Mededeling

Collapse
No announcement yet.

Rundll

Collapse
X
  •  
  • Filter
  • Tijd
  • Show
Clear All
new posts

  • Rundll

    Hoi ,
    Als de pc opstart krijg iK steeds deze melding
    Er is een fout opgetreden tijdens het laden C:\ windows system 32 kfjfwyns.dll kan het opgegeven module niet vinden.

  • #2
    Rundll 32

    Hoi Sorry voor het eerste bericht ,ik ben nog maar pas nieuw en het was even zoeken voor .
    Als ik pc op start krij ik steeds deze bericht.
    Error ,er is een fout opgetreden tijdens het laden C:\windows system32 kfjfwynsb.dll .Kan opgevegen module niet vinden.

    Dank U .
    Ntunga



    Logfile of Trend Micro HijackThis v2.0.2

    Scan saved at 23:56:49, on 4/04/2008
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16608)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\System32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Windows Defender\MsMpEng.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
    C:\WINDOWS\system32\HPZipm12.exe
    C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\Program Files\necmfk\necmfk.exe
    C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    C:\Program Files\Apoint2K\Apoint.exe
    C:\WINDOWS\AGRSMMSG.exe
    C:\Program Files\Unlocker\UnlockerAssistant.exe
    C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
    C:\Program Files\Andrea Electronics\Andrea Electronics AudioCommander\AudioCommander.exe
    C:\Program Files\Apoint2K\Apntex.exe
    C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    C:\Program Files\Apoint2K\HidFind.exe
    C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
    C:\Program Files\QuickTime\QTTask.exe
    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
    C:\Program Files\Windows Defender\MSASCui.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\VisionBoard\visionboardlauncher.exe
    C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Documents and Settings\Sylva\Mijn documenten\HiJackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dufpy.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
    R3 - URLSearchHook: rapidbar Toolbar - {a1873db0-6365-4faa-9b2e-d863b8018667} - C:\Program Files\rapidbar\tbrap0.dll
    O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: {63dedacb-b0b5-7649-b3f4-0550473e69a0} - {0a96e374-0550-4f3b-9467-5b0bbcaded36} - C:\WINDOWS\system32\vbltgkaj.dll (file missing)
    O2 - BHO: (no name) - {2609B626-DF69-4E1C-974D-16864618383E} - C:\WINDOWS\system32\byxwx.dll (file missing)
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O3 - Toolbar: rapidbar Toolbar - {a1873db0-6365-4faa-9b2e-d863b8018667} - C:\Program Files\rapidbar\tbrap0.dll
    O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
    O4 - HKLM\..\Run: [NECMFK] C:\Program Files\necmfk\necmfk.exe
    O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
    O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
    O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
    O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
    O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
    O4 - HKLM\..\Run: [BM874fdb05] Rundll32.exe "C:\WINDOWS\system32\kjfwynsb.dll",s
    O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
    O4 - HKLM\..\Run: [smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
    O4 - HKLM\..\Run: [AudioCommander] C:\Program Files\Andrea Electronics\Andrea Electronics AudioCommander\AudioCommander.exe /tray
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
    O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
    O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [visionboard] C:\Program Files\VisionBoard\visionboardlauncher.exe
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Lokale service')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Netwerkservice')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
    O8 - Extra context menu item: DiaryOne: Save full text - C:\Program Files\DiaryOne\Script\fullcatcher.htm
    O8 - Extra context menu item: DiaryOne: Save selected text - C:\Program Files\DiaryOne\Script\catcher.htm
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\benl.htm
    O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
    O23 - Service: Planner voor Automatische LiveUpdate (Automatic LiveUpdate Scheduler) - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
    O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
    O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: Google Updater Service (gusvc) - Unknown owner - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (file missing)
    O23 - Service: iPod-service (iPod Service) - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
    O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
    O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
    O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe

    --
    End of file - 8919 bytes

    Comment


    • #3
      Download dit bestand: zoek.exe
      Dubbelklik het, na een tijdje opent er een logje.
      Post de inhoud van dit logje in je volgende bericht

