Vraag & Antwoord

Beveiliging & privacy

updaters.exe

11 antwoorden
  • hallo. Ik zit met een probleem, heb sinds gisteren last van updaters.exe Geeft het volgende weer: updaters. exe - Geen schijf Er bevindt zich geen schijf in het station, Plaats een geschikt medium in station\Device\harddisk4\DR4. En als ik dan op anuleren druk blijft het terug komen, Wie Oh wie weet raad? Ik draai windows 7 (64 bit) Virusscanner eset NOD 32 4.0424.0 ( heeft niks gevonden ) en ik heb bij msconfig, de volgende twee bestanden gevonden. item voor op starten Fabrikant Opdracht cPOtE2hIWnD60Un 1fqmZ01faBv22r C:\windows\updaters.exe Locatie HKCU\Software/microsoft\CurrentVersion\Run en op locatie / HKLM\SOFTWARE\WOW6432Node\Microsft\Windows/CurrentVersion\Run hoe krijg ik deze zooi weg? uitschaklen bij opstarten helpt ookniet komt net zo hard weer tevoorschijn
  • Zie ook http://forum.computeridee.nl/showthread.php?t=64999
  • Hallo napoleon63, doe het volgende, want het is iets dat niet in jouw Windows hoort: [b:4a169e4758]Download [url=http://download.bleepingcomputer.com/sUBs/dds.scr]DDS.scr (klick)[/url] naar je bureaublad.[/b:4a169e4758] [list:4a169e4758][*:4a169e4758] Gebruikers van Windows Vista en Windows 7 starten het tool middels rechtsklik en daarbij dan kiezend voor Als Administrator uitvoeren! [*:4a169e4758] Sluit eerst alle vensters om daarna dds.scr dubbelklikken - wacht tot de scan klaar is. [*:4a169e4758] Na de scan worden twee tekstdocumnenten geopend - post de inhoud van beide logs![/list:u:4a169e4758]
  • Nou ik heb het gedaan zoals je ziet. maar ik kan er geen wijs uit hopelijk jij wel. hoor er graag van. DDS (Ver_10-03-17.01) - NTFSX64 Run by Peter at 14:03:02,03 on do 01-07-2010 Internet Explorer: 8.0.7600.16385 Microsoft Windows 7 Home Premium 6.1.7600.0.1252.31.1043.18.4095.3016 [GMT 2:00] ============== Running Processes =============== C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe C:\Windows\System32\svchost.exe -k HPZ12 C:\Windows\System32\svchost.exe -k HPZ12 K:\Alchol 120\Alcohol 120\StarWind\StarWindServiceAE.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Windows\system32\SearchIndexer.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\svchost.exe -k HPService C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\WUDFHost.exe C:\Program Files\ESET\ESET Smart Security\egui.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Users\Peter\AppData\Local\TNS NIPO Clicks\TNS NIPO Clicks.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files (x86)\YoWindow\yowindow.exe C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe C:\Windows\updaters.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe C:\Windows\system32\sppsvc.exe C:\Windows\System32\svchost.exe -k secsvcs C:\Windows\system32\taskhost.exe C:\Users\Peter\Desktop\dds.scr C:\Windows\system32\conhost.exe C:\Windows\system32\wbem\wmiprvse.exe ============== Pseudo HJT Report =============== uStart Page = hxxp://webmeter.nl/ uSearch Bar = Preserve mLocal Page = c:\windows\syswow64\blank.htm mWinlogon: Userinit=userinit.exe BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_printenhancer.dll BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_BHO.dll EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_bho.dll uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun uRun: [TNS NIPO Clicks] c:\users\peter\appdata\local\tns nipo clicks\TNS NIPO Clicks.exe uRun: [0x017] 0x017 uRun: [AlcoholAutomount] "k:\alchol 120\alcohol 120\AxAutoMntSrv.exe" -automount uRun: [updaters.exe] c:\windows\updaters.exe mRun: [<NO NAME>] mRun: [QuickTime Task] "c:\program files (x86)\quicktime\QTTask.exe" -atboottime mRun: [hpqSRMon] c:\program files (x86)\hp\digital imaging\bin\hpqSRMon.exe mRun: [updaters.exe] c:\windows\updaters.exe StartupFolder: c:\users\peter\appdata\roaming\micros~1\windows\startm~1\programs\startup\yowindow.lnk - c:\program files (x86)\yowindow\yowindow.exe StartupFolder: c:\progra~3\micros~1\windows\startm~1\programs\startup\hpdigi~1.lnk - c:\program files (x86)\hp\digital imaging\bin\hpqtra08.exe mPolicies-explorer: NoActiveDesktop = 1 (0x1) mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1) mPolicies-explorer: ForceActiveDesktopOn = 0 (0x0) mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0) mPolicies-system: ConsentPromptBehaviorUser = 0 (0x0) mPolicies-system: EnableLUA = 0 (0x0) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) mPolicies-system: PromptOnSecureDesktop = 0 (0x0) IE: Free YouTube to Mp3 Converter - c:\users\peter\appdata\roaming\dvdvideosoftiehelpers\youtubetomp3.htm IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~2\micros~1\office12\ONBttnIE.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~2\micros~1\office12\REFIEBAR.DLL IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_BHO.dll DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab TCP: {B5C3F969-30C7-4DB4-8B5E-B8B44B66FB0C} = 208.67.222.222,208.67.220.220 Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files (x86)\microsoft office\office12\GrooveSystemServices.dll SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files (x86)\microsoft office\office12\GrooveShellExtensions.dll mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "c:\program files (x86)\common files\lightscribe\LSRunOnce.exe" EB-X64: {555D4D79-4BD2-4094-A395-CFC534424A05} - No File mRun-x64: [egui] "c:\program files\eset\eset smart security\egui.exe" /hide /waitservice ============= SERVICES / DRIVERS =============== R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-14 59904] R2 ekrn;ESET Service;c:\program files\eset\eset smart security\x86\ekrn.exe [2009-4-9 731840] R2 epfwwfp;epfwwfp;c:\windows\system32\drivers\epfwwfp.sys [2009-4-9 44944] R2 StarWindServiceAE;StarWind AE Service;k:\alchol 120\alcohol 120\starwind\StarWindServiceAE.exe [2009-12-23 370688] R3 Ph3xIB64;Philips 713x Inbox PCI TV Card;c:\windows\system32\drivers\Ph3xIB64.sys [2009-6-10 1627520] S3 nmwcdcx64;Nokia USB Generic;c:\windows\system32\drivers\ccdcmbox64.sys [2009-12-30 25088] S3 nmwcdnsucx64;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsucx64.sys [2009-12-30 12288] S3 nmwcdnsux64;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsux64.sys [2009-12-30 173056] S3 nmwcdx64;Nokia USB Phone Parent;c:\windows\system32\drivers\ccdcmbx64.sys [2010-1-21 18944] S3 StkTMini;Syntek