Vraag & Antwoord

Beveiliging & privacy

Rare codes als ik inlog bij hotmail

27 antwoorden
  • Als ik bij IE 9 naar hotmail.com intype gaat ie naar de pagina waar ik moet inloggen, als ik daar alles invoer en vervolgens op enter druk , gebeurd het vaak dat er allemaal vreemde getallen en cijfers te voorschijn komen. a ‹ 42d ìWïoä4ý^©ÿð'z u³Ý‚Û‘ª; H'NÚðÙI&ë;ØÎnCuÿ;c;ióc+´û†D¥UâqüüæÍ'=?;?Û,*ñfaY">å¨+iÿáÂOü’¿zú«â ™˜jM¬âM¡cÏ°°¥ ; ¿M,kïýØrK´vµ´¼DøQk¥‰«ö¸2¶ QY´ï5 ¼7·Ëø5å¨ ¸„—‹—pSU‚§¸mD G¸Ùb»¼ºú\¶Ë@sk¸ µÔÔ„3Ù¡¸´aÃÇ]ËcGø¨Öx“UNÈY¦ÛٍæL\Â-Ò&–è\ÂÏ(ñ@×»ZÞ1iæ;ÜׂéK0ndPóNä¨ÄðMªy*ï¦ ì)K…U)IîLO[ ¯MïéÞÏ·´6TôvAk¹Ü*¤¦Ü @ÉØ·ÄAehTî‡Ó½sM¨ 8‰„ÆRY |•û­ˆ· …™¡Æø:‚_ˆªEv …:ÒV$D‚Ýê„L Õ‘R0 k)p›–P)mrP²´ /Fcͨ¬I8¨GZ¾ ™¬½¦ð^JïóI’$†©0å9OÛK4†íéQÕñô+‰UHµãb.¡”%‰NÉR½Á… Ä+ï}d.öv –íɨ´“tOüY+»>b¥Jæ|Æuh=ȹé[Rˆ5è<²q©Uºé Ô•›ûÅr^ ĸ¥c W‡ ¡`nMK­T¶¤˜µ¨'µu³N´—çá&zV~ÿ‚î÷ãc£¿Èé/Mgý`·HOƒ>¸¼û¹”ØÒ›Z»SæüÌåûÅ|¼¯½¢.°?9açs§C÷ü@ù0áÝ”i¼Å2"m¾âÝ\_Vp¨mGâ,†X‹1˜N6ᄂ|^cYÛ½§¡èX¾î;iÚ'æW²v×.=g…¸¨\C4ª¦|ÿ§LºÑXÑ›+´2¸;~…I¸7nólÐ'ýÕÂî0xzb¹é tñâ›WëgL=ìgq²k¥¸ô¾=Eë·ÝÛÿý;õïÎqï¤hÚ¦¼êÔ>V6ÀIÑ7ñÉódqúöˆÝ¿í×üßÉÕQ‹| 0 Andere hier in huis hebben dat "probleem" niet vandaar dat ik hier maar een hijackthis log plaats: Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 20:22:00, on 17-6-2011 Platform: Unknown Windows (WinNT 6.01.3505 SP1) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskhost.exe C:\Windows\system32\taskeng.exe C:\Program Files\Core Temp\Core Temp.exe C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe C:\Program Files\Launch Manager\HotkeyApp.exe C:\Program Files\Launch Manager\OSD.exe C:\Program Files\Launch Manager\WButton.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Songbird\songbirditunesagent.exe C:\Program Files\Synaptics\Scrybe\scrybe.exe C:\Program Files\FireTrust\MailWasher Pro\MailWasher.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\Macromed\Flash\FlashUtil10r_ActiveX.exe C:\Windows\system32\NOTEPAD.EXE C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://medion.msn.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://retro.ilse.nl/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe" O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s O4 - HKLM\..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe /FORPCEE3 O4 - HKLM\..\Run: [HotkeyApp] "C:\Program Files\Launch Manager\HotkeyApp.exe" O4 - HKLM\..\Run: [LMgrVolOSD] "C:\Program Files\Launch Manager\OSD.exe" O4 - HKLM\..\Run: [Wbutton] "C:\Program Files\Launch Manager\Wbutton.exe" O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [IJNetworkScanUtility] C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon O4 - HKLM\..\Run: [BtTray] "C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [NBAgent] "C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [sbitunesagent] C:\Program Files\Songbird\songbirditunesagent.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-1323175101-1138795830-130481774-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser') O4 - HKUS\S-1-5-21-1323175101-1138795830-130481774-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser') O4 - Startup: MailWasherPro.lnk = C:\Program Files\FireTrust\MailWasher Pro\MailWasher.exe O4 - Global Startup: Scrybe.lnk = ? O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: eBay.nl - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1346-72745-17534-1/4 (file missing) O9 - Extra 'Tools' menuitem: eBay.nl - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1346-72745-17534-1/4 (file missing) O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: eBay.nl - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1346-72745-17534-1/4 (file missing) (HKCU) O9 - Extra 'Tools' menuitem: eBay.nl - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1346-72745-17534-1/4 (file missing) (HKCU) O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O13 - Gopher Prefix: O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\system32\skype4com.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O20 - AppInit_DLLs: C:\Windows\system32\nvinit.dll O22 - SharedTaskScheduler: FencesShellExt - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files\Stardock\Fences\FencesMenu.dll O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe O23 - Service: BsMobileCS - IVT Corporation - C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe O23 - Service: Scrybe-updateprogramma (ScrybeUpdater) - Synaptics, Inc. - C:\Program Files\Synaptics\Scrybe\Service\ScrybeUpdater.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\System32\ZoneLabs\vsmon.exe O23 - Service: WisLMSvc - Wistron Corp. - C:\Program Files\Launch Manager\WisLMSvc.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe -- End of file - 12069 bytes
  • Hoi, wil jij een courante versie van Hijack This gebruiken: [b:4e1f3a6923]Welk programma[/b:4e1f3a6923]: Trend Micro [b:4e1f3a6923]Hijack This Versie 2.0.4[/b:4e1f3a6923] [b:4e1f3a6923]Waarvoor/waarom[/b:4e1f3a6923]: maakt een duidelijk overzicht van Windows door middel van een scan. [b:4e1f3a6923]Moeilijkheidsgraad[/b:4e1f3a6923]: geen, enkel Vista- en Win 7 gebruikers dienen even extra aandacht te geven. [b:4e1f3a6923]Download[/b:4e1f3a6923] de [url=http://www.trendmicro.com/ftp/products/hijackthis/HiJackThis.msi][b:4e1f3a6923]HijackThis Installer[/b:4e1f3a6923][/url] [b:4e1f3a6923]Installatie[/b:4e1f3a6923]: [list:4e1f3a6923][*:4e1f3a6923]Installeer HijackThis op de aangegeven lokatie - daarmee wordt voorkomen dat eventuele back-ups niet terugvindbaar zijn![/list:u:4e1f3a6923] Gebruikers van [b:4e1f3a6923]Windows Vista[/b:4e1f3a6923] en [b:4e1f3a6923]Windows 7[/b:4e1f3a6923] gaan daarna naar de installatielokatie van HijackThis. [list:4e1f3a6923][*:4e1f3a6923]Vervolgens met rechts hijackthis.exe aanklikken en dan Eigenschappen kiezen. [*:4e1f3a6923]Klik nu op de tab Comptabiliteit en zet dan een vinkje bij Als Administrator uitvoeren. [*:4e1f3a6923]Als laatste wordt dan nog op [b:4e1f3a6923]Toepassen[/b:4e1f3a6923] en [b:4e1f3a6923]OK[/b:4e1f3a6923] geklikt[/list:u:4e1f3a6923] [b:4e1f3a6923]Hijack This gebruiken[/b:4e1f3a6923]: [list:4e1f3a6923][*:4e1f3a6923]Sluit eerst alle openstaande programma's en de webbrowsers. [*:4e1f3a6923]Start nu 'Hijack This' en klik vervolgens op de knop 'Do a system scan and save a logfile' [list:4e1f3a6923][*:4e1f3a6923]Start HijackThis op met het scanvenster, klik dan eerst op de knop 'Main Menu'[/list:u:4e1f3a6923] [*:4e1f3a6923]Sluit nu alle openstaande vensters en start vervolgens 'HijackThis' en kies voor 'Do a system scan and save a logfile'. [*:4e1f3a6923]Kopieer en plak inhoud van het Hijack This-logfile in je aansluitende bericht. [*:4e1f3a6923]Hierna mag je Hijack This weer sluiten[/list:u:4e1f3a6923]
  • Hier nieuwe log file: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 12:14:59, on 18-6-2011 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskhost.exe C:\Windows\system32\taskeng.exe C:\Program Files\Core Temp\Core Temp.exe C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe C:\Program Files\Launch Manager\HotkeyApp.exe C:\Program Files\Launch Manager\OSD.exe C:\Program Files\Launch Manager\WButton.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe C:\Windows\System32\hkcmd.exe C:\Windows\System32\igfxpers.exe C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Songbird\songbirditunesagent.exe C:\Program Files\Synaptics\Scrybe\scrybe.exe C:\Program Files\FireTrust\MailWasher Pro\MailWasher.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\Macromed\Flash\FlashUtil10t_ActiveX.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Program Files\Trend Micro\HijackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://medion.msn.com R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://retro.ilse.nl/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe" O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s O4 - HKLM\..\Run: [RtHDVBg] C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe /FORPCEE3 O4 - HKLM\..\Run: [HotkeyApp] "C:\Program Files\Launch Manager\HotkeyApp.exe" O4 - HKLM\..\Run: [LMgrVolOSD] "C:\Program Files\Launch Manager\OSD.exe" O4 - HKLM\..\Run: [Wbutton] "C:\Program Files\Launch Manager\Wbutton.exe" O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKLM\..\Run: [ZoneAlarm Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe" O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [CloneCDTray] "C:\Program Files\SlySoft\CloneCD\CloneCDTray.exe" /s O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript O4 - HKLM\..\Run: [IJNetworkScanUtility] C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon O4 - HKLM\..\Run: [BtTray] "C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [NBAgent] "C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [sbitunesagent] C:\Program Files\Songbird\songbirditunesagent.exe O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-21-1323175101-1138795830-130481774-1000\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser') O4 - HKUS\S-1-5-21-1323175101-1138795830-130481774-1000\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser') O4 - Startup: MailWasherPro.lnk = C:\Program Files\FireTrust\MailWasher Pro\MailWasher.exe O4 - Global Startup: Scrybe.lnk = ? O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: eBay.nl - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1346-72745-17534-1/4 (file missing) O9 - Extra 'Tools' menuitem: eBay.nl - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1346-72745-17534-1/4 (file missing) O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: eBay.nl - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1346-72745-17534-1/4 (file missing) (HKCU) O9 - Extra 'Tools' menuitem: eBay.nl - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1346-72745-17534-1/4 (file missing) (HKCU) O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\system32\skype4com.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O20 - AppInit_DLLs: C:\Windows\system32\nvinit.dll O22 - SharedTaskScheduler: FencesShellExt - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files\Stardock\Fences\FencesMenu.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: BlueSoleilCS - IVT Corporation - C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: BsHelpCS - IVT Corporation - C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe O23 - Service: BsMobileCS - IVT Corporation - C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe O23 - Service: Scrybe-updateprogramma (ScrybeUpdater) - Synaptics, Inc. - C:\Program Files\Synaptics\Scrybe\Service\ScrybeUpdater.exe O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe O23 - Service: TrueVector Internet Monitor (vsmon) - Check Point Software Technologies LTD - C:\Windows\System32\ZoneLabs\vsmon.exe O23 - Service: WisLMSvc - Wistron Corp. - C:\Program Files\Launch Manager\WisLMSvc.exe O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe -- End of file - 12086 bytes
  • Hoi pdexie, doe nu eerst het hierndervermelde: sluit alle openstaande webvensters - behalve dit venster, dat je sluit voor het moment, dat je op de knop [b:771cfa5385]Fix checked[/b:771cfa5385] klikt! Start nu HijackThis middels rechtsklik met Administratorrechten (lukt dat niet ga dan naar de installatielokatie van HijackThis en start "hijackthis.exe" vervolgens met administratorrechten.)en klik op de knop [b:771cfa5385]Do a Scan only, O4 - Global Startup: Scrybe.lnk = ? O9 - Extra button: eBay.nl - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1346-72745-17534-1/4 (file missing) O9 - Extra 'Tools' menuitem: eBay.nl - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1346-72745-17534-1/4 (file missing) O9 - Extra button: eBay.nl - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1346-72745-17534-1/4 (file missing) (HKCU) O9 - Extra 'Tools' menuitem: eBay.nl - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - http://rover.ebay.com/rover/1/1346-72745-17534-1/4 (file missing) (HKCU)[/b:771cfa5385] [list:771cfa5385][*:771cfa5385] zet een vinkje voor die regel(s) welke met de bovenstaande regels corresponderen [*:771cfa5385] Sluit nu de webbrowser en vervolgens klik je daarna op de knop [b:771cfa5385]Fix checked[/b:771cfa5385] [*:771cfa5385] Klik hierna HijackThis op uit.[/list:u:771cfa5385] [b:771cfa5385] Start de computer na de fix opnieuw op[/b:771cfa5385] Bovenstaande gedaan, ga met het volgende dan verder: 1) [b:771cfa5385]Welk programma[/b:771cfa5385]: MBRCheck.exe [b:771cfa5385]Waarvoor/waarom[/b:771cfa5385]: speciale scan op mbr-rootkits [b:771cfa5385]Moeilijkheidsgraad[/b:771cfa5385]: geen. [b:771cfa5385]Download [url=http://ad13.geekstogo.com/MBRCheck.exe]MBRCheck.exe[/url][/b:771cfa5385] [b:771cfa5385]MBRCheck.exe opstarten[/b:771cfa5385]: Windows 2000 en Windows XP: start "MBRCheck.exe" middels dubbelklik op "MBRCheck.exe". Windows Vista en Windows 7: start "MBRCheck.exe" middels rechtsklik op "MBRCheck.exe" en dan kiezen voor "Als Administrator uitvoeren". [img:771cfa5385]http://i677.photobucket.com/albums/vv132/RPMcMurphy_album_photos/mbrcheck.png[/img:771cfa5385] [list:771cfa5385][*:771cfa5385]een zwart scherm toont zich met enkele data erin. [*:771cfa5385]Op je bureaublad zal een logbestand met de naam "MBRcheckxxxx.txt" verschijnen. [*:771cfa5385]Kopieer nu de inhoud van dat log in je volgende post.[/list:u:771cfa5385] 2) [[b:771cfa5385]Welk programma[/b:771cfa5385]: Kaspersky [b:771cfa5385]TDSSKiller[/b:771cfa5385] [b:771cfa5385]Waarvoor/waarom[/b:771cfa5385]: Rootkitscanner [b:771cfa5385]Moeilijkheidsgraad[/b:771cfa5385]: geen [b:771cfa5385]Downloadlokatie[/b:771cfa5385]: Dit programma absoluut naar het bureaublad downloaden of anders daar naar toe verplaatsen! [b:771cfa5385]Download[/b:771cfa5385] [b:771cfa5385]TDSSKiller[/b:771cfa5385] [url=http://support.kaspersky.com/downloads/utils/tdsskiller.zip][b:771cfa5385]hier[/b:771cfa5385][/url]. [b:771cfa5385]Installatie[/b:771cfa5385]: [list:771cfa5385][*:771cfa5385] pak het bestand uit op je bureaublad.[/list:u:771cfa5385] [b:771cfa5385]TDSSKiller gebruiken[/b:771cfa5385]: [list:771cfa5385][*:771cfa5385]Windows 2000 en Windows XP: start "TDSSKiller" middels dubbelklik op TDSSKiller.exe. [*:771cfa5385]Windows Vista en Windows 7: start "TDSSKiller" middels rechtsklik op TDSSKiller.exe en dan kiezen voor [b:771cfa5385]Als Administrator uitvoeren[/b:771cfa5385]. [*:771cfa5385]Idien TDSSKiller met een bericht komt over een beschikbare update, dan voer je deze eerst uit.[/list:u:771cfa5385] [img:771cfa5385]http://www.imgdumper.nl/uploads4/4dc1d6438f791/4dc1d6438d897-TDSSKiller_2011-05-05_00-26-21.jpg[/img:771cfa5385] [list:771cfa5385][*:771cfa5385]Klik vervolgens op de knop [b:771cfa5385]"Start Scan"[/b:771cfa5385] en volg de instructies. [*:771cfa5385] Nadat de scan klaar is klik je op de knop [b:771cfa5385]"Report"[/b:771cfa5385]. [*:771cfa5385]Er opent een kladblokbestand. Post de inhoud van dit bestand. [list:771cfa5385][*:771cfa5385][b:771cfa5385]Herstart de pc indien TDSSKiller die optie aangeeft (Reboot now).[/b:771cfa5385] [*:771cfa5385]Wanneer het opnieuw opstarten noodzakelijk is, vind je de logfile in [b:771cfa5385]C:\TDSSKiller.[Version]_[Date]_[Time]_log.txt[/b:771cfa5385][/list:u:771cfa5385][/list:u:771cfa5385] 3) [b:771cfa5385]Welk programma[/b:771cfa5385]: Malwarebytes MBAM [b:771cfa5385]Waarvoor/waarom[/b:771cfa5385]: specialistische scanner om Windows snel te onderzoeken op- en te ontdoen van spy- & malware. [b:771cfa5385]Moeilijkheidsgraad[/b:771cfa5385]: geen. [b:771cfa5385]Download Malwarebytes MBAM via één van deze locaties[/b:771cfa5385]: [list:771cfa5385][*:771cfa5385][url=http://www.download.com/Malwarebytes-Anti-Malware/3000-8022_4-10804572.html?][b:771cfa5385]Download.com[/b:771cfa5385][/url] [*:771cfa5385][url=http://www.softpedia.com/result.php?sid=&pid=1-423&r=Z2V0L0FudGl2aXJ1cy9NYWx3YXJlYnl0ZXMtQW50aS1NYWx3YXJlLnNodG1s][b:771cfa5385]Softpedia.com[/b:771cfa5385][/url][*:771cfa5385][url=http://www.majorgeeks.com/Malwarebytes_Anti-Malware_d5756.html][b:771cfa5385]Majorgeeks.com[/b:771cfa5385][/url][/list:u:771cfa5385] [b:771cfa5385]Allereerst[/b:771cfa5385]:[list:771cfa5385][*:771cfa5385] Al meteen na de installatie wil 'MBAM' zijn database opwaarderen – toestaan dus. [*:771cfa5385] Ook bij herhaald gebruik: eerst 'MBAM' updaten via de tab 'Update'![/list:u:771cfa5385] [b:771cfa5385]Malwarebytes MBAM opstarten[/b:771cfa5385]: Windows 2000 en Windows XP: start MBAM middels dubbelklik op de snelkoppeling. Windows Vista en Windows 7: start MBAM middels rechtsklik op de snelkoppeling en dan kiezen voor Als Administrator uitvoeren. [b:771cfa5385]Scannen[/b:771cfa5385]: [list:771cfa5385][*:771cfa5385] Bij het starten van 'MBAM' kies je voor 'Snelle Scan'. [*:771cfa5385]Het scannen kan een tijdje duren, dus wees geduldig. Indien de scan voltooid is, klik dan op de knop 'OK'. [*:771cfa5385]Klik daarna op de knop 'Bekijk Resultaten' om de resultaten te zien.[/list:u:771cfa5385] [b:771cfa5385]Infecties gevonden[/b:771cfa5385]: [list:771cfa5385][*:771cfa5385]Klik nu eerst op OK om de melding weg te klikken [*:771cfa5385]Klik vervolgens rechtsonder op de knop Bekijk resultaten. [*:771cfa5385]Zorg er nu voor dat alle gevonden infecties aangevinkt zijn, en klik linksonder op Verwijder geselecteerde. [*:771cfa5385]Na het verwijderen zal een log openen en zal er gevraagd worden om de computer opnieuw op te starten. [*:771cfa5385]Indien 'MBAM' moeilijkheden heeft met het verwijderen van bepaalde bestanden zal het enkele meldingen geven – dan telkens op 'OK' klikken! [*:771cfa5385]Daarna zal 'MBAM' vragen om de Computer opnieuw op te starten - dus sta toe dat de computer opnieuw opgestart wordt.[/list:u:771cfa5385] [b:771cfa5385]MBAM-Log[/b:771cfa5385]: [list:771cfa5385][*:771cfa5385] Het log wordt automatisch bewaard door 'MBAM en dat kan je terugvinden door in het hoofdmenu van MBAM op de tab 'Logbestanden' te klikken'.[/list:u:771cfa5385] [b:771cfa5385]Post aansluitend in je volgende bericht de inhoud van het MBAM-log.[/b:771cfa5385] [b:771cfa5385]Samenvattend: hierna post je in jouw volgende bericht de inhoud van de volgende logs:[/b:771cfa5385] [list:771cfa5385][*:771cfa5385] MBRCheck-log [*:771cfa5385] TDSSKiller-log [*:771cfa5385] MBAM scanlog [*:771cfa5385] laat ook weten wanneer je ergens een probleem mee hebt[/list:u:771cfa5385]
