roald 6

Het probleem is eigenlijk begonnen iets voor m'n grafische kaart stuk ging. Ik heb ergens een vermoeden dat t komt door de kaart maar zekerheid heb ik niet. Momenteel werk ik met scherm rechtstreeks aangesloten op moederbord. Pc werkt nu wel iets trager maar t lukt. Van programma's heb ik niets geinstalleerd. Wat ik wel ondervonden heb, tis mss maar een gedacht, als pc een ganse dag aanstaat, heb ik het sneller. Voor de rest kan ik me eigenlijk niets indenken.

Zo beste mensen, kheb t weeral zitten. Tis een tijdje goed gegaan en nu is't weer regelmatig Blue screentime. M'n tweede probleem: Als ik soms alle programma's afsluit en dat ik alleen t bureaublad heb, en ik wil iets opstarten vanaf bureaublad dan gaat dat niet, kan niet links en niet rechts klikken. T werkt niet. Kheb hier hopelijk alle gegevens geplakt die jullie mss kunnen bekijken Alvast bedankt voor de moeite. BlueScreenView 8/8 1.09 Bug check string: IRQL_NOT_LESS_OR_EQUAL Bug check code: 0x1000000a Caused by driver: ntoskrnl.exe 8/8 15.55 Bug check string: ATTEMPTED_WRITE_TO_READONLY_MEMORY Bug check code: 0x100000be Caused by driver: ntoskrnl.exe 8/8 23.22 Bug check string: ATTEMPTED_WRITE_TO_READONLY_MEMORY Bug check code: 0x100000be Caused by driver: ntoskrnl.exe 9/8 20.42 Bug check string: ATTEMPTED_WRITE_TO_READONLY_MEMORY Bug check code: 0x100000be Caused by driver: ntoskrnl.exe 11/8 21.09 Bug check string: DRIVER_IRQL_NOT_LESS_OR_EQUAL Bug check code: 0x100000d1 Caused by driver: USBPORT.SYS 12/8 20.42 Bug check string: KERNEL_MODE_EXCEPTION_NOT_HANDLED Bug check code: 0x1000008e Caused by driver: ntoskrnl.exe 12/8 21.16 Bug check string: ATTEMPTED_WRITE_TO_READONLY_MEMORY Bug check code: 0x100000be Caused by driver: ntoskrnl.exe 14/8 14.38 Bug check string: ATTEMPTED_WRITE_TO_READONLY_MEMORY Bug check code: 0x100000be Caused by driver: ntoskrnl.exe 14/8 20.03 Bug check string: KERNEL_MODE_EXCEPTION_NOT_HANDLED Bug check code: 0x1000008e Caused by driver: 14/8 23.16 Bug check string: Bugcode_USB_driver Bug check code: 0x000000fe Caused by driver: USBPORT.sys Opdrachtprompt: Er zijn geen schendingen van de integriteit gevonden. Malwarebytes: Databaseversie: 7449 Windows 6.0.6002 Service Pack 2 Internet Explorer 8.0.6001.19120 15/08/2011 0:51:32 mbam-log-2011-08-15 (00-51-32).txt Scantype: Snelle scan Objecten gescand: 171394 Verstreken tijd: 4 minuut/minuten, 13 seconde(n) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 0 Registerwaarden geïnfecteerd: 0 Registerdata geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 0 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registersleutels geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 1:18:37, on 15/08/2011 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.19120) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Windows\RtHDVCpl.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\Logitech\SetPoint\LBTWiz.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Belgium Identity Card\beid35gui.exe C:\Windows\UMStor\Res.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Windows\ehome\ehtray.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE C:\Windows\system32\wuauclt.exe C:\Windows\system32\conime.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe C:\Program Files\Microsoft Office\Office12\WINWORD.EXE C:\Program Files\Microsoft\Office Live\OfficeLiveSignIn.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe C:\Windows\system32\NOTEPAD.EXE R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R3 - URLSearchHook: Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll O1 - Hosts: ::1 localhost O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\HP\Smart Web Printing\hpswp_framework.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui O4 - HKLM\..\Run: [bluetooth Connection Assistant] LBTWIZ.EXE -silent O4 - HKLM\..\Run: [beid] "C:\Program Files\Belgium Identity Card\beid35gui.exe" /startup O4 - HKLM\..\Run: [uSB Storage Toolbox] C:\Windows\UMStor\Res.EXE O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: &Winamp Search - C:\ProgramData\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: HP Clipboek - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\HP\Smart Web Printing\hpswp_extensions.dll O9 - Extra button: HP Slim selecteren - {700259D7-1666-479a-93B1-3250410481E8} - C:\HP\Smart Web Printing\hpswp_extensions.dll O15 - Trusted Zone: http://man.entriq.net O15 - Trusted Zone: http://messagent.telenet.be O15 - Trusted Zone: http://pctv.telenet.be O15 - Trusted Zone: http://www.telenet.be O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1280386301191 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1276204295004 O16 - DPF: {80AEEC0E-A2BE-4B8D-985F-350FE869DC40} (HPDDClientExec Class) - http://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsVista.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game08.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - C:\Program Files\Packard bell\SAXO27\HIDSERVICE.EXE O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe -- End of file - 10171 bytes

Het is gelukt, bedankt.

Kheb vandaag IE 9 op pc gezet en nu werkt java nietmeer, m'n vrouw kan geen spellekes meer spelen. Kheb de nieuste versie van java geïnstalleerd en helpt niet. Nu wou ik IE 8 opnieuw installeren en de 9 verwijderen maar ik vind de 8 niet op pc. Is die automatisch verwijdert? Grtjessss

Ik gebruik IE 8 kan soms 3 of 4 keer op een dag zijn maar ook soms niet. Is nu al paar dagen niet geblokkeert. en t varieert met blokkeren, kan zijn met naar een andere link over te schakelen, soms met opstarten, soms met afsluiten of soms ook door te scrollen. Kan soms ook gebeuren dat IE blokkert en ik via taakbeheer moet afsluiten anders lukt t niet En neen, ik krijg geen foutmeldingen, alleen dat IE opnieuw opstart Zit eigenlijk geen logica in. En neen, kheb nog geen andere gebruikt. Zou t mss ook aan de fouten liggen die nu hersteld zijn?

Laatste dateert van 17/06 maar gisteren ben ik bijna niet aan pc geweest dus kan voorlopig niets zeggen over blue screens. En neen, verder heb ik geen problemen met pc, het enige mss dat IE regelmatig blokkeert. Bedankt en fijne zondag

Microsoft Windows [versie 6.0.6002] Copyright © 2006 Microsoft Corporation. Alle rechten voorbehouden. C:\Windows\system32>sfc /scannow Systeemcontrole wordt gestart. Dit proces kan enige minuten duren. Verificatiefase van systeemscan wordt gestart. Verificatie is 100% voltooid. Er zijn beschadigde bestanden gevonden en hersteld. De details zijn opgenomen in CBS.Log windir\Logs\CBS\CBS.log. Bijvoorbeeld C:\Windows\Logs\CBS\CBS.log C:\Windows\system32> Ik kijk in de map en zie 3tekstdocumenten 1 CBS 2 CBS.persist en 3 Filterlist De eerste 2 kan ik niet openen, toegang geweigerd en de derde zie ik dit: aswFsBlk 4 0 aswMonFlt 5 0 luafv 1 0 FileInfo 5 0

De recoverydisc is dat ook goed? Installatiecd van windows heb ik nooit gekregen. En in opdrachtprompt krijg ik t bericht: U dient een consolesessie als Administrator uit te voeren als U het hulpprogramma SFC wilt gebruiken.