      Comment


      • #4
        ======C:\WINDOWS====
        ----a-w 0 2008-04-05 15:49:38 C:\WINDOWS\0.log
        ----a-w 0 2008-03-27 12:48:00 C:\WINDOWS\74m.dll
        ----a-w 4,207 2008-03-24 19:03:34 C:\WINDOWS\basecsp.log
        ----a-w 113,834 2008-03-17 21:59:01 C:\WINDOWS\BM874fdb05.xml
        --s-a-w 2,048 2008-04-05 15:46:16 C:\WINDOWS\bootstat.dat
        ----a-w 0 2008-03-27 12:48:00 C:\WINDOWS\bs.dll
        ----a-w 293,122 2008-04-01 18:05:37 C:\WINDOWS\comsetup.log
        ----a-w 1,944 2008-03-30 18:19:26 C:\WINDOWS\DXVUMeterNET Setup Log.txt
        ----a-w 842,848 2008-04-01 18:05:36 C:\WINDOWS\FaxSetup.log
        ----a-w 654 2008-03-24 19:14:52 C:\WINDOWS\hegames.ini
        ----a-w 17,499 2008-03-30 17:12:37 C:\WINDOWS\IDNMitigationAPIs.log
        ----a-w 83,581 2008-03-30 17:13:39 C:\WINDOWS\ie7.log
        ----a-w 63,340 2008-03-30 19:22:17 C:\WINDOWS\ie7_main.log
        ----a-w 133,547 2008-04-01 18:05:37 C:\WINDOWS\iis6.log
        ----a-w 4,507 2008-04-01 18:05:12 C:\WINDOWS\imsins.BAK
        ----a-w 1,891 2008-04-01 18:05:37 C:\WINDOWS\imsins.log
        ----a-w 10,556 2008-03-24 18:56:01 C:\WINDOWS\KB892130.log
        ----a-w 12,834 2008-03-30 17:11:15 C:\WINDOWS\KB915865.log
        ----a-w 19,965 2008-03-24 19:08:45 C:\WINDOWS\KB925876.log
        ----a-w 85,012 2008-03-30 17:15:35 C:\WINDOWS\KB942615-IE7.log
        ----a-w 49,113 2008-03-30 17:15:55 C:\WINDOWS\KB944533-IE7.log
        ----a-w 50 2008-04-02 21:33:30 C:\WINDOWS\MegaManager.INI
        ----a-w 43,467 2008-04-01 18:05:36 C:\WINDOWS\msgsocm.log
        ----a-w 968 2008-04-05 15:48:11 C:\WINDOWS\necmfk.ini
        ----a-w 16,254 2008-03-30 17:12:01 C:\WINDOWS\NLSDownlevelMapping.log
        ----a-w 180,871 2008-04-01 18:05:37 C:\WINDOWS\ntdtcsetup.log
        ----a-w 438,858 2008-04-01 18:05:37 C:\WINDOWS\ocgen.log
        ----a-w 52,917 2008-04-01 18:05:37 C:\WINDOWS\ocmsn.log
        ----a-w 70 2008-03-27 11:56:57 C:\WINDOWS\pb.ini
        ----a-w 22 2008-03-18 07:47:43 C:\WINDOWS\pskt.ini
        ----a-w 32,148 2008-04-05 15:08:15 C:\WINDOWS\SchedLgU.Txt
        ----a-w 51,690 2008-04-03 15:39:10 C:\WINDOWS\setupapi.log
        ----a-w 1,030,723 2008-03-30 17:12:21 C:\WINDOWS\setupapi.log.0.old
        ----a-w 44 2008-04-01 19:22:47 C:\WINDOWS\SMWizard.INI
        ----a-w 78,468 2008-03-30 17:20:48 C:\WINDOWS\spupdsvc.log
        ----a-w 227 2008-04-02 16:20:13 C:\WINDOWS\system.ini
        ----a-w 335,632 2008-04-01 18:05:37 C:\WINDOWS\tsoc.log
        ----a-w 60,719 2008-03-30 17:15:34 C:\WINDOWS\updspapi.log
        ----a-w 159 2008-04-05 15:48:13 C:\WINDOWS\wiadebug.log
        ----a-w 0 2008-04-05 15:48:10 C:\WINDOWS\wiaservc.log
        ----a-w 624 2008-04-02 16:20:13 C:\WINDOWS\win.ini
        ----a-w 1,349,424 2008-04-05 15:48:27 C:\WINDOWS\WindowsUpdate.log
        ----a-w 93 2008-04-01 13:22:45 C:\WINDOWS\wininit.ini
        ----a-w 129,491 2008-04-01 19:49:01 C:\WINDOWS\wmsetup.log

