Vraag & Antwoord

Beveiliging & privacy

Hijackthislog a.ub. :D

22 antwoorden
  • Heb spybot, Adaware en Spywareblaster op de pc. Heb wat last van een item dat steeds terugkeert als ik met Adware scan. Wil iemand naar mijn log kijken? Alvast bedankt. Logfile of HijackThis v1.98.2 Scan saved at 22:29:43, on 18-10-2004 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\SYSTEM32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\LEXBCES.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\Pavsrv51.exe C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\PsImSvc.exe C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\AVENGINE.EXE C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\ZoneLabs\vsmon.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\htpatch.exe C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\APVXDWIN.EXE C:\Program Files\Messenger Plus! 3\MsgPlus.exe C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe C:\Program Files\Winamp\winampa.exe C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe C:\PROGRA~1\Support.com\bin\tgcmd.exe C:\WINDOWS\system32\lexpps.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\WebProxy.exe C:\Program Files\PopTray\PopTray.exe C:\Program Files\MSN Messenger\msnmsgr.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Documents and Settings\Scarfo.GIUSEPPINA\Mijn documenten\Hijack\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.nl/0SENLNL/SAOS01 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.omewil.nl/ R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = www.omewil.nl R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [PinnacleDriverCheck] C:\WINDOWS\System32\PSDrvCheck.exe O4 - HKLM\..\Run: [HTpatch] C:\WINDOWS\htpatch.exe O4 - HKLM\..\Run: [SiS KHooker] C:\WINDOWS\System32\khooker.exe O4 - HKLM\..\Run: [DeviceDiscovery] C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\APVXDWIN.EXE" /s O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\Messenger Plus! 3\MsgPlus.exe" O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe" O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb09.exe O4 - HKLM\..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe O4 - HKLM\..\Run: [Lexmark X1100 Series] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [tgcmd] "C:\PROGRA~1\Support.com\bin\tgcmd.exe" /server /startmonitor /deaf O4 - HKLM\..\Run: [DXM6Patch_981116] C:\WINDOWS\p_981116.exe /Q:A O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [InstantTray] C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\PCLETray.exe O4 - HKCU\..\Run: [IW_Drop_Icon] C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\iwctrl.exe /DropDisc O4 - HKCU\..\Run: [MessengerPlus3] "C:\Program Files\Messenger Plus! 3\MsgPlus.exe" /WinStart O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background O4 - Startup: PopTray.lnk = C:\Program Files\PopTray\PopTray.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Gelijkwaardige pagina's - res://c:\program files\google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Koppelingspagina's - res://c:\program files\google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Opgeslagen momentopname van de pagina - res://c:\program files\google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: ICQ Pro - {6224f700-cba3-4071-b251-47cb894244cd} - C:\PROGRA~1\ICQ\ICQ.exe O9 - Extra 'Tools' menuitem: ICQ - {6224f700-cba3-4071-b251-47cb894244cd} - C:\PROGRA~1\ICQ\ICQ.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab30149.cab O16 - DPF: {14B87622-7E19-4EA8-93B3-97215F77A6BC} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab30149.cab O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab30149.cab O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab30149.cab O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (ZoneIntro Class) - http://messenger.zone.msn.com/binary/ZIntro.cab30149.cab O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/bin/msnchat45.cab
  • Hallo vivian, Log lijkt me ok. Wat komt er steeds terug in de Ad-aware-log? Gebruik je Ad-aware SE volledig geupdate? groeten, Marc
  • ja, ik heb Adaware uptodate en wat steeds terugkomt is Altnet BDE regkey.
