CPU spikes tijdens games

[spoorzoeker]

Hallo,

Ik heb soms last van CPU spikes vooral tijdens het spelen van games, vroeger was dit niet zo, ik heb de grafische instellingen al wat verminderd. Maar dit helpt niet. Zouden jullie eens kunnen kijken naar deze log?

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:45:32, on 11-6-2011
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\android-sdk-windows\platform-tools\adb.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\AVG\AVG10\avgtray.exe
C:\Program Files (x86)\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe
C:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
C:\Users\Stijn\Downloads\HijackThis.exe
C:\Program Files (x86)\Winamp\winamp.exe
C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\DllHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN | Hotmail | Messenger | Nieuws, sport, entertainment, video, lifestyle, auto en nog veel meer, dat is MSN !
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN | Hotmail | Messenger | Nieuws, sport, entertainment, video, lifestyle, auto en nog veel meer, dat is MSN !
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN | Hotmail | Messenger | Nieuws, sport, entertainment, video, lifestyle, auto en nog veel meer, dat is MSN !
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REGystem.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files (x86)\AVG\AVG10\avgtray.exe
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [Google Update] "C:\Users\Stijn\AppData\Local\Google\Update\Google Update.exe" /c
O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\Windows\SysWOW64\Macromed\Flash\FlashUtil10q_Pl ugin.exe -update plugin
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~3\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Sothink SWF Catcher - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
O9 - Extra 'Tools' menuitem: Sothink SWF Catcher - {E19ADC6E-3909-43E4-9A89-B7B676377EE3} - C:\Program Files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter hijack: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG10\avgwdsvc.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe
O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Macromedia Licensing Service - Unknown owner - C:\Program Files (x86)\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: uvnc_service - UltraVNC - C:\Program Files (x86)\UltraVNC\WinVNC.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: Cisco AnyConnect VPN Agent (vpnagent) - Cisco Systems, Inc. - C:\Program Files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8755 bytes

[Juisterr]

Spoiler:

Download ComboFix van één van deze locaties:

Link 1
Link 2

* BELANGRIJK !!! Sla ComboFix.exe op je Bureaublad op.
>>Hier<< kunt u lezen hoe u Combofix dient te gebruiken.
http://www.imgdumper.nl/uploads4/4de...3-Combofix.JPG

1. Schakel alle antivirus- en antispywareprogramma's uit, want anders kunnen ze misschien conflicteren met ComboFix.

* (hier of hier staat een handleiding over hoe je deze kan uitschakelen

2. Het kan voorkomen dat de computer meerdere malen opnieuw gestart moet worden, dit is normaal.
3. Dubbelklik op "Combofix.exe" om de tool te starten.
4. Klik niet in het scherm van Combofix als deze actief is, hierdoor kan de 'tool' vastlopen.

* Noot !!! Als er een error wordt getoond met de melding "Illegal operation attempted on a registery key that has been marked for deletion." herstart dan de computer.

5. Wanneer ComboFix klaar is, zal het het een logbestand voor je maken. Post de inhoud van dit logbestand (te vinden als C:\ComboFix.txt) in je volgende bericht.

[spoorzoeker]

Alvast bedankt, hier de log:

ComboFix 11-06-17.04 - Stijn 18-06-2011 16:20:44.1.2 - x64
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.31.1043.18.4094.2611 [GMT 2:00]
Gestart vanuit: c:\users\Stijn\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((( Bestanden Gemaakt van 2011-05-18 to 2011-06-18 ))))))))))))))))))))))))))))))
.
.
2011-06-18 14:30 . 2011-06-18 14:30 -------- d-----w- c:\users\Stijn\AppData\Local\temp
2011-06-18 14:30 . 2011-06-18 14:30 -------- d-----w- c:\users\Gast\AppData\Local\temp
2011-06-18 14:30 . 2011-06-18 14:30 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-06-17 08:10 . 2011-05-09 22:00 8718160 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E868021B-1083-4FBD-BD88-2C0A1415C608}\mpengine.dll
2011-06-16 22:03 . 2011-06-18 10:41 -------- d-----w- c:\users\Stijn\AppData\Local\{FC70C632-3DC5-4F0F-B2DF-F8FF20ACE3E1}
2011-06-16 11:40 . 2011-06-16 11:40 -------- d-----w- C:\CISCO_CCNA
2011-06-16 10:03 . 2011-06-16 10:03 -------- d-----w- c:\users\Stijn\AppData\Local\{3DA83CDA-55A0-4263-9725-3DF53160FBCF}
2011-06-15 10:23 . 2010-12-20 16:59 847360 ----a-w- c:\windows\system32\oleaut32.dll
2011-06-14 21:41 . 2011-06-15 22:03 -------- d-----w- c:\users\Stijn\AppData\Local\{1DCF854A-E663-403A-A043-9DE4D7780CBF}
2011-06-14 09:41 . 2011-06-14 09:41 -------- d-----w- c:\users\Stijn\AppData\Local\{92BD3AFE-5739-4DBC-8B26-4325AE66D72A}
2011-06-13 21:41 . 2011-06-13 21:41 -------- d-----w- c:\users\Stijn\AppData\Local\{A781CEB4-58DB-4FF1-B42D-1AD40F5B1127}
2011-06-12 21:41 . 2011-06-13 09:41 -------- d-----w- c:\users\Stijn\AppData\Local\{922BEC98-778A-4EAF-80B4-A944D7AC4E15}
2011-06-11 21:40 . 2011-06-12 09:41 -------- d-----w- c:\users\Stijn\AppData\Local\{6EAD1752-CC57-43D1-B255-A0C7B46B7CB1}
2011-06-10 07:39 . 2011-06-11 09:16 -------- d-----w- c:\users\Stijn\AppData\Local\{626AEDCF-35E5-42B2-9354-8D2D67A952D4}
2011-06-09 16:15 . 2011-06-09 16:15 -------- d-----w- c:\users\Stijn\AppData\Roaming\NVIDIA
2011-06-09 16:13 . 2011-06-09 16:13 -------- d-----w- c:\windows\C5C1C0F0D62F4DBF81D4D7EF397C228B.TMP
2011-06-09 16:13 . 2011-06-09 16:13 419840 ----a-w- c:\windows\system32\wrap_oal.dll
2011-06-09 16:13 . 2011-06-09 16:13 413696 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2011-06-09 16:13 . 2011-06-09 16:13 133632 ----a-w- c:\windows\system32\OpenAL32.dll
2011-06-09 16:13 . 2011-06-09 16:13 110592 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2011-06-09 16:13 . 2011-06-09 16:13 -------- d-----w- c:\program files (x86)\OpenAL
2011-06-09 16:13 . 2011-06-09 16:13 -------- d-----w- c:\program files (x86)\NeutronGames
2011-06-07 19:37 . 2011-06-07 19:37 9651624 ----a-r- c:\users\Stijn\AppData\Roaming\Microsoft\Installer \{0061E1BA-D31C-4701-9B23-029763C7CE7E}\PhotoSceneEditor.exe
2011-06-07 19:37 . 2011-06-07 19:37 -------- d-----w- c:\users\Stijn\AppData\Roaming\Autodesk
2011-06-07 19:37 . 2011-06-07 19:37 -------- d-----w- c:\program files (x86)\Autodesk
2011-06-07 10:35 . 2011-06-07 10:35 103864 ----a-w- c:\program files (x86)\Mozilla Firefox\plugins\nppdf32.dll
2011-06-07 10:35 . 2011-06-07 10:35 103864 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\nppdf32.dll
2011-06-02 21:09 . 2011-06-08 22:50 -------- d-----w- c:\users\Stijn\AppData\Local\{AB16D961-2751-41DD-A610-CB6E3F426841}
2011-05-31 21:09 . 2011-06-02 09:09 -------- d-----w- c:\users\Stijn\AppData\Local\{5B8F552B-CE62-46B2-A412-043BA1183197}
2011-05-31 11:26 . 2011-06-12 11:40 404640 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-05-29 18:25 . 2011-05-31 09:09 -------- d-----w- c:\users\Stijn\AppData\Local\{74183315-2FBD-476B-8D70-456AB43CC9C9}
2011-05-29 18:05 . 2011-05-29 18:05 -------- d-----w- c:\users\Stijn\AppData\Local\{E030FB61-0848-406C-8F7D-84B0EFA70FB8}
2011-05-28 09:31 . 2011-05-28 21:31 -------- d-----w- c:\users\Stijn\AppData\Local\{9011164A-D867-4A1B-A272-D7C45AD9FCA1}
2011-05-28 09:05 . 2010-10-06 17:32 753664 ------w- c:\users\Stijn\AppData\Roaming\Microsoft\Windows\T emplates\2052.msi
2011-05-28 09:05 . 2010-10-06 17:32 753664 ------w- c:\users\Stijn\AppData\Roaming\Microsoft\Windows\T emplates\1041.msi
2011-05-28 09:05 . 2010-10-06 17:32 753664 ------w- c:\users\Stijn\AppData\Roaming\Microsoft\Windows\T emplates\1036.msi
2011-05-28 09:05 . 2010-10-06 17:32 753664 ------w- c:\users\Stijn\AppData\Roaming\Microsoft\Windows\T emplates\1033.msi
2011-05-28 09:05 . 2010-10-06 17:32 753664 ------w- c:\users\Stijn\AppData\Roaming\Microsoft\Windows\T emplates\1031.msi
2011-05-28 09:05 . 2010-10-06 17:32 753664 ------w- c:\users\Stijn\AppData\Roaming\Microsoft\Windows\T emplates\1028.msi
2011-05-27 21:31 . 2011-05-27 21:31 -------- d-----w- c:\users\Stijn\AppData\Local\{7FC39538-4D5F-492C-B444-65F4EB6CCB0D}
2011-05-26 19:26 . 2011-05-27 09:30 -------- d-----w- c:\users\Stijn\AppData\Local\{90995E88-E197-4BCD-89AF-1A1DDEB341EC}
2011-05-26 18:05 . 2011-05-26 18:05 -------- d-----w- c:\users\Stijn\AppData\Local\{B9161DC2-97C8-49EF-8194-103569385034}
2011-05-24 22:45 . 2011-05-25 22:46 -------- d-----w- c:\users\Stijn\AppData\Local\{915966BF-734F-4D31-AE09-974AFE852876}
2011-05-22 19:38 . 2011-05-24 10:45 -------- d-----w- c:\users\Stijn\AppData\Local\{D06516E0-FCD2-4514-8D56-1AFD3743AC3A}
.
.
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))) ))
.
2011-06-15 12:57 . 2011-05-01 20:43 2426656 ----a-w- c:\programdata\Microsoft\VisualStudio\10.0\1033\Re sourceCache.dll
2011-05-24 17:14 . 2010-03-23 16:37 270720 ------w- c:\windows\system32\MpSigStub.exe
2011-05-09 21:36 . 2011-05-09 21:36 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2011-05-09 21:36 . 2011-05-09 21:36 1126912 ----a-w- c:\windows\SysWow64\wininet.dll
