Op deze website gebruiken we cookies om content en advertenties te personaliseren, om functies voor social media te bieden en om ons websiteverkeer te analyseren. Ook delen we informatie over uw gebruik van onze site met onze partners voor social media, adverteren en analyse. Deze partners kunnen deze gegevens combineren met andere informatie die u aan ze heeft verstrekt of die ze hebben verzameld op basis van uw gebruik van hun services. Meer informatie.

Akkoord

Vraag & Antwoord

Beveiliging & privacy

Hijackthislog a.ub. :D

vivian
22 antwoorden
  • Heb spybot, Adaware en Spywareblaster op de pc.

    Heb wat last van een item dat steeds terugkeert als ik met Adware scan.

    Wil iemand naar mijn log kijken? Alvast bedankt.


    Logfile of HijackThis v1.98.2
    Scan saved at 22:29:43, on 18-10-2004
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\SYSTEM32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\LEXBCES.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe
    C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\Pavsrv51.exe
    C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\PsImSvc.exe
    C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\AVENGINE.EXE
    C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\ZoneLabs\vsmon.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\htpatch.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
    C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\APVXDWIN.EXE
    C:\Program Files\Messenger Plus! 3\MsgPlus.exe
    C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
    C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe
    C:\Program Files\Winamp\winampa.exe
    C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe
    C:\Program Files\QuickTime\qttask.exe
    C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
    C:\PROGRA~1\Support.com\bin\tgcmd.exe
    C:\WINDOWS\system32\lexpps.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
    C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe
    C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\WebProxy.exe
    C:\Program Files\PopTray\PopTray.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Documents and Settings\Scarfo.GIUSEPPINA\Mijn documenten\Hijack\HijackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.nl/0SENLNL/SAOS01
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.omewil.nl/
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = www.omewil.nl
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
    O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe
    O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe
    O4 - HKLM\..\Run: [SiS KHooker] C:\WINDOWS\System32\khooker.exe
    O4 - HKLM\..\Run: [DeviceDiscovery] C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
    O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\APVXDWIN.EXE" /s
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\Messenger Plus! 3\MsgPlus.exe"
    O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"
    O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe
    O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe
    O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
    O4 - HKLM\..\Run: [tgcmd] "C:\PROGRA~1\Support.com\bin\tgcmd.exe" /server /startmonitor /deaf
    O4 - HKLM\..\Run: [DXM6Patch_981116] C:\WINDOWS\p_981116.exe /Q:A
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [InstantTray] C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe
    O4 - HKCU\..\Run: [IW_Drop_Icon] C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe /DropDisc
    O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\Messenger Plus! 3\MsgPlus.exe" /WinStart
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - Startup: PopTray.lnk = C:\Program Files\PopTray\PopTray.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present
    O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html
    O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000
    O8 - Extra context menu item: Gelijkwaardige pagina's - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html
    O8 - Extra context menu item: Koppelingspagina's - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html
    O8 - Extra context menu item: Opgeslagen momentopname van de pagina - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html
    O9 - Extra button: ICQ Pro - {6224f700-cba3-4071-b251-47cb894244cd} - C:\PROGRA~1\ICQ\ICQ.exe
    O9 - Extra 'Tools' menuitem: ICQ - {6224f700-cba3-4071-b251-47cb894244cd} - C:\PROGRA~1\ICQ\ICQ.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab30149.cab
    O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab30149.cab
    O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab30149.cab
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab30149.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab30149.cab
    O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab
  • Hallo vivian,

    Log lijkt me ok.
    Wat komt er steeds terug in de Ad-aware-log?
    Gebruik je Ad-aware SE volledig geupdate?

    groeten,
    Marc
  • ja, ik heb Adaware uptodate en wat steeds terugkomt is Altnet BDE regkey.
  • Post even een logje van ad-aware
  • Zo, hier is mijn logje :)


