Ga naar inhoud
  • 0

Laptop is erg traag en programmas reageren niet

anoniem

Gevraagd door anoniem,

Vraag

anoniem Nieuwkomer

anoniem

Geplaatst:
Geplaatst:
Mijn laptop is nu bijna 2 jaar oud en is sinds een aantal weken heel erg traag. Opstarten duurt bijna 30 minuten en programma's reageren niet. Tevens geeft Windows 7 aan dat het een niet legitieme versie is terwijl ik hem zo in de winkel heb gekocht. Ik heb mij computer helemaal gescanned met de laatste versie van AVG maar hier was niets te vinden. Ik heb Ccleaner en Defraggler gebruikt maar hij wordt nauwelijks sneller. Ook Malwarebytes Anti-Malware kon niets vinden. Ik heb geen idee wat ik nog meer kan doen om mijn laptop weer normaal werkend te krijgen. iemand een idee?
Link naar reactie
  • Antwoorden 77
  • Aangemaakt
  • Laatste reactie

Beste reacties voor deze vraag

Populaire dagen

Beste reacties voor deze vraag

Populaire dagen

77 antwoorden op deze vraag

Aanbevolen berichten

  • 0
anoniem Nieuwkomer

anoniem

Geplaatst:
  • Auteur
Geplaatst:
Malware had in ieder geval een vals systeembestand in syswow gezet. Maar twee minuten is nog erg lang voor Windows 7! Laten we nu eerst het volgende doen, ik neem aan dat je bij AVG wil blijven. Download alvast AVG 2012 Free. Maar nog niet installeren. http://free.avg.com/nl-nl/free-antivirus-download Download vervolgens AVG Remover (64-bits) 2012: http://download.avg.com/filedir/util/avgrem/avg_remover_stf_x64_2012_1796.exe Gebruik de AVG Remover om de huidige versie te verwijderen. Na een herstart mag je de nieuwe versie installeren. Laat AVG daarna een systeemscan doen.
Link naar reactie
  • 0
anoniem Nieuwkomer

anoniem

Geplaatst:
  • Auteur
Geplaatst:
Oké, dan gaan we wat heel anders proberen! [b:7574527606]Welk programma[/b:7574527606]: TFC. [b:7574527606]Waarvoor/waarom[/b:7574527606]:grondige reiniging van Windows. [b:7574527606]Moeilijkheidsgraad[/b:7574527606]: geen. [b:7574527606]Download: [url=http://oldtimer.geekstogo.com/TFC.exe][color=Blue:7574527606]Download TFC naar je bureaublad (klick)[/color:7574527606] [/b:7574527606][/url] [b:7574527606]TFC opstarten[/b:7574527606]: Windows 2000 en Windows XP: start TFC.exe middels dubbelklik op de snelkoppeling. Windows Vista en Windows 7: start TFC.exe middels rechtsklik op de snelkoppeling en dan kiezen voor Als Administrator uitvoeren. [list:7574527606][*:7574527606] Niet schrikken - het tool sluit alle lopende programma's - ergo: verzeker je dus ervan, dat je werk al is opgeslagen! [*:7574527606] Vervolgens klik je op de knop [b:7574527606]Start[/b:7574527606] om de scan te starten. Deze scan kan kort of langer duren, wees geduldig en laat TFC zijn taak doen en wacht to TFC klaaar is. [*:7574527606] Indien TFC klaar is, dan komt de melding dat de computer opnieuw opgestart wordt. [*:7574527606] Gebeurt het afsluiten niet automatisch, start dan zelf de computer opnieuw op. [*:7574527606] Noot: TFC vertoont geen log![/list:u:7574527606] O&O Defrag Free Edition als 32-bit- dan wel 64-bit editie - [url=http://www.softpedia.com/progDownload/O-O-Defrag-Free-Download-179765.html]Downloadlink[/url] Start O&O Defrag Free Edition, deze gratis defragmenteerder werkt efficiënter dan het Windows tool. Standaard is "Smart defrag" al ingesteld, dit houdt in dat veel gebruikte bestanden naar voren worden geplaatst waardoor alles sneller gaat!
Link naar reactie
  • 0
anoniem Nieuwkomer

anoniem

Geplaatst:
  • Auteur
Geplaatst:
Oké. Dan wil ik dat jij gebruikt maakt van de mogelijkheid om van Microsoft Windows 7 Enterprise in de 64 bit versie te downloaden en op DVD te branden. Welke brandsoftware gebruik jij? Het verhaal van Windows 7 Enterprise vindt je hier: http://www.nationaalcomputerforum.nl/showthread.php?t=76121 Hiermee verkrijg je dus Windows 7 waardoor je ook reparaties kan uitvoeren die met bijv. een recovery disk niet mogelijk zijn. Laat je weten wanneer je zover bent?
Link naar reactie
  • 0
anoniem Nieuwkomer

anoniem

Geplaatst:
  • Auteur
Geplaatst:
Zorg ervoor dat je van de DVD kan booten! Laat vervolgens de setup lopen totdat je bij het eerste installatiescherm komt: [img:18209fdcf0]http://members.home.nl/louis.m/pictures/Bootmgr/6.png[/img:18209fdcf0] De setup is welliswaar in het Engels, maar je kiest dus voor "Repair....". Kies nu eerst je toetsenbord [img:18209fdcf0]http://members.home.nl/louis.m/pictures/Bootmgr/1.png[/img:18209fdcf0] Daarna vindt eerst een onderzoek plaats dat even kan duren: [img:18209fdcf0]http://members.home.nl/louis.m/pictures/Bootmgr/2.png[/img:18209fdcf0] Daarna krijg je een menu met verschillende herstelopties, kies voor Opdrachtprompt [img:18209fdcf0]http://members.home.nl/louis.m/pictures/Bootmgr/3.png[/img:18209fdcf0] En dan krijg je het opdrachtpromptvenster (zwart). De opdracht luidt nu als volgt: [b:18209fdcf0]Bootrec /FixBoot[/b:18209fdcf0] - druk op de Entertoets[/b] (denk aan de spatie na Bootrec). Is dat gedaan, dan typ je [b:18209fdcf0]exit[/b:18209fdcf0], haal je de Windows-opstartschijf uit de branderlade en herstart je de PC!
Link naar reactie
  • 0
anoniem Nieuwkomer

anoniem

Geplaatst:
  • Auteur
Geplaatst:
Er gebeuren nu hele rare dingen met m'n laptop geen internet (ik maak gebruik van draadloos met de Windows netwerkinstellingen) Tijdens het opstarten krijg ik nu het opstartherstel menu. Opstarten gaat niet zonder problemen. En als ik avg open laat het niet goed (waar normaal bestand staat staat nu @Mnu_Top_File
Link naar reactie
  • 0
anoniem Nieuwkomer

