Vraag & Antwoord

Beveiliging & privacy

pc traag

Anoniem
None
18 antwoorden
 • ja alles is weer normaal en werkt ook weer gewoon
 • Dat is ook niet zo belangrijk.
  Maar is Windows daardoor wel beter gaan draaien?
 • hoi de voor iedereen in gebruik zijnde pc is op dit moment zeer traag en reageert ook zeer traag ,ik heb een hijackthis log gemaakt en post dit mee wie kan er naar kijken en ons helpen alvast bedankt voor je hulp
  ps ik heb hem opgestart nu in veilige modus met netwerk


  Logfile of Trend Micro HijackThis v2.0.2
  Scan saved at 15:22:47, on 25-11-2011
  Platform: Unknown Windows (WinNT 6.01.3505 SP1)
  MSIE: Internet Explorer v9.00 (9.00.8112.16421)
  Boot mode: Safe mode with network support

  Running processes:
  C:\Program Files (x86)\Internet Explorer\iexplore.exe
  C:\Program Files (x86)\Internet Explorer\iexplore.exe
  C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

  R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0413&m=ixtreme_m3720&r=173606110406p03f5x175y4821923q
  R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
  R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/ig
  R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0413&m=ixtreme_m3720&r=173606110406p03f5x175y4821923q
  R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
  R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
  R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0413&m=ixtreme_m3720&r=173606110406p03f5x175y4821923q
  R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
  R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
  R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
  R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
  F2 - REG:system.ini: UserInit=userinit.exe
  O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
  O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
  O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
  O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
  O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
  O2 - BHO: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files (x86)\WOT\WOT.dll
  O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
  O3 - Toolbar: WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files (x86)\WOT\WOT.dll
  O4 - HKLM\..\Run: [Packard Bell Photo Frame] C:\Program Files (x86)\Packard Bell Photo Frame\ButtonMonitor.exe -A
  O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
  O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
  O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
  O4 - HKCU\..\Run: [Global Registration] "C:\Program Files (x86)\Packard Bell\Registration\GREG.exe" BOOT
  O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
  O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
  O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
  O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
  O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
  O4 - Global Startup: Secunia PSI Tray.lnk = C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
  O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
  O8 - Extra context menu item: Google Sidewiki… - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
  O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
  O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
  O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
  O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
  O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
  O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
  O13 - Gopher Prefix:
  O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
  O18 - Protocol: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files (x86)\WOT\WOT.dll
  O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - c:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
  O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
  O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
  O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
  O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
  O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
  O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
  O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
  O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
  O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
  O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
  O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
  O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
  O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
  O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
  O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\PSIA.exe
  O23 - Service: Secunia Update Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\sua.exe
  O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
  O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
  O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
  O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Windows\SysWOW64\nvSCPAPISvr.exe
  O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
  O23 - Service: Updater Service - Acer - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
  O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
  O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
  O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
  O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
  O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
  O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
  O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)


  End of file - 9352 bytes
 • Je hebt een oudere versie van Hijack This gebruikt!

  [b:a2e82682dd]Ik wil graag dat jij je tijdens de fix aan onderstaande regels houdt:[/b:a2e82682dd]
 • hoi abraham wederom bedankt voor je hulp,ik heb helaas de pc met systeemherstel terug moeten zetten aangezien hijackthis in veilige modus niet werkte en de gewone versie kreeg ik geen internet explorer werkte niet .

  hier de logs


  Logfile of Trend Micro HijackThis v2.0.4
  Scan saved at 19:11:55, on 25-11-2011
  Platform: Windows 7 SP1 (WinNT 6.00.3505)
  MSIE: Internet Explorer v9.00 (9.00.8112.16421)
  Boot mode: Normal

