Mededeling

Collapse
No announcement yet.

c:\windows\systeem32:winsock32.exe

Collapse
X
  •  
  • Filter
  • Tijd
  • Show
Clear All
new posts

  • c:\windows\systeem32:winsock32.exe

    hoi ik krijch als ik mijn pc opstart deze melding

    windows verkenner

    c:\windows\systeem32:winsock32.exe is niet toegankelijk

    mapnaam is ongeldig

    wie kan mij helpen

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 16:36:17, on 11-5-2008
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16640)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\ehome\ehtray.exe
    C:\WINDOWS\system32\rundll32.exe
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\WINDOWS\RTHDCPL.EXE
    C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
    C:\Program Files\Eset\nod32kui.exe
    C:\Program Files\Common Files\Logitech\LComMgr\Communications_Helper.exe
    C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
    C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe
    C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
    C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe
    C:\Program Files\Lexmark 1200 Series\lxczbmon.exe
    C:\WINDOWS\system32\LEXBCES.EXE
    C:\WINDOWS\system32\LEXPPS.EXE
    C:\WINDOWS\system32\spoolsv.exe
    c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Skype\Phone\Skype.exe
    C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    C:\Program Files\Windows Media Player\WMPNSCFG.exe
    C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
    C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
    C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
    C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
    C:\WINDOWS\eHome\ehRecvr.exe
    C:\WINDOWS\eHome\ehSched.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
    C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe
    C:\Program Files\Eset\nod32krn.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\Canon\CAL\CALMAIN.exe
    C:\Program Files\Skype\Plugin Manager\skypePM.exe
    C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
    C:\WINDOWS\eHome\ehmsas.exe
    C:\WINDOWS\system32\dllhost.exe
    C:\Program Files\Logitech\QuickCam10\COCIManager.exe
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.zeelandnet.nl/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
    O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
    O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
    O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
    O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
    O4 - HKLM\..\Run: [ATICCC] "c:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
    O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
    O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32"
    O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
    O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\Logitech\LComMgr\Communications_Helper.exe"
    O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide
    O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe"
    O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
    O4 - HKLM\..\Run: [Lexmark 1200 Series] "C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [winsock32] C:\WINDOWS\system32:winsock32.exe
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
    O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
    O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
    O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
    O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: Bluetooth Manager.lnk = ?
    O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
    O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
    O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O18 - Protocol: bw+0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw+0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw-0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw00s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw10s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw20s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw30s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw40s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw50s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw60s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw70s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw80s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bw90s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwa0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwb0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwc0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwd0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwe0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwf0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
    O18 - Protocol: bwg0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwg0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwh0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwi0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwj0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwk0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwl0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwm0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwn0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwo0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwp0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwq0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwr0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bws0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwt0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwu0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwv0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bww0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwx0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwy0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: bwz0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
    O18 - Protocol: offline-8876480 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
    O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
    O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
    O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\Logitech\SrvLnch\SrvLnch.exe
    O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
    O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
    O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe

    --
    End of file - 21501 bytes
    Last edited by daidai; 11-05-08, 16:36.

  • #2
    Sluit alle open vensters.
    Start HijackThis nog een keer en plaats een vinkje bij de volgende items:

    O4 - HKLM\..\Run: [winsock32] C:\WINDOWS\system32:winsock32.exe

    Klik daarna op "Fix checked" en sluit HijackThis af.

    Herstart de computer.
    Start HijackThis opnieuw, maak een nieuwe log en post deze.