Datum: 17.06.2011 8:03:40 Bug check string: ATTEMPTED_WRITE_TO_READONLY_MEMORY Bug check code: 0x100000be Caused by driver: ntoskrnl.exe Datum: 16.06.2011 2:09:22 Bug check string: KERNEL_MODE_EXCEPTION_NOT_HANDLED Bug check code: 0x1000008e Caused by driver: Geen waarde Datum: 15.06.2011 17:37:48 Bug check string: IRQL_NOT_LESS_OR_EQUAL Bug check code: 0x1000000a Caused by driver: ntoskrnl.exe

Sinds enkele tijd heb ik regelmatig last van een Blue Screen. Ik had gedacht dat ne m'n laatste bezoek hier op t forum ook dit opgelost zou zijn, maar niets ook niet:hmpf: Zou het kunnen dat t door m'n grafische kaart komt? Tijdje gelden is dat begonnen en plots werkte pc nietmeer, kheb m toen binnen gebracht en ze stelde vast dat de kaart kapot was, ventilator draaide nietmeer, en hebben toen t scherm rechtstreeks op moederbord aangesloten. PC werkt wel maar trager en mss was de kaart al eerder aan't kapot gaan en dat ik vanaf toen dat Blue screen kreeg. Wat denken jullie ervan? Kunnen jullie hier iets aan zien? Mini061611-01.dmp 16/06/2011 2:09:29 KERNEL_MODE_EXCEPTION_NOT_HANDLED 0x1000008e 0xc0000005 0x0001c200 0xbb7ddc04 0x00000000 32-bit C:\Windows\Minidump\Mini061611-01.dmp 4 15 6002 Mini061511-01.dmp 15/06/2011 17:37:48 IRQL_NOT_LESS_OR_EQUAL 0x1000000a 0x00000004 0x0000001b 0x00000001 0x828e25dc ntoskrnl.exe ntoskrnl.exe+a75dc NT Kernel & System Microsoft® Windows® Operating System Microsoft Corporation 6.0.6002.18327 (vistasp2_gdr.101014-0432) 32-bit C:\Windows\Minidump\Mini061511-01.dmp 4 15 6002 Of dit? ntoskrnl.exe ntoskrnl.exe+23ab47 0x8281c000 0x82bd6000 0x003ba000 0x4cb710d6 14/10/2010 16:16:54 Microsoft® Windows® Operating System NT Kernel & System 6.0.6002.18327 (vistasp2_gdr.101014-0432) Microsoft Corporation C:\Windows\system32\ntoskrnl.exe hal.dll 0x82bd6000 0x82c09000 0x00033000 0x49e018d9 11/04/2009 6:13:13 Microsoft® Windows® Operating System Hardware Abstraction Layer DLL 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\hal.dll kdcom.dll 0x80407000 0x8040e000 0x00007000 0x49e037d9 11/04/2009 8:25:29 Microsoft® Windows® Operating System Kernel Debugger HW Extension DLL 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\kdcom.dll mcupdate.dll 0x8040e000 0x8047e000 0x00070000 0x49e03757 11/04/2009 8:23:19 PSHED.dll 0x8047e000 0x8048f000 0x00011000 0x49e037dc 11/04/2009 8:25:32 Besturingssysteem Microsoft® Windows® Stuurprogramma voor platformspecifieke hardwarefouten 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\PSHED.dll BOOTVID.dll 0x8048f000 0x80497000 0x00008000 0x4791a653 19/01/2008 9:27:15 Microsoft® Windows® Operating System VGA Boot Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\BOOTVID.dll CLFS.SYS 0x80497000 0x804d8000 0x00041000 0x49e018ff 11/04/2009 6:13:51 Microsoft® Windows® Operating System Common Log File System Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\CLFS.SYS CI.dll 0x804d8000 0x805b8000 0x000e0000 0x49e037d2 11/04/2009 8:25:22 Besturingssysteem Microsoft® Windows® Code-integriteitsmodule 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\CI.dll Wdf01000.sys 0x80600000 0x8067c000 0x0007c000 0x47919015 19/01/2008 7:52:21 Besturingssysteem Microsoft® Windows® WDF Dynamic 1.7.6001.0 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\Wdf01000.sys WDFLDR.SYS 0x8067c000 0x80689000 0x0000d000 0x47919013 19/01/2008 7:52:19 Microsoft® Windows® Operating System WDFLDR 1.7.6001.0 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\WDFLDR.SYS acpi.sys 0x80689000 0x806cf000 0x00046000 0x49e01a37 11/04/2009 6:19:03 Besturingssysteem Microsoft® Windows® ACPI-stuurprogramma voor NT 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\acpi.sys WMILIB.SYS 0x806cf000 0x806d8000 0x00009000 0x47919044 19/01/2008 7:53:08 Microsoft® Windows® Operating System WMILIB WMI support library Dll 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\WMILIB.SYS msisadrv.sys 0x806d8000 0x806e0000 0x00008000 0x47918b83 19/01/2008 7:32:51 Microsoft® Windows® Operating System ISA Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\msisadrv.sys pci.sys 0x806e0000 0x80707000 0x00027000 0x49e01a44 11/04/2009 6:19:16 Besturingssysteem Microsoft® Windows® NT Plug en Play PCI-enumerator 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\pci.sys partmgr.sys 0x80707000 0x80716000 0x0000f000 0x49e01ef7 11/04/2009 6:39:19 Microsoft® Windows® Operating System Partition Management Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\partmgr.sys volmgr.sys 0x80716000 0x80725000 0x0000f000 0x47918f7f 19/01/2008 7:49:51 Microsoft® Windows® Operating System Volume Manager Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\volmgr.sys volmgrx.sys 0x80725000 0x8076f000 0x0004a000 0x49e01efd 11/04/2009 6:39:25 Microsoft® Windows® Operating System Volume Manager Extension Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\volmgrx.sys pciide.sys 0x8076f000 0x80776000 0x00007000 0x49e01eee 11/04/2009 6:39:10 Microsoft® Windows® Operating System Generic PCI IDE Bus Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\pciide.sys PCIIDEX.SYS 0x80776000 0x80784000 0x0000e000 0x49e01eed 11/04/2009 6:39:09 Microsoft® Windows® Operating System PCI IDE Bus Driver Extension 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\PCIIDEX.SYS mountmgr.sys 0x80784000 0x80794000 0x00010000 0x47918f59 19/01/2008 7:49:13 Microsoft® Windows® Operating System Mount Point Manager 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\mountmgr.sys nvraid.sys 0x80794000 0x807ad000 0x00019000 0x4522ff6b 4/10/2006 2:25:15 NVIDIA nForce RAID Driver NVIDIA® nForce RAID Driver 5.10.2600.0822 (NT.060926-1359) NVIDIA Corporation C:\Windows\system32\drivers\nvraid.sys CLASSPNP.SYS 0x807ad000 0x807ce000 0x00021000 0x49e01ee9 11/04/2009 6:39:05 Microsoft® Windows® Operating System SCSI Class System Dll 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\CLASSPNP.SYS atapi.sys 0x807ce000 0x807d6000 0x00008000 0x49e01eed 11/04/2009 6:39:09 Microsoft® Windows® Operating System ATAPI IDE Miniport Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\atapi.sys ataport.SYS 0x807d6000 0x807f4000 0x0001e000 0x49e01eee 11/04/2009 6:39:10 Microsoft® Windows® Operating System ATAPI Driver Extension 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\ataport.SYS nvstor32.sys 0x805b8000 0x805d6000 0x0001e000 0x46e71431 12/09/2007 0:18:25 NVIDIA nForce SATA Driver NVIDIA® nForce Sata Performance Driver 10.1.0.20 built by: WinDDK NVIDIA Corporation C:\Windows\system32\drivers\nvstor32.sys storport.sys 0x82e0f000 0x82e50000 0x00041000 0x49e01ef7 11/04/2009 6:39:19 Microsoft® Windows® Operating System Microsoft Storage Port Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\storport.sys fltmgr.sys 0x82e50000 0x82e82000 0x00032000 0x49e01907 11/04/2009 6:13:59 Besturingssysteem Microsoft® Windows® Microsoft Bestandssysteemfilterbeheer 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\fltmgr.sys fileinfo.sys 0x82e82000 0x82e92000 0x00010000 0x47918be3 19/01/2008 7:34:27 Microsoft® Windows® Operating System FileInfo Filter Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\fileinfo.sys PxHelp20.sys 0x82e92000 0x82e9ade0 0x00008de0 0x4679a978 21/06/2007 0:26:00 PxHelp20 Px Engine Device Driver for Windows 2000/XP 3.00.67a Sonic Solutions C:\Windows\system32\drivers\PxHelp20.sys ksecdd.sys 0x82e9b000 0x82f0c000 0x00071000 0x4a364335 15/06/2009 14:48:53 Microsoft® Windows® Operating System Kernel Security Support Provider Interface 6.0.6002.18051 (vistasp2_gdr.090615-0258) Microsoft Corporation C:\Windows\system32\drivers\ksecdd.sys ndis.sys 0x8a40f000 0x8a51a000 0x0010b000 0x49e02080 11/04/2009 6:45:52 Microsoft® Windows® Operating System NDIS 6.0 wrapper driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\ndis.sys msrpc.sys 0x8a51a000 0x8a545000 0x0002b000 0x49e01e8c 11/04/2009 6:37:32 Microsoft® Windows® Operating System Kernel Remote Procedure Call Provider 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\msrpc.sys NETIO.SYS 0x8a545000 0x8a580000 0x0003b000 0x49e0209d 11/04/2009 6:46:21 Microsoft® Windows® Operating System Network I/O Subsystem 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\NETIO.SYS tcpip.sys 0x82f0c000 0x82ff6000 0x000ea000 0x4c18d585 16/06/2010 15:45:41 Microsoft® Windows® Operating System TCP/IP Driver 6.0.6002.18272 (vistasp2_gdr.100616-0352) Microsoft Corporation C:\Windows\system32\drivers\tcpip.sys fwpkclnt.sys 0x8a580000 0x8a59b000 0x0001b000 0x49e02076 11/04/2009 6:45:42 Microsoft® Windows® Operating System FWP/IPsec Kernel-Mode API 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\fwpkclnt.sys Ntfs.sys 0x8a600000 0x8a710000 0x00110000 0x49e0192a 11/04/2009 6:14:34 Besturingssysteem Microsoft® Windows® NT-bestandssysteemstuurprogramma 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\Ntfs.sys volsnap.sys 0x8a710000 0x8a749000 0x00039000 0x49e01f09 11/04/2009 6:39:37 Besturingssysteem Microsoft® Windows® Volume Shadow Copy-stuurprogramma 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\volsnap.sys spldr.sys 0x8a749000 0x8a751000 0x00008000 0x467b17dd 22/06/2007 2:29:17 Microsoft® Windows® Operating System loader for security processor 6.0.6001.16606 (lh_security(sepbld-s).070621-1657) Microsoft Corporation C:\Windows\system32\drivers\spldr.sys mup.sys 0x8a751000 0x8a760000 0x0000f000 0x49e01914 11/04/2009 6:14:12 Microsoft® Windows® Operating System Multiple UNC Provider driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\mup.sys ecache.sys 0x8a760000 0x8a787000 0x00027000 0x49e01f2c 11/04/2009 6:40:12 Microsoft® Windows® Operating System Special