  • Hier de gevraagde logfiles: MBRCheck, version 1.2.3 (c) 2010, AD Command-line: Windows Version: Windows 7 Home Premium Edition Windows Information: Service Pack 1 (build 7601), 32-bit Base Board Manufacturer: MEDION BIOS Manufacturer: American Megatrends Inc. System Manufacturer: MEDION System Product Name: P6624 Logical Drives Mask: 0x0000001c Kernel Drivers (total 203): 0x82E55000 \SystemRoot\system32\ntkrnlpa.exe 0x82E1E000 \SystemRoot\system32\halmacpi.dll 0x80BCB000 \SystemRoot\system32\kdcom.dll 0x8B811000 \SystemRoot\system32\mcupdate_GenuineIntel.dll 0x8B896000 \SystemRoot\system32\PSHED.dll 0x8B8A7000 \SystemRoot\system32\BOOTVID.dll 0x8B8AF000 \SystemRoot\system32\CLFS.SYS 0x8B8F1000 \SystemRoot\system32\CI.dll 0x8BA08000 \SystemRoot\system32\drivers\Wdf01000.sys 0x8BA79000 \SystemRoot\system32\drivers\WDFLDR.SYS 0x8BA87000 \SystemRoot\system32\drivers\ACPI.sys 0x8BACF000 \SystemRoot\system32\drivers\WMILIB.SYS 0x8BAD8000 \SystemRoot\system32\drivers\msisadrv.sys 0x8BAE0000 \SystemRoot\system32\drivers\pci.sys 0x8BB0A000 \SystemRoot\system32\drivers\vdrvroot.sys 0x8BB15000 \SystemRoot\System32\drivers\partmgr.sys 0x8BB26000 \SystemRoot\system32\DRIVERS\compbatt.sys 0x8BB2E000 \SystemRoot\system32\DRIVERS\BATTC.SYS 0x8BB39000 \SystemRoot\system32\drivers\volmgr.sys 0x8BB49000 \SystemRoot\System32\drivers\volmgrx.sys 0x8BB94000 \SystemRoot\System32\drivers\mountmgr.sys 0x8BC17000 \SystemRoot\system32\DRIVERS\iaStor.sys 0x8BDCC000 \SystemRoot\system32\drivers\amdxata.sys 0x8BBAA000 \SystemRoot\system32\drivers\fltmgr.sys 0x8BDD5000 \SystemRoot\system32\drivers\fileinfo.sys 0x8BE0B000 \SystemRoot\System32\Drivers\Ntfs.sys 0x8BF3A000 \SystemRoot\System32\Drivers\msrpc.sys 0x8BF65000 \SystemRoot\System32\Drivers\ksecdd.sys 0x8BF78000 \SystemRoot\System32\Drivers\cng.sys 0x8BFD5000 \SystemRoot\System32\drivers\pcw.sys 0x8BFE3000 \SystemRoot\System32\Drivers\Fs_Rec.sys 0x8C00F000 \SystemRoot\system32\drivers\ndis.sys 0x8C0C6000 \SystemRoot\system32\drivers\NETIO.SYS 0x8C104000 \SystemRoot\System32\Drivers\ksecpkg.sys 0x8C214000 \SystemRoot\System32\drivers\tcpip.sys 0x8C35E000 \SystemRoot\System32\drivers\fwpkclnt.sys 0x8C38F000 \SystemRoot\system32\drivers\volsnap.sys 0x8C3CE000 \SystemRoot\System32\Drivers\spldr.sys 0x8C129000 \SystemRoot\System32\drivers\rdyboost.sys 0x8C3D6000 \SystemRoot\system32\DRIVERS\nvpciflt.sys 0x8C3DA000 \SystemRoot\System32\Drivers\mup.sys 0x8C3EA000 \SystemRoot\System32\drivers\hwpolicy.sys 0x8C156000 \SystemRoot\System32\DRIVERS\fvevol.sys 0x8C200000 \SystemRoot\system32\DRIVERS\disk.sys 0x8C188000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS 0x8C3F2000 \SystemRoot\System32\Drivers\BtHidBus.sys 0x90DCC000 \SystemRoot\system32\drivers\cdrom.sys 0x90DEB000 \SystemRoot\System32\Drivers\Null.SYS 0x90DF2000 \SystemRoot\System32\Drivers\Beep.SYS 0x8C1BA000 \SystemRoot\system32\DRIVERS\ehdrv.sys 0x8C1D9000 \SystemRoot\System32\drivers\vga.sys 0x8BBDE000 \SystemRoot\System32\drivers\VIDEOPRT.SYS 0x8C1E5000 \SystemRoot\System32\drivers\watchdog.sys 0x8C3F6000 \SystemRoot\System32\DRIVERS\RDPCDD.sys 0x8C1F2000 \SystemRoot\system32\drivers\rdpencdd.sys 0x8C000000 \SystemRoot\system32\drivers\rdprefmp.sys 0x8BFEC000 \SystemRoot\System32\Drivers\Msfs.SYS 0x8BDE6000 \SystemRoot\System32\Drivers\Npfs.SYS 0x8BC00000 \SystemRoot\system32\DRIVERS\tdx.sys 0x8BDF4000 \SystemRoot\system32\DRIVERS\TDI.SYS 0x8B99C000 \SystemRoot\system32\drivers\afd.sys 0x91616000 \SystemRoot\System32\DRIVERS\netbt.sys 0x91648000 \SystemRoot\system32\DRIVERS\vsdatant.sys 0x916D2000 \SystemRoot\system32\DRIVERS\wfplwf.sys 0x916D9000 \SystemRoot\system32\DRIVERS\pacer.sys 0x916F8000 \SystemRoot\system32\DRIVERS\vwififlt.sys 0x91709000 \SystemRoot\system32\DRIVERS\netbios.sys 0x91717000 \SystemRoot\system32\DRIVERS\wanarp.sys 0x9172A000 \SystemRoot\system32\drivers\termdd.sys 0x9173B000 \SystemRoot\system32\DRIVERS\rdbss.sys 0x9177C000 \SystemRoot\system32\drivers\nsiproxy.sys 0x91786000 \SystemRoot\system32\drivers\mssmbios.sys 0x91790000 \SystemRoot\System32\Drivers\ElbyCDIO.sys 0x9179A000 \SystemRoot\System32\drivers\discache.sys 0x917A6000 \SystemRoot\System32\Drivers\dfsc.sys 0x917BE000 \SystemRoot\system32\DRIVERS\blbdrive.sys 0x917CC000 \SystemRoot\system32\DRIVERS\tunnel.sys 0x9300D000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys 0x939E5000 \SystemRoot\system32\DRIVERS\nvBridge.kmd 0x92A14000 \SystemRoot\System32\drivers\dxgkrnl.sys 0x92ACB000 \SystemRoot\System32\drivers\dxgmms1.sys 0x93E17000 \SystemRoot\system32\DRIVERS\igdkmd32.sys 0x94737000 \SystemRoot\system32\DRIVERS\HECI.sys 0x94742000 \SystemRoot\system32\drivers\usbehci.sys 0x94751000 \SystemRoot\system32\drivers\USBPORT.SYS 0x9479C000 \SystemRoot\system32\drivers\HDAudBus.sys 0x947BB000 \SystemRoot\system32\DRIVERS\L1C62x86.sys 0x947CD000 \SystemRoot\system32\DRIVERS\nusb3xhc.sys 0x947F0000 \SystemRoot\system32\DRIVERS\USBD.SYS 0x99201000 \SystemRoot\system32\DRIVERS\rtl8192se.sys 0x99314000 \SystemRoot\system32\DRIVERS\vwifibus.sys 0x9931E000 \SystemRoot\system32\DRIVERS\CmBatt.sys 0x99322000 \SystemRoot\system32\drivers\i8042prt.sys 0x9933A000 \SystemRoot\system32\drivers\kbdclass.sys 0x9941E000 \SystemRoot\system32\DRIVERS\SynTP.sys 0x99560000 \SystemRoot\system32\drivers\mouclass.sys 0x9956D000 \SystemRoot\System32\Drivers\AnyDVD.sys 0x99588000 \SystemRoot\System32\Drivers\ElbyCDFL.sys 0x9958F000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys 0x99596000 \SystemRoot\system32\DRIVERS\Impcd.sys 0x995B7000 \SystemRoot\system32\drivers\wmiacpi.sys 0x995C0000 \SystemRoot\system32\DRIVERS\intelppm.sys 0x995D2000 \SystemRoot\System32\Drivers\btnetBus.sys 0x995D7000 \SystemRoot\System32\Drivers\btcombus.sys 0x995DB000 \SystemRoot\System32\Drivers\IvtBtBus.sys 0x995DF000 \SystemRoot\system32\drivers\CompositeBus.sys 0x995EC000 \SystemRoot\System32\Drivers\x10hid.sys 0x99400000 \SystemRoot\System32\Drivers\HIDCLASS.SYS 0x99413000 \SystemRoot\System32\Drivers\HIDPARSE.SYS 0x995EE000 \SystemRoot\system32\DRIVERS\AgileVpn.sys 0x99347000 \SystemRoot\system32\DRIVERS\rasl2tp.sys 0x9935F000 \SystemRoot\system32\DRIVERS\ndistapi.sys 0x9936A000 \SystemRoot\system32\DRIVERS\ndiswan.sys 0x9938C000 \SystemRoot\system32\DRIVERS\raspppoe.sys 0x993A4000 \SystemRoot\system32\DRIVERS\raspptp.sys 0x993BB000 \SystemRoot\system32\DRIVERS\rassstp.sys 0x993D2000 \SystemRoot\System32\Drivers\pcouffin.sys 0x9941A000 \SystemRoot\system32\drivers\swenum.sys 0x92B04000 \SystemRoot\system32\drivers\ks.sys 0x993DE000 \SystemRoot\system32\DRIVERS\umbus.sys 0x92B38000 \SystemRoot\system32\DRIVERS\usbhub.sys 0x993EC000 \SystemRoot\system32\DRIVERS\nusb3hub.sys 0x947F2000 \SystemRoot\system32\drivers\kbdhid.sys 0x93E00000 \SystemRoot\System32\Drivers\NDProxy.SYS 0x9B237000 \SystemRoot\system32\drivers\RTKVHDA.sys 0x9B52D000 \SystemRoot\system32\drivers\portcls.sys 0x9B55C000 \SystemRoot\system32\drivers\drmk.sys 0x9B575000 \SystemRoot\system32\DRIVERS\IntcDAud.sys 0x9B6F0000 \SystemRoot\System32\win32k.sys 0x9B5B6000 \SystemRoot\System32\drivers\Dxapi.sys 0x9B5C0000 \SystemRoot\System32\Drivers\crashdmp.sys 0x90C00000 \SystemRoot\System32\Drivers\dump_iaStor.sys 0x9B5CD000 \SystemRoot\System32\Drivers\dump_dumpfve.sys 0x9B5DE000 \SystemRoot\system32\DRIVERS\monitor.sys 0x9B5E9000 \SystemRoot\system32\DRIVERS\usbccgp.sys 0x9B200000 \SystemRoot\System32\Drivers\usbvideo.sys 0x9B224000 \SystemRoot\system32\drivers\hidusb.sys 0x92BAD000 \SystemRoot\system32\DRIVERS\mouhid.sys 0x9B950000 \SystemRoot\System32\TSDDD.dll 0x9B980000 \SystemRoot\System32\cdd.dll 0x92BB8000 \SystemRoot\system32\drivers\luafv.sys 0x94A22000 \SystemRoot\system32\DRIVERS\eamonm.sys 0x94AC8000 \SystemRoot\system32\drivers\WudfPf.sys 0x94AE2000 \SystemRoot\system32\DRIVERS\lltdio.sys 0x94AF2000 \SystemRoot\system32\DRIVERS\nwifi.sys 0x94B38000 \SystemRoot\system32\DRIVERS\ndisuio.sys 0x94B48000 \SystemRoot\system32\DRIVERS\rspndr.sys 0x94B5B000 \SystemRoot\system32\DRIVERS\vwifimp.sys 0x94B64000 \SystemRoot\system32\drivers\HTTP.sys 0x94A00000 \SystemRoot\system32\DRIVERS\bowser.sys 0x94BE9000 \SystemRoot\System32\drivers\mpsdrv.sys 0x92BD3000 \SystemRoot\system32\DRIVERS\mrxsmb.sys 0xB523E000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys 0xB5279000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys 0xB52AC000 \SystemRoot\system32\DRIVERS\epfwwfpr.sys 0xB52C5000 \SystemRoot\system32\drivers\peauth.sys 0xB535C000 \SystemRoot\System32\Drivers\secdrv.SYS 0xB5366000 \SystemRoot\System32\DRIVERS\srvnet.sys 0xB5387000 \SystemRoot\System32\drivers\tcpipreg.sys 0xB5394000 \SystemRoot\System32\DRIVERS\srv2.sys 0xBAC01000 \SystemRoot\System32\DRIVERS\srv.sys 0xBAC53000 \??\C:\Users\Ivo\AppData\Local\Temp\ALSysIO.sys 0xBAC5B000 \??\C:\Program Files\IVT Corporation\BlueSoleil\Device\Win2k\BTNetFilter.sys 0xBAC5F000 \SystemRoot\system32\drivers\spsys.sys 0x775E0000 \Windows\System32\ntdll.dll 0x47870000 \Windows\System32\smss.exe 0x77820000 \Windows\System32\apisetschema.dll 0x009A0000 \Windows\System32\autochk.exe 0x77740000 \Windows\System32\user32.dll 0x77720000 \Windows\System32\sechost.dll 0x77540000 \Windows\System32\advapi32.dll 0x773A0000 \Windows\System32\setupapi.dll 0x77390000 \Windows\System32\nsi.dll 0x77310000 \Windows\System32\comdlg32.dll 0x772B0000 \Windows\System32\difxapi.dll 0x77260000 \Windows\System32\gdi32.dll 0x77250000 \Windows\System32\normaliz.dll 0x77170000 \Windows\System32\kernel32.dll 0x77160000 \Windows\System32\psapi.dll 0x77050000 \Windows\System32\urlmon.dll 0x76F80000 \Windows\System32\msctf.dll 0x76ED0000 \Windows\System32\msvcrt.dll 0x76D70000 \Windows\System32\ole32.dll 0x76D50000 \Windows\System32\imm32.dll 0x76D10000 \Windows\System32\ws2_32.dll 0x76C80000 \Windows\System32\clbcatq.dll 0x76C50000 \Windows\System32\imagehlp.dll 0x76B30000 \Windows\System32\wininet.dll 0x76A80000 \Windows\System32\rpcrt4.dll 0x769E0000 \Windows\System32\usp10.dll 0x76980000 \Windows\System32\shlwapi.dll 0x767C0000 \Windows\System32\iertutil.dll 0x76770000 \Windows\System32\Wldap32.dll 0x766E0000 \Windows\System32\oleaut32.dll 0x75A90000 \Windows\System32\shell32.dll 0x75A80000 \Windows\System32\lpk.dll 0x759F0000 \Windows\System32\comctl32.dll 0x759C0000 \Windows\System32\wintrust.dll 0x75970000 \Windows\System32\KernelBase.dll 0x75850000 \Windows\System32\crypt32.dll 0x75830000 \Windows\System32\devobj.dll 0x75800000 \Windows\System32\cfgmgr32.dll 0x757F0000 \Windows\System32\msasn1.dll Processes (total 91): 0 System Idle Process 4 System 340 C:\Windows\System32\smss.exe 484 csrss.exe 576 C:\Windows\System32\wininit.exe 584 csrss.exe 632 C:\Windows\System32\services.exe 644 C:\Windows\System32\lsass.exe 652 C:\Windows\System32\lsm.exe 744 C:\Windows\System32\winlogon.exe 816 C:\Windows\System32\svchost.exe 880 C:\Windows\System32\nvvsvc.exe 920 C:\Windows\System32\svchost.exe 1012 C:\Windows\System32\svchost.exe 1052 C:\Windows\System32\svchost.exe 1088 C:\Windows\System32\svchost.exe 1164 C:\Windows\System32\audiodg.exe 1232 C:\Windows\System32\svchost.exe 1260 C:\Windows\System32\nvvsvc.exe 1340 C:\Windows\System32\svchost.exe 1428 C:\Windows\System32\ZoneLabs\vsmon.exe 1560 C:\Windows\System32\dwm.exe 1584 C:\Windows\explorer.exe 1936 C:\Windows\System32\taskeng.exe 1944 C:\Windows\System32\spoolsv.exe 1988 C:\Windows\System32\svchost.exe 1996 C:\Windows\System32\taskhost.exe 372 C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe 568 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 540 C:\Windows\System32\taskeng.exe 1436 C:\Program Files\Core Temp\Core Temp.exe 1764 C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe 1868 C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe 1020 C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe 1000 C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe 1780 C:\Program Files\Launch Manager\HotkeyApp.exe 1708 C:\Program Files\Launch Manager\OSD.exe 1524 C:\Program Files\Launch Manager\WButton.exe 2068 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe 2236 C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe 2264 C:\Program Files\Bonjour\mDNSResponder.exe 2308 C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe 2396 C:\Windows\System32\hkcmd.exe 2432 C:\Windows\System32\igfxpers.exe 2464 C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe 2476 C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe 2484 C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe 2772 C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe 2888 C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE 2900 C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe 2936 C:\Program Files\Common Files\Java\Java Update\jusched.exe 2948 C:\Program Files\iTunes\iTunesHelper.exe 2984 C:\Program Files\Windows Sidebar\sidebar.exe 2996 C:\Program Files\Songbird\songbirditunesagent.exe 3152 C:\Program Files\FireTrust\MailWasher Pro\MailWasher.exe 3340 C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe 3512 C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe 3876 C:\Program Files\Common Files\microsoft shared\VS7DEBUG\mdm.exe 3936 C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe 3988 C:\Program Files\CyberLink\Shared files\RichVideo.exe 4024 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 1140 C:\Windows\System32\svchost.exe 1360 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE 2764 C:\PROGRA~1\COMMON~1\X10\Common\X10nets.exe 2916 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE 3016 WmiPrvSE.exe 3608 C:\Windows\System32\svchost.exe 3804 C:\Windows\System32\SearchIndexer.exe 4048 C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe 3320 C:\Program Files\iPod\bin\iPodService.exe 4128 C:\Program Files\Launch Manager\WisLMSvc.exe 4284 C:\Windows\System32\svchost.exe 4300 WmiPrvSE.exe 4596 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe 4696 C:\Windows\servicing\TrustedInstaller.exe 4792 C:\Windows\System32\SearchProtocolHost.exe 4824 C:\Windows\System32\SearchFilterHost.exe 5040 C:\Program Files\Internet Explorer\iexplore.exe 5112 C:\Program Files\Internet Explorer\iexplore.exe 5280 C:\Windows\System32\Macromed\Flash\FlashUtil10t_ActiveX.exe 5608 C:\Program Files\Internet Explorer\iexplore.exe 3060 C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe 4976 C:\Program Files\Nero\Update\NASvc.exe 4392 C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe 5264 C:\Windows\System32\sppsvc.exe 1472 C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe 2296 C:\Windows\System32\svchost.exe 4840 dllhost.exe 120 dllhost.exe 5056 C:\Users\Ivo\Downloads\MBRCheck.exe 4728 C:\Windows\System32\conhost.exe \\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`06500000 (NTFS) \\.