    Ad-Aware SE Build 1.05
    Logfile Created on:dinsdag 19 oktober 2004 20:37:44
    Created with Ad-Aware SE Personal, free for private use.
    Using definitions file:SE1R13 16.10.2004
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    References detected during the scan:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    AltnetBDE(TAC index:4):1 total references
    MRU List(TAC index:0):17 total references
    Tracking Cookie(TAC index:3):1 total references
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Ad-Aware SE Settings
    ===========================
    Set : Search for negligible risk entries
    Set : Safe mode (always request confirmation)
    Set : Scan active processes
    Set : Scan registry
    Set : Deep-scan registry
    Set : Scan my IE Favorites for banned URLs
    Set : Scan my Hosts file

    Extended Ad-Aware SE Settings
    ===========================
    Set : Unload recognized processes & modules during scan
    Set : Scan registry for all users instead of current user only
    Set : Always try to unload modules before deletion
    Set : During removal, unload Explorer and IE if necessary
    Set : Let Windows remove files in use at next reboot
    Set : Delete quarantined objects after restoring
    Set : Include basic Ad-Aware settings in log file
    Set : Include additional Ad-Aware settings in log file
    Set : Include reference summary in log file
    Set : Include alternate data stream details in log file
    Set : Play sound at scan completion if scan locates critical objects


    19-10-2004 20:37:44 - Scan started. (Smart mode)

    Listing running processes
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    #:1 [smss.exe]
    FilePath : \SystemRoot\System32\
    ProcessID : 440
    ThreadCreationTime : 19-10-2004 8:30:01
    BasePriority : Normal


    #:2 [csrss.exe]
    FilePath : \??\C:\WINDOWS\system32\
    ProcessID : 496
    ThreadCreationTime : 19-10-2004 8:30:05
    BasePriority : Normal


    #:3 [winlogon.exe]
    FilePath : \??\C:\WINDOWS\SYSTEM32\
    ProcessID : 520
    ThreadCreationTime : 19-10-2004 8:30:07
    BasePriority : High


    #:4 [services.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 564
    ThreadCreationTime : 19-10-2004 8:30:09
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Besturingssysteem Microsoft® Windows®
    CompanyName : Microsoft Corporation
    FileDescription : Services en controllertoepassingen
    InternalName : services.exe
    LegalCopyright : © Microsoft Corporation. Alle rechten voorbehouden.
    OriginalFilename : services.exe

    #:5 [lsass.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 576
    ThreadCreationTime : 19-10-2004 8:30:09
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : LSA Shell (Export Version)
    InternalName : lsass.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : lsass.exe

    #:6 [svchost.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 736
    ThreadCreationTime : 19-10-2004 8:30:12
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:7 [svchost.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 820
    ThreadCreationTime : 19-10-2004 8:30:14
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:8 [svchost.exe]
    FilePath : C:\WINDOWS\System32\
    ProcessID : 900
    ThreadCreationTime : 19-10-2004 8:30:14
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:9 [svchost.exe]
    FilePath : C:\WINDOWS\System32\
    ProcessID : 992
    ThreadCreationTime : 19-10-2004 8:30:15
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:10 [svchost.exe]
    FilePath : C:\WINDOWS\System32\
    ProcessID : 1052
    ThreadCreationTime : 19-10-2004 8:30:16
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:11 [lexbces.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 1168
    ThreadCreationTime : 19-10-2004 8:30:20
    BasePriority : Normal
    FileVersion : 8.29
    ProductVersion : 8.29
    ProductName : MarkVision for Windows (32 bit)
    CompanyName : Lexmark International, Inc.
    FileDescription : LexBce Service
    InternalName : LexBce Service
    LegalCopyright : (C) 1993 - 2003 Lexmark International, Inc.
    OriginalFilename : LexBceS.exe

    #:12 [spoolsv.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 1200
    ThreadCreationTime : 19-10-2004 8:30:20
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Spooler SubSystem App
    InternalName : spoolsv.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : spoolsv.exe

    #:13 [pavprsrv.exe]
    FilePath : C:\Program Files\Common Files\Panda Software\PavShld\
    ProcessID : 1464
    ThreadCreationTime : 19-10-2004 8:30:54
    BasePriority : Normal
    FileVersion : 1.1.1.4
    ProductVersion : 1.1.1.4
    ProductName : PandaShield
    CompanyName : Panda Software
    FileDescription : Panda Process Protection Service
    InternalName : PavPrSrv
    LegalCopyright : Copyright © 2004, Panda Software
    OriginalFilename : PavPrSrv.exe