  • Post even een logje van ad-aware
  • Zo, hier is mijn logje :) Ad-Aware SE Build 1.05 Logfile Created on:dinsdag 19 oktober 2004 20:37:44 Created with Ad-Aware SE Personal, free for private use. Using definitions file:SE1R13 16.10.2004 »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» References detected during the scan: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» AltnetBDE(TAC index:4):1 total references MRU List(TAC index:0):17 total references Tracking Cookie(TAC index:3):1 total references »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Ad-Aware SE Settings =========================== Set : Search for negligible risk entries Set : Safe mode (always request confirmation) Set : Scan active processes Set : Scan registry Set : Deep-scan registry Set : Scan my IE Favorites for banned URLs Set : Scan my Hosts file Extended Ad-Aware SE Settings =========================== Set : Unload recognized processes & modules during scan Set : Scan registry for all users instead of current user only Set : Always try to unload modules before deletion Set : During removal, unload Explorer and IE if necessary Set : Let Windows remove files in use at next reboot Set : Delete quarantined objects after restoring Set : Include basic Ad-Aware settings in log file Set : Include additional Ad-Aware settings in log file Set : Include reference summary in log file Set : Include alternate data stream details in log file Set : Play sound at scan completion if scan locates critical objects 19-10-2004 20:37:44 - Scan started. (Smart mode) Listing running processes »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» #:1 [smss.exe] FilePath : \SystemRoot\System32\ ProcessID : 440 ThreadCreationTime : 19-10-2004 8:30:01 BasePriority : Normal #:2 [csrss.exe] FilePath : \??\C:\WINDOWS\system32\ ProcessID : 496 ThreadCreationTime : 19-10-2004 8:30:05 BasePriority : Normal #:3 [winlogon.exe] FilePath : \??\C:\WINDOWS\SYSTEM32\ ProcessID : 520 ThreadCreationTime : 19-10-2004 8:30:07 BasePriority : High #:4 [services.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 564 ThreadCreationTime : 19-10-2004 8:30:09 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Besturingssysteem Microsoft® Windows® CompanyName : Microsoft Corporation FileDescription : Services en controllertoepassingen InternalName : services.exe LegalCopyright : © Microsoft Corporation. Alle rechten voorbehouden. OriginalFilename : services.exe #:5 [lsass.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 576 ThreadCreationTime : 19-10-2004 8:30:09 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : LSA Shell (Export Version) InternalName : lsass.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : lsass.exe #:6 [svchost.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 736 ThreadCreationTime : 19-10-2004 8:30:12 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:7 [svchost.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 820 ThreadCreationTime : 19-10-2004 8:30:14 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:8 [svchost.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 900 ThreadCreationTime : 19-10-2004 8:30:14 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:9 [svchost.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 992 ThreadCreationTime : 19-10-2004 8:30:15 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:10 [svchost.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 1052 ThreadCreationTime : 19-10-2004 8:30:16 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:11 [lexbces.