Op deze website gebruiken we cookies om content en advertenties te personaliseren, om functies voor social media te bieden en om ons websiteverkeer te analyseren. Ook delen we informatie over uw gebruik van onze site met onze partners voor social media, adverteren en analyse. Deze partners kunnen deze gegevens combineren met andere informatie die u aan ze heeft verstrekt of die ze hebben verzameld op basis van uw gebruik van hun services. Meer informatie.

Akkoord

Vraag & Antwoord

Beveiliging & privacy

Avira Antivir personal kan geen verbinding maken met updaten

Othuroyo
10 antwoorden
  • Ik heb al meer dan een jaar Avira Antivir en het werkte allemaal goed tot voor kort. Zoals misschien wel bekent moet het programma vaak updaten. Dit werkte eerst vlekkeloos, maar nu geeft het aan dat het geen verbinding kan maken terwijl ik wel gewoon internetverbinding heb. Ik heb het al een keer helemaal verwijderd en er opnieuw op gezet maar hij geeft nog steeds hetzelfde aan (internet connection failed)
  • Plaats is een HijackThis logje.
  • 25.01.2009 10:01:19 - Installation Directory: C:\Program Files\Avira\AntiVir PersonalEdition Classic\
    25.01.2009 10:01:19 - Backup Directory: C:\ProgramData\Avira\AntiVir PersonalEdition Classic\BACKUP\
    25.01.2009 10:01:19 - Temp Directory: C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_497c2a5f\
    25.01.2009 10:01:19 - Using System's global Proxy settings
    25.01.2009 10:01:20 - Launching GUI… display mode: 0
    25.01.2009 10:01:20 - selftest successful: C:\Program Files\Avira\AntiVir PersonalEdition Classic\updlib.dll
    25.01.2009 10:01:20 - selftest successful: C:\Program Files\Avira\AntiVir PersonalEdition Classic\updlibrc.dll
    25.01.2009 10:01:19 - Installation Directory: C:\Program Files\Avira\AntiVir PersonalEdition Classic\
    25.01.2009 10:01:19 - Backup Directory: C:\ProgramData\Avira\AntiVir PersonalEdition Classic\BACKUP\
    25.01.2009 10:01:19 - Temp Directory: C:\ProgramData\Avira\AntiVir PersonalEdition Classic\Update\AVUPDATE_497c2a5f\
    25.01.2009 10:01:19 - Using System's global Proxy settings
    25.01.2009 10:01:20 - Launching GUI… display mode: 0
    25.01.2009 10:01:20 - selftest successful: C:\Program Files\Avira\AntiVir PersonalEdition Classic\updlib.dll
    25.01.2009 10:01:20 - selftest successful: C:\Program Files\Avira\AntiVir PersonalEdition Classic\updlibrc.dll
    25.01.2009 10:01:20 - Avira AntiVir Personal - Free Antivirus
    25.01.2009 10:01:23 - Connection failed while downloading via the system proxy the file http://dl10.freeav.net/upd/idx/master.idx.
    25.01.2009 10:01:23 - Switching to next update server
    25.01.2009 10:01:25 - Connection failed while downloading via the system proxy the file http://dl9.freeav.net/upd/idx/master.idx.
    25.01.2009 10:01:25 - Switching to next update server
    25.01.2009 10:01:28 - Connection failed while downloading via the system proxy the file http://dl7.avgate.net/upd/idx/master.idx.
    25.01.2009 10:01:28 - Switching to next update server
    25.01.2009 10:01:30 - Connection failed while downloading via the system proxy the file http://dl6.avgate.net/upd/idx/master.idx.
    25.01.2009 10:01:30 - Switching to next update server
    25.01.2009 10:01:33 - Connection failed while downloading via the system proxy the file http://dl5.avgate.net/upd/idx/master.idx.
    25.01.2009 10:01:33 - Switching to next update server
    25.01.2009 10:01:35 - Connection failed while downloading via the system proxy the file http://dl2.avgate.net/upd/idx/master.idx.
    25.01.2009 10:01:35 - Switching to next update server
    25.01.2009 10:01:38 - Connection failed while downloading via the system proxy the file http://dl4.avgate.net/upd/idx/master.idx.
    25.01.2009 10:01:38 - Switching to next update server
    25.01.2009 10:01:40 - Connection failed while downloading via the system proxy the file http://dl3.avgate.net/upd/idx/master.idx.
    25.01.2009 10:01:40 - Switching to next update server
    25.01.2009 10:01:43 - Connection failed while downloading via the system proxy the file http://dl8.freeav.net/upd/idx/master.idx.
    25.01.2009 10:01:43 - Switching to next update server
    25.01.2009 10:01:50 - Registry entry created successfully: Software\Avira\AntiVir PersonalEdition Classic |UpdateInProgress
    25.01.2009 10:01:50 - Critical error: Connection failed while downloading via the system proxy the file http://dl1.avgate.net/upd/idx/master.idx.
  • Lees hier het 2e bericht.
  • Ik hoop dat dit is wat je bedoelde:

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 11:40:48, on 25-1-2009
    Platform: Windows Vista SP1 (WinNT 6.00.1905)
    MSIE: Internet Explorer v7.00 (7.00.6001.18000)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\Explorer.EXE
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
    C:\Program Files\Launch Manager\QtZgAcer.EXE
    C:\Program Files\PowerISO\PWRISOVM.EXE
    C:\Program Files\Java\jre6\bin\jusched.exe
    C:\Windows\System32\rundll32.exe
    C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
    C:\Windows\System32\rundll32.exe
    C:\Windows\system32\wbem\unsecapp.exe
    C:\Windows\ehome\ehtray.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    C:\Program Files\Logitech\SetPoint\SetPoint.exe
    C:\Windows\ehome\ehmsas.exe
    C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Program Files\Windows Media Player\wmplayer.exe
    C:\Program Files\Last.fm\LastFM.exe
    C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://nl.intl.acer.yahoo.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://nl.intl.acer.yahoo.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
    O1 - Hosts: ::1 localhost
    O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
    O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: (no name) - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - (no file)
    O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
    O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    O4 - HKLM\..\Run: [PLFSet] rundll32.exe C:\Windows\PLFSet.dll,PLFDefSetting
    O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
    O4 - HKLM\..\Run: [IaNvSrv] C:\Program Files\Intel\Intel Matrix Storage Manager\OROM\IaNvSrv\IaNvSrv.exe
    O4 - HKLM\..\Run: [SetPanel] C:\Acer\APanel\APanel.cmd
    O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE
    O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe
    O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKLM\..\Run: [MSConfig] "C:\Windows\system32\msconfig.exe" /auto
    O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
    O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32
    vsvc.dll,nvsvcStart
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
    O4 - HKLM\..\Run: [avgnt] "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
    O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
    O4 - HKUS\S-1-5-18\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe (User 'SYSTEEM')
    O4 - HKUS\.DEFAULT\..\Run: [Acer Tour Reminder] C:\Acer\AcerTour\Reminder.exe (User 'Default user')
    O4 - Global Startup: BTTray.lnk = ?
    O4 - Global Startup: Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
    O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
    O8 - Extra context menu item: Afbeelding verzenden naar &Bluetooth-apparaat… - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
    O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
    O8 - Extra context menu item: Pagina verzenden naar &Bluetooth-apparaat… - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    O13 - Gopher Prefix:
    O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/NL-NL/a-UNO1/GAME_UNO1.cab
    O16 - DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} (MSN Games - Installer) - http://messenger.zone.msn.com/binary/ZIntro.cab56649.cab
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    O16 - DPF: {F8C5C0F1-D884-43EB-A5A0-9E1C4A102FA8} (GoPetsWeb Control) - https://secure.gopetslive.com/dev/GoPetsWeb.cab
    O17 - HKLM\System\CCS\Services\Tcpip\..\{34346B77-3FB6-4470-A994-ACB7F68EDD04}: NameServer = 85.255.114.3,85.255.112.127
    O17 - HKLM\System\CCS\Services\Tcpip\..\{5504E2D3-68D0-406C-89FC-84ADC60E71EE}: NameServer = 85.255.114.3,85.255.112.127
    O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 85.255.114.3,85.255.112.127
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.114.3,85.255.112.127
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: Avira AntiVir Personal - Free Antivirus Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\sched.exe
    O23 - Service: Avira AntiVir Personal - Free Antivirus Guard (AntiVirService) - Avira GmbH - C:\Program Files\Avira\AntiVir PersonalEdition Classic\avguard.exe
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
    O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe
    O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech, Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTServ.exe
    O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
    O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
    O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
    O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe


    End of file - 10037 bytes
  • Ahh ik zie het al, TrojanDnsChanger.