AVStream USB2.0 ATV;c:\windows\system32\drivers\StkTMini.sys [2010-5-14 528256] S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\drivers\vwifimp.sys [2009-7-14 17920] S3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\wat\WatAdminSvc.exe [2010-5-26 1255736] S3 WSDPrintDevice;WSD-ondersteuning voor afdrukken via UMB;c:\windows\system32\drivers\WSDPrint.sys [2009-7-14 23040] S4 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\nvidia corporation\3d vision\nvSCPAPISvr.exe [2010-4-3 240232] S4 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\tomtom home 2\TomTomHOMEService.exe [2009-11-13 92008] =============== Created Last 30 ================ 2010-06-30 18:55:44 65536 --sha-w- c:\users\peter\ntuser.dat{0be4973c-8479-11df-8fc6-0018f39b2c1d}.TM.blf 2010-06-30 18:55:44 524288 --sha-w- c:\users\peter\ntuser.dat{0be4973c-8479-11df-8fc6-0018f39b2c1d}.TMContainer00000000000000000002.regtrans-ms 2010-06-30 18:55:44 524288 --sha-w- c:\users\peter\ntuser.dat{0be4973c-8479-11df-8fc6-0018f39b2c1d}.TMContainer00000000000000000001.regtrans-ms 2010-06-30 18:35:34 0 d-----w- c:\program files (x86)\Emsisoft HiJackFree 2010-06-30 13:45:39 0 d-----w- c:\users\peter\appdata\roaming\Malwarebytes 2010-06-30 13:45:31 24664 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-06-30 13:45:31 0 d-----w- c:\programdata\Malwarebytes 2010-06-30 13:45:31 0 d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware 2010-06-28 16:43:07 0 d-----w- c:\program files (x86)\SpywareBlaster 2010-06-28 16:40:24 0 d-----w- c:\program files (x86)\Hitman Pro 2010-06-27 20:28:05 19016 ----a-w- c:\windows\system32\drivers\hitmanpro35.sys 2010-06-27 20:27:38 0 d-----w- c:\program files\Hitman Pro 3.5 2010-06-27 20:02:59 204800 --sh--r- c:\windows\updaters.exe 2010-06-27 14:18:19 834544 ----a-w- c:\windows\system32\drivers\sptd.sys 2010-06-27 14:10:26 0 d-----w- c:\programdata\SmartSound Software Inc 2010-06-27 14:10:26 0 d-----w- c:\program files (x86)\SmartSound Software 2010-06-27 14:10:14 306688 ----a-w- c:\windows\IsUninst.exe 2010-06-27 14:09:56 275 ----a-w- c:\windows\Ulead32.ini 2010-06-27 14:09:56 0 d-----w- c:\programdata\InstallShield 2010-06-27 14:09:54 0 d-----w- c:\program files (x86)\Windows Media Components 2010-06-24 01:00:55 99176 ----a-w- c:\windows\syswow64\PresentationHostProxy.dll 2010-06-24 01:00:55 49472 ----a-w- c:\windows\syswow64\netfxperf.dll 2010-06-24 01:00:55 48960 ----a-w- c:\windows\system32\netfxperf.dll 2010-06-24 01:00:55 444752 ----a-w- c:\windows\system32\mscoree.dll 2010-06-24 01:00:55 320352 ----a-w- c:\windows\system32\PresentationHost.exe 2010-06-24 01:00:55 297808 ----a-w- c:\windows\syswow64\mscoree.dll 2010-06-24 01:00:55 295264 ----a-w- c:\windows\syswow64\PresentationHost.exe 2010-06-24 01:00:55 1942856 ----a-w- c:\windows\system32\dfshim.dll 2010-06-24 01:00:55 1130824 ----a-w- c:\windows\syswow64\dfshim.dll 2010-06-24 01:00:55 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll 2010-06-23 21:20:24 961024 ----a-w- c:\windows\system32\CPFilters.dll 2010-06-23 21:20:24 641536 ----a-w- c:\windows\syswow64\CPFilters.dll 2010-06-23 21:20:23 258560 ----a-w- c:\windows\system32\mpg2splt.ax 2010-06-23 21:20:22 552960 ----a-w- c:\windows\system32\msdri.dll 2010-06-23 21:20:22 288256 ----a-w- c:\windows\system32\MSNP.ax 2010-06-23 21:20:22 204288 ----a-w- c:\windows\syswow64\MSNP.ax 2010-06-23 21:20:22 199680 ----a-w- c:\windows\syswow64\mpg2splt.ax 2010-06-23 21:20:21 1736608 ----a-w- c:\windows\system32\ntdll.dll 2010-06-23 21:20:20 1289528 ----a-w- c:\windows\syswow64\ntdll.dll 2010-06-13 17:16:05 0 d-----w- c:\programdata\HP Product Assistant 2010-06-13 17:15:02 0 d-----w- c:\program files (x86)\common files\HP 2010-06-13 17:13:20 873 ------w- c:\windows\hpomdl31.dat 2010-06-13 17:13:20 207978 ----a-w- c:\windows\hpoins31.dat 2010-06-12 21:00:07 0 d-----w- c:\users\peter\appdata\roaming\YoWindow 2010-06-12 20:59:45 0 d-----w- c:\program files (x86)\YoWindow 2010-06-11 22:18:54 0 d-----w- c:\programdata\Apple Computer 2010-06-11 22:18:02 0 d-----w- c:\programdata\Apple 2010-06-11 21:06:01 0 d-----w- c:\users\peter\appdata\roaming\DVDVideoSoftIEHelpers 2010-06-11 21:05:07 0 d-----w- c:\program files (x86)\DVDVideoSoft 2010-06-11 21:05:07 0 d-----w- c:\program files (x86)\common files\DVDVideoSoft 2010-06-05 13:33:32 341504 ----a-w- c:\windows\yowindow.scr ==================== Find3M ==================== 2010-06-30 19:00:08 694446 ----a-w- c:\windows\system32\perfh013.dat 2010-06-30 19:00:08 131072 ----a-w- c:\windows\system32\perfc013.dat 2010-06-24 01:00:59 43318 ----a-w- c:\windows\fonts\GlobalUserInterface.CompositeFont 2010-06-15 11:26:25 174 --sh--w- c:\program files (x86)\desktop.ini 2010-05-27 07:24:13 34304 ----a-w- c:\windows\syswow64\atmlib.dll 2010-05-27 06:34:09 46080 ----a-w- c:\windows\system32\atmlib.dll 2010-05-27 04:11:32 366080 ----a-w- c:\windows\system32\atmfd.dll 2010-05-27 03:49:37 293888 ----a-w- c:\windows\syswow64\atmfd.dll 2010-05-21 12:14:28 270208 ------w- c:\windows\system32\MpSigStub.exe 2010-05-21 05:52:30 1192960 ----a-w- c:\windows\system32\wininet.dll 2010-05-21 05:18:06 977920 ----a-w- c:\windows\syswow64\wininet.dll 2010-05-21 05:14:50 48128 ----a-w- c:\windows\syswow64\jsproxy.dll 2010-05-06 12:42:05 1225216 ----a-w- c:\windows\syswow64\urlmon.dll 2010-05-06 12:41:55 606208 ----a-w- c:\windows\syswow64\mstime.dll 2010-05-06 12:41:53 64512 ----a-w- c:\windows\syswow64\msfeedsbs.dll 2010-05-06 12:41:53 5970944 ----a-w- c:\windows\syswow64\mshtml.dll 2010-05-06 12:41:49 381440 ----a-w- c:\windows\syswow64\iedkcs32.dll 2010-05-06 12:41:49 10984448 ----a-w- c:\windows\syswow64\ieframe.dll 2010-05-01 15:07:05 3122176 ----a-w- c:\windows\system32\win32k.sys 2010-04-27 12:45:56 72856 ----a-w- c:\windows\syswow64\xliveinstallhost.exe 2010-04-27 12:45:56 187544 ----a-w- c:\windows\syswow64\xliveinstall.dll 2010-04-23 07:13:36 2048 ----a-w- c:\windows\syswow64\tzres.dll 2010-04-23 07:11:58 2048 ----a-w- c:\windows\system32\tzres.dll 2010-04-05 16:18:02 23240 ----a-w- c:\windows\hpqins15.dat 2010-04-03 16:42:00 159336 ----a-w- c:\windows\system32\nvvsvc.exe 2010-04-03 16:42:00 1515624 ----a-w- c:\windows\system32\nvsvcr.dll 2010-04-03 16:42:00 14828648 ----a-w- c:\windows\system32\nvcpl.dll 2010-04-03 16:42:00 116328 ----a-w- c:\windows\system32\nvmctray.dll 2010-04-03 16:42:00 1067624 ----a-w- c:\windows\system32\nvsvc64.dll 2010-04-02 15:17:52 15426200 ----a-w- c:\windows\syswow64\xlive.dll 2010-04-02 15:17:52 13642904 ----a-w- c:\windows\syswow64\xlivefnt.dll 2010-04-02 14:54:44 658536 ----a-w- c:\windows\system32\nvuninst.exe 2009-07-14 09:16:01 43068 ----a-w- c:\windows\inf\perflib\0413\perfd.dat 2009-07-14 09:16:01 43068 ----a-w- c:\windows\inf\perflib\0413\perfc.dat 2009-07-14 09:16:01 341322 ----a-w- c:\windows\inf\perflib\0413\perfi.dat 2009-07-14 09:16:01 341322 ----a-w- c:\windows\inf\perflib\0413\perfh.dat 2009-07-14 04:54:24 174 --sha-w- c:\program files\desktop.ini 2009-07-14 01:00:34 291294 ----a-w- c:\windows\inf\perflib\0000\perfi.dat 2009-07-14 01:00:34 291294 ----a-w- c:\windows\inf\perflib\0000\perfh.dat 2009-07-14 01:00:32 31548 ----a-w- c:\windows\inf\perflib\0000\perfd.dat 2009-07-14 01:00:32 31548 ----a-w- c:\windows\inf\perflib\0000\perfc.dat 2009-06-10 20:44:08 9633792 --sha-r- c:\windows\fonts\StaticCache.dat 2009-10-24 14:19:04 245760 --sha-w- c:\windows\serviceprofiles\networkservice\appdata\roaming\microsoft\windows\ietldcache\index.dat 2009-10-24 14:15:37 16384 --sha-w- c:\windows\syswow64\config\systemprofile\appdata\local\microsoft\windows\history\low\history.ie5\index.dat 2009-10-24 14:15:37 32768 --sha-w- c:\windows\syswow64\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\low\content.ie5\index.dat 2009-10-24 14:15:37 16384 --sha-w- c:\windows\syswow64\config\systemprofile\appdata\roaming\microsoft\windows\cookies\low\index.dat 2010-03-28 19:05:21 16384 --sha-w- c:\windows\temp\cookies\index.dat 2010-03-28 19:05:21 16384 --sha-w- c:\windows\temp\history\history.ie5\index.dat 2010-03-28 19:05:21 32768 --sha-w- c:\windows\temp\temporary internet files\content.ie5\index.dat 2009-07-14 01:39:53 398848 --sha-w- c:\windows\winsxs\amd64_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_4d4d1f2f696639a2\WinMail.exe 2009-07-14 01:14:45 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe ============= FINISH: 14:04:00,06 ===============
  • UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT DDS (Ver_10-03-17.01) Microsoft Windows 7 Home Premium Boot Device: \Device\HarddiskVolume1 Install Date: 24-10-2009 16:16:06 System Uptime: 7-1-2010 14:00:13 (4200 hours ago) Motherboard: ASUSTek Computer INC. | | NODUSM3 Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 4600+ | Socket AM2 | 2400/200mhz ==== Disk Partitions ========================= C: is FIXED (NTFS) - 292 GiB total, 228,79 GiB free. D: is FIXED (FAT32) - 6 GiB total, 1,089 GiB free. E: is CDROM () F: is CDROM () G: is Removable H: is Removable I: is Removable J: is Removable K: is FIXED (NTFS) - 466 GiB total, 395,259 GiB free. L: is FIXED (NTFS) - 932 GiB total, 759,653 GiB free. M: is CDROM () N: is CDROM () ==== Disabled Device Manager Items ============= Class GUID: {6bdd1fc6-810f-11d0-bec7-08002be2092f} Description: Photosmart C6300 series Device ID: ROOT\IMAGE\0000 Manufacturer: HP Name: Photosmart C6300 series PNP Device ID: ROOT\IMAGE\0000 Service: StillCam Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: HP 802.11b/g Wireless Network Adapter Device ID: PCI\VEN_168C&DEV_001B&SUBSYS_500111AD&REV_01\4&3A20BB39&0&4880 Manufacturer: Atheros Communications Inc. Name: HP 802.11b/g Wireless Network Adapter PNP Device ID: PCI\VEN_168C&DEV_001B&SUBSYS_500111AD&REV_01\4&3A20BB39&0&4880 Service: athr Class GUID: {4d36e971-e325-11ce-bfc1-08002be10318} Description: Photosmart C6300 series Device ID: ROOT\MULTIFUNCTION\0000 Manufacturer: HP Name: Photosmart C6300 series PNP Device ID: ROOT\MULTIFUNCTION\0000 Service: ==== System Restore Points =================== RP221: 24-6-2010 17:07:42 - Windows Update RP222: 26-6-2010 19:15:16 - Geïnstalleerd The Sims 3 RP223: 26-6-2010 19:17:58 - Geïnstalleerd The Sims 3 RP225: 26-6-2010 19:25:44 - Geïnstalleerd The Sims 3 World Adventures RP228: 26-6-2010 19:52:10 - Revo Uninstaller's restore point - De Sims™ 3 Wereldavonturen RP229: 26-6-2010 19:52:40 - Verwijderd The Sims 3 World Adventures RP230: 27-6-2010 15:53:44 - Revo Uninstaller's restore point - EA Download Manager RP231: 27-6-2010 15:56:29 - Revo Uninstaller's restore point - De Sims™ 3 RP232: 27-6-2010 15:57:02 - Verwijderd The Sims 3 RP233: 27-6-2010 16:08:49 - Installed Ulead VideoStudio RP234: 27-6-2010 16:09:28 - Geïnstalleerd QuickTime RP235: 27-6-2010 16:45:22 - Revo Uninstaller's restore point - Ulead VideoStudio 10 RP236: 27-6-2010 16:46:11 - Removed Ulead VideoStudio RP237: 28-6-2010 17:20:57 - Windows Update RP238: 28-6-2010 18:50:37 - Revo Uninstaller's restore point - Hitman Pro RP239: 28-6-2010 19:12:09 - Installed Alcohol 120% (Trial Version) RP240: 30-6-2010 15:55:08 - Revo Uninstaller's restore point - Malwarebytes' Anti-Malware RP241: 30-6-2010 18:52:48 - Revo Uninstaller's restore point - Sims 3 - G-String Geom RP242: 30-6-2010 18:55:10 - Revo Uninstaller's restore point - Sims 3 - Nude Clothes Females RP243: 30-6-2010 21:19:22 - Revo Uninstaller's restore point - Malwarebytes' Anti-Malware ==== Installed Programs ====================== Adobe Flash Player 10 ActiveX Adobe Reader 9.3.2 - Nederlands Advertising Center Apple Application Support Apple Software Update BufferChm C6300 Destinations DeviceDiscovery DocProc DolbyFiles Emsisoft HiJackFree 4.0 Free Audio CD Burner version 1.3 Free YouTube to MP3 Converter version 3.5 GPBaseService2 GrabIt 1.7.2 Beta 4 (build 997) Grand Theft Auto IV HP Update HPPhotoGadget HPPhotoSmartDiscLabelContent1 HPPhotosmartEssential HPProductAssistant HPSSupply ImagXpress InCD Reader ISO Creator LightScribe System Software Magic ISO Maker v5.5 (build 0276) MagicDisc 2.7.106 MarketResearch Microsoft Games for Windows - LIVE Microsoft Games for Windows - LIVE Redistributable Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office Access MUI (Dutch) 2007 Microsoft Office Access MUI (English) 2007 Microsoft Office Access Setup Metadata MUI (English) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (Dutch) 2007 Microsoft Office Excel MUI (English) 2007 Microsoft Office Groove MUI (Dutch) 2007 Microsoft Office Groove MUI (English) 2007 Microsoft Office Groove Setup Metadata MUI (English) 2007 Microsoft Office InfoPath MUI (Dutch) 2007 Microsoft Office InfoPath MUI (English) 2007 Microsoft Office Language Pack 2007 - Dutch/Nederlands Microsoft Office O MUI (Dutch) 2007 