Mededeling

Collapse
No announcement yet.

Geen systeembeheerder meer/kan printer.exe niet vinden

Collapse
X
Collapse
  •  
  • Page of 1
  • Filter
  • Tijd
  • Show
Clear All
new posts
Vorige template Volgende
  • #1

    Geen systeembeheerder meer/kan printer.exe niet vinden

    Hallo, sinds een tijdje heb ik last van de volgende problemen:

    1) Ik ben geen beheerder meer van mijn eigen computer. Als ik wil zien wie er administrators zijn is er geen configuratiescherm. Deze is nergens te vinden. Ook de software lijst of de bureablad eigenschappen kan ik niet in. Ik krijg dan de volgende melding: "De bewerking is geannuleerd vanwege op uw systeem geldende beperkingen. Neem contact met de systeembeheerder op."

    2) Bij bijna alle mappen die ik open op mijn computer loopt eerst alles vast. Vervolges krijg ik alleen de bureaublad achtergrond te zien, die soms blijft zo blijft. Andere keren komen de pictogrammen op het bureaublad wèl terug. Er komt daarna het volgende bericht in beeld: "Windows kan het bestand C:\WINDOWS\shell.exe niet vinden. Controleer of u de naam juist hebt ingevoerd en probeer het daarna opnieuw. Klik als u naar een bestand wilt zoeken op de knop Start en daarna op Zoeken."

    3) Sinds ik deze problemen heb werkt de computer veel trager. Internet opent ook langzaam en de pagina's worden lijkt het ook minder snel geladen.

    4) Bij het opstarten blijft mijn windows xp pro scherm lang hangen. (het bericht als"uw gebruikersinstellingen worden geladen")

    Hieronder is mijn log:

    Logfile of HijackThis v1.99.1
    Scan saved at 16:35:18, on 21-12-2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\SYSTEM32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Panda Security\Panda Internet Security 2008\TPSrv.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\WINDOWS\system32\CTsvcCDA.exe
    C:\WINDOWS\system32\nvsvc32.exe
    C:\Program Files\Panda Security\Panda Internet Security 2008\PsCtrls.exe
    C:\Program Files\Panda Security\Panda Internet Security 2008\PavFnSvr.exe
    C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe
    C:\Program Files\Panda Security\Panda Internet Security 2008\pavsrv51.exe
    C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    C:\Program Files\Panda Security\Panda Internet Security 2008\AVENGINE.EXE
    C:\Program Files\Panda Security\Panda Internet Security 2008\AntiSpam\pskmssvc.exe
    C:\WINDOWS\system32\PnkBstrA.exe
    c:\program files\panda security\panda internet security 2008\firewall\PSHOST.EXE
    C:\Program Files\Panda Security\Panda Internet Security 2008\PsImSvc.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\system32\MsPMSPSv.exe
    C:\WINDOWS\system32\SearchIndexer.exe
    C:\WINDOWS\system32\WgaTray.exe
    C:\WINDOWS\SOUNDMAN.EXE
    C:\Program Files\Creative\ShareDLL\CtNotify.exe
    C:\WINDOWS\system32\CTHELPER.EXE
    C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe
    C:\Program Files\Logitech\iTouch\iTouch.exe
    C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
    C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
    C:\WINDOWS\system32\RUNDLL32.EXE
    D:\Bram D Schijf\qttask.exe
    C:\Documents and Settings\Rene\Bureaublad\bram\iTunesHelper.exe
    C:\Program Files\Panda Security\Panda Internet Security 2008\APVXDWIN.EXE
    C:\Program Files\Messenger\msmsgs.exe
    C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    C:\Program Files\Creative\ShareDLL\MediaDet.exe
    D:\Bram D Schijf\Logitech Mouse\SetPoint\SetPoint.exe
    C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe
    C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
    C:\Program Files\iPod\bin\iPodService.exe
    C:\WINDOWS\system32\ntvdm.exe
    C:\Program Files\Common Files\Teleca Shared\Generic.exe
    C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
    C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe
    C:\Program Files\Panda Security\Panda Internet Security 2008\SRVLOAD.EXE
    C:\Program Files\Panda Security\Panda Internet Security 2008\WebProxy.exe
    C:\Program Files\Windows Live\Messenger\usnsvc.exe
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Program Files\MessengerDiscovery\MessengerDiscovery Live.exe
    C:\Documents and Settings\Rene\Bureaublad\bram\iTunes.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
    C:\Program Files\Panda Security\Panda Internet Security 2008\PAVJOBS.EXE
    C:\WINDOWS\Explorer.exe
    C:\Program Files\WinRAR\WinRAR.exe
    C:\DOCUME~1\Rene\LOCALS~1\Temp\Rar$EX00.765\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Bram Martin
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
    R3 - URLSearchHook: (no name) - _{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
    F2 - REG:system.ini: Shell=Explorer.exe C:\WINDOWS\system32\printer.exe
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: IEHlprObj Class - {ABCDECF0-4B15-11D1-ABED-709549C10000} - C:\WINDOWS\system32\vtr.dll (file missing)
    O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O3 - Toolbar: 180search Toolbar - {93CECBB2-6B1B-448D-91B9-72604EF70105} - C:\Program Files\180search Assistant Programs\180search Toolbar\180ST.dll (file missing)
    O3 - Toolbar: Seekmo Toolbar - {53E0B6E8-A51D-448B-B692-40B67B285543} - C:\Program Files\Seekmo Programs\Seekmo Toolbar\SeekmoTB.dll (file missing)
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
    O3 - Toolbar: IE Custom Tools - {41F6170D-6AF8-4188-8D92-9DDAB3C71A78} - C:\Program Files\Online Video Add-on\ictmdl.dll (file missing)
    O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
    O4 - HKLM\..\Run: [Disc Detector] C:\Program Files\Creative\ShareDLL\CtNotify.exe
    O4 - HKLM\..\Run: [WINDVDPatch] CTHELPER.EXE
    O4 - HKLM\..\Run: [Jet Detection] C:\Program Files\Creative\SBAudigy\PROGRAM\ADGJDet.exe
    O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon
    O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
    O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\Logitech\MOUSEW~1\SYSTEM\EM_EXEC.EXE
    O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
    O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
    O4 - HKLM\..\Run: [MessengerPlus3] "D:\Bram D Schijf\MsgPlus.exe"
    O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
    O4 - HKLM\..\Run: [QuickTime Task] "D:\Bram D Schijf\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Documents and Settings\Rene\Bureaublad\bram\iTunesHelper.exe"
    O4 - HKLM\..\Run: [DoNotDelete] C:\WINDOWS\system32\explore.exe
    O4 - HKLM\..\Run: [DisableMouse] Rundll32.exe Mouse,Enable
    O4 - HKLM\..\Run: [DisableKeyboard] Rundll32.exe Keyboard,Enable
    O4 - HKLM\..\Run: [Graphic Update] C:\DOCUME~1\Rene\LOCALS~1\Temp\msnmsgr.exe
    O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Security\Panda Internet Security 2008\APVXDWIN.EXE" /s
    O4 - HKLM\..\Run: [SCANINICIO] "C:\Program Files\Panda Security\Panda Internet Security 2008\Inicio.exe"
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - HKCU\..\Run: [app] C:\DOCUME~1\Rene\LOCALS~1\Temp\Rar$EX01.312\UltimateHackPack
    O4 - Global Startup: Bluetooth Manager.lnk = ?
    O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    O4 - Global Startup: Logitech SetPoint.lnk = D:\Bram D Schijf\Logitech Mouse\SetPoint\SetPoint.exe
    O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
    O7 - HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System, DisableRegedit=1
    O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
    O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
    O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by109fd.bay109.hotmail.msn.com/resources/MsnPUpld.cab
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/NL-NL/a-UNO1/GAME_UNO1.cab
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    O16 - DPF: {DEB21AD3-FDA4-42F6-B57D-EE696A675EE8} (IP-Uploader Control) - http://asp05.photoprintit.de/microsite/8/defaults/activex/ImageUploader3.cab
    O16 - DPF: {DECEAAA2-370A-49BB-9362-68C3A58DDC62} (SAIX) - http://static.zangocash.com/cab/Zango/ie/bridge-c11.cab?f37d44ac492924dc063287e7256ff18ecfd47e0337570ba83184e71c504e963b95236c868425298f89b447183f61 9d26ee6674e426fe125aa66fafc22061bd61e2ef0b3c25:9aba7c18c9800e1f1bca9acc387e48ea
    O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~3\MESSEN~1\MSGRAP~1.DLL
    O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~3\MESSEN~1\MSGRAP~1.DLL
    O18 - Protocol: wlmailhtml - {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll
    O20 - AppInit_DLLs: C:\WINDOWS\system32\stdole32.dat
    O20 - Winlogon Notify: avldr - C:\WINDOWS\SYSTEM32\avldr.dll
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
    O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
    O23 - Service: Panda Software Controller - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\PsCtrls.exe
    O23 - Service: Panda Function Service (PAVFNSVR) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\PavFnSvr.exe
    O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Software - C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe
    O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\pavsrv51.exe
    O23 - Service: Planner voor Automatische LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
    O23 - Service: Panda Antispam Engine (pmshellsrv) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\AntiSpam\pskmssvc.exe
    O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
    O23 - Service: Panda Host Service (PSHost) - Panda Software International - c:\program files\panda security\panda internet security 2008\firewall\PSHOST.EXE
    O23 - Service: Panda IManager Service (PSIMSVC) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\PsImSvc.exe
    O23 - Service: Panda TPSrv (TPSrv) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\TPSrv.exe
    O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