  Running processes:
  C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
  C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
  C:\Program Files (x86)\Packard Bell Photo Frame\ButtonMonitor.exe
  C:\Program Files\AVAST Software\Avast\AvastUI.exe
  C:\Windows\SysWOW64\Macromed\Flash\FlashUtil11c_ActiveX.exe
  C:\Program Files (x86)\Trend Micro\HijackThis\HiJackThis.exe

  R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0413&m=ixtreme_m3720&r=173606110406p03f5x175y4821923q
  R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
  R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/ig
  R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0413&m=ixtreme_m3720&r=173606110406p03f5x175y4821923q
  R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
  R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
  R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0413&m=ixtreme_m3720&r=173606110406p03f5x175y4821923q
  R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
  R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
  R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
  R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
  F2 - REG:system.ini: UserInit=userinit.exe
  O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
  O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
  O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll
  O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
  O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
  O2 - BHO: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files (x86)\WOT\WOT.dll
  O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
  O3 - Toolbar: WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files (x86)\WOT\WOT.dll
  O4 - HKLM\..\Run: [Packard Bell Photo Frame] C:\Program Files (x86)\Packard Bell Photo Frame\ButtonMonitor.exe -A
  O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
  O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files (x86)\Microsoft Office\Office12\GrooveMonitor.exe"
  O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
  O4 - HKCU\..\Run: [Global Registration] "C:\Program Files (x86)\Packard Bell\Registration\GREG.exe" BOOT
  O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
  O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
  O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
  O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
  O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
  O4 - Global Startup: Secunia PSI Tray.lnk = C:\Program Files (x86)\Secunia\PSI\psi_tray.exe
  O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
  O8 - Extra context menu item: Google Sidewiki… - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
  O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
  O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
  O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
  O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~1\Office12\ONBttnIE.dll
  O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\Office12\REFIEBAR.DLL
  O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
  O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files (x86)\Microsoft Office\Office12\GrooveSystemServices.dll
  O18 - Protocol: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files (x86)\WOT\WOT.dll
  O23 - Service: Adobe Active File Monitor V7 (AdobeActiveFileMonitor7.0) - Adobe Systems Incorporated - c:\Program Files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe
  O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
  O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
  O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
  O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
  O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
  O23 - Service: GRegService (Greg_Service) - Acer Incorporated - C:\Program Files (x86)\Packard Bell\Registration\GregHSRW.exe
  O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
  O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
  O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
  O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
  O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
  O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
  O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
  O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
  O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
  O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\PSIA.exe
  O23 - Service: Secunia Update Agent - Secunia - C:\Program Files (x86)\Secunia\PSI\sua.exe
  O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
  O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
  O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
  O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Windows\SysWOW64\nvSCPAPISvr.exe
  O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
  O23 - Service: Updater Service - Acer - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
  O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
  O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
  O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
  O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
  O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
  O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
  O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)


  End of file - 9476 bytes  Malwarebytes' Anti-Malware 1.51.2.1300
  www.malwarebytes.org

  Databaseversie: 8239

  Windows 6.1.7601 Service Pack 1
  Internet Explorer 9.0.8112.16421

  25-11-2011 19:16:58
  mbam-log-2011-11-25 (19-16-58).txt

  Scantype: Snelle scan
  Objecten gescand: 166718
  Verstreken tijd: 2 minuut/minuten, 27 seconde(n)

  Geheugenprocessen geïnfecteerd: 0
  Geheugenmodulen geïnfecteerd: 0
  Registersleutels geïnfecteerd: 0
  Registerwaarden geïnfecteerd: 0
  Registerdata geïnfecteerd: 0
  Mappen geïnfecteerd: 0
  Bestanden geïnfecteerd: 0

  Geheugenprocessen geïnfecteerd:
  (Geen kwaadaardige objecten gedetecteerd)

  Geheugenmodulen geïnfecteerd:
  (Geen kwaadaardige objecten gedetecteerd)

  Registersleutels geïnfecteerd:
  (Geen kwaadaardige objecten gedetecteerd)