2011-05-09 21:35 . 2011-05-09 21:35 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2011-05-09 21:35 . 2011-05-09 21:35 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2011-05-09 21:35 . 2011-05-09 21:35 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2011-05-09 21:35 . 2011-05-09 21:35 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2011-05-09 21:35 . 2011-05-09 21:35 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2011-05-09 21:35 . 2011-05-09 21:35 367104 ----a-w- c:\windows\SysWow64\html.iec
2011-05-09 21:35 . 2011-05-09 21:35 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2011-05-09 21:35 . 2011-05-09 21:35 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2011-05-09 21:35 . 2011-05-09 21:35 1427456 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2011-05-09 21:35 . 2011-05-09 21:35 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2011-05-09 21:35 . 2011-05-09 21:35 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2011-05-09 21:35 . 2011-05-09 21:35 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2011-05-09 21:35 . 2011-05-09 21:35 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2011-05-09 21:35 . 2011-05-09 21:35 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2011-05-09 21:35 . 2011-05-09 21:35 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2011-05-09 21:35 . 2011-05-09 21:35 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2011-05-09 21:35 . 2011-05-09 21:35 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2011-05-09 21:35 . 2011-05-09 21:35 222208 ----a-w- c:\windows\system32\msls31.dll
2011-05-09 21:35 . 2011-05-09 21:35 1389056 ----a-w- c:\windows\system32\wininet.dll
2011-05-09 21:35 . 2011-05-09 21:35 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2011-05-09 21:35 . 2011-05-09 21:35 12288 ----a-w- c:\windows\system32\mshta.exe
2011-05-09 21:35 . 2011-05-09 21:35 49664 ----a-w- c:\windows\system32\imgutil.dll
2011-05-09 21:35 . 2011-05-09 21:35 114176 ----a-w- c:\windows\system32\admparse.dll
2011-05-09 21:35 . 2011-05-09 21:35 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2011-05-09 21:35 . 2011-05-09 21:35 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2011-05-09 21:35 . 2011-05-09 21:35 48640 ----a-w- c:\windows\system32\mshtmler.dll
2011-05-09 21:35 . 2011-05-09 21:35 111616 ----a-w- c:\windows\system32\iesysprep.dll
2011-05-09 21:35 . 2011-05-09 21:35 76800 ----a-w- c:\windows\system32\tdc.ocx
2011-05-09 21:35 . 2011-05-09 21:35 448512 ----a-w- c:\windows\system32\html.iec
2011-05-09 21:35 . 2011-05-09 21:35 85504 ----a-w- c:\windows\system32\iesetup.dll
2011-05-09 21:35 . 2011-05-09 21:35 30720 ----a-w- c:\windows\system32\licmgr10.dll
2011-05-09 21:35 . 2011-05-09 21:35 1492992 ----a-w- c:\windows\system32\inetcpl.cpl
2011-05-09 21:35 . 2011-05-09 21:35 165888 ----a-w- c:\windows\system32\iexpress.exe
2011-05-09 21:35 . 2011-05-09 21:35 160256 ----a-w- c:\windows\system32\wextract.exe
2011-05-09 21:35 . 2011-05-09 21:35 603648 ----a-w- c:\windows\system32\vbscript.dll
2011-05-09 21:35 . 2011-05-09 21:35 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2011-05-01 20:43 . 2011-05-01 20:43 18368 ----a-w- c:\programdata\Microsoft\VSA\9.0\1033\ResourceCach e.dll
2011-03-20 20:55 . 2010-06-24 09:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\pp crlconfig600.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))) )
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"msnmsgr"="c:\program files (x86)\Windows Live\Messenger\msnmsgr.exe" [2010-11-10 4240760]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\ Windows\CurrentVersion\Run]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-06-08 37296]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\WudfSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\ v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework6 4\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Updateservice (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-17 136176]
R3 appliandMP;appliandMP;c:\windows\system32\DRIVERS\ appliand.sys [x]
R3 BthAvrcp;Bluetooth AVRCP-profiel;c:\windows\system32\DRIVERS\BthAvrcp.sys [x]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2010-03-25 1038088]
R3 gupdatem;Google Update-service (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-17 136176]
R3 RSUSBCCID;Realtek Smartcard Reader Driver;c:\windows\system32\DRIVERS\RtsUCcid.sys [2009-08-10 50176]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-08-19 222720]
R3 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-01-07 378984]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [x]
R3 VBoxUSB;VirtualBox USB;c:\windows\system32\Drivers\VBoxUSB.sys [x]
R3 VSPerfDrv100;Performance Tools Driver 10.0;c:\program files (x86)\Microsoft Visual Studio 10.0\Team Tools\Performance Tools\x64\VSPerfDrv100.sys [2010-03-17 68440]
R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework64\v4.0. 30319\WPF\WPFFontCache_v0400.exe [2010-03-18 1020768]
R4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2009-07-22 61976]
R4 RsFx0103;RsFx0103 Driver;c:\windows\system32\DRIVERS\RsFx0103.sys [x]
R4 SQLAgent$SQLEXPRESS;SQL Server Agent (SQLEXPRESS);c:\program files\Microsoft SQL Server\MSSQL10.SQLEXPRESS\MSSQL\Binn\SQLAGENT.EXE [2009-03-30 427880]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
S1 ctxusbm;Citrix USB Monitor Driver;c:\windows\system32\DRIVERS\ctxusbm.sys [x]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [x]
S2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [x]
S2 uvnc_service;uvnc_service;c:\program files (x86)\UltraVNC\WinVNC.exe [2009-12-06 1590216]
