starsfighter
-
Items
370 -
Registratiedatum
-
Laatst bezocht
Inhoudstype
Profielen
Forums
Store
Alles dat geplaatst werd door starsfighter
-
Grafische kaart upgraden
starsfighter reageerde op starsfighter's topic in Archief Aan- en verkoopadvies
Ja, het is misschien betrouwbaarder, maar duurder, en niet dat deze computer voor mij nog 3 jaar moet meegaan ofzo 2 jaar is voldoende ofzo, als deze kapot is, kopen mijn ouders een nieuwe Maar kan z'n voeding op alle computers passen? Zijn dat allemaal standaardaansluitingen en is het makkelijk zelf te doen? -
Grafische kaart upgraden
starsfighter reageerde op starsfighter's topic in Archief Aan- en verkoopadvies
Kunnen deze voedingen bij mijn pc? eBay.be: Dolphix Voeding Power Supply 550 WATT 12 CM FAN Black (object 370393756546 eindtijd 05-apr-11 10:40:04 CEST) eBay.be: Dolphix Voeding Power Supply 450 WATT 12 CM FAN (object 160443310452 eindtijd 05-apr-11 10:40:02 CEST) -
Grafische kaart upgraden
starsfighter reageerde op starsfighter's topic in Archief Aan- en verkoopadvies
Wow, bedankt, ziet er echt goed uit En een klein foutje: Ik heb een 32-bit computer: (kan dat eventueel naar 64 bits gaan?) (Beetje uitzoomen) Closr.it - 333.JPG by starsfighter Waar is de grafische kaart? Want dat is ook iets belangrijk Die ene voeding is 550W en de andere is 630W --> Dus ik ga het op die 550W houden want wss ga ik toch een nieuwe pc kopen, binnen 6 maanden ofzo Nog een paar vraagjes, hoe ga ik dat in hemelsnaam zelf kunnen veranderen, al die dingen Ik zou echt totaal ni weten waar en hoe ik da moet steken, ik zal een paar foto's sturen zodat jullie mij kunnen zeggen waar alles ligt en wat ik precies moet uittrekken etc en hoe ik het moet doen? Ik heb het stof nu al weggedaan hoor Closr.it - SAM_0541.JPG by starsfighter Closr.it - SAM_0542.JPG by starsfighter Nog meer foto's en van wat, zeg maar -
Grafische kaart upgraden
starsfighter reageerde op starsfighter's topic in Archief Aan- en verkoopadvies
Oke, die voeding van 450W dat je toonde, lijkt me wel goed, qua prijs ook, als ik met alles onder de 150 euro zou willen blijven, wat geef je me dan? Via ebay mag... - 2 X 512 MB RAM --> 16 EURO eBay.be: 1GIG 2x512MB 1GB RAM MEMORY Dell Inspiron 530 530S PC (object 110487382036 eindtijd 24-mrt-11 21:07:46 CET) - Intel Core 2 Duo E6300 --> 12 EURO, maar gaat nog stijgen eBay.be: Intel Core 2 Duo E6300 - Dual Socket 775 PROCESSEUR (object 220752017467 eindtijd 19-mrt-11 21:05:35 CET) --> Mag nog iets hoger, en kan het? - Grafische kaart? - Voeding? -
Grafische kaart upgraden
starsfighter reageerde op starsfighter's topic in Archief Aan- en verkoopadvies
Ja, juist daarom moet alles nog in die voeding passen Is het mogelijk om de grafische kaart dan te upgraden, naar die dat jij aangegeven hebt, die van 45W, dan nog een processor, ik had gedacht aan een van de E6500 of E8000, en dan heel misschien nog 2 gb erbij bij de RAM. Kan dat met dezelfde voeding? -
Hallo, Ik zou een nieuwe processor aankopen, maar ik weet niet welke en of het kan. http://speccy.piriform.com/results/IADUDElYirKWDN5Q26FAde9 Dit zijn mijn systemen, de grafische kaart ben ik ook aan het upgraden, zou mijn pc een E8000 aankunnen? En de voeding zou ik liever ook niet willen veranderen, aangezien het dan al een duur grapje gaat worden, en dat is niet de bedoeling, dan kan ik even goed een nieuwe kopen Verwijzing naar forum waardoor ik erop gekomen ben: http://www.pc-helpforum.be/f167/trage-vista-versnellen-32339/index3.html#post200718
-
als ik er 2 zou kopen, is het wel veel beter?
-
Grafische kaart upgraden
starsfighter reageerde op starsfighter's topic in Archief Aan- en verkoopadvies
ziet er wel goed uit Qua prijs is het in ieder geval goed Ik heb een vista: Closr.it - Knipsel.JPG by starsfighter --> je zult wat moeten uitzomen Mijn processor ga ik mss ook upgraden, als het gaat naar de E8000 reeks, maar dat moet ik ook nog zien -
hmm, en is die E8000 goed? want ik ga er niet echt zo veel geld meer insteken... 50 euro voor de processor misschien nog wel 1 gb extra zou jij niet doen dan? (18 euro)
-
http://speccy.piriform.com/results/jZswjwWUuVLcDSVeYTfEE5h Wss ga ik al 1 gb extra ram erbij steken, en misschien ook een nieuwe grafische kaart... http://www.pc-helpforum.be/f57/grafische-kaart-upgraden-32345/index2.html#post200506 Maar het wordt al snel een dure grap voor deze pc up te graden Als ik dan ook nog die voeding moet veranderen voor een goede grafische kaart :'( Of is er dan nog iets trager waar ik over heb gekeken?