  Registerwaarden geïnfecteerd:
  (Geen kwaadaardige objecten gedetecteerd)

  Registerdata geïnfecteerd:
  (Geen kwaadaardige objecten gedetecteerd)

  Mappen geïnfecteerd:
  (Geen kwaadaardige objecten gedetecteerd)

  Bestanden geïnfecteerd:
  (Geen kwaadaardige objecten gedetecteerd)
 • Ik heb tot nu toe geen bijzonderheden kunnen vinden, dus gaan we dieper kijken:

  [b:19b079218c]Welk programma[/b:19b079218c]: ComboFix
  [b:19b079218c]Waarvoor/waarom[/b:19b079218c]: Zeer specialistische scanner om Windows diepgaand te onderzoeken
  en zo mogelijk op te schonen.
  [b:19b079218c]Moeilijkheidsgraad[/b:19b079218c]: Min of meer lastige voorbereidingsfase, dus lees alles eerst goed.
  [b:19b079218c]Downloadlokatie[/b:19b079218c]: Dit programma absoluut naar het bureaublad downloaden!
  [b:19b079218c]Download ComboFix via één van deze locaties[/b:19b079218c]:
  [list:19b079218c][*:19b079218c][b:19b079218c]Bleepingcomputer[/b:19b079218c]
  [*:19b079218c][b:19b079218c]ForoSpyware[/b:19b079218c]
  [*:19b079218c][b:19b079218c]Geekstogo[/b:19b079218c][/list:u:19b079218c]
  [b:19b079218c]Hier[/b:19b079218c] zie je hoe je ComboFix moet gebruiken.

  Antivirusprogramma en actieve malwarescanners dienen al voor de ComboFix start gedeaktiveert zijn!
  [b:19b079218c]Hier[/b:19b079218c] en [b:19b079218c]hier[/b:19b079218c] vindt je gegevens hoe antivirusprogramma's en spywarescanners te deaktiveren.

  [b:19b079218c]Voor alle duidelijkheid nogmaals[/b:19b079218c]: ComboFix dient vanaf het bureaublad gestart te worden.