\D: --> \\.\PhysicalDrive0 at offset 0x0000008d`4ad00000 (NTFS) PhysicalDrive0 Model Number: SAMSUNGHM641JI, Rev: 2AJ10001 Size Device Name MBR Status -------------------------------------------- 596 GB \\.\PhysicalDrive0 Unknown MBR code SHA1: A1D8436B9D28AE5947F8CFF23FE54B1DC1738268 Found non-standard or infected MBR. Enter 'Y' and hit ENTER for more options, or 'N' to exit: 2011/06/18 12:44:08.0439 6040 TDSS rootkit removing tool 2.5.5.0 Jun 16 2011 15:25:15 2011/06/18 12:44:08.0595 6040 ================================================================================ 2011/06/18 12:44:08.0595 6040 SystemInfo: 2011/06/18 12:44:08.0595 6040 2011/06/18 12:44:08.0595 6040 OS Version: 6.1.7601 ServicePack: 1.0 2011/06/18 12:44:08.0595 6040 Product type: Workstation 2011/06/18 12:44:08.0595 6040 ComputerName: IVO-PC 2011/06/18 12:44:08.0595 6040 UserName: Ivo 2011/06/18 12:44:08.0595 6040 Windows directory: C:\Windows 2011/06/18 12:44:08.0595 6040 System windows directory: C:\Windows 2011/06/18 12:44:08.0595 6040 Processor architecture: Intel x86 2011/06/18 12:44:08.0595 6040 Number of processors: 4 2011/06/18 12:44:08.0595 6040 Page size: 0x1000 2011/06/18 12:44:08.0595 6040 Boot type: Normal boot 2011/06/18 12:44:08.0595 6040 ================================================================================ 2011/06/18 12:44:09.0204 6040 Initialize success 2011/06/18 12:44:27.0440 5932 ================================================================================ 2011/06/18 12:44:27.0440 5932 Scan started 2011/06/18 12:44:27.0440 5932 Mode: Manual; 2011/06/18 12:44:27.0440 5932 ================================================================================ 2011/06/18 12:44:27.0799 5932 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys 2011/06/18 12:44:27.0924 5932 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys 2011/06/18 12:44:28.0080 5932 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys 2011/06/18 12:44:28.0251 5932 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys 2011/06/18 12:44:28.0376 5932 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys 2011/06/18 12:44:28.0517 5932 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys 2011/06/18 12:44:28.0688 5932 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys 2011/06/18 12:44:28.0735 5932 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys 2011/06/18 12:44:28.0797 5932 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys 2011/06/18 12:44:28.0891 5932 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys 2011/06/18 12:44:29.0078 5932 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys 2011/06/18 12:44:29.0141 5932 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys 2011/06/18 12:44:29.0219 5932 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys 2011/06/18 12:44:29.0250 5932 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys 2011/06/18 12:44:29.0297 5932 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys 2011/06/18 12:44:29.0343 5932 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys 2011/06/18 12:44:29.0375 5932 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys 2011/06/18 12:44:29.0453 5932 AnyDVD (4b55e7593d9c9acf5e2511f840edcf98) C:\Windows\system32\Drivers\AnyDVD.sys 2011/06/18 12:44:29.0515 5932 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys 2011/06/18 12:44:29.0624 5932 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys 2011/06/18 12:44:29.0640 5932 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys 2011/06/18 12:44:29.0702 5932 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys 2011/06/18 12:44:29.0765 5932 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys 2011/06/18 12:44:29.0889 5932 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys 2011/06/18 12:44:29.0921 5932 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys 2011/06/18 12:44:29.0952 5932 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys 2011/06/18 12:44:30.0014 5932 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys 2011/06/18 12:44:30.0092 5932 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys 2011/06/18 12:44:30.0139 5932 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys 2011/06/18 12:44:30.0186 5932 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys 2011/06/18 12:44:30.0248 5932 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys 2011/06/18 12:44:30.0279 5932 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys 2011/06/18 12:44:30.0311 5932 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys 2011/06/18 12:44:30.0342 5932 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys 2011/06/18 12:44:30.0389 5932 BT (dbded38e855fc0ff58e608db5f16624b) C:\Windows\system32\DRIVERS\btnetdrv.sys 2011/06/18 12:44:30.0420 5932 BTCOM (8ba02bd1b493860a754a1e55c494376d) C:\Windows\system32\DRIVERS\btcomport.sys 2011/06/18 12:44:30.0467 5932 BTCOMBUS (ad30504d3cd564b24653400633c4f4da) C:\Windows\system32\Drivers\btcombus.sys 2011/06/18 12:44:30.0498 5932 Btcsrusb (22eb06b1955fa33e2aeed3175585b90b) C:\Windows\system32\Drivers\btcusb.sys 2011/06/18 12:44:30.0545 5932 BthEnum (2865a5c8e98c70c605f417908cebb3a4) C:\Windows\system32\DRIVERS\BthEnum.sys 2011/06/18 12:44:30.0591 5932 BtHidBus (da9e15e55c33392d7dfd7f21116214be) C:\Windows\system32\Drivers\BtHidBus.sys 2011/06/18 12:44:30.0638 5932 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys 2011/06/18 12:44:30.0669 5932 BthPan (ad1872e5829e8a2c3b5b4b641c3eab0e) C:\Windows\system32\DRIVERS\bthpan.sys 2011/06/18 12:44:30.0685 5932 BTHPORT (195c41cc67e9e1cedd960ccb74925920) C:\Windows\system32\Drivers\BTHport.sys 2011/06/18 12:44:30.0747 5932 BTHUSB (43b3206dd654e783aa7e4ead340a43b8) C:\Windows\system32\Drivers\BTHUSB.sys 2011/06/18 12:44:30.0794 5932 btnetBUs (7bb8ac22bc9e6a1e7707daecada95cd9) C:\Windows\system32\Drivers\btnetBus.sys 2011/06/18 12:44:30.0919 5932 BTNetFilter (4f26303becbb7cc5ca8ff39593124cf2) C:\Program Files\IVT Corporation\BlueSoleil\Device\Win2k\BTNetFilter.sys 2011/06/18 12:44:30.0950 5932 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys 2011/06/18 12:44:31.0013 5932 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\drivers\cdrom.sys 2011/06/18 12:44:31.0059 5932 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys 2011/06/18 12:44:31.0091 5932 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys 2011/06/18 12:44:31.0137 5932 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys 2011/06/18 12:44:31.0169 5932 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys 2011/06/18 12:44:31.0200 5932 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys 2011/06/18 12:44:31.0247 5932 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys 2011/06/18 12:44:31.0293 5932 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys 2011/06/18 12:44:31.0340 5932 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys 2011/06/18 12:44:31.0403 5932 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys 2011/06/18 12:44:31.0465 5932 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys 2011/06/18 12:44:31.0512 5932 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys 2011/06/18 12:44:31.0574 5932 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys 2011/06/18 12:44:31.0605 5932 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys 2011/06/18 12:44:31.0668 5932 eamonm (04cba07e73f152970fc34d66d3892e2a) C:\Windows\system32\DRIVERS\eamonm.sys 2011/06/18 12:44:31.0777 5932 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys 2011/06/18 12:44:31.0917 5932 ehdrv (fe7824239d132ad9ebd8645fe1199b30) C:\Windows\system32\DRIVERS\ehdrv.sys 2011/06/18 12:44:31.0995 5932 ElbyCDFL (ce37e3d51912e59c80c6d84337c0b4cd) C:\Windows\system32\Drivers\ElbyCDFL.sys 2011/06/18 12:44:32.0058 5932 ElbyCDIO (d71233d7ccc2e64f8715a20428d5a33b) C:\Windows\system32\Drivers\ElbyCDIO.sys 2011/06/18 12:44:32.0089 5932 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys 2011/06/18 12:44:32.0136 5932 epfwwfpr (ddb45f6371714601a43e8be38145be18) C:\Windows\system32\DRIVERS\epfwwfpr.sys 2011/06/18 12:44:32.0151 5932 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys 2011/06/18 12:44:32.0214 5932 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys 2011/06/18 12:44:32.0245 5932 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys 2011/06/18 12:44:32.0292 5932 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys 2011/06/18 12:44:32.0354 5932 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys 2011/06/18 12:44:32.0385 5932 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys 2011/06/18 12:44:32.0401 5932 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys 2011/06/18 12:44:32.0448 5932 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys 2011/06/18 12:44:32.0479 5932 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys 2011/06/18 12:44:32.0510 5932 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys 2011/06/18 12:44:32.0604 5932 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys 2011/06/18 12:44:32.0651 5932 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys 2011/06/18 12:44:32.0713 5932 GEARAspiWDM (4ac51459805264affd5f6fdfb9d9235f) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys 2011/06/18 12:44:32.0744 5932 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys 2011/06/18 12:44:32.0791 5932 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys 2011/06/18 12:44:32.0838 5932 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys 2011/06/18 12:44:32.0885 5932 HECI (a88485dc6a7136c10d9a6c7e38fdfe3c) C:\Windows\system32\DRIVERS\HECI.sys 2011/06/18 12:44:32.0916 5932 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys 2011/06/18 12:44:32.0978 5932 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys 2011/06/18 12:44:33.0041 5932 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys 2011/06/18 12:44:33.0087 5932 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\drivers\hidusb.sys 2011/06/18 12:44:33.0165 5932 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys 2011/06/18 12:44:33.0243 5932 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys 2011/06/18 12:44:33.0290 5932 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys 2011/06/18 12:44:33.0337 5932 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys 2011/06/18 12:44:33.0399 5932 iaStor (26541a068572f650a2fa490726fe81be) C:\Windows\system32\DRIVERS\iaStor.sys 2011/06/18 12:44:33.0462 5932 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys 2011/06/18 12:44:33.0743 5932 igfx (dce0b53570703cce580d066f89ef58cd) C:\Windows\system32\DRIVERS\igdkmd32.sys 2011/06/18 12:44:33.0914 5932 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys 2011/06/18 12:44:33.0992 5932 Impcd (e3c36ac5ae87ec970ae8ea2a93d59ae1) C:\Windows\system32\DRIVERS\Impcd.sys 2011/06/18 12:44:34.0101 5932 IntcAzAudAddService (acec5bbee4aa34d74be0e2e512cc2026) C:\Windows\system32\drivers\RTKVHDA.sys 2011/06/18 12:44:34.0242 5932 IntcDAud (af6d1e38bce11daba4c01d6a6de94410) C:\Windows\system32\DRIVERS\IntcDAud.sys 2011/06/18 12:44:34.0289 5932 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys 2011/06/18 12:44:34.0351 5932 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys 2011/06/18 12:44:34.0398 5932 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys 2011/06/18 12:44:34.0445 5932 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys 2011/06/18 12:44:34.0491 5932 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys 2011/06/18 12:44:34.0569 5932 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys 2011/06/18 12:44:34.0601 5932 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys 2011/06/18 12:44:34.0632 5932 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys 2011/06/18 12:44:34.0679 5932 IvtBtBUs (132eb047e3f94dc9eab83c74e8c2e85a) C:\Windows\system32\Drivers\IvtBtBus.sys 2011/06/18 12:44:34.0741 5932 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\drivers\kbdclass.sys 2011/06/18 12:44:34.0772 5932 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\drivers\kbdhid.sys 2011/06/18 12:44:34.0803 5932 KSecDD (412cea1aa78cc02a447f5c9e62b32ff1) C:\Windows\system32\Drivers\ksecdd.sys 2011/06/18 12:44:34.0835 5932 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys 2011/06/18 12:44:34.0897 5932 L1C (4566fd5f4416e7fef3600e4b30d086c3) C:\Windows\system32\DRIVERS\L1C62x86.sys 2011/06/18 12:44:34.0959 5932 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys 2011/06/18 12:44:35.0069 5932 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys 2011/06/18 12:44:35.0100 5932 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys 2011/06/18 12:44:35.0162 5932 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys 2011/06/18 12:44:35.0178 5932 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys 2011/06/18 12:44:35.0240 5932 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys 2011/06/18 12:44:35.0303 5932 MBAMProtector (3d2c13377763eeac0ca6fb46f57217ed) C:\Windows\system32\drivers\mbam.sys 2011/06/18 12:44:35.0365 5932 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys 2011/06/18 12:44:35.0412 5932 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys 2011/06/18 12:44:35.0474 5932 mod7700 (5b9ca81817e046666e7abf8b9b101545) C:\Windows\system32\DRIVERS\mod7700.sys 2011/06/18 12:44:35.0537 5932 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys 2011/06/18 12:44:35.0552 5932 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys 2011/06/18 12:44:35.0615 5932 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\drivers\mouclass.sys 2011/06/18 12:44:35.0661 5932 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys 2011/06/18 12:44:35.0693 5932 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys 2011/06/18 12:44:35.0739 5932 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys 2011/06/18 12:44:35.0786 5932 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys 2011/06/18 12:44:35.0817 5932 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys 2011/06/18 12:44:35.0864 5932 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys 2011/06/18 12:44:35.0895 5932 mrxsmb10 (a70c828a93cce4c11617f6249f4d87fc) C:\Windows\system32\DRIVERS\mrxsmb10.sys 2011/06/18 12:44:35.0911 5932 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys 2011/06/18 12:44:35.0942 5932 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys 2011/06/18 12:44:35.0989 5932 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys 2011/06/18 12:44:36.0067 5932 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys 2011/06/18 12:44:36.0098 5932 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys 2011/06/18 12:44:36.0114 5932 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys 2011/06/18 12:44:36.0161 5932 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys 2011/06/18 12:44:36.0192 5932 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys 2011/06/18 12:44:36.0223 5932 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys 2011/06/18 12:44:36.0239 5932 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys 2011/06/18 12:44:36.0270 5932 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys 2011/06/18 12:44:36.0301 5932 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys 2011/06/18 12:44:36.0332 5932 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys 2011/06/18 12:44:36.0363 