    Comment


    • #3
      hoi marckie hier het logje

      Logfile of Trend Micro HijackThis v2.0.2
      Scan saved at 18:06:49, on 11-5-2008
      Platform: Windows XP SP2 (WinNT 5.01.2600)
      MSIE: Internet Explorer v7.00 (7.00.6000.16640)
      Boot mode: Normal

      Running processes:
      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
      C:\WINDOWS\system32\Ati2evxx.exe
      C:\WINDOWS\Explorer.EXE
      C:\WINDOWS\ehome\ehtray.exe
      C:\WINDOWS\system32\rundll32.exe
      C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
      C:\WINDOWS\RTHDCPL.EXE
      C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
      C:\Program Files\Eset\nod32kui.exe
      C:\Program Files\Common Files\Logitech\LComMgr\Communications_Helper.exe
      C:\Program Files\Logitech\QuickCam10\QuickCam10.exe
      C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe
      C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
      C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe
      C:\Program Files\Lexmark 1200 Series\lxczbmon.exe
      C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe
      C:\WINDOWS\system32\ctfmon.exe
      C:\Program Files\Skype\Phone\Skype.exe
      C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
      C:\Program Files\Windows Media Player\WMPNSCFG.exe
      C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe
      C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
      C:\WINDOWS\system32\LEXBCES.EXE
      C:\WINDOWS\system32\LEXPPS.EXE
      C:\WINDOWS\system32\spoolsv.exe
      c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
      C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
      C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
      C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
      C:\WINDOWS\eHome\ehRecvr.exe
      C:\WINDOWS\eHome\ehSched.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
      C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe
      C:\Program Files\Eset\nod32krn.exe
      C:\WINDOWS\system32\svchost.exe
      C:\Program Files\Canon\CAL\CALMAIN.exe
      C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
      C:\WINDOWS\eHome\ehmsas.exe
      C:\Program Files\Skype\Plugin Manager\skypePM.exe
      C:\WINDOWS\system32\dllhost.exe
      C:\Program Files\Logitech\QuickCam10\COCIManager.exe
      C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
      C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
      C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

      R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.zeelandnet.nl/
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
      R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
      R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
      R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
      O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
      O2 - BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
      O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
      O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
      O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
      O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
      O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
      O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
      O4 - HKLM\..\Run: [ehTray] C:\WINDOWS\ehome\ehtray.exe
      O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent
      O4 - HKLM\..\Run: [ATICCC] "c:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
      O4 - HKLM\..\Run: [High Definition Audio Property Page Shortcut] HDAShCut.exe
      O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
      O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
      O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
      O4 - HKLM\..\Run: [IMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32"
      O4 - HKLM\..\Run: [nod32kui] "C:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
      O4 - HKLM\..\Run: [LogitechCommunicationsManager] "C:\Program Files\Common Files\Logitech\LComMgr\Communications_Helper.exe"
      O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide
      O4 - HKLM\..\Run: [LVCOMSX] "C:\Program Files\Common Files\Logitech\LComMgr\LVComSX.exe"
      O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
      O4 - HKLM\..\Run: [Lexmark 1200 Series] "C:\Program Files\Lexmark 1200 Series\lxczbmgr.exe"
      O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
      O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe
      O4 - HKLM\..\Run: [NBKeyScan] "C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe"
      O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
      O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
      O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
      O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
      O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
      O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020
      O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service')
      O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice')
      O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
      O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
      O4 - Global Startup: Bluetooth Manager.lnk = ?
      O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
      O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
      O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
      O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
      O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
      O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
      O9 - Extra button: Skype - {77BF5300-1474-4EC7-9980-D32B190E9B07} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll
      O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
      O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
      O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
      O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
      O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
      O18 - Protocol: bw+0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw+0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw-0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw-0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw00 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw00s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw10 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw10s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw20 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw20s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw30 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw30s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw40 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw40s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw50 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw50s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw60 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw60s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw70 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw70s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw80 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw80s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw90 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bw90s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwa0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwa0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwb0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwb0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwc0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwc0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwd0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwd0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwe0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwe0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwf0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwf0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
      O18 - Protocol: bwg0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwg0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwh0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwh0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwi0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwi0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwj0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwj0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwk0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwk0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwl0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwl0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwm0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwm0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwn0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwn0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwo0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwo0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwp0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwp0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwq0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwq0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwr0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwr0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bws0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bws0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwt0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwt0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwu0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwu0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwv0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwv0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bww0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bww0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwx0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwx0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwy0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwy0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwz0 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: bwz0s - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
      O18 - Protocol: offline-8876480 - {32312BCB-1465-45FB-8685-9B6E465D6013} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
      O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
      O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
      O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
      O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
      O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
      O23 - Service: Logitech Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logitech\lvmvfm\LVPrcSrv.exe
      O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\Logitech\SrvLnch\SrvLnch.exe
      O23 - Service: Nero BackItUp Scheduler 3 - Nero AG - C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
      O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
      O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - C:\Program Files\Eset\nod32krn.exe