anoniem

Geplaatst:
  • Auteur
Geplaatst:
Inderdaad allerhande vreemde zaken. [b:05d69c1442]Welk programma[/b:05d69c1442]: sUbs [b:05d69c1442]dds.scr[/b:05d69c1442] [b:05d69c1442]Waarvoor/waarom[/b:05d69c1442]: DDS is een diagnosetool en maakt gebruik van scripts. [b:05d69c1442]Moeilijkheidsgraad[/b:05d69c1442]: Min of meer lastige voorbereidingsfase, dus lees alles eerst goed. [b:05d69c1442]Downloadlokatie[/b:05d69c1442]: Dit programma absoluut naar het bureaublad downloaden of anders eerst daar naar toe verplaatsen! [b:05d69c1442]Download[/b:05d69c1442] sUBs dds.scr [url=http://download.bleepingcomputer.com/sUBs/dds.scr][b:05d69c1442]hier[/b:05d69c1442][/url] [img:05d69c1442]http://img.photobucket.com/albums/v666/sUBs/dds_scr.gif[/img:05d69c1442] [b:05d69c1442]sUBs dds.scr gebruiken[/b:05d69c1442]: [list:05d69c1442][*:05d69c1442][b:05d69c1442][color=Red:05d69c1442]Belangrijk[/color:05d69c1442][/b:05d69c1442]: deaktiveer eerst de antivirussoftware en de aktieve spywarescanners! [*:05d69c1442] [b:05d69c1442][color=Blue:05d69c1442]Sluit vervolgens eerst alle nog openstaande programmavensters![/color:05d69c1442][/b:05d69c1442] [list:05d69c1442][*:05d69c1442]Windows 2000 en Windows XP: start sUBs dds.scr middels dubbelklik op de snelkoppeling. [*:05d69c1442]Windows Vista en Windows 7: start sUBs dds.scr rechtsklik op de snelkoppeling en dan kiezen voor Als Administrator uitvoeren.[/list:u:05d69c1442] [*:05d69c1442] Na de scan worden twee tekstdocumnenten geopend - DDS.txt en Attach.txt - post de inhoud van beide logs.[/list:u:05d69c1442]
Link naar reactie
  • 0
anoniem Nieuwkomer