Memory Device Cache 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\ecache.sys disk.sys 0x8a787000 0x8a798000 0x00011000 0x49e01ef2 11/04/2009 6:39:14 Microsoft® Windows® Operating System PnP Disk Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\disk.sys crcdisk.sys 0x8a798000 0x8a7a1000 0x00009000 0x4549b1cb 2/11/2006 10:52:27 Microsoft® Windows® Operating System Disk Block Verification Filter Driver 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\crcdisk.sys tunnel.sys 0x8a7d6000 0x8a7e1000 0x0000b000 0x4b7d244d 18/02/2010 13:28:13 Microsoft® Windows® Operating System Microsoft Tunnel Interface Driver 6.0.6002.18209 (vistasp2_gdr.100218-0019) Microsoft Corporation C:\Windows\system32\drivers\tunnel.sys tunmp.sys 0x8a7e1000 0x8a7ea000 0x00009000 0x479190dc 19/01/2008 7:55:40 Microsoft® Windows® Operating System Microsoft Tunnel Interface Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\tunmp.sys intelppm.sys 0x8a7ea000 0x8a7f9000 0x0000f000 0x47918a38 19/01/2008 7:27:20 Microsoft® Windows® Operating System Processor Device Driver 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\intelppm.sys usbohci.sys 0x8a59b000 0x8a5a5000 0x0000a000 0x49e01fcc 11/04/2009 6:42:52 Microsoft® Windows® Operating System OHCI USB Miniport Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\usbohci.sys USBPORT.SYS 0x8a5a5000 0x8a5e3000 0x0003e000 0x49e01fcf 11/04/2009 6:42:55 Microsoft® Windows® Operating System USB 1.1 & 2.0 Port Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\USBPORT.SYS usbehci.sys 0x8a5e3000 0x8a5f2000 0x0000f000 0x49e01fcc 11/04/2009 6:42:52 Microsoft® Windows® Operating System EHCI eUSB Miniport Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\usbehci.sys cdrom.sys 0x805d6000 0x805ee000 0x00018000 0x49e01ef5 11/04/2009 6:39:17 Microsoft® Windows® Operating System SCSI CD-ROM Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\cdrom.sys GEARAspiWDM.sys 0x8a7f9000 0x8a7fb700 0x00002700 0x47fbc45a 8/04/2008 21:15:38 CD DVD Filter CD DVD Filter 2.00.07.05 GEAR Software Inc. C:\Windows\system32\drivers\GEARAspiWDM.sys HDAudBus.sys 0x8f004000 0x8f091000 0x0008d000 0x49e01fc1 11/04/2009 6:42:41 Microsoft® Windows® Operating System High Definition Audio Bus Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\HDAudBus.sys ohci1394.sys 0x8f091000 0x8f0a0300 0x0000f300 0x49e01fd8 11/04/2009 6:43:04 Microsoft® Windows® Operating System 1394 OpenHCI Port Driver 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\ohci1394.sys 1394BUS.SYS 0x8f0a1000 0x8f0ae080 0x0000d080 0x47919057 19/01/2008 7:53:27 Microsoft® Windows® Operating System 1394 Bus Device Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\1394BUS.SYS AVerBDA3x.sys 0x8f0bc000 0x8f1dc400 0x00120400 0x46515b84 21/05/2007 10:42:44 3, 5, 0, 65 AVerMedia TECHNOLOGIES, Inc. C:\Windows\system32\drivers\AVerBDA3x.sys ks.sys 0x8f209000 0x8f233000 0x0002a000 0x49e01ed7 11/04/2009 6:38:47 Microsoft® Windows® Operating System Kernel CSA Library 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\ks.sys BdaSup.SYS 0x8f233000 0x8f236000 0x00003000 0x4791905a 19/01/2008 7:53:30 Microsoft® Windows® Operating System Microsoft BDA Driver Support Library 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\BdaSup.SYS nvmfdx32.sys 0x8f236000 0x8f332680 0x000fc680 0x473f7d62 18/11/2007 1:46:42 NVIDIA Networking Driver NVIDIA MCP Networking Function Driver. 1.00.01.06772 NVIDIA Corporation C:\Windows\system32\drivers\nvmfdx32.sys nvlddmkm.sys 0x8f40a000 0x8fe87dc0 0x00a7ddc0 0x4c379162 9/07/2010 23:15:14 NVIDIA Windows Kernel Mode Driver, Version 258.96 NVIDIA Windows Kernel Mode Driver, Version 258.96 8.17.12.5896 NVIDIA Corporation C:\Windows\system32\drivers\nvlddmkm.sys nvBridge.kmd 0x8fe88000 0x8fe89040 0x00001040 0x4c379033 9/07/2010 23:10:11 NVIDIA Compatible Windows Vista Kernel Mode Driver, Version 258.96 NVIDIA Compatible Windows Vista Kernel Mode Driver, Version 258.96 8.17.12.5896 NVIDIA Corporation C:\Windows\system32\drivers\nvBridge.kmd dxgkrnl.sys 0x8fe8a000 0x8ff2a000 0x000a0000 0x4d383dc1 20/01/2011 15:50:57 Microsoft® Windows® Operating System DirectX Graphics Kernel 7.0.6002.18107 (vistasp2_gdr_win7ip_dgt(wmbla).090924-1550) Microsoft Corporation C:\Windows\system32\drivers\dxgkrnl.sys watchdog.sys 0x8ff2a000 0x8ff36000 0x0000c000 0x49e01b13 11/04/2009 6:22:43 Microsoft® Windows® Operating System Watchdog Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\watchdog.sys x10hid.sys 0x8ff36000 0x8ff37b80 0x00001b80 0x455dfd7c 17/11/2006 20:20:44 X10 HID Control Interface X10 HID Control Interface 6.0.0.209 X10 Wireless Technology, Inc. C:\Windows\system32\drivers\x10hid.sys HIDCLASS.SYS 0x8ff38000 0x8ff48000 0x00010000 0x49e01fc7 11/04/2009 6:42:47 Microsoft® Windows® Operating System Hid Class Library 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\HIDCLASS.SYS HIDPARSE.SYS 0x8ff48000 0x8ff4e380 0x00006380 0x4791904c 19/01/2008 7:53:16 Microsoft® Windows® Operating System Hid Parsing Library 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\HIDPARSE.SYS msiscsi.sys 0x8ff4f000 0x8ff7e000 0x0002f000 0x49e01f27 11/04/2009 6:40:07 Microsoft® Windows® Operating System Microsoft iSCSI Initiator Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\msiscsi.sys TDI.SYS 0x8ff7e000 0x8ff89000 0x0000b000 0x47919136 19/01/2008 7:57:10 Microsoft® Windows® Operating System TDI Wrapper 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\TDI.SYS rasl2tp.sys 0x8ff89000 0x8ffa0000 0x00017000 0x47919111 19/01/2008 7:56:33 Microsoft® Windows® Operating System RAS L2TP mini-port/call-manager driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\rasl2tp.sys ndistapi.sys 0x8ffa0000 0x8ffab000 0x0000b000 0x47919108 19/01/2008 7:56:24 Microsoft® Windows® Operating System NDIS 3.0 connection wrapper driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\ndistapi.sys ndiswan.sys 0x8ffab000 0x8ffce000 0x00023000 0x49e020a7 11/04/2009 6:46:31 Microsoft® Windows® Operating System MS PPP Framing Driver (Strong Encryption) 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\ndiswan.sys raspppoe.sys 0x8ffce000 0x8ffdd000 0x0000f000 0x49e020a6 11/04/2009 6:46:30 Microsoft® Windows® Operating System RAS PPPoE mini-port/call-manager driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\raspppoe.sys raspptp.sys 0x8ffdd000 0x8fff1000 0x00014000 0x47919112 19/01/2008 7:56:34 Microsoft® Windows® Operating System Peer-to-Peer Tunneling Protocol 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\raspptp.sys rassstp.sys 0x8f333000 0x8f348000 0x00015000 0x49e020b0 11/04/2009 6:46:40 Microsoft® Windows® Operating System RAS SSTP Miniport Call Manager 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\rassstp.sys pcouffin.sys 0x8fff1000 0x8fffc900 0x0000b900 0x457584b9 5/12/2006 16:39:53 Patin couffin engine low level access layer for CD/DVD/BD devices 1.37 VSO Software C:\Windows\system32\drivers\pcouffin.sys termdd.sys 0x8f348000 0x8f358000 0x00010000 0x49e021c2 11/04/2009 6:51:14 Microsoft® Windows® Operating System Terminal Server Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\termdd.sys kbdclass.sys 0x8f358000 0x8f363000 0x0000b000 0x47918f5a 19/01/2008 7:49:14 Besturingssysteem Microsoft® Windows® Stuurprogramma voor verschillende toetsenbordtypen 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\kbdclass.sys mouclass.sys 0x8f363000 0x8f36e000 0x0000b000 0x47918f5a 19/01/2008 7:49:14 Besturingssysteem Microsoft® Windows® Stuurprogramma voor muistypen 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\mouclass.sys mcdbus.sys 0x8f36e000 0x8f38a800 0x0001c800 0x488d8f1f 28/07/2008 11:19:27 MagicISO SCSI Host Controller MagicISO SCSI Host Controller 2.7.105.132 MagicISO, Inc. C:\Windows\system32\drivers\mcdbus.sys SCSIPORT.SYS 0x8f38b000 0x8f3b1000 0x00026000 0x47918f78 19/01/2008 7:49:44 Microsoft® Windows® Operating System SCSI Port Driver 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\SCSIPORT.SYS swenum.sys 0x8fffd000 0x8fffe380 0x00001380 0x47918f60 19/01/2008 7:49:20 Microsoft® Windows® Operating System Plug and Play Software Device Enumerator 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\swenum.sys mssmbios.sys 0x8f400000 0x8f40a000 0x0000a000 0x47918b87 19/01/2008 7:32:55 Microsoft® Windows® Operating System System Management BIOS Driver 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\mssmbios.sys umbus.sys 0x8f3b1000 0x8f3be000 0x0000d000 0x47919064 19/01/2008 7:53:40 Microsoft® Windows® Operating System User-Mode Bus Enumerator 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\umbus.sys usbhub.sys 0x8f3be000 0x8f3f3000 0x00035000 0x49e01fe2 11/04/2009 6:43:14 Microsoft® Windows® Operating System Default Hub Driver for USB 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\usbhub.sys kbdhid.sys 0x8f3f3000 0x8f3fc000 0x00009000 0x49e01ed0 11/04/2009 6:38:40 Besturingssysteem Microsoft® Windows® Stuurprogramma voor HID-toetsenbordfilter 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\kbdhid.sys NDProxy.SYS 0x8f1dd000 0x8f1ee000 0x00011000 0x4791910c 19/01/2008 7:56:28 Microsoft® Windows® Operating System NDIS Proxy 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\NDProxy.SYS RTKVHDA.sys 0x90008000 0x901e81c0 0x001e01c0 0x471494c4 16/10/2007 12:39:00 Realtek® High Definition Audio Function Driver Realtek® High Definition Audio Function Driver 6.0.1.5497 built by: WinDDK Realtek Semiconductor Corp. C:\Windows\system32\drivers\RTKVHDA.sys portcls.sys 0x90201000 0x9022e000 0x0002d000 0x49e01fc8 11/04/2009 6:42:48 Microsoft® Windows® Operating System Port