 . 2011-10-19 14:13 -------- d-----w- c:\program files\Microsoft.NET 2011-10-19 13:34 . 2011-10-19 13:34 -------- d-----w- c:\program files\CCleaner 2011-10-19 13:30 . 2011-10-19 13:30 -------- d-----w- c:\users\Nick\AppData\Roaming\Malwarebytes 2011-10-19 13:30 . 2011-10-19 13:30 -------- d-----w- c:\programdata\Malwarebytes 2011-10-19 13:30 . 2011-10-19 13:30 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2011-10-19 13:30 . 2011-08-31 15:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-10-19 13:17 . 2011-10-19 13:17 -------- d-----w- c:\program files\Windows Portable Devices 2011-10-19 13:13 . 2009-09-10 02:00 92672 ----a-w- c:\windows\system32\UIAnimation.dll 2011-10-19 13:13 . 2009-09-10 02:01 3023360 ----a-w- c:\windows\system32\UIRibbon.dll 2011-10-19 13:13 . 2009-09-10 02:00 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll 2011-10-19 13:06 . 2011-10-19 13:06 979456 ----a-w- c:\windows\system32\MFH264Dec.dll 2011-10-19 13:05 . 2011-10-19 13:05 974848 ----a-w- c:\windows\system32\WindowsCodecs.dll 2011-10-19 13:05 . 2011-10-19 13:05 519680 ----a-w- c:\windows\system32\d3d11.dll 2011-10-19 13:05 . 2011-10-19 13:05 321024 ----a-w- c:\windows\system32\PhotoMetadataHandler.dll 2011-10-19 13:05 . 2011-10-19 13:05 189440 ----a-w- c:\windows\system32\WindowsCodecsExt.dll 2011-10-19 12:55 . 2011-09-06 13:30 2043392 ----a-w- c:\windows\system32\win32k.sys 2011-10-19 12:55 . 2011-06-17 16:03 375808 ----a-w- c:\windows\system32\winsrv.dll 2011-10-19 12:55 . 2011-07-11 13:25 2048 ----a-w- c:\windows\system32\tzres.dll 2011-10-19 12:54 . 2011-08-25 16:15 555520 ----a-w- c:\windows\system32\UIAutomationCore.dll 2011-10-19 12:54 . 2011-08-25 16:14 563712 ----a-w- c:\windows\system32\oleaut32.dll 2011-10-19 12:54 . 2011-08-25 16:14 238080 ----a-w- c:\windows\system32\oleacc.dll 2011-10-19 12:54 . 2011-08-25 13:31 4096 ----a-w- c:\windows\system32\oleaccrc.dll 2011-10-19 12:53 . 2011-01-20 16:08 160768 ----a-w- c:\windows\system32\d3d10_1.dll 2011-10-19 12:53 . 2011-01-20 14:12 1172480 ----a-w- c:\windows\system32\d3d10warp.dll 2011-10-19 12:53 . 2011-01-20 13:47 683008 ----a-w- c:\windows\system32\d2d1.dll 2011-10-19 12:53 . 2011-02-22 14:13 288768 ----a-w- c:\windows\system32\XpsGdiConverter.dll 2011-10-19 12:53 . 2011-02-22 13:33 1068544 ----a-w- c:\windows\system32\DWrite.dll 2011-10-19 12:53 . 2011-02-22 13:33 797696 ----a-w- c:\windows\system32\FntCache.dll 2011-10-19 12:53 . 2011-01-20 16:08 219648 ----a-w- c:\windows\system32\d3d10_1core.dll 2011-10-19 12:53 . 2011-01-20 16:08 189952 ----a-w- c:\windows\system32\d3d10core.dll 2011-10-19 12:53 . 2011-01-20 16:08 1029120 ----a-w- c:\windows\system32\d3d10.dll 2011-10-19 12:53 . 2011-01-20 14:28 1554432 ----a-w- c:\windows\system32\xpsservices.dll 2011-10-19 12:53 . 2011-01-20 14:11 486400 ----a-w- c:\windows\system32\d3d10level9.dll 2011-10-19 12:53 . 2011-01-20 14:25 847360 ----a-w- c:\windows\system32\OpcServices.dll 2011-10-19 12:48 . 2011-09-14 10:51 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat 2011-10-19 12:48 . 2011-06-20 08:54 3602832 ----a-w- c:\windows\system32\ntkrnlpa.exe 2011-10-19 12:48 . 2011-06-20 08:54 3550096 ----a-w- c:\windows\system32\ntoskrnl.exe 2011-10-19 12:48 . 