anoniem

Geplaatst:
  • Auteur
Geplaatst:
DDS Log: . DDS (Ver_2011-08-26.01) - NTFSAMD64 Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_26 Run by Peter at 9:45:31 on 2011-10-08 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.4026.2929 [GMT 2:00] . AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0} SP: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D} SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . ============== Running Processes =============== . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\taskeng.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe C:\Program Files (x86)\Acer\Registration\GregHSRW.exe C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe C:\Windows\system32\taskhost.exe C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Acer\Acer Updater\UpdaterService.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Windows\system32\igfxext.exe C:\Windows\system32\igfxsrvc.exe C:\Windows\PLFSetI.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\wbem\unsecapp.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\servicing\TrustedInstaller.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files (x86)\Launch Manager\LManager.exe C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Windows\system32\sppsvc.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\SysWOW64\cmd.exe C:\Windows\system32\conhost.exe C:\Windows\SysWOW64\cscript.exe C:\Windows\system32\wbem\wmiprvse.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://www.kpnvandaag.nl/#home/ mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0413&m=aspire_7715z&r=273601100815l0324z1m5t47i2c015 mURLSearchHooks: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - C:\Program Files (x86)\AVG\AVG10\avgssie.dll BHO: Aanmeldhulp voor Windows Live ID: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll BHO: AVG Security Toolbar BHO: {a3bc75a2-1f87-4686-aa43-5347d756017c} - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll TB: AVG Security Toolbar: {ccc7a320-b3ca-4199-b1a6-9f516dd69829} - C:\Program Files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun mRun: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe mRun: [EgisTecLiveUpdate] "C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe" mRun: [ArcadeDeluxeAgent] "C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" mRun: [PlayMovie] "C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe" mRun: [AVG_TRAY] C:\Program Files (x86)\AVG\AVG10\avgtray.exe mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" mRun: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5) mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000 IE: Google Sidewiki... - C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_26-windows-i586.cab TCP: DhcpNameServer = 213.46.228.196 62.179.104.196 TCP: Interfaces\{85C758BD-7152-46D8-99D0-7B51C7F6D7EB} : DhcpNameServer = 213.46.228.196 62.179.104.196 TCP: Interfaces\{85C758BD-7152-46D8-99D0-7B51C7F6D7EB}\350756564645F6573686832454636443 : DhcpNameServer = 192.168.1.254 TCP: Interfaces\{85C758BD-7152-46D8-99D0-7B51C7F6D7EB}\C696E6B6379737F5355435F56303330373 : DhcpNameServer = 62.179.104.196 213.46.228.196 Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll {18DF081C-E8AD-4283-A596-FA578C2EBDC3} {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} {9030D464-4C02-4ABF-8ECC-5164760863C6} {A3BC75A2-1F87-4686-AA43-5347D756017C} {DBC80044-A445-435b-BC74-9C25C1C588A9} {CCC7A320-B3CA-4199-B1A6-9F516DD69829} mRun-x64: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe mRun-x64: [EgisTecLiveUpdate] "C:\Program Files (x86)\EgisTec Egis Software Update\EgisUpdate.exe" mRun-x64: [ArcadeDeluxeAgent] "C:\Program Files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" mRun-x64: [PlayMovie] "C:\Program Files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe" mRun-x64: [AVG_TRAY] C:\Program Files (x86)\AVG\AVG10\avgtray.exe mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" mRun-x64: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray . ================= FIREFOX =================== . FF - ProfilePath - C:\Users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\jpdxqj6g.default\ FF - prefs.js: browser.search.selectedEngine - AVG Secure Search FF - prefs.js: browser.startup.homepage - hxxp://www.kpnvandaag.nl/#home FF - prefs.js: keyword.URL - hxxp://search.avg.com/route/?d=4da9cce5&v=7.008.031.001&i=26&tp=ab&iy=&ychte=nl&lng=nl&q= FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.0.60531.0\npctrlui.dll FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll . ============= SERVICES / DRIVERS =============== . R0 AVGIDSEH;AVGIDSEH;C:\Windows\system32\DRIVERS\AVGIDSEH.Sys --> C:\Windows\system32\DRIVERS\AVGIDSEH.Sys [?] R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\system32\DRIVERS\avgrkx64.sys --> C:\Windows\system32\DRIVERS\avgrkx64.sys [?] R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\system32\DRIVERS\avgldx64.sys --> C:\Windows\system32\DRIVERS\avgldx64.sys [?] R1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\system32\DRIVERS\avgmfx64.sys --> C:\Windows\system32\DRIVERS\avgmfx64.sys [?] R1 Avgtdia;AVG TDI Driver;C:\Windows\system32\DRIVERS\avgtdia.sys --> C:\Windows\system32\DRIVERS\avgtdia.sys [?] R1 mwlPSDFilter;mwlPSDFilter;C:\Windows\system32\DRIVERS\mwlPSDFilter.sys --> C:\Windows\system32\DRIVERS\mwlPSDFilter.sys [?] R1 mwlPSDNServ;mwlPSDNServ;C:\Windows\system32\DRIVERS\mwlPSDNServ.sys --> C:\Windows\system32\DRIVERS\mwlPSDNServ.sys [?] R1 mwlPSDVDisk;mwlPSDVDisk;C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys --> C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys [?] R1 vwififlt;Virtual WiFi Filter Driver;C:\Windows\system32\DRIVERS\vwififlt.sys --> C:\Windows\system32\DRIVERS\vwififlt.sys [?] R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-6-6 64952] R2 ePowerSvc;Acer ePower Service;C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2009-9-3 844320] R2 Greg_Service;GRegService;C:\Program Files (x86)\Acer\Registration\GregHSRW.exe [2009-6-4 1150496] R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-9-24 13336] R2 MWLService;MyWinLocker Service;C:\Program Files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe [2009-8-6 311592] R2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-6-18 144640] R2 Updater Service;Updater Service;C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2009-9-3 240160] R3 AVGIDSDriver;AVGIDSDriver;C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys --> C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys [?] R3 AVGIDSFilter;AVGIDSFilter;C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys --> C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys [?] R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);C:\Windows\system32\DRIVERS\L1C62x64.sys --> C:\Windows\system32\DRIVERS\L1C62x64.sys [?] R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?] R3 vwifimp;Microsoft Virtual WiFi Miniport Service;C:\Windows\system32\DRIVERS\vwifimp.sys --> C:\Windows\system32\DRIVERS\vwifimp.sys [?] S2 AVGIDSAgent;AVGIDSAgent;"C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe" --> C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [?] S2 avgwd;AVG WatchDog;"C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe" --> C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe [?] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576] S2 MBAMService;MBAMService;"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe" --> C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [?] S3 AVG Security Toolbar Service;AVG Security Toolbar Service;C:\Program Files (x86)\AVG\AVG10\Toolbar\ToolbarBroker.exe --> C:\Program Files (x86)\AVG\AVG10\Toolbar\ToolbarBroker.exe [?] S3 NTIBackupSvc;NTI Backup Now 5 Backup Service;C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-6-18 50432] S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;C:\Windows\system32\Drivers\RtsUStor.sys --> C:\Windows\system32\Drivers\RtsUStor.sys [?] S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?] S3 WatAdminSvc;Windows Activation Technologies-service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?] . =============== File Associations =============== . inffile=%SystemRoot%\SysWow64\NOTEPAD.EXE %1 VBEFile=%SystemRoot%\SysWow64\WScript.exe "%1" %* VBSFile=%SystemRoot%\SysWow64\WScript.exe "%1" %* . =============== Created Last 30 ================ . 2011-10-05 19:47:46 -------- d-s---w- C:\ComboFix 2011-10-04 18:47:09 -------- d-----w- C:\Windows\System32\oodag 2011-10-04 18:45:31 -------- d-----w- C:\Users\Peter\AppData\Local\O&O 2011-10-04 18:44:45 -------- d-----w- C:\Program Files\OO Software 2011-10-04 18:43:45 -------- d-----w- C:\Users\Peter\AppData\Local\Downloaded Installations 2011-10-04 17:38:10 -------- d-----w- C:\Users\Peter\AppData\Roaming\AVG2012 2011-10-04 17:34:34 -------- d-----w- C:\Windows\SysWow64\drivers\AVG 2011-10-04 17:34:07 -------- d-----w- C:\Windows\System32\drivers\AVG 2011-10-04 17:34:07 -------- d-----w- C:\ProgramData\AVG2012 2011-10-03 20:35:57 -------- d-----w- C:\Program Files (x86)\VS Revo Group 2011-10-03 20:27:20 -------- d-sh--w- C:\$RECYCLE.BIN 2011-10-01 08:06:40 98816 ----a-w- C:\Windows\sed.exe 2011-10-01 08:06:40 518144 ----a-w- C:\Windows\SWREG.exe 2011-10-01 08:06:40 256000 ----a-w- C:\Windows\PEV.exe 2011-10-01 08:06:40 208896 ----a-w- C:\Windows\MBR.exe 2011-09-29 19:40:26 -------- d-----w- C:\Program Files (x86)\MALWAREBYTES ANTI-MALWARE 2011-09-26 20:56:25 -------- d-----w- C:\Users\Peter\AppData\Roaming\Malwarebytes 2011-09-26 20:55:14 -------- d-----w- C:\ProgramData\Malwarebytes 2011-09-26 20:52:54 25416 ----a-w- C:\Windows\System32\drivers\mbam.sys 2011-09-25 08:22:46 -------- d-----w- C:\Users\Peter\AppData\Roaming\Intel Corporation 2011-09-24 19:59:18 438808 ----a-w- C:\Windows\System32\drivers\iaStor.sys 2011-09-13 04:30:08 37456 ----a-w- C:\Windows\System32\drivers\avgrkx64.sys . ==================== Find3M ==================== . 