    Alvast bedankt voor het helpen,

    Bram
    Labels: Geen
    • Citaat
  • #2
    Je wordt hier al geholpen: http://forum.computertotaal.nl/phpBB...249526#1249526

    Lijkt me het best dat je daar gewoon verder gaat
    • Citaat

    Comment

    • #3
      Hey, ik was vergeten dat ik daar ooit gepost had, dat was dan ook al een tijdje geleden. Ik heb net de instructies daarzo opgevolgd. De volgende problemen zijn verholpen:
      * Het opstartscherm verdwijnt weer sneller
      * Er komen geen mouse en keyboard problemen meer

      Ik heb echter nog steeds de volgende problemen:
      * Ik ben geen computerbeheerder meer
      * Er blijft de melding komen dat printer.exe er niet is, en veel mappen kan ik dus niet openen.

      Hieronder is de txt-file van "smitfraudix":

      SmitFraudFix v2.274

      Scan done at 18:22:09,40, vr 21-12-2007
      Run from C:\Documents and Settings\Rene\Bureaublad\SmitfraudFix
      OS: Microsoft Windows XP [versie 5.1.2600] - Windows_NT
      The filesystem type is NTFS
      Fix run in safe mode

      »»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler Before SmitFraudFix
      !!!Attention, following keys are not inevitably infected!!!

      SrchSTS.exe by S!Ri
      Search SharedTaskScheduler's .dll

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
      "{41eaa909-24be-4d24-877f-076a0576a6fd}"="castigating"

      [HKEY_CLASSES_ROOT\CLSID\{41eaa909-24be-4d24-877f-076a0576a6fd}\InProcServer32]
      @="C:\WINDOWS\system32\gbjkog.dll"

      [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{41eaa909-24be-4d24-877f-076a0576a6fd}\InProcServer32]
      @="C:\WINDOWS\system32\gbjkog.dll"


      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
      "{adf64b1b-c68c-4ce8-bb55-258b7b8b0f81}"="aldoa"

      [HKEY_CLASSES_ROOT\CLSID\{adf64b1b-c68c-4ce8-bb55-258b7b8b0f81}\InProcServer32]
      @="C:\WINDOWS\system32\swqzdtj.dll"

      [HKEY_LOCAL_MACHINE\Software\Classes\CLSID\{adf64b1b-c68c-4ce8-bb55-258b7b8b0f81}\InProcServer32]
      @="C:\WINDOWS\system32\swqzdtj.dll"