      --
      End of file - 21600 bytes

      Comment


      • #4
        Ziet er goed uit. Zijn er nog problemen momenteel?

        Comment


        • #5
          nee dit probleem is opgelost , maar heb nog wel 2 andere problemen deze staan onder een andere sectie , hartelijk dank voor je hulp
          groeten david

          Comment


          • #6
            Graag gedaan David.

            Best dat je dit toch nog even doet:
            Ga naar Kaspersky Online Scanner en klik onderaan op Accept.
            Deze scanner werkt uitsluitend met Internet Explorer 6 en hoger !!
            Het zou kunnen dat je aan de bovenkant van je scherm op een gele balk moet klikken om ActiveX bestanden die Kaspersky nodig heeft om te kunnen scannen te downloaden. Sta dit toe.
            • Het programma begint nu met het downloaden van de laatste definitie files. Hierna klik je op Next.
            • Klik vervolgens op de toets Scan Settings.
              Onder de tekst Scan using the following antivirus database: kies je de tweede mogelijkheid: extended - protect your .....
              Onder de tekst Scan options: zet je de twee vinkjes: Scan Archives .... en Scan Mail Bases ....
            • Klik dan op de toets OK.
            • Start nu het scannen door op de tekst My Computer te klikken.


              Hou er rekening mee dat deze scan een tijdje in beslag neemt.
            • Eenmaal de scan volledig is krijg je de gelegenheid om het scanrapport op te slaan.
              Klik op de toets Save Report As te klikken. Sla het rapport op je Bureaublad op met als naam kavscan.txt

            Post dit rapport in je volgende bericht.

            Comment


            • #7
              hier het raport


              -------------------------------------------------------------------------------
              KASPERSKY ONLINE SCANNER REPORT
              Tuesday, May 13, 2008 10:09:01 PM
              Operating System: Microsoft Windows XP Professional, Service Pack 2 (Build 2600)
              Kaspersky Online Scanner version: 5.0.98.0
              Kaspersky Anti-Virus database last update: 13/05/2008
              Kaspersky Anti-Virus database records: 770423
              -------------------------------------------------------------------------------

              Scan Settings:
              Scan using the following antivirus database: extended
              Scan Archives: true
              Scan Mail Bases: true

              Scan Target - My Computer:
              C:\
              D:\

              Scan Statistics:
              Total number of scanned objects: 67954
              Number of viruses found: 4
              Number of infected objects: 9
              Number of suspicious objects: 0
              Duration of the scan process: 00:54:23