Class (Class Driver for Port/Miniport Devices) 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\portcls.sys drmk.sys 0x9022e000 0x90253000 0x00025000 0x47919e4e 19/01/2008 8:53:02 Microsoft® Windows® Operating System Microsoft Kernel DRM Descrambler Filter 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\drmk.sys aswSnx.SYS 0x90253000 0x902c3000 0x00070000 0x4dac7238 18/04/2011 19:17:44 avast! Antivirus System avast! Virtualization Driver 6.0.1091.0 AVAST Software C:\Windows\system32\drivers\aswSnx.SYS Fs_Rec.SYS 0x902c3000 0x902cc000 0x00009000 0x47918a5d 19/01/2008 7:27:57 Microsoft® Windows® Operating System File System Recognizer Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\Fs_Rec.SYS Null.SYS 0x902cc000 0x902d3000 0x00007000 0x47918f58 19/01/2008 7:49:12 Microsoft® Windows® Operating System NULL Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\Null.SYS Beep.SYS 0x902d3000 0x902da000 0x00007000 0x47918f56 19/01/2008 7:49:10 Microsoft® Windows® Operating System BEEP Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\Beep.SYS vga.sys 0x902ed000 0x902f9000 0x0000c000 0x47919006 19/01/2008 7:52:06 Microsoft® Windows® Operating System VGA/Super VGA Video Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\vga.sys VIDEOPRT.SYS 0x902f9000 0x9031a000 0x00021000 0x4791900a 19/01/2008 7:52:10 Microsoft® Windows® Operating System Video Port Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\VIDEOPRT.SYS RDPCDD.sys 0x9031a000 0x90322000 0x00008000 0x47919224 19/01/2008 8:01:08 Microsoft® Windows® Operating System RDP Miniport 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\RDPCDD.sys rdpencdd.sys 0x90322000 0x9032a000 0x00008000 0x47919225 19/01/2008 8:01:09 Microsoft® Windows® Operating System RDP Miniport 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\rdpencdd.sys Msfs.SYS 0x9032a000 0x90335000 0x0000b000 0x47918a68 19/01/2008 7:28:08 Microsoft® Windows® Operating System Mailslot driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\Msfs.SYS Npfs.SYS 0x90335000 0x90343000 0x0000e000 0x49e01909 11/04/2009 6:14:01 Microsoft® Windows® Operating System NPFS Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\Npfs.SYS rasacd.sys 0x90343000 0x9034c000 0x00009000 0x4791910f 19/01/2008 7:56:31 Microsoft® Windows® Operating System RAS Automatic Connection Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\rasacd.sys tdx.sys 0x9034c000 0x90362000 0x00016000 0x49e02084 11/04/2009 6:45:56 Microsoft® Windows® Operating System TDI Translation Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\tdx.sys aswTdi.SYS 0x90362000 0x9036bf00 0x00009f00 0x4dac71e1 18/04/2011 19:16:17 avast! Antivirus System avast! TDI Filter Driver 6.0.1091.0 built by: WinDDK AVAST Software C:\Windows\system32\drivers\aswTdi.SYS smb.sys 0x9036c000 0x90380000 0x00014000 0x49e02062 11/04/2009 6:45:22 Microsoft® Windows® Operating System SMB Transport driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\smb.sys afd.sys 0x90380000 0x903c8000 0x00048000 0x49e020c5 11/04/2009 6:47:01 Besturingssysteem Microsoft® Windows® Ancillary Function Driver for WinSock 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\afd.sys aswRdr.SYS 0x903c8000 0x903cc200 0x00004200 0x4dac712f 18/04/2011 19:13:19 avast! Antivirus System avast! TDI RDR Driver 6.0.1091.0 built by: WinDDK AVAST Software C:\Windows\system32\drivers\aswRdr.SYS netbt.sys 0x903cd000 0x903ff000 0x00032000 0x49e0206f 11/04/2009 6:45:35 Microsoft® Windows® Operating System MBT Transport driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\netbt.sys pacer.sys 0x901e9000 0x901ff000 0x00016000 0x49e0207f 11/04/2009 6:45:51 Besturingssysteem Microsoft® Windows® QoS-pakketplanner 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\pacer.sys netbios.sys 0x902da000 0x902e8000 0x0000e000 0x479190e1 19/01/2008 7:55:45 Microsoft® Windows® Operating System NetBIOS interface driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\netbios.sys wanarp.sys 0x90803000 0x90816000 0x00013000 0x4791910f 19/01/2008 7:56:31 Microsoft® Windows® Operating System MS Remote Access and Routing ARP Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\wanarp.sys rdbss.sys 0x90816000 0x90852000 0x0003c000 0x49e01922 11/04/2009 6:14:26 Microsoft® Windows® Operating System Redirected Drive Buffering SubSystem Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\rdbss.sys usbccgp.sys 0x90852000 0x90869000 0x00017000 0x47919059 19/01/2008 7:53:29 Microsoft® Windows® Operating System USB Common Class Generic Parent Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\usbccgp.sys USBD.SYS 0x90869000 0x9086a700 0x00001700 0x4791904d 19/01/2008 7:53:17 Microsoft® Windows® Operating System Universal Serial Bus Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\USBD.SYS nsiproxy.sys 0x9086b000 0x90875000 0x0000a000 0x479190e6 19/01/2008 7:55:50 Microsoft® Windows® Operating System NSI Proxy 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\nsiproxy.sys dfsc.sys 0x90875000 0x9088c000 0x00017000 0x49e01914 11/04/2009 6:14:12 Microsoft® Windows® Operating System DFS Namespace Client Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\dfsc.sys aswSP.SYS 0x9088c000 0x908d4f00 0x00048f00 0x4dac722c 18/04/2011 19:17:32 avast! Antivirus System avast! self protection module 6.0.1091.0 AVAST Software C:\Windows\system32\drivers\aswSP.SYS hidusb.sys 0x908d5000 0x908de000 0x00009000 0x49e01fc8 11/04/2009 6:42:48 Microsoft® Windows® Operating System USB Miniport Driver for Input Devices 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\hidusb.sys mouhid.sys 0x908de000 0x908e6000 0x00008000 0x47918f5c 19/01/2008 7:49:16 Besturingssysteem Microsoft® Windows® Stuurprogramma voor HID-muisfilter 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\mouhid.sys BTHUSB.sys 0x908e6000 0x908f3000 0x0000d000 0x49e01fdc 11/04/2009 6:43:08 Microsoft® Windows® Operating System Bluetooth Miniport Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\BTHUSB.sys bthport.sys 0x908f3000 0x90973000 0x00080000 0x49e01fdd 11/04/2009 6:43:09 Besturingssysteem Microsoft® Windows® Bluetooth-busstuurprogramma 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\bthport.sys rfcomm.sys 0x90973000 0x9099c000 0x00029000 0x49e01fe0 11/04/2009 6:43:12 Microsoft® Windows® Operating System Bluetooth RFCOMM Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\rfcomm.sys BthEnum.sys 0x9099c000 0x909a6000 0x0000a000 0x49e01fdd 11/04/2009 6:43:09 Microsoft® Windows® Operating System Bluetooth Bus Extender 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\BthEnum.sys bthpan.sys 0x909a6000 0x909c0000 0x0001a000 0x47919068 19/01/2008 7:53:44 Microsoft® Windows® Operating System Bluetooth Personal Area Networking 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\bthpan.sys hidbth.sys 0x909c0000 0x909cc000 0x0000c000 0x49e01fdd 11/04/2009 6:43:09 Besturingssysteem Microsoft® Windows® Bluetooth Miniport-stuurprogramma voor HID-apparaten 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\hidbth.sys LHidFilt.Sys 0x909cc000 0x909d3080 0x00007080 0x4a391e80 17/06/2009 18:49:04 Logitech SetPoint Logitech HID Filter Driver. 4.82.4.00 Logitech, Inc. C:\Windows\system32\drivers\LHidFilt.Sys LMouFilt.Sys 0x909d4000 0x909db800 0x00007800 0x4a391e84 17/06/2009 18:49:08 Logitech SetPoint Logitech Mouse Filter Driver. 4.82.4.00 Logitech, Inc. C:\Windows\system32\drivers\LMouFilt.Sys USBSTOR.SYS 0x909dc000 0x909f1000 0x00015000 0x49e01fcf 11/04/2009 6:42:55 Microsoft® Windows® Operating System USB Mass Storage Class Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\USBSTOR.SYS crashdmp.sys 0x909f1000 0x909fe000 0x0000d000 0x49e01ef0 11/04/2009 6:39:12 Microsoft® Windows® Operating System Crash Dump Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\crashdmp.sys dump_storport.sys 0x8f0af000 0x8f0b9000 0x0000a000 0x49e01eef 11/04/2009 6:39:11 dump_nvstor32.sys 0x8a7a1000 0x8a7bf000 0x0001e000 0x46e71431 12/09/2007 0:18:25 win32k.sys 0x99c70000 0x99e74000 0x00204000 0x4d6f96aa 3/03/2011 15:24:58 Besturingssysteem Microsoft® Windows® Multi-User Win32-stuurprogramma 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\win32k.sys Dxapi.sys 0x8f1ee000 0x8f1f8000 0x0000a000 0x47918c4c 19/01/2008 7:36:12 Microsoft® Windows® Operating System DirectX API Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\Dxapi.sys monitor.sys 0x8a7bf000 0x8a7ce000 0x0000f000 0x47919013 19/01/2008 7:52:19 Microsoft® Windows® Operating System Monitor Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\monitor.sys TSDDD.dll 0x99e90000 0x99e99000 0x00009000 0x47919225 19/01/2008 8:01:09 Microsoft® Windows® Operating System Framebuffer Display Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\TSDDD.dll cdd.dll 0x99eb0000 0x99ebe000 0x0000e000 0x4d385def 20/01/2011 18:08:15 Microsoft® Windows® Operating System Canonical Display Driver 7.0.6002.22573 (vistasp2_ldr.110120-0254) Microsoft Corporation C:\Windows\system32\cdd.dll ATMFD.DLL 0x99ec0000 0x99f0d000 0x0004d000 0x4d5bd8ef 16/02/2011 16:02:23 Adobe Type Manager Windows NT OpenType/Type 1 Font Driver 5.1 Build 232 Adobe Systems Incorporated C:\Windows\system32\ATMFD.DLL luafv.sys 0x9da01000 0x9da1c000 0x0001b000 0x47918afb 19/01/2008 7:30:35 Besturingssysteem Microsoft® Windows® Filterstuurprogramma voor LUA-bestandsvirtualisatie 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\luafv.sys aswMonFlt.sys 0x9da1c000 0x9da54000 0x00038000 0x4dac7123 18/04/2011 19:13:07 avast! Antivirus System avast! File System Minifilter for Windows 2003/Vista 6.0.1091.0 AVAST Software