      »»»»»»»»»»»»»»»»»»»»»»»» Killing process


      »»»»»»»»»»»»»»»»»»»»»»»» hosts


      192.168.200.3 ad.doubleclick.net
      192.168.200.3 ad.fastclick.net
      192.168.200.3 ads.fastclick.net
      192.168.200.3 ar.atwola.com
      192.168.200.3 atdmt.com
      192.168.200.3 avp.ch
      192.168.200.3 avp.com
      192.168.200.3 avp.ru
      192.168.200.3 awaps.net
      192.168.200.3 banner.fastclick.net
      192.168.200.3 banners.fastclick.net
      192.168.200.3 ca.com
      192.168.200.3 click.atdmt.com
      192.168.200.3 clicks.atdmt.com
      192.168.200.3 customer.symantec.com
      192.168.200.3 dispatch.mcafee.com
      192.168.200.3 download.mcafee.com
      192.168.200.3 downloads-us1.kaspersky-labs.com
      192.168.200.3 downloads-us2.kaspersky-labs.com
      192.168.200.3 downloads-us3.kaspersky-labs.com
      192.168.200.3 downloads1.kaspersky-labs.com
      192.168.200.3 downloads2.kaspersky-labs.com
      192.168.200.3 downloads3.kaspersky-labs.com
      192.168.200.3 downloads4.kaspersky-labs.com
      192.168.200.3 engine.awaps.net
      192.168.200.3 f-secure.com
      192.168.200.3 fastclick.net
      192.168.200.3 ftp.avp.ch
      192.168.200.3 ftp.downloads1.kaspersky-labs.com
      192.168.200.3 ftp.downloads2.kaspersky-labs.com
      192.168.200.3 ftp.downloads3.kaspersky-labs.com
      192.168.200.3 ftp.f-secure.com
      192.168.200.3 ftp.kasperskylab.ru
      192.168.200.3 ftp.sophos.com
      192.168.200.3 ids.kaspersky-labs.com
      192.168.200.3 kaspersky-labs.com
      192.168.200.3 kaspersky.com
      192.168.200.3 liveupdate.symantec.com
      192.168.200.3 liveupdate.symantecliveupdate.com
      192.168.200.3 mast.mcafee.com
      192.168.200.3 mcafee.com
      192.168.200.3 media.fastclick.net
      192.168.200.3 my-etrust.com
      192.168.200.3 nai.com
      192.168.200.3 networkassociates.com
      192.168.200.3 norton.com
      192.168.200.3 phx.corporate-ir.net
      192.168.200.3 rads.mcafee.com
      192.168.200.3 secure.nai.com
      192.168.200.3 securityresponse.symantec.com
      192.168.200.3 service1.symantec.com
      192.168.200.3 sophos.com
      192.168.200.3 spd.atdmt.com
      192.168.200.3 symantec.com
      192.168.200.3 trendmicro.com
      192.168.200.3 update.symantec.com
      192.168.200.3 updates.symantec.com
      192.168.200.3 updates1.kaspersky-labs.com
      192.168.200.3 updates2.kaspersky-labs.com
      192.168.200.3 updates3.kaspersky-labs.com
      192.168.200.3 updates4.kaspersky-labs.com
      192.168.200.3 updates5.kaspersky-labs.com
      192.168.200.3 us.mcafee.com
      192.168.200.3 vil.nai.com
      192.168.200.3 viruslist.com
      192.168.200.3 viruslist.ru
      192.168.200.3 virusscan.jotti.org
      192.168.200.3 virustotal.com
      192.168.200.3 www.avp.ch
      192.168.200.3 www.avp.com
      192.168.200.3 www.avp.ru
      192.168.200.3 www.awaps.net
      192.168.200.3 www.ca.com
      192.168.200.3 www.f-secure.com
      192.168.200.3 www.fastclick.net
      192.168.200.3 www.grisoft.com
      192.168.200.3 www.kaspersky-labs.com
      192.168.200.3 www.kaspersky.com
      192.168.200.3 www.kaspersky.ru
      192.168.200.3 www.mcafee.com
      192.168.200.3 www.my-etrust.com
      192.168.200.3 www.nai.com
      192.168.200.3 www.networkassociates.com
      192.168.200.3 www.sophos.com
      192.168.200.3 www.symantec.com
      192.168.200.3 www.symantec.com
      192.168.200.3 www.trendmicro.com
      192.168.200.3 www.viruslist.com
      192.168.200.3 www.viruslist.ru
      192.168.200.3 www.virustotal.com
      192.168.200.3 www3.ca.com

      »»»»»»»»»»»»»»»»»»»»»»»» Winsock2 Fix

      S!Ri's WS2Fix: LSP not Found.