              Infected Object Name / Virus Name / Last Action
              C:\Documents and Settings\All Users\Application Data\Microsoft\eHome\logs\ehRecvr.log Object is locked skipped
              C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0.dat Object is locked skipped
              C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1.dat Object is locked skipped
              C:\Documents and Settings\All Users\Application Data\Nero\Nero8\Nero BackItUp\Cache\NeroBackItUpScheduler3.log Object is locked skipped
              C:\Documents and Settings\All Users\DRM\Cache\Indiv01.tmp Object is locked skipped
              C:\Documents and Settings\All Users\DRM\drmstore.hds Object is locked skipped
              C:\Documents and Settings\david iljazovic\Application Data\Skype\aniaciszak1\call256.dbb Object is locked skipped
              C:\Documents and Settings\david iljazovic\Application Data\Skype\aniaciszak1\callmember256.dbb Object is locked skipped
              C:\Documents and Settings\david iljazovic\Application Data\Skype\aniaciszak1\chat512.dbb Object is locked skipped
              C:\Documents and Settings\david iljazovic\Application Data\Skype\aniaciszak1\chatmember256.dbb Object is locked skipped
              C:\Documents and Settings\david iljazovic\Application Data\Skype\aniaciszak1\chatmsg256.dbb Object is locked skipped
              C:\Documents and Settings\david iljazovic\Application Data\Skype\aniaciszak1\chatmsg512.dbb Object is locked skipped
              C:\Documents and Settings\david iljazovic\Application Data\Skype\aniaciszak1\contactgroup256.dbb Object is locked skipped
              C:\Documents and Settings\david iljazovic\Application Data\Skype\aniaciszak1\dyncontent\bundle.dat Object is locked skipped
              C:\Documents and Settings\david iljazovic\Application Data\Skype\aniaciszak1\index2.dat Object is locked skipped
              C:\Documents and Settings\david iljazovic\Application Data\Skype\aniaciszak1\profile256.dbb Object is locked skipped
              C:\Documents and Settings\david iljazovic\Application Data\Skype\aniaciszak1\user1024.dbb Object is locked skipped
              C:\Documents and Settings\david iljazovic\Application Data\Skype\aniaciszak1\user16384.dbb Object is locked skipped
              C:\Documents and Settings\david iljazovic\Application Data\Skype\aniaciszak1\user256.dbb Object is locked skipped
              C:\Documents and Settings\david iljazovic\Application Data\Skype\aniaciszak1\voicemail256.dbb Object is locked skipped
              C:\Documents and Settings\david iljazovic\Cookies\index.dat Object is locked skipped
              C:\Documents and Settings\david iljazovic\Local Settings\Application Data\Ahead\Nero Home\bl.db Object is locked skipped
              C:\Documents and Settings\david iljazovic\Local Settings\Application Data\Ahead\Nero Home\is2.db Object is locked skipped
              C:\Documents and Settings\david iljazovic\Local Settings\Application Data\ApplicationHistory\cli.exe.c88dbd71.ini.inuse Object is locked skipped
              C:\Documents and Settings\david iljazovic\Local Settings\Application Data\Identities\{B2A02AA6-1445-4D54-AFF0-99B7F487184D}\Microsoft\Outlook Express\Folders.dbx Object is locked skipped
              C:\Documents and Settings\david iljazovic\Local Settings\Application Data\Identities\{B2A02AA6-1445-4D54-AFF0-99B7F487184D}\Microsoft\Outlook Express\Offline.dbx Object is locked skipped
              C:\Documents and Settings\david iljazovic\Local Settings\Application Data\Identities\{B2A02AA6-1445-4D54-AFF0-99B7F487184D}\Microsoft\Outlook Express\Pop3uidl.dbx Object is locked skipped
              C:\Documents and Settings\david iljazovic\Local Settings\Application Data\Identities\{B2A02AA6-1445-4D54-AFF0-99B7F487184D}\Microsoft\Outlook Express\Postvak IN.dbx Object is locked skipped
              C:\Documents and Settings\david iljazovic\Local Settings\Application Data\Microsoft\Media Player\CurrentDatabase_360.wmdb Object is locked skipped
              C:\Documents and Settings\david iljazovic\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
              C:\Documents and Settings\david iljazovic\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
              C:\Documents and Settings\david iljazovic\Local Settings\Geschiedenis\History.IE5\index.dat Object is locked skipped