5932 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys 2011/06/18 12:44:36.0426 5932 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys 2011/06/18 12:44:36.0519 5932 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys 2011/06/18 12:44:36.0582 5932 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys 2011/06/18 12:44:36.0629 5932 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys 2011/06/18 12:44:36.0660 5932 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys 2011/06/18 12:44:36.0691 5932 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys 2011/06/18 12:44:36.0769 5932 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys 2011/06/18 12:44:36.0800 5932 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys 2011/06/18 12:44:36.0847 5932 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys 2011/06/18 12:44:36.0909 5932 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys 2011/06/18 12:44:36.0987 5932 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys 2011/06/18 12:44:37.0019 5932 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys 2011/06/18 12:44:37.0065 5932 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys 2011/06/18 12:44:37.0112 5932 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys 2011/06/18 12:44:37.0175 5932 nusb3hub (03ad379554b50fa1802be4ec2e291e92) C:\Windows\system32\DRIVERS\nusb3hub.sys 2011/06/18 12:44:37.0237 5932 nusb3xhc (06fe87c9d181af5f04d192e604e10e6c) C:\Windows\system32\DRIVERS\nusb3xhc.sys 2011/06/18 12:44:37.0471 5932 nvlddmkm (011c6e2e44a36ed7acb57fd6197f0516) C:\Windows\system32\DRIVERS\nvlddmkm.sys 2011/06/18 12:44:37.0643 5932 nvpciflt (47188871f2a151746a93deef0dbc26d9) C:\Windows\system32\DRIVERS\nvpciflt.sys 2011/06/18 12:44:37.0705 5932 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys 2011/06/18 12:44:37.0736 5932 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys 2011/06/18 12:44:37.0783 5932 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys 2011/06/18 12:44:37.0830 5932 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys 2011/06/18 12:44:37.0908 5932 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys 2011/06/18 12:44:37.0955 5932 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys 2011/06/18 12:44:37.0970 5932 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys 2011/06/18 12:44:38.0017 5932 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\Windows\system32\DRIVERS\pccsmcfd.sys 2011/06/18 12:44:38.0048 5932 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys 2011/06/18 12:44:38.0095 5932 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys 2011/06/18 12:44:38.0126 5932 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys 2011/06/18 12:44:38.0204 5932 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\Windows\system32\Drivers\pcouffin.sys 2011/06/18 12:44:38.0251 5932 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys 2011/06/18 12:44:38.0282 5932 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys 2011/06/18 12:44:38.0376 5932 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys 2011/06/18 12:44:38.0407 5932 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys 2011/06/18 12:44:38.0485 5932 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys 2011/06/18 12:44:38.0547 5932 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys 2011/06/18 12:44:38.0610 5932 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys 2011/06/18 12:44:38.0657 5932 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys 2011/06/18 12:44:38.0688 5932 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys 2011/06/18 12:44:38.0735 5932 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys 2011/06/18 12:44:38.0766 5932 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys 2011/06/18 12:44:38.0797 5932 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys 2011/06/18 12:44:38.0813 5932 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys 2011/06/18 12:44:38.0844 5932 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys 2011/06/18 12:44:38.0891 5932 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys 2011/06/18 12:44:38.0922 5932 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys 2011/06/18 12:44:38.0984 5932 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys 2011/06/18 12:44:39.0015 5932 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys 2011/06/18 12:44:39.0062 5932 RDPWD (288b06960d78428ff89e811632684e20) C:\Windows\system32\drivers\RDPWD.sys 2011/06/18 12:44:39.0109 5932 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys 2011/06/18 12:44:39.0171 5932 RFCOMM (cb928d9e6daf51879dd6ba8d02f01321) C:\Windows\system32\DRIVERS\rfcomm.sys 2011/06/18 12:44:39.0265 5932 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys 2011/06/18 12:44:39.0327 5932 RSUSBSTOR (0340a381b920a6e68178b832889f33f8) C:\Windows\System32\Drivers\RtsUStor.sys 2011/06/18 12:44:39.0374 5932 RTL8167 (7dfd48e24479b68b258d8770121155a0) C:\Windows\system32\DRIVERS\Rt86win7.sys 2011/06/18 12:44:39.0421 5932 rtl8192se (b5e9979fbb26fc059bd87a81f763d5da) C:\Windows\system32\DRIVERS\rtl8192se.sys 2011/06/18 12:44:39.0483 5932 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys 2011/06/18 12:44:39.0515 5932 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys 2011/06/18 12:44:39.0593 5932 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys 2011/06/18 12:44:39.0655 5932 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys 2011/06/18 12:44:39.0702 5932 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys 2011/06/18 12:44:39.0749 5932 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys 2011/06/18 12:44:39.0811 5932 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\drivers\sffdisk.sys 2011/06/18 12:44:39.0827 5932 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys 2011/06/18 12:44:39.0842 5932 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\drivers\sffp_sd.sys 2011/06/18 12:44:39.0889 5932 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys 2011/06/18 12:44:39.0920 5932 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys 2011/06/18 12:44:39.0967 5932 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys 2011/06/18 12:44:39.0998 5932 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys 2011/06/18 12:44:40.0045 5932 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys 2011/06/18 12:44:40.0139 5932 SNP2UVC (9dd74f4a2ee831f7dffe64299f23541a) C:\Windows\system32\DRIVERS\snp2uvc.sys 2011/06/18 12:44:40.0248 5932 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys 2011/06/18 12:44:40.0326 5932 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys 2011/06/18 12:44:40.0357 5932 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys 2011/06/18 12:44:40.0373 5932 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys 2011/06/18 12:44:40.0435 5932 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys 2011/06/18 12:44:40.0466 5932 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys 2011/06/18 12:44:40.0560 5932 SynTP (b769710846d690adb6d25ed9329d5db7) C:\Windows\system32\DRIVERS\SynTP.sys 2011/06/18 12:44:40.0747 5932 Tcpip (24326784df8f3d5f5bbb9f878ce33c14) C:\Windows\system32\drivers\tcpip.sys 2011/06/18 12:44:40.0919 5932 TCPIP6 (24326784df8f3d5f5bbb9f878ce33c14) C:\Windows\system32\DRIVERS\tcpip.sys 2011/06/18 12:44:40.0965 5932 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys 2011/06/18 12:44:41.0012 5932 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys 2011/06/18 12:44:41.0043 5932 TDTCP (2c10395baa4847f83042813c515cc289) C:\Windows\system32\drivers\tdtcp.sys 2011/06/18 12:44:41.0106 5932 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys 2011/06/18 12:44:41.0153 5932 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys 2011/06/18 12:44:41.0246 5932 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys 2011/06/18 12:44:41.0277 5932 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys 2011/06/18 12:44:41.0340 5932 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys 2011/06/18 12:44:41.0371 5932 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys 2011/06/18 12:44:41.0402 5932 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys 2011/06/18 12:44:41.0465 5932 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys 2011/06/18 12:44:41.0511 5932 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\DRIVERS\umbus.sys 2011/06/18 12:44:41.0543 5932 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys 2011/06/18 12:44:41.0589 5932 USBAAPL (d4fb6ecc60a428564ba8768b0e23c0fc) C:\Windows\system32\Drivers\usbaapl.sys 2011/06/18 12:44:41.0621 5932 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys 2011/06/18 12:44:41.0652 5932 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys 2011/06/18 12:44:41.0699 5932 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\drivers\usbehci.sys 2011/06/18 12:44:41.0745 5932 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys 2011/06/18 12:44:41.0792 5932 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys 2011/06/18 12:44:41.0823 5932 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys 2011/06/18 12:44:41.0855 5932 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS 2011/06/18 12:44:41.0917 5932 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\drivers\usbuhci.sys 2011/06/18 12:44:41.0995 5932 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\Windows\system32\Drivers\usbvideo.sys 2011/06/18 12:44:42.0026 5932 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys 2011/06/18 12:44:42.0073 5932 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys 2011/06/18 12:44:42.0104 5932 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys 2011/06/18 12:44:42.0120 5932 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys 2011/06/18 12:44:42.0167 5932 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys 2011/06/18 12:44:42.0213 5932 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys 2011/06/18 12:44:42.0229 5932 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys 2011/06/18 12:44:42.0260 5932 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys 2011/06/18 12:44:42.0291 5932 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys 2011/06/18 12:44:42.0323 5932 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys 2011/06/18 12:44:42.0369 5932 Vsdatant (e7aba26a028a78c1aa759bb794f6e9ee) C:\Windows\system32\DRIVERS\vsdatant.sys 2011/06/18 12:44:42.0447 5932 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys 2011/06/18 12:44:42.0494 5932 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\system32\DRIVERS\vwifibus.sys 2011/06/18 12:44:42.0510 5932 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys 2011/06/18 12:44:42.0541 5932 vwifimp (a3f04cbea6c2a10e6cb01f8b47611882) C:\Windows\system32\DRIVERS\vwifimp.sys 2011/06/18 12:44:42.0572 5932 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys 2011/06/18 12:44:42.0619 5932 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys 2011/06/18 12:44:42.0635 5932 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys 2011/06/18 12:44:42.0713 5932 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys 2011/06/18 12:44:42.0744 5932 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys 2011/06/18 12:44:42.0837 5932 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys 2011/06/18 12:44:42.0853 5932 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys 2011/06/18 12:44:42.0931 5932 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys 2011/06/18 12:44:42.0993 5932 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys 2011/06/18 12:44:43.0056 5932 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys 2011/06/18 12:44:43.0087 5932 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys 2011/06/18 12:44:43.0165 5932 X10Hid (1f93fcb5bab3a921ecba522f63586f4a) C:\Windows\System32\Drivers\x10hid.sys 2011/06/18 12:44:43.0243 5932 XUIF (378dc1b0b1f62a7488ee8d31a3c6e949) C:\Windows\system32\Drivers\x10ufx2.sys 2011/06/18 12:44:43.0305 5932 MBR (0x1B8) (4624822e540ec83cd0819525c65846ba) \Device\Harddisk0\DR0 2011/06/18 12:44:43.0368 5932 ================================================================================ 2011/06/18 12:44:43.0368 5932 Scan finished 2011/06/18 12:44:43.0368 5932 ================================================================================ 2011/06/18 12:44:43.0383 4436 Detected object count: 0 2011/06/18 12:44:43.0383 4436 Actual detected object count: 0 Malwarebytes' Anti-Malware 1.51.0.1200 www.malwarebytes.org Databaseversie: 6886 Windows 6.1.7601 Service Pack 1 Internet Explorer 9.0.8112.16421 18-6-2011 12:49:05 mbam-log-2011-06-18 (12-49-05).txt Scantype: Snelle scan Objecten gescand: 172957 Verstreken tijd: 3 minuut/minuten, 23 seconde(n) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 0 Registerwaarden geïnfecteerd: 0 Registerdata geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 0 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registersleutels geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerwaarden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerdata geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Mappen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Bestanden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Ik heb eigenlijk verder geen problemen met deze laptop. Alleen dus wat ik zei als ik in mijn naam en wachtwoord invoer bij hotmail de pagina die daarop volgt geeft regelmatig allerlei gekke getallen en letters.
  • Hoi pdexie, de MBR van de HD is door rootkits overgenomen. Dat moet dus als eerste nu gerepareerd worden! [b:a6fdc629d6]MBRCheck.exe opstarten[/b:a6fdc629d6]: Windows 2000 en Windows XP: start "MBRCheck.exe" middels dubbelklik op "MBRCheck.exe". Windows Vista en Windows 7: start "MBRCheck.exe" middels rechtsklik op "MBRCheck.exe" en dan kiezen voor "Als Administrator uitvoeren". [img:a6fdc629d6]http://i677.photobucket.com/albums/vv132/RPMcMurphy_album_photos/mbrcheck.png[/img:a6fdc629d6] [list:a6fdc629d6][*:a6fdc629d6]Wacht nu totdat je de volgende melding ziet: "[b:a6fdc629d6]Enter 'Y' and hit ENTER for more options, or 'N' to exit[/b:a6fdc629d6]. [*:a6fdc629d6]Klik nu op de "Y"-toets en druk vervolgens op de Entertoets. [*:a6fdc629d6]Het programma wil weten wat jij wil gaan doen: geef nu [b:a6fdc629d6]2[/b:a6fdc629d6] als opdracht en druk vervolgens op de Entertoets. [*:a6fdc629d6]Nu wil het programma weten om welke harddisk het gaat: "[b:a6fdc629d6]Enter the physical disk number to fix (0-99, -1 to cancel):[/b:a6fdc629d6]" [*:a6fdc629d6]Geef als nummer nu [b:a6fdc629d6]0[/b:a6fdc629d6] in en druk op de Entertoets. [*:a6fdc629d6]Je krijgt nu een lijst te zien van besturingssystemen. Gebruik de nummer [b:a6fdc629d6]5[/b:a6fdc629d6] voor Windows 7 en druk weer op de Entertoets. [*:a6fdc629d6]Het programma wil nu jouw keuze bevestigd hebben! Typ [b:a6fdc629d6]YES[/b:a6fdc629d6] en druk weer op de Entertoets. [*:a6fdc629d6]klik nu met links op de titelbalk (waarop programmanaam en het pad vermeld staan) [list:a6fdc629d6][*:a6fdc629d6]in het menu kies je [b:a6fdc629d6]Edit[/b:a6fdc629d6] -> [b:a6fdc629d6]All[/b:a6fdc629d6] [*:a6fdc629d6]Druk op de Entertoets om de geslekteerde tekst te kopiëren. [*:a6fdc629d6]Plak vervolgens de tekst in een kladblok document. [*:a6fdc629d6]Sla dit dokument op je bureaublad op als bijv. "MBRCheck results HD1.txt"[/list:u:a6fdc629d6] [*:a6fdc629d6]Start vervolgens jouw PC opnieuw op [*:a6fdc629d6]Post in je volgende bericht de conclusieregels van het opgeslagen log![/list:u:a6fdc629d6]
  • klik nu met links op de titelbalk (waarop programmanaam en het pad vermeld staan) in het menu kies je Edit -> All Druk op de Entertoets om de geslekteerde tekst te kopiëren. Plak vervolgens de tekst in een kladblok document. Sla dit dokument op je bureaublad op als bijv. "MBRCheck results HD1.txt " Klik nu met links op de titelbalk....... dat gedeelte snap ik niet tot dat gedeelte tot nu toe uitgevoerd maar pc nog niet opnieuw opgestart
  • Start je PC opnieuw op en laat MBRCheck dan een nieuw scanlog doen!