S2 vpnagent;Cisco AnyConnect VPN Agent;c:\program files (x86)\Cisco\Cisco AnyConnect VPN Client\vpnagent.exe [2009-12-17 497856]
S3 VBoxNetFlt;VBoxNetFlt Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [x]
.
.
Inhoud van de 'Gedeelde Taken' map
.
2011-06-18 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-17 11:50]
.
2011-06-18 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-05-17 11:50]
.
2011-06-17 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-665137388-2192124770-3887972737-1000Core.job
- c:\users\Stijn\AppData\Local\Google\Update\GoogleU pdate.exe [2010-05-27 11:50]
.
2011-06-18 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-665137388-2192124770-3887972737-1000UA.job
- c:\users\Stijn\AppData\Local\Google\Update\GoogleU pdate.exe [2010-05-27 11:50]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\shelliconoverlayidentifiers\1T ortoiseNormal]
@="{C5994560-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994560-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\shelliconoverlayidentifiers\2T ortoiseModified]
@="{C5994561-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994561-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\shelliconoverlayidentifiers\3T ortoiseConflict]
@="{C5994562-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994562-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\shelliconoverlayidentifiers\4T ortoiseLocked]
@="{C5994563-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994563-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\shelliconoverlayidentifiers\5T ortoiseReadOnly]
@="{C5994564-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994564-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\shelliconoverlayidentifiers\6T ortoiseDeleted]
@="{C5994565-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994565-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\shelliconoverlayidentifiers\7T ortoiseAdded]
@="{C5994566-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994566-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\shelliconoverlayidentifiers\8T ortoiseIgnored]
@="{C5994567-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994567-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\explorer\shelliconoverlayidentifiers\9T ortoiseUnversioned]
@="{C5994568-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994568-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Bijkomende Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~3\Office12\EXCEL.EXE/3000
IE: Sothink SWF Catcher - c:\program files (x86)\Common Files\SourceTec\SWF Catcher\InternetExplorer.htm
TCP: DhcpNameServer = 192.168.0.1
CLSID: {603d3801-bd81-11d0-a3a5-00c04fd706ec} - %SystemRoot%\SysWow64\browseui.dll
FF - ProfilePath - c:\users\Stijn\AppData\Roaming\Mozilla\Firefox\Pro files\83um7df7.default\
FF - prefs.js: browser.search.selectedEngine - Wikipedia (nl)
.
.
------- Bestandsassociaties -------
.
.reg=Regedit.Document
.
- - - - ORPHANS VERWIJDERD - - - -
.
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
SafeBoot-WudfPf
SafeBoot-WudfRd
HKLM-Run-Windows Defender - c:\program files (x86)\Windows Defender\MSASCui.exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
.
.
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CL SID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macrome d\\Flash\\FlashUtil10l_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CL SID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CL SID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUt il10l_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CL SID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10 l.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10 l.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CL SID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CL SID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CL SID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10 l.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CL SID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CL SID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10 l.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CL SID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CL SID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CL SID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\In terface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\In terface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\In terface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Ty peLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}]
@Denied: (A 2) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Ty peLib\{D27CDB6B-AE6D-11CF-96B8-444553540000}\1.0]
@="Shockwave Flash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Ty peLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}]
@Denied: (A 2) (Everyone)
@=""
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Ty peLib\{FAB3E735-69C7-453B-A446-B6823C6DF1C9}\1.0]
@="FlashBroker"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Classes]
"SymbolicLinkValue"=hex(6):5c,00,52,00,45,00,47,00 ,49,00,53,00,54,00,52,00,59,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00 ,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Cl ass\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Cl ass\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Cl ass\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Voltooingstijd: 2011-06-18 16:34:31
ComboFix-quarantined-files.txt 2011-06-18 14:34
.
Pre-Run: 817.095.446.528 bytes beschikbaar
Post-Run: 825.809.502.208 bytes beschikbaar
.
- - End Of File - - 850BE5ABDF7CB8D55F0D1D45D4371EF4