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 1168 ThreadCreationTime : 19-10-2004 8:30:20 BasePriority : Normal FileVersion : 8.29 ProductVersion : 8.29 ProductName : MarkVision for Windows (32 bit) CompanyName : Lexmark International, Inc. FileDescription : LexBce Service InternalName : LexBce Service LegalCopyright : (C) 1993 - 2003 Lexmark International, Inc. OriginalFilename : LexBceS.exe #:12 [spoolsv.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 1200 ThreadCreationTime : 19-10-2004 8:30:20 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Spooler SubSystem App InternalName : spoolsv.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : spoolsv.exe #:13 [pavprsrv.exe] FilePath : C:\Program Files\Common Files\Panda Software\PavShld\ ProcessID : 1464 ThreadCreationTime : 19-10-2004 8:30:54 BasePriority : Normal FileVersion : 1.1.1.4 ProductVersion : 1.1.1.4 ProductName : PandaShield CompanyName : Panda Software FileDescription : Panda Process Protection Service InternalName : PavPrSrv LegalCopyright : Copyright © 2004, Panda Software OriginalFilename : PavPrSrv.exe #:14 [pavsrv51.exe] FilePath : C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\ ProcessID : 1476 ThreadCreationTime : 19-10-2004 8:30:54 BasePriority : High FileVersion : 1, 3, 144, 9 ProductVersion : 1.3.144.0 ProductName : Panda Antivirus for Windows NT/2000/XP/2003 CompanyName : Panda Software FileDescription : On-Access Antivirus Scanner Service. InternalName : pavsrv.exe LegalCopyright : © Panda Software 2004. OriginalFilename : pavsrv.exe #:15 [psimsvc.exe] FilePath : C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\ ProcessID : 1520 ThreadCreationTime : 19-10-2004 8:30:55 BasePriority : Normal FileVersion : 1, 3, 2, 0 ProductVersion : 1, 3, 2, 0 ProductName : Panda Antivirus CompanyName : Panda Software Internacional FileDescription : Common Interface Manager InternalName : PsImSvc LegalCopyright : © Panda Software 2004. OriginalFilename : PsImSvc.exe #:16 [smagent.exe] FilePath : C:\Program Files\Analog Devices\SoundMAX\ ProcessID : 1600 ThreadCreationTime : 19-10-2004 8:30:55 BasePriority : Normal FileVersion : 3, 2, 6, 0 ProductVersion : 3, 2, 6, 0 ProductName : SoundMAX service agent CompanyName : Analog Devices, Inc. FileDescription : SoundMAX service agent component InternalName : SMAgent LegalCopyright : Copyright © 2002 OriginalFilename : SMAgent.exe #:17 [svchost.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 1644 ThreadCreationTime : 19-10-2004 8:30:55 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Generic Host Process for Win32 Services InternalName : svchost.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : svchost.exe #:18 [vsmon.exe] FilePath : C:\WINDOWS\system32\ZoneLabs\ ProcessID : 1704 ThreadCreationTime : 19-10-2004 8:30:56 BasePriority : Normal FileVersion : 5.1.033.000 ProductVersion : 5.1.033.000 ProductName : TrueVector Service CompanyName : Zone Labs Inc. FileDescription : TrueVector Service InternalName : vsmon LegalCopyright : Copyright © 1998-2004, Zone Labs Inc. OriginalFilename : vsmon.exe #:19 [alg.exe] FilePath : C:\WINDOWS\System32\ ProcessID : 680 ThreadCreationTime : 19-10-2004 8:31:18 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Application Layer Gateway Service InternalName : ALG.exe LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : ALG.exe #:20 [avengine.exe] FilePath : C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\ ProcessID : 880 ThreadCreationTime : 19-10-2004 15:58:02 BasePriority : Normal FileVersion : 1, 3, 144, 3 ProductVersion : 1.3.144.0 ProductName : Panda Antivirus for Windows NT/2000/XP/2003 CompanyName : Panda Software FileDescription : Enhanced On-Access Antivirus Scanner Process. InternalName : avengine.exe LegalCopyright : © Panda Software 2004. OriginalFilename : avengine.exe #:21 [explorer.exe] FilePath : C:\WINDOWS\ ProcessID : 3248 ThreadCreationTime : 19-10-2004 17:30:18 BasePriority : Normal FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 6.00.2900.2180 ProductName : Besturingssysteem Microsoft® Windows® CompanyName : Microsoft Corporation FileDescription : Windows Verkenner InternalName : explorer LegalCopyright : © Microsoft Corporation. Alle rechten voorbehouden. OriginalFilename : EXPLORER.EXE #:22 [htpatch.exe] FilePath : C:\WINDOWS\ ProcessID : 2240 ThreadCreationTime : 19-10-2004 17:30:23 BasePriority : Normal #:23 [hpotdd01.exe] FilePath : C:\Program Files\Hewlett-Packard\Digital Imaging\bin\ ProcessID : 3960 ThreadCreationTime : 19-10-2004 17:30:24 BasePriority : Normal FileVersion : 1, 0, 0, 1 ProductVersion : 1, 0, 0, 1 ProductName : Hewlett-Packard hpotdd01 CompanyName : Hewlett-Packard FileDescription : hpotdd01 InternalName : hpotdd01 LegalCopyright : Copyright © 2002 OriginalFilename : hpotdd01.exe #:24 [apvxdwin.exe] FilePath : C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\ ProcessID : 656 ThreadCreationTime : 19-10-2004 17:30:25 BasePriority : Normal FileVersion : 4.07.07 ProductVersion : 4.07.07 ProductName : Panda Antivirus Aplication CompanyName : Panda Software International FileDescription : ApVxdWin InternalName : ApVxdWin.exe LegalCopyright : © Panda Software 2004 OriginalFilename : ApVxdWin.exe #:25 [msgplus.exe] FilePath : C:\Program Files\Messenger Plus! 3\ ProcessID : 2448 ThreadCreationTime : 19-10-2004 17:30:26 BasePriority : Normal #:26 [hpwuschd.exe] FilePath : C:\Program Files\Hewlett-Packard\HP Software Update\ ProcessID : 3152 ThreadCreationTime : 19-10-2004 17:30:26 BasePriority : Normal FileVersion : 1, 0, 0, 2 ProductVersion : 1, 0, 0, 2 ProductName : Hewlett-Packard hpwuSchd CompanyName : Hewlett-Packard FileDescription : hpwuSchd InternalName : hpwuSchd LegalCopyright : Copyright © 2003 OriginalFilename : hpwuSchd.exe #:27 [hpztsb09.exe] FilePath : C:\WINDOWS\System32\spool\drivers\w32x86\3\ ProcessID : 2592 ThreadCreationTime : 19-10-2004 17:30:26 BasePriority : Normal FileVersion : 2.236.4.0 ProductVersion : 2.236.4.0 ProductName : HP DeskJet CompanyName : HP LegalCopyright : Copyright (c) Hewlett-Packard Company 1999-2003 #:28 [winampa.exe] FilePath : C:\Program Files\Winamp\ ProcessID : 3784 ThreadCreationTime : 19-10-2004 17:30:27 BasePriority : Normal #:29 [lxbkbmgr.exe] FilePath : C:\Program Files\Lexmark X1100 Series\ ProcessID : 988 ThreadCreationTime : 19-10-2004 17:30:27 BasePriority : Normal FileVersion : 0.1.1.1 ProductVersion : 0.1.1.1 ProductName : Button Manager Executable CompanyName : Lexmark International, Inc. FileDescription : Lexmark X1100 Series Button Manager InternalName : lxbkbmgr.exe LegalCopyright : (C) 2002 Lexmark International, Inc. OriginalFilename : lxbkbmgr.exe #:30 [qttask.exe] FilePath : C:\Program Files\QuickTime\ ProcessID : 2300 ThreadCreationTime : 19-10-2004 17:30:27 BasePriority : Normal FileVersion : 6.5.1 ProductVersion : QuickTime 6.5.1 ProductName : QuickTime CompanyName : Apple Computer, Inc. InternalName : QuickTime Task LegalCopyright : © Apple Computer, Inc. 2001-2004 OriginalFilename : QTTask.exe #:31 [zlclient.exe] FilePath : C:\Program Files\Zone Labs\ZoneAlarm\ ProcessID : 3052 ThreadCreationTime : 19-10-2004 17:30:27 BasePriority : Normal FileVersion : 5.1.033.000 ProductVersion : 5.1.033.000 ProductName : Zone Labs Client CompanyName : Zone Labs Inc. FileDescription : Zone Labs Client InternalName : zlclient LegalCopyright : Copyright © 1998-2004, Zone Labs Inc. OriginalFilename : zlclient.exe #:32 [lxbkbmon.exe] FilePath : C:\Program Files\Lexmark X1100 Series\ ProcessID : 2780 ThreadCreationTime : 19-10-2004 17:30:28 BasePriority : Normal FileVersion : 0.1.1.1 ProductVersion : 0.1.1.1 ProductName : Button Monitor Executable CompanyName : Lexmark International, Inc. FileDescription : Lexmark X1100 Series Button Monitor InternalName : lxbkbmon.exe LegalCopyright : (C) 2002 Lexmark International, Inc. OriginalFilename : lxbkbmon.exe #:33 [tgcmd.exe] FilePath : C:\PROGRA~1\Support.com\bin\ ProcessID : 908 ThreadCreationTime : 19-10-2004 17:30:28 BasePriority : Normal FileVersion : 5,5,602,0 ProductVersion : 5,5,602,0 ProductName : Support.com Scheduler and Command Dispatcher CompanyName : Support.com, Inc. FileDescription : Support.com Scheduler and Command Dispatcher InternalName : TGCMD LegalCopyright : Copyright 1997-2069 Support.com OriginalFilename : TGCMD.EXE #:34 [lexpps.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 3396 ThreadCreationTime : 19-10-2004 17:30:29 BasePriority : Normal FileVersion : 8.29 ProductVersion : 8.29 ProductName : MarkVision for Windows (32 bit) CompanyName : Lexmark International, Inc. FileDescription : LEXPPS.EXE InternalName : LEXPPS LegalCopyright : (C) 1993 - 2003 Lexmark International, Inc. OriginalFilename : LEXPPS.EXE Comments : MarkVision for Windows '95 New P2P Server (32-bit) #:35 [ctfmon.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 1012 ThreadCreationTime : 19-10-2004 17:30:29 BasePriority : Normal FileVersion : 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 5.1.2600.2180 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : CTF Loader InternalName : CTFMON LegalCopyright : © Microsoft Corporation. All rights reserved. OriginalFilename : CTFMON.EXE #:36 [pcletray.exe] FilePath : C:\Program Files\Pinnacle\Shared Files\InstantCDDVD\ ProcessID : 2532 ThreadCreationTime : 19-10-2004 17:30:29 BasePriority : Normal FileVersion : 1.0.0.23 ProductVersion : 1.0.0.0 CompanyName : Pinnacle Systems FileDescription : Tray Starter LegalCopyright : Copyright © 2003 Pinnacle Systems GmbH #:37 [iwctrl.exe] FilePath : C:\Program Files\Pinnacle\InstantCDDVD\InstantWrite\ ProcessID : 3876 ThreadCreationTime : 19-10-2004 17:30:29 BasePriority : Normal FileVersion : 4.1.0.108 ProductVersion : 4.0.0.0 ProductName : InstantWrite CompanyName : VOB Computersysteme GmbH FileDescription : InstantWrite Control Center InternalName : iwctrl LegalCopyright : Copyright ©1997-2002 VOB Computersysteme GmbH #:38 [webproxy.exe] FilePath : C:\Program Files\Panda Software\Panda Titanium Antivirus 2004\ ProcessID : 1748 ThreadCreationTime : 19-10-2004 17:30:32 BasePriority : Normal FileVersion : 4, 6, 9, 6 ProductVersion : 2, 1, 0, 0 ProductName : Internet Resident CompanyName : Panda Software FileDescription : WebProxy InternalName : WebProxy LegalCopyright : © Panda Software 2004 OriginalFilename : WebProxy.exe #:39 [msmsgs.exe] FilePath : C:\Program Files\Messenger\ ProcessID : 1100 ThreadCreationTime : 19-10-2004 17:30:33 BasePriority : Normal FileVersion : 4.7.3000 ProductVersion : Version 4.7.3000 ProductName : Messenger CompanyName : Microsoft Corporation FileDescription : Windows Messenger InternalName : msmsgs LegalCopyright : Copyright (c) Microsoft Corporation 2004 LegalTrademarks : Microsoft(R) is a registered trademark of Microsoft Corporation in the U.S. and/or other countries. OriginalFilename : msmsgs.exe #:40 [msnmsgr.exe] FilePath : C:\Program Files\MSN Messenger\ ProcessID : 1324 ThreadCreationTime : 19-10-2004 17:30:33 BasePriority : Normal FileVersion : 6.2.0137 ProductVersion : Version 6.2 ProductName : MSN Messenger CompanyName : Microsoft Corporation FileDescription : MSN Messenger InternalName : msnmsgr LegalCopyright : Copyright (c) Microsoft Corporation 1997-2004 LegalTrademarks : Microsoft(R) is a registered trademark of Microsoft Corporation in the U.S. and/or other countries. OriginalFilename : msnmsgr.exe #:41 [iexplore.exe] FilePath : C:\Program Files\Internet Explorer\ ProcessID : 1244 ThreadCreationTime : 19-10-2004 17:31:00 BasePriority : Normal FileVersion : 6.00.2900.2180 (xpsp_sp2_rtm.040803-2158) ProductVersion : 6.00.2900.2180 ProductName : Besturingssysteem Microsoft® Windows® CompanyName : Microsoft Corporation FileDescription : Internet Explorer InternalName : iexplore LegalCopyright : © Microsoft Corporation. Alle rechten voorbehouden. OriginalFilename : IEXPLORE.EXE #:42 [wisptis.exe] FilePath : C:\WINDOWS\system32\ ProcessID : 2608 ThreadCreationTime : 19-10-2004 17:36:31 BasePriority : High FileVersion : 1.0.2201.0 (xpsp1.020828-1920) ProductVersion : 1.0.2201.0 ProductName : Microsoft® Windows® Operating System CompanyName : Microsoft Corporation FileDescription : Microsoft Tablet PC Platform Component InternalName : WISPTIS.EXE LegalCopyright : Copyright © 1998-2002 Microsoft Corporation. OriginalFilename : WISPTIS.EXE #:43 [paint shop pro.exe] FilePath : C:\Program Files\Jasc Software Inc\Paint Shop Pro 8\ ProcessID : 2636 ThreadCreationTime : 19-10-2004 17:58:53 BasePriority : Normal FileVersion : 8.00 Release ProductVersion : 8.00 ProductName : Paint Shop Pro 8 CompanyName : Jasc Software, Inc. FileDescription : Paint Shop Pro 8 InternalName : PSP8 LegalCopyright : Copyright © 1999-2003 Jasc Software, Inc. LegalTrademarks : Jasc Software, Inc. OriginalFilename : PSP.EXE Comments : ***Release Version*** #:44 [ad-aware.exe] FilePath : C:\Program Files\Lavasoft\Ad-Aware SE Personal\ ProcessID : 2848 ThreadCreationTime : 19-10-2004 18:37:03 BasePriority : Normal FileVersion : 6.2.0.206 ProductVersion : VI.Second Edition ProductName : Lavasoft Ad-Aware SE CompanyName : Lavasoft Sweden FileDescription : Ad-Aware SE Core application InternalName : Ad-Aware.exe LegalCopyright : Copyright © Lavasoft Sweden OriginalFilename : Ad-Aware.exe Comments : All Rights Reserved Memory scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 0 Started registry scan »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» AltnetBDE Object Recognized! Type : Regkey Data : Category : Data Miner Comment : Rootkey : HKEY_LOCAL_MACHINE Object : software\altnet Registry Scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 1 Objects found so far: 1 Started deep registry scan »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Deep registry scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 1 Started Tracking Cookie scan »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Tracking Cookie Object Recognized! Type : IECache Entry Data : vivian@cgi-bin[1].txt Category : Data Miner Comment : Hits:1 Value : Cookie:vivian@www2.addfreestats.com/cgi-bin Expires : 28-2-2015 2:00:00 LastSync : Hits:1 UseCount : 0 Hits : 1 Tracking cookie scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 1 Objects found so far: 2 Deep scanning and examining files... »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Disk Scan Result for C:\WINDOWS »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 2 Disk Scan Result for C:\WINDOWS\system32 »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 2 Disk Scan Result for C:\DOCUME~1\Vivian\LOCALS~1\Temp\ »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 2 Scanning Hosts file...... Hosts file location:"C:\WINDOWS\system32\drivers\etc\hosts". »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Hosts file scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» 1 entries scanned. New critical objects:0 Objects found so far: 2 MRU List Object Recognized! Location: : S-1-5-21-115944031-763725309-861839888-1010\software\microsoft\search assistant\acmru Description : list of recent search terms used with the search assistant MRU List Object