C:\Windows\system32\drivers\aswMonFlt.sys aswFsBlk.SYS 0x9da54000 0x9da56b00 0x00002b00 0x4dac7119 18/04/2011 19:12:57 avast! Antivirus System avast! File System Access Blocking Driver 6.0.1091.0 AVAST Software C:\Windows\system32\drivers\aswFsBlk.SYS WudfPf.sys 0x9da57000 0x9da71000 0x0001a000 0x4a5bc835 14/07/2009 1:50:13 Microsoft® Windows® Operating System Windows Driver Foundation - User-mode Driver Framework Platform Driver 6.1.7600.16385 (win7_rtm.090713-1255) Microsoft Corporation C:\Windows\system32\drivers\WudfPf.sys spsys.sys 0x9da84000 0x9db34000 0x000b0000 0x49b69f04 10/03/2009 19:10:28 Microsoft® Windows® Operating System security processor 6.0.6002.17040 (longhorn(sepbld-s).090310-1002) Microsoft Corporation C:\Windows\system32\drivers\spsys.sys lltdio.sys 0x9db34000 0x9db44000 0x00010000 0x479190b7 19/01/2008 7:55:03 Microsoft® Windows® Operating System Link-Layer Topology Mapper I/O Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\lltdio.sys nwifi.sys 0x9db44000 0x9db6e000 0x0002a000 0x49e01fef 11/04/2009 6:43:27 Microsoft® Windows® Operating System NativeWiFi Miniport Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\nwifi.sys ndisuio.sys 0x9db6e000 0x9db78000 0x0000a000 0x479190dc 19/01/2008 7:55:40 Microsoft® Windows® Operating System NDIS User mode I/O driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\ndisuio.sys rspndr.sys 0x9db78000 0x9db8b000 0x00013000 0x479190b7 19/01/2008 7:55:03 Microsoft® Windows® Operating System Link-Layer Topology Responder Driver for NDIS 6 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\rspndr.sys HTTP.sys 0x9db8b000 0x9dbf8000 0x0006d000 0x4b804bcb 20/02/2010 22:53:31 Besturingssysteem Microsoft® Windows® HTTP-protocolstack 6.0.6002.18136 (vistasp2_gdr.091102-2300) Microsoft Corporation C:\Windows\system32\drivers\HTTP.sys srvnet.sys 0xa3409000 0xa3426000 0x0001d000 0x4d5e7c19 18/02/2011 16:03:05 Microsoft® Windows® Operating System Server Network driver 6.0.6002.18407 (vistasp2_gdr.110218-0321) Microsoft Corporation C:\Windows\system32\drivers\srvnet.sys bowser.sys 0xa3426000 0xa343f000 0x00019000 0x4d63b8ea 22/02/2011 15:23:54 Microsoft® Windows® Operating System NT Lan Manager Datagram Receiver Driver 6.0.6002.18409 (vistasp2_gdr.110222-0237) Microsoft Corporation C:\Windows\system32\drivers\bowser.sys mpsdrv.sys 0xa343f000 0xa3454000 0x00015000 0x479190a5 19/01/2008 7:54:45 Microsoft® Windows® Operating System Microsoft Protection Service Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\mpsdrv.sys mrxdav.sys 0xa3454000 0xa3475000 0x00021000 0x49e0192f 11/04/2009 6:14:39 Microsoft® Windows® Operating System Windows NT WebDav Minirdr 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\mrxdav.sys mrxsmb.sys 0xa3475000 0xa3494000 0x0001f000 0x4d63b8ee 22/02/2011 15:23:58 Microsoft® Windows® Operating System Windows NT SMB Minirdr 6.0.6002.18409 (vistasp2_gdr.110222-0237) Microsoft Corporation C:\Windows\system32\drivers\mrxsmb.sys mrxsmb10.sys 0xa3494000 0xa34cd000 0x00039000 0x4d63b8f9 22/02/2011 15:24:09 Microsoft® Windows® Operating System Longhorn SMB Downlevel SubRdr 6.0.6002.18409 (vistasp2_gdr.110222-0237) Microsoft Corporation C:\Windows\system32\drivers\mrxsmb10.sys mrxsmb20.sys 0xa34cd000 0xa34e5000 0x00018000 0x4d63b8f2 22/02/2011 15:24:02 Microsoft® Windows® Operating System Longhorn SMB 2.0 Redirector 6.0.6002.18409 (vistasp2_gdr.110222-0237) Microsoft Corporation C:\Windows\system32\drivers\mrxsmb20.sys srv2.sys 0xa34e5000 0xa350d000 0x00028000 0x4d5e7c1c 18/02/2011 16:03:08 Microsoft® Windows® Operating System Smb 2.0 Server driver 6.0.6002.18407 (vistasp2_gdr.110218-0321) Microsoft Corporation C:\Windows\system32\drivers\srv2.sys srv.sys 0xa350d000 0xa355c000 0x0004f000 0x4d5e7c30 18/02/2011 16:03:28 Microsoft® Windows® Operating System Server driver 6.0.6000.16386 (vista_rtm.061101-2205) Microsoft Corporation C:\Windows\system32\drivers\srv.sys hardlock.sys 0xa3c08000 0xa3caf400 0x000a7400 0x42e7874d 27/07/2005 15:08:29 Hardlock Device Driver for Windows NT Hardlock Device Driver for Windows NT 3.40 Aladdin Knowledge Systems Ltd. C:\Windows\system32\drivers\hardlock.sys fastfat.SYS 0xa3cb0000 0xa3cd8000 0x00028000 0x49e01900 11/04/2009 6:13:52 Microsoft® Windows® Operating System Fast FAT File System Driver 6.0.6002.18005 (lh_sp2rtm.090410-1830) Microsoft Corporation C:\Windows\system32\drivers\fastfat.SYS peauth.sys 0xa3cd8000 0xa3db6000 0x000de000 0x453c8384 23/10/2006 10:55:32 Microsoft® Windows® Operating System Protected Environment Authentication and Authorization Export Driver 6.0.5840.16385 (VISTA_RTM_CLIENT_akaDMD.061022-1800) Microsoft Corporation C:\Windows\system32\drivers\peauth.sys secdrv.SYS 0xa3db6000 0xa3dc0000 0x0000a000 0x45080528 13/09/2006 15:18:32 Macrovision SECURITY Driver Macrovision SECURITY Driver 4.03.086 Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K. C:\Windows\system32\drivers\secdrv.SYS tcpipreg.sys 0xa3dc0000 0xa3dcc000 0x0000c000 0x4b1e8c3a 8/12/2009 19:26:18 Microsoft® Windows® Operating System TCP/IP Registry Compatibility Driver 6.0.6002.18160 (vistasp2_gdr.091208-0542) Microsoft Corporation C:\Windows\system32\drivers\tcpipreg.sys WUDFRd.sys 0xa3dcc000 0xa3dec480 0x00020480 0x4a5bc854 14/07/2009 1:50:44 Microsoft® Windows® Operating System Windows Driver Foundation - User-mode Driver Framework Reflector 6.1.7600.16385 (win7_rtm.090713-1255) Microsoft Corporation C:\Windows\system32\drivers\WUDFRd.sys cdfs.sys 0xa355c000 0xa3572000 0x00016000 0x47918a62 19/01/2008 7:28:02 Microsoft® Windows® Operating System CD-ROM File System Driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\cdfs.sys MSPQM.sys 0xa3df8000 0xa3df9580 0x00001580 0x47918f5e 19/01/2008 7:49:18 Microsoft® Windows® Operating System MS Proxy Quality Manager 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\MSPQM.sys asyncmac.sys 0xa3ded000 0xa3df6000 0x00009000 0x4791910d 19/01/2008 7:56:29 Microsoft® Windows® Operating System MS Remote Access serial network driver 6.0.6001.18000 (longhorn_rtm.080118-1840) Microsoft Corporation C:\Windows\system32\drivers\asyncmac.sys Log file: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 2:41:15, on 16/06/2011 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.19048) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Logitech\SetPoint\LBTWiz.exe C:\Program Files\Belgium Identity Card\beid35gui.exe C:\Windows\UMStor\Res.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Logitech\SetPoint\SetPoint.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\system32\wbem\unsecapp.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe C:\Windows\system32\Macromed\Flash\FlashUtil10m_ActiveX.exe C:\Windows\system32\wuauclt.exe C:\Program Files\NirSoft\BlueScreenView\BlueScreenView.exe C:\Windows\system32\SearchFilterHost.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R3 - URLSearchHook: Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll O1 - Hosts: ::1 localhost O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\HP\Smart Web Printing\hpswp_framework.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [bluetooth Connection Assistant] LBTWIZ.EXE -silent O4 - HKLM\..\Run: [beid] "C:\Program Files\Belgium Identity Card\beid35gui.exe" /startup O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE O4 - HKLM\..\Run: [uSB Storage Toolbox] C:\Windows\UMStor\Res.EXE O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Startup: Logitech . Productregistratie.lnk = C:\Program Files\Common Files\Logishrd\eReg\SetPoint\eReg.exe O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe O8 - Extra context menu item: &Winamp Search - C:\ProgramData\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: HP Clipboek - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\HP\Smart Web Printing\hpswp_extensions.dll O9 - Extra button: HP Slim selecteren - {700259D7-1666-479a-93B1-3250410481E8} - C:\HP\Smart Web Printing\hpswp_extensions.dll O15 - Trusted Zone: Media Authorization Network O15 - Trusted Zone: http://messagent.telenet.be O15 - Trusted Zone: Yelo.be - TV overal in je huis O15 - Trusted Zone: http://www.telenet.be O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1280386301191 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1276204295004 O16 - DPF: {80AEEC0E-A2BE-4B8D-985F-350FE869DC40} (HPDDClientExec Class) - http://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsVista.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game08.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - C:\Program Files\Packard bell\SAXO27\HIDSERVICE.EXE O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe -- End of file - 10185 bytes --------------------------------------------------------------------------------------------------------- Malwarebytes' Anti-Malware 1.51.0.1200 www.malwarebytes.org Databaseversie: 6846 Windows 6.0.6002 Service Pack 2 Internet Explorer 8.0.6001.19048 16/06/2011 2:47:56 mbam-log-2011-06-16 (02-47-56).txt Scantype: Snelle scan Objecten gescand: 162626 Verstreken tijd: 3 minuut/minuten, 57 seconde(n) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 0 Registerwaarden geïnfecteerd: 0 Registerdata geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 0 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registersleutels geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerwaarden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerdata geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Mappen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Bestanden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd)