-
Grafische kaart upgraden
starsfighter reageerde op starsfighter's topic in Archief Aan- en verkoopadvies
eeuh, ik weet niet ofdat dat het juiste is Maar is er geen andere goedkopere grafische kaart(als het maar iets beter is dan die dat ik nu heb) waarbij ik geen nieuwe voeding moet kopen? en anders, is het dan echt wel de moeite om dat te upgraden? Want anders al 200 euro voor upgrade en dan zit ik nog met die processor die eigenlijk ook wel zuigt -
Grafische kaart upgraden
starsfighter reageerde op starsfighter's topic in Archief Aan- en verkoopadvies
hmm, en waar kan ik dat vinden? Is het duur? -
Grafische kaart upgraden
starsfighter reageerde op starsfighter's topic in Archief Aan- en verkoopadvies
Closr.it - SAM_0538.JPG by starsfighter Dit is het Dus gaat het voor 1 gb extra ram en dan die grafische kaart? -
bwa, als er verbetering is, dan toch nog niet zoveel Maar misschien ligt het gewoon aan mijn pc... Die traag is, want die processor ^^
-
Grafische kaart upgraden
starsfighter reageerde op starsfighter's topic in Archief Aan- en verkoopadvies
nee, ik heb het op mijn vaste pc gedraaid, raar dat er een batterij status bijstaat -
Grafische kaart upgraden
starsfighter reageerde op starsfighter's topic in Archief Aan- en verkoopadvies
dit gaat toch: eBay.be: 1GB 1 RAM MEMORY Dell Inspiron 530 530S PC (object 270491058592 eindtijd 20-mrt-11 23:44:04 CET) --> En is het moeilijk om dat er zelf in te steken? Heb nog nooit een pc uiteen gehaald... -
Grafische kaart upgraden
starsfighter reageerde op starsfighter's topic in Archief Aan- en verkoopadvies
En kan ik het doen, mijn moederbord kan het toch aan he? -
Combofix: ComboFix 11-03-12.01 - Ewoud 13/03/2011 16:06:40.2.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.32.1043.18.2045.1178 [GMT 1:00] Gestart vanuit: c:\users\Ewoud.PC_van_Kouterst\Desktop\ComboFix.exe gebruikte Opdracht switches :: c:\users\Ewoud.PC_van_Kouterst\Desktop\CFScript.txt AV: Microsoft Forefront Client Security *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160} SP: Microsoft Forefront Client Security *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . FILE :: "c:\windows\system32\temp.00C" "c:\windows\system32\temp.00D" "c:\windows\system32\temp.00E" "c:\windows\system32\temp.00F" "c:\windows\system32\temp.010" "c:\windows\system32\temp.011" . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\windows\system32\temp.00C c:\windows\system32\temp.00D c:\windows\system32\temp.00E c:\windows\system32\temp.00F c:\windows\system32\temp.010 c:\windows\system32\temp.011 . . (((((((((((((((((((( Bestanden Gemaakt van 2011-02-13 to 2011-03-13 )))))))))))))))))))))))))))))) . . 2011-03-13 15:13 . 2011-03-13 15:13 -------- d-----w- c:\users\LIEN\AppData\Local\temp 2011-03-13 15:13 . 2011-03-13 15:13 -------- d-----w- c:\users\Kouterstraat\AppData\Local\temp 2011-03-13 15:13 . 2011-03-13 15:13 -------- d-----w- c:\users\IUSR_NMPR\AppData\Local\temp 2011-03-13 15:13 . 2011-03-13 15:13 -------- d-----w- c:\users\Ewoud\AppData\Local\temp 2011-03-13 15:13 . 2011-03-13 15:13 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-03-13 13:57 . 2011-03-13 13:57 -------- d-----w- c:\program files\Audacity 2011-03-13 10:05 . 2011-02-11 06:54 5943120 ----a-w- c:\programdata\Microsoft\Microsoft Forefront\Client Security\Client\Antimalware\Definition Updates\{819C3DDE-BA71-422E-AE61-97360D80C461}\mpengine.dll 2011-03-12 18:46 . 2011-02-11 06:54 5943120 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{7ABB2AEC-B041-4C39-9BE8-808CF660EEF4}\mpengine.dll 2011-03-11 20:21 . 2011-03-11 20:21 -------- d-----w- c:\program files\BitTorrent 2011-03-11 20:19 . 2011-03-13 15:00 -------- d-----w- c:\users\Ewoud.PC_van_Kouterst\AppData\Roaming\BitTorrent 2011-03-10 11:14 . 2011-03-10 11:14 -------- d-----w- c:\users\Ewoud.PC_van_Kouterst\AppData\Roaming\Malwarebytes 2011-03-10 11:14 . 2010-12-20 17:09 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2011-03-10 11:14 . 2011-03-10 11:14 -------- d-----w- c:\programdata\Malwarebytes 2011-03-10 11:14 . 2011-03-10 11:14 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2011-03-10 11:14 . 2010-12-20 17:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-03-10 08:49 . 2011-03-10 08:49 -------- d-----w- c:\program files\Speccy 2011-03-10 08:16 . 2011-03-10 08:16 388096 ----a-r- c:\users\Ewoud.PC_van_Kouterst\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2011-03-10 08:16 . 2011-03-10 08:16 -------- d-----w- c:\program files\Trend Micro 2011-03-09 08:45 . 2010-12-29 18:28 322560 ----a-w- c:\windows\system32\sbe.dll 2011-03-09 08:45 . 2010-12-29 18:28 153088 ----a-w- c:\windows\system32\sbeio.dll 2011-03-09 08:45 . 2010-12-29 18:28 429056 ----a-w- c:\windows\system32\EncDec.dll 2011-03-09 08:45 . 2010-12-29 18:26 177664 ----a-w- c:\windows\system32\mpg2splt.ax 2011-03-09 08:45 . 2010-12-17 15:45 2067968 ----a-w- c:\windows\system32\mstscax.dll 2011-03-09 08:45 . 2010-12-17 13:54 677888 ----a-w- c:\windows\system32\mstsc.exe 2011-02-20 08:38 . 2011-02-28 16:38 -------- d-----r- c:\users\Ewoud.PC_van_Kouterst\Dropbox 2011-02-20 08:35 . 2011-02-28 16:38 -------- d-----w- c:\users\Ewoud.PC_van_Kouterst\AppData\Roaming\Dropbox 2011-02-12 18:00 . 2011-02-12 18:00 -------- d-----w- c:\windows\CheckSur 2011-02-12 12:56 . 2011-02-12 12:56 -------- d-sh--w- c:\windows\ftpcache . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-02-11 06:54 . 2008-04-24 11:51 5943120 ----a-w- c:\programdata\Microsoft\Microsoft Forefront\Client Security\Client\Antimalware\Definition Updates\Backup\mpengine.dll 2011-02-02 16:11 . 2009-10-02 16:37 222080 ------w- c:\windows\system32\MpSigStub.exe 2011-02-02 10:14 . 2008-03-18 19:02 71296 ----a-w- c:\windows\system32\drivers\MpFilter.sys 2011-01-20 16:37 . 2011-02-09 19:05 638336 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys 2011-01-20 16:08 . 2011-02-09 19:05 478720 ----a-w- c:\windows\system32\dxgi.dll 2011-01-20 16:08 . 2011-02-09 19:05 219648 ----a-w- c:\windows\system32\d3d10_1core.dll 2011-01-20 16:08 . 2011-02-09 19:05 160768 ----a-w- c:\windows\system32\d3d10_1.dll 2011-01-20 16:08 . 2011-02-09 19:05 1029120 ----a-w- c:\windows\system32\d3d10.dll 2011-01-20 16:08 . 2011-02-09 19:05 189952 ----a-w- c:\windows\system32\d3d10core.dll 2011-01-20 16:07 . 2011-02-09 19:05 37376 ----a-w- c:\windows\system32\cdd.dll 2011-01-20 16:07 . 2011-02-09 19:05 258048 ----a-w- c:\windows\system32\winspool.drv 2011-01-20 16:07 . 2011-02-09 19:05 586240 ----a-w- c:\windows\system32\stobject.dll 2011-01-20 16:06 . 2011-02-09 19:05 2873344 ----a-w- c:\windows\system32\mf.dll 2011-01-20 16:06 . 2011-02-09 19:05 26112 ----a-w- c:\windows\system32\printfilterpipelineprxy.dll 2011-01-20 16:04 . 2011-02-09 19:05 209920 ----a-w- c:\windows\system32\mfplat.dll 2011-01-20 16:04 . 2011-02-09 19:05 98816 ----a-w- c:\windows\system32\mfps.dll 2011-01-20 14:28 . 2011-02-09 19:05 1554432 ----a-w- c:\windows\system32\xpsservices.dll 2011-01-20 14:27 . 2011-02-09 19:05 876032 ----a-w- c:\windows\system32\XpsPrint.dll 2011-01-20 14:26 . 2011-02-09 19:05 667648 ----a-w- c:\windows\system32\printfilterpipelinesvc.exe 2011-01-20 14:25 . 2011-02-09 19:05 847360 ----a-w- c:\windows\system32\OpcServices.dll 2011-01-20 14:24 . 2011-02-09 19:05 288768 ----a-w- c:\windows\system32\XpsGdiConverter.dll 2011-01-20 14:24 . 2011-02-09 19:05 135680 ----a-w- c:\windows\system32\XpsRasterService.dll 2011-01-20 14:15 . 