  • Hier weer gevraagde log: MBRCheck, version 1.2.3 (c) 2010, AD Command-line: Windows Version: Windows 7 Home Premium Edition Windows Information: Service Pack 1 (build 7601), 32-bit Base Board Manufacturer: MEDION BIOS Manufacturer: American Megatrends Inc. System Manufacturer: MEDION System Product Name: P6624 Logical Drives Mask: 0x0000001c Kernel Drivers (total 202): 0x82E51000 \SystemRoot\system32\ntkrnlpa.exe 0x82E1A000 \SystemRoot\system32\halmacpi.dll 0x80BAA000 \SystemRoot\system32\kdcom.dll 0x8B824000 \SystemRoot\system32\mcupdate_GenuineIntel.dll 0x8B8A9000 \SystemRoot\system32\PSHED.dll 0x8B8BA000 \SystemRoot\system32\BOOTVID.dll 0x8B8C2000 \SystemRoot\system32\CLFS.SYS 0x8B904000 \SystemRoot\system32\CI.dll 0x8BA18000 \SystemRoot\system32\drivers\Wdf01000.sys 0x8BA89000 \SystemRoot\system32\drivers\WDFLDR.SYS 0x8BA97000 \SystemRoot\system32\drivers\ACPI.sys 0x8BADF000 \SystemRoot\system32\drivers\WMILIB.SYS 0x8BAE8000 \SystemRoot\system32\drivers\msisadrv.sys 0x8BAF0000 \SystemRoot\system32\drivers\pci.sys 0x8BB1A000 \SystemRoot\system32\drivers\vdrvroot.sys 0x8BB25000 \SystemRoot\System32\drivers\partmgr.sys 0x8BB36000 \SystemRoot\system32\DRIVERS\compbatt.sys 0x8BB3E000 \SystemRoot\system32\DRIVERS\BATTC.SYS 0x8BB49000 \SystemRoot\system32\drivers\volmgr.sys 0x8BB59000 \SystemRoot\System32\drivers\volmgrx.sys 0x8BBA4000 \SystemRoot\System32\drivers\mountmgr.sys 0x8BC06000 \SystemRoot\system32\DRIVERS\iaStor.sys 0x8BDBB000 \SystemRoot\system32\drivers\amdxata.sys 0x8BDC4000 \SystemRoot\system32\drivers\fltmgr.sys 0x8BBBA000 \SystemRoot\system32\drivers\fileinfo.sys 0x8BE1C000 \SystemRoot\System32\Drivers\Ntfs.sys 0x8BF4B000 \SystemRoot\System32\Drivers\msrpc.sys 0x8BF76000 \SystemRoot\System32\Drivers\ksecdd.sys 0x8BF89000 \SystemRoot\System32\Drivers\cng.sys 0x8BFE6000 \SystemRoot\System32\drivers\pcw.sys 0x8BFF4000 \SystemRoot\System32\Drivers\Fs_Rec.sys 0x8C000000 \SystemRoot\system32\drivers\ndis.sys 0x8C0B7000 \SystemRoot\system32\drivers\NETIO.SYS 0x8C0F5000 \SystemRoot\System32\Drivers\ksecpkg.sys 0x8C202000 \SystemRoot\System32\drivers\tcpip.sys 0x8C34C000 \SystemRoot\System32\drivers\fwpkclnt.sys 0x8C37D000 \SystemRoot\system32\drivers\volsnap.sys 0x8C3BC000 \SystemRoot\System32\Drivers\spldr.sys 0x8C3C4000 \SystemRoot\System32\drivers\rdyboost.sys 0x8C3F1000 \SystemRoot\system32\DRIVERS\nvpciflt.sys 0x8C11A000 \SystemRoot\System32\Drivers\mup.sys 0x8C3F5000 \SystemRoot\System32\drivers\hwpolicy.sys 0x8C12A000 \SystemRoot\System32\DRIVERS\fvevol.sys 0x8C15C000 \SystemRoot\system32\DRIVERS\disk.sys 0x8C16D000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS 0x8C192000 \SystemRoot\System32\Drivers\BtHidBus.sys 0x90E00000 \SystemRoot\system32\drivers\cdrom.sys 0x90E1F000 \SystemRoot\System32\Drivers\Null.SYS 0x90FEE000 \SystemRoot\System32\Drivers\Beep.SYS 0x8C1A3000 \SystemRoot\system32\DRIVERS\ehdrv.sys 0x8C1C2000 \SystemRoot\System32\drivers\vga.sys 0x8C1CE000 \SystemRoot\System32\drivers\VIDEOPRT.SYS 0x8C1EF000 \SystemRoot\System32\drivers\watchdog.sys 0x90FF5000 \SystemRoot\System32\DRIVERS\RDPCDD.sys 0x8BE00000 \SystemRoot\system32\drivers\rdpencdd.sys 0x8BE08000 \SystemRoot\system32\drivers\rdprefmp.sys 0x8BE10000 \SystemRoot\System32\Drivers\Msfs.SYS 0x8BBCB000 \SystemRoot\System32\Drivers\Npfs.SYS 0x8BBD9000 \SystemRoot\system32\DRIVERS\tdx.sys 0x8BBF0000 \SystemRoot\system32\DRIVERS\TDI.SYS 0x9160D000 \SystemRoot\system32\drivers\afd.sys 0x91667000 \SystemRoot\System32\DRIVERS\netbt.sys 0x91699000 \SystemRoot\system32\DRIVERS\vsdatant.sys 0x91723000 \SystemRoot\system32\DRIVERS\wfplwf.sys 0x9172A000 \SystemRoot\system32\DRIVERS\pacer.sys 0x91749000 \SystemRoot\system32\DRIVERS\vwififlt.sys 0x9175A000 \SystemRoot\system32\DRIVERS\netbios.sys 0x91768000 \SystemRoot\system32\DRIVERS\wanarp.sys 0x9177B000 \SystemRoot\system32\drivers\termdd.sys 0x9178C000 \SystemRoot\system32\DRIVERS\rdbss.sys 0x917CD000 \SystemRoot\system32\drivers\nsiproxy.sys 0x917D7000 \SystemRoot\system32\drivers\mssmbios.sys 0x917E1000 \SystemRoot\System32\Drivers\ElbyCDIO.sys 0x917EB000 \SystemRoot\System32\drivers\discache.sys 0x8BA00000 \SystemRoot\System32\Drivers\dfsc.sys 0x8B9AF000 \SystemRoot\system32\DRIVERS\blbdrive.sys 0x8B9BD000 \SystemRoot\system32\DRIVERS\tunnel.sys 0x9301E000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys 0x939F6000 \SystemRoot\system32\DRIVERS\nvBridge.kmd 0x9243D000 \SystemRoot\System32\drivers\dxgkrnl.sys 0x924F4000 \SystemRoot\System32\drivers\dxgmms1.sys 0x93E06000 \SystemRoot\system32\DRIVERS\igdkmd32.sys 0x94726000 \SystemRoot\system32\DRIVERS\HECI.sys 0x94731000 \SystemRoot\system32\drivers\usbehci.sys 0x94740000 \SystemRoot\system32\drivers\USBPORT.SYS 0x9478B000 \SystemRoot\system32\drivers\HDAudBus.sys 0x947AA000 \SystemRoot\system32\DRIVERS\L1C62x86.sys 0x947BC000 \SystemRoot\system32\DRIVERS\nusb3xhc.sys 0x947DF000 \SystemRoot\system32\DRIVERS\USBD.SYS 0x9603B000 \SystemRoot\system32\DRIVERS\rtl8192se.sys 0x9614E000 \SystemRoot\system32\DRIVERS\vwifibus.sys 0x96158000 \SystemRoot\system32\DRIVERS\CmBatt.sys 0x9615C000 \SystemRoot\system32\drivers\i8042prt.sys 0x96174000 \SystemRoot\system32\drivers\kbdclass.sys 0x96807000 \SystemRoot\system32\DRIVERS\SynTP.sys 0x96949000 \SystemRoot\system32\drivers\mouclass.sys 0x96956000 \SystemRoot\System32\Drivers\AnyDVD.sys 0x96971000 \SystemRoot\System32\Drivers\ElbyCDFL.sys 0x96978000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys 0x9697F000 \SystemRoot\system32\DRIVERS\Impcd.sys 0x969A0000 \SystemRoot\system32\drivers\wmiacpi.sys 0x969A9000 \SystemRoot\system32\DRIVERS\intelppm.sys 0x969BB000 \SystemRoot\System32\Drivers\btnetBus.sys 0x969C0000 \SystemRoot\System32\Drivers\btcombus.sys 0x969C4000 \SystemRoot\System32\Drivers\IvtBtBus.sys 0x969C8000 \SystemRoot\system32\drivers\CompositeBus.sys 0x969D5000 \SystemRoot\System32\Drivers\x10hid.sys 0x969D7000 \SystemRoot\System32\Drivers\HIDCLASS.SYS 0x969EA000 \SystemRoot\System32\Drivers\HIDPARSE.SYS 0x96181000 \SystemRoot\system32\DRIVERS\AgileVpn.sys 0x96193000 \SystemRoot\system32\DRIVERS\rasl2tp.sys 0x969F1000 \SystemRoot\system32\DRIVERS\ndistapi.sys 0x961AB000 \SystemRoot\system32\DRIVERS\ndiswan.sys 0x961CD000 \SystemRoot\system32\DRIVERS\raspppoe.sys 0x961E5000 \SystemRoot\system32\DRIVERS\raspptp.sys 0x96000000 \SystemRoot\system32\DRIVERS\rassstp.sys 0x96017000 \SystemRoot\System32\Drivers\pcouffin.sys 0x969FC000 \SystemRoot\system32\drivers\swenum.sys 0x9252D000 \SystemRoot\system32\drivers\ks.sys 0x96023000 \SystemRoot\system32\DRIVERS\umbus.sys 0x92561000 \SystemRoot\system32\DRIVERS\usbhub.sys 0x947E1000 \SystemRoot\system32\DRIVERS\nusb3hub.sys 0x947F0000 \SystemRoot\system32\drivers\kbdhid.sys 0x925A5000 \SystemRoot\System32\Drivers\NDProxy.SYS 0x98429000 \SystemRoot\system32\drivers\RTKVHDA.sys 0x9871F000 \SystemRoot\system32\drivers\portcls.sys 0x9874E000 \SystemRoot\system32\drivers\drmk.sys 0x98767000 \SystemRoot\system32\DRIVERS\IntcDAud.sys 0x98800000 \SystemRoot\System32\win32k.sys 0x987A8000 \SystemRoot\System32\drivers\Dxapi.sys 0x987B2000 \SystemRoot\System32\Drivers\crashdmp.sys 0x90E26000 \SystemRoot\System32\Drivers\dump_iaStor.sys 0x987BF000 \SystemRoot\System32\Drivers\dump_dumpfve.sys 0x987D0000 \SystemRoot\system32\DRIVERS\monitor.sys 0x987DB000 \SystemRoot\system32\DRIVERS\usbccgp.sys 0x98400000 \SystemRoot\System32\Drivers\usbvideo.sys 0x987F2000 \SystemRoot\system32\drivers\hidusb.sys 0x925E7000 \SystemRoot\system32\DRIVERS\mouhid.sys 0x98A60000 \SystemRoot\System32\TSDDD.dll 0x98A90000 \SystemRoot\System32\cdd.dll 0x92400000 \SystemRoot\system32\drivers\luafv.sys 0x93C10000 \SystemRoot\system32\DRIVERS\eamonm.sys 0x93CB6000 \SystemRoot\system32\drivers\WudfPf.sys 0x93CD0000 \SystemRoot\system32\DRIVERS\lltdio.sys 0x93CE0000 \SystemRoot\system32\DRIVERS\nwifi.sys 0x93D26000 \SystemRoot\system32\DRIVERS\ndisuio.sys 0x93D36000 \SystemRoot\system32\DRIVERS\rspndr.sys 0x93D49000 \SystemRoot\system32\DRIVERS\vwifimp.sys 0x93D52000 \SystemRoot\system32\drivers\HTTP.sys 0x93DD7000 \SystemRoot\system32\DRIVERS\bowser.sys 0x9241B000 \SystemRoot\System32\drivers\mpsdrv.sys 0x925B6000 \SystemRoot\system32\DRIVERS\mrxsmb.sys 0xB4C29000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys 0xB4C64000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys 0xB4C97000 \SystemRoot\system32\DRIVERS\epfwwfpr.sys 0xB4CB0000 \SystemRoot\system32\drivers\peauth.sys 0xB4D47000 \SystemRoot\System32\Drivers\secdrv.SYS 0xB4D51000 \SystemRoot\System32\DRIVERS\srvnet.sys 0xB4D72000 \SystemRoot\System32\drivers\tcpipreg.sys 0xB4D7F000 \SystemRoot\System32\DRIVERS\srv2.sys 0xBAE24000 \SystemRoot\System32\DRIVERS\srv.sys 0xBAE76000 \??\C:\Users\Ivo\AppData\Local\Temp\ALSysIO.sys 0xBAE7E000 \??\C:\Program Files\IVT Corporation\BlueSoleil\Device\Win2k\BTNetFilter.sys 0x77240000 \Windows\System32\ntdll.dll 0x47BB0000 \Windows\System32\smss.exe 0x77480000 \Windows\System32\apisetschema.dll 0x00EE0000 \Windows\System32\autochk.exe 0x773E0000 \Windows\System32\oleaut32.dll 0x77170000 \Windows\System32\msctf.dll 0x770C0000 \Windows\System32\msvcrt.dll 0x76FE0000 \Windows\System32\kernel32.dll 0x76F40000 \Windows\System32\usp10.dll 0x77390000 \Windows\System32\gdi32.dll 0x76D80000 \Windows\System32\iertutil.dll 0x76C60000 \Windows\System32\wininet.dll 0x76C20000 \Windows\System32\ws2_32.dll 0x76B90000 \Windows\System32\clbcatq.dll 0x76A30000 \Windows\System32\ole32.dll 0x75DE0000 \Windows\System32\shell32.dll 0x77380000 \Windows\System32\psapi.dll 0x75D60000 \Windows\System32\comdlg32.dll 0x75C50000 \Windows\System32\urlmon.dll 0x75B80000 \Windows\System32\user32.dll 0x75B60000 \Windows\System32\imm32.dll 0x75B10000 \Windows\System32\Wldap32.dll 0x75B00000 \Windows\System32\normaliz.dll 0x75AA0000 \Windows\System32\difxapi.dll 0x759F0000 \Windows\System32\rpcrt4.dll 0x75950000 \Windows\System32\advapi32.dll 0x75940000 \Windows\System32\nsi.dll 0x75930000 \Windows\System32\lpk.dll 0x75910000 \Windows\System32\sechost.dll 0x758B0000 \Windows\System32\shlwapi.dll 0x75710000 \Windows\System32\setupapi.dll 0x756E0000 \Windows\System32\imagehlp.dll 0x756B0000 \Windows\System32\cfgmgr32.dll 0x75660000 \Windows\System32\KernelBase.dll 0x755D0000 \Windows\System32\comctl32.dll 0x755A0000 \Windows\System32\wintrust.dll 0x75580000 \Windows\System32\devobj.dll 0x75460000 \Windows\System32\crypt32.dll 0x75450000 \Windows\System32\msasn1.dll Processes (total 85): 0 System Idle Process 4 System 340 C:\Windows\System32\smss.exe 484 csrss.exe 580 C:\Windows\System32\wininit.exe 588 csrss.exe 628 C:\Windows\System32\services.exe 652 C:\Windows\System32\lsass.exe 660 C:\Windows\System32\lsm.exe 764 C:\Windows\System32\svchost.exe 824 C:\Windows\System32\nvvsvc.exe 884 C:\Windows\System32\winlogon.exe 912 C:\Windows\System32\svchost.exe 980 C:\Windows\System32\svchost.exe 1036 C:\Windows\System32\svchost.exe 1064 C:\Windows\System32\svchost.exe 1132 C:\Windows\System32\audiodg.exe 1208 C:\Windows\System32\svchost.exe 1256 C:\Windows\System32\nvvsvc.exe 1352 C:\Windows\System32\svchost.exe 1400 C:\Windows\System32\ZoneLabs\vsmon.exe 1620 C:\Windows\System32\dwm.exe 1668 C:\Windows\explorer.exe 1960 C:\Windows\System32\taskeng.exe 1968 C:\Windows\System32\spoolsv.exe 2012 C:\Windows\System32\taskhost.exe 2028 C:\Windows\System32\svchost.exe 548 C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe 1148 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 1488 C:\Windows\System32\taskeng.exe 1820 C:\Program Files\Core Temp\Core Temp.exe 1804 C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe 1568 C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe 1012 C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe 1204 C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe 1016 C:\Program Files\Bonjour\mDNSResponder.exe 2068 C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe 2120 C:\Program Files\Launch Manager\HotkeyApp.exe 2248 C:\Program Files\Launch Manager\OSD.exe 2272 C:\Program Files\Launch Manager\WButton.exe 2340 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe 2352 C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe 2380 C:\Windows\System32\hkcmd.exe 2444 C:\Windows\System32\igfxpers.exe 2584 C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe 2596 C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe 2608 C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe 2872 C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe 2896 C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE 2952 C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe 3032 C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe 3104 C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe 3140 C:\Program Files\Common Files\microsoft shared\VS7DEBUG\mdm.exe 3220 C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe 3256 C:\Program Files\CyberLink\Shared files\RichVideo.exe 3300 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 3440 C:\Program Files\Common Files\Java\Java Update\jusched.exe 3452 C:\Program Files\iTunes\iTunesHelper.exe 3492 C:\Program Files\Windows Sidebar\sidebar.exe 3504 C:\Program Files\Songbird\songbirditunesagent.exe 3532 C:\Program Files\FireTrust\MailWasher Pro\MailWasher.exe 3860 C:\Windows\System32\svchost.exe 3928 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE 4072 C:\PROGRA~1\COMMON~1\X10\Common\X10nets.exe 2180 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE 848 WmiPrvSE.exe 3628 C:\Windows\System32\svchost.exe 2756 C:\Program Files\iPod\bin\iPodService.exe 3812 C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe 3060 C:\Windows\System32\SearchIndexer.exe 4300 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe 4332 C:\Program Files\Launch Manager\WisLMSvc.exe 4472 C:\Windows\System32\svchost.exe 4520 WmiPrvSE.exe 4732 C:\Windows\System32\SearchProtocolHost.exe 4804 C:\Windows\System32\SearchFilterHost.exe 4900 C:\Windows\System32\svchost.exe 4964 C:\Windows\servicing\TrustedInstaller.exe 5028 C:\Program Files\Internet Explorer\iexplore.exe 5128 C:\Program Files\Internet Explorer\iexplore.exe 5360 C:\Windows\System32\Macromed\Flash\FlashUtil10t_ActiveX.exe 6032 dllhost.exe 6084 dllhost.exe 6120 C:\Users\Ivo\Downloads\MBRCheck.exe 6132 C:\Windows\System32\conhost.exe \\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`06500000 (NTFS) \\.\D: --> \\.\PhysicalDrive0 at offset 0x0000008d`4ad00000 (NTFS) PhysicalDrive0 Model Number: SAMSUNGHM641JI, Rev: 2AJ10001 Size Device Name MBR Status -------------------------------------------- 596 GB \\.\PhysicalDrive0 Unknown MBR code SHA1: A1D8436B9D28AE5947F8CFF23FE54B1DC1738268 Found non-standard or infected MBR. Enter 'Y' and hit ENTER for more options, or 'N' to exit: Done!
  • We zullen de MBR op een andere wijze moeten reparern. Heb jij een Windows 7 installatieschijf?
  • Ik heb een medion laptop (P6624) daarop staat de recovery software, maar ik heb dus ook 2 reovery disks waarop staat recovery disk met windows 7 home premium ( ene is 32 bits en andere is 64 bits) Vanaf de fabriek staat er standaard de 32 bits versie op en die is dus ook op mijn latop geïnstalleerd.
  • Oké, weet jij hoe een ISO te branden? Want dan laat ik je een volledige versie vanWindows7 downloaden!
  • Als ik op een iso bestand klik, dan pikt geloof ik nero dat automatisch op, dus dat moet wel lukken ja
  • Oké en prima geregeld dus, doe het volgende: download: Windows 7 Enterprise 90-day Trial [url]http://technet.microsoft.com/en-us/evalcenter/cc442495.aspx?ITPID=wtcfeed[/url] Scroll op die pagina naar beneden en bepaal je keus op de 32- of 64-bit versie. Om voor de download in aanmerking te komen geldt het volgende: je moet kunnen inloggen bij Microsoft en daarna geef je aan dat je IT-manager bent en dat jij Windows 7 wil evalueren. Je download dan het ISO-bestand dat je met een brandprogramma op een DVD-rom brandt. Is de Iso gebrand, dan boot je jouw notebook vanaf die DVD met Windows 7. Voor meer info over hoe en wat verder: http://www.nationaalcomputerforum.nl/showthread.php?t=63306 Is dat allemaal gedaan, post dan de conclusie van een nieuw aangemaakt MBRCheck-log.