  [b:19b079218c]Opmerkingen[/b:19b079218c]:
  [list:19b079218c][*:19b079218c] Bij gebruik van Windows XP zal er mogelijk gevraagd worden, om de "Recovery Console" te installeren! Sta dit dan toe (hiervoor is een actieve internet verbinding vereist).
  [*:19b079218c]Vista- en Windows 7 gebruikers starten Combofix op via rechtsklik met Administratorrechten.
  [*:19b079218c]Alle openstaande programma's en webpagina's dienen afgesloten te zijn.[/list:u:19b079218c]
  [b:19b079218c]ComboFix is opgestart[/b:19b079218c]:
  [list:19b079218c][*:19b079218c]Niet in het zwarte venster klikken, hierdoor kan ComboFix of zelfs Windows geheel "bevriezen"!
  [*:19b079218c]Combofix sluit tijdens de scan de internet verbinding – probeer deze tussentijds niet te herstellen!
  [*:19b079218c]Het kan voorkomen dat de computer meerdere malen opnieuw opgestart moet worden, dit is normaal.
  [*:19b079218c]Wanneer ComboFix gereed is, zal het het een logbestand voor je maken.
  [*:19b079218c]Post de inhoud van dit logbestand in je volgende bericht.
  [*:19b079218c]Indien het log niet opstart, is dit terug tevinden in C:\ComboFix.txt[/list:u:19b079218c]
  [b:19b079218c]Belangrijke opmerking[/b:19b079218c]:
  [list:19b079218c][*:19b079218c][b:19b079218c]
 • heeft even geduurd maar hier de combo log
  ComboFix 11-11-26.01 - Cynthia 26-11-2011 12:31:57.1.2 - x64
  Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.4095.2937 [GMT 1:00]
  Gestart vanuit: c:\users\Cynthia\Desktop\ComboFix.exe
  AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
  SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
  SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  .
  .
  (((((((((((((((((((( Bestanden Gemaakt van 2011-10-27 to 2011-11-27 ))))))))))))))))))))))))))))))
  .
  .
  2011-11-25 18:14 . 2011-11-25 18:14 ——– d—–w- c:\users\Cynthia\AppData\Roaming\Malwarebytes
  2011-11-25 18:14 . 2011-11-25 18:14 ——– d—–w- c:\programdata\Malwarebytes
  2011-11-25 18:13 . 2011-11-25 18:14 ——– d—–w- c:\program files (x86)\Malwarebytes' Anti-Malware
  2011-11-25 18:13 . 2011-08-31 16:00 25416 —-a-w- c:\windows\system32\drivers\mbam.sys
  2011-11-25 18:07 . 2011-10-01 05:45 886784 —-a-w- c:\program files\Common Files\System\wab32.dll
  2011-11-25 18:07 . 2011-10-01 04:37 708608 —-a-w- c:\program files (x86)\Common Files\System\wab32.dll
  2011-11-25 18:07 . 2011-09-29 16:29 1923952 —-a-w- c:\windows\system32\drivers\tcpip.sys
  2011-11-25 18:07 . 2011-09-29 04:03 3144704 —-a-w- c:\windows\system32\win32k.sys
  2011-11-25 18:05 . 2011-11-25 18:05 388096 —-a-r- c:\users\Cynthia\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
  2011-11-25 14:22 . 2011-11-25 14:22 ——– d—–w- c:\program files (x86)\Trend Micro
  2011-11-02 16:57 . 2011-11-26 11:08 ——– d—–w- c:\users\Cynthia\Tracing
  .
  .
  .
  ((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
  .
  2011-10-12 08:19 . 2011-10-12 08:19 414368 —-a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
  2011-09-12 07:38 . 2011-09-12 07:38 86528 —-a-w- c:\windows\SysWow64\iesysprep.dll
  2011-09-12 07:38 . 2011-09-12 07:38 76800 —-a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
  2011-09-12 07:38 . 2011-09-12 07:38 74752 —-a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
  2011-09-12 07:38 . 2011-09-12 07:38 74752 —-a-w- c:\windows\SysWow64\iesetup.dll
  2011-09-12 07:38 . 2011-09-12 07:38 63488 —-a-w- c:\windows\SysWow64\tdc.ocx
  2011-09-12 07:38 . 2011-09-12 07:38 48640 —-a-w- c:\windows\SysWow64\mshtmler.dll
  2011-09-12 07:38 . 2011-09-12 07:38 420864 —-a-w- c:\windows\SysWow64\vbscript.dll
  2011-09-12 07:38 . 2011-09-12 07:38 367104 —-a-w- c:\windows\SysWow64\html.iec
  2011-09-12 07:38 . 2011-09-12 07:38 35840 —-a-w- c:\windows\SysWow64\imgutil.dll
  2011-09-12 07:38 . 2011-09-12 07:38 23552 —-a-w- c:\windows\SysWow64\licmgr10.dll