[Juisterr]

Enige verbetering.

[spoorzoeker]

Een beetje maar het is er nog altijd maar in iets mindere mate?

[Juisterr]

Misschien zit er nog iets in.
Download Kaspersky® Virus Removal Tool naar je Bureaublad
Platform:
Windows 2000 Professional (Service Pack 4 or higher)
Windows XP (Service Pack 2 or higher)
Windows Vista (32-Bit)

Start op in veilige Modus

Dubbelklik op het installatie bestand om het programma te installeren

Zorg ervoor dat de volgende items zijn aangevinkt

• Hidden startup objects
• System memory
• Disk boot sectors
• Deze Computer
• De schijf waar Windows is geïnstalleerd
• Alle verwisselbare schijven

Klik: Start scan

Wanneer de scanner blijft hangen bij C:\Program Files\Malwarebytes Anti-Malware\mbamext.dll
Stop de scanner
Verwijder nu via Software Malwarebytes Anti-Malware en start de PC NIET opnieuw op
Start de scanner weer en kies “Resume scan”
Bij een Infectie word door middel van een Pop-Up aangegeven wat te doen
“Disinfect (recommended)” en/of “Delete (recommended)”

Klik aan het eind van de scan “Report”
Klik op het plus(+) teken voor Autoscan
Rechtermuisklik >>kies “select all” dan
Rechtermuisklik >>kies “Copy”
Ga via Start\Programma’s\Bureau accesoires naar Kladblok(Editor)
Rechtermuisklik >>kies “Plakken”
Geef het tekstbestandje een naam b.v kav.txt en sla het op je Bureaublad op
Sluit AVP en er komt de volgende vraag,klik Yes
Kopïeer nu de inhoud van het Log in het Forum als daar om gevraagd word

Verwijder in normal Modus de Installer van AVP