Recognized! Location: : S-1-5-21-115944031-763725309-861839888-1010\software\microsoft\windows\currentversion\explorer\comdlg32\opensavemru Description : list of recently saved files, stored according to file extension MRU List Object Recognized! Location: : S-1-5-21-115944031-763725309-861839888-1010\software\microsoft\windows\currentversion\explorer\comdlg32\lastvisitedmru Description : list of recent programs opened MRU List Object Recognized! Location: : S-1-5-21-115944031-763725309-861839888-1010\software\microsoft\windows\currentversion\explorer\recentdocs Description : list of recent documents opened MRU List Object Recognized! Location: : S-1-5-21-115944031-763725309-861839888-1010\software\microsoft\internet explorer Description : last download directory used in microsoft internet explorer MRU List Object Recognized! Location: : software\microsoft\directdraw\mostrecentapplication Description : most recent application to use microsoft directdraw MRU List Object Recognized! Location: : S-1-5-21-115944031-763725309-861839888-1010\software\google\navclient\1.1\history Description : list of recently used search terms in the google toolbar MRU List Object Recognized! Location: : S-1-5-21-115944031-763725309-861839888-1010\software\microsoft\frontpage\editor Description : default add image directory for microsoft frontpage MRU List Object Recognized! Location: : S-1-5-21-115944031-763725309-861839888-1010\software\microsoft\directinput\mostrecentapplication Description : most recent application to use microsoft directinput MRU List Object Recognized! Location: : software\microsoft\direct3d\mostrecentapplication Description : most recent application to use microsoft direct3d MRU List Object Recognized! Location: : S-1-5-21-115944031-763725309-861839888-1010\software\jasc\animation shop 3\saveasdialog Description : list of recently saved files in jasc animation shop MRU List Object Recognized! Location: : S-1-5-21-115944031-763725309-861839888-1010\software\microsoft\directinput\mostrecentapplication Description : most recent application to use microsoft directinput MRU List Object Recognized! Location: : S-1-5-21-115944031-763725309-861839888-1010\software\microsoft\frontpage Description : default save location in microsoft frontpage MRU List Object Recognized! Location: : S-1-5-21-115944031-763725309-861839888-1010\software\jasc\animation shop 3\fileopendialog Description : list of recently opened files in jasc animation shop MRU List Object Recognized! Location: : software\microsoft\direct3d\mostrecentapplication Description : most recent application to use microsoft direct X MRU List Object Recognized! Location: : S-1-5-21-115944031-763725309-861839888-1010\software\microsoft\windows media\wmsdk\general Description : windows media sdk MRU List Object Recognized! Location: : C:\Documents and Settings\Vivian\Application Data\microsoft\office\recent Description : list of recently opened documents using microsoft office Performing conditional scans... »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Conditional scan result: »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» New critical objects: 0 Objects found so far: 19 20:44:44 Scan Complete Summary Of This Scan »»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»»» Total scanning time:00:06:59.533 Objects scanned:60696 Objects identified:2 Objects ignored:0 New critical objects:2
  • Open kladblok. Kopieer onderstaande quote in het kladblokbestand en sla het op als fix.reg op je buroblad. Zorg dat er bij "opslaan als type" alle bestanden staat. [quote:4c627b99a3] REGEDIT4 [-HKEY_LOCAL_MACHINE\SOFTWARE\altnet] [/quote:4c627b99a3] Dubbelklik op fix.reg om de wijzigingen aan het register toe te voegen.