      »»»»»»»»»»»»»»»»»»»»»»»» Generic Renos Fix

      GenericRenosFix by S!Ri


      »»»»»»»»»»»»»»»»»»»»»»»» Deleting infected files

      C:\DOCUME~1\ALLUSE~1\MENUST~1\Online Security Guide.url Deleted
      C:\DOCUME~1\ALLUSE~1\MENUST~1\Security Troubleshooting.url Deleted
      C:\DOCUME~1\Rene\FAVORI~1\Online Security Test.url Deleted
      C:\Program Files\AntiVirGear 3.7\ Deleted
      C:\Program Files\Online Video Add-on\ Deleted
      C:\Program Files\Video ActiveX Access\ Deleted

      »»»»»»»»»»»»»»»»»»»»»»»» IEDFix

      IEDFix.exe by S!Ri


      »»»»»»»»»»»»»»»»»»»»»»»» DNS

      HKLM\SYSTEM\CCS\Services\Tcpip\..\{F56B3B83-A7C6-4FED-9E8D-3F76036D218A}: DhcpNameServer=192.168.1.1
      HKLM\SYSTEM\CS1\Services\Tcpip\..\{F56B3B83-A7C6-4FED-9E8D-3F76036D218A}: DhcpNameServer=192.168.1.1
      HKLM\SYSTEM\CS3\Services\Tcpip\..\{F56B3B83-A7C6-4FED-9E8D-3F76036D218A}: DhcpNameServer=192.168.1.1
      HKLM\SYSTEM\CCS\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
      HKLM\SYSTEM\CS1\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1
      HKLM\SYSTEM\CS3\Services\Tcpip\Parameters: DhcpNameServer=192.168.1.1


      »»»»»»»»»»»»»»»»»»»»»»»» Deleting Temp Files


      »»»»»»»»»»»»»»»»»»»»»»»» Winlogon.System
      !!!Attention, following keys are not inevitably infected!!!

      [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
      "System"=""


      »»»»»»»»»»»»»»»»»»»»»»»» Registry Cleaning

      »»»»»»»»»»»»»»»»»»»»»»»» Registry Cleaning

      Registry Cleaning done.

      »»»»»»»»»»»»»»»»»»»»»»»» SharedTaskScheduler After SmitFraudFix
      !!!Attention, following keys are not inevitably infected!!!

      SrchSTS.exe by S!Ri
      Search SharedTaskScheduler's .dll


      »»»»»»»»»»»»»»»»»»»»»»»» End

      Wat moet ik nu verder doen op de problemen op te lossen?
      (De instructies die ik moest opgevolgen van het andere forum kon ik niet allemaal uitvoeren. Sommige namen, zoals 04 [LB config] etc.. stonden niet in de lijst bij Hijackthis.)
      • Citaat

      Comment

      • #4
        Wat er niet meer staat hoef je ook niet meer aan te vinken

        Ga gewoon verder, doorloop alle stappen en post alle gevraagde logjes
        • Citaat

        Comment

        • #5
          Zou u me niet hier kunnen helpen? U reageert teminste snel, en ik zou het probleem zo snel mogelijk opgelost willlen hebben

          Ik kreeg daar de opdracht Hijackthis in de veilige modus te laten scannen. Daar heb ik dingen aangevinkt en daarna heb ik smitfraudix laten werken. Ik heb gereboot en ik moest dan de rapport.txt van smitfraudix posten. Deze staat in de post hierboven. Wat moet ik dan nu verder doen?

          mvg, bram
          • Citaat

          Comment

          • #6
            Ik ga je nu ook even verlaten, moet nog wat anders doen

            Probeer intussen dit eens:
            Download: RVAXO.exe
            • Sla het bestand op je bureaublad op, dubbelklik het en kies voor "Unzip" om het uit te pakken.
            • Open nu de map RVAXO op je bureaublad en dubbeklik RVAXO.cmd
              Er zal een cmd-schermpje openen, daarin zullen snel enkele regels over niet gevonden bestanden voorbijkomen, dit is normaal.
            • Mogelijk start er ook een uninstaller van een rogue scanner op, sluit deze niet af maar volg eventuele aanwijzingen en laat deze gewoon zijn werk doen.
            • Daarna zal je PC herstarten, na de herstart opent het cmd-venster van RVAXO opnieuw.
              Laat deze lopen en wacht tot er een logfile opent: C:\RVAXO-results.log
            • Herstart je computer niet vanzelf, of start de tool niet na de reboot, doe dit dan handmatig.
            • Post de inhoud van de logfile in je volgende bericht tesamen met een nieuw logje van HijackThis.
            • Citaat

            Comment

            • #7
              Ik heb de instructies opgevolgd en dit zijn de logs:

              Log 1 (RVAXO-results.log)

              ----------------RVAXO.exe first run-------------

              Files found:


              Uninstallers Rogue scanners:

              Search Enhancer uninstaller found

              Folders Found:


              Hosts-file was reset, If you use a custom hosts file please replace it...