  • Hier de log: MBRCheck, version 1.2.3 (c) 2010, AD Command-line: Windows Version: Windows 7 Home Premium Edition Windows Information: Service Pack 1 (build 7601), 32-bit Base Board Manufacturer: MEDION BIOS Manufacturer: American Megatrends Inc. System Manufacturer: MEDION System Product Name: P6624 Logical Drives Mask: 0x0000001c Kernel Drivers (total 202): 0x82E44000 \SystemRoot\system32\ntkrnlpa.exe 0x82E0D000 \SystemRoot\system32\halmacpi.dll 0x80BBE000 \SystemRoot\system32\kdcom.dll 0x8B803000 \SystemRoot\system32\mcupdate_GenuineIntel.dll 0x8B888000 \SystemRoot\system32\PSHED.dll 0x8B899000 \SystemRoot\system32\BOOTVID.dll 0x8B8A1000 \SystemRoot\system32\CLFS.SYS 0x8B8E3000 \SystemRoot\system32\CI.dll 0x8B98E000 \SystemRoot\system32\drivers\Wdf01000.sys 0x8BA21000 \SystemRoot\system32\drivers\WDFLDR.SYS 0x8BA2F000 \SystemRoot\system32\drivers\ACPI.sys 0x8BA77000 \SystemRoot\system32\drivers\WMILIB.SYS 0x8BA80000 \SystemRoot\system32\drivers\msisadrv.sys 0x8BA88000 \SystemRoot\system32\drivers\pci.sys 0x8BAB2000 \SystemRoot\system32\drivers\vdrvroot.sys 0x8BABD000 \SystemRoot\System32\drivers\partmgr.sys 0x8BACE000 \SystemRoot\system32\DRIVERS\compbatt.sys 0x8BAD6000 \SystemRoot\system32\DRIVERS\BATTC.SYS 0x8BAE1000 \SystemRoot\system32\drivers\volmgr.sys 0x8BAF1000 \SystemRoot\System32\drivers\volmgrx.sys 0x8BB3C000 \SystemRoot\System32\drivers\mountmgr.sys 0x8BC2C000 \SystemRoot\system32\DRIVERS\iaStor.sys 0x8BDE1000 \SystemRoot\system32\drivers\amdxata.sys 0x8BB52000 \SystemRoot\system32\drivers\fltmgr.sys 0x8BDEA000 \SystemRoot\system32\drivers\fileinfo.sys 0x8BE39000 \SystemRoot\System32\Drivers\Ntfs.sys 0x8BF68000 \SystemRoot\System32\Drivers\msrpc.sys 0x8BF93000 \SystemRoot\System32\Drivers\ksecdd.sys 0x8BB86000 \SystemRoot\System32\Drivers\cng.sys 0x8BFA6000 \SystemRoot\System32\drivers\pcw.sys 0x8BFB4000 \SystemRoot\System32\Drivers\Fs_Rec.sys 0x8C030000 \SystemRoot\system32\drivers\ndis.sys 0x8C0E7000 \SystemRoot\system32\drivers\NETIO.SYS 0x8C125000 \SystemRoot\System32\Drivers\ksecpkg.sys 0x8C22A000 \SystemRoot\System32\drivers\tcpip.sys 0x8C374000 \SystemRoot\System32\drivers\fwpkclnt.sys 0x8C3A5000 \SystemRoot\system32\drivers\volsnap.sys 0x8C3E4000 \SystemRoot\System32\Drivers\spldr.sys 0x8C14A000 \SystemRoot\System32\drivers\rdyboost.sys 0x8C3EC000 \SystemRoot\system32\DRIVERS\nvpciflt.sys 0x8C3F0000 \SystemRoot\System32\Drivers\mup.sys 0x8C200000 \SystemRoot\System32\drivers\hwpolicy.sys 0x8C177000 \SystemRoot\System32\DRIVERS\fvevol.sys 0x8C208000 \SystemRoot\system32\DRIVERS\disk.sys 0x8C1A9000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS 0x8C219000 \SystemRoot\System32\Drivers\BtHidBus.sys 0x90BD1000 \SystemRoot\system32\drivers\cdrom.sys 0x90BF0000 \SystemRoot\System32\Drivers\Null.SYS 0x90BF7000 \SystemRoot\System32\Drivers\Beep.SYS 0x8C1CE000 \SystemRoot\system32\DRIVERS\ehdrv.sys 0x8C1ED000 \SystemRoot\System32\drivers\vga.sys 0x8C000000 \SystemRoot\System32\drivers\VIDEOPRT.SYS 0x8C021000 \SystemRoot\System32\drivers\watchdog.sys 0x90A00000 \SystemRoot\System32\DRIVERS\RDPCDD.sys 0x8BFBD000 \SystemRoot\system32\drivers\rdpencdd.sys 0x8BFC5000 \SystemRoot\system32\drivers\rdprefmp.sys 0x8BFCD000 \SystemRoot\System32\Drivers\Msfs.SYS 0x8BFD8000 \SystemRoot\System32\Drivers\Npfs.SYS 0x8BFE6000 \SystemRoot\system32\DRIVERS\tdx.sys 0x8BE00000 \SystemRoot\system32\DRIVERS\TDI.SYS 0x9161D000 \SystemRoot\system32\drivers\afd.sys 0x91677000 \SystemRoot\System32\DRIVERS\netbt.sys 0x916A9000 \SystemRoot\system32\DRIVERS\vsdatant.sys 0x91733000 \SystemRoot\system32\DRIVERS\wfplwf.sys 0x9173A000 \SystemRoot\system32\DRIVERS\pacer.sys 0x91759000 \SystemRoot\system32\DRIVERS\vwififlt.sys 0x9176A000 \SystemRoot\system32\DRIVERS\netbios.sys 0x91778000 \SystemRoot\system32\DRIVERS\wanarp.sys 0x9178B000 \SystemRoot\system32\drivers\termdd.sys 0x9179C000 \SystemRoot\system32\DRIVERS\rdbss.sys 0x917DD000 \SystemRoot\system32\drivers\nsiproxy.sys 0x917E7000 \SystemRoot\system32\drivers\mssmbios.sys 0x917F1000 \SystemRoot\System32\Drivers\ElbyCDIO.sys 0x91600000 \SystemRoot\System32\drivers\discache.sys 0x8BE0C000 \SystemRoot\System32\Drivers\dfsc.sys 0x9160C000 \SystemRoot\system32\DRIVERS\blbdrive.sys 0x8BC00000 \SystemRoot\system32\DRIVERS\tunnel.sys 0x9301B000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys 0x939F3000 \SystemRoot\system32\DRIVERS\nvBridge.kmd 0x92A05000 \SystemRoot\System32\drivers\dxgkrnl.sys 0x92ABC000 \SystemRoot\System32\drivers\dxgmms1.sys 0x93E07000 \SystemRoot\system32\DRIVERS\igdkmd32.sys 0x94727000 \SystemRoot\system32\DRIVERS\HECI.sys 0x94732000 \SystemRoot\system32\drivers\usbehci.sys 0x94741000 \SystemRoot\system32\drivers\USBPORT.SYS 0x9478C000 \SystemRoot\system32\drivers\HDAudBus.sys 0x947AB000 \SystemRoot\system32\DRIVERS\L1C62x86.sys 0x947BD000 \SystemRoot\system32\DRIVERS\nusb3xhc.sys 0x947E0000 \SystemRoot\system32\DRIVERS\USBD.SYS 0x97230000 \SystemRoot\system32\DRIVERS\rtl8192se.sys 0x97343000 \SystemRoot\system32\DRIVERS\vwifibus.sys 0x9734D000 \SystemRoot\system32\DRIVERS\CmBatt.sys 0x97351000 \SystemRoot\system32\drivers\i8042prt.sys 0x97369000 \SystemRoot\system32\drivers\kbdclass.sys 0x97805000 \SystemRoot\system32\DRIVERS\SynTP.sys 0x97947000 \SystemRoot\system32\drivers\mouclass.sys 0x97954000 \SystemRoot\System32\Drivers\AnyDVD.sys 0x9796F000 \SystemRoot\System32\Drivers\ElbyCDFL.sys 0x97976000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys 0x9797D000 \SystemRoot\system32\DRIVERS\Impcd.sys 0x9799E000 \SystemRoot\system32\drivers\wmiacpi.sys 0x979A7000 \SystemRoot\system32\DRIVERS\intelppm.sys 0x979B9000 \SystemRoot\System32\Drivers\btnetBus.sys 0x979BE000 \SystemRoot\System32\Drivers\btcombus.sys 0x979C2000 \SystemRoot\System32\Drivers\IvtBtBus.sys 0x979C6000 \SystemRoot\system32\drivers\CompositeBus.sys 0x979D3000 \SystemRoot\System32\Drivers\x10hid.sys 0x979D5000 \SystemRoot\System32\Drivers\HIDCLASS.SYS 0x979E8000 \SystemRoot\System32\Drivers\HIDPARSE.SYS 0x97376000 \SystemRoot\system32\DRIVERS\AgileVpn.sys 0x97388000 \SystemRoot\system32\DRIVERS\rasl2tp.sys 0x979EF000 \SystemRoot\system32\DRIVERS\ndistapi.sys 0x973A0000 \SystemRoot\system32\DRIVERS\ndiswan.sys 0x973C2000 \SystemRoot\system32\DRIVERS\raspppoe.sys 0x973DA000 \SystemRoot\system32\DRIVERS\raspptp.sys 0x97200000 \SystemRoot\system32\DRIVERS\rassstp.sys 0x97217000 \SystemRoot\System32\Drivers\pcouffin.sys 0x979FA000 \SystemRoot\system32\drivers\swenum.sys 0x92AF5000 \SystemRoot\system32\drivers\ks.sys 0x973F1000 \SystemRoot\system32\DRIVERS\umbus.sys 0x92B29000 \SystemRoot\system32\DRIVERS\usbhub.sys 0x947E2000 \SystemRoot\system32\DRIVERS\nusb3hub.sys 0x97223000 \SystemRoot\system32\drivers\kbdhid.sys 0x92B6D000 \SystemRoot\System32\Drivers\NDProxy.SYS 0x98C18000 \SystemRoot\system32\drivers\RTKVHDA.sys 0x98F0E000 \SystemRoot\system32\drivers\portcls.sys 0x98F3D000 \SystemRoot\system32\drivers\drmk.sys 0x98F56000 \SystemRoot\system32\DRIVERS\IntcDAud.sys 0x99340000 \SystemRoot\System32\win32k.sys 0x98F97000 \SystemRoot\System32\drivers\Dxapi.sys 0x98FA1000 \SystemRoot\System32\Drivers\crashdmp.sys 0x90A08000 \SystemRoot\System32\Drivers\dump_iaStor.sys 0x98FAE000 \SystemRoot\System32\Drivers\dump_dumpfve.sys 0x98FBF000 \SystemRoot\system32\DRIVERS\monitor.sys 0x995A0000 \SystemRoot\System32\TSDDD.dll 0x98FCA000 \SystemRoot\system32\DRIVERS\usbccgp.sys 0x92B7E000 \SystemRoot\System32\Drivers\usbvideo.sys 0x995D0000 \SystemRoot\System32\cdd.dll 0x98FE1000 \SystemRoot\system32\drivers\hidusb.sys 0x98FEC000 \SystemRoot\system32\DRIVERS\mouhid.sys 0x92BA2000 \SystemRoot\system32\drivers\luafv.sys 0x95824000 \SystemRoot\system32\DRIVERS\eamonm.sys 0x958CA000 \SystemRoot\system32\drivers\WudfPf.sys 0x958E4000 \SystemRoot\system32\DRIVERS\lltdio.sys 0x958F4000 \SystemRoot\system32\DRIVERS\nwifi.sys 0x9593A000 \SystemRoot\system32\DRIVERS\ndisuio.sys 0x9594A000 \SystemRoot\system32\DRIVERS\rspndr.sys 0x9595D000 \SystemRoot\system32\DRIVERS\vwifimp.sys 0x95966000 \SystemRoot\system32\drivers\HTTP.sys 0x95800000 \SystemRoot\system32\DRIVERS\bowser.sys 0x959EB000 \SystemRoot\System32\drivers\mpsdrv.sys 0x92BBD000 \SystemRoot\system32\DRIVERS\mrxsmb.sys 0xB6837000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys 0xB6872000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys 0xB68A5000 \SystemRoot\system32\DRIVERS\epfwwfpr.sys 0xB68BE000 \SystemRoot\system32\drivers\peauth.sys 0xB6955000 \SystemRoot\System32\Drivers\secdrv.SYS 0xB695F000 \SystemRoot\System32\DRIVERS\srvnet.sys 0xB6980000 \SystemRoot\System32\drivers\tcpipreg.sys 0xB698D000 \SystemRoot\System32\DRIVERS\srv2.sys 0xB9422000 \SystemRoot\System32\DRIVERS\srv.sys 0xB9474000 \??\C:\Users\Ivo\AppData\Local\Temp\ALSysIO.sys 0xB947C000 \??\C:\Program Files\IVT Corporation\BlueSoleil\Device\Win2k\BTNetFilter.sys 0x76F90000 \Windows\System32\ntdll.dll 0x479E0000 \Windows\System32\smss.exe 0x771D0000 \Windows\System32\apisetschema.dll 0x00130000 \Windows\System32\autochk.exe 0x77120000 \Windows\System32\advapi32.dll 0x76DF0000 \Windows\System32\setupapi.dll 0x76CD0000 \Windows\System32\wininet.dll 0x76B70000 \Windows\System32\ole32.dll 0x769B0000 \Windows\System32\iertutil.dll 0x768E0000 \Windows\System32\msctf.dll 0x76880000 \Windows\System32\difxapi.dll 0x767F0000 \Windows\System32\oleaut32.dll 0x770F0000 \Windows\System32\imagehlp.dll 0x767B0000 \Windows\System32\ws2_32.dll 0x76700000 \Windows\System32\msvcrt.dll 0x770E0000 \Windows\System32\psapi.dll 0x76630000 \Windows\System32\user32.dll 0x759E0000 \Windows\System32\shell32.dll 0x770D0000 \Windows\System32\normaliz.dll 0x75980000 \Windows\System32\shlwapi.dll 0x75930000 \Windows\System32\Wldap32.dll 0x75910000 \Windows\System32\sechost.dll 0x75830000 \Windows\System32\kernel32.dll 0x75810000 \Windows\System32\imm32.dll 0x75770000 \Windows\System32\usp10.dll 0x756F0000 \Windows\System32\comdlg32.dll 0x756E0000 \Windows\System32\lpk.dll 0x755D0000 \Windows\System32\urlmon.dll 0x75580000 \Windows\System32\gdi32.dll 0x754F0000 \Windows\System32\clbcatq.dll 0x75440000 \Windows\System32\rpcrt4.dll 0x75430000 \Windows\System32\nsi.dll 0x75400000 \Windows\System32\cfgmgr32.dll 0x753E0000 \Windows\System32\devobj.dll 0x752C0000 \Windows\System32\crypt32.dll 0x75230000 \Windows\System32\comctl32.dll 0x751E0000 \Windows\System32\KernelBase.dll 0x751B0000 \Windows\System32\wintrust.dll 0x751A0000 \Windows\System32\msasn1.dll Processes (total 85): 0 System Idle Process 4 System 336 C:\Windows\System32\smss.exe 484 csrss.exe 560 C:\Windows\System32\wininit.exe 572 csrss.exe 624 C:\Windows\System32\services.exe 636 C:\Windows\System32\lsass.exe 644 C:\Windows\System32\lsm.exe 724 C:\Windows\System32\winlogon.exe 792 C:\Windows\System32\svchost.exe 852 C:\Windows\System32\nvvsvc.exe 892 C:\Windows\System32\svchost.exe 988 C:\Windows\System32\svchost.exe 1024 C:\Windows\System32\svchost.exe 1068 C:\Windows\System32\svchost.exe 1128 C:\Windows\System32\audiodg.exe 1192 C:\Windows\System32\svchost.exe 1240 C:\Windows\System32\nvvsvc.exe 1328 C:\Windows\System32\svchost.exe 1380 C:\Windows\System32\ZoneLabs\vsmon.exe 1612 C:\Windows\System32\dwm.exe 1636 C:\Windows\explorer.exe 1948 C:\Windows\System32\taskeng.exe 1956 C:\Windows\System32\spoolsv.exe 2036 C:\Windows\System32\svchost.exe 1076 C:\Windows\System32\taskhost.exe 1272 C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe 1628 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 1752 C:\Windows\System32\taskeng.exe 1836 C:\Program Files\Core Temp\Core Temp.exe 436 C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe 304 C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe 808 C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe 1552 C:\Program Files\Launch Manager\HotkeyApp.exe 1908 C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe 2088 C:\Program Files\Launch Manager\OSD.exe 2140 C:\Program Files\Launch Manager\WButton.exe 2220 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe 2236 C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe 2264 C:\Program Files\Bonjour\mDNSResponder.exe 2304 C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe 2400 C:\Windows\System32\hkcmd.exe 2504 C:\Windows\System32\igfxpers.exe 2536 C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe 2548 C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe 2556 C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe 2684 C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe 2716 C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE 2740 C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe 2904 C:\Program Files\Common Files\Java\Java Update\jusched.exe 2916 C:\Program Files\iTunes\iTunesHelper.exe 2952 C:\Program Files\Windows Sidebar\sidebar.exe 2972 C:\Program Files\Songbird\songbirditunesagent.exe 2992 C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe 3048 C:\Program Files\FireTrust\MailWasher Pro\MailWasher.exe 3084 C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe 4004 C:\Program Files\Common Files\microsoft shared\VS7DEBUG\mdm.exe 4056 C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe 2096 C:\Program Files\CyberLink\Shared files\RichVideo.exe 2196 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 996 C:\Windows\System32\svchost.exe 2396 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE 2680 C:\PROGRA~1\COMMON~1\X10\Common\X10nets.exe 2788 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE 2180 WmiPrvSE.exe 2472 C:\Windows\System32\svchost.exe 3604 C:\Program Files\iPod\bin\iPodService.exe 3816 C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe 3500 C:\Windows\System32\SearchIndexer.exe 4184 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe 4216 C:\Program Files\Launch Manager\WisLMSvc.exe 4368 C:\Windows\System32\svchost.exe 4464 C:\Windows\System32\SearchProtocolHost.exe 4512 WmiPrvSE.exe 4524 C:\Windows\System32\SearchFilterHost.exe 4696 C:\Windows\System32\svchost.exe 4744 C:\Windows\servicing\TrustedInstaller.exe 4928 C:\Program Files\Internet Explorer\iexplore.exe 5104 C:\Program Files\Internet Explorer\iexplore.exe 5284 C:\Windows\System32\Macromed\Flash\FlashUtil10t_ActiveX.exe 3036 dllhost.exe 4844 dllhost.exe 3940 C:\Users\Ivo\Downloads\MBRCheck.exe 3708 C:\Windows\System32\conhost.exe \\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`06500000 (NTFS) \\.\D: --> \\.\PhysicalDrive0 at offset 0x0000008d`4ad00000 (NTFS) PhysicalDrive0 Model Number: SAMSUNGHM641JI, Rev: 2AJ10001 Size Device Name MBR Status -------------------------------------------- 596 GB \\.\PhysicalDrive0 Windows 7 MBR code detected SHA1: 4379A3D43019B46FA357F7DD6A53B45A3CA8FB79 Done! Hallo Abraham54, mbr was niet corrupt zeg maar, maar ik denk door Medion aangepast, als ik nu de laptop opstart dan heb ik niet meer de F11 optie voor recovery. Opzich niet erg, want ik heb dus zowel recovery dvd 32 en 64 bits als de driver dvd. Op de D schijft staat o.a een mapje tools met daarin: HOTKEY_MBR.Bin set MBR.BAT set MBR.exe Is daar mee misschien die F11 optie mee terug te halen, zo ja hoe gaat dat zo nee, dan is het maar zo
  • Ik heb een andere laptop met die recovery dvd van medion laten opstarten, dat is dus gewoon windows 7 premium. Als ik met die schijf laptop laat opstarten en dan bootrec.ex /fixmbr laat uitvoeren, zal dat dan weer een mbr geven zoals de laptop uit de frabiek kwam?