        Entries: 44 (43)
        Directories: 0 Files: 44
        Bytes: 5,543,421 Blocks: 10,848
        ======C:\WINDOWS\system32=====
        ----a-w 16,832 2008-03-29 17:56:34 C:\WINDOWS\System32\amcompat.tlb
        ----a-w 3,472 2008-03-30 19:21:18 C:\WINDOWS\System32\d3d9caps.dat
        ----a-w 226,408 2008-03-27 08:55:59 C:\WINDOWS\System32\FNTCACHE.DAT
        ----a-w 127 2008-03-12 15:57:14 C:\WINDOWS\System32\MRT.INI
        --sh--w 1,434 2008-03-12 12:10:39 C:\WINDOWS\System32\nboeawtg.ini
        --sh--w 1,254 2008-03-11 07:51:05 C:\WINDOWS\System32\ncpgptuq.ini
        ----a-w 23,392 2008-03-29 17:56:34 C:\WINDOWS\System32\nscompat.tlb
        ----a-w 72,316 2008-04-01 21:06:50 C:\WINDOWS\System32\perfc009.dat
        ----a-w 92,124 2008-04-01 21:06:50 C:\WINDOWS\System32\perfc013.dat
        ----a-w 442,632 2008-04-01 21:06:50 C:\WINDOWS\System32\perfh009.dat
        ----a-w 511,698 2008-04-01 21:06:50 C:\WINDOWS\System32\perfh013.dat
        ----a-w 1,127,876 2008-04-01 21:06:50 C:\WINDOWS\System32\PerfStringBackup.INI
        --sh--w 4,374 2008-03-19 17:49:21 C:\WINDOWS\System32\wawvvolx.ini
        ----a-w 1,170 2008-04-03 11:45:59 C:\WINDOWS\System32\wpa.dbl
        --sha-w 212,126 2008-03-12 15:57:06 C:\WINDOWS\System32\xwxyb.ini

        Entries: 15 (11)
        Directories: 0 Files: 15
        Bytes: 2,737,235 Blocks: 5,353
        ======C:\WINDOWS\system32\drivers=====
        Entries: 0 (0)
        Directories: 0 Files: 0
        Bytes: 0 Blocks: 0
        =======C:\Program Files=====
        Entries: 0 (0)
        Directories: 0 Files: 0
        Bytes: 0 Blocks: 0
        =======C:=====
        --sha-r 282 2008-04-02 16:20:13 C:\BOOT.INI
        --sha-w 737,202,176 2008-04-05 15:46:02 C:\hiberfil.sys
        --sha-w 1,107,296,256 2008-04-05 15:45:59 C:\pagefile.sys
        ----a-w 0 2008-04-04 22:13:44 C:\PlayList.txt
        ----a-w 812 2008-04-04 22:19:16 C:\RVAXO-results.log
        ----a-w 0 2008-04-04 22:17:20 C:\RVAXO-VfindLog.log
        ----a-w 29,460 2008-04-04 22:19:18 C:\RVAXO.reg

        Entries: 7 (4)
        Directories: 0 Files: 7
        Bytes: 1,844,528,986 Blocks: 3,602,597
        ======C:\Documents and Settings\Sylva\Application Data======
        Entries: 0 (0)
        Directories: 0 Files: 0
        Bytes: 0 Blocks: 0
        ======C:\Temp======
        Entries: 0 (0)
        Directories: 0 Files: 0
        Bytes: 0 Blocks: 0
        ======C:\Documents and Settings\Sylva======
        ----a-w 7,602,176 2008-04-05 15:08:17 C:\Documents and Settings\Sylva\ntuser.dat
        ---ha-w 32,768 2008-04-05 15:55:30 C:\Documents and Settings\Sylva\ntuser.dat.LOG
        --sh--w 188 2008-04-05 15:08:08 C:\Documents and Settings\Sylva\ntuser.ini

        Entries: 3 (1)
        Directories: 0 Files: 3
        Bytes: 7,635,132 Blocks: 14,913
        ======C:\WINDOWS\Downloaded Program Files====
        Entries: 0 (0)
        Directories: 0 Files: 0
        Bytes: 0 Blocks: 0
        =============

        Comment


        • #5
          Open een kladblokbestand.
          Kopieer onderstaande (alles wat vetgedrukt is) in dit kladblokbestand.