2011-09-25 08:42:44 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl 2011-08-08 04:08:58 46672 ----a-w- C:\Windows\System32\drivers\avgmfx64.sys 2011-08-03 17:42:18 627600 ----a-w- C:\Windows\System32\deployJava1.dll 2011-07-22 05:42:23 2303488 ----a-w- C:\Windows\System32\jscript9.dll 2011-07-22 05:36:16 1389056 ----a-w- C:\Windows\System32\wininet.dll 2011-07-22 05:32:40 2382848 ----a-w- C:\Windows\System32\mshtml.tlb 2011-07-22 02:54:43 1797632 ----a-w- C:\Windows\SysWow64\jscript9.dll 2011-07-22 02:48:26 1126912 ----a-w- C:\Windows\SysWow64\wininet.dll 2011-07-22 02:44:36 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb 2011-07-16 05:41:50 362496 ----a-w- C:\Windows\System32\wow64win.dll 2011-07-16 05:41:49 243200 ----a-w- C:\Windows\System32\wow64.dll 2011-07-16 05:41:49 13312 ----a-w- C:\Windows\System32\wow64cpu.dll 2011-07-16 05:39:10 16384 ----a-w- C:\Windows\System32\ntvdm64.dll 2011-07-16 05:37:12 421888 ----a-w- C:\Windows\System32\KernelBase.dll 2011-07-16 04:29:19 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll 2011-07-16 04:26:00 44032 ----a-w- C:\Windows\apppatch\acwow64.dll 2011-07-16 04:25:37 25600 ----a-w- C:\Windows\SysWow64\setup16.exe 2011-07-16 04:24:23 5120 ----a-w- C:\Windows\SysWow64\wow32.dll 2011-07-16 04:24:22 272384 ----a-w- C:\Windows\SysWow64\KernelBase.dll 2011-07-16 02:21:44 7680 ----a-w- C:\Windows\SysWow64\instnm.exe 2011-07-16 02:21:41 2048 ----a-w- C:\Windows\SysWow64\user.exe 2011-07-16 02:17:19 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll 2011-07-16 02:17:19 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll 2011-07-16 02:17:19 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll 2011-07-16 02:17:19 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll 2011-07-10 23:14:36 375376 ----a-w- C:\Windows\System32\drivers\avgtdia.sys 2011-07-10 23:14:08 29776 ----a-w- C:\Windows\System32\drivers\AVGIDSFilter.sys 2011-07-10 23:14:06 26704 ----a-w- C:\Windows\System32\drivers\AVGIDSEH.sys 2011-07-10 23:14:06 120400 ----a-w- C:\Windows\System32\drivers\AVGIDSDriver.sys 2011-07-10 23:13:44 282704 ----a-w- C:\Windows\System32\drivers\avgldx64.sys . ============= FINISH: 9:46:51,53 =============== Attach Log: . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2011-08-26.01) . Microsoft Windows 7 Home Premium Boot Device: \Device\HarddiskVolume2 Install Date: 30-1-2010 20:39:34 System Uptime: 8-10-2011 9:42:38 (0 hours ago) . Motherboard: Acer | | Aspire 7715Z Processor: Pentium(R) Dual-Core CPU T4300 @ 2.10GHz | uPGA-478 | 2100/200mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 454 GiB total, 418,967 GiB free. D: is CDROM () . ==== Disabled Device Manager Items ============= . Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1} Description: AVG network filter service Device ID: ROOT\LEGACY_AVGFWFD\0000 Manufacturer: Name: AVG network filter service PNP Device ID: ROOT\LEGACY_AVGFWFD\0000 Service: Avgfwfd . ==== System Restore Points =================== . No restore point in system. . ==== Installed Programs ====================== . Update for Microsoft Office 2007 (KB2508958) 2007 Microsoft Office Suite Service Pack 2 (SP2) Aangifte inkomstenbelasting 2010 Acer Arcade Deluxe Acer Crystal Eye webcam Ver:1.1.88.610 Acer ePower Management Acer eRecovery Management Acer GameZone Console Acer GridVista Acer Registration Acer ScreenSaver Acer Updater Acrobat.com Adobe AIR Adobe Flash Player 10 ActiveX Adobe Flash Player 10 Plugin Adobe Reader X (10.1.1) Alice Greenfingers Amazonia Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver Chicken Invaders 2 Compatibiliteitspakket voor het 2007 Microsoft Office system Conceptronic Grab'n'Go Backup Software D3DX10 Dairy Dash Dream Day First Home Elsevier Belasting Aangifte 2010 Elsevier Belasting Aangifte 2011 eSobi v2 Farm Frenzy 2 FileHippo.com Update Checker Granny In Paradise Heroes of Hellas Identity Card Intel(R) Rapid Storage Technology Java Auto Updater Java(TM) 6 Update 26 Junk Mail filter update Launch Manager Malwarebytes' Anti-Malware versie 1.51.2.1300 Merriam Websters Spell Jam Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office Access MUI (Dutch) 2007 Microsoft Office Access MUI (English) 2007 Microsoft Office Access Setup Metadata MUI (English) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (Dutch) 2007 Microsoft Office Excel MUI (English) 2007 Microsoft Office File Validation Add-In Microsoft Office Groove MUI (Dutch) 2007 Microsoft Office Groove MUI (English) 2007 Microsoft Office Groove Setup Metadata MUI (English) 2007 Microsoft Office InfoPath MUI (Dutch) 2007 Microsoft Office InfoPath MUI (English) 2007 Microsoft Office Language Pack 2007 - Dutch/Nederlands Microsoft Office O MUI (Dutch) 2007 Microsoft Office OneNote MUI (Dutch) 2007 Microsoft Office OneNote MUI (English) 2007 Microsoft Office Outlook MUI (Dutch) 2007 Microsoft Office Outlook MUI (English) 2007 Microsoft Office PowerPoint MUI (Dutch) 2007 Microsoft Office PowerPoint MUI (English) 2007 Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (Dutch) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) Microsoft Office Publisher MUI (Dutch) 2007 Microsoft Office Publisher MUI (English) 2007 Microsoft Office Shared MUI (Dutch) 2007 Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2) Microsoft Office SharePoint Designer MUI (Dutch) 2007 Microsoft Office Word MUI (Dutch) 2007 Microsoft Office Word MUI (English) 2007 Microsoft Office X MUI (Dutch) 2007 Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Works Mozilla Firefox 6.0.2 (x86 nl) Mozilla Thunderbird (6.0) MSVCRT MSVCRT_amd64 MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) MyWinLocker NTI Backup Now 5 NTI Backup Now Standard NTI Media Maker 8 Realtek High Definition Audio Driver Realtek USB 2.0 Card Reader Security Update for 2007 Microsoft Office System (KB2288621) Security Update for 2007 Microsoft Office System (KB2288931) Security Update for 2007 Microsoft Office System (KB2345043) Security Update for 2007 Microsoft Office System (KB2553074) Security Update for 2007 Microsoft Office System (KB2553089) Security Update for 2007 Microsoft Office System (KB2553090) Security Update for 2007 Microsoft Office System (KB2584063) Security Update for 2007 Microsoft Office System (KB969559) Security Update for 2007 Microsoft Office System (KB976321) Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841) Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636) Security Update for Microsoft Office Access 2007 (KB979440) Security Update for Microsoft Office Excel 2007 (KB2553073) Security Update for Microsoft Office Groove 2007 (KB2552997) Security Update for Microsoft Office InfoPath 2007 (KB2510061) Security Update for Microsoft Office InfoPath 2007 (KB979441) Security Update for Microsoft Office PowerPoint 2007 (KB2535818) Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623) Security Update for Microsoft Office Publisher 2007 (KB2284697) Security Update for Microsoft Office system 2007 (972581) Security Update for Microsoft Office system 2007 (KB974234) Security Update for Microsoft Office Visio Viewer 2007 (KB973709) Security Update for Microsoft Office Word 2007 (KB2344993) Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2478663) Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2518870) Star Defender 4 Update for 2007 Microsoft Office System (KB2284654) Update for 2007 Microsoft Office System (KB967642) Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft Office 2007 Help for Common Features (KB963673) Update for Microsoft Office 2007 System (KB2539530) Update for Microsoft Office Access 2007 Help (KB963663) Update for Microsoft Office Excel 2007 Help (KB963678) Update for Microsoft Office Infopath 2007 Help (KB963662) Update for Microsoft Office OneNote 2007 (KB980729) Update for Microsoft Office OneNote 2007 Help (KB963670) Update for Microsoft Office Outlook 2007 (KB2583910) Update for Microsoft Office Outlook 2007 Help (KB963677) Update for Microsoft Office Powerpoint 2007 Help (KB963669) Update for Microsoft Office Publisher 2007 Help (KB963667) Update for Microsoft Office Script Editor Help (KB963671) Update for Microsoft Office Word 2007 Help (KB963665) Update for Outlook 2007 Junk Email Filter (KB2553110) Update voor Microsoft Office Excel 2007 Help (KB963678) Update voor Microsoft Office Powerpoint 2007 Help (KB963669) Update voor Microsoft Office Word 2007 Help (KB963665) Verzoek of wijziging voorlopige aanslag 2011 Visual C++ 8.0 Runtime Setup Package (x64) Visual Studio 2008 x64 Redistributables Welcome Center Windows Live Communications Platform Windows Live Essentials Windows Live Installer Windows Live Mail Windows Live Messenger Windows Live Movie Maker Windows Live Photo Common Windows Live Photo Gallery Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live Sync Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources . ==== End Of File ===========================
Link naar reactie
  • 0
anoniem Nieuwkomer