  • Ter aanvulling: SetMBR.bat gaf de oplossing, de F11 functie tijdens het opstarten is hersteld. Abraham54 erg bedankt voor je hulp, mocht je in de toekomst soort gelijk geval tegen komen mbt MBR, denk er aan dat Medion die aanpast. Als die functie van F11 weg is of MBR is aangepast, dan is de kans erg groot dat je je garantie verliest bij Medion. Dat heb ik mij zojuist laten vertellen door een medewerkster van Medion. Aangezien ik nog een kleine 3 jaar garantie heb laat ik het zo. Mijn een na laatste mbrcheck log gaf aan dat ie goed is. Zie onderstaande log nu ik die SetMBR.dat heb laten draaien . MBRCheck, version 1.2.3 (c) 2010, AD Command-line: Windows Version: Windows 7 Home Premium Edition Windows Information: Service Pack 1 (build 7601), 32-bit Base Board Manufacturer: MEDION BIOS Manufacturer: American Megatrends Inc. System Manufacturer: MEDION System Product Name: P6624 Logical Drives Mask: 0x0000001c Kernel Drivers (total 202): 0x82E17000 \SystemRoot\system32\ntkrnlpa.exe 0x83229000 \SystemRoot\system32\halmacpi.dll 0x80BB2000 \SystemRoot\system32\kdcom.dll 0x8B815000 \SystemRoot\system32\mcupdate_GenuineIntel.dll 0x8B89A000 \SystemRoot\system32\PSHED.dll 0x8B8AB000 \SystemRoot\system32\BOOTVID.dll 0x8B8B3000 \SystemRoot\system32\CLFS.SYS 0x8B8F5000 \SystemRoot\system32\CI.dll 0x8BA0F000 \SystemRoot\system32\drivers\Wdf01000.sys 0x8BA80000 \SystemRoot\system32\drivers\WDFLDR.SYS 0x8BA8E000 \SystemRoot\system32\drivers\ACPI.sys 0x8BAD6000 \SystemRoot\system32\drivers\WMILIB.SYS 0x8BADF000 \SystemRoot\system32\drivers\msisadrv.sys 0x8BAE7000 \SystemRoot\system32\drivers\pci.sys 0x8BB11000 \SystemRoot\system32\drivers\vdrvroot.sys 0x8BB1C000 \SystemRoot\System32\drivers\partmgr.sys 0x8BB2D000 \SystemRoot\system32\DRIVERS\compbatt.sys 0x8BB35000 \SystemRoot\system32\DRIVERS\BATTC.SYS 0x8BB40000 \SystemRoot\system32\drivers\volmgr.sys 0x8BB50000 \SystemRoot\System32\drivers\volmgrx.sys 0x8BB9B000 \SystemRoot\System32\drivers\mountmgr.sys 0x8BC03000 \SystemRoot\system32\DRIVERS\iaStor.sys 0x8BDB8000 \SystemRoot\system32\drivers\amdxata.sys 0x8BDC1000 \SystemRoot\system32\drivers\fltmgr.sys 0x8BBB1000 \SystemRoot\system32\drivers\fileinfo.sys 0x8BE2B000 \SystemRoot\System32\Drivers\Ntfs.sys 0x8BF5A000 \SystemRoot\System32\Drivers\msrpc.sys 0x8BF85000 \SystemRoot\System32\Drivers\ksecdd.sys 0x8BF98000 \SystemRoot\System32\Drivers\cng.sys 0x8BE00000 \SystemRoot\System32\drivers\pcw.sys 0x8BE0E000 \SystemRoot\System32\Drivers\Fs_Rec.sys 0x8C025000 \SystemRoot\system32\drivers\ndis.sys 0x8C0DC000 \SystemRoot\system32\drivers\NETIO.SYS 0x8C11A000 \SystemRoot\System32\Drivers\ksecpkg.sys 0x8C20D000 \SystemRoot\System32\drivers\tcpip.sys 0x8C357000 \SystemRoot\System32\drivers\fwpkclnt.sys 0x8C388000 \SystemRoot\system32\drivers\volsnap.sys 0x8C3C7000 \SystemRoot\System32\Drivers\spldr.sys 0x8C3CF000 \SystemRoot\System32\drivers\rdyboost.sys 0x8C3FC000 \SystemRoot\system32\DRIVERS\nvpciflt.sys 0x8C13F000 \SystemRoot\System32\Drivers\mup.sys 0x8C200000 \SystemRoot\System32\drivers\hwpolicy.sys 0x8C14F000 \SystemRoot\System32\DRIVERS\fvevol.sys 0x8C181000 \SystemRoot\system32\DRIVERS\disk.sys 0x8C192000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS 0x8C208000 \SystemRoot\System32\Drivers\BtHidBus.sys 0x90200000 \SystemRoot\system32\drivers\cdrom.sys 0x903E9000 \SystemRoot\System32\Drivers\Null.SYS 0x903F0000 \SystemRoot\System32\Drivers\Beep.SYS 0x8C1C4000 \SystemRoot\system32\DRIVERS\ehdrv.sys 0x8C1E3000 \SystemRoot\System32\drivers\vga.sys 0x8C000000 \SystemRoot\System32\drivers\VIDEOPRT.SYS 0x8C1EF000 \SystemRoot\System32\drivers\watchdog.sys 0x903F7000 \SystemRoot\System32\DRIVERS\RDPCDD.sys 0x8BE17000 \SystemRoot\system32\drivers\rdpencdd.sys 0x8BE1F000 \SystemRoot\system32\drivers\rdprefmp.sys 0x8BFF5000 \SystemRoot\System32\Drivers\Msfs.SYS 0x8BBC2000 \SystemRoot\System32\Drivers\Npfs.SYS 0x8BBD0000 \SystemRoot\system32\DRIVERS\tdx.sys 0x8BBE7000 \SystemRoot\system32\DRIVERS\TDI.SYS 0x8B9A0000 \SystemRoot\system32\drivers\afd.sys 0x91A21000 \SystemRoot\System32\DRIVERS\netbt.sys 0x91A53000 \SystemRoot\system32\DRIVERS\vsdatant.sys 0x91ADD000 \SystemRoot\system32\DRIVERS\wfplwf.sys 0x91AE4000 \SystemRoot\system32\DRIVERS\pacer.sys 0x91B03000 \SystemRoot\system32\DRIVERS\vwififlt.sys 0x91B14000 \SystemRoot\system32\DRIVERS\netbios.sys 0x91B22000 \SystemRoot\system32\DRIVERS\wanarp.sys 0x91B35000 \SystemRoot\system32\drivers\termdd.sys 0x91B46000 \SystemRoot\system32\DRIVERS\rdbss.sys 0x91B87000 \SystemRoot\system32\drivers\nsiproxy.sys 0x91B91000 \SystemRoot\system32\drivers\mssmbios.sys 0x91B9B000 \SystemRoot\System32\Drivers\ElbyCDIO.sys 0x91BA5000 \SystemRoot\System32\drivers\discache.sys 0x91BB1000 \SystemRoot\System32\Drivers\dfsc.sys 0x91BC9000 \SystemRoot\system32\DRIVERS\blbdrive.sys 0x91BD7000 \SystemRoot\system32\DRIVERS\tunnel.sys 0x93009000 \SystemRoot\system32\DRIVERS\nvlddmkm.sys 0x939E1000 \SystemRoot\system32\DRIVERS\nvBridge.kmd 0x9961E000 \SystemRoot\System32\drivers\dxgkrnl.sys 0x996D5000 \SystemRoot\System32\drivers\dxgmms1.sys 0x9A026000 \SystemRoot\system32\DRIVERS\igdkmd32.sys 0x9A946000 \SystemRoot\system32\DRIVERS\HECI.sys 0x9A951000 \SystemRoot\system32\drivers\usbehci.sys 0x9A960000 \SystemRoot\system32\drivers\USBPORT.SYS 0x9A9AB000 \SystemRoot\system32\drivers\HDAudBus.sys 0x9A9CA000 \SystemRoot\system32\DRIVERS\L1C62x86.sys 0x9A9DC000 \SystemRoot\system32\DRIVERS\nusb3xhc.sys 0x9A000000 \SystemRoot\system32\DRIVERS\USBD.SYS 0x9840D000 \SystemRoot\system32\DRIVERS\rtl8192se.sys 0x98520000 \SystemRoot\system32\DRIVERS\vwifibus.sys 0x9852A000 \SystemRoot\system32\DRIVERS\CmBatt.sys 0x9852E000 \SystemRoot\system32\drivers\i8042prt.sys 0x98546000 \SystemRoot\system32\drivers\kbdclass.sys 0x98028000 \SystemRoot\system32\DRIVERS\SynTP.sys 0x9816A000 \SystemRoot\system32\drivers\mouclass.sys 0x98177000 \SystemRoot\System32\Drivers\AnyDVD.sys 0x98192000 \SystemRoot\System32\Drivers\ElbyCDFL.sys 0x98199000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys 0x981A0000 \SystemRoot\system32\DRIVERS\Impcd.sys 0x981C1000 \SystemRoot\system32\drivers\wmiacpi.sys 0x981CA000 \SystemRoot\system32\DRIVERS\intelppm.sys 0x981DC000 \SystemRoot\System32\Drivers\btnetBus.sys 0x981E1000 \SystemRoot\System32\Drivers\btcombus.sys 0x981E5000 \SystemRoot\System32\Drivers\IvtBtBus.sys 0x981E9000 \SystemRoot\system32\drivers\CompositeBus.sys 0x981F6000 \SystemRoot\System32\Drivers\x10hid.sys 0x98000000 \SystemRoot\System32\Drivers\HIDCLASS.SYS 0x98013000 \SystemRoot\System32\Drivers\HIDPARSE.SYS 0x98553000 \SystemRoot\system32\DRIVERS\AgileVpn.sys 0x98565000 \SystemRoot\system32\DRIVERS\rasl2tp.sys 0x9801A000 \SystemRoot\system32\DRIVERS\ndistapi.sys 0x9857D000 \SystemRoot\system32\DRIVERS\ndiswan.sys 0x9859F000 \SystemRoot\system32\DRIVERS\raspppoe.sys 0x985B7000 \SystemRoot\system32\DRIVERS\raspptp.sys 0x985CE000 \SystemRoot\system32\DRIVERS\rassstp.sys 0x985E5000 \SystemRoot\System32\Drivers\pcouffin.sys 0x98025000 \SystemRoot\system32\drivers\swenum.sys 0x9970E000 \SystemRoot\system32\drivers\ks.sys 0x985F1000 \SystemRoot\system32\DRIVERS\umbus.sys 0x99742000 \SystemRoot\system32\DRIVERS\usbhub.sys 0x9A002000 \SystemRoot\system32\DRIVERS\nusb3hub.sys 0x98400000 \SystemRoot\system32\drivers\kbdhid.sys 0x9A011000 \SystemRoot\System32\Drivers\NDProxy.SYS 0x9BC00000 \SystemRoot\system32\drivers\RTKVHDA.sys 0x9BEF6000 \SystemRoot\system32\drivers\portcls.sys 0x9BF25000 \SystemRoot\system32\drivers\drmk.sys 0x9BF3E000 \SystemRoot\system32\DRIVERS\IntcDAud.sys 0x9C100000 \SystemRoot\System32\win32k.sys 0x9BF7F000 \SystemRoot\System32\drivers\Dxapi.sys 0x9BF89000 \SystemRoot\System32\Drivers\crashdmp.sys 0x9021F000 \SystemRoot\System32\Drivers\dump_iaStor.sys 0x9BF96000 \SystemRoot\System32\Drivers\dump_dumpfve.sys 0x9BFA7000 \SystemRoot\system32\DRIVERS\monitor.sys 0x9BFB2000 \SystemRoot\system32\DRIVERS\usbccgp.sys 0x9BFC9000 \SystemRoot\System32\Drivers\usbvideo.sys 0x9C360000 \SystemRoot\System32\TSDDD.dll 0x9C390000 \SystemRoot\System32\cdd.dll 0x9BFED000 \SystemRoot\system32\drivers\hidusb.sys 0x99786000 \SystemRoot\system32\DRIVERS\mouhid.sys 0x99791000 \SystemRoot\system32\drivers\luafv.sys 0x96609000 \SystemRoot\system32\DRIVERS\eamonm.sys 0x966AF000 \SystemRoot\system32\drivers\WudfPf.sys 0x966C9000 \SystemRoot\system32\DRIVERS\lltdio.sys 0x966D9000 \SystemRoot\system32\DRIVERS\nwifi.sys 0x9671F000 \SystemRoot\system32\DRIVERS\ndisuio.sys 0x9672F000 \SystemRoot\system32\DRIVERS\rspndr.sys 0x96742000 \SystemRoot\system32\DRIVERS\vwifimp.sys 0x9674B000 \SystemRoot\system32\drivers\HTTP.sys 0x967D0000 \SystemRoot\system32\DRIVERS\bowser.sys 0x967E9000 \SystemRoot\System32\drivers\mpsdrv.sys 0x997AC000 \SystemRoot\system32\DRIVERS\mrxsmb.sys 0xB5611000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys 0xB564C000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys 0xB567F000 \SystemRoot\system32\DRIVERS\epfwwfpr.sys 0xB5698000 \SystemRoot\system32\drivers\peauth.sys 0xB572F000 \SystemRoot\System32\Drivers\secdrv.SYS 0xB5739000 \SystemRoot\System32\DRIVERS\srvnet.sys 0xB575A000 \SystemRoot\System32\drivers\tcpipreg.sys 0xB5767000 \SystemRoot\System32\DRIVERS\srv2.sys 0xB920A000 \SystemRoot\System32\DRIVERS\srv.sys 0xB925C000 \??\C:\Users\Ivo\AppData\Local\Temp\ALSysIO.sys 0xB9264000 \??\C:\Program Files\IVT Corporation\BlueSoleil\Device\Win2k\BTNetFilter.sys 0x77480000 \Windows\System32\ntdll.dll 0x47950000 \Windows\System32\smss.exe 0x776C0000 \Windows\System32\apisetschema.dll 0x006E0000 \Windows\System32\autochk.exe 0x77690000 \Windows\System32\sechost.dll 0x77370000 \Windows\System32\urlmon.dll 0x77640000 \Windows\System32\gdi32.dll 0x772A0000 \Windows\System32\user32.dll 0x76650000 \Windows\System32\shell32.dll 0x77630000 \Windows\System32\psapi.dll 0x775D0000 \Windows\System32\difxapi.dll 0x765C0000 \Windows\System32\oleaut32.dll 0x76510000 \Windows\System32\msvcrt.dll 0x764F0000 \Windows\System32\imm32.dll 0x775C0000 \Windows\System32\nsi.dll 0x76490000 \Windows\System32\shlwapi.dll 0x76450000 \Windows\System32\ws2_32.dll 0x76370000 \Windows\System32\kernel32.dll 0x761B0000 \Windows\System32\iertutil.dll 0x76100000 \Windows\System32\rpcrt4.dll 0x760D0000 \Windows\System32\imagehlp.dll 0x76080000 \Windows\System32\Wldap32.dll 0x75FB0000 \Windows\System32\msctf.dll 0x75E90000 \Windows\System32\wininet.dll 0x75CF0000 \Windows\System32\setupapi.dll 0x75C50000 \Windows\System32\usp10.dll 0x75C40000 \Windows\System32\lpk.dll 0x75AE0000 \Windows\System32\ole32.dll 0x75A40000 \Windows\System32\advapi32.dll 0x759C0000 \Windows\System32\comdlg32.dll 0x759B0000 \Windows\System32\normaliz.dll 0x75920000 \Windows\System32\clbcatq.dll 0x758F0000 \Windows\System32\wintrust.dll 0x758C0000 \Windows\System32\cfgmgr32.dll 0x757A0000 \Windows\System32\crypt32.dll 0x75750000 \Windows\System32\KernelBase.dll 0x756C0000 \Windows\System32\comctl32.dll 0x756A0000 \Windows\System32\devobj.dll 0x75690000 \Windows\System32\msasn1.dll Processes (total 82): 0 System Idle Process 4 System 340 C:\Windows\System32\smss.exe 484 csrss.exe 564 C:\Windows\System32\wininit.exe 572 csrss.exe 612 C:\Windows\System32\services.exe 636 C:\Windows\System32\lsass.exe 644 C:\Windows\System32\lsm.exe 724 C:\Windows\System32\winlogon.exe 772 C:\Windows\System32\svchost.exe 848 C:\Windows\System32\nvvsvc.exe 888 C:\Windows\System32\svchost.exe 992 C:\Windows\System32\svchost.exe 1032 C:\Windows\System32\svchost.exe 1076 C:\Windows\System32\svchost.exe 1144 C:\Windows\System32\audiodg.exe 1208 C:\Windows\System32\svchost.exe 1256 C:\Windows\System32\nvvsvc.exe 1328 C:\Windows\System32\svchost.exe 1400 C:\Windows\System32\ZoneLabs\vsmon.exe 1612 C:\Windows\System32\dwm.exe 1628 C:\Windows\explorer.exe 1956 C:\Windows\System32\taskeng.exe 1964 C:\Windows\System32\spoolsv.exe 1992 C:\Windows\System32\taskhost.exe 2024 C:\Windows\System32\svchost.exe 1284 C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe 1396 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 1740 C:\Windows\System32\taskeng.exe 1832 C:\Program Files\Core Temp\Core Temp.exe 1904 C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe 1540 C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe 1656 C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe 1548 C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe 2120 C:\Program Files\Launch Manager\HotkeyApp.exe 2132 C:\Program Files\Launch Manager\OSD.exe 2160 C:\Program Files\Bonjour\mDNSResponder.exe 2208 C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe 2248 C:\Program Files\Launch Manager\WButton.exe 2320 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe 2504 C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe 2548 C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe 2588 C:\Program Files\Common Files\microsoft shared\VS7DEBUG\mdm.exe 2648 C:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe 2684 C:\Program Files\CyberLink\Shared files\RichVideo.exe 2720 C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe 2792 C:\Windows\System32\hkcmd.exe 2832 C:\Windows\System32\igfxpers.exe 2976 C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe 3064 C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe 3076 C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe 3184 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe 3216 C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe 3360 C:\Windows\System32\svchost.exe 3476 C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE 3488 C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe 3572 C:\Program Files\Common Files\Java\Java Update\jusched.exe 3592 C:\Program Files\iTunes\iTunesHelper.exe 3716 C:\Program Files\Windows Sidebar\sidebar.exe 3728 C:\Program Files\Songbird\songbirditunesagent.exe 3904 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE 3984 C:\PROGRA~1\COMMON~1\X10\Common\X10nets.exe 4032 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE 4056 C:\Program Files\FireTrust\MailWasher Pro\MailWasher.exe 3508 WmiPrvSE.exe 3748 C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe 3740 C:\Windows\System32\SearchIndexer.exe 432 C:\Program Files\iPod\bin\iPodService.exe 3120 C:\Windows\System32\svchost.exe 2444 C:\Program Files\Launch Manager\WisLMSvc.exe 4152 C:\Windows\System32\SearchProtocolHost.exe 4184 C:\Windows\System32\SearchFilterHost.exe 4284 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe 4388 C:\Windows\System32\svchost.exe 4416 WmiPrvSE.exe 4672 C:\Windows\System32\svchost.exe 4776 C:\Windows\servicing\TrustedInstaller.exe 5400 dllhost.exe 5444 dllhost.exe 5480 C:\Users\Ivo\Downloads\MBRCheck.exe 5492 C:\Windows\System32\conhost.exe \\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`06500000 (NTFS) \\.\D: --> \\.\PhysicalDrive0 at offset 0x0000008d`4ad00000 (NTFS) PhysicalDrive0 Model Number: SAMSUNGHM641JI, Rev: 2AJ10001 Size Device Name MBR Status -------------------------------------------- 596 GB \\.\PhysicalDrive0 Unknown MBR code SHA1: A1D8436B9D28AE5947F8CFF23FE54B1DC1738268 Found non-standard or infected MBR. Enter 'Y' and hit ENTER for more options, or 'N' to exit: Ik heb nog eens de MBAM log file bekeken en de volgende 2 regels vielen me op: O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll Kloppen die 2 regels? En deze: O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Windows\system32\skype4com.dll Heeft dat iets te maken met skype?, want ik gebruik geen skype