2011-02-09 19:05 979456 ----a-w- c:\windows\system32\MFH264Dec.dll 2011-01-20 14:14 . 2011-02-09 19:05 357376 ----a-w- c:\windows\system32\MFHEAACdec.dll 2011-01-20 14:14 . 2011-02-09 19:05 302592 ----a-w- c:\windows\system32\mfmp4src.dll 2011-01-20 14:14 . 2011-02-09 19:05 261632 ----a-w- c:\windows\system32\mfreadwrite.dll 2011-01-20 14:12 . 2011-02-09 19:05 1172480 ----a-w- c:\windows\system32\d3d10warp.dll 2011-01-20 14:11 . 2011-02-09 19:05 486400 ----a-w- c:\windows\system32\d3d10level9.dll 2011-01-20 13:47 . 2011-02-09 19:05 683008 ----a-w- c:\windows\system32\d2d1.dll 2011-01-20 13:44 . 2011-02-09 19:05 1068544 ----a-w- c:\windows\system32\DWrite.dll 2011-01-20 13:44 . 2011-02-09 19:05 797184 ----a-w- c:\windows\system32\FntCache.dll 2011-01-08 08:47 . 2011-02-10 18:18 34304 ----a-w- c:\windows\system32\atmlib.dll 2011-01-08 06:28 . 2011-02-10 18:18 292352 ----a-w- c:\windows\system32\atmfd.dll 2010-12-31 13:57 . 2011-02-09 19:04 2039808 ----a-w- c:\windows\system32\win32k.sys 2010-12-28 15:55 . 2011-01-12 06:25 413696 ----a-w- c:\windows\system32\odbc32.dll 2010-12-23 09:27 . 2010-12-23 09:27 658696 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll 2010-12-18 06:27 . 2011-02-09 19:04 916480 ----a-w- c:\windows\system32\wininet.dll 2010-12-18 06:22 . 2011-02-09 19:03 43520 ----a-w- c:\windows\system32\licmgr10.dll 2010-12-18 06:22 . 2011-02-09 19:04 1469440 ----a-w- c:\windows\system32\inetcpl.cpl 2010-12-18 06:22 . 2011-02-09 19:04 109056 ----a-w- c:\windows\system32\iesysprep.dll 2010-12-18 06:22 . 2011-02-09 19:03 71680 ----a-w- c:\windows\system32\iesetup.dll 2010-12-18 05:25 . 2011-02-09 19:04 385024 ----a-w- c:\windows\system32\html.iec 2010-12-18 04:48 . 2011-02-09 19:04 133632 ----a-w- c:\windows\system32\ieUnatt.exe 2010-12-18 04:47 . 2011-02-09 19:03 1638912 ----a-w- c:\windows\system32\mshtml.tlb 2010-12-14 14:49 . 2011-01-12 06:24 1169408 ----a-w- c:\windows\system32\sdclt.exe . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2010-10-06 23:36 94208 ----a-w- c:\users\Ewoud.PC_van_Kouterst\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2010-10-06 23:36 94208 ----a-w- c:\users\Ewoud.PC_van_Kouterst\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2010-10-06 23:36 94208 ----a-w- c:\users\Ewoud.PC_van_Kouterst\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-02-27 68856] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-04-16 3872080] "Steam"="c:\program files\Steam\steam.exe" [2010-12-18 1242448] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="RtHDVCpl.exe" [2007-05-11 4452352] "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112] "NMSSupport"="c:\program files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe" [2007-06-27 439512] "CCUTRAYICON"="c:\program files\Intel\IntelDH\CCU\CCU_TrayIcon.exe" [2007-06-27 215256] "Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2010-07-17 30192] "GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072] "dldtmon.exe"="c:\program files\Dell V305\dldtmon.exe" [2009-07-30 672424] "dldtamon"="c:\program files\Dell V305\dldtamon.exe" [2009-07-30 16040] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2011-01-22 40368] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-21 932288] "Microsoft Forefront Client Security Antimalware Service"="c:\program files\Microsoft Forefront\Client Security\Client\Antimalware\MSASCui.exe" [2011-02-02 1033600] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorUser"= 2 (0x2) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"=c:\progra~1\Google\GOOGLE~2\GoogleDesktopNetwork3.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\FCSAM] @="Service" . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware] "DisableMonitoring"=dword:00000001 . R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 gupdate1c98e0efeffc344;Google Updateservice (gupdate1c98e0efeffc344);c:\program files\Google\Update\GoogleUpdate.exe [2009-02-13 133104] R3 DHTRACE;Intel® DHTrace Controller;c:\program files\Common Files\Intel\IntelDH\bin\DHTraceController.exe [2007-06-27 39640] R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [2010-07-17 30192] R3 PCDSRVC{E9D79540-57D5953E-06020101}_0;PCDSRVC{E9D79540-57D5953E-06020101}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\dell support center\pcdsrvc.pkms [2010-11-18 21744] R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504] S2 dldt_device;dldt_device;c:\windows\system32\dldtcoms.exe [2009-07-09 594600] S2 dldtCATSCustConnectService;dldtCATSCustConnectService;c:\windows\system32\spool\DRIVERS\W32X86\3\\dldtserv.exe [2009-07-09 98984] S2 DQLWinService;DQLWinService;c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe [2007-02-12 208896] S2 FCSAM;Microsoft Forefront Client Security Antimalware Service;c:\program files\Microsoft Forefront\Client Security\Client\Antimalware\MsMpEng.exe [2011-01-08 16896] S2 FcsSas;Microsoft Forefront Client Security State Assessment Service;c:\program files\Microsoft Forefront\Client Security\Client\SSA\FcsSas.exe [2007-04-06 73120] S2 NMSCore;Intel® NMSCore;c:\program files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe [2007-06-27 317656] S2 nmsunidr;UniDriver for NMS;c:\windows\system32\DRIVERS\nmsunidr.sys [2007-02-18 5376] S2 QualityManager;Intel® Quality Manager;c:\program files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe [2007-06-27 272600] S3 IntelDH;IntelDH Driver;c:\windows\system32\Drivers\IntelDH.sys [2008-02-27 5632] S3 netr73;Linksys Compact Wireless-G USB Adapter Driver for Vista;c:\windows\system32\DRIVERS\WUSB54GCx86.sys [2007-03-12 256000] S3 WSDPrintDevice;WSD-ondersteuning voor afdrukken via UMB;c:\windows\system32\DRIVERS\WSDPrint.sys [2008-01-19 16896] . . --- Andere Services/Drivers In Geheugen --- . *NewlyCreated* - CFCATCHME *NewlyCreated* - CPUZ135 *Deregistered* - CFcatchme *Deregistered* - cpuz135 . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] bthsvcs REG_MULTI_SZ BthServ LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . Inhoud van de 'Gedeelde Taken' map . 2011-03-13 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2009-02-13 19:12] . 2011-03-13 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2009-02-13 19:12] . 2011-02-04 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job - c:\program files\Dell Support Center\uaclauncher.exe [2010-11-18 15:13] . 2011-03-13 c:\windows\Tasks\SystemToolsDailyTest.job - c:\program files\Dell Support Center\pcdrcui.exe [2010-11-18 15:13] . 2011-03-13 c:\windows\Tasks\User_Feed_Synchronization-{007031A9-D810-45F3-B47C-7550C514AF66}.job - c:\windows\system32\msfeedssync.exe [2011-02-09 04:47] . 2011-03-13 c:\windows\Tasks\User_Feed_Synchronization-{50F166D0-80BA-476C-97D7-71A3AFA72322}.job - c:\windows\system32\msfeedssync.exe [2011-02-09 04:47] . 2011-03-13 c:\windows\Tasks\User_Feed_Synchronization-{D3ECCD4F-055B-483B-9173-E6CAA47D1545}.job - c:\windows\system32\msfeedssync.exe [2011-02-09 04:47] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/ mStart Page = hxxp://search.foxtab.com/?s=0&chnl=irn&cd=2XzutCtN2Y1L1QzutDtDtC0E0EyDzy0CtAtC0AtCtN0C0Czu0B0EtN0D0TzutBtDtCtCtDtBtCyE&cr=2132459403 IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html . . ************************************************************************** scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: . ************************************************************************** . [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\PCDSRVC{E9D79540-57D5953E-06020101}_0] "ImagePath"="\??