2011-06-17 20:13 905104 ----a-w- c:\windows\system32\drivers\tcpip.sys 2011-10-19 12:21 . 2011-07-29 16:01 293376 ----a-w- c:\windows\system32\psisdecd.dll 2011-10-19 12:21 . 2011-07-29 16:01 217088 ----a-w- c:\windows\system32\psisrndr.ax 2011-10-19 12:21 . 2011-07-29 16:00 57856 ----a-w- c:\windows\system32\MSDvbNP.ax 2011-10-19 12:21 . 2011-07-29 16:00 69632 ----a-w- c:\windows\system32\Mpeg2Data.ax 2011-10-19 11:34 . 2011-10-19 11:35 -------- d-----w- c:\windows\system32\ca-ES 2011-10-19 11:34 . 2011-10-19 11:35 -------- d-----w- c:\windows\system32\eu-ES 2011-10-19 11:34 . 2011-10-19 11:35 -------- d-----w- c:\windows\system32\vi-VN 2011-10-19 11:05 . 2011-03-03 15:40 28672 ----a-w- c:\windows\system32\Apphlpdm.dll 2011-10-19 11:05 . 2011-03-03 13:35 4240384 ----a-w- c:\windows\system32\GameUXLegacyGDFs.dll 2011-10-19 10:58 . 2011-10-19 10:58 -------- d-----w- c:\windows\system32\EventProviders 2011-10-19 10:21 . 2008-05-27 04:59 18904 ----a-w- c:\windows\system32\StructuredQuerySchemaTrivial.bin 2011-10-19 10:05 . 2009-04-11 05:03 12240896 ----a-w- c:\windows\system32\NlsLexicons0007.dll 2011-10-19 10:05 . 2009-04-11 06:28 1081344 ----a-w- c:\windows\system32\SLCExt.dll 2011-10-19 10:05 . 2009-04-11 06:27 3408896 ----a-w- c:\windows\system32\SLsvc.exe 2011-10-19 10:05 . 2009-04-11 06:28 2134528 ----a-w- c:\windows\system32\FunctionDiscoveryFolder.dll 2011-10-19 10:05 . 2009-04-11 06:27 65536 ----a-w- c:\windows\system32\DevicePairingWizard.exe 2011-10-19 10:03 . 2009-04-11 06:28 324608 ----a-w- c:\windows\system32\sdohlp.dll 2011-10-19 10:02 . 2009-04-11 06:28 56320 ----a-w- c:\windows\system32\xmlfilter.dll 2011-10-19 10:01 . 2009-04-11 06:32 19944 ----a-w- c:\windows\system32\kdusb.dll 2011-10-19 10:00 . 2009-04-11 06:28 33280 ----a-w- c:\windows\system32\wscapi.dll 2011-10-19 09:59 . 2009-04-11 06:28 83968 ----a-w- c:\windows\system32\wbem\wmiutils.dll 2011-10-19 09:59 . 2009-04-11 06:28 744448 ----a-w- c:\windows\system32\wbem\wbemcore.dll 2011-10-19 09:59 . 2009-04-11 06:28 30208 ----a-w- c:\windows\system32\wbem\wbemprox.dll 2011-10-19 09:59 . 2009-04-11 06:28 265728 ----a-w- c:\windows\system32\wbem\repdrvfs.dll 2011-10-19 09:59 . 2009-04-11 06:28 189440 ----a-w- c:\windows\system32\wbem\mofd.dll 2011-10-19 09:59 . 2009-04-11 06:28 614912 ----a-w- c:\windows\system32\wbem\fastprox.dll 2011-10-19 09:59 . 2009-04-11 06:28 265728 ----a-w- c:\windows\system32\wbem\esscli.dll 2011-10-19 09:59 . 2009-04-11 06:28 705536 ----a-w- c:\windows\system32\SmiEngine.dll 2011-10-19 09:59 . 2009-04-11 06:28 218624 ----a-w- c:\windows\system32\wdscore.dll 2011-10-19 09:59 . 2009-04-11 06:27 130560 ----a-w- c:\windows\system32\PkgMgr.exe 2011-10-19 09:57 . 2009-04-11 06:28 247808 ----a-w- c:\windows\system32\drvstore.dll 2011-10-19 09:53 . 2009-11-08 08:55 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll 2011-10-19 09:53 . 2009-11-08 08:55 49472 ----a-w- c:\windows\system32\netfxperf.dll 2011-10-19 09:53 . 2009-11-08 08:55 297808 ----a-w- c:\windows\system32\mscoree.dll 2011-10-19 09:53 . 2009-11-08 08:55 295264 ----a-w- c:\windows\system32\PresentationHost.exe 2011-10-19 09:53 . 2009-11-08 08:55 1130824 ----a-w- c:\windows\system32\dfshim.dll 2011-10-19 09:45 . 