CCleaner ken ik , gebruik dat regelmatig eens Iedereen bedankt voor de moeite. Groetjess

Ja, ik heb de opdrachten uitgevoerd door telkens te copieren en te plakken. Kheb ook eens in t register gekeken en daar alles van Magix en Symantec verwijdert maar dat helpt ook niet. Zal nog eens in veilige modus proberen en als da nie lukt geef ik t op. Zoveel problemen zal dat ook niet geven op pc denk ik. Het grootste probleem, System smart security, is opgelost en met dank aan de vele reacties. ---------- Post toegevoegd om 07:12 ---------- Vorige post was om 07:01 ---------- Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 9:09:55, on 14/06/2011 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.19048) Boot mode: Safe mode with network support Running processes: C:\Windows\Explorer.EXE C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R3 - URLSearchHook: Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll O1 - Hosts: ::1 localhost O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\HP\Smart Web Printing\hpswp_framework.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Winamp Search - C:\ProgramData\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: HP Clipboek - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\HP\Smart Web Printing\hpswp_extensions.dll O9 - Extra button: HP Slim selecteren - {700259D7-1666-479a-93B1-3250410481E8} - C:\HP\Smart Web Printing\hpswp_extensions.dll O15 - Trusted Zone: Media Authorization Network O15 - Trusted Zone: http://messagent.telenet.be O15 - Trusted Zone: Yelo.be - TV overal in je huis O15 - Trusted Zone: http://www.telenet.be O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1280386301191 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1276204295004 O16 - DPF: {80AEEC0E-A2BE-4B8D-985F-350FE869DC40} (HPDDClientExec Class) - http://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsVista.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game08.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - C:\Program Files\Packard bell\SAXO27\HIDSERVICE.EXE O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe -- End of file - 8540 bytes Zo te zien is t nu in orde