  • Heb de aanwijzingen helemaal gevolgd. Weer een adaware scan gedraaid, maar het probleem blijft :(
  • Hallo vivian, Normaal zou dit regfiltje de registersleutel die betrekking heeft op altnet moeten verwijderen. Je hebt er toch een regfile van gemaakt? (extensie .reg) Ben je vertrouwd met werken in het register? Ad-aware al gedraaid in veilige modus? groeten,
  • Ik heb geen ervaring met registers, dus heb ik precies gedaan zoals stond beschreven. Ik heb er een regfile van gemaakt, zoals het advies was. Ik heb AdAware ook in veilige modus gedraaid, maar helaas het probleem blijft. :(
  • Hallo Vivian, Niet vertrouwd in het register, dan gaan we heel voorzichtig te werk. Ik neem aan dat toen je dubbelklikte op fix.reg, de melding kreeg om de wijzigingen aan het register toe te voegen? Indien dit niet het geval was, meldt dit dan even. Anders download je Reglite: http://www.resplendence.com/reglite Installeer en run het programma. In het scherm dat opent geef je bij Adress het volgende in (gebruik de copy/paste): [quote:9d96bff74d] HKEY_LOCAL_MACHINE\SOFTWARE\altnet [/quote:9d96bff74d] In het rechtse venster zou deze map nu paars geselecteerd moeten zijn: [b:9d96bff74d]altnet[/b:9d96bff74d] Klopt dit? Neen dat meld je je terug. Ja, dan rechtsklik je op deze paars geselecteerde map, en kies je voor export. Sla het bestand op op je bureaublad. Op het bureaublad rechtsklik je op dit bestand en kies je voor openen met Kladblok. Kopieer en plak de inhoud in je volgende post. groeten,
  • Bij mij kunnen de mappen alleen aan de linkerkant paars geselecteerd worden, aan de rechterkant worden ze blauw. Dus bedoelde je links of rechts?
  • Klopt, moet links zijn.
  • Hier hetgeen je gevraagd hebt. REGEDIT4 [HKEY_LOCAL_MACHINE\SOFTWARE\Altnet] [HKEY_LOCAL_MACHINE\SOFTWARE\Altnet\Dashboard] "PMversion"=dword:000003e8
  • Vivian, Download dit regfiletje: http://users.pandora.be/marcvn/tools/vivfix.reg sla het op, dubbelklik er op en controleer of het weg is. Lukt dat niet dan start je registar lite opnieuw. Bij adresss geef je in: [quote:d821fadbb3] HKEY_LOCAL_MACHINE\SOFTWARE\Altnet[/quote:d821fadbb3] Kijk of in het linkse venster de map altnet paars geselecteerd is. (Let op goed op wat je doet.) Indien dit zo is, rechtsklik je op die map en kies je Delete. Nu moet die sleutel met Altnet weg zijn. (Nogmaals kijk goed uit wat je doet, je zit nu rechtstreeks in je register te werken.) succes, Marc
  • Doe nu het laatste, maar krijg de melding : Access denied. :(
  • Vivian, Heb je adminrechten op deze computer ?
  • Jawel.
  • In reglite zorg je dat de map Altnet paars geselecteerd is. Rechtsklik op die map in het linker venster, klik op Properties, klik op Take Ownership. Probeer de methode beschreven in mijn vorige post opnieuw. (probeer eerst de regfile)
  • Met bloed, zweet en tranen ben ik beziggeweest, maar het lukt allemaal niet. Ik waardeer je pogingen om mij te helpen en ik volg alles echt op de voet, maar het lukt gewoon niet :cry:
  • Wordt inderdaad een lastige... Welke melding krijg je omdat dit niet lukt?

Beantwoord deze vraag

Weet jij het antwoord op deze vraag? Registreer of meld je aan met je account

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.