\c:\program files\dell support center\pcdsrvc.pkms" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{564572D7-BA6B-A81E-17332C14105A24EF}\{35AC4256-1B84-66D8-7C4583AC3B4AA35B}\{791C0703-8CF5-813B-67470F66B09458B3}*] "{3EE4C831-B7E0-4ed1-B9FC-EDC523C9612F}1"=hex:01,00,01,00,0c,00,00,00,51,8f,cb, f3,69,31,cb,ff,4a,d0,d9,e2,4a,e9,93,1e,84,8c,59,9e,ba,6b,72,39,fc,c3,fa,db,\ . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{91FA78BC-641E-4329-C41B32C9E0F96EA6}\{25E342AA-73A9-1FC4-4AC5C50BDBE96017}\{04863130-DE8E-7A09-D0B765EBFF2273E8}*] "J6LUTEVR24DWS6LBRK5JBJYX6E1"=hex:01,00,01,00,00,00,00,00,64,ee,da,6f,cf,9a,c5, 9b,35,81,92,71,e8,29,5a,84,14,35,16,70,d8,6e,ff,61 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10m_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10m_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{E9204BC4-9B67-A3A7-9418040E7EC7E28B}\{1ACE6D24-C4A9-397B-64EF395CC2F330B1}\{685A2618-4C9F-7737-7DE531E9434892E2}*] "J6LUTEVR24DWS6LBRK5JBJYX6E1"=hex:01,00,01,00,00,00,00,00,64,ee,da,6f,cf,9a,c5, 9b,35,81,92,71,e8,29,5a,84,14,35,16,70,d8,6e,ff,61 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{EB499C6B-17E9-50CC-AE784525E8AC56BA}\{8364303F-14D2-EDB9-EF60B5C62A5A1F49}\{622ABE87-D953-3C3E-A5507D8B27591D99}*] "{3EE4C831-B7E0-4ed1-B9FC-EDC523C9612F}1"=hex:01,00,01,00,0c,00,00,00,51,8f,cb, f3,69,31,cb,ff,4a,d0,d9,e2,4a,e9,93,1e,84,8c,59,9e,ba,6b,72,39,fc,c3,fa,db,\ . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . Voltooingstijd: 2011-03-13 16:15:47 ComboFix-quarantined-files.txt 2011-03-13 15:15 ComboFix2.txt 2011-03-12 18:44 . Pre-Run: 165.399.846.912 bytes beschikbaar Post-Run: 165.523.230.720 bytes beschikbaar . - - End Of File - - 3554797C38F1B23DDA7222A2E60D8171 HijackThis: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 16:24:55, on 13/03/2011 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.19019) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\system32\taskeng.exe C:\Windows\Explorer.EXE C:\Windows\RtHDVCpl.exe C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Dell V305\dldtmon.exe C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe C:\Program Files\Microsoft Forefront\Client Security\Client\Antimalware\MSASCui.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE C:\Program Files\Dell V305\dldtMsdMon.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Program Files\Intel\IntelDH\CCU\CCU_Engine.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Program Files\VideoLAN\VLC\vlc.exe C:\Windows\system32\conime.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = FoxTab - Search The Web O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" O4 - HKLM\..\Run: [NMSSupport] "C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe" /startup O4 - HKLM\..\Run: [CCUTRAYICON] "C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe" O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [dldtmon.exe] "C:\Program Files\Dell V305\dldtmon.exe" O4 - HKLM\..\Run: [dldtamon] "C:\Program Files\Dell V305\dldtamon.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [Microsoft Forefront Client Security Antimalware Service] "c:\Program Files\Microsoft Forefront\Client Security\Client\Antimalware\MSASCui.exe" -hide O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [steam] "C:\Program Files\Steam\steam.exe" -silent O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} (SysInfo Class) - http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.4.21.0.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GoogleDesktopNetwork3.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Intel® Alert Service (AlertService) - Intel® Corporation - C:\Program Files\Intel\IntelDH\CCU\AlertService.exe O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe O23 - Service: Intel® DHTrace Controller (DHTRACE) - Intel® Corporation - C:\Program Files\Common Files\Intel\IntelDH\bin\DHTraceController.exe O23 - Service: dldtCATSCustConnectService - Unknown owner - C:\Windows\system32\spool\DRIVERS\W32X86\3\\dldtserv.exe O23 - Service: dldt_device - - C:\Windows\system32\dldtcoms.exe O23 - Service: DQLWinService - Unknown owner - C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Updateservice (gupdate1c98e0efeffc344) (gupdate1c98e0efeffc344) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Software Services Manager (ISSM) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe O23 - Service: Intel® Viiv Media Server (M1 Server) - Unknown owner - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe O23 - Service: Intel® Application Tracker (MCLServiceATL) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe O23 - Service: NBService - Unknown owner - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe (file missing) O23 - Service: Intel® NMSCore (NMSCore) - Intel® Corporation - C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe O23 - Service: Intel® Quality Manager (QualityManager) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe O23 - Service: Intel® Remoting Service (Remote UI Service) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - Unknown owner - C:\Program Files\Dell Support Center\bin\sprtsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe -- End of file - 8482 bytes
-
Grafische kaart upgraden
starsfighter reageerde op starsfighter's topic in Archief Aan- en verkoopadvies
hmm, ziet er goed uit, zou ik hierdoor minder laggen? --> heeft er iemand die toevallig die het wil verkopen? Mag tweedehands zijn -
Grafische kaart upgraden
starsfighter reageerde op starsfighter's topic in Archief Aan- en verkoopadvies
Systeemvereisten ^^ Ik heb vista... Welke raad je mij nog aan? maar een beetje minder kwa kostprijs, alle, die gaat toch geen 2 jaar meer mee, het mag tweedehands zijn, dus wie er iets geschikt voor mij heeft -
ComboFix 11-03-11.02 - Ewoud 12/03/2011 19:32:25.1.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.32.1043.18.2045.923 [GMT 1:00] Gestart vanuit: c:\users\Ewoud.PC_van_Kouterst\Desktop\ComboFix.exe AV: Microsoft Forefront Client Security *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160} SP: Microsoft Forefront Client Security *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . C:\install.exe c:\programdata\Microsoft\Network\Downloader\qmgr0.dat c:\programdata\Microsoft\Network\Downloader\qmgr1.dat c:\programdata\PCDr\5744\Downloads\687b8984-5b8f-48ca-81b2-53c017b82891.dll c:\programdata\PCDr\5744\Downloads\fb37c43e-fc6b-476d-8936-e95ecdba3cf7.dll c:\windows\Downloaded Program Files\f3initialsetup1.0.1.1.inf . ----- BITS: Mogelijk geïnfecteerde sites ----- . hxxp://wlxindex . (((((((((((((((((((( Bestanden Gemaakt van 2011-02-12 to 2011-03-12 )))))))))))))))))))))))))))))) . . 2011-03-12 18:40 . 2011-03-12 18:40 -------- d-----w- c:\users\LIEN\AppData\Local\temp 2011-03-12 18:40 . 2011-03-12 18:40 -------- d-----w- c:\users\Kouterstraat\AppData\Local\temp 2011-03-12 18:40 . 2011-03-12 18:40 -------- d-----w- c:\users\IUSR_NMPR\AppData\Local\temp 2011-03-12 18:40 . 2011-03-12 18:40 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-03-12 18:40 . 2011-03-12 18:40 -------- d-----w- c:\users\Ewoud\AppData\Local\temp 2011-03-12 09:50 . 2011-02-11 06:54 5943120 ----a-w- c:\programdata\Microsoft\Microsoft Forefront\Client Security\Client\Antimalware\Definition Updates\{3A93772E-1D41-4E5D-B790-CCE87B47C2D2}\mpengine.dll 2011-03-11 20:21 . 