Stegisoft, tja, ik ben gewoon om het simpel te houden Maar die 3 lukt niet om ze te verwijderen, en dat lijkt toch wel heel simpel

Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 23:43:29, on 13/06/2011 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.19048) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Windows Defender\MSASCui.exe C:\Windows\RtHDVCpl.exe C:\Windows\system32\taskeng.exe C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe C:\Windows\ehome\ehtray.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\system32\wbem\unsecapp.exe C:\Windows\system32\wuauclt.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R3 - URLSearchHook: Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll O1 - Hosts: ::1 localhost O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\HP\Smart Web Printing\hpswp_framework.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Winamp Search - C:\ProgramData\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: HP Clipboek - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\HP\Smart Web Printing\hpswp_extensions.dll O9 - Extra button: HP Slim selecteren - {700259D7-1666-479a-93B1-3250410481E8} - C:\HP\Smart Web Printing\hpswp_extensions.dll O15 - Trusted Zone: Media Authorization Network O15 - Trusted Zone: http://messagent.telenet.be O15 - Trusted Zone: Yelo.be - TV overal in je huis O15 - Trusted Zone: http://www.telenet.be O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1280386301191 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1276204295004 O16 - DPF: {80AEEC0E-A2BE-4B8D-985F-350FE869DC40} (HPDDClientExec Class) - http://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsVista.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game08.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - Unknown owner - C:\MAGIX\Common\Database\bin\fbserver.exe (file missing) O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - C:\Program Files\Packard bell\SAXO27\HIDSERVICE.EXE O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe -- End of file - 9745 bytes Kheb ook geprobeerd om de volgende 3 te verwijderen maar dat lukt niet O23 - Service: Symantec Lic O23 - Service: Firebird Server O23 - Service: LiveUpdate Notice Service Ex

Aha, daar zit de fout. Ik had tekens de snlkoppeling gebruikt en daarmee krijg ik het zelfde, khad telekns als admin. moeten openen en da gaat nie via snelkoppeling. Srr Dit is het juiste: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 19:47:59, on 13/06/2011 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.19048) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\system32\wbem\unsecapp.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Windows\system32\wuauclt.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe C:\Windows\system32\Macromed\Flash\FlashUtil10m_ActiveX.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE} R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R3 - URLSearchHook: Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll O1 - Hosts: ::1 localhost O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\HP\Smart Web Printing\hpswp_framework.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: MediaBar - {ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F} - C:\PROGRA~1\IMESHA~1\MediaBar\ToolBar\iMeshMediaBarDx.dll (file missing) O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll O3 - Toolbar: MediaBar - {ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F} - C:\PROGRA~1\IMESHA~1\MediaBar\ToolBar\iMeshMediaBarDx.dll (file missing) O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Winamp Search - C:\ProgramData\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: HP Clipboek - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\HP\Smart Web Printing\hpswp_extensions.dll O9 - Extra button: HP Slim selecteren - {700259D7-1666-479a-93B1-3250410481E8} - C:\HP\Smart Web Printing\hpswp_extensions.dll O15 - Trusted Zone: Media Authorization Network O15 - Trusted Zone: http://messagent.telenet.be O15 - Trusted Zone: Yelo.be - TV overal in je huis O15 - Trusted Zone: http://www.telenet.be O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1280386301191 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1276204295004 O16 - DPF: {80AEEC0E-A2BE-4B8D-985F-350FE869DC40} (HPDDClientExec Class) - http://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsVista.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game08.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - Unknown owner - C:\MAGIX\Common\Database\bin\fbserver.exe (file missing) O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - C:\Program Files\Packard bell\SAXO27\HIDSERVICE.EXE O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe -- End of file - 10863 bytes

Oeps, das raar, kheb er een nieuwe bijgedaan Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 9:42:06, on 13/06/2011 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.19048) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\system32\wbem\unsecapp.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Windows\system32\wuauclt.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe C:\Windows\system32\Macromed\Flash\FlashUtil10m_ActiveX.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE} R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE} R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll O1 - Hosts: ::1 localhost O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\HP\Smart Web Printing\hpswp_framework.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: MediaBar - {ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F} - C:\PROGRA~1\IMESHA~1\MediaBar\ToolBar\iMeshMediaBarDx.dll (file missing) O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll O3 - Toolbar: MediaBar - {ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F} - C:\PROGRA~1\IMESHA~1\MediaBar\ToolBar\iMeshMediaBarDx.dll (file missing) O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [system Smart Security] "C:\ProgramData\9d4490\SS9d4_279.exe" /s /d O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Winamp Search - C:\ProgramData\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: HP Clipboek - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\HP\Smart Web Printing\hpswp_extensions.dll O9 - Extra button: HP Slim selecteren - {700259D7-1666-479a-93B1-3250410481E8} - C:\HP\Smart Web Printing\hpswp_extensions.dll O15 - Trusted Zone: Media Authorization Network O15 - Trusted Zone: http://messagent.telenet.be O15 - Trusted Zone: Yelo.be - TV overal in je huis O15 - Trusted Zone: http://www.telenet.be O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1280386301191 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1276204295004 O16 - DPF: {80AEEC0E-A2BE-4B8D-985F-350FE869DC40} (HPDDClientExec Class) - http://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsVista.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game08.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab O20 - AppInit_DLLs: O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - Unknown owner - C:\MAGIX\Common\Database\bin\fbserver.exe (file missing) O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - C:\Program Files\Packard bell\SAXO27\HIDSERVICE.EXE O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe -- End of file - 10850 bytes ---------- Post toegevoegd om 14:22 ---------- Vorige post was om 14:15 ---------- Ik vind t raar dat ze alledrie dezelfde tijd hebben, Toen ik de derde maakte had ik wel de tijd gezien, 9.42.06 en dacht, das raar, want tis nu veel later, Ma dacht ook, da programma zal mss een andere tijdsinstelling gebruiken of zo. Kheb ook gekeken, naar de tijd dat 1 en 2 opgeslagen zijn, 1 om 12.03 en 2 om 12.14 Begrijp dan niet waarom ze alle 3 dezelfde tijd hebben.