          @ECHO OFF
          IF EXIST log.txt DEL log.txt
          ECHO Deleting files>>log.txt
          FOR %%g in (
          C:\WINDOWS\74m.dll
          C:\WINDOWS\BM874fdb05.xml
          C:\WINDOWS\bs.dll
          C:\WINDOWS\necmfk.ini
          C:\WINDOWS\pb.ini
          C:\WINDOWS\pskt.ini
          C:\WINDOWS\wininit.ini
          C:\WINDOWS\System32\nboeawtg.ini
          C:\WINDOWS\System32\ncpgptuq.ini
          C:\WINDOWS\System32\wawvvolx.ini
          C:\WINDOWS\System32\xwxyb.ini) DO (
          IF EXIST %%g (
          ATTRIB -r -s -h %%g
          DEL %%g
          REN %%g *NUCIA
          IF EXIST %%gNUCIA (
          ECHO renamed to %%gNUCIA>>log.txt)
          IF EXIST %%g (
          ECHO %%g not deleted>>log.txt
          ) ELSE (
          ECHO %%g deleted>>log.txt)
          ) ELSE (
          ECHO %%g not found>>log.txt))
          START NOTEPAD.EXE log.txt

          Ga naar Bestand - Opslaan als.
          Bij "Opslaan in" kies je: Bureaublad
          Bij "Bestandsnaam" zet je: del.bat
          Bij "Opslaan als type" selecteer je: Alle bestanden (*.*).
          Klik op de knop Opslaan.

          Dubbelklik op del.bat en post de inhoud van de logfile die opent.

          Comment


          • #6
            rundll

            Deleting files
            C:\WINDOWS\74m.dll not found
            C:\WINDOWS\BM874fdb05.xml not found
            C:\WINDOWS\bs.dll not found
            C:\WINDOWS\necmfk.ini not found
            C:\WINDOWS\pb.ini not found
            C:\WINDOWS\pskt.ini not found
            C:\WINDOWS\wininit.ini not found
            C:\WINDOWS\System32\nboeawtg.ini not found
            C:\WINDOWS\System32\ncpgptuq.ini not found
            C:\WINDOWS\System32\wawvvolx.ini not found
            C:\WINDOWS\System32\xwxyb.ini not found

            Comment


            • #7
              Hmmm, blijkbaar is alles weg

              Post even een nieuw logje van Hijackthis

              Comment


              • #8
                nieuw log

                ogfile of Trend Micro HijackThis v2.0.2
                Scan saved at 15:41:41, on 6/04/2008
                Platform: Windows XP SP2 (WinNT 5.01.2600)
                MSIE: Internet Explorer v7.00 (7.00.6000.16608)
                Boot mode: Normal

                Running processes:
                C:\WINDOWS\System32\smss.exe
                C:\WINDOWS\system32\winlogon.exe
                C:\WINDOWS\system32\services.exe
                C:\WINDOWS\system32\lsass.exe
                C:\WINDOWS\System32\Ati2evxx.exe
                C:\WINDOWS\system32\svchost.exe
                C:\Program Files\Windows Defender\MsMpEng.exe
                C:\WINDOWS\System32\svchost.exe
                C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
                C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
                C:\WINDOWS\system32\spoolsv.exe
                C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
                C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
                C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
                C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
                C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
                C:\WINDOWS\System32\svchost.exe
                C:\WINDOWS\Explorer.EXE
                C:\Program Files\necmfk\necmfk.exe
                C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
                C:\Program Files\Apoint2K\Apoint.exe
                C:\WINDOWS\AGRSMMSG.exe
                C:\Program Files\Unlocker\UnlockerAssistant.exe
                C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
                C:\Program Files\Andrea Electronics\Andrea Electronics AudioCommander\AudioCommander.exe
                C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
                C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
                C:\Program Files\QuickTime\QTTask.exe
                C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
                C:\Program Files\Apoint2K\HidFind.exe
                C:\Program Files\Windows Defender\MSASCui.exe
                C:\Program Files\Apoint2K\Apntex.exe
                C:\WINDOWS\system32\ctfmon.exe
                C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
                C:\Program Files\DAEMON Tools Lite\daemon.exe
                C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
                C:\Program Files\VisionBoard\visionboardlauncher.exe
                C:\Program Files\Mozilla Firefox\firefox.exe
                C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