anoniem

Geplaatst:
  • Auteur
Geplaatst:
Hoi, ik weet niet wat je nu precies gedaan hebt, maar er schijnt een combinatie van je oude AVG met de nieuwe AVG in jouw Windows te zitten. En dat de antivirus dan niet werkt mag duidelijk zijn. Ik begrijp niet hoe je dit voor elkaar hebt gekregen! Verwijder de oude ComboFix en dowload het tool opnieuw! Let op, onderstaande zal avg verwijderen, die moet je hierna weer opnieuw installeren of kiezen voor een andere antivirus software. Open een nieuw kladblok bestand, via "Start\Alle programma’s\Bureau-accessoires\[b:3817fd0436]Kladblok[/b:3817fd0436]". Kopieer en plak de volgende (vetgedrukte, blauwe tekst) in het lege kladblokvenstervenster. sla vervolgens het kladblokbestand op jouw bureaublad op als [b:3817fd0436]CFScript_AVG2011.txt[/b:3817fd0436] [code:1:3817fd0436][B][COLOR="Blue"]REGISTRY:: [-HKEY_CURRENT_USER\AppEvents\EventLabels\avgtrayRSAlert] [-HKEY_CURRENT_USER\AppEvents\EventLabels\avgtrayScanFinished] [-HKEY_CURRENT_USER\AppEvents\EventLabels\avgtrayScanFinishedThreatFound] [-HKEY_CURRENT_USER\AppEvents\EventLabels\avgtrayScanStarted] [-HKEY_CURRENT_USER\AppEvents\EventLabels\avgtrayUpdEnd] [-HKEY_CURRENT_USER\AppEvents\EventLabels\avgtrayUpdEndFail] [-HKEY_CURRENT_USER\AppEvents\EventLabels\avgtrayUpdStart] [-HKEY_CURRENT_USER\AppEvents\Schemes\Apps\avgtray] [-HKEY_CURRENT_USER\Software\Avg] [-HKEY_CLASSES_ROOT\*\shellex\ContextMenuHandlers\AVG9 Shell Extension] [-HKEY_CLASSES_ROOT\.avgdx] [-HKEY_CLASSES_ROOT\CLSID\{1152F8E0-69DB-4935-AFC3-59F8A5A86A3E}] [-HKEY_CLASSES_ROOT\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}] [-HKEY_CLASSES_ROOT\CLSID\{41B21542-2055-4212-A6F2-395CD109B14B}] [-HKEY_CLASSES_ROOT\CLSID\{50A96677-4378-434d-9F4B-6B28B485933F}] [-HKEY_CLASSES_ROOT\CLSID\{6F59E522-4689-156E-316C-D5B48819DE95} ] [-HKEY_CLASSES_ROOT\CLSID\{86E8C5B0-75B6-4ff2-B04F-6789CC7AE386}] [-HKEY_CLASSES_ROOT\CLSID\{9F97547E-4609-42C5-AE0C-81C61FFAEBC3}] [-HKEY_CLASSES_ROOT\CLSID\{EF0BB4CD-81FA-48AF-99B3-AB6C1F079BEC}] [-HKEY_CLASSES_ROOT\CLSID\{F1FE4608-7924-4908-8E12-81CFA206F00A}] [-HKEY_CLASSES_ROOT\CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1}] [-HKEY_CLASSES_ROOT\Folder\shellex\ContextMenuHandlers\AVG9 Shell Extension] [-HKEY_CLASSES_ROOT\Installer\Features\36E852A15FD8BDA48923830A21D156BE] [-HKEY_CLASSES_ROOT\Installer\Features\69BC3230A1222404483A39DE4E0799CF] [-HKEY_CLASSES_ROOT\Installer\Features\CFD2C1F142D260E3CB8B271543DA9F98] [-HKEY_CLASSES_ROOT\Installer\Products\36E852A15FD8BDA48923830A21D156BE] [-HKEY_CLASSES_ROOT\Installer\Products\69BC3230A1222404483A39DE4E0799CF] [-HKEY_CLASSES_ROOT\Installer\Products\CFD2C1F142D260E3CB8B271543DA9F98] [-HKEY_CLASSES_ROOT\Installer\UpgradeCodes\06DD9E4F7F3FF9C41BC2BD64A2CE18FE] [-HKEY_CLASSES_ROOT\Installer\UpgradeCodes\38F747DBDC97B4E459142E21199F9D10] [-HKEY_CLASSES_ROOT\Installer\UpgradeCodes\41A387AA3A7A33D3590FA953D1350011] [-HKEY_CLASSES_ROOT\LinkScannerIE.NavFilter] [-HKEY_CLASSES_ROOT\LinkScannerIE.NavFilter.1] [-HKEY_CLASSES_ROOT\MicroScanner.MicroScanner] [-HKEY_CLASSES_ROOT\piffile\shellex\ContextMenuHandlers\AVG9 Shell Extension] [-HKEY_CLASSES_ROOT\PROTOCOLS\Handler\linkscanner] [-HKEY_LOCAL_MACHINE\SOFTWARE\AVG] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\DevDiv\VC] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\AVGSE.DLL] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{0323CB96-221A-4042-84A3-93EDE47099FC}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1A258E63-8DF5-4ADB-9832-38A0121D65EB}] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AlwaysUnloadDll] [-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\AVG] DRIVER:: Avg AVGIDSAgent AVGIDSDriver AVGIDSEH AVGIDSFilter AVGIDSShim Avgldx86 Avgmfx86 Avgrkx86 Avgtdix avgwd FOLDER:: %SYSTEMDRIVE%\$AVG %COMMONAPPDATA%\AVG10 %COMMONAPPDATA%\MFAData %COMMONPROGRAMS%\AVG 2011 %APPDATA%\AVG10 %PROGRAMFILES%\AVG %SYSTEM%\drivers\AVG File:: %COMMONAPPDATA%\Common Files\6F59E522-4689-156E-316C-D5B48819DE95.dat %COMMONDESKTOP%\AVG 2011.lnk %SYSTEM%\drivers\AVGIDSDriver.sys %SYSTEM%\drivers\AVGIDSEH.sys %SYSTEM%\drivers\AVGIDSFilter.sys %SYSTEM%\drivers\AVGIDSShim.sys %SYSTEM%\drivers\avgldx86.sys %SYSTEM%\drivers\avgmfx86.sys %SYSTEM%\drivers\avgrkx86.sys %SYSTEM%\drivers\avgtdix.sys[/b][/color][/code:1:3817fd0436] Sla dit kladblokbestand op je bureaublad op als [b:3817fd0436]CFScript_AVG2011.txt[/b:3817fd0436]. Start de computer in veilige modus: http://www.nationaalcomputerforum.nl/showthread.php?t=27396 Sleep [b:3817fd0436]CFScript_AVG2011.txt[/b:3817fd0436] in [b:3817fd0436]ComboFix.exe[/b:3817fd0436] zoals getoond in onderstaand voorbeeld : [img:3817fd0436]http://img517.imageshack.us/img517/8662/cfscript10uc2.gif[/img:3817fd0436] Dit zal [b:3817fd0436]ComboFix[/b:3817fd0436] doen herstarten. [b:3817fd0436]Start opnieuw op als daarom gevraagd wordt.[/b:3817fd0436] Post het Combofix log dat na het opnieuw starten wordt getoond via de kleurcodeerder! Installeer nog even geen nieuwe antivirus!
Link naar reactie
  • 0
anoniem Nieuwkomer