  2011-09-12 07:38 . 2011-09-12 07:38 161792 —-a-w- c:\windows\SysWow64\msls31.dll
  2011-09-12 07:38 . 2011-09-12 07:38 152064 —-a-w- c:\windows\SysWow64\wextract.exe
  2011-09-12 07:38 . 2011-09-12 07:38 150528 —-a-w- c:\windows\SysWow64\iexpress.exe
  2011-09-12 07:38 . 2011-09-12 07:38 142848 —-a-w- c:\windows\SysWow64\ieUnatt.exe
  2011-09-12 07:38 . 2011-09-12 07:38 1427456 —-a-w- c:\windows\SysWow64\inetcpl.cpl
  2011-09-12 07:38 . 2011-09-12 07:38 11776 —-a-w- c:\windows\SysWow64\mshta.exe
  2011-09-12 07:38 . 2011-09-12 07:38 110592 —-a-w- c:\windows\SysWow64\IEAdvpack.dll
  2011-09-12 07:38 . 2011-09-12 07:38 101888 —-a-w- c:\windows\SysWow64\admparse.dll
  2011-09-12 07:38 . 2011-09-12 07:38 89088 —-a-w- c:\windows\system32\RegisterIEPKEYs.exe
  2011-09-12 07:38 . 2011-09-12 07:38 222208 —-a-w- c:\windows\system32\msls31.dll
  2011-09-12 07:38 . 2011-09-12 07:38 49664 —-a-w- c:\windows\system32\imgutil.dll
  2011-09-12 07:38 . 2011-09-12 07:38 173056 —-a-w- c:\windows\system32\ieUnatt.exe
  2011-09-12 07:38 . 2011-09-12 07:38 135168 —-a-w- c:\windows\system32\IEAdvpack.dll
  2011-09-12 07:38 . 2011-09-12 07:38 12288 —-a-w- c:\windows\system32\mshta.exe
  2011-09-12 07:38 . 2011-09-12 07:38 114176 —-a-w- c:\windows\system32\admparse.dll
  2011-09-12 07:38 . 2011-09-12 07:38 91648 —-a-w- c:\windows\system32\SetIEInstalledDate.exe
  2011-09-12 07:38 . 2011-09-12 07:38 76800 —-a-w- c:\windows\system32\tdc.ocx
  2011-09-12 07:38 . 2011-09-12 07:38 48640 —-a-w- c:\windows\system32\mshtmler.dll
  2011-09-12 07:38 . 2011-09-12 07:38 448512 —-a-w- c:\windows\system32\html.iec
  2011-09-12 07:38 . 2011-09-12 07:38 111616 —-a-w- c:\windows\system32\iesysprep.dll
  2011-09-12 07:38 . 2011-09-12 07:38 85504 —-a-w- c:\windows\system32\iesetup.dll
  2011-09-12 07:38 . 2011-09-12 07:38 603648 —-a-w- c:\windows\system32\vbscript.dll
  2011-09-12 07:38 . 2011-09-12 07:38 30720 —-a-w- c:\windows\system32\licmgr10.dll
  2011-09-12 07:38 . 2011-09-12 07:38 165888 —-a-w- c:\windows\system32\iexpress.exe
  2011-09-12 07:38 . 2011-09-12 07:38 160256 —-a-w- c:\windows\system32\wextract.exe
  2011-09-12 07:38 . 2011-09-12 07:38 1492992 —-a-w- c:\windows\system32\inetcpl.cpl
  2011-09-12 07:30 . 2009-07-14 02:36 152576 —-a-w- c:\windows\SysWow64\msclmd.dll
  2011-09-12 07:30 . 2009-07-14 02:36 175616 —-a-w- c:\windows\system32\msclmd.dll
  2011-09-06 20:45 . 2011-08-28 17:23 41184 —-a-w- c:\windows\avastSS.scr
  2011-09-06 20:45 . 2011-08-28 17:23 199304 —-a-w- c:\windows\SysWow64\aswBoot.exe
  2011-09-06 20:45 . 2011-08-28 17:24 254400 —-a-w- c:\windows\system32\aswBoot.exe
  2011-09-06 20:38 . 2011-08-28 17:24 601944 —-a-w- c:\windows\system32\drivers\aswSnx.sys
  2011-09-06 20:38 . 2011-08-28 17:24 301912 —-a-w- c:\windows\system32\drivers\aswSP.sys
  2011-09-06 20:36 . 2011-08-28 17:24 42328 —-a-w- c:\windows\system32\drivers\aswRdr.sys
  2011-09-06 20:36 . 2011-08-28 17:24 58200 —-a-w- c:\windows\system32\drivers\aswTdi.sys
  2011-09-06 20:36 . 2011-08-28 17:24 65368 —-a-w- c:\windows\system32\drivers\aswMonFlt.sys
  2011-09-06 20:36 . 2011-08-28 17:24 24408 —-a-w- c:\windows\system32\drivers\aswFsBlk.sys
  2011-09-01 05:24 . 2011-10-12 21:14 2309120 —-a-w- c:\windows\system32\jscript9.dll
  2011-09-01 05:17 . 2011-10-12 21:14 1389056 —-a-w- c:\windows\system32\wininet.dll
  2011-09-01 05:12 . 2011-10-12 21:14 2382848 —-a-w- c:\windows\system32\mshtml.tlb
  2011-09-01 02:35 . 2011-10-12 21:14 1798144 —-a-w- c:\windows\SysWow64\jscript9.dll
  2011-09-01 02:28 . 2011-10-12 21:14 1126912 —-a-w- c:\windows\SysWow64\wininet.dll
  2011-09-01 02:22 . 2011-10-12 21:14 2382848 —-a-w- c:\windows\SysWow64\mshtml.tlb
  .
  .
  ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
  .
  .