              C:\Documents and Settings\david iljazovic\Local Settings\Geschiedenis\History.IE5\MSHist012008051320080514\index.dat Object is locked skipped
              C:\Documents and Settings\david iljazovic\Local Settings\Temp\NERO14399\Toolbar.exe Infected: not-a-virus:AdTool.Win32.MyWebSearch.bm skipped
              C:\Documents and Settings\david iljazovic\Local Settings\Temp\Perflib_Perfdata_14fc.dat Object is locked skipped
              C:\Documents and Settings\david iljazovic\Local Settings\Temp\Perflib_Perfdata_150c.dat Object is locked skipped
              C:\Documents and Settings\david iljazovic\Local Settings\Temp\Perflib_Perfdata_6a0.dat Object is locked skipped
              C:\Documents and Settings\david iljazovic\Local Settings\Temp\setup\CleanStart.exe/Toolbar.exe Infected: not-a-virus:AdTool.Win32.MyWebSearch.bm skipped
              C:\Documents and Settings\david iljazovic\Local Settings\Temp\setup\CleanStart.exe 7-Zip: infected - 1 skipped
              C:\Documents and Settings\david iljazovic\Local Settings\Temporary Internet Files\AntiPhishing\B3BB5BBA-E7D5-40AB-A041-A5B1C0B26C8F.dat Object is locked skipped
              C:\Documents and Settings\david iljazovic\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
              C:\Documents and Settings\david iljazovic\Mijn documenten\Downloads\Nero 8.4.0.0 Ultra Edition\Nero 8.4.0.0 Ultra Edition.exe/data0003 Infected: not-a-virus:PSWTool.Win32.FirePass.r skipped
              C:\Documents and Settings\david iljazovic\Mijn documenten\Downloads\Nero 8.4.0.0 Ultra Edition\Nero 8.4.0.0 Ultra Edition.exe/data0004 Infected: not-a-virus:PSWTool.Win32.IEPassView.e skipped
              C:\Documents and Settings\david iljazovic\Mijn documenten\Downloads\Nero 8.4.0.0 Ultra Edition\Nero 8.4.0.0 Ultra Edition.exe/data0006 Infected: Trojan.Win32.Inject.alo skipped
              C:\Documents and Settings\david iljazovic\Mijn documenten\Downloads\Nero 8.4.0.0 Ultra Edition\Nero 8.4.0.0 Ultra Edition.exe/data0007/Toolbar.exe Infected: not-a-virus:AdTool.Win32.MyWebSearch.bm skipped
              C:\Documents and Settings\david iljazovic\Mijn documenten\Downloads\Nero 8.4.0.0 Ultra Edition\Nero 8.4.0.0 Ultra Edition.exe/data0007 Infected: not-a-virus:AdTool.Win32.MyWebSearch.bm skipped
              C:\Documents and Settings\david iljazovic\Mijn documenten\Downloads\Nero 8.4.0.0 Ultra Edition\Nero 8.4.0.0 Ultra Edition.exe NSIS: infected - 5 skipped
              C:\Documents and Settings\david iljazovic\NTUSER.DAT Object is locked skipped
              C:\Documents and Settings\david iljazovic\ntuser.dat.LOG Object is locked skipped
              C:\Documents and Settings\LocalService\Cookies\index.dat Object is locked skipped
              C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
              C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
              C:\Documents and Settings\LocalService\Local Settings\Geschiedenis\History.IE5\index.dat Object is locked skipped
              C:\Documents and Settings\LocalService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
              C:\Documents and Settings\LocalService\NTUSER.DAT Object is locked skipped
              C:\Documents and Settings\LocalService\ntuser.dat.LOG Object is locked skipped
              C:\Documents and Settings\NetworkService\Cookies\index.dat Object is locked skipped
              C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat Object is locked skipped
              C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG Object is locked skipped
              C:\Documents and Settings\NetworkService\Local Settings\Geschiedenis\History.IE5\index.dat Object is locked skipped
              C:\Documents and Settings\NetworkService\Local Settings\Temporary Internet Files\Content.IE5\index.dat Object is locked skipped
              C:\Documents and Settings\NetworkService\NTUSER.DAT Object is locked skipped
              C:\Documents and Settings\NetworkService\ntuser.dat.LOG Object is locked skipped
              C:\Program Files\ESET\cache\CACHE.NDB Object is locked skipped
              C:\Program Files\ESET\logs\virlog.dat Object is locked skipped