    #:14 [pavsrv51.exe]
    FilePath : C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\
    ProcessID : 1476
    ThreadCreationTime : 19-10-2004 8:30:54
    BasePriority : High
    FileVersion : 1, 3, 144, 9
    ProductVersion : 1.3.144.0
    ProductName : Panda Antivirus for Windows NT/2000/XP/2003
    CompanyName : Panda Software
    FileDescription : On-Access Antivirus Scanner Service.
    InternalName : pavsrv.exe
    LegalCopyright : © Panda Software 2004.
    OriginalFilename : pavsrv.exe

    #:15 [psimsvc.exe]
    FilePath : C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\
    ProcessID : 1520
    ThreadCreationTime : 19-10-2004 8:30:55
    BasePriority : Normal
    FileVersion : 1, 3, 2, 0
    ProductVersion : 1, 3, 2, 0
    ProductName : Panda Antivirus
    CompanyName : Panda Software Internacional
    FileDescription : Common Interface Manager
    InternalName : PsImSvc
    LegalCopyright : © Panda Software 2004.
    OriginalFilename : PsImSvc.exe

    #:16 [smagent.exe]
    FilePath : C:\Program Files\Analog Devices\SoundMAX\
    ProcessID : 1600
    ThreadCreationTime : 19-10-2004 8:30:55
    BasePriority : Normal
    FileVersion : 3, 2, 6, 0
    ProductVersion : 3, 2, 6, 0
    ProductName : SoundMAX service agent
    CompanyName : Analog Devices, Inc.
    FileDescription : SoundMAX service agent component
    InternalName : SMAgent
    LegalCopyright : Copyright © 2002
    OriginalFilename : SMAgent.exe

    #:17 [svchost.exe]
    FilePath : C:\WINDOWS\System32\
    ProcessID : 1644
    ThreadCreationTime : 19-10-2004 8:30:55
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Generic Host Process for Win32 Services
    InternalName : svchost.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : svchost.exe

    #:18 [vsmon.exe]
    FilePath : C:\WINDOWS\system32\ZoneLabs\
    ProcessID : 1704
    ThreadCreationTime : 19-10-2004 8:30:56
    BasePriority : Normal
    FileVersion : 5.1.033.000
    ProductVersion : 5.1.033.000
    ProductName : TrueVector Service
    CompanyName : Zone Labs Inc.
    FileDescription : TrueVector Service
    InternalName : vsmon
    LegalCopyright : Copyright © 1998-2004, Zone Labs Inc.
    OriginalFilename : vsmon.exe

    #:19 [alg.exe]
    FilePath : C:\WINDOWS\System32\
    ProcessID : 680
    ThreadCreationTime : 19-10-2004 8:31:18
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Application Layer Gateway Service
    InternalName : ALG.exe
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : ALG.exe

    #:20 [avengine.exe]
    FilePath : C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\
    ProcessID : 880
    ThreadCreationTime : 19-10-2004 15:58:02
    BasePriority : Normal
    FileVersion : 1, 3, 144, 3
    ProductVersion : 1.3.144.0
    ProductName : Panda Antivirus for Windows NT/2000/XP/2003
    CompanyName : Panda Software
    FileDescription : Enhanced On-Access Antivirus Scanner Process.
    InternalName : avengine.exe
    LegalCopyright : © Panda Software 2004.
    OriginalFilename : avengine.exe

    #:21 [explorer.exe]
    FilePath : C:\WINDOWS\
    ProcessID : 3248
    ThreadCreationTime : 19-10-2004 17:30:18
    BasePriority : Normal
    FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 6.00.2900.2180
    ProductName : Besturingssysteem Microsoft® Windows®
    CompanyName : Microsoft Corporation
    FileDescription : Windows Verkenner
    InternalName : explorer
    LegalCopyright : © Microsoft Corporation. Alle rechten voorbehouden.
    OriginalFilename : EXPLORER.EXE

    #:22 [htpatch.exe]
    FilePath : C:\WINDOWS\
    ProcessID : 2240
    ThreadCreationTime : 19-10-2004 17:30:23
    BasePriority : Normal