  *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
  REGEDIT4
  .
  [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  "Global Registration"="c:\program files (x86)\Packard Bell\Registration\GREG.exe" [2009-07-31 2844704]
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
  "Packard Bell Photo Frame"="c:\program files (x86)\Packard Bell Photo Frame\ButtonMonitor.exe" [2009-07-20 124416]
  "Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-28 35696]
  "GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072]
  "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-09-06 3722416]
  .
  c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
  Secunia PSI Tray.lnk - c:\program files (x86)\Secunia\PSI\psi_tray.exe [2011-4-19 291896]
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
  "ConsentPromptBehaviorAdmin"= 5 (0x5)
  "ConsentPromptBehaviorUser"= 3 (0x3)
  "EnableUIADesktopToggle"= 0 (0x0)
  .
  [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
  "mixer5"=wdmaud.drv
  .
  R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
  R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
  R2 gupdate;Google Updateservice (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-30 135664]
  R3 gupdatem;Google Update-service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-30 135664]
  R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
  R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
  S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [x]
  S1 aswSnx;aswSnx; [x]
  S1 aswSP;aswSP; [x]
  S2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7;c:\program files (x86)\Adobe\Photoshop Elements 7.0\PhotoshopElementsFileAgent.exe [2008-12-08 169312]
  S2 aswFsBlk;aswFsBlk; [x]
  S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
  S2 Greg_Service;GRegService;c:\program files (x86)\Packard Bell\Registration\GregHSRW.exe [2009-06-04 1150496]
  S2 Secunia PSI Agent;Secunia PSI Agent;c:\program files (x86)\Secunia\PSI\PSIA.exe [2011-04-19 993848]
  S2 Secunia Update Agent;Secunia Update Agent;c:\program files (x86)\Secunia\PSI\sua.exe [2011-04-19 399416]
  S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\windows\SysWOW64\nvSCPAPISvr.exe [2009-06-10 232960]
  S2 Updater Service;Updater Service;c:\program files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2009-07-04 240160]
  S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x]
  S3 PSI;PSI;c:\windows\system32\DRIVERS\psi_mf.sys [x]
  S3 RTL8167;Realtek 8167 NT-stuurprogramma;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
  .
  .
  Inhoud van de 'Gedeelde Taken' map
  .
  2011-11-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
  - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-30 16:13]
  .
  2011-11-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
  - c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-06-30 16:13]
  .
  .
  ——— x86-64 ———–
  .
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
  @="{472083B0-C522-11CF-8763-00608CC02F24}"
  [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
  2011-09-06 20:45 134384 —-a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2009-06-16 7883296]
  "Skytel"="c:\program files\Realtek\Audio\HDA\Skytel.exe" [2009-06-16 1833504]
  "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-07-14 16333856]
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
  "LoadAppInit_DLLs"=0x0
  .
  ——- Bijkomende Scan ——-
  .
  uStart Page = hxxp://www.google.nl/ig
  uLocal Page = c:\windows\system32\blank.htm
  mStart Page = hxxp://homepage.packardbell.com/rdr.aspx?b=ACPW&l=0413&m=ixtreme_m3720&r=173606110406p03f5x175y4821923q
  mLocal Page = c:\windows\SysWOW64\blank.htm
  IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
  IE: Google Sidewiki… - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