Microsoft Office OneNote MUI (Dutch) 2007 Microsoft Office OneNote MUI (English) 2007 Microsoft Office Outlook MUI (Dutch) 2007 Microsoft Office Outlook MUI (English) 2007 Microsoft Office PowerPoint MUI (Dutch) 2007 Microsoft Office PowerPoint MUI (English) 2007 Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (Dutch) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) Microsoft Office Publisher MUI (Dutch) 2007 Microsoft Office Publisher MUI (English) 2007 Microsoft Office Shared MUI (Dutch) 2007 Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2) Microsoft Office SharePoint Designer MUI (Dutch) 2007 Microsoft Office Word MUI (Dutch) 2007 Microsoft Office Word MUI (English) 2007 Microsoft Office X MUI (Dutch) 2007 Microsoft Silverlight Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft WSE 3.0 Runtime MSVC80_x86 MSVC80_x86_v2 MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Nero 8 Nero ControlCenter Nero Installer neroxml Nokia Connectivity Cable Driver Nokia Map Loader Nokia Maps Updater 1.0.12 Nokia PC Suite Nokia Software Updater NVIDIA PhysX NVIDIA Stereoscopic 3D Driver OF Dragon Rising PC Connectivity Solution PS_AIO_04_C6300_Software_Min QuickTime Realtek High Definition Audio Driver Revo Uninstaller 1.89 Rockstar Games Social Club Scan SecondLife (remove only) Security Update for 2007 Microsoft Office System (KB969559) Security Update for 2007 Microsoft Office System (KB976321) Security Update for 2007 Microsoft Office System (KB982312) Security Update for 2007 Microsoft Office System (KB982331) Security Update for CAPICOM (KB931906) Security Update for Microsoft Office Excel 2007 (KB982308) Security Update for Microsoft Office InfoPath 2007 (KB979441) Security Update for Microsoft Office Outlook 2007 (KB972363) Security Update for Microsoft Office PowerPoint 2007 (KB982158) Security Update for Microsoft Office Publisher 2007 (KB982124) Security Update for Microsoft Office system 2007 (972581) Security Update for Microsoft Office system 2007 (KB969613) Security Update for Microsoft Office system 2007 (KB974234) Security Update for Microsoft Office Visio Viewer 2007 (KB973709) Security Update for Microsoft Office Word 2007 (KB982135) Shareaza 2.5.2.0 Sims 3 - G-String Geom Sims 3 - Nude Clothes Females SmartSound Quicktracks Plugin SmartWebPrinting SolutionCenter SpywareBlaster v3.2 Status System Requirements Lab TNS NIPO Clicks TomTom HOME 2.7.3.1894 TomTom HOME Visual Studio Merge Modules Toolbox TrayApp UnderCoverXP 1.23 Uninstall 1.0.0.1 UnloadSupport Update for 2007 Microsoft Office System (KB967642) Update for Microsoft Office 2007 Help for Common Features (KB963673) Update for Microsoft Office Access 2007 Help (KB963663) Update for Microsoft Office Excel 2007 Help (KB963678) Update for Microsoft Office Infopath 2007 Help (KB963662) Update for Microsoft Office OneNote 2007 (KB980729) Update for Microsoft Office OneNote 2007 Help (KB963670) Update for Microsoft Office Outlook 2007 Help (KB963677) Update for Microsoft Office Powerpoint 2007 Help (KB963669) Update for Microsoft Office Publisher 2007 Help (KB963667) Update for Microsoft Office Script Editor Help (KB963671) Update for Microsoft Office Word 2007 Help (KB963665) Update for Outlook 2007 Junk Email Filter (kb983486) Update voor Microsoft Office Excel 2007 Help (KB963678) Update voor Microsoft Office Powerpoint 2007 Help (KB963669) Update voor Microsoft Office Word 2007 Help (KB963665) VCRedistSetup Virtual DJ - Atomix Productions WebReg YoWindow ==== End Of File ===========================
  • Hallo napoleon, er is wel het een en ander mis! In de eerste plaats: de softwarelijst geeft geen antivirus aan! En gezien de zeer weinig aanwezige Eset-processen (3), moet ik er haast van uitgaan, dat het hier om een illegaal gebruikte Eset/Nod32-versie gaat! Graag opheldering, [b:b0aed85b20]want de beveiliging van jouw Windows is miniem[/b:b0aed85b20]! Doe het volgende: [b:b0aed85b20][url=http://www.idealsoftware.nl/MBAM/]download, installeer en blijf MBAM gebruiken (KLIK)[/url][/b:b0aed85b20] • Al meteen na de installatie wil [b:b0aed85b20]MBAM[/b:b0aed85b20] zijn database opwaarderen – toestaan dus. • Ook bij herhaald gebruik: eerst MBAM updaten via de tab [b:b0aed85b20]Update[/b:b0aed85b20]! • Start [b:b0aed85b20]MBAM[/b:b0aed85b20] en kies voor [b:b0aed85b20]Snelle Scan[/b:b0aed85b20] • [b:b0aed85b20]N.B.: Vistagebruik(st)ers starten MBAM middels rechtsklikken en dan kiezen voor Als Administrator uitvoeren.[/b:b0aed85b20] • Het scannen kan een tijdje duren, dus wees geduldig. • Indien de scan voltooid is, klik dan op de knop [b:b0aed85b20]OK[/b:b0aed85b20] • Klik daarna op de knop [b:b0aed85b20]Bekijk Resultaten[/b:b0aed85b20] om de resultaten te zien. • Zorg ervoor, dat alles aangevinkt is. • Vervolgens klik je op: [b:b0aed85b20]Verwijder geselecteerde[/b:b0aed85b20] . • Na het verwijderen zal een log openen en zal er gevraagd worden om de computer opnieuw op te starten. • Het log wordt automatisch bewaard door [b:b0aed85b20]MBAM[/b:b0aed85b20] en dat kan je terugvinden door op de tab [b:b0aed85b20]Logs[/b:b0aed85b20] te klikken in [b:b0aed85b20]MBAM[/b:b0aed85b20] . • Indien [b:b0aed85b20]MBAM[/b:b0aed85b20] moeilijkheden heeft met het verwijderen van bepaalde bestanden zal het enkele meldingen geven – dan telkens op [b:b0aed85b20]OK[/b:b0aed85b20] klikken! • Daarna zal [b:b0aed85b20]MBAM[/b:b0aed85b20] vragen om de Computer opnieuw op te starten - dus sta toe dat de computer opnieuw opgestart wordt.[/list] Indien er de rootkit (TDSS) aanwezig is, zal MBAM ook vragen te herstarten. Doe dit dan ook. MBAM zal dan na de herstart opnieuw scannen en de rootkit verwijderen. [b:b0aed85b20]Hierna post je de inhoud van de volgende logs:[/b:b0aed85b20] • een nieuw Hijackthis-log • MBAM scanlog [b:b0aed85b20]Tevens een Uninstall-lijst posten:[/b:b0aed85b20] • start HijackThis, • klik op de knop [b:b0aed85b20]Open the Misc Tools section[/b:b0aed85b20], • klik op de knop [b:b0aed85b20]Open Uninstall Manager[/b:b0aed85b20] • Klik op de knop [b:b0aed85b20]Save[/b:b0aed85b20].[/list] [b:b0aed85b20]Hierna post je de inhoud van het MBAM-log[/b:b0aed85b20]
  • Mocht Malware bytes het niet verwijderen dan kun je ook een volledige scan uitvoeren. Of het virusnaam in typen in een zoekmachine en kijken voor handmatige verwijder instructies. Of een online scan uitvoeren.