    Start hijackthis en kies voor 'do a system scan only'
    Selecteer alleen de items die hieronder zijn genoemd:

    [b:d090717d52]R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: (no name) - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - (no file)
    O17 - HKLM\System\CCS\Services\Tcpip\..\{34346B77-3FB6-4470-A994-ACB7F68EDD04}: NameServer = 85.255.114.3,85.255.112.127
    O17 - HKLM\System\CCS\Services\Tcpip\..\{5504E2D3-68D0-406C-89FC-84ADC60E71EE}: NameServer = 85.255.114.3,85.255.112.127
    O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 85.255.114.3,85.255.112.127
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 85.255.114.3,85.255.112.127[/b:d090717d52]

    Sluit alle vensters behalve Hijackthis
    Klik op 'Fix checked' om de items te verwijderen.


    Download [b:d090717d52] en sla het op je bureaublad op.
    Dubbelklik op [b:d090717d52]mbam-setup.exe[/b:d090717d52] om het programma te installeren.

    Zorg dat er na de installatie een vinkje is geplaatst bij:[list:d090717d52]
    [*:d090717d52]Update MalwareBytes' Anti-Malware
    [*:d090717d52]Start MalwareBytes' Anti-Malware
    [/list:u:d090717d52]Klik daarna op "[b:d090717d52]Voltooien[/b:d090717d52]".
    Indien een update gevonden wordt, zal die gedownload en geïnstalleerd worden.[list:d090717d52]
    [*:d090717d52]Zodra het programma gestart is, ga dan naar het tabblad "[b:d090717d52]Instellingen[/b:d090717d52]".
    [*:d090717d52]Vink hier aan: "[b:d090717d52]Sluit Internet Explorer tijdens verwijdering van malware[/b:d090717d52]".
    [*:d090717d52]Ga daarna naar het tabblad "[b:d090717d52]Scanner[/b:d090717d52]", kies hier voor "[b:d090717d52]Snelle Scan[/b:d090717d52]".
    [*:d090717d52]Druk vervolgens op "[b:d090717d52]Scannen[/b:d090717d52]" om de scan te starten.
    [*:d090717d52]Het scannen kan een tijdje duren, dus wees geduldig.

    [*:d090717d52]Wanneer de scan voltooid is, klik op [b:d090717d52]OK[/b:d090717d52], daarna "[b:d090717d52]Bekijk Resultaten[/b:d090717d52]" om de resultaten te zien.
    [*:d090717d52]Zorg ervoor dat daar alles aangevinkt is, daarna klik op: "[b:d090717d52]Verwijder geselecteerde[/b:d090717d52]".
    [*:d090717d52]Na het verwijderen zal een log openen en zal er gevraagd worden om de computer opnieuw op te starten.
    [/list:u:d090717d52]Het log wordt automatisch bewaard door MalwareBytes' Anti-Malware en kan je terugvinden door op de "[b:d090717d52]Logs[/b:d090717d52]" tab te klikken in het programma.

    Plaats dit logje.

    Ga naar Start – Uitvoeren en tik in: cmd
    Druk op enter.
    Een dosventer (opdrachtprompt) zal open.
    Tik in: ipconfig /flushdns
    Druk op enter.
    Sluit het venster.
    Herstart de computer.
    Maak een nieuw hijackthis logje en plaats die hier.
  • Ik heb alles opgevolgd, maar als ik ipconfig/flushdns intyp in het uitvoeren venster nadat ik cmd heb ingevoert komt er te staan dat ik niet de juiste bevoegdheden heb voor deze bewerking :?
  • Omdat je waarschijnlijk geen administrator rechten hebt, geen probleem plaats de log van van MBAM en maak een nieuw log met HijackThis.
  • Malwarebytes' Anti-Malware 1.33
    Database versie: 1693
    Windows 6.0.6001 Service Pack 1

    25-1-2009 20:33:03
    mbam-log-2009-01-25 (20-33-03).txt

    Scan type: Snelle Scan
    Objecten gescand: 52620
    Verstreken tijd: 4 minute(s), 49 second(s)

    Geheugenprocessen geïnfecteerd: 1
    Geheugenmodulen geïnfecteerd: 0
    Registersleutels geïnfecteerd: 3
    Registerwaarden geïnfecteerd: 2
    Registerdata bestanden geïnfecteerd: 9
    Mappen geïnfecteerd: 4
    Bestanden geïnfecteerd: 7

    Geheugenprocessen geïnfecteerd:
    C:\Windows\System32\winhost.exe (Trojan.Agent) -> Unloaded process successfully.