2011-03-11 20:21 -------- d-----w- c:\program files\BitTorrent 2011-03-11 20:19 . 2011-03-11 21:19 -------- d-----w- c:\users\Ewoud.PC_van_Kouterst\AppData\Roaming\BitTorrent 2011-03-10 11:14 . 2011-03-10 11:14 -------- d-----w- c:\users\Ewoud.PC_van_Kouterst\AppData\Roaming\Malwarebytes 2011-03-10 11:14 . 2010-12-20 17:09 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2011-03-10 11:14 . 2011-03-10 11:14 -------- d-----w- c:\programdata\Malwarebytes 2011-03-10 11:14 . 2011-03-10 11:14 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2011-03-10 11:14 . 2010-12-20 17:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-03-10 08:49 . 2011-03-10 08:49 -------- d-----w- c:\program files\Speccy 2011-03-10 08:16 . 2011-03-10 08:16 388096 ----a-r- c:\users\Ewoud.PC_van_Kouterst\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2011-03-10 08:16 . 2011-03-10 08:16 -------- d-----w- c:\program files\Trend Micro 2011-03-09 08:45 . 2010-12-29 18:28 322560 ----a-w- c:\windows\system32\sbe.dll 2011-03-09 08:45 . 2010-12-29 18:28 153088 ----a-w- c:\windows\system32\sbeio.dll 2011-03-09 08:45 . 2010-12-29 18:28 429056 ----a-w- c:\windows\system32\EncDec.dll 2011-03-09 08:45 . 2010-12-29 18:26 177664 ----a-w- c:\windows\system32\mpg2splt.ax 2011-03-09 08:45 . 2010-12-17 15:45 2067968 ----a-w- c:\windows\system32\mstscax.dll 2011-03-09 08:45 . 2010-12-17 13:54 677888 ----a-w- c:\windows\system32\mstsc.exe 2011-03-08 09:43 . 2011-02-11 06:54 5943120 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{F5786202-2F1F-4797-85EE-DDD87E50B694}\mpengine.dll 2011-02-20 08:38 . 2011-02-28 16:38 -------- d-----r- c:\users\Ewoud.PC_van_Kouterst\Dropbox 2011-02-20 08:35 . 2011-02-28 16:38 -------- d-----w- c:\users\Ewoud.PC_van_Kouterst\AppData\Roaming\Dropbox 2011-02-12 18:00 . 2011-02-12 18:00 -------- d-----w- c:\windows\CheckSur 2011-02-12 12:59 . 1999-02-08 00:00 326656 ----a-w- c:\windows\system32\temp.011 2011-02-12 12:59 . 2000-08-20 20:00 1388544 ----a-w- c:\windows\system32\temp.010 2011-02-12 12:59 . 1999-06-02 23:00 17920 ----a-w- c:\windows\system32\temp.00F 2011-02-12 12:59 . 1999-03-07 23:00 164112 ----a-w- c:\windows\system32\temp.00D 2011-02-12 12:59 . 1999-03-07 23:00 147728 ----a-w- c:\windows\system32\temp.00E 2011-02-12 12:59 . 2000-04-11 23:00 598288 ----a-w- c:\windows\system32\temp.00C 2011-02-12 12:56 . 2011-02-12 12:56 -------- d-sh--w- c:\windows\ftpcache . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-02-11 06:54 . 2008-04-24 11:51 5943120 ----a-w- c:\programdata\Microsoft\Microsoft Forefront\Client Security\Client\Antimalware\Definition Updates\Backup\mpengine.dll 2011-02-02 16:11 . 2009-10-02 16:37 222080 ------w- c:\windows\system32\MpSigStub.exe 2011-02-02 10:14 . 2008-03-18 19:02 71296 ----a-w- c:\windows\system32\drivers\MpFilter.sys 2011-01-20 16:37 . 2011-02-09 19:05 638336 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys 2011-01-20 16:08 . 2011-02-09 19:05 478720 ----a-w- c:\windows\system32\dxgi.dll 2011-01-20 16:08 . 2011-02-09 19:05 219648 ----a-w- c:\windows\system32\d3d10_1core.dll 2011-01-20 16:08 . 2011-02-09 19:05 160768 ----a-w- c:\windows\system32\d3d10_1.dll 2011-01-20 16:08 . 2011-02-09 19:05 1029120 ----a-w- c:\windows\system32\d3d10.dll 2011-01-20 16:08 . 2011-02-09 19:05 189952 ----a-w- c:\windows\system32\d3d10core.dll 2011-01-20 16:07 . 2011-02-09 19:05 37376 ----a-w- c:\windows\system32\cdd.dll 2011-01-20 16:07 . 2011-02-09 19:05 258048 ----a-w- c:\windows\system32\winspool.drv 2011-01-20 16:07 . 2011-02-09 19:05 586240 ----a-w- c:\windows\system32\stobject.dll 2011-01-20 16:06 . 2011-02-09 19:05 2873344 ----a-w- c:\windows\system32\mf.dll 2011-01-20 16:06 . 2011-02-09 19:05 26112 ----a-w- c:\windows\system32\printfilterpipelineprxy.dll 2011-01-20 16:04 . 2011-02-09 19:05 209920 ----a-w- c:\windows\system32\mfplat.dll 2011-01-20 16:04 . 2011-02-09 19:05 98816 ----a-w- c:\windows\system32\mfps.dll 2011-01-20 14:28 . 2011-02-09 19:05 1554432 ----a-w- c:\windows\system32\xpsservices.dll 2011-01-20 14:27 . 2011-02-09 19:05 876032 ----a-w- c:\windows\system32\XpsPrint.dll 2011-01-20 14:26 . 2011-02-09 19:05 667648 ----a-w- c:\windows\system32\printfilterpipelinesvc.exe 2011-01-20 14:25 . 2011-02-09 19:05 847360 ----a-w- c:\windows\system32\OpcServices.dll 2011-01-20 14:24 . 2011-02-09 19:05 288768 ----a-w- c:\windows\system32\XpsGdiConverter.dll 2011-01-20 14:24 . 2011-02-09 19:05 135680 ----a-w- c:\windows\system32\XpsRasterService.dll 2011-01-20 14:15 . 2011-02-09 19:05 979456 ----a-w- c:\windows\system32\MFH264Dec.dll 2011-01-20 14:14 . 2011-02-09 19:05 357376 ----a-w- c:\windows\system32\MFHEAACdec.dll 2011-01-20 14:14 . 2011-02-09 19:05 302592 ----a-w- c:\windows\system32\mfmp4src.dll 2011-01-20 14:14 . 2011-02-09 19:05 261632 ----a-w- c:\windows\system32\mfreadwrite.dll 2011-01-20 14:12 . 2011-02-09 19:05 1172480 ----a-w- c:\windows\system32\d3d10warp.dll 2011-01-20 14:11 . 2011-02-09 19:05 486400 ----a-w- c:\windows\system32\d3d10level9.dll 2011-01-20 13:47 . 2011-02-09 19:05 683008 ----a-w- c:\windows\system32\d2d1.dll 2011-01-20 13:44 . 2011-02-09 19:05 1068544 ----a-w- c:\windows\system32\DWrite.dll 2011-01-20 13:44 . 2011-02-09 19:05 797184 ----a-w- c:\windows\system32\FntCache.dll 2011-01-08 08:47 . 2011-02-10 18:18 34304 ----a-w- c:\windows\system32\atmlib.dll 2011-01-08 06:28 . 2011-02-10 18:18 292352 ----a-w- c:\windows\system32\atmfd.dll 2010-12-31 13:57 . 2011-02-09 19:04 2039808 ----a-w- c:\windows\system32\win32k.sys 2010-12-28 15:55 . 2011-01-12 06:25 413696 ----a-w- c:\windows\system32\odbc32.dll 2010-12-23 09:27 . 2010-12-23 09:27 658696 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll 2010-12-18 06:27 . 2011-02-09 19:04 916480 ----a-w- c:\windows\system32\wininet.dll 2010-12-18 06:22 . 2011-02-09 19:03 43520 ----a-w- c:\windows\system32\licmgr10.dll 2010-12-18 06:22 . 2011-02-09 19:04 1469440 ----a-w- c:\windows\system32\inetcpl.cpl 2010-12-18 06:22 . 2011-02-09 19:04 109056 ----a-w- c:\windows\system32\iesysprep.dll 2010-12-18 06:22 . 2011-02-09 19:03 71680 ----a-w- c:\windows\system32\iesetup.dll 2010-12-18 05:25 . 2011-02-09 19:04 385024 ----a-w- c:\windows\system32\html.iec 2010-12-18 04:48 . 2011-02-09 19:04 133632 ----a-w- c:\windows\system32\ieUnatt.exe 2010-12-18 04:47 . 2011-02-09 19:03 1638912 ----a-w- c:\windows\system32\mshtml.tlb 2010-12-14 14:49 . 2011-01-12 06:24 1169408 ----a-w- c:\windows\system32\sdclt.exe . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1] @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}] 2010-10-06 23:36 94208 ----a-w- c:\users\Ewoud.PC_van_Kouterst\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2] @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}] 2010-10-06 23:36 94208 ----a-w- c:\users\Ewoud.PC_van_Kouterst\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3] @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}" [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}] 2010-10-06 23:36 94208 ----a-w- c:\users\Ewoud.PC_van_Kouterst\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-02-27 68856] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-04-16 3872080] "Steam"="c:\program files\Steam\steam.exe" [2010-12-18 1242448] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="RtHDVCpl.exe" [2007-05-11 4452352] "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112] "NMSSupport"="c:\program files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe" [2007-06-27 439512] "CCUTRAYICON"="c:\program files\Intel\IntelDH\CCU\CCU_TrayIcon.exe" [2007-06-27 215256] "Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2010-07-17 30192] "GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072] "dldtmon.exe"="c:\program files\Dell V305\dldtmon.exe" [2009-07-30 672424] "dldtamon"="c:\program files\Dell V305\dldtamon.exe" [2009-07-30 16040] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2011-01-22 40368] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-21 932288] "Microsoft Forefront Client Security Antimalware Service"="c:\program files\Microsoft Forefront\Client Security\Client\Antimalware\MSASCui.exe" [2011-02-02 1033600] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorUser"= 2 (0x2) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"=c:\progra~1\Google\GOOGLE~2\GoogleDesktopNetwork3.dll . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\FCSAM] @="Service" . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware] "DisableMonitoring"=dword:00000001 . R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 gupdate1c98e0efeffc344;Google Updateservice (gupdate1c98e0efeffc344);c:\program files\Google\Update\GoogleUpdate.exe [2009-02-13 133104] R3 DHTRACE;Intel® DHTrace Controller;c:\program files\Common Files\Intel\IntelDH\bin\DHTraceController.exe [2007-06-27 39640] R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [2010-07-17 30192] R3 PCDSRVC{E9D79540-57D5953E-06020101}_0;PCDSRVC{E9D79540-57D5953E-06020101}_0 - PCDR Kernel Mode Service Helper Driver;c:\program files\dell support center\pcdsrvc.pkms [2010-11-18 21744] R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504] S2 dldt_device;dldt_device;c:\windows\system32\dldtcoms.exe [2009-07-09 594600] S2 dldtCATSCustConnectService;dldtCATSCustConnectService;c:\windows\system32\spool\DRIVERS\W32X86\3\\dldtserv.exe [2009-07-09 98984] S2 DQLWinService;DQLWinService;c:\program files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe [2007-02-12 208896] S2 FCSAM;Microsoft Forefront Client Security Antimalware Service;c:\program files\Microsoft Forefront\Client Security\Client\Antimalware\MsMpEng.exe [2011-01-08 16896] S2 FcsSas;Microsoft Forefront Client Security State Assessment Service;c:\program files\Microsoft Forefront\Client Security\Client\SSA\FcsSas.exe [2007-04-06 73120] S2 NMSCore;Intel® NMSCore;c:\program files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe [2007-06-27 317656] S2 nmsunidr;UniDriver for NMS;c:\windows\system32\DRIVERS\nmsunidr.sys [2007-02-18 5376] S2 QualityManager;Intel® Quality Manager;c:\program files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe [2007-06-27 272600] S3 IntelDH;IntelDH Driver;c:\windows\system32\Drivers\IntelDH.sys [2008-02-27 5632] S3 netr73;Linksys Compact Wireless-G USB Adapter Driver for Vista;c:\windows\system32\DRIVERS\WUSB54GCx86.sys [2007-03-12 256000] S3 WSDPrintDevice;WSD-ondersteuning voor afdrukken via UMB;c:\windows\system32\DRIVERS\WSDPrint.sys [2008-01-19 16896] . . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] bthsvcs REG_MULTI_SZ BthServ LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . Inhoud van de 'Gedeelde Taken' map . 2011-03-12 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2009-02-13 19:12] . 2011-03-12 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2009-02-13 19:12] . 2011-02-04 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job - c:\program files\Dell Support Center\uaclauncher.exe [2010-11-18 15:13] . 2011-03-12 c:\windows\Tasks\SystemToolsDailyTest.job - c:\program files\Dell Support Center\pcdrcui.exe [2010-11-18 15:13] . 2011-03-12 c:\windows\Tasks\User_Feed_Synchronization-{007031A9-D810-45F3-B47C-7550C514AF66}.job - c:\windows\system32\msfeedssync.exe [2011-02-09 04:47] . 2011-03-12 c:\windows\Tasks\User_Feed_Synchronization-{50F166D0-80BA-476C-97D7-71A3AFA72322}.job - c:\windows\system32\msfeedssync.exe [2011-02-09 04:47] . 2011-03-12 c:\windows\Tasks\User_Feed_Synchronization-{D3ECCD4F-055B-483B-9173-E6CAA47D1545}.job - c:\windows\system32\msfeedssync.exe [2011-02-09 04:47] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/ mStart Page = hxxp://search.foxtab.com/?s=0&chnl=irn&cd=2XzutCtN2Y1L1QzutDtDtC0E0EyDzy0CtAtC0AtCtN0C0Czu0B0EtN0D0TzutBtDtCtCtDtBtCyE&cr=2132459403 IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html . - - - - ORPHANS VERWIJDERD - - - - . WebBrowser-{E84CC2C1-B722-48FC-A39C-EDB8B525C777} - (no file) HKCU-Run-DellSupportCenter - c:\program files\Dell Support Center\bin\sprtcmd.exe HKLM-Run-SunJavaUpdateSched - c:\program files\Java\jre6\bin\jusched.exe HKLM-Run-DellSupportCenter - c:\program files\Dell Support Center\bin\sprtcmd.exe AddRemove-Software Informer_is1 - c:\program files\Software Informer\unins000.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2011-03-12 19:41 Windows 6.0.6002 Service Pack 2 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\PCDSRVC{E9D79540-57D5953E-06020101}_0] "ImagePath"="\??\c:\program files\dell support center\pcdsrvc.pkms" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{564572D7-BA6B-A81E-17332C14105A24EF}\{35AC4256-1B84-66D8-7C4583AC3B4AA35B}\{791C0703-8CF5-813B-67470F66B09458B3}*] "{3EE4C831-B7E0-4ed1-B9FC-EDC523C9612F}1"=hex:01,00,01,00,0c,00,00,00,51,8f,cb, f3,69,31,cb,ff,4a,d0,d9,e2,4a,e9,93,1e,84,8c,59,9e,ba,6b,72,39,fc,c3,fa,db,\ . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{91FA78BC-641E-4329-C41B32C9E0F96EA6}\{25E342AA-73A9-1FC4-4AC5C50BDBE96017}\{04863130-DE8E-7A09-D0B765EBFF2273E8}*] "J6LUTEVR24DWS6LBRK5JBJYX6E1"=hex:01,00,01,00,00,00,00,00,64,ee,da,6f,cf,9a,c5, 9b,35,81,92,71,e8,29,5a,84,14,35,16,70,d8,6e,ff,61 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10m_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10m_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{E9204BC4-9B67-A3A7-9418040E7EC7E28B}\{1ACE6D24-C4A9-397B-64EF395CC2F330B1}\{685A2618-4C9F-7737-7DE531E9434892E2}*] "J6LUTEVR24DWS6LBRK5JBJYX6E1"=hex:01,00,01,00,00,00,00,00,64,ee,da,6f,cf,9a,c5, 9b,35,81,92,71,e8,29,5a,84,14,35,16,70,d8,6e,ff,61 . [HKEY_LOCAL_MACHINE\software\Classes\CLSID\{EB499C6B-17E9-50CC-AE784525E8AC56BA}\{8364303F-14D2-EDB9-EF60B5C62A5A1F49}\{622ABE87-D953-3C3E-A5507D8B27591D99}*] "{3EE4C831-B7E0-4ed1-B9FC-EDC523C9612F}1"=hex:01,00,01,00,0c,00,00,00,51,8f,cb, f3,69,31,cb,ff,4a,d0,d9,e2,4a,e9,93,1e,84,8c,59,9e,ba,6b,72,39,fc,c3,fa,db,\ . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . Voltooingstijd: 2011-03-12 19:44:12 ComboFix-quarantined-files.txt 2011-03-12 18:44 . Pre-Run: 154.082.193.408 bytes beschikbaar Post-Run: 170.290.569.216 bytes beschikbaar . - - End Of File - - C7883DB160E19E9DE1F84EF31CDEA0B9
-