    #:23 [hpotdd01.exe]
    FilePath : C:\Program Files\Hewlett-Packard\Digital Imaging\bin\
    ProcessID : 3960
    ThreadCreationTime : 19-10-2004 17:30:24
    BasePriority : Normal
    FileVersion : 1, 0, 0, 1
    ProductVersion : 1, 0, 0, 1
    ProductName : Hewlett-Packard hpotdd01
    CompanyName : Hewlett-Packard
    FileDescription : hpotdd01
    InternalName : hpotdd01
    LegalCopyright : Copyright © 2002
    OriginalFilename : hpotdd01.exe

    #:24 [apvxdwin.exe]
    FilePath : C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\
    ProcessID : 656
    ThreadCreationTime : 19-10-2004 17:30:25
    BasePriority : Normal
    FileVersion : 4.07.07
    ProductVersion : 4.07.07
    ProductName : Panda Antivirus Aplication
    CompanyName : Panda Software International
    FileDescription : ApVxdWin
    InternalName : ApVxdWin.exe
    LegalCopyright : © Panda Software 2004
    OriginalFilename : ApVxdWin.exe

    #:25 [msgplus.exe]
    FilePath : C:\Program Files\Messenger Plus! 3\
    ProcessID : 2448
    ThreadCreationTime : 19-10-2004 17:30:26
    BasePriority : Normal


    #:26 [hpwuschd.exe]
    FilePath : C:\Program Files\Hewlett-Packard\HP Software Update\
    ProcessID : 3152
    ThreadCreationTime : 19-10-2004 17:30:26
    BasePriority : Normal
    FileVersion : 1, 0, 0, 2
    ProductVersion : 1, 0, 0, 2
    ProductName : Hewlett-Packard hpwuSchd
    CompanyName : Hewlett-Packard
    FileDescription : hpwuSchd
    InternalName : hpwuSchd
    LegalCopyright : Copyright © 2003
    OriginalFilename : hpwuSchd.exe

    #:27 [hpztsb09.exe]
    FilePath : C:\WINDOWS\System32\spool\drivers\w32x86\3\
    ProcessID : 2592
    ThreadCreationTime : 19-10-2004 17:30:26
    BasePriority : Normal
    FileVersion : 2.236.4.0
    ProductVersion : 2.236.4.0
    ProductName : HP DeskJet
    CompanyName : HP
    LegalCopyright : Copyright © Hewlett-Packard Company 1999-2003

    #:28 [winampa.exe]
    FilePath : C:\Program Files\Winamp\
    ProcessID : 3784
    ThreadCreationTime : 19-10-2004 17:30:27
    BasePriority : Normal


    #:29 [lxbkbmgr.exe]
    FilePath : C:\Program Files\Lexmark X1100 Series\
    ProcessID : 988
    ThreadCreationTime : 19-10-2004 17:30:27
    BasePriority : Normal
    FileVersion : 0.1.1.1
    ProductVersion : 0.1.1.1
    ProductName : Button Manager Executable
    CompanyName : Lexmark International, Inc.
    FileDescription : Lexmark X1100 Series Button Manager
    InternalName : lxbkbmgr.exe
    LegalCopyright : (C) 2002 Lexmark International, Inc.
    OriginalFilename : lxbkbmgr.exe

    #:30 [qttask.exe]
    FilePath : C:\Program Files\QuickTime\
    ProcessID : 2300
    ThreadCreationTime : 19-10-2004 17:30:27
    BasePriority : Normal
    FileVersion : 6.5.1
    ProductVersion : QuickTime 6.5.1
    ProductName : QuickTime
    CompanyName : Apple Computer, Inc.
    InternalName : QuickTime Task
    LegalCopyright : © Apple Computer, Inc. 2001-2004
    OriginalFilename : QTTask.exe

    #:31 [zlclient.exe]
    FilePath : C:\Program Files\Zone Labs\ZoneAlarm\
    ProcessID : 3052
    ThreadCreationTime : 19-10-2004 17:30:27
    BasePriority : Normal
    FileVersion : 5.1.033.000
    ProductVersion : 5.1.033.000
    ProductName : Zone Labs Client
    CompanyName : Zone Labs Inc.
    FileDescription : Zone Labs Client
    InternalName : zlclient
    LegalCopyright : Copyright © 1998-2004, Zone Labs Inc.
    OriginalFilename : zlclient.exe