  • ik heb het gedaan zoals jij beschreef, hier de logs. en ja over nod 32 heb je gelijk. UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT DDS (Ver_10-03-17.01) Microsoft Windows 7 Home Premium Boot Device: \Device\HarddiskVolume1 Install Date: 24-10-2009 16:16:06 System Uptime: 7-2-2010 13:38:05 (3480 hours ago) Motherboard: ASUSTek Computer INC. | | NODUSM3 Processor: AMD Athlon(tm) 64 X2 Dual Core Processor 4600+ | Socket AM2 | 2400/200mhz ==== Disk Partitions ========================= C: is FIXED (NTFS) - 292 GiB total, 228,943 GiB free. D: is FIXED (FAT32) - 6 GiB total, 1,089 GiB free. E: is CDROM () F: is CDROM () G: is Removable H: is Removable I: is Removable J: is Removable K: is FIXED (NTFS) - 466 GiB total, 395,259 GiB free. L: is FIXED (NTFS) - 932 GiB total, 759,653 GiB free. M: is CDROM () N: is CDROM () ==== Disabled Device Manager Items ============= Class GUID: {6bdd1fc6-810f-11d0-bec7-08002be2092f} Description: Photosmart C6300 series Device ID: ROOT\IMAGE\0000 Manufacturer: HP Name: Photosmart C6300 series PNP Device ID: ROOT\IMAGE\0000 Service: StillCam Class GUID: {4d36e972-e325-11ce-bfc1-08002be10318} Description: HP 802.11b/g Wireless Network Adapter Device ID: PCI\VEN_168C&DEV_001B&SUBSYS_500111AD&REV_01\4&3A20BB39&0&4880 Manufacturer: Atheros Communications Inc. Name: HP 802.11b/g Wireless Network Adapter PNP Device ID: PCI\VEN_168C&DEV_001B&SUBSYS_500111AD&REV_01\4&3A20BB39&0&4880 Service: athr Class GUID: {4d36e971-e325-11ce-bfc1-08002be10318} Description: Photosmart C6300 series Device ID: ROOT\MULTIFUNCTION\0000 Manufacturer: HP Name: Photosmart C6300 series PNP Device ID: ROOT\MULTIFUNCTION\0000 Service: ==== System Restore Points =================== RP222: 26-6-2010 19:15:16 - Geïnstalleerd The Sims 3 RP223: 26-6-2010 19:17:58 - Geïnstalleerd The Sims 3 RP225: 26-6-2010 19:25:44 - Geïnstalleerd The Sims 3 World Adventures RP228: 26-6-2010 19:52:10 - Revo Uninstaller's restore point - De Sims™ 3 Wereldavonturen RP229: 26-6-2010 19:52:40 - Verwijderd The Sims 3 World Adventures RP230: 27-6-2010 15:53:44 - Revo Uninstaller's restore point - EA Download Manager RP231: 27-6-2010 15:56:29 - Revo Uninstaller's restore point - De Sims™ 3 RP232: 27-6-2010 15:57:02 - Verwijderd The Sims 3 RP233: 27-6-2010 16:08:49 - Installed Ulead VideoStudio RP234: 27-6-2010 16:09:28 - Geïnstalleerd QuickTime RP235: 27-6-2010 16:45:22 - Revo Uninstaller's restore point - Ulead VideoStudio 10 RP236: 27-6-2010 16:46:11 - Removed Ulead VideoStudio RP237: 28-6-2010 17:20:57 - Windows Update RP238: 28-6-2010 18:50:37 - Revo Uninstaller's restore point - Hitman Pro RP239: 28-6-2010 19:12:09 - Installed Alcohol 120% (Trial Version) RP240: 30-6-2010 15:55:08 - Revo Uninstaller's restore point - Malwarebytes' Anti-Malware RP241: 30-6-2010 18:52:48 - Revo Uninstaller's restore point - Sims 3 - G-String Geom RP242: 30-6-2010 18:55:10 - Revo Uninstaller's restore point - Sims 3 - Nude Clothes Females RP243: 30-6-2010 21:19:22 - Revo Uninstaller's restore point - Malwarebytes' Anti-Malware RP244: 1-7-2010 17:01:19 - Windows Update RP245: 2-7-2010 13:33:19 - Installed HiJackThis ==== Installed Programs ====================== Adobe Flash Player 10 ActiveX Adobe Reader 9.3.2 - Nederlands Advertising Center Apple Application Support Apple Software Update BufferChm C6300 Destinations DeviceDiscovery DocProc DolbyFiles Emsisoft HiJackFree 4.0 Free Audio CD Burner version 1.3 Free YouTube to MP3 Converter version 3.5 GPBaseService2 GrabIt 1.7.2 Beta 4 (build 997) Grand Theft Auto IV HiJackThis HP Update HPPhotoGadget HPPhotoSmartDiscLabelContent1 HPPhotosmartEssential HPProductAssistant HPSSupply ImagXpress InCD Reader ISO Creator LightScribe System Software Magic ISO Maker v5.5 (build 0276) MagicDisc 2.7.106 Malwarebytes' Anti-Malware MarketResearch Microsoft Games for Windows - LIVE Microsoft Games for Windows - LIVE Redistributable Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office Access MUI (Dutch) 2007 Microsoft Office Access MUI (English) 2007 Microsoft Office Access Setup Metadata MUI (English) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (Dutch) 2007 Microsoft Office Excel MUI (English) 2007 Microsoft Office Groove MUI (Dutch) 2007 Microsoft Office Groove MUI (English) 2007 Microsoft Office Groove Setup Metadata MUI (English) 2007 Microsoft Office InfoPath MUI (Dutch) 2007 Microsoft Office InfoPath MUI (English) 2007 Microsoft Office Language Pack 2007 - Dutch/Nederlands Microsoft Office O MUI (Dutch) 2007 Microsoft Office OneNote MUI (Dutch) 2007 Microsoft Office OneNote MUI (English) 2007 Microsoft Office Outlook MUI (Dutch) 2007 Microsoft Office Outlook MUI (English) 2007 Microsoft Office PowerPoint MUI (Dutch) 2007 Microsoft Office PowerPoint MUI (English) 2007 Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (Dutch) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) Microsoft Office Publisher MUI (Dutch) 2007 Microsoft Office Publisher MUI (English) 2007 Microsoft Office Shared MUI (Dutch) 2007 Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2) Microsoft Office SharePoint Designer MUI (Dutch) 2007 Microsoft Office Word MUI (Dutch) 2007 Microsoft Office Word MUI (English) 2007 Microsoft Office X MUI (Dutch) 2007 Microsoft Silverlight Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft WSE 3.0 Runtime MSVC80_x86 MSVC80_x86_v2 MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Nero 8 Nero ControlCenter Nero Installer neroxml Nokia Connectivity Cable Driver Nokia Map Loader Nokia Maps Updater 1.0.12 Nokia PC Suite Nokia Software Updater NVIDIA PhysX NVIDIA Stereoscopic 3D Driver OF Dragon Rising PC Connectivity Solution PS_AIO_04_C6300_Software_Min QuickTime Realtek High Definition Audio Driver Revo Uninstaller 1.89 Rockstar Games Social Club Scan SecondLife (remove only) Security Update for 2007 Microsoft Office System (KB969559) Security Update for 2007 Microsoft Office System (KB976321) Security Update for 2007 Microsoft Office System (KB982312) Security Update for 2007 Microsoft Office System (KB982331) Security Update for CAPICOM (KB931906) Security Update for Microsoft Office Excel 2007 (KB982308) Security Update for Microsoft Office InfoPath 2007 (KB979441) Security Update for Microsoft Office Outlook 2007 (KB972363) Security Update for Microsoft Office PowerPoint 2007 (KB982158) Security Update for Microsoft Office Publisher 2007 (KB982124) Security Update for Microsoft Office system 2007 (972581) Security Update for Microsoft Office system 2007 (KB969613) Security Update for Microsoft Office system 2007 (KB974234) Security Update for Microsoft Office Visio Viewer 2007 (KB973709) Security Update for Microsoft Office Word 2007 (KB982135) Shareaza 2.5.2.0 Sims 3 - G-String Geom Sims 3 - Nude Clothes Females SmartSound Quicktracks Plugin SmartWebPrinting SolutionCenter SpywareBlaster v3.2 Status System Requirements Lab TNS NIPO Clicks TomTom HOME 2.7.3.1894 TomTom HOME Visual Studio Merge Modules Toolbox TrayApp UnderCoverXP 1.23 Uninstall 1.0.0.1 UnloadSupport Update for 2007 Microsoft Office System (KB967642) Update for Microsoft