2009-10-09 21:56 2048 ----a-w- c:\windows\system32\winrsmgr.dll 2011-10-19 09:38 . 2010-08-31 15:46 954752 ----a-w- c:\windows\system32\mfc40.dll 2011-10-19 09:38 . 2010-08-31 15:46 954288 ----a-w- c:\windows\system32\mfc40u.dll 2011-10-19 09:38 . 2011-02-16 14:02 292864 ----a-w- c:\windows\system32\atmfd.dll 2011-10-19 09:38 . 2010-06-16 15:30 72704 ----a-w- c:\windows\system32\fontsub.dll 2011-10-19 09:38 . 2011-02-16 16:16 34304 ----a-w- c:\windows\system32\atmlib.dll 2011-10-19 09:38 . 2011-04-21 13:58 273408 ----a-w- c:\windows\system32\drivers\afd.sys 2011-10-19 09:38 . 2010-05-04 19:13 231424 ----a-w- c:\windows\system32\msshsq.dll 2011-10-19 09:38 . 2010-08-26 16:37 157184 ----a-w- c:\windows\system32\t2embed.dll 2011-10-19 09:19 . 2010-10-15 13:48 1205080 ----a-w- c:\windows\system32\ntdll.dll 2011-10-19 09:19 . 2010-01-29 15:40 1616384 ----a-w- c:\program files\Windows Mail\msoe.dll 2011-10-19 09:19 . 2010-08-17 14:11 128000 ----a-w- c:\windows\system32\spoolsv.exe 2011-10-19 09:19 . 2010-06-28 17:00 1316864 ----a-w- c:\windows\system32\ole32.dll 2011-10-19 09:19 . 2010-06-28 14:54 339968 ----a-w- c:\program files\Windows NT\Accessories\wordpad.exe 2011-10-19 09:19 . 2011-02-22 13:23 69632 ----a-w- c:\windows\system32\drivers\bowser.sys 2011-10-19 09:19 . 2010-06-18 17:31 36864 ----a-w- c:\windows\system32\rtutils.dll 2011-10-19 09:17 . 2010-06-11 16:15 1248768 ----a-w- c:\windows\system32\msxml3.dll 2011-10-19 09:17 . 2010-06-17 18:08 10926592 ----a-w- c:\program files\Movie Maker\MOVIEMK.dll 2011-10-19 09:17 . 2010-06-17 16:16 150016 ----a-w- c:\program files\Movie Maker\MOVIEMK.exe 2011-10-19 09:17 . 2010-08-20 16:05 867328 ----a-w- c:\windows\system32\wmpmde.dll 2011-10-19 09:17 . 2010-12-17 15:45 2067968 ----a-w- c:\windows\system32\mstscax.dll 2011-10-19 09:17 . 2010-12-17 13:54 677888 ----a-w- c:\windows\system32\mstsc.exe 2011-10-19 09:17 . 2009-04-11 06:28 63488 ----a-w- c:\windows\system32\tscupgrd.exe 2011-10-19 09:17 . 2010-08-31 15:44 531968 ----a-w- c:\windows\system32\comctl32.dll 2011-10-19 09:17 . 2011-04-20 15:50 49152 ----a-w- c:\windows\system32\csrsrv.dll 2011-10-19 08:58 . 2011-04-29 15:59 276992 ----a-w- c:\windows\system32\schannel.dll 2011-10-19 08:27 . 2011-10-19 08:27 -------- d-----w- C:\PerfLogs 2011-10-18 19:21 . 2011-09-12 23:14 7269712 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{654652BE-6B3B-4875-84A4-46BF389E9FDC}\mpengine.dll . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-10-19 13:06 . 2011-10-19 13:06 4096 ----a-w- c:\windows\system32\drivers\nl-NL\dxgkrnl.sys.mui 2011-10-19 08:00 . 2006-11-02 10:32 101888 ----a-w- c:\windows\system32\ifxcardm.dll 2011-10-19 08:00 . 2006-11-02 10:32 82432 ----a-w- c:\windows\system32\axaltocm.dll 2011-10-03 03:06 . 2010-05-09 18:20 472808 ----a-w- c:\windows\system32\deployJava1.dll 2011-09-29 07:28 . 2011-10-19 17:28 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] "{87775fdb-6972-41f9-ae51-8326e38cb206}"= "c:\program files\uTorrentBar_NL\tbuTor.dll" [2010-12-09 3911776] . [HKEY_CLASSES_ROOT\clsid\{87775fdb-6972-41f9-ae51-8326e38cb206}] . [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}] 2010-12-09 11:51 3911776 ----a-w- c:\program files\ConduitEngine\ConduitEngine.dll . [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{87775fdb-6972-41f9-ae51-8326e38cb206}] 2010-12-09 11:51 3911776 ----a-w- c:\program files\uTorrentBar_NL\tbuTor.