              C:\Program Files\ESET\logs\warnlog.dat Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\BWDocMap.pht Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\BWInfopakMap.pht Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\chandir.dat Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\chandir.idx Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\chn.dat Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\chn.idx Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\D0000000.FCS Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\inuse.txt Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\L0000002.FCS Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\main.log Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\prs.dat Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\prs.idx Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\prs_die.dat Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\prs_die.idx Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\prs_dnd.dat Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\prs_dnd.idx Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\prs_ext.dat Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\prs_ext.idx Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\prs_rcv.dat Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\prs_rcv.idx Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\storydb.dat Object is locked skipped
              C:\Program Files\Logitech\Desktop Messenger\8876480\Users\david iljazovic\Data\storydb.idx Object is locked skipped
              C:\Program Files\Nero\Nero8\Nero BackItUp\BIU1.txt Object is locked skipped
              C:\System Volume Information\MountPointManagerRemoteDatabase Object is locked skipped
              C:\System Volume Information\_restore{4C7F8487-696B-40EA-B8EF-ED8B30379CC8}\RP61\change.log Object is locked skipped
              C:\WINDOWS\Debug\PASSWD.LOG Object is locked skipped
              C:\WINDOWS\Registration\{02D4B3F1-FD88-11D1-960D-00805FC79235}.{0DEA8010-57C0-4173-9F9C-F39188379E93}.crmlog Object is locked skipped
              C:\WINDOWS\SchedLgU.Txt Object is locked skipped
              C:\WINDOWS\SoftwareDistribution\ReportingEvents.log Object is locked skipped
              C:\WINDOWS\Sti_Trace.log Object is locked skipped
              C:\WINDOWS\system32\CatRoot2\edb.log Object is locked skipped
              C:\WINDOWS\system32\CatRoot2\tmp.edb Object is locked skipped
              C:\WINDOWS\system32\config\ACEEvent.evt Object is locked skipped
              C:\WINDOWS\system32\config\AppEvent.Evt Object is locked skipped
              C:\WINDOWS\system32\config\DEFAULT Object is locked skipped
              C:\WINDOWS\system32\config\default.LOG Object is locked skipped
              C:\WINDOWS\system32\config\Internet.evt Object is locked skipped
              C:\WINDOWS\system32\config\Media Ce.evt Object is locked skipped
              C:\WINDOWS\system32\config\ODiag.evt Object is locked skipped
              C:\WINDOWS\system32\config\OSession.evt Object is locked skipped
              C:\WINDOWS\system32\config\SAM Object is locked skipped
              C:\WINDOWS\system32\config\SAM.LOG Object is locked skipped
              C:\WINDOWS\system32\config\SecEvent.Evt Object is locked skipped
              C:\WINDOWS\system32\config\SECURITY Object is locked skipped
              C:\WINDOWS\system32\config\SECURITY.LOG Object is locked skipped
              C:\WINDOWS\system32\config\SOFTWARE Object is locked skipped
              C:\WINDOWS\system32\config\software.LOG Object is locked skipped
              C:\WINDOWS\system32\config\SysEvent.Evt Object is locked skipped
              C:\WINDOWS\system32\config\SYSTEM Object is locked skipped
              C:\WINDOWS\system32\config\system.LOG Object is locked skipped
              C:\WINDOWS\system32\h323log.txt Object is locked skipped
              C:\WINDOWS\system32\wbem\Repository\FS\INDEX.BTR Object is locked skipped
              C:\WINDOWS\system32\wbem\Repository\FS\INDEX.MAP Object is locked skipped
              C:\WINDOWS\system32\wbem\Repository\FS\MAPPING.VER Object is locked skipped
              C:\WINDOWS\system32\wbem\Repository\FS\MAPPING1.MAP Object is locked skipped
              C:\WINDOWS\system32\wbem\Repository\FS\MAPPING2.MAP Object is locked skipped
              C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.DATA Object is locked skipped
              C:\WINDOWS\system32\wbem\Repository\FS\OBJECTS.MAP Object is locked skipped
              C:\WINDOWS\wiadebug.log Object is locked skipped
              C:\WINDOWS\wiaservc.log Object is locked skipped
              C:\WINDOWS\WindowsUpdate.log Object is locked skipped