Office 2007 Help for Common Features (KB963673) Update for Microsoft Office Access 2007 Help (KB963663) Update for Microsoft Office Excel 2007 Help (KB963678) Update for Microsoft Office Infopath 2007 Help (KB963662) Update for Microsoft Office OneNote 2007 (KB980729) Update for Microsoft Office OneNote 2007 Help (KB963670) Update for Microsoft Office Outlook 2007 Help (KB963677) Update for Microsoft Office Powerpoint 2007 Help (KB963669) Update for Microsoft Office Publisher 2007 Help (KB963667) Update for Microsoft Office Script Editor Help (KB963671) Update for Microsoft Office Word 2007 Help (KB963665) Update for Outlook 2007 Junk Email Filter (kb983486) Update voor Microsoft Office Excel 2007 Help (KB963678) Update voor Microsoft Office Powerpoint 2007 Help (KB963669) Update voor Microsoft Office Word 2007 Help (KB963665) VCRedistSetup Virtual DJ - Atomix Productions WebReg YoWindow ==== End Of File =========================== DDS (Ver_10-03-17.01) - NTFSX64 Run by Peter at 13:42:01,55 on vr 02-07-2010 Internet Explorer: 8.0.7600.16385 Microsoft Windows 7 Home Premium 6.1.7600.0.1252.31.1043.18.4095.2978 [GMT 2:00] ============== Running Processes =============== C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\taskhost.exe C:\Windows\SysWOW64\svchost.exe -k hpdevmgmt C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe C:\Windows\System32\svchost.exe -k HPZ12 C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\System32\svchost.exe -k HPZ12 K:\Alchol 120\Alcohol 120\StarWind\StarWindServiceAE.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Windows\system32\SearchIndexer.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\svchost.exe -k HPService C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\WUDFHost.exe C:\Program Files\ESET\ESET Smart Security\egui.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Users\Peter\AppData\Local\TNS NIPO Clicks\TNS NIPO Clicks.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files (x86)\YoWindow\yowindow.exe C:\Windows\System32\svchost.exe -k LocalServicePeerNet C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Program Files (x86)\Internet Explorer\iexplore.exe C:\Windows\system32\sppsvc.exe C:\Windows\System32\svchost.exe -k secsvcs C:\Windows\system32\wbem\wmiprvse.exe C:\Users\Peter\Desktop\dds.scr C:\Windows\system32\conhost.exe ============== Pseudo HJT Report =============== uStart Page = hxxp://webmeter.nl/ uSearch Bar = Preserve mLocal Page = c:\windows\syswow64\blank.htm BHO: HP Print Enhancer: {0347c33e-8762-4905-bf09-768834316c61} - c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_printenhancer.dll BHO: HP Smart BHO Class: {ffffffff-cf4e-4f2b-bdc2-0e72e116a856} - c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_BHO.dll EB: HP Smart Web Printing: {555d4d79-4bd2-4094-a395-cfc534424a05} - c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_bho.dll uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun uRun: [TNS NIPO Clicks] c:\users\peter\appdata\local\tns nipo clicks\TNS NIPO Clicks.exe uRun: [0x017] 0x017 uRun: [AlcoholAutomount] "k:\alchol 120\alcohol 120\AxAutoMntSrv.exe" -automount mRun: [<NO NAME>] mRun: [QuickTime Task] "c:\program files (x86)\quicktime\QTTask.exe" -atboottime mRun: [hpqSRMon] c:\program files (x86)\hp\digital imaging\bin\hpqSRMon.exe StartupFolder: c:\users\peter\appdata\roaming\micros~1\windows\startm~1\programs\startup\yowindow.lnk - c:\program files (x86)\yowindow\yowindow.exe StartupFolder: c:\progra~3\micros~1\windows\startm~1\programs\startup\hpdigi~1.lnk - c:\program files (x86)\hp\digital imaging\bin\hpqtra08.exe mPolicies-explorer: NoActiveDesktop = 1 (0x1) mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1) mPolicies-explorer: ForceActiveDesktopOn = 0 (0x0) mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0) mPolicies-system: ConsentPromptBehaviorUser = 0 (0x0) mPolicies-system: EnableLUA = 0 (0x0) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) mPolicies-system: PromptOnSecureDesktop = 0 (0x0) IE: Free YouTube to Mp3 Converter - c:\users\peter\appdata\roaming\dvdvideosoftiehelpers\youtubetomp3.htm IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~2\micros~1\office12\ONBttnIE.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~2\micros~1\office12\REFIEBAR.DLL IE: {DDE87865-83C5-48c4-8357-2F5B1AA84522} - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - c:\program files (x86)\hp\digital imaging\smart web printing\hpswp_BHO.dll DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab TCP: {B5C3F969-30C7-4DB4-8B5E-B8B44B66FB0C} = 208.67.222.222,208.67.220.220 Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files (x86)\microsoft office\office12\GrooveSystemServices.dll SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files (x86)\microsoft office\office12\GrooveShellExtensions.dll mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "c:\program files (x86)\common files\lightscribe\LSRunOnce.exe" EB-X64: {555D4D79-4BD2-4094-A395-CFC534424A05} - No File mRun-x64: [egui] "c:\program files\eset\eset smart security\egui.exe" /hide /waitservice ============= SERVICES / DRIVERS =============== R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-14 59904] R2 ekrn;ESET Service;c:\program files\eset\eset smart security\x86\ekrn.exe [2009-4-9 731840] R2 epfwwfp;epfwwfp;c:\windows\system32\drivers\epfwwfp.sys [2009-4-9 44944] R2 StarWindServiceAE;StarWind AE Service;k:\alchol 120\alcohol 120\starwind\StarWindServiceAE.exe [2009-12-23 370688] R3 Ph3xIB64;Philips 713x Inbox PCI TV Card;c:\windows\system32\drivers\Ph3xIB64.sys [2009-6-10 1627520] S3 nmwcdcx64;Nokia USB Generic;c:\windows\system32\drivers\ccdcmbox64.sys [2009-12-30 25088] S3 nmwcdnsucx64;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsucx64.sys [2009-12-30 12288] S3 nmwcdnsux64;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsux64.sys [2009-12-30 173056] S3 nmwcdx64;Nokia USB Phone Parent;c:\windows\system32\drivers\ccdcmbx64.sys [2010-1-21 18944] S3 StkTMini;Syntek AVStream USB2.0 ATV;c:\windows\system32\drivers\StkTMini.sys [2010-5-14 528256] S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\drivers\vwifimp.sys [2009-7-14 17920] S3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\wat\WatAdminSvc.exe [2010-5-26 1255736] S3 WSDPrintDevice;WSD-ondersteuning voor afdrukken via UMB;c:\windows\system32\drivers\WSDPrint.sys [2009-7-14 23040] S4 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\nvidia corporation\3d vision\nvSCPAPISvr.exe [2010-4-3 240232] S4 TomTomHOMEService;TomTomHOMEService;c:\program files (x86)\tomtom home 2\TomTomHOMEService.exe [2009-11-13 92008] =============== Created Last 30 ================ 2010-07-02 11:33:54 0 d-----w- c:\program files (x86)\Trend Micro 2010-06-30 18:55:44 65536 --sha-w- c:\users\peter\ntuser.dat{0be4973c-8479-11df-8fc6-0018f39b2c1d}.TM.blf 2010-06-30 18:55:44 524288 --sha-w- c:\users\peter\ntuser.dat{0be4973c-8479-11df-8fc6-0018f39b2c1d}.TMContainer00000000000000000002.regtrans-ms 2010-06-30 18:55:44 524288 --sha-w- c:\users\peter\ntuser.dat{0be4973c-8479-11df-8fc6-0018f39b2c1d}.TMContainer00000000000000000001.regtrans-ms 