HiJacklogje voor MBAM: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 9:42:06, on 13/06/2011 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.19048) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\system32\wbem\unsecapp.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Windows\system32\wuauclt.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe C:\Windows\system32\Macromed\Flash\FlashUtil10m_ActiveX.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE} R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE} R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll O1 - Hosts: ::1 localhost O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\HP\Smart Web Printing\hpswp_framework.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: MediaBar - {ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F} - C:\PROGRA~1\IMESHA~1\MediaBar\ToolBar\iMeshMediaBarDx.dll (file missing) O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll O3 - Toolbar: MediaBar - {ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F} - C:\PROGRA~1\IMESHA~1\MediaBar\ToolBar\iMeshMediaBarDx.dll (file missing) O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [system Smart Security] "C:\ProgramData\9d4490\SS9d4_279.exe" /s /d O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Winamp Search - C:\ProgramData\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: HP Clipboek - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\HP\Smart Web Printing\hpswp_extensions.dll O9 - Extra button: HP Slim selecteren - {700259D7-1666-479a-93B1-3250410481E8} - C:\HP\Smart Web Printing\hpswp_extensions.dll O15 - Trusted Zone: Media Authorization Network O15 - Trusted Zone: http://messagent.telenet.be O15 - Trusted Zone: Yelo.be - TV overal in je huis O15 - Trusted Zone: http://www.telenet.be O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1280386301191 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1276204295004 O16 - DPF: {80AEEC0E-A2BE-4B8D-985F-350FE869DC40} (HPDDClientExec Class) - http://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsVista.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game08.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab O20 - AppInit_DLLs: O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - Unknown owner - C:\MAGIX\Common\Database\bin\fbserver.exe (file missing) O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - C:\Program Files\Packard bell\SAXO27\HIDSERVICE.EXE O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe -- End of file - 10850 bytes ------------------------------------------------------------------------------------------------------------------------ MBAMlogje: Malwarebytes' Anti-Malware 1.51.0.1200 www.malwarebytes.org Databaseversie : 6846 Windows 6.0.6002 Service Pack 2 Internet Explorer 8.0.6001.19048 13/06/2011 12:04:04 mbam-log-2011-06-13 (12-04-04).txt Scantype: Snelle scan Objecten gescand: 162422 Verstreken tijd: 5 minuut/minuten, 28 seconde(n) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 3 Registerwaarden geïnfecteerd: 0 Registerdata geïnfecteerd: 1 Mappen geïnfecteerd: 1 Bestanden geïnfecteerd: 1 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registersleutels geïnfecteerd: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\FunWebProducts (Adware.MyWebSearch) -> Quarantined and deleted successfully. Registerwaarden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerdata geïnfecteerd: HKEY_CLASSES_ROOT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\URL (Hijack.SearchPage) -> Bad: (http://findgala.com/?&uid=279&q={searchTerms}) Good: (http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}) -> Quarantined and deleted successfully. Mappen geïnfecteerd: c:\Users\Peter\AppData\Roaming\system smart security (Rogue.SystemSmartSecurity) -> Quarantined and deleted successfully. Bestanden geïnfecteerd: c:\Users\Peter\AppData\Roaming\system smart security\instructions.ini (Rogue.SystemSmartSecurity) -> Quarantined and deleted successfully. --------------------------------------------------------------------------------------------------------------------- HiJack na MBAM Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 9:42:06, on 13/06/2011 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.19048) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\system32\wbem\unsecapp.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Windows\system32\wuauclt.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe C:\Windows\system32\Macromed\Flash\FlashUtil10m_ActiveX.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE} R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE} R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll O1 - Hosts: ::1 localhost O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\HP\Smart Web Printing\hpswp_framework.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: MediaBar - {ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F} - C:\PROGRA~1\IMESHA~1\MediaBar\ToolBar\iMeshMediaBarDx.dll (file missing) O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll O3 - Toolbar: MediaBar - {ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F} - C:\PROGRA~1\IMESHA~1\MediaBar\ToolBar\iMeshMediaBarDx.dll (file missing) O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [system Smart Security] "C:\ProgramData\9d4490\SS9d4_279.exe" /s /d O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Winamp Search - C:\ProgramData\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: HP Clipboek - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\HP\Smart Web Printing\hpswp_extensions.dll O9 - Extra button: HP Slim selecteren - {700259D7-1666-479a-93B1-3250410481E8} - C:\HP\Smart Web Printing\hpswp_extensions.dll O15 - Trusted Zone: Media Authorization Network O15 - Trusted Zone: http://messagent.telenet.be O15 - Trusted Zone: Yelo.be - TV overal in je huis O15 - Trusted Zone: http://www.telenet.be O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1280386301191 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1276204295004 O16 - DPF: {80AEEC0E-A2BE-4B8D-985F-350FE869DC40} (HPDDClientExec Class) - http://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsVista.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game08.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab O20 - AppInit_DLLs: O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - Unknown owner - C:\MAGIX\Common\Database\bin\fbserver.exe (file missing) O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - C:\Program Files\Packard bell\SAXO27\HIDSERVICE.EXE O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe -- End of file - 10850 bytes

Heel mooi dat filmke maar bij mij komt er niet staan "safe log" . In de plaats blijft "scan" staan. Ik heb versie 2.0.4 tis gelukt. hier is de log. Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 9:42:06, on 13/06/2011 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.19048) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Windows Defender\MSASCui.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe C:\Program Files\AVAST Software\Avast\AvastUI.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\system32\wbem\unsecapp.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Windows\system32\wuauclt.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe C:\Windows\system32\Macromed\Flash\FlashUtil10m_ActiveX.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE} R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = ${URL_SEARCHPAGE} R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll O1 - Hosts: ::1 localhost O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\HP\Smart Web Printing\hpswp_framework.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: MediaBar - {ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F} - C:\PROGRA~1\IMESHA~1\MediaBar\ToolBar\iMeshMediaBarDx.dll (file missing) O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Google\Google_BAE\BAE.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll O3 - Toolbar: MediaBar - {ABB49B3B-AB7D-4ED0-9135-93FD5AA4F69F} - C:\PROGRA~1\IMESHA~1\MediaBar\ToolBar\iMeshMediaBarDx.dll (file missing) O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [iSUSPM] "C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe" -scheduler O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [system Smart Security] "C:\ProgramData\9d4490\SS9d4_279.exe" /s /d O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O8 - Extra context menu item: &Winamp Search - C:\ProgramData\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: HP Clipboek - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\HP\Smart Web Printing\hpswp_extensions.dll O9 - Extra button: HP Slim selecteren - {700259D7-1666-479a-93B1-3250410481E8} - C:\HP\Smart Web Printing\hpswp_extensions.dll O15 - Trusted Zone: Media Authorization Network O15 - Trusted Zone: http://messagent.telenet.be O15 - Trusted Zone: Yelo.be - TV overal in je huis O15 - Trusted Zone: http://www.telenet.be O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} - http://appldnld.apple.com.edgesuite.net/content.info.apple.com/QuickTime/qtactivex/qtplugin.cab O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1280386301191 O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1276204295004 O16 - DPF: {80AEEC0E-A2BE-4B8D-985F-350FE869DC40} (HPDDClientExec Class) - http://h20264.www2.hp.com/ediags/dd/install/HPDriverDiagnosticsVista.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game08.zylom.com/activex/zylomgamesplayer.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab O20 - AppInit_DLLs: O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - Unknown owner - C:\MAGIX\Common\Database\bin\fbserver.exe (file missing) O23 - Service: Generic Service for HID Keyboard Input Collections (GenericHidService) - Unknown owner - C:\Program Files\Packard bell\SAXO27\HIDSERVICE.EXE O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing) O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe -- End of file - 10850 bytes

Kheb HiJack opnieuw geinstalleerd en een scan gemaakt, en na t scannen opent kladblok en zie ik een scherm : Kan het bestand C:\program files\trend micro\HiJackthis\hijackthis.log niet vinden. Wilt U een nieuw bestand maken? ik klik dan op ja, en verder gebeurt er niets. Copieren of zo kan ik zelfs niet, staat ook nergens en met ctrl-A lukt t ook niet. Ik heb een deel van HiJack bijgestuurd maar dat komt zo klein over dat t bijna niet leesbaar is. Hoe krijg ik zoiets groter op t forum?

ik heb IE8

heb ik al gedaan, maar telkens komt er HiJack in de plaats, dwz, de naam die ik eraan geef is alleen bij het gedownloade bestand te zien. Kga er vandaag niet veel meer aan doen, morgen is nog een dag Alleszins iedereen bedankt voor de hulp

Heb gekeken in "program files" en er staat geen kladblokbestand, alleen staat er "HiJack this" In taakbeheer staat niets, kheb al overal gekeken waar ik eventueel zou zien waar t geopend is, maar vind niets. En de pc opnieuw opstarten ga ik nu niet doen want dan krijg ik weer die problemen met die system smart security

Khad een systemscan gedaan, kreeg een hele lijst maar kon niet copieren of opslaan. Dan heb ik t programma afgesloten en wou opnieuw openen en krijg nu t bericht: Hijjack This is already running. Kheb dan bij taakbeheer gekeken en staat er niet in.

Beste forumlezers, kheb een zwaar probleem dat ik niet zo dadelijk opgelost krijg. Ik zit nl opgezadeld met system smart security en krijg het niet van pc af. Weet iemand hier een oplossing voor? groetjes

Is waar, ma ja kwou snel zijn en nam dan maar de eerste de beste die ik tegenkwam, alhoewel de beste Ik had geprobeert op de laptop van m'n vrouw en daar werken ze wel, dan ben ik naar de buren gegaan en daar werken ze ook niet. Ben dan terug gegaan naar de winkel en daar werkte ze ook, dus ze namen ze niet terug. Khad nu die driver gedownload, mss zou die helpen maar t lukt ook nie. "Target Optiarc AD-5170A is not found correctly" We zullen wel zien, ik geraak ze wel kwijt aan iemand, kheb ondertussen m'n TDK's en die werken wel Nog bedankt voor de moeite Groetjess