    #:32 [lxbkbmon.exe]
    FilePath : C:\Program Files\Lexmark X1100 Series\
    ProcessID : 2780
    ThreadCreationTime : 19-10-2004 17:30:28
    BasePriority : Normal
    FileVersion : 0.1.1.1
    ProductVersion : 0.1.1.1
    ProductName : Button Monitor Executable
    CompanyName : Lexmark International, Inc.
    FileDescription : Lexmark X1100 Series Button Monitor
    InternalName : lxbkbmon.exe
    LegalCopyright : (C) 2002 Lexmark International, Inc.
    OriginalFilename : lxbkbmon.exe

    #:33 [tgcmd.exe]
    FilePath : C:\PROGRA~1\Support.com\bin\
    ProcessID : 908
    ThreadCreationTime : 19-10-2004 17:30:28
    BasePriority : Normal
    FileVersion : 5,5,602,0
    ProductVersion : 5,5,602,0
    ProductName : Support.com Scheduler and Command Dispatcher
    CompanyName : Support.com, Inc.
    FileDescription : Support.com Scheduler and Command Dispatcher
    InternalName : TGCMD
    LegalCopyright : Copyright 1997-2069 Support.com
    OriginalFilename : TGCMD.EXE

    #:34 [lexpps.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 3396
    ThreadCreationTime : 19-10-2004 17:30:29
    BasePriority : Normal
    FileVersion : 8.29
    ProductVersion : 8.29
    ProductName : MarkVision for Windows (32 bit)
    CompanyName : Lexmark International, Inc.
    FileDescription : LEXPPS.EXE
    InternalName : LEXPPS
    LegalCopyright : (C) 1993 - 2003 Lexmark International, Inc.
    OriginalFilename : LEXPPS.EXE
    Comments : MarkVision for Windows '95 New P2P Server (32-bit)

    #:35 [ctfmon.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 1012
    ThreadCreationTime : 19-10-2004 17:30:29
    BasePriority : Normal
    FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 5.1.2600.2180
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : CTF Loader
    InternalName : CTFMON
    LegalCopyright : © Microsoft Corporation. All rights reserved.
    OriginalFilename : CTFMON.EXE

    #:36 [pcletray.exe]
    FilePath : C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\
    ProcessID : 2532
    ThreadCreationTime : 19-10-2004 17:30:29
    BasePriority : Normal
    FileVersion : 1.0.0.23
    ProductVersion : 1.0.0.0
    CompanyName : Pinnacle Systems
    FileDescription : Tray Starter
    LegalCopyright : Copyright © 2003 Pinnacle Systems GmbH

    #:37 [iwctrl.exe]
    FilePath : C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\
    ProcessID : 3876
    ThreadCreationTime : 19-10-2004 17:30:29
    BasePriority : Normal
    FileVersion : 4.1.0.108
    ProductVersion : 4.0.0.0
    ProductName : InstantWrite
    CompanyName : VOB Computersysteme GmbH
    FileDescription : InstantWrite Control Center
    InternalName : iwctrl
    LegalCopyright : Copyright ©1997-2002 VOB Computersysteme GmbH

    #:38 [webproxy.exe]
    FilePath : C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\
    ProcessID : 1748
    ThreadCreationTime : 19-10-2004 17:30:32
    BasePriority : Normal
    FileVersion : 4, 6, 9, 6
    ProductVersion : 2, 1, 0, 0
    ProductName : Internet Resident
    CompanyName : Panda Software
    FileDescription : WebProxy
    InternalName : WebProxy
    LegalCopyright : © Panda Software 2004
    OriginalFilename : WebProxy.exe

    #:39 [msmsgs.exe]
    FilePath : C:\Program Files\Messenger\
    ProcessID : 1100
    ThreadCreationTime : 19-10-2004 17:30:33
    BasePriority : Normal
    FileVersion : 4.7.3000
    ProductVersion : Version 4.7.3000
    ProductName : Messenger
    CompanyName : Microsoft Corporation
    FileDescription : Windows Messenger
    InternalName : msmsgs
    LegalCopyright : Copyright © Microsoft Corporation 2004
    LegalTrademarks : Microsoft(R) is a registered trademark of Microsoft Corporation in the U.S. and/or other countries.
    OriginalFilename : msmsgs.exe