2010-06-30 18:35:34 0 d-----w- c:\program files (x86)\Emsisoft HiJackFree 2010-06-30 13:45:39 0 d-----w- c:\users\peter\appdata\roaming\Malwarebytes 2010-06-30 13:45:31 24664 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-06-30 13:45:31 0 d-----w- c:\programdata\Malwarebytes 2010-06-30 13:45:31 0 d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware 2010-06-28 16:43:07 0 d-----w- c:\program files (x86)\SpywareBlaster 2010-06-28 16:40:24 0 d-----w- c:\program files (x86)\Hitman Pro 2010-06-27 20:28:05 19016 ----a-w- c:\windows\system32\drivers\hitmanpro35.sys 2010-06-27 20:27:38 0 d-----w- c:\program files\Hitman Pro 3.5 2010-06-27 14:18:19 834544 ----a-w- c:\windows\system32\drivers\sptd.sys 2010-06-27 14:10:26 0 d-----w- c:\programdata\SmartSound Software Inc 2010-06-27 14:10:26 0 d-----w- c:\program files (x86)\SmartSound Software 2010-06-27 14:10:14 306688 ----a-w- c:\windows\IsUninst.exe 2010-06-27 14:09:56 275 ----a-w- c:\windows\Ulead32.ini 2010-06-27 14:09:56 0 d-----w- c:\programdata\InstallShield 2010-06-27 14:09:54 0 d-----w- c:\program files (x86)\Windows Media Components 2010-06-24 01:00:55 99176 ----a-w- c:\windows\syswow64\PresentationHostProxy.dll 2010-06-24 01:00:55 49472 ----a-w- c:\windows\syswow64\netfxperf.dll 2010-06-24 01:00:55 48960 ----a-w- c:\windows\system32\netfxperf.dll 2010-06-24 01:00:55 444752 ----a-w- c:\windows\system32\mscoree.dll 2010-06-24 01:00:55 320352 ----a-w- c:\windows\system32\PresentationHost.exe 2010-06-24 01:00:55 297808 ----a-w- c:\windows\syswow64\mscoree.dll 2010-06-24 01:00:55 295264 ----a-w- c:\windows\syswow64\PresentationHost.exe 2010-06-24 01:00:55 1942856 ----a-w- c:\windows\system32\dfshim.dll 2010-06-24 01:00:55 1130824 ----a-w- c:\windows\syswow64\dfshim.dll 2010-06-24 01:00:55 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll 2010-06-23 21:20:24 961024 ----a-w- c:\windows\system32\CPFilters.dll 2010-06-23 21:20:24 641536 ----a-w- c:\windows\syswow64\CPFilters.dll 2010-06-23 21:20:23 258560 ----a-w- c:\windows\system32\mpg2splt.ax 2010-06-23 21:20:22 552960 ----a-w- c:\windows\system32\msdri.dll 2010-06-23 21:20:22 288256 ----a-w- c:\windows\system32\MSNP.ax 2010-06-23 21:20:22 204288 ----a-w- c:\windows\syswow64\MSNP.ax 2010-06-23 21:20:22 199680 ----a-w- c:\windows\syswow64\mpg2splt.ax 2010-06-23 21:20:21 1736608 ----a-w- c:\windows\system32\ntdll.dll 2010-06-23 21:20:20 1289528 ----a-w- c:\windows\syswow64\ntdll.dll 2010-06-13 17:16:05 0 d-----w- c:\programdata\HP Product Assistant 2010-06-13 17:15:02 0 d-----w- c:\program files (x86)\common files\HP 2010-06-13 17:13:20 873 ------w- c:\windows\hpomdl31.dat 2010-06-13 17:13:20 207978 ----a-w- c:\windows\hpoins31.dat 2010-06-12 21:00:07 0 d-----w- c:\users\peter\appdata\roaming\YoWindow 2010-06-12 20:59:45 0 d-----w- c:\program files (x86)\YoWindow 2010-06-11 22:18:54 0 d-----w- c:\programdata\Apple Computer 2010-06-11 22:18:02 0 d-----w- c:\programdata\Apple 2010-06-11 21:06:01 0 d-----w- c:\users\peter\appdata\roaming\DVDVideoSoftIEHelpers 2010-06-11 21:05:07 0 d-----w- c:\program files (x86)\DVDVideoSoft 2010-06-11 21:05:07 0 d-----w- c:\program files (x86)\common files\DVDVideoSoft 2010-06-05 13:33:32 341504 ----a-w- c:\windows\yowindow.scr ==================== Find3M ==================== 2010-07-01 12:04:46 694446 ----a-w- c:\windows\system32\perfh013.dat 2010-07-01 12:04:46 131072 ----a-w- c:\windows\system32\perfc013.dat 2010-06-24 01:00:59 43318 ----a-w- c:\windows\fonts\GlobalUserInterface.CompositeFont 2010-06-15 11:26:25 174 --sh--w- c:\program files (x86)\desktop.ini 2010-05-27 07:24:13 34304 ----a-w- c:\windows\syswow64\atmlib.dll 2010-05-27 06:34:09 46080 ----a-w- c:\windows\system32\atmlib.dll 2010-05-27 04:11:32 366080 ----a-w- c:\windows\system32\atmfd.dll 2010-05-27 03:49:37 293888 ----a-w- c:\windows\syswow64\atmfd.dll 2010-05-21 12:14:28 270208 ------w- c:\windows\system32\MpSigStub.exe 2010-05-21 05:52:30 1192960 ----a-w- c:\windows\system32\wininet.dll 2010-05-21 05:18:06 977920 ----a-w- c:\windows\syswow64\wininet.dll 2010-05-21 05:14:50 48128 ----a-w- c:\windows\syswow64\jsproxy.dll 2010-05-06 12:42:05 1225216 ----a-w- c:\windows\syswow64\urlmon.dll 2010-05-06 12:41:55 606208 ----a-w- c:\windows\syswow64\mstime.dll 2010-05-06 12:41:53 64512 ----a-w- c:\windows\syswow64\msfeedsbs.dll 2010-05-06 12:41:53 5970944 ----a-w- c:\windows\syswow64\mshtml.dll 2010-05-06 12:41:49 381440 ----a-w- c:\windows\syswow64\iedkcs32.dll 2010-05-06 12:41:49 10984448 ----a-w- c:\windows\syswow64\ieframe.dll 2010-05-01 15:07:05 3122176 ----a-w- c:\windows\system32\win32k.sys 2010-04-27 12:45:56 72856 ----a-w- c:\windows\syswow64\xliveinstallhost.exe 2010-04-27 12:45:56 187544 ----a-w- c:\windows\syswow64\xliveinstall.dll 2010-04-23 07:13:36 2048 ----a-w- c:\windows\syswow64\tzres.dll 2010-04-23 07:11:58 2048 ----a-w- c:\windows\system32\tzres.dll 2010-04-05 16:18:02 23240 ----a-w- c:\windows\hpqins15.dat 2010-04-03 16:42:00 159336 ----a-w- c:\windows\system32\nvvsvc.exe 2010-04-03 16:42:00 1515624 ----a-w- c:\windows\system32\nvsvcr.dll 2010-04-03 16:42:00 14828648 ----a-w- c:\windows\system32\nvcpl.dll 2010-04-03 16:42:00 116328 ----a-w- c:\windows\system32\nvmctray.dll 2010-04-03 16:42:00 1067624 ----a-w- c:\windows\system32\nvsvc64.dll 2009-07-14 09:16:01 43068 ----a-w- c:\windows\inf\perflib\0413\perfd.dat 2009-07-14 09:16:01 43068 ----a-w- c:\windows\inf\perflib\0413\perfc.dat 2009-07-14 09:16:01 341322 ----a-w- c:\windows\inf\perflib\0413\perfi.dat 2009-07-14 09:16:01 341322 ----a-w- c:\windows\inf\perflib\0413\perfh.dat 2009-07-14 04:54:24 174 --sha-w- c:\program files\desktop.ini 2009-07-14 01:00:34 291294 ----a-w- c:\windows\inf\perflib\0000\perfi.dat 2009-07-14 01:00:34 291294 ----a-w- c:\windows\inf\perflib\0000\perfh.dat 2009-07-14 01:00:32 31548 ----a-w- c:\windows\inf\perflib\0000\perfd.dat 2009-07-14 01:00:32 31548 ----a-w- c:\windows\inf\perflib\0000\perfc.dat 2009-06-10 20:44:08 9633792 --sha-r- c:\windows\fonts\StaticCache.dat 2009-10-24 14:19:04 245760 --sha-w- c:\windows\serviceprofiles\networkservice\appdata\roaming\microsoft\windows\ietldcache\index.dat 2009-10-24 14:15:37 16384 --sha-w- c:\windows\syswow64\config\systemprofile\appdata\local\microsoft\windows\history\low\history.ie5\index.dat 2009-10-24 14:15:37 32768 --sha-w- c:\windows\syswow64\config\systemprofile\appdata\local\microsoft\windows\temporary internet files\low\content.ie5\index.dat 2009-10-24 14:15:37 16384 --sha-w- c:\windows\syswow64\config\systemprofile\appdata\roaming\microsoft\windows\cookies\low\index.dat 2010-03-28 19:05:21 16384 --sha-w- c:\windows\temp\cookies\index.dat 2010-03-28 19:05:21 16384 --sha-w- c:\windows\temp\history\history.ie5\index.dat 2010-03-28 19:05:21 32768 --sha-w- c:\windows\temp\temporary internet files\content.ie5\index.dat 2009-07-14 01:39:53 398848 --sha-w- c:\windows\winsxs\amd64_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_4d4d1f2f696639a2\WinMail.exe 2009-07-14 01:14:45 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe ============= FINISH: 13:42:55,60 =============== HijsackThis 02 - 07 - 2010 13.49 Adobe Flash Player 10 ActiveX Adobe Reader 9.3.2 - Nederlands Advertising Center Apple Application Support Apple Software Update DolbyFiles Emsisoft HiJackFree 4.0 Free Audio CD Burner version 1.3 Free YouTube to MP3 Converter version 3.5 GrabIt 1.7.2 Beta 4 (build 997) Grand Theft Auto IV HiJackThis HP Update InCD Reader ISO Creator LightScribe System Software Magic ISO Maker v5.5 (build 0276) MagicDisc 2.7.106 Malwarebytes' Anti-Malware Microsoft Games for Windows - LIVE Microsoft Games for Windows - LIVE Redistributable Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office Access MUI (Dutch) 2007 Microsoft Office Access MUI (English) 2007 Microsoft Office Access Setup Metadata MUI (English) 2007 Microsoft Office Enterprise 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (Dutch) 2007 Microsoft Office Excel MUI (English) 2007 Microsoft Office Groove MUI (Dutch) 2007 Microsoft Office Groove MUI (English) 2007 Microsoft Office Groove Setup Metadata MUI (English) 2007 Microsoft Office InfoPath MUI (Dutch) 2007 Microsoft Office InfoPath MUI (English) 2007 Microsoft Office Language Pack 2007 - Dutch/Nederlands Microsoft Office O MUI (Dutch) 2007 Microsoft Office OneNote MUI (Dutch) 2007 Microsoft Office OneNote MUI (English) 2007 Microsoft Office Outlook MUI (Dutch) 2007 Microsoft Office Outlook MUI (English) 2007 Microsoft Office PowerPoint MUI (Dutch) 2007 Microsoft Office PowerPoint MUI (English) 2007 Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proof (Spanish) 2007 Microsoft Office Proofing (Dutch) 2007 Microsoft Office Proofing (English) 2007 Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) Microsoft Office Publisher MUI (Dutch) 2007 Microsoft Office Publisher MUI (English) 2007 Microsoft Office Shared MUI (Dutch) 2007 Microsoft Office Shared MUI (English) 2007 Microsoft Office Shared Setup Metadata MUI (English) 2007 Microsoft Office SharePoint Designer 2007 Service Pack 2 (SP2) Microsoft Office SharePoint Designer MUI (Dutch) 2007 Microsoft Office Word MUI (Dutch) 2007 Microsoft Office Word MUI (English) 2007 Microsoft Office X MUI (Dutch) 2007 Microsoft Silverlight Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft WSE 3.0 Runtime MSVC80_x86 MSVC80_x86_v2 MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) Nero 8 Nero ControlCenter Nero Installer neroxml Nokia Connectivity Cable Driver Nokia Map Loader Nokia Maps Updater 1.0.12 Nokia PC Suite Nokia PC Suite Nokia Software Updater NVIDIA PhysX NVIDIA Stereoscopic 3D Driver OF Dragon Rising PC Connectivity Solution QuickTime Realtek High Definition Audio Driver Revo Uninstaller 1.89 Rockstar Games Social Club SecondLife (remove only) Security Update for 2007 Microsoft Office System (KB969559) Security Update for 2007 Microsoft Office System (KB976321) Security Update for 2007 Microsoft Office System (KB982312) Security Update for 2007 Microsoft Office System (KB982331) Security Update for CAPICOM (KB931906) Security Update for CAPICOM (KB931906) Security Update for Microsoft Office Excel 2007 (KB982308) Security Update for Microsoft Office InfoPath 2007 (KB979441) Security Update for Microsoft Office InfoPath 2007 (KB979441) Security Update for Microsoft Office Outlook 2007 (KB972363) Security Update for Microsoft Office PowerPoint 2007 (KB982158) Security Update for Microsoft Office Publisher 2007 (KB982124) Security Update for Microsoft Office system 2007 (972581) Security Update for Microsoft Office system 2007 (KB969613) Security Update for Microsoft Office system 2007 (KB974234) Security Update for Microsoft Office Visio Viewer 2007 (KB973709) Security Update for Microsoft Office Word 2007 (KB982135) Shareaza 2.5.2.0 Sims 3 - G-String Geom Sims 3 - Nude Clothes Females SmartSound Quicktracks Plugin SpywareBlaster v3.2 System Requirements Lab TomTom HOME 2.7.3.1894 TomTom HOME Visual Studio Merge Modules UnderCoverXP 1.23 Uninstall 1.0.0.1 Update for 2007 Microsoft Office System (KB967642) Update for Microsoft Office 2007 Help for Common Features (KB963673) Update for Microsoft Office Access 2007 Help (KB963663) Update for Microsoft Office Excel 2007 Help (KB963678) Update for Microsoft Office Infopath 2007 Help (KB963662) Update for Microsoft Office OneNote 2007 (KB980729) Update for Microsoft Office OneNote 2007 Help (KB963670) Update for Microsoft Office Outlook 2007 Help (KB963677) Update for Microsoft Office Powerpoint 2007 Help (KB963669) Update for Microsoft Office Publisher 2007 Help (KB963667) Update for Microsoft Office Script Editor Help (KB963671) Update for Microsoft Office Word 2007 Help (KB963665) Update for Outlook 2007 Junk Email Filter (kb983486) Update voor Microsoft Office Excel 2007 Help (KB963678) Update voor Microsoft Office Powerpoint 2007 Help (KB963669) Update voor Microsoft Office Word 2007 Help (KB963665) VCRedistSetup Virtual DJ - Atomix Productions YoWindow Malwarebytes Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Databaseversie: 4266 Windows 6.1.7600 Internet Explorer 8.0.7600.16385 2-7-2010 13:36:30 mbam-log-2010-07-02 (13-36-30).txt Scantype: Snelle scan Objecten gescand: 156769 Verstreken tijd: 9 minuut/minuten, 34 seconde(n) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 0 Registerwaarden geïnfecteerd: 2 Registerdata geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 2 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registersleutels geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerwaarden geïnfecteerd: HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\updaters.exe (Trojan.Agent) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\updaters.exe (Trojan.Agent) -> Quarantined and deleted successfully. Registerdata geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Mappen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Bestanden geïnfecteerd: C:\Windows\updaters.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\Users\Peter\AppData\Local\Temp\MGASetup.exe (Hacktool.WPA) -> Quarantined and deleted successfully.
  • Hoi Napoleon - gebruik jij Outlook 2007 om te emailen of email jij via een andere weg. Ik vraag dit, om je goed te kunnen adviseren omtrent een goede gratis antivirus!
  • Hoi Abraham Ik gebruik outlook 2007 om te E-mailen
  • Hoi napoleon: doe nu het volgende: 1) download naar je bureaublad de setupfile van Avast 5 Free http://www.av.eu/avast_antivirus_producten/avast_Free_Antivirus 2) Om Eset/Nod32 te verwijderen in C\Program Files, adviseer ik je om de Professional Versie van de Revo Uninstaller te downloden/installeren en te gebruiken: [url]http://www.revouninstaller.com/revo_uninstaller_free_download.html[/url] Hiermee wordt ook je Windows gescand op verdere instellingen, die door Eset zijn gemaakt. Dus alles laten verwijderen! Herstart hierna je computer en installeer daarna Avast 5. Laat na updaten Avast je systeem scannen! Laat weten of Avast dan wat gevonden heeft. En post ook een nieuw DDS-log (de Attach-log hoeft niet!)

Beantwoord deze vraag

Weet jij het antwoord op deze vraag? Registreer of meld je aan met je account

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.