anoniem

Geplaatst:
  • Auteur
Geplaatst:
Heel vreemd want ik heb alles exact uitgevoerd zoals beschreven. vorige versie is verwijdert met avg remover. maar na het uitvoeren van de systeemherstel vanaf de dvd gaat het mis. Ik zie nu ook 2 keer program files staan ik weet niet of dat al zo was: Program Files Program Files (X86) Ik heb de laatste actie ook exact uitgevoerd zoals omschreven maar avg wordt niet verwijdert. hierbij de log: ComboFix 11-10-08.01 - Peter 08-10-2011 14:08:02.4.2 - x64 MINIMAL Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.4026.3117 [GMT 2:00] Gestart vanuit: c:\users\Peter\Desktop\ComboFix.exe gebruikte Opdracht switches :: c:\users\Peter\Desktop\CFScript_AVG2011.txt AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0} SP: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D} SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Nieuw herstelpunt werd aangemaakt . FILE :: "c:\programdata\Common Files\6F59E522-4689-156E-316C-D5B48819DE95.dat" "c:\users\Public\Desktop\AVG 2011.lnk" "c:\windows\SysWow64\drivers\AVGIDSDriver.sys" "c:\windows\SysWow64\drivers\AVGIDSEH.sys" "c:\windows\SysWow64\drivers\AVGIDSFilter.sys" "c:\windows\SysWow64\drivers\AVGIDSShim.sys" "c:\windows\SysWow64\drivers\avgldx86.sys" "c:\windows\SysWow64\drivers\avgmfx86.sys" "c:\windows\SysWow64\drivers\avgrkx86.sys" "c:\windows\SysWow64\drivers\avgtdix.sys[/b][/color]" . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . C:\$AVG c:\$avg\$CHJW\4c2eb609-fe43-4d63-a101-8445d3a8dd8b c:\$avg\$CHJW\4e924ef3-2713-4423-bca3-4aeee83f9ad3 c:\$avg\$CHJW\83e96554-1229-4ffa-a69c-3e7a1256942b c:\$avg\$CHJW\a98d36af-9ac3-4af1-a766-b59a23cd2e5e c:\programdata\MFAData c:\programdata\MFAData\logs\mfa-20111004-172302.log c:\programdata\MFAData\logs\mfa-20111007-164936.log c:\programdata\MFAData\logs\msi-20111004-172302.log c:\programdata\MFAData\mfaurlconf.ini c:\programdata\MFAData\mkt\dtc\nl\ToolbarOfferScreen.html c:\programdata\MFAData\mkt\dtc\res\bullet04.gif c:\programdata\MFAData\mkt\dtc\res\offer.css c:\programdata\MFAData\mkt\nl\dm_marketing_message-nl.html c:\programdata\MFAData\mkt\nl\Installation-Page_LinkScanner.html c:\programdata\MFAData\mkt\nl\Installation-Page_Smart-Scanning.html c:\programdata\MFAData\mkt\nl\Installation-Page_Social-Networking.html c:\programdata\MFAData\mkt\res\LinkScanner-style.css c:\programdata\MFAData\mkt\res\LinkScanner.jpg c:\programdata\MFAData\mkt\res\OK.png c:\programdata\MFAData\mkt\res\Smart-Scanning.jpg c:\programdata\MFAData\mkt\res\SmartScanning-style.css c:\programdata\MFAData\mkt\res\Social-Networking.jpg c:\programdata\MFAData\mkt\res\SocialNetworking-style.css c:\programdata\MFAData\mkt\res\style.css c:\programdata\MFAData\mkt\res\w7_active.png c:\programdata\MFAData\mkt\res\w7_active_check.png c:\programdata\MFAData\mkt\res\w7_check.png c:\programdata\MFAData\mkt\res\w7_disable_check.png c:\programdata\MFAData\mkt\res\w7_disable_uncheck.png c:\programdata\MFAData\mkt\res\w7_hover.png c:\programdata\MFAData\mkt\res\w7_hover_check.png c:\programdata\MFAData\mkt\res\w7_uncheck.png c:\programdata\MFAData\msistorg.dat c:\programdata\MFAData\msistorg.dat.bkp c:\programdata\MFAData\public_installation_log.xml c:\programdata\MFAData\SelfUpd\avgatend.stp c:\programdata\MFAData\SelfUpd\avgatupd.stp c:\programdata\MFAData\SelfUpd\avgmfapx.exe c:\programdata\MFAData\SelfUpd\avgmfarx.dll c:\programdata\MFAData\SelfUpd\avgntdumpx.exe c:\programdata\MFAData\SelfUpd\avgrunasx.exe c:\programdata\MFAData\SelfUpd\avgupd.sig c:\programdata\MFAData\SelfUpd\avgupdx.dll c:\programdata\MFAData\SelfUpd\bins\f10mfa1170if.bin c:\programdata\MFAData\SelfUpd\bins\f10upd1170eq.bin c:\programdata\MFAData\SelfUpd\htmlayout.dll c:\programdata\MFAData\SelfUpd\license_cz.htm c:\programdata\MFAData\SelfUpd\license_da.htm c:\programdata\MFAData\SelfUpd\license_es.htm c:\programdata\MFAData\SelfUpd\license_fr.htm c:\programdata\MFAData\SelfUpd\license_ge.htm c:\programdata\MFAData\SelfUpd\license_hu.htm c:\programdata\MFAData\SelfUpd\license_id.htm c:\programdata\MFAData\SelfUpd\license_in.htm c:\programdata\MFAData\SelfUpd\license_it.htm c:\programdata\MFAData\SelfUpd\license_jp.htm c:\programdata\MFAData\SelfUpd\license_ko.htm c:\programdata\MFAData\SelfUpd\license_ms.htm c:\programdata\MFAData\SelfUpd\license_nl.htm c:\programdata\MFAData\SelfUpd\license_pb.htm c:\programdata\MFAData\SelfUpd\license_pl.htm c:\programdata\MFAData\SelfUpd\license_pt.htm c:\programdata\MFAData\SelfUpd\license_ru.htm c:\programdata\MFAData\SelfUpd\license_sc.htm c:\programdata\MFAData\SelfUpd\license_sk.htm c:\programdata\MFAData\SelfUpd\license_sp.htm c:\programdata\MFAData\SelfUpd\license_tr.htm c:\programdata\MFAData\SelfUpd\license_us.htm c:\programdata\MFAData\SelfUpd\license_zh.htm c:\programdata\MFAData\SelfUpd\license_zt.htm c:\programdata\MFAData\SelfUpd\mfaconf.txt c:\programdata\MFAData\SelfUpd\mfacz.lns c:\programdata\MFAData\SelfUpd\mfada.lns c:\programdata\MFAData\SelfUpd\mfaes.lns c:\programdata\MFAData\SelfUpd\mfafr.lns c:\programdata\MFAData\SelfUpd\mfage.lns c:\programdata\MFAData\SelfUpd\mfahu.lns c:\programdata\MFAData\SelfUpd\mfaid.lns c:\programdata\MFAData\SelfUpd\mfain.lns c:\programdata\MFAData\SelfUpd\mfait.lns c:\programdata\MFAData\SelfUpd\mfajp.lns c:\programdata\MFAData\SelfUpd\mfako.lns c:\programdata\MFAData\SelfUpd\mfams.lns c:\programdata\MFAData\SelfUpd\mfanl.lns c:\programdata\MFAData\SelfUpd\mfapb.lns c:\programdata\MFAData\SelfUpd\mfapl.lns c:\programdata\MFAData\SelfUpd\mfapt.lns c:\programdata\MFAData\SelfUpd\mfaru.lns c:\programdata\MFAData\SelfUpd\mfasc.lns c:\programdata\MFAData\SelfUpd\mfask.lns c:\programdata\MFAData\SelfUpd\mfasp.lns c:\programdata\MFAData\SelfUpd\mfatr.lns c:\programdata\MFAData\SelfUpd\mfaus.lns c:\programdata\MFAData\SelfUpd\mfavera.txt c:\programdata\MFAData\SelfUpd\mfaverx.txt c:\programdata\MFAData\SelfUpd\mfazh.lns c:\programdata\MFAData\SelfUpd\mfazt.lns c:\users\Peter\AppData\Roaming\AVG10 c:\users\Peter\AppData\Roaming\AVG10\cfgall\usergui.cfg c:\windows\SysWow64\drivers\AVG c:\windows\SysWow64\drivers\AVG\iavichjw.avm c:\windows\SysWow64\drivers\AVG\incavi.avm . . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Legacy_AVGIDSDRIVER -------\Legacy_AVGIDSEH -------\Legacy_AVGIDSFILTER -------\Service_Avg -------\Service_AVGIDSAgent -------\Service_AVGIDSDriver -------\Service_AVGIDSEH -------\Service_AVGIDSFilter -------\Service_avgwd . . (((((((((((((((((((( Bestanden Gemaakt van 2011-09-08 to 2011-10-08 )))))))))))))))))))))))))))))) . . 2011-10-08 12:13 . 2011-10-08 12:13 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-10-04 20:20 . 2011-10-04 20:54 -------- d-----w- c:\users\Peter\AppData\Roaming\Download Manager 2011-10-04 18:47 . 2011-10-04 18:47 -------- d-----w- c:\windows\system32\oodag 2011-10-04 18:45 . 2011-10-04 18:45 -------- d-----w- c:\users\Peter\AppData\Local\O&O 2011-10-04 18:44 . 2011-10-04 18:44 -------- d-----w- c:\program files\OO Software 2011-10-04 18:43 . 2011-10-04 18:43 -------- d-----w- c:\users\Peter\AppData\Local\Downloaded Installations 2011-10-04 17:38 . 2011-10-04 17:38 -------- d-----w- c:\users\Peter\AppData\Roaming\AVG2012 2011-10-04 17:34 . 2011-10-06 19:41 -------- d-----w- c:\windows\system32\drivers\AVG 2011-10-04 17:34 . 2011-10-04 17:45 -------- d-----w- c:\programdata\AVG2012 2011-10-03 20:35 . 2011-10-03 20:35 -------- d-----w- c:\program files (x86)\VS Revo Group 2011-09-29 19:40 . 2011-10-02 20:42 -------- d-----w- c:\program files (x86)\MALWAREBYTES ANTI-MALWARE 2011-09-26 20:56 . 2011-09-26 20:56 -------- d-----w- c:\users\Peter\AppData\Roaming\Malwarebytes 2011-09-26 20:55 . 2011-09-26 20:55 -------- d-----w- c:\programdata\Malwarebytes 2011-09-26 20:52 . 2011-08-31 15:00 25416 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-09-25 08:22 . 2011-09-25 08:22 -------- d-----w- c:\users\Peter\AppData\Roaming\Intel Corporation 2011-09-24 19:59 . 2010-11-05 21:45 438808 ----a-w- c:\windows\system32\drivers\iaStor.sys 2011-09-24 19:58 . 2011-09-24 19:58 -------- d-----w- c:\users\Peter\AppData\Roaming\InstallShield 2011-09-13 04:30 . 2011-09-13 04:30 37456 ----a-w- c:\windows\system32\drivers\avgrkx64.sys . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-09-25 08:42 . 2011-07-01 17:20 404640 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl 2011-08-08 04:08 . 2011-08-08 04:08 46672 ----a-w- c:\windows\system32\drivers\avgmfx64.sys 2011-08-03 17:42 . 2011-05-08 12:39 627600 ----a-w- c:\windows\system32\deployJava1.dll 2011-07-22 05:42 . 2011-08-10 06:53 2303488 ----a-w- c:\windows\system32\jscript9.dll 2011-07-22 05:36 . 2011-08-10 06:53 1389056 ----a-w- c:\windows\system32\wininet.dll 2011-07-22 05:32 . 2011-08-10 06:53 2382848 ----a-w- c:\windows\system32\mshtml.tlb 2011-07-22 02:54 . 2011-08-10 06:53 1797632 ----a-w- c:\windows\SysWow64\jscript9.dll 2011-07-22 02:48 . 2011-08-10 06:53 1126912 ----a-w- c:\windows\SysWow64\wininet.dll 2011-07-22 02:44 . 2011-08-10 06:53 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb 2011-07-16 05:41 . 2011-08-10 06:42 362496 ----a-w- c:\windows\system32\wow64win.dll 2011-07-16 05:41 . 2011-08-10 06:42 243200 ----a-w- c:\windows\system32\wow64.dll 2011-07-16 05:41 . 2011-08-10 06:42 13312 ----a-w- c:\windows\system32\wow64cpu.dll 2011-07-16 05:39 . 2011-08-10 06:42 16384 ----a-w- c:\windows\system32\ntvdm64.dll 2011-07-16 05:37 . 2011-08-10 06:42 421888 ----a-w- c:\windows\system32\KernelBase.dll 2011-07-16 05:21 . 2011-08-10 06:42 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 3584 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 3584 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2011-07-16 05:21 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll 2011-07-16 04:29 . 2011-08-10 06:42 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll 2011-07-16 04:26 . 2011-08-10 06:42 44032 ----a-w- c:\windows\apppatch\acwow64.dll 2011-07-16 04:25 . 2011-08-10 06:42 25600 ----a-w- c:\windows\SysWow64\setup16.exe 2011-07-16 04:24 . 2011-08-10 06:42 5120 ----a-w- c:\windows\SysWow64\wow32.dll 2011-07-16 04:24 . 2011-08-10 06:42 272384 ----a-w- c:\windows\SysWow64\KernelBase.dll 2011-07-16 04:15 . 2011-08-10 06:42 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 5120 ---ha-w- c:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll 2011-07-16 04:15 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll 2011-07-16 02:21 . 2011-08-10 06:42 7680 ----a-w- c:\windows\SysWow64\instnm.exe 2011-07-16 02:21 . 2011-08-10 06:42 2048 ----a-w- c:\windows\SysWow64\user.exe 2011-07-16 02:17 . 2011-08-10 06:42 6144 ---ha-w- c:\windows\SysWow64\api-ms-win-security-base-l1-1-0.dll 2011-07-16 02:17 . 2011-08-10 06:42 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll 2011-07-16 02:17 . 2011-08-10 06:42 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll 2011-07-16 02:17 . 2011-08-10 06:42 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-util-l1-1-0.dll 2011-07-10 23:14 . 2011-07-10 23:14 375376 ----a-w- c:\windows\system32\drivers\avgtdia.sys 2011-07-10 23:14 . 2011-07-10 23:14 29776 ----a-w- c:\windows\system32\drivers\AVGIDSFilter.sys 2011-07-10 23:14 . 2011-07-10 23:14 26704 ----a-w- c:\windows\system32\drivers\AVGIDSEH.sys 2011-07-10 23:14 . 2011-07-10 23:14 120400 ----a-w- c:\windows\system32\drivers\AVGIDSDriver.sys 2011-07-10 23:13 . 2011-07-10 23:13 282704 ----a-w- c:\windows\system32\drivers\avgldx64.sys . . ((((((((((((((((((((((((((((( SnapShot@2011-10-01_09.01.06 ))))))))))))))))))))))))))))))))))))))))) . + 2009-07-14 04:54 . 2011-10-03 20:00 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2009-07-14 04:54 . 2011-10-01 07:24 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2009-07-14 04:54 . 2011-10-01 07:24 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-07-14 04:54 . 2011-10-03 20:00 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat - 2009-07-14 04:54 . 2011-10-01 07:24 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2009-07-14 04:54 . 2011-10-03 20:00 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2009-09-03 02:25 . 2011-10-08 11:57 65968 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin + 2009-07-14 05:10 . 2011-10-08 12:16 51120 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin + 2010-01-30 19:41 . 2011-10-08 12:16 23496 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2441378208-3533287211-1119336525-1000_UserData.bin - 2011-01-24 15:51 . 2011-09-30 18:06 67584 c:\windows\system32\LogFiles\Srt\bootstat.dat + 2011-01-24 15:51 . 2011-10-07 20:52 67584 c:\windows\system32\LogFiles\Srt\bootstat.dat + 2009-07-14 05:30 . 2011-10-04 17:17 86016 c:\windows\system32\DriverStore\infpub.dat - 2009-07-14 05:30 . 2011-09-24 20:03 86016 c:\windows\system32\DriverStore\infpub.dat - 2009-09-22 15:12 . 2011-09-25 15:16 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2009-09-22 15:12 . 2011-10-06 20:42 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2011-10-06 20:42 . 2011-10-06 20:42 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat - 2009-09-22 15:12 . 2011-09-25 15:16 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat - 2009-07-14 04:54 . 2011-09-25 15:16 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2009-07-14 04:54 . 2011-10-06 20:42 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2011-10-04 18:44 . 2011-10-04 18:44 50528 c:\windows\Installer\{C10CAF82-9D36-4D9A-9DC0-C4549F06B519}\NewShortcut212_06C0450C276444FEB0B52069B6293004.exe + 2011-10-08 12:14 . 2011-10-08 12:14 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat - 2011-10-01 08:41 . 2011-10-01 08:41 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat + 2011-10-08 12:14 . 2011-10-08 12:14 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat - 2011-10-01 08:41 . 2011-10-01 08:41 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat + 2010-02-01 19:29 . 2011-10-07 20:51 191472 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin - 2009-09-22 15:48 . 2011-09-28 17:23 701564 c:\windows\system32\perfh013.dat + 2009-09-22 15:48 . 2011-10-02 20:39 701564 c:\windows\system32\perfh013.dat - 2009-07-14 02:36 . 2011-09-28 17:23 616008 c:\windows\system32\perfh009.dat + 2009-07-14 02:36 . 2011-10-02 20:39 616008 c:\windows\system32\perfh009.dat + 2009-09-22 15:48 . 2011-10-02 20:39 133564 c:\windows\system32\perfc013.dat - 2009-09-22 15:48 . 2011-09-28 17:23 133564 c:\windows\system32\perfc013.dat - 2009-07-14 02:36 . 2011-09-28 17:23 106388 c:\windows\system32\perfc009.dat + 2009-07-14 02:36 . 2011-10-02 20:39 106388 c:\windows\system32\perfc009.dat - 2009-07-14 05:30 . 2011-09-24 20:03 143360 c:\windows\system32\DriverStore\infstrng.dat + 2009-07-14 05:30 . 2011-10-04 17:17 143360 c:\windows\system32\DriverStore\infstrng.dat + 2009-07-14 05:30 . 2011-10-04 17:17 143360 c:\windows\system32\DriverStore\infstor.dat - 2009-07-14 05:30 . 2011-09-24 20:03 143360 c:\windows\system32\DriverStore\infstor.dat + 2009-07-14 05:01 . 2011-10-08 12:00 353416 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat - 2009-07-14 05:01 . 2011-09-27 19:58 353416 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat + 2011-10-02 11:15 . 2011-10-02 11:15 629504 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2441378208-3533287211-1119336525-1000-4096.dat + 2011-05-08 12:41 . 2011-10-04 18:09 704736 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2441378208-3533287211-1119336525-1000-12288.dat + 2011-10-04 18:44 . 2011-10-04 18:44 341344 c:\windows\Installer\{C10CAF82-9D36-4D9A-9DC0-C4549F06B519}\NewShortcut12_7418A479A4444844956C46B4C8CE2F75.exe + 2011-10-04 18:44 . 2011-10-04 18:44 341344 c:\windows\Installer\{C10CAF82-9D36-4D9A-9DC0-C4549F06B519}\NewShortcut1_D840A6EA92214470BCE0FD7EF9D6C0CF.exe + 2011-10-04 18:44 . 2011-10-04 18:44 341344 c:\windows\Installer\{C10CAF82-9D36-4D9A-9DC0-C4549F06B519}\ARPPRODUCTICON.exe + 2011-05-06 16:04 . 2011-10-08 12:00 1676212 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2441378208-3533287211-1119336525-1000-8192.dat + 2011-10-04 17:32 . 2011-10-04 17:32 2830336 c:\windows\Installer\d7744.msi + 2011-10-05 18:17 . 2011-10-05 18:17 7560704 c:\windows\Installer\5bbf4.msi + 2009-07-14 02:34 . 2011-10-08 17:29 10485760 c:\windows\system32\SMI\Store\Machine\schema.dat - 2009-07-14 02:34 . 2011-10-01 05:22 10485760 c:\windows\system32\SMI\Store\Machine\schema.dat + 2011-10-04 18:43 . 