sorry, mijn fout, khad toch wel een nieuwe scan gedaan hoor Hier is het: Hijackthis: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 10:15:58, on 11/03/2011 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.19019) Boot mode: Normal Running processes: C:\Windows\system32\taskeng.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\RtHDVCpl.exe C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Dell V305\dldtmon.exe C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe C:\Program Files\Microsoft Forefront\Client Security\Client\Antimalware\MSASCui.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Steam\Steam.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE C:\Program Files\Dell V305\dldtMsdMon.exe C:\Windows\System32\mobsync.exe C:\Program Files\Intel\IntelDH\CCU\CCU_Engine.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Program Files\Opera\Opera.exe C:\Windows\system32\conime.exe C:\Program Files\Internet Explorer\IELowutil.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN | Hotmail | Messenger | Nieuws, sport, entertainment, video, lifestyle, auto en nog veel meer, dat is MSN ! R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = FoxTab - Search The Web R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = O1 - Hosts: ::1 localhost O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" O4 - HKLM\..\Run: [NMSSupport] "C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe" /startup O4 - HKLM\..\Run: [CCUTRAYICON] "C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe" O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [dldtmon.exe] "C:\Program Files\Dell V305\dldtmon.exe" O4 - HKLM\..\Run: [dldtamon] "C:\Program Files\Dell V305\dldtamon.exe" O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [Microsoft Forefront Client Security Antimalware Service] "c:\Program Files\Microsoft Forefront\Client Security\Client\Antimalware\MSASCui.exe" -hide O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [steam] "C:\Program Files\Steam\steam.exe" -silent O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} (SysInfo Class) - http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.4.21.0.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Intel® Alert Service (AlertService) - Intel® Corporation - C:\Program Files\Intel\IntelDH\CCU\AlertService.exe O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe O23 - Service: Intel® DHTrace Controller (DHTRACE) - Intel® Corporation - C:\Program Files\Common Files\Intel\IntelDH\bin\DHTraceController.exe O23 - Service: dldtCATSCustConnectService - Unknown owner - C:\Windows\system32\spool\DRIVERS\W32X86\3\\dldtserv.exe O23 - Service: dldt_device - - C:\Windows\system32\dldtcoms.exe O23 - Service: DQLWinService - Unknown owner - C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Updateservice (gupdate1c98e0efeffc344) (gupdate1c98e0efeffc344) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Software Services Manager (ISSM) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe O23 - Service: Intel® Viiv Media Server (M1 Server) - Unknown owner - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe O23 - Service: Intel® Application Tracker (MCLServiceATL) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe O23 - Service: NBService - Unknown owner - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe (file missing) O23 - Service: Intel® NMSCore (NMSCore) - Intel® Corporation - C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe O23 - Service: Intel® Quality Manager (QualityManager) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe O23 - Service: Intel® Remoting Service (Remote UI Service) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - Unknown owner - C:\Program Files\Dell Support Center\bin\sprtsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe -- End of file - 9262 bytes Mbam-log: Malwarebytes' Anti-Malware 1.50.1.1100 Malwarebytes Databaseversie: 6009 Windows 6.0.6002 Service Pack 2 Internet Explorer 8.0.6001.19019 10/03/2011 16:21:02 mbam-log-2011-03-10 (16-21-01).txt Scantype: Snelle scan Objecten gescand: 214313 Verstreken tijd: 18 minuut/minuten, 14 seconde(n) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 17 Registerwaarden geïnfecteerd: 0 Registerdata geïnfecteerd: 0 Mappen geïnfecteerd: 1 Bestanden geïnfecteerd: 30 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registersleutels geïnfecteerd: HKEY_CLASSES_ROOT\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{A4730EBE-43A6-443e-9776-36915D323AD3} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Typelib\{D518921A-4A03-425E-9873-B9A71756821E} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{CF54BE1C-9359-4395-8533-1657CF209CFE} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59C7FC09-1C83-4648-B3E6-003D2BBC7481} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68AF847F-6E91-45dd-9B68-D6A12C30E5D7} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9170B96C-28D4-4626-8358-27E6CAEEF907} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D1A71FA0-FF48-48dd-9B6D-7A13A3E42127} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DDB1968E-EAD6-40fd-8DAE-FF14757F60C7} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F138D901-86F0-4383-99B6-9CDD406036DA} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Fun Web Products (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\FunWebProducts (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\MyWebSearch (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> Quarantined and deleted successfully. Registerwaarden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerdata geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Mappen geïnfecteerd: c:\Users\kouterstraat\AppData\Roaming\cleanup antivirus (Rogue.CleanUpAntivirus) -> Quarantined and deleted successfully. Bestanden geïnfecteerd: c:\Users\kouterstraat\AppData\Local\Temp\temb2d3.tmp.exe (Rogue.Installer) -> Quarantined and deleted successfully. c:\Windows\Temp\~os4AB6.tmp\rlvknlg.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os72C6.tmp\rlls.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os72C6.tmp\rlls64.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os72C6.tmp\rlph.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os72C6.tmp\rlservice.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os72C6.tmp\rlvknlg.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os72C6.tmp\rlvknlg64.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os72C6.tmp\rlxf.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os72C6.tmp\rlxg.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7754.tmp\rlls.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7754.tmp\rlls64.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7754.tmp\rlph.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7754.tmp\rlservice.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7754.tmp\rlvknlg.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7754.tmp\rlvknlg64.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7754.tmp\rlxf.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7754.tmp\rlxg.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7BE.tmp\rlls.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7BE.tmp\rlls64.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7BE.tmp\rlph.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7BE.tmp\rlservice.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7BE.tmp\rlvknlg.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7BE.tmp\rlvknlg64.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7BE.tmp\rlxf.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7BE.tmp\rlxg.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os8112.tmp\rlvknlg.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os8112.tmp\rlxf.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os8112.tmp\rlxg.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Users\kouterstraat\AppData\Roaming\cleanup antivirus\instructions.ini (Rogue.CleanUpAntivirus) -> Quarantined and deleted successfully.