                R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dufpy.com
                R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
                R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
                R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
                R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
                R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
                R3 - URLSearchHook: rapidbar Toolbar - {a1873db0-6365-4faa-9b2e-d863b8018667} - C:\Program Files\rapidbar\tbrap0.dll
                O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
                O2 - BHO: {63dedacb-b0b5-7649-b3f4-0550473e69a0} - {0a96e374-0550-4f3b-9467-5b0bbcaded36} - C:\WINDOWS\system32\vbltgkaj.dll (file missing)
                O2 - BHO: (no name) - {2609B626-DF69-4E1C-974D-16864618383E} - C:\WINDOWS\system32\byxwx.dll (file missing)
                O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
                O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
                O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
                O3 - Toolbar: rapidbar Toolbar - {a1873db0-6365-4faa-9b2e-d863b8018667} - C:\Program Files\rapidbar\tbrap0.dll
                O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
                O4 - HKLM\..\Run: [NECMFK] C:\Program Files\necmfk\necmfk.exe
                O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
                O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
                O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
                O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
                O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
                O4 - HKLM\..\Run: [BM874fdb05] Rundll32.exe "C:\WINDOWS\system32\kjfwynsb.dll",s
                O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" -H
                O4 - HKLM\..\Run: [smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
                O4 - HKLM\..\Run: [AudioCommander] C:\Program Files\Andrea Electronics\Andrea Electronics AudioCommander\AudioCommander.exe /tray
                O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
                O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
                O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
                O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
                O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
                O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
                O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
                O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
                O4 - HKCU\..\Run: [visionboard] C:\Program Files\VisionBoard\visionboardlauncher.exe
                O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
                O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
                O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Lokale service')
                O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Netwerkservice')
                O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
                O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
                O8 - Extra context menu item: DiaryOne: Save full text - C:\Program Files\DiaryOne\Script\fullcatcher.htm
                O8 - Extra context menu item: DiaryOne: Save selected text - C:\Program Files\DiaryOne\Script\catcher.htm
                O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
                O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
                O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
                O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
                O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
                O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
                O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
                O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
                O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\benl.htm
                O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
                O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
                O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
                O23 - Service: Planner voor Automatische LiveUpdate (Automatic LiveUpdate Scheduler) - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
                O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
                O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
                O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
                O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
                O23 - Service: Google Updater Service (gusvc) - Unknown owner - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (file missing)
                O23 - Service: iPod-service (iPod Service) - Unknown owner - C:\Program Files\iPod\bin\iPodService.exe (file missing)
                O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
                O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
                O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
                O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
                O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe

                --
                End of file - 9075 bytes

                Comment


                • #9
                  Start Hijackthis en vink alleen de volgende regels aan:
                  O2 - BHO: {63dedacb-b0b5-7649-b3f4-0550473e69a0} - {0a96e374-0550-4f3b-9467-5b0bbcaded36} - C:\WINDOWS\system32\vbltgkaj.dll (file missing)
                  O2 - BHO: (no name) - {2609B626-DF69-4E1C-974D-16864618383E} - C:\WINDOWS\system32\byxwx.dll (file missing)
                  O4 - HKLM\..\Run: [BM874fdb05] Rundll32.exe "C:\WINDOWS\system32\kjfwynsb.dll",s

                  Sluit alle openstaande vensters(behalve Hijackthis) en klik op de "Fix checked" knop.

                  Herstart je computer.