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{87775fdb-6972-41f9-ae51-8326e38cb206}"= "c:\program files\uTorrentBar_NL\tbuTor.dll" [2010-12-09 3911776] "{30F9B915-B755-4826-820B-08FBA6BD249D}"= "c:\program files\ConduitEngine\ConduitEngine.dll" [2010-12-09 3911776] . [HKEY_CLASSES_ROOT\clsid\{87775fdb-6972-41f9-ae51-8326e38cb206}] . [HKEY_CLASSES_ROOT\clsid\{30f9b915-b755-4826-820b-08fba6bd249d}] . [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{87775FDB-6972-41F9-AE51-8326E38CB206}"= "c:\program files\uTorrentBar_NL\tbuTor.dll" [2010-12-09 3911776] . [HKEY_CLASSES_ROOT\clsid\{87775fdb-6972-41f9-ae51-8326e38cb206}] . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920] "LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2007-04-19 484904] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-08-31 39408] "TomTomHOME.exe"="c:\program files\TomTom HOME 2\TomTomHOMERunner.exe" [2011-04-22 247728] "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2007-01-13 827392] "ccApp"="c:\program files\Common Files\Symantec Shared\ccApp.exe" [2007-01-10 115816] "QPService"="c:\program files\HP\QuickPlay\QPService.exe" [2007-04-23 176128] "QlbCtrl"="c:\program files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2007-02-13 159744] "HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2007-03-12 50696] "hpWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2007-03-01 472776] "WAWifiMessage"="c:\program files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe" [2007-01-10 317128] "HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2005-02-16 49152] "CognizanceTS"="c:\progra~1\BIOSCR~1\VeriSoft\Bin\ASTSVCC.dll" [2003-12-22 17920] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792] "Symantec PIF AlertEng"="c:\program files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" [2008-01-29 583048] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-12-04 13556256] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-12-04 92704] "EEventManager"="c:\program files\Epson Software\Event Manager\EEventManager.exe" [2009-12-03 976320] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-11-29 421888] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "Launcher"="c:\windows\SMINST\launcher.exe" [2006-11-07 44128] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [1999-2-17 65588] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"=c:\windows\System32\APSHook.dll . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 . R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 gupdate;Google Updateservice (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-01-31 135664] R3 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2010-01-31 135664] R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [x] R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504] S1 IDSvix86;Symantec Intrusion Prevention Driver;c:\progra~2\Symantec\DEFINI~1\SymcData\idsdefs\20111013.001\IDSvix86.sys [2010-09-15 287792] S2 ABBYY.Licensing.FineReader.Sprint.9.0;ABBYY FineReader 9.0 Sprint Licensing Service;c:\program files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe [2009-05-14 759048] S2 ASBroker;Logon Session Broker;c:\windows\System32\svchost.exe [2008-01-19 21504] S2 ASChannel;Local Communication Channel;c:\windows\System32\svchost.exe [2008-01-19 21504] S2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [2011-04-22 92592] S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2011-07-28 105592] S3 SYMNDISV;SYMNDISV;c:\windows\System32\Drivers\SYMNDISV.SYS [2007-01-09 38200] . . --- Andere Services/Drivers In Geheugen --- . *NewlyCreated* - COMHOST . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] Cognizance REG_MULTI_SZ ASBroker ASChannel LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}] 2007-04-19 11:23 452136 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe . Inhoud van de 'Gedeelde Taken' map . 2011-10-19 c:\windows\Tasks\Google Software Updater.job - c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-12-11 19:31] . 2011-10-19 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-01-31 10:42] . 2011-10-19 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-01-31 10:42] . 2011-03-21 c:\windows\Tasks\Norton Internet Security - Volledige systeemscan - Nick.job - c:\program files\Norton Internet Security\Norton AntiVirus\Navw32.exe [2007-01-14 07:09] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2865317 mStart Page = hxxp://breedband.telenet.be mWindow Title = Telenet Internet IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html TCP: DhcpNameServer = 195.130.131.129 195.130.130.1 FF - ProfilePath - c:\users\Nick\AppData\Roaming\Mozilla\Firefox\Profiles\xaspnpxb.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.google.be/ FF - prefs.js: network.proxy.type - 0 . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2011-10-19 21:48 Windows 6.0.6002 Service Pack 2 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . --------------------- DLLs Geladen Onder Lopende Processen --------------------- . - - - - - - - > 'Explorer.exe'(3404) c:\windows\system32\APSHook.dll c:\program files\Bioscrypt\VeriSoft\Bin\ItClient.dll . ------------------------ Andere Aktieve Processen ------------------------ . c:\windows\system32\nvvsvc.exe c:\windows\system32\rundll32.exe c:\program files\Common Files\Symantec Shared\ccSvcHst.exe c:\program files\Common Files\Symantec Shared\AppCore\AppSvc32.exe c:\program files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe c:\program files\Common Files\Symantec Shared\ccSvcHst.exe c:\program files\Common Files\LightScribe\LSSrvc.exe c:\program files\Symantec\LiveUpdate\ALUSchedulerSvc.exe c:\windows\system32\DRIVERS\xaudio.exe c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe c:\program files\Bioscrypt\VeriSoft\Bin\AsGHost.exe c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe . ************************************************************************** . Voltooingstijd: 2011-10-19 21:57:49 - machine werd herstart ComboFix-quarantined-files.txt 2011-10-19 19:57 . Pre-Run: 60.300.881.920 bytes beschikbaar Post-Run: 59.886.338.048 bytes beschikbaar . - - End Of File - - 215A454D3D766836CF8ADD1A92769584 Ccleaner heeft net geen 3 GB (!) tijdelijke internetbestanden verwijderd. Op dit moment loopt ESET Online Scanner...wordt dus nog vervolgd...