-
maar bon, dit zijn de bestanden hijackthis: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 9:19:05, on 10/03/2011 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.19019) Boot mode: Normal Running processes: C:\Windows\system32\taskeng.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\RtHDVCpl.exe C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Dell V305\dldtmon.exe C:\Program Files\Microsoft Forefront\Client Security\Client\Antimalware\MSASCui.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Steam\Steam.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE C:\Program Files\Dell V305\dldtMsdMon.exe C:\Program Files\Intel\IntelDH\CCU\CCU_Engine.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Windows\system32\conime.exe C:\Program Files\Opera\Opera.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN | Hotmail | Messenger | Nieuws, sport, entertainment, video, lifestyle, auto en nog veel meer, dat is MSN ! R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = FoxTab - Search The Web R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: Productivity 2.2 Toolbar - {e84cc2c1-b722-48fc-a39c-edb8b525c777} - C:\Program Files\Productivity_2.2\prxtbProd.dll O1 - Hosts: ::1 localhost O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\Dell\BAE\BAE.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Productivity 2.2 - {e84cc2c1-b722-48fc-a39c-edb8b525c777} - C:\Program Files\Productivity_2.2\prxtbProd.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: Productivity 2.2 Toolbar - {e84cc2c1-b722-48fc-a39c-edb8b525c777} - C:\Program Files\Productivity_2.2\prxtbProd.dll O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\prxConduitEngine.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" O4 - HKLM\..\Run: [NMSSupport] "C:\Program Files\Common Files\Intel\IntelDH\NMS\Support\IntelHCTAgent.exe" /startup O4 - HKLM\..\Run: [CCUTRAYICON] "C:\Program Files\Intel\IntelDH\CCU\CCU_TrayIcon.exe" O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [dldtmon.exe] "C:\Program Files\Dell V305\dldtmon.exe" O4 - HKLM\..\Run: [dldtamon] "C:\Program Files\Dell V305\dldtamon.exe" O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [Microsoft Forefront Client Security Antimalware Service] "c:\Program Files\Microsoft Forefront\Client Security\Client\Antimalware\MSASCui.exe" -hide O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [steam] "C:\Program Files\Steam\steam.exe" -silent O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-15524878-2176749700-520600067-1000\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'IUSR_NMPR') O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Users\Kouterstraat\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk (file missing) O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocache/funwebproducts/ei-4/ZwinkyInitialSetup1.0.1.1.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} (SysInfo Class) - http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.4.21.0.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Intel® Alert Service (AlertService) - Intel® Corporation - C:\Program Files\Intel\IntelDH\CCU\AlertService.exe O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe O23 - Service: Intel® DHTrace Controller (DHTRACE) - Intel® Corporation - C:\Program Files\Common Files\Intel\IntelDH\bin\DHTraceController.exe O23 - Service: dldtCATSCustConnectService - Unknown owner - C:\Windows\system32\spool\DRIVERS\W32X86\3\\dldtserv.exe O23 - Service: dldt_device - - C:\Windows\system32\dldtcoms.exe O23 - Service: DQLWinService - Unknown owner - C:\Program Files\Common Files\Intel\IntelDH\NMS\AdpPlugins\DQLWinService.exe O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Updateservice (gupdate1c98e0efeffc344) (gupdate1c98e0efeffc344) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Software Services Manager (ISSM) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\ISSM.exe O23 - Service: Intel® Viiv Media Server (M1 Server) - Unknown owner - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\mediaserver.exe O23 - Service: Intel® Application Tracker (MCLServiceATL) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\MCLServiceATL.exe O23 - Service: NBService - Unknown owner - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe (file missing) O23 - Service: Intel® NMSCore (NMSCore) - Intel® Corporation - C:\Program Files\Common Files\Intel\IntelDH\NMS\NMSCore\NMSCore.exe O23 - Service: Intel® Quality Manager (QualityManager) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Media Server\bin\qualitymanager.exe O23 - Service: Intel® Remoting Service (Remote UI Service) - Intel® Corporation - C:\Program Files\Intel\IntelDH\Intel Media Server\Shells\Remote UI Service.exe O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - Unknown owner - C:\Program Files\Dell Support Center\bin\sprtsvc.exe (file missing) O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe -- End of file - 10725 bytes Mbam-log: Malwarebytes' Anti-Malware 1.50.1.1100 Malwarebytes Databaseversie: 6009 Windows 6.0.6002 Service Pack 2 Internet Explorer 8.0.6001.19019 10/03/2011 16:21:02 mbam-log-2011-03-10 (16-21-01).txt Scantype: Snelle scan Objecten gescand: 214313 Verstreken tijd: 18 minuut/minuten, 14 seconde(n) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 17 Registerwaarden geïnfecteerd: 0 Registerdata geïnfecteerd: 0 Mappen geïnfecteerd: 1 Bestanden geïnfecteerd: 30 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registersleutels geïnfecteerd: HKEY_CLASSES_ROOT\CLSID\{147A976F-EEE1-4377-8EA7-4716E4CDD239} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\CLSID\{A4730EBE-43A6-443e-9776-36915D323AD3} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Typelib\{D518921A-4A03-425E-9873-B9A71756821E} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\Interface\{CF54BE1C-9359-4395-8533-1657CF209CFE} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{59C7FC09-1C83-4648-B3E6-003D2BBC7481} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68AF847F-6E91-45dd-9B68-D6A12C30E5D7} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{9170B96C-28D4-4626-8358-27E6CAEEF907} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D1A71FA0-FF48-48dd-9B6D-7A13A3E42127} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{DDB1968E-EAD6-40fd-8DAE-FF14757F60C7} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{F138D901-86F0-4383-99B6-9CDD406036DA} (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{56256A51-B582-467e-B8D4-7786EDA79AE0} (Trojan.Vundo) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Fun Web Products (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\FunWebProducts (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\MyWebSearch (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\RunDll32Policy\f3ScrCtr.dll (Adware.MyWebSearch) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> Quarantined and deleted successfully. Registerwaarden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerdata geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Mappen geïnfecteerd: c:\Users\kouterstraat\AppData\Roaming\cleanup antivirus (Rogue.CleanUpAntivirus) -> Quarantined and deleted successfully. Bestanden geïnfecteerd: c:\Users\kouterstraat\AppData\Local\Temp\temb2d3.tmp.exe (Rogue.Installer) -> Quarantined and deleted successfully. c:\Windows\Temp\~os4AB6.tmp\rlvknlg.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os72C6.tmp\rlls.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os72C6.tmp\rlls64.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os72C6.tmp\rlph.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os72C6.tmp\rlservice.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os72C6.tmp\rlvknlg.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os72C6.tmp\rlvknlg64.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os72C6.tmp\rlxf.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os72C6.tmp\rlxg.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7754.tmp\rlls.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7754.tmp\rlls64.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7754.tmp\rlph.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7754.tmp\rlservice.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7754.tmp\rlvknlg.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7754.tmp\rlvknlg64.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7754.tmp\rlxf.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7754.tmp\rlxg.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7BE.tmp\rlls.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7BE.tmp\rlls64.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7BE.tmp\rlph.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7BE.tmp\rlservice.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7BE.tmp\rlvknlg.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7BE.tmp\rlvknlg64.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7BE.tmp\rlxf.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os7BE.tmp\rlxg.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os8112.tmp\rlvknlg.exe (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os8112.tmp\rlxf.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Windows\Temp\~os8112.tmp\rlxg.dll (Adware.RelevantKnowledge) -> Quarantined and deleted successfully. c:\Users\kouterstraat\AppData\Roaming\cleanup antivirus\instructions.ini (Rogue.CleanUpAntivirus) -> Quarantined and deleted successfully.
-
da weet ik, maar er kwam te staan GEBLOKKEERDE PROGRAMMA'S normaal krijg ik da nooit, en mijn vraag was, op welke knop moet ik drukken? Die je hier te zien krijgt
-
Ik heb ongeveer alles gedaan, maar na de eerste herstart kreeg ik dit: Geblokkeerde opstartprogramma's Wat doen? en wat nog hierna doen?