    #:40 [msnmsgr.exe]
    FilePath : C:\Program Files\MSN Messenger\
    ProcessID : 1324
    ThreadCreationTime : 19-10-2004 17:30:33
    BasePriority : Normal
    FileVersion : 6.2.0137
    ProductVersion : Version 6.2
    ProductName : MSN Messenger
    CompanyName : Microsoft Corporation
    FileDescription : MSN Messenger
    InternalName : msnmsgr
    LegalCopyright : Copyright © Microsoft Corporation 1997-2004
    LegalTrademarks : Microsoft(R) is a registered trademark of Microsoft Corporation in the U.S. and/or other countries.
    OriginalFilename : msnmsgr.exe

    #:41 [iexplore.exe]
    FilePath : C:\Program Files\Internet Explorer\
    ProcessID : 1244
    ThreadCreationTime : 19-10-2004 17:31:00
    BasePriority : Normal
    FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
    ProductVersion : 6.00.2900.2180
    ProductName : Besturingssysteem Microsoft® Windows®
    CompanyName : Microsoft Corporation
    FileDescription : Internet Explorer
    InternalName : iexplore
    LegalCopyright : © Microsoft Corporation. Alle rechten voorbehouden.
    OriginalFilename : IEXPLORE.EXE

    #:42 [wisptis.exe]
    FilePath : C:\WINDOWS\system32\
    ProcessID : 2608
    ThreadCreationTime : 19-10-2004 17:36:31
    BasePriority : High
    FileVersion : 1.0.2201.0 (xpsp1.020828-1920)
    ProductVersion : 1.0.2201.0
    ProductName : Microsoft® Windows® Operating System
    CompanyName : Microsoft Corporation
    FileDescription : Microsoft Tablet PC Platform Component
    InternalName : WISPTIS.EXE
    LegalCopyright : Copyright © 1998-2002 Microsoft Corporation.
    OriginalFilename : WISPTIS.EXE

    #:43 [paint shop pro.exe]
    FilePath : C:\Program Files\Jasc Software Inc\Paint Shop Pro 8\
    ProcessID : 2636
    ThreadCreationTime : 19-10-2004 17:58:53
    BasePriority : Normal
    FileVersion : 8.00 Release
    ProductVersion : 8.00
    ProductName : Paint Shop Pro 8
    CompanyName : Jasc Software, Inc.
    FileDescription : Paint Shop Pro 8
    InternalName : PSP8
    LegalCopyright : Copyright © 1999-2003 Jasc Software, Inc.
    LegalTrademarks : Jasc Software, Inc.
    OriginalFilename : PSP.EXE
    Comments : ***Release Version***

    #:44 [ad-aware.exe]
    FilePath : C:\Program Files\Lavasoft\Ad-Aware SE Personal\
    ProcessID : 2848
    ThreadCreationTime : 19-10-2004 18:37:03
    BasePriority : Normal
    FileVersion : 6.2.0.206
    ProductVersion : VI.Second Edition
    ProductName : Lavasoft Ad-Aware SE
    CompanyName : Lavasoft Sweden
    FileDescription : Ad-Aware SE Core application
    InternalName : Ad-Aware.exe
    LegalCopyright : Copyright © Lavasoft Sweden
    OriginalFilename : Ad-Aware.exe
    Comments : All Rights Reserved

    Memory scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 0
    Objects found so far: 0


    Started registry scan
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    AltnetBDE Object Recognized!
    Type : Regkey
    Data :
    Category : Data Miner
    Comment :
    Rootkey : HKEY_LOCAL_MACHINE
    Object : software\altnet

    Registry Scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 1
    Objects found so far: 1


    Started deep registry scan
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Deep registry scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 0
    Objects found so far: 1


    Started Tracking Cookie scan
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»


    Tracking Cookie Object Recognized!
    Type : IECache Entry
    Data : vivian@cgi-bin[1].txt
    Category : Data Miner
    Comment : Hits:1
    Value : Cookie:vivian@www2.addfreestats.com/cgi-bin
    Expires : 28-2-2015 2:00:00
    LastSync : Hits:1
    UseCount : 0
    Hits : 1