              Log 2 (Hijackthis)

              Logfile of Trend Micro HijackThis v2.0.2
              Scan saved at 19:13:07, on 21-12-2007
              Platform: Windows XP SP2 (WinNT 5.01.2600)
              MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
              Boot mode: Normal

              Running processes:
              C:\WINDOWS\System32\smss.exe
              C:\WINDOWS\SYSTEM32\winlogon.exe
              C:\WINDOWS\system32\services.exe
              C:\WINDOWS\system32\lsass.exe
              C:\WINDOWS\system32\svchost.exe
              C:\WINDOWS\system32\svchost.exe
              C:\Program Files\Panda Security\Panda Internet Security 2008\TPSrv.exe
              C:\WINDOWS\system32\spoolsv.exe
              C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
              C:\WINDOWS\system32\CTsvcCDA.exe
              C:\WINDOWS\system32\nvsvc32.exe
              C:\Program Files\Panda Security\Panda Internet Security 2008\PsCtrls.exe
              C:\Program Files\Panda Security\Panda Internet Security 2008\PavFnSvr.exe
              C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe
              C:\Program Files\Panda Security\Panda Internet Security 2008\pavsrv51.exe
              C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
              C:\Program Files\Panda Security\Panda Internet Security 2008\AVENGINE.EXE
              C:\Program Files\Panda Security\Panda Internet Security 2008\AntiSpam\pskmssvc.exe
              C:\WINDOWS\system32\PnkBstrA.exe
              c:\program files\panda security\panda internet security 2008\firewall\PSHOST.EXE
              C:\Program Files\Panda Security\Panda Internet Security 2008\PsImSvc.exe
              C:\WINDOWS\system32\svchost.exe
              C:\WINDOWS\system32\MsPMSPSv.exe
              C:\WINDOWS\system32\SearchIndexer.exe
              C:\WINDOWS\system32\WgaTray.exe
              C:\WINDOWS\SOUNDMAN.EXE
              C:\Program Files\Creative\ShareDLL\CtNotify.exe
              C:\WINDOWS\system32\CTHELPER.EXE
              C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe
              C:\Program Files\Logitech\iTouch\iTouch.exe
              C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
              C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
              C:\Program Files\Creative\ShareDLL\MediaDet.exe
              C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
              C:\WINDOWS\system32\RUNDLL32.EXE
              D:\Bram D Schijf\qttask.exe
              C:\Documents and Settings\Rene\Bureaublad\bram\iTunesHelper.exe
              C:\Program Files\Panda Security\Panda Internet Security 2008\APVXDWIN.EXE
              C:\Program Files\Messenger\msmsgs.exe
              C:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe
              C:\WINDOWS\system32\wuauclt.exe
              C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
              D:\Bram D Schijf\Logitech Mouse\SetPoint\SetPoint.exe
              C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
              C:\WINDOWS\system32\ntvdm.exe
              C:\Program Files\iPod\bin\iPodService.exe
              C:\Program Files\Common Files\Teleca Shared\Generic.exe
              C:\WINDOWS\system32\wuauclt.exe
              C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
              C:\Program Files\Panda Security\Panda Internet Security 2008\SRVLOAD.EXE
              C:\Program Files\Panda Security\Panda Internet Security 2008\WebProxy.exe
              C:\WINDOWS\explorer.exe
              C:\Program Files\Internet Explorer\IEXPLORE.EXE
              C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
              C:\Program Files\Panda Security\Panda Internet Security 2008\PavBckPT.exe
              C:\WINDOWS\system32\SearchProtocolHost.exe
              C:\Documents and Settings\Rene\Bureaublad\HijackThis.exe