Als je hier klikt kan je de aanbevolen RAM-upgrade voor je Dell XPS M1330 bekijken...

Hou ons op de hoogte van de aankoop hé... ;-) Succes !...

Prima !... Ik verwittig de malware-experts, wordt vervolgd zodra ze online komen...

Nieuw logje van HJT : Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 16:24:59, on 19/10/2011 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: C:\Windows\system32\taskeng.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE c:\Program Files\Bioscrypt\VeriSoft\Bin\AsGHost.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Common Files\Symantec Shared\ccApp.exe C:\Program Files\HP\QuickPlay\QPService.exe C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe C:\Program Files\HP\HP Software Update\hpwuSchd2.exe C:\Windows\System32\rundll32.exe C:\Program Files\Epson Software\Event Manager\EEventManager.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe C:\Windows\System32\spool\drivers\w32x86\3\E_FATIGDE.EXE C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe C:\Windows\system32\conime.exe F:\HijackThis.exe C:\Windows\system32\SearchFilterHost.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = HP | MSN R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Zita - het Web van Z tot A - Nieuws | Entertainment | Lifestyle | Fun R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Zita - het Web van Z tot A - Nieuws | Entertainment | Lifestyle | Fun R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Telenet Internet O1 - Hosts: ::1 localhost O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll O2 - BHO: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: VeriSoft Access Manager - {DF21F1DB-80C6-11D3-9483-B03D0EC10000} - c:\Program Files\Bioscrypt\VeriSoft\Bin\ItIEAddIn.dll O3 - Toolbar: Show Norton Toolbar - {90222687-F593-4738-B738-FBEE9C7B26DF} - c:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll O3 - Toolbar: Easy Photo Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\Epson Software\Easy Photo Print\EPTBL.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [ccApp] "c:\Program Files\Common Files\Symantec Shared\ccApp.exe" O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe" O4 - HKLM\..\Run: [QlbCtrl] %ProgramFiles%\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start O4 - HKLM\..\Run: [HP Health Check Scheduler] C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe O4 - HKLM\..\Run: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe O4 - HKLM\..\Run: [WAWifiMessage] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [CognizanceTS] rundll32.exe c:\PROGRA~1\BIOSCR~1\VeriSoft\Bin\ASTSVCC.dll,RegisterModule O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll" O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [EEventManager] "C:\Program Files\Epson Software\Event Manager\EEventManager.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" O4 - HKCU\..\Run: [EPSON SX218 Series] C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIGDE.EXE /FU "C:\Windows\TEMP\E_S4460.tmp" /EF "HKCU" O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O20 - AppInit_DLLs: APSHook.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: ABBYY FineReader 9.0 Sprint Licensing Service (ABBYY.Licensing.FineReader.Sprint.9.0) - ABBYY - C:\Program Files\Common Files\ABBYY\FineReaderSprint\9.00\Licensing\NetworkLicenseServer.exe O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: Com4Qlb - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe O23 - Service: COM Host (comHost) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Symantec IS Password Validation (ISPwdSvc) - Symantec Corporation - c:\Program Files\Norton Internet Security\isPwdSvc.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: Planner voor Automatische LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe O23 - Service: Symantec AppCore Service (SymAppCore) - Symantec Corporation - c:\Program Files\Common Files\Symantec Shared\AppCore\AppSvc32.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe -- End of file - 11040 bytes