  TCP: DhcpNameServer = 212.54.35.25 212.54.40.25
  .
  - - - - ORPHANS VERWIJDERD - - - -
  .
  Toolbar-Locked - (no file)
  Toolbar-Locked - (no file)
  AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
  .
  .
  .
  ——————— VERGRENDELDE REGISTER SLEUTELS ———————
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
  @Denied: (A 2) (Everyone)
  @="FlashBroker"
  "LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11c_ActiveX.exe,-101"
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
  "Enabled"=dword:00000001
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
  @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11c_ActiveX.exe"
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
  @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
  @Denied: (A 2) (Everyone)
  @="Shockwave Flash Object"
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
  @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx"
  "ThreadingModel"="Apartment"
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
  @="0"
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
  @="ShockwaveFlash.ShockwaveFlash.10"
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
  @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx, 1"
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
  @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
  @="1.0"
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
  @="ShockwaveFlash.ShockwaveFlash"
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
  @Denied: (A 2) (Everyone)
  @="Macromedia Flash Factory Object"
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
  @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx"
  "ThreadingModel"="Apartment"
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
  @="FlashFactory.FlashFactory.1"
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
  @="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx, 1"
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
  @="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
  @="1.0"
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
  @="FlashFactory.FlashFactory"
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
  @Denied: (A 2) (Everyone)
  @="IFlashBroker4"
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
  @="{00020424-0000-0000-C000-000000000046}"
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
  @="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
  "Version"="1.0"
  .
  [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
  @Denied: (Full) (Everyone)
  .
  ———————— Andere Aktieve Processen ————————
  .
  c:\program files\AVAST Software\Avast\AvastSvc.exe
  .
  **************************************************************************
  .
  Voltooingstijd: 2011-11-27 02:39:31 - machine werd herstart
  ComboFix-quarantined-files.txt 2011-11-27 01:39
  .
  Pre-Run: 370.259.873.792 bytes beschikbaar
  Post-Run: 370.181.435.392 bytes beschikbaar
  .
  - - End Of File - - 2CB1A0D2A8FA0953F434DDBAC76DFFE7
 • [b:ba60d7050b]Doe de ESET online scan (Klik).[/b:ba60d7050b]
  [list:ba60d7050b]
  [*:ba60d7050b]Klik op de knop [b:ba60d7050b]ESET Online Scanner[/b:ba60d7050b]
  [*:ba60d7050b]Zet een vinkje bij [b:ba60d7050b]YES, I accept the Terms of Use[/b:ba60d7050b]
  [*:ba60d7050b]Klik op [b:ba60d7050b]Start[/b:ba60d7050b]
  [*:ba60d7050b]Sta het ActiveX control toe om te installeren.
  [*:ba60d7050b]Zet een vinkje bij de volgende opties:
  [list:ba60d7050b][*:ba60d7050b][b:ba60d7050b]Remove found threats[/b:ba60d7050b]
  [*:ba60d7050b][b:ba60d7050b]Scan archives[/b:ba60d7050b][/list:u:ba60d7050b]
  [*:ba60d7050b]Klik vervolgens op [b:ba60d7050b]
 • er is niets gevonden door de scan
 • Ik verwachtte eigenlijk al zoiets.
  Want al je logs zijn prima.