    Tracking cookie scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 1
    Objects found so far: 2



    Deep scanning and examining files…
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Disk Scan Result for C:\WINDOWS
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 0
    Objects found so far: 2

    Disk Scan Result for C:\WINDOWS\system32
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 0
    Objects found so far: 2

    Disk Scan Result for C:\DOCUME~1\Vivian\LOCALS~1\Temp\
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 0
    Objects found so far: 2


    Scanning Hosts file……
    Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts".
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Hosts file scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    1 entries scanned.
    New critical objects:0
    Objects found so far: 2



    MRU List Object Recognized!
    Location: : S-1-5-21-115944031-763725309-861839888-1010\software\microsoft\search assistant\acmru
    Description : list of recent search terms used with the search assistant


    MRU List Object Recognized!
    Location: : S-1-5-21-115944031-763725309-861839888-1010\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru
    Description : list of recently saved files, stored according to file extension


    MRU List Object Recognized!
    Location: : S-1-5-21-115944031-763725309-861839888-1010\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru
    Description : list of recent programs opened


    MRU List Object Recognized!
    Location: : S-1-5-21-115944031-763725309-861839888-1010\software\microsoft\windows\currentversion\explorer\recentdocs
    Description : list of recent documents opened


    MRU List Object Recognized!
    Location: : S-1-5-21-115944031-763725309-861839888-1010\software\microsoft\internet explorer
    Description : last download directory used in microsoft internet explorer


    MRU List Object Recognized!
    Location: : software\microsoft\directdraw\mostrecentapplication
    Description : most recent application to use microsoft directdraw


    MRU List Object Recognized!
    Location: : S-1-5-21-115944031-763725309-861839888-1010\software\google
    avclient\1.1\history
    Description : list of recently used search terms in the google toolbar


    MRU List Object Recognized!
    Location: : S-1-5-21-115944031-763725309-861839888-1010\software\microsoft\frontpage\editor
    Description : default add image directory for microsoft frontpage


    MRU List Object Recognized!
    Location: : S-1-5-21-115944031-763725309-861839888-1010\software\microsoft\directinput\mostrecentapplication
    Description : most recent application to use microsoft directinput


    MRU List Object Recognized!
    Location: : software\microsoft\direct3d\mostrecentapplication
    Description : most recent application to use microsoft direct3d


    MRU List Object Recognized!
    Location: : S-1-5-21-115944031-763725309-861839888-1010\software\jasc\animation shop 3\saveasdialog
    Description : list of recently saved files in jasc animation shop


    MRU List Object Recognized!
    Location: : S-1-5-21-115944031-763725309-861839888-1010\software\microsoft\directinput\mostrecentapplication
    Description : most recent application to use microsoft directinput


    MRU List Object Recognized!
    Location: : S-1-5-21-115944031-763725309-861839888-1010\software\microsoft\frontpage
    Description : default save location in microsoft frontpage


    MRU List Object Recognized!
    Location: : S-1-5-21-115944031-763725309-861839888-1010\software\jasc\animation shop 3\fileopendialog
    Description : list of recently opened files in jasc animation shop


    MRU List Object Recognized!
    Location: : software\microsoft\direct3d\mostrecentapplication
    Description : most recent application to use microsoft direct X


    MRU List Object Recognized!
    Location: : S-1-5-21-115944031-763725309-861839888-1010\software\microsoft\windows media\wmsdk\general
    Description : windows media sdk


    MRU List Object Recognized!
    Location: : C:\Documents and Settings\Vivian\Application Data\microsoft\office\recent
    Description : list of recently opened documents using microsoft office



    Performing conditional scans…
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»

    Conditional scan result:
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    New critical objects: 0
    Objects found so far: 19

    20:44:44 Scan Complete

    Summary Of This Scan
    »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»
    Total scanning time:00:06:59.533
    Objects scanned:60696
    Objects identified:2
    Objects ignored:0
    New critical objects:2
  • Open kladblok.
    Kopieer onderstaande quote in het kladblokbestand en sla het op als fix.reg op je buroblad.
    Zorg dat er bij "opslaan als type" alle bestanden staat.
    [quote:4c627b99a3]
    REGEDIT4