              R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer provided by Bram Martin
              R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
              R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
              O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
              O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
              O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
              O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
              O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
              O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
              O4 - HKLM\..\Run: [Disc Detector] C:\Program Files\Creative\ShareDLL\CtNotify.exe
              O4 - HKLM\..\Run: [WINDVDPatch] CTHELPER.EXE
              O4 - HKLM\..\Run: [Jet Detection] C:\Program Files\Creative\SBAudigy\PROGRAM\ADGJDet.exe
              O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon
              O4 - HKLM\..\Run: [zBrowser Launcher] C:\Program Files\Logitech\iTouch\iTouch.exe
              O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\Logitech\MOUSEW~1\SYSTEM\EM_EXEC.EXE
              O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
              O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
              O4 - HKLM\..\Run: [MessengerPlus3] "D:\Bram D Schijf\MsgPlus.exe"
              O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
              O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
              O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
              O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
              O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
              O4 - HKLM\..\Run: [QuickTime Task] "D:\Bram D Schijf\qttask.exe" -atboottime
              O4 - HKLM\..\Run: [iTunesHelper] "C:\Documents and Settings\Rene\Bureaublad\bram\iTunesHelper.exe"
              O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Security\Panda Internet Security 2008\APVXDWIN.EXE" /s
              O4 - HKLM\..\Run: [SCANINICIO] "C:\Program Files\Panda Security\Panda Internet Security 2008\Inicio.exe"
              O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
              O4 - HKCU\..\Run: [app] C:\DOCUME~1\Rene\LOCALS~1\Temp\Rar$EX01.312\UltimateHackPack
              O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service')
              O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice')
              O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
              O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
              O4 - Global Startup: Bluetooth Manager.lnk = ?
              O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
              O4 - Global Startup: Logitech SetPoint.lnk = D:\Bram D Schijf\Logitech Mouse\SetPoint\SetPoint.exe
              O4 - Global Startup: Windows Desktop Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe
              O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
              O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
              O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
              O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
              O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
              O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
              O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
              O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
              O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
              O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
              O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
              O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
              O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
              O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by109fd.bay109.hotmail.msn.com/resources/MsnPUpld.cab
              O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/NL-NL/a-UNO1/GAME_UNO1.cab
              O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsClient.cab31267.cab
              O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
              O16 - DPF: {DEB21AD3-FDA4-42F6-B57D-EE696A675EE8} (IP-Uploader Control) - http://asp05.photoprintit.de/microsite/8/defaults/activex/ImageUploader3.cab
              O16 - DPF: {DECEAAA2-370A-49BB-9362-68C3A58DDC62} (SAIX) - http://static.zangocash.com/cab/Zango/ie/bridge-c11.cab?f37d44ac492924dc063287e7256ff18ecfd47e0337570ba83184e71c504e963b95236c868425298f89b447183f61 9d26ee6674e426fe125aa66fafc22061bd61e2ef0b3c25:9aba7c18c9800e1f1bca9acc387e48ea
              O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
              O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
              O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
              O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
              O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
              O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
              O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
              O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
              O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
              O23 - Service: Panda Software Controller - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\PsCtrls.exe
              O23 - Service: Panda Function Service (PAVFNSVR) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\PavFnSvr.exe
              O23 - Service: Panda Process Protection Service (PavPrSrv) - Panda Software - C:\Program Files\Common Files\Panda Software\PavShld\pavprsrv.exe
              O23 - Service: Panda anti-virus service (PAVSRV) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\pavsrv51.exe
              O23 - Service: Planner voor Automatische LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
              O23 - Service: Panda Antispam Engine (pmshellsrv) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\AntiSpam\pskmssvc.exe
              O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
              O23 - Service: Panda Host Service (PSHost) - Panda Software International - c:\program files\panda security\panda internet security 2008\firewall\PSHOST.EXE
              O23 - Service: Panda IManager Service (PSIMSVC) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\PsImSvc.exe
              O23 - Service: Panda TPSrv (TPSrv) - Panda Software International - C:\Program Files\Panda Security\Panda Internet Security 2008\TPSrv.exe
              O23 - Service: Windows Live Setup Service (WLSetupSvc) - Unknown owner - C:\Program Files\Windows Live\installer\WLSetupSvc.exe

              --
              End of file - 12160 bytes


              Wat nu verder?

              mvg,

              bram
              • Citaat

              Comment

              • #8
                Download Combofix naar je Bureaublad.
                Dubbelklik op Combofix.exe
                Kies voor "Continue" door 1 te typen gevolgd door ENTER.
                Tijdens het runnen van de fix, NIET in het venster klikken, want dit zal je pc doen vasthangen.
                Wanneer de fix voltooid is en na herstart, zal de log combofix.txt openen.
                Plaats deze log in je volgende post.

                NOTA: Indien je virusscanner reageert met een melding van een scriptuitvoering, mag je dit negeren.
                • Citaat

                Comment

                Vorige template Volgende
                Sorry, you are not authorized to view this page
                Working...
                X