  Doe het volgende eens:

  [b:0d9723a30f]Welk programma[/b:0d9723a30f]: CrystalDiskInfo
  [b:0d9723a30f]Waarvoor/waarom[/b:0d9723a30f]: controle van van SMART-gegevens van de harddisk(s)
  [b:0d9723a30f]Moeilijkheidsgraad[/b:0d9723a30f]: geen.
  [b:0d9723a30f]Download CrystalDiskInfo[/b:0d9723a30f] [b:0d9723a30f]hier[/b:0d9723a30f]


  [img:0d9723a30f]http://www.imgdumper.nl/uploads4/4df870efec9f5/4df870efeba86-CrystalDiskInfo.png[/img:0d9723a30f]


  Installeer het tool en start vervolgens CrystalDiskInfo

  Het tool leest daarop de SMART-gegevens van de aangesloten harddisks.
  Is de kleur Blauw - dan volledig gezond.
  Is de kleur Geel - dan zijn er problemen.
  Is de kleur Rood - dan de HD z.s.m. vervangen.

  Bij SSD's wordt ook de gezondheidstoestand van de SSD's vermeld (Health)
 • ja staat op geel waarschuwing ,en nu
 • Welke onderdelen zijn geel in de lijst.

  Het is overigens een teken dat de HD aan het afsterven is.
 • current pending sector count en uncorrectable sector count
 • Ik denk dat je Windows nu eerst een complete Schijfcontrole moet laten uitvoeren!

  Klik daarvoor Computer open en vraag vervolgens de [b:a5df44dda5]Eigenschappen[/b:a5df44dda5] van –> "C" op.
  Klik nu op de tab [b:a5df44dda5]Extra[/b:a5df44dda5]

  Klik vervolgens op de knop [b:a5df44dda5]Nu controleren[/b:a5df44dda5] in het gedeelte waar staat "Hiermee kunt u het station op fouten controleren".

  In het nieuwe venstertje zorg je ervoor dat beide opties aangevinkt zijn.
  Vervolgens krijg je de melding dat Windows voor die actie moet herstarten.

  Doe dat dan ook.

  Hierdoor wordt de systeemschijf niet alleen op clusterfouten gecontroleerd, maar ook op fouten in het bestandssysteem die dan gerepareerd worden.
 • de scan heeft een hele poos geduurt en gaf wel dingen aan ,bij terugkomst was de pc klaar en opnieuw opgestart maar kan geen log hier van vinden
 • Fijn zo.
  Blijf wel regelmatig de harddisk kontroleren met CrystalDiskInfo.

  ComboFix mag nu verwijderd worden:
  [list:dfd727eddd][*:dfd727eddd] ga daarvoor naar Start - Uitvoeren
  [*:dfd727eddd] kopieer en plak hierin het volgende: [b:dfd727eddd]Combofix /Uninstall[/b:dfd727eddd]
  [*:dfd727eddd] klik daarna op [b:dfd727eddd]OK[/b:dfd727eddd].
  [*:dfd727eddd] indien het goed is, krijg je vervolgens een melding, dat Combofix verwijderd werd.[/list:u:dfd727eddd]

  Voorbeeld:

  [img:dfd727eddd]http://www.emphyrio.be/images/SMUninstall_combofix.png[/img:dfd727eddd]

  Uitvoeren kan ook gestart worden door gelijktijdig de "Windowstoets + R-toets" in te drukken.

  [i:dfd727eddd]Dit zal Combofix verwijderen inclusief gerelateerde mappen en bestanden,
  herstelt de klokinstellingen opnieuw, verbergt de bestandsextensies,
  gaat verborgen bestanden en systeembestanden terug verbergen
  en reset je Systeemherstel opnieuw.[/i:dfd727eddd]
 • hoi abraham ik heb inmiddels de schijf vervangen daar er weer problemen optraden,dus ik was er klaar mee hahahaha

  nogmaals dank voor je hulp
 • Kijk aan, ik wens je weer plezier met jouw PC.

Beantwoord deze vraag

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.