    [-HKEY_LOCAL_MACHINE\SOFTWARE\altnet]
    [/quote:4c627b99a3]

    Dubbelklik op fix.reg om de wijzigingen aan het register toe te voegen.
  • Heb de aanwijzingen helemaal gevolgd. Weer een adaware scan gedraaid, maar het probleem blijft :(
  • Hallo vivian,

    Normaal zou dit regfiltje de registersleutel die betrekking heeft op altnet moeten verwijderen.
    Je hebt er toch een regfile van gemaakt? (extensie .reg)

    Ben je vertrouwd met werken in het register?

    Ad-aware al gedraaid in veilige modus?

    groeten,
  • Ik heb geen ervaring met registers, dus heb ik precies gedaan zoals stond beschreven. Ik heb er een regfile van gemaakt, zoals het advies was. Ik heb AdAware ook in veilige modus gedraaid, maar helaas het probleem blijft. :(
  • Hallo Vivian,

    Niet vertrouwd in het register, dan gaan we heel voorzichtig te werk.

    Ik neem aan dat toen je dubbelklikte op fix.reg, de melding kreeg om de wijzigingen aan het register toe te voegen?
    Indien dit niet het geval was, meldt dit dan even.

    Anders download je Reglite: http://www.resplendence.com
    eglite
    Installeer en run het programma. In het scherm dat opent geef je bij Adress het volgende in (gebruik de copy/paste):
    [quote:9d96bff74d]
    HKEY_LOCAL_MACHINE\SOFTWARE\altnet
    [/quote:9d96bff74d]
    In het rechtse venster zou deze map nu paars geselecteerd moeten zijn: [b:9d96bff74d]altnet[/b:9d96bff74d]

    Klopt dit?
    Neen dat meld je je terug.
    Ja, dan rechtsklik je op deze paars geselecteerde map, en kies je voor export. Sla het bestand op op je bureaublad.

    Op het bureaublad rechtsklik je op dit bestand en kies je voor openen met Kladblok.
    Kopieer en plak de inhoud in je volgende post.

    groeten,
  • Bij mij kunnen de mappen alleen aan de linkerkant paars geselecteerd worden, aan de rechterkant worden ze blauw. Dus bedoelde je links of rechts?
  • Klopt, moet links zijn.
  • Hier hetgeen je gevraagd hebt.



    REGEDIT4

    [HKEY_LOCAL_MACHINE\SOFTWARE\Altnet]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Altnet\Dashboard]
    "PMversion"=dword:000003e8
  • Vivian,

    Download dit regfiletje: http://users.pandora.be/marcvn/tools/vivfix.reg
    sla het op, dubbelklik er op en controleer of het weg is.


    Lukt dat niet dan start je registar lite opnieuw.
    Bij adresss geef je in:
    [quote:d821fadbb3]
    HKEY_LOCAL_MACHINE\SOFTWARE\Altnet[/quote:d821fadbb3]
    Kijk of in het linkse venster de map altnet paars geselecteerd is. (Let op goed op wat je doet.)
    Indien dit zo is, rechtsklik je op die map en kies je Delete.
    Nu moet die sleutel met Altnet weg zijn.

    (Nogmaals kijk goed uit wat je doet, je zit nu rechtstreeks in je register te werken.)

    succes,
    Marc
  • Doe nu het laatste, maar krijg de melding : Access denied. :(
  • Vivian,

    Heb je adminrechten op deze computer ?
  • Jawel.
  • In reglite zorg je dat de map Altnet paars geselecteerd is.
    Rechtsklik op die map in het linker venster, klik op Properties, klik op Take Ownership.

    Probeer de methode beschreven in mijn vorige post opnieuw.

    (probeer eerst de regfile)
  • Met bloed, zweet en tranen ben ik beziggeweest, maar het lukt allemaal niet. Ik waardeer je pogingen om mij te helpen en ik volg alles echt op de voet, maar het lukt gewoon niet :cry:
  • Wordt inderdaad een lastige…

    Welke melding krijg je omdat dit niet lukt?

Beantwoord deze vraag

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.