                  Post na de herstart een nieuw logje van Hijackthis ter controle en vertel of er nog problemen zijn

                  Comment


                  • #10
                    Logfile of Trend Micro HijackThis v2.0.2
                    Scan saved at 21:35:05, on 6/04/2008
                    Platform: Windows XP SP2 (WinNT 5.01.2600)
                    MSIE: Internet Explorer v7.00 (7.00.6000.16608)
                    Boot mode: Normal

                    Running processes:
                    C:\WINDOWS\System32\smss.exe
                    C:\WINDOWS\system32\winlogon.exe
                    C:\WINDOWS\system32\services.exe
                    C:\WINDOWS\system32\lsass.exe
                    C:\WINDOWS\System32\Ati2evxx.exe
                    C:\WINDOWS\system32\svchost.exe
                    C:\Program Files\Windows Defender\MsMpEng.exe
                    C:\WINDOWS\System32\svchost.exe
                    C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
                    C:\WINDOWS\Explorer.EXE
                    C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
                    C:\WINDOWS\system32\spoolsv.exe
                    C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
                    C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
                    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
                    C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
                    C:\WINDOWS\system32\HPZipm12.exe
                    C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
                    C:\WINDOWS\System32\svchost.exe
                    C:\WINDOWS\system32\wuauclt.exe
                    C:\Program Files\necmfk\necmfk.exe
                    C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
                    C:\Program Files\Apoint2K\Apoint.exe
                    C:\WINDOWS\AGRSMMSG.exe
                    C:\Program Files\Unlocker\UnlockerAssistant.exe
                    C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
                    C:\Program Files\Andrea Electronics\Andrea Electronics AudioCommander\AudioCommander.exe
                    C:\Program Files\iTunes\iTunesHelper.exe
                    C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
                    C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
                    C:\Program Files\QuickTime\QTTask.exe
                    C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
                    C:\Program Files\Windows Defender\MSASCui.exe
                    C:\Program Files\Apoint2K\HidFind.exe
                    C:\Program Files\Apoint2K\Apntex.exe
                    C:\WINDOWS\system32\ctfmon.exe
                    C:\Program Files\VisionBoard\visionboardlauncher.exe
                    C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
                    C:\Program Files\DAEMON Tools Lite\daemon.exe
                    C:\Program Files\iPod\bin\iPodService.exe
                    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

                    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.dufpy.com
                    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
                    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
                    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
                    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
                    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
                    R3 - URLSearchHook: rapidbar Toolbar - {a1873db0-6365-4faa-9b2e-d863b8018667} - C:\Program Files\rapidbar\tbrap0.dll
                    O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
                    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
                    O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
                    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
                    O3 - Toolbar: rapidbar Toolbar - {a1873db0-6365-4faa-9b2e-d863b8018667} - C:\Program Files\rapidbar\tbrap0.dll
                    O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
                    O4 - HKLM\..\Run: [NECMFK] C:\Program Files\necmfk\necmfk.exe
                    O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
                    O4 - HKLM\..\Run: [ATIPTA] C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
                    O4 - HKLM\..\Run: [ATIModeChange] Ati2mdxx.exe
                    O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
                    O4 - HKLM\..\Run: [AGRSMMSG] AGRSMMSG.exe
                    O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" -H
                    O4 - HKLM\..\Run: [smapp] C:\Program Files\Analog Devices\SoundMAX\SMTray.exe
                    O4 - HKLM\..\Run: [AudioCommander] C:\Program Files\Andrea Electronics\Andrea Electronics AudioCommander\AudioCommander.exe /tray
                    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
                    O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
                    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
                    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
                    O4 - HKLM\..\Run: [MessengerPlus3] "C:\Program Files\MessengerPlus! 3\MsgPlus.exe"
                    O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
                    O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
                    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
                    O4 - HKCU\..\Run: [visionboard] C:\Program Files\VisionBoard\visionboardlauncher.exe
                    O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
                    O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
                    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Lokale service')
                    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Netwerkservice')
                    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
                    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
                    O8 - Extra context menu item: DiaryOne: Save full text - C:\Program Files\DiaryOne\Script\fullcatcher.htm
                    O8 - Extra context menu item: DiaryOne: Save selected text - C:\Program Files\DiaryOne\Script\catcher.htm
                    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
                    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
                    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
                    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
                    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
                    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
                    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
                    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
                    O14 - IERESET.INF: START_PAGE_URL=file://C:\APPS\IE\offline\benl.htm
                    O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
                    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
                    O23 - Service: Ati HotKey Poller - Unknown owner - C:\WINDOWS\System32\Ati2evxx.exe
                    O23 - Service: Planner voor Automatische LiveUpdate (Automatic LiveUpdate Scheduler) - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
                    O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
                    O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
                    O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
                    O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
                    O23 - Service: Google Updater Service (gusvc) - Unknown owner - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe (file missing)
                    O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
                    O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
                    O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
                    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
                    O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
                    O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe

                    --
                    End of file - 8779 bytes


                    Hoi dank u wel voor het snelle hulp.
                    Het error bericht is weg ,niet gezien bij het opstarten.
                    wat was het probleem eigenlijk?
                    Ntunga

                    Comment


                    • #11
                      Je had een Vundo infectie.

                      Doe dit nog:
                      Je Java software is verouderd.
                      Oudere versies hebben lekken die malware de kans geeft om zich te installeren op je systeem.
                      Doe eerst deze stappen om Java te de-installeren en de nieuwere versie te installeren:
                      • Download Java Runtime Environment (JRE) 6u5 en bewaar het naar je Bureaublad.
                      • Sluit alle programma's die eventueel open zijn - Zeker je web browser!
                      • Ga dan naar Start > Configuratiescherm > Software en verwijder alle oudere versies van Java uit de Softwarelijst.
                      • Vink alles aan met Java Runtime Environment (JRE of J2SE) in de naam.
                      • Klik dan op Verwijderen of op de Wijzig/Verwijder knop.
                      • Herhaal dit tot alle oudere versies verdwenen zijn.
                      • Na het verwijderen van alle oudere versies, herstart je pc.
                      • Dubbelklik vervolgens op jre-6u5-windows-i586-p-s.exe op je Bureaublad om de nieuwste versie van Java te installeren.


                      Download ATF cleaner (mirror)(gemaakt door Atribune)

                      Belangrijk: Sluit al je browservensters(IE en/of Firefox en/of Opera) om de tool goed te kunnen laten werken.

                      Dubbelklik op ATF cleaner om het programma te starten.
                      Op het tabblad "Main", plaats je een vinkje bij Select All.
                      Klik op de knop Empty Selected.

                      Het volgende doen als je ook FireFox als browser hebt:
                      Klik op tabblad "Firefox", plaats een vinkje bij Select All.
                      Wil je de door Firefox opgeslagen wachtwoorden behouden, dan klik je in het venster dat verschijnt op "No".
                      (dit haalt het vinkje weer weg bij "Firefox saved passwords")
                      Klik op de knop Empty Selected.

                      Het volgende doen als je ook Opera als browser hebt:
                      Klik op tabblad "Opera", plaats een vinkje bij Select All.
                      Wil je de door Opera opgeslagen wachtwoorden behouden, dan klik je in het venster dat verschijnt op "No".
                      Klik op de knop Empty Selected.
                      Ga naar het tabblad "Main" en klik op de knop Exit om het programma af te sluiten.

                      Schakel Systeemherstel uit. Herstart de computer. Schakel Systeemherstel weer in.
                      Kijk hier hoe je je systeemherstel moet uitschakelen.
                      Hiermee verwijder je eventuele restanten van de infecties uit je systeemherstel.

                      Dan denk ik dat we klaar zijn

                      Comment


                      • #12
                        Hoi nog bedankt ,maar ik heb nog één probleem mijn welkoms en aanmeld venster.Iswel verdwenen .Je kent dat wel met verschillende gebruikers account.
                        Ik volg nog je raad op en ik ga slapen .Slaap wel!
                        Ntunga

                        Comment


                        • #13
                          Misschien zo:

                          Via je Configuratiescherm naar Gebruikersaccounts en hier klikken op "de manier hoe gebruikers zich aanmelden". Dan een vinkje plaatsen bij "Welkomsvenster gebruiken".

                          Comment


                          • #14
                            Rundll

                            Hoi ,
                            nog bedankt pc is in orde .Alles.
                            ntunga

                            Comment


                            • #15
                              Graag gedaan hoor

                              Comment

                              Sorry, you are not authorized to view this page
                              Working...
                              X