              Scan process completed.

              Comment


              • #8
                Ziet er goed uit.

                Verwijder alle bestanden in de map c:\windows\prefetch
                Opruiming van cookies en tijdelijke internetbestanden:
                Sluit alle open vensters van Internet Explorer.
                Ga naar Start en klik op "Configuratiescherm" en dubbelklik op "Internet-opties".
                Het venster "Eigenschappen voor Internet" zal openen.
                Ga naar het tabblad "Algemeen".
                Bij "Browsergeschiedenis" klik je op de knop "Verwijderen".
                Een nieuw venster zal open: Browsergeschiedenis verwijderen.
                Klik onderaan op de knop "Alles verwijderen". In het venster dat nu opent plaats je een vinkje bij "Ook bestanden en instellingen die door invoegtoepassingen zijn opgeslagen, verwijderen".
                Klik op Ja.
                Dit verwijdert de tijdelijke internetbestanden, de cookies, de surfgeschiedenis, de opgeslagen informatie die je in formulieren hebt opgegeven en de opgeslagen wachtwoorden die automatisch worden ingevuld als je je aanmeldt bij een website die je eerder hebt bezocht.
                Indien je deze laatste 2 (formuliergegevens en wachtwoorden) liever niet verwijderd, dan klik je niet op alles verwijderen maar enkel op deze:
                - bij Tijdelijke internetbestanden op Bestanden verwijderen.
                - bij Cookies op Cookies verwijderen.
                - bij Geschiedenis op Geschiedenis verwijderen.

                Blokkeer ook nog de indirecte of third party cookies:
                Op het tabblad Privacy klik je op de knop geavanceerd.
                Plaats een vinkje bij "Automatische cookie-verwerking opheffen".
                Bij Directe cookies zorg je dat "Accepteren" aangeduid is.
                Bij Indirecte cookies kies je voor "Blokkeren".
                Klik op OK.
                Wanneer dit gebeurd is, sluit je het venster "Eigenschappen voor Internet".

                Opruiming van andere tijdelijke mappen en de prullenbak leegmaken:
                Sluit alle open vensters.
                Ga naar Start, kies Uitvoeren en tik in: cleanmgr
                Druk daarna op OK en Schijfopruiming zal gestart worden.
                Indien je meerdere partities hebt kies je de partitie waarop Windows geïnstalleerd is.
                Laat nu je systeem scannen op bestanden die verwijderd kunnen worden.
                Wanneer het overzicht verschijnt zorg je dat enkel de volgende items aangevinkt zijn:
                - Tijdelijke internetbestanden
                - Prullenbak
                - Tijdelijke bestanden
                Klik daarna op OK.



                Start hijackthis. Klik op Config - Misc tools.
                Klik op open ADS-Spy. Klik op Scan.
                Wordt er wat gevonden, dan sla je de log op en post je de inhoud hier.

                Comment


                • #9
                  heb ik gedaan niks gevonden , zag wel dat bij backup in hijack c:\windows\systeem32:winsock32.exe er nog staat moet ik deze verweideren of laten staan

                  Comment


                  • #10
                    De backups mag je verwijderen.

                    Best dat je nog even alle bestaande systeemherstelpunten wist:
                    Schakel Systeemherstel uit. Herstart de computer. Schakel Systeemherstel weer in.
                    Systeemherstel uitschakelen.

                    Meer info over hoe je een nieuwe infectie kan voorkomen vind je hier en hier.

                    De status van deze thread staat op opgelost.
                    Indien er niet meer gereageerd wordt, zal binnen een 3-tal dagen deze thread automatisch verplaatst worden naar de sectie Opgeloste hijackthislogs en is een reactie niet meer mogelijk. Dit om het forum netjes en overzichtelijk te houden.
                    Blijkt dat er toch nog problemen zijn, en je wil weer reageren in dit topic, dan stuur je me een privé bericht met verzoek om heropening.

                    Happy surfing again.

                    Comment

                    Sorry, you are not authorized to view this page
                    Working...
                    X