2011-10-04 18:43 23670272 c:\windows\Installer\291e5.msi . -- Snapshot teruggezet naar huidige datum -- . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP] @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}" [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}] 2009-08-06 17:18 120104 ----a-w- c:\program files (x86)\EgisTec\MyWinLocker 3\x86\PSDProtect.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2009-07-27 1157128] "EgisTecLiveUpdate"="c:\program files (x86)\EgisTec Egis Software Update\EgisUpdate.exe" [2009-08-04 199464] "ArcadeDeluxeAgent"="c:\program files (x86)\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" [2009-08-01 128296] "PlayMovie"="c:\program files (x86)\Acer Arcade Deluxe\PlayMovie\PMVService.exe" [2009-08-05 181480] "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920] "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-04-08 254696] "IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-11-05 283160] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 5 (0x5) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "aux"=wdmaud.drv . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager] BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~2\AVG\AVG10\avgchsva.exe /sync\0c:\progra~2\AVG\AVG10\avgrsa.exe /sync /restart . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp . R1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6a.sys [x] R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x] R3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files (x86)\AVG\AVG10\Toolbar\ToolbarBroker.exe [x] R3 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2009-06-18 50432] R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\System32\Drivers\RtsUStor.sys [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x] R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x] S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [x] S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [x] S1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [x] S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [x] S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [x] S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [x] S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [x] S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x] S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952] S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2009-08-06 844320] S2 Greg_Service;GRegService;c:\program files (x86)\Acer\Registration\GregHSRW.exe [2009-06-04 1150496] S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-11-05 13336] S2 MWLService;MyWinLocker Service;c:\program files (x86)\EgisTec\MyWinLocker 3\x86\\MWLService.exe [2009-08-06 311592] S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2009-06-18 144640] S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160] S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\DRIVERS\L1C62x64.sys [x] S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x] S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x] . . . --------- x86-64 ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP] @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}" [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}] 2009-08-06 17:19 137512 ----a-w- c:\program files (x86)\EgisTec\MyWinLocker 3\x64\PSDProtect.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2009-08-06 828960] "mwlDaemon"="c:\program files (x86)\EgisTec\MyWinLocker 3\x86\mwlDaemon.exe" [2009-08-06 349480] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-07-28 7982112] "SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU] "PLFSetI"="c:\windows\PLFSetI.exe" [2009-09-22 200704] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-02 159232] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-02 380928] "Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-02 358912] "combofix"="c:\combofix\CF7019.3XE" [2010-11-20 345088] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "LoadAppInit_DLLs"=0x1 . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.kpnvandaag.nl/#home/ uLocal Page = c:\windows\system32\blank.htm mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0413&m=aspire_7715z&r=273601100815l0324z1m5t47i2c015 mLocal Page = c:\windows\SysWOW64\blank.htm IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html TCP: DhcpNameServer = 213.46.228.196 62.179.104.196 Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - FF - ProfilePath - c:\users\Peter\AppData\Roaming\Mozilla\Firefox\Profiles\jpdxqj6g.default\ FF - prefs.js: browser.search.selectedEngine - AVG Secure Search FF - prefs.js: browser.startup.homepage - hxxp://www.kpnvandaag.nl/#home FF - prefs.js: keyword.URL - hxxp://search.avg.com/route/?d=4da9cce5&v=7.008.031.001&i=26&tp=ab&iy=&ychte=nl&lng=nl&q= . - - - - ORPHANS VERWIJDERD - - - - . BHO-{A3BC75A2-1F87-4686-AA43-5347D756017C} - c:\program files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll Toolbar-Locked - (no file) Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - c:\program files (x86)\AVG\AVG10\Toolbar\IEToolbar.dll Wow6432Node-HKLM-Run-AVG_TRAY - c:\program files (x86)\AVG\AVG10\avgtray.exe Wow6432Node-HKLM-Run-Malwarebytes' Anti-Malware - c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe Toolbar-Locked - (no file) AddRemove-Malwarebytes' Anti-Malware_is1 - c:\program files (x86)\Malwarebytes' Anti-Malware\unins000.exe . . . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}] @Denied: (A 2) (Everyone) @="FlashBroker" "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10w_ActiveX.exe,-101" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation] "Enabled"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10w_ActiveX.exe" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Shockwave Flash Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus] @="0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID] @="ShockwaveFlash.ShockwaveFlash.10" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="ShockwaveFlash.ShockwaveFlash" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}] @Denied: (A 2) (Everyone) @="Macromedia Flash Factory Object" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx" "ThreadingModel"="Apartment" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID] @="FlashFactory.FlashFactory.1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32] @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10w.ocx, 1" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib] @="{D27CDB6B-AE6D-11cf-96B8-444553540000}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version] @="1.0" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID] @="FlashFactory.FlashFactory" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}] @Denied: (A 2) (Everyone) @="IFlashBroker4" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32] @="{00020424-0000-0000-C000-000000000046}" . [HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib] @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}" "Version"="1.0" . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . ------------------------ Andere Aktieve Processen ------------------------ . c:\program files (x86)\EgisTec\MyWinLocker 3\x86\MWLService.exe . ************************************************************************** . Voltooingstijd: 2011-10-08 14:19:00 - machine werd herstart ComboFix-quarantined-files.txt 2011-10-08 12:19 ComboFix2.txt 2011-10-03 20:23 ComboFix3.txt 2011-10-02 20:32 . Pre-Run: 449.901.965.312 bytes beschikbaar Post-Run: 449.682.497.536 bytes beschikbaar . - - End Of File - - C152CFFC2F516AFE3E9ED6252070ADC0 [/code]
Link naar reactie

Om een reactie te plaatsen, moet je eerst inloggen

Gast
Antwoord op deze vraag...

×   Geplakt als verrijkte tekst.   Herstel opmaak

  Er zijn maximaal 75 emoji toegestaan.

×   Je link werd automatisch ingevoegd.   Tonen als normale link

×   Je vorige inhoud werd hersteld.   Leeg de tekstverwerker

×   Je kunt afbeeldingen niet direct plakken. Upload of voeg afbeeldingen vanaf een URL in

×
Ga naar vragenoverzicht

  • Populaire leden

    Er is nog niemand die deze week reputatie heeft ontvangen.

  • Leden

    Geen leden om te tonen

×
×
  • Nieuwe aanmaken...