    Geheugenmodulen geïnfecteerd:
    (Geen kwaadaardige items gevonden)

    Registersleutels geïnfecteerd:
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\totalvid (Trojan.DNSChanger) -> Quarantined and deleted successfully.
    HKEY_CURRENT_USER\SOFTWARE\totalvid (Trojan.DNSChanger) -> Quarantined and deleted successfully.
    HKEY_CLASSES_ROOT\totalvid (Trojan.DNSChanger) -> Quarantined and deleted successfully.

    Registerwaarden geïnfecteerd:
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\windows interface (Backdoor.Bot) -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices\windows interface (Backdoor.Bot) -> Quarantined and deleted successfully.

    Registerdata bestanden geïnfecteerd:
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\NameServer (Trojan.DNSChanger) -> Data: 85.255.114.3,85.255.112.127 -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{34346b77-3fb6-4470-a994-acb7f68edd04}\NameServer (Trojan.DNSChanger) -> Data: 85.255.114.3,85.255.112.127 -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Interfaces\{5504e2d3-68d0-406c-89fc-84adc60e71ee}\NameServer (Trojan.DNSChanger) -> Data: 85.255.114.3,85.255.112.127 -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\Parameters\NameServer (Trojan.DNSChanger) -> Data: 85.255.114.3,85.255.112.127 -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{34346b77-3fb6-4470-a994-acb7f68edd04}\NameServer (Trojan.DNSChanger) -> Data: 85.255.114.3,85.255.112.127 -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\Tcpip\Parameters\Interfaces\{5504e2d3-68d0-406c-89fc-84adc60e71ee}\NameServer (Trojan.DNSChanger) -> Data: 85.255.114.3,85.255.112.127 -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Tcpip\Parameters\NameServer (Trojan.DNSChanger) -> Data: 85.255.114.3,85.255.112.127 -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Tcpip\Parameters\Interfaces\{34346b77-3fb6-4470-a994-acb7f68edd04}\NameServer (Trojan.DNSChanger) -> Data: 85.255.114.3,85.255.112.127 -> Quarantined and deleted successfully.
    HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\Tcpip\Parameters\Interfaces\{5504e2d3-68d0-406c-89fc-84adc60e71ee}\NameServer (Trojan.DNSChanger) -> Data: 85.255.114.3,85.255.112.127 -> Quarantined and deleted successfully.

    Mappen geïnfecteerd:
    C:\resycled (Trojan.DNSChanger) -> Quarantined and deleted successfully.
    C:\Program Files\totalvid (Trojan.DNSChanger) -> Quarantined and deleted successfully.
    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\totalvid (Trojan.DNSChanger) -> Quarantined and deleted successfully.
    C:\Users\Thomas\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\totalvid (Trojan.DNSChanger) -> Quarantined and deleted successfully.

    Bestanden geïnfecteerd:
    C:\autorun.inf (Trojan.DNSChanger) -> Quarantined and deleted successfully.
    C:\resycled\boot.com (Trojan.DNSChanger) -> Quarantined and deleted successfully.
    C:\Program Files\totalvid\Uninstall.exe (Trojan.DNSChanger) -> Quarantined and deleted successfully.
    C:\ProgramData\Microsoft\Windows\Start Menu\Programs\totalvid\Uninstall.lnk (Trojan.DNSChanger) -> Quarantined and deleted successfully.
    C:\Windows\System32\winhost.exe (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Windows\System32\msqpdxpcsmhoex.dll (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\Windows\System32\drivers\msqpdxvxipyfrp.sys (Trojan.Agent) -> Quarantined and deleted successfully.
  • Ik heb net weer proberen te updaten met Avira en hij doet het weer zoals het hoort voor zover ik kan zien. Hartstikke bedankt voor je hulp. :D

Beantwoord deze vraag

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.