  • Hoi pdexie, ik wist dat het repareren van de MBR bij Dell computers tot problemen kan leiden! Daar komt nu dus Medion ook bij! Dus wat dat betreft bedankt voor je eigen speurwerk. Maar doe nu het volgende: [b:c78781d466]Welk programma[/b:c78781d466]: sUbs [b:c78781d466]dds.scr[/b:c78781d466] [b:c78781d466]Waarvoor/waarom[/b:c78781d466]: DDS is een diagnosetool en maakt gebruik van scripts. [b:c78781d466]Moeilijkheidsgraad[/b:c78781d466]: Min of meer lastige voorbereidingsfase, dus lees alles eerst goed. [b:c78781d466]Downloadlokatie[/b:c78781d466]: Dit programma absoluut naar het bureaublad downloaden of anders eerst daar naar toe verplaatsen! [b:c78781d466]Download[/b:c78781d466] sUBs dds.scr [url=http://download.bleepingcomputer.com/sUBs/dds.scr][b:c78781d466]hier[/b:c78781d466][/url] [img:c78781d466]http://img.photobucket.com/albums/v666/sUBs/dds_scr.gif[/img:c78781d466] [b:c78781d466]sUBs dds.scr gebruiken[/b:c78781d466]: [list:c78781d466][*:c78781d466][b:c78781d466][color=Red:c78781d466]Belangrijk[/color:c78781d466][/b:c78781d466]: deaktiveer eerst de antivirussoftware en de aktieve spywarescanners! [*:c78781d466] [b:c78781d466][color=Blue:c78781d466]Sluit vervolgens eerst alle nog openstaande programmavensters![/color:c78781d466][/b:c78781d466] [*:c78781d466]Windows 2000 en Windows XP: start sUBs dds.scr middels dubbelklik op de snelkoppeling. [*:c78781d466]Windows Vista en Windows 7: start sUBs dds.scr rechtsklik op de snelkoppeling en dan kiezen voor Als Administrator uitvoeren. [*:c78781d466] Na de scan worden twee tekstdocumnenten geopend - DDS.txt en Attach.txt - post de inhoud van beide logs.[/list:u:c78781d466]
  • Hier de gevraagde logs: . UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT . DDS (Ver_2011-06-12.02) . Microsoft Windows 7 Home Premium Boot Device: \Device\HarddiskVolume1 Install Date: 11-4-2011 1:26:22 System Uptime: 19-6-2011 18:44:32 (0 hours ago) . Motherboard: MEDION | | P6624 Processor: Intel(R) Core(TM) i3 CPU M 370 @ 2.40GHz | CPU 1 | 2394/532mhz . ==== Disk Partitions ========================= . C: is FIXED (NTFS) - 565 GiB total, 432,215 GiB free. D: is FIXED (NTFS) - 30 GiB total, 9,576 GiB free. E: is CDROM () . ==== Disabled Device Manager Items ============= . ==== System Restore Points =================== . RP69: 9-6-2011 13:31:40 - Windows Update RP70: 9-6-2011 15:20:31 - Herstelbewerking RP71: 9-6-2011 15:27:15 - Windows Update RP72: 14-6-2011 9:24:03 - Windows Update RP73: 15-6-2011 0:16:13 - Windows Update RP74: 18-6-2011 12:13:29 - Installed HiJackThis RP75: 18-6-2011 12:30:30 - Removed Synaptics Gesture Suite featuring SYNAPTICS | Scrybe. . ==== Installed Programs ====================== . Update for Microsoft Office 2007 (KB2508958) 2007 Microsoft Office Suite Service Pack 2 (SP2) ABC (remove only) Acrobat.com Adobe AIR Adobe Download Manager Adobe Flash Player 10 ActiveX Adobe Flash Player 10 Plugin Adobe Reader X (10.1.0) - Nederlands AnyDVD Apple Application Support Apple Mobile Device Support Apple Software Update Ashampoo Burning Studio Ashampoo Photo Commander Ashampoo Snap Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver BlueSoleil 8.0.338.0 Bonjour Canon Easy-PhotoPrint EX Canon Hulpprogramma Snelkiezen Canon IJ Network Scan Utility Canon IJ Network Tool Canon MP Navigator EX 3.1 Canon MX340 series MP Drivers Canon My Printer Canon Utilities Solution Menu CCleaner Cisco EAP-FAST Module Cisco LEAP Module Cisco PEAP Module CloneCD CloneDVD2 ConvertXtoDVD 4.0.10.324 Core Temp version 0.99.8 CorelDRAW Essentials 4 CorelDRAW Essentials 4 - Content CorelDRAW Essentials 4 - Draw CorelDRAW Essentials 4 - Filters CorelDRAW Essentials 4 - ICA CorelDRAW Essentials 4 - IPM - No VBA CorelDRAW Essentials 4 - Lang BR CorelDRAW Essentials 4 - Lang DE CorelDRAW Essentials 4 - Lang EN CorelDRAW Essentials 4 - Lang ES CorelDRAW Essentials 4 - Lang FR CorelDRAW Essentials 4 - Lang IT CorelDRAW Essentials 4 - Lang NL CorelDRAW Essentials 4 - PHOTO-PAINT CorelDRAW Essentials 4 - Windows Shell Extension CyberLink LabelPrint CyberLink MediaShow CyberLink MediaShow Espresso CyberLink PhotoNow CyberLink Power2Go CyberLink PowerDirector CyberLink PowerDVD 9 CyberLink PowerDVD Copy CyberLink PowerProducer CyberLink YouCam D3DX10 DVD Decrypter (Remove Only) DVD Profiler Version 3.7.2 DVD Shrink 3.2 ESET NOD32 Antivirus Fences FormatFactory 2.60 Futuremark SystemInfo Gebruikersregistratie voor Canon MX340 series Haali Media Splitter High-Definition Video Playback 10 HiJackThis Intel(R) Graphics Media Accelerator Driver Intel(R) Management Engine Components Intel(R) Rapid Storage Technology iTunes Java Auto Updater Java(TM) 6 Update 25 Launch Manager MailWasher Pro Malwarebytes' Anti-Malware versie 1.51.0.1200 Medion Home Cinema Microsoft .NET Framework 4 Client Profile Microsoft Application Error Reporting Microsoft Office Access MUI (Dutch) 2007 Microsoft Office Enterprise 2007 Microsoft Office Excel MUI (Dutch) 2007 Microsoft Office Groove MUI (Dutch) 2007 Microsoft Office InfoPath MUI (Dutch) 2007 Microsoft Office OneNote MUI (Dutch) 2007 Microsoft Office Outlook MUI (Dutch) 2007 Microsoft Office PowerPoint MUI (Dutch) 2007 Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proofing (Dutch) 2007 Microsoft Office Publisher MUI (Dutch) 2007 Microsoft Office Shared MUI (Dutch) 2007 Microsoft Office Word MUI (Dutch) 2007 Microsoft Primary Interoperability Assemblies 2005 Microsoft Search Enhancement Pack Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 Mozilla Firefox 4.0.1 (x86 nl) MSVCRT MSXML 4.0 SP2 (KB973688) Nero 10 Menu TemplatePack Basic Nero 10 Movie ThemePack Basic Nero BackItUp 10 Nero BackItUp 10 Help (CHM) Nero Burning ROM 10 Nero BurningROM 10 Help (CHM) Nero BurnRights 10 Nero BurnRights 10 Help (CHM) Nero Control Center 10 Nero ControlCenter 10 Help (CHM) Nero Core Components 10 Nero CoverDesigner 10 Nero CoverDesigner 10 Help (CHM) Nero DiscCopy Gadget 10 Nero DiscCopyGadget 10 Help (CHM) Nero DiscSpeed 10 Nero DiscSpeed 10 Help (CHM) Nero Dolby Files 10 Nero Express 10 Nero Express 10 Help (CHM) Nero InfoTool 10 Nero InfoTool 10 Help (CHM) Nero MediaHub 10 Nero MediaHub 10 Help (CHM) Nero Multimedia Suite 10 Nero Recode 10 Nero Recode 10 Help (CHM) Nero RescueAgent 10 Nero RescueAgent 10 Help (CHM) Nero SoundTrax 10 Nero SoundTrax 10 Help (CHM) Nero StartSmart 10 Nero StartSmart 10 Help (CHM) Nero Update Nero Vision 10 Nero Vision 10 Help (CHM) Nero WaveEditor 10 Nero WaveEditor 10 Help (CHM) Nokia Connectivity Cable Driver NVIDIA Display Control Panel NVIDIA Drivers NVIDIA Updatus PC Connectivity Solution PlayReady PC Runtime x86 Privacy Eraser Pro QuickTime Realtek High Definition Audio Driver Realtek USB 2.0 Card Reader REALTEK Wireless LAN Driver Renesas Electronics USB 3.0 Host Controller Driver Security Update for 2007 Microsoft Office System (KB2288621) Security Update for 2007 Microsoft Office System (KB2288931) Security Update for 2007 Microsoft Office System (KB2345043) Security Update for 2007 Microsoft Office System (KB2509488) Security Update for 2007 Microsoft Office System (KB969559) Security Update for 2007 Microsoft Office System (KB976321) Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708) Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663) Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870) Security Update for Microsoft Office 2007 System (KB2541012) Security Update for Microsoft Office Access 2007 (KB979440) Security Update for Microsoft Office Excel 2007 (KB2541007) Security Update for Microsoft Office Groove 2007 (KB2494047) Security Update for Microsoft Office InfoPath 2007 (KB2510061) Security Update for Microsoft Office InfoPath 2007 (KB979441) Security Update for Microsoft Office PowerPoint 2007 (KB2535818) Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623) Security Update for Microsoft Office Publisher 2007 (KB2284697) Security Update for Microsoft Office system 2007 (972581) Security Update for Microsoft Office system 2007 (KB974234) Security Update for Microsoft Office Visio Viewer 2007 (KB973709) Security Update for Microsoft Office Word 2007 (KB2344993) SIW version 2010.07.14 Songbird 1.9.3 (Build 1959) Speccy Spotnet SpywareBlaster 4.4 Synaptics Pointing Device Driver System Requirements Lab Teletekstbrowser versie 3.4 Update for 2007 Microsoft Office System (KB967642) Update for Microsoft Office 2007 System (KB2539530) Update for Microsoft Office OneNote 2007 (KB980729) Update for Microsoft Office Outlook 2007 (KB2509470) Update for Outlook 2007 Junk Email Filter (KB2536413) Update voor Microsoft Office Excel 2007 Help (KB963678) Update voor Microsoft Office Powerpoint 2007 Help (KB963669) Update voor Microsoft Office Word 2007 Help (KB963665) VoiceOver Kit Windows-stuurprogrammapakket - Nokia pccsmcfd (08/22/2008 7.0.0.0) Windows Live Communications Platform Windows Live Essentials Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Messenger Windows Live Movie Maker Windows Live Photo Common Windows Live Photo Gallery Windows Live PIMT Platform Windows Live SOXE Windows Live SOXE Definitions Windows Live Sync Windows Live UX Platform Windows Live UX Platform Language Pack Windows Media Encoder 9 Series X10 Hardware(TM) XMedia Recode 2.3.1.8 ZoneAlarm Pro . ==== End Of File =========================== . DDS (Ver_2011-06-12.02) - NTFSx86 Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_25 Run by Ivo at 18:53:03 on 2011-06-19 Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.3253.1982 [GMT 2:00] . AV: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1} SP: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} FW: ZoneAlarm Pro Firewall *Enabled* {D17DF357-CFF5-F001-D1C1-FCD21DFE3D5E} . ============== Running Processes =============== . C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\nvvsvc.exe C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\nvvsvc.exe C:\Windows\System32\ZoneLabs\vsmon.exe C:\Windows\Explorer.EXE C:\Windows\system32\Dwm.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Windows\system32\taskhost.exe C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Windows\system32\taskeng.exe C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe C:\Program Files\Core Temp\Core Temp.exe C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe C:\Program Files\CyberLink\Shared files\RichVideo.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\servicing\TrustedInstaller.exe C:\Program Files\Launch Manager\HotkeyApp.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files\Launch Manager\OSD.exe C:\Program Files\Launch Manager\WButton.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe C:\Windows\System32\hkcmd.exe C:\Program Files\Launch Manager\WisLMSvc.exe C:\Windows\System32\igfxpers.exe C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\Songbird\songbirditunesagent.exe C:\Program Files\FireTrust\MailWasher Pro\MailWasher.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files\iPod\bin\iPodService.exe C:\Windows\system32\Macromed\Flash\FlashUtil10t_ActiveX.exe C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Program Files\Nero\Update\NASvc.exe C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe C:\Windows\System32\svchost.exe -k secsvcs C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\conhost.exe . ============== Pseudo HJT Report =============== . uStart Page = hxxp://retro.ilse.nl/ uDefault_Page_URL = hxxp://medion.msn.com uInternet Settings,ProxyOverride = *.local BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun uRun: [sbitunesagent] c:\program files\songbird\songbirditunesagent.exe mRun: [CLMLServer] "c:\program files\cyberlink\power2go\CLMLSvc.exe" mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s mRun: [RtHDVBg] c:\program files\realtek\audio\hda\RtHDVBg.exe /FORPCEE3 mRun: [HotkeyApp] "c:\program files\launch manager\HotkeyApp.exe" mRun: [LMgrVolOSD] "c:\program files\launch manager\OSD.exe" mRun: [Wbutton] "c:\program files\launch manager\Wbutton.exe" mRun: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe mRun: [NUSB3MON] "c:\program files\renesas electronics\usb 3.0 host controller driver\application\nusb3mon.exe" mRun: [IgfxTray] c:\windows\system32\igfxtray.exe mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe mRun: [Persistence] c:\windows\system32\igfxpers.exe mRun: [egui] "c:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice mRun: [ZoneAlarm Client] "c:\program files\zone labs\zonealarm\zlclient.exe" mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe" mRun: [CloneCDTray] "c:\program files\slysoft\clonecd\CloneCDTray.exe" /s mRun: [CanonSolutionMenu] c:\program files\canon\solutionmenu\CNSLMAIN.exe /logon mRun: [Malwarebytes' Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript mRun: [IJNetworkScanUtility] c:\program files\canon\canon ij network scan utility\CNMNSUT.exe mRun: [CanonMyPrinter] c:\program files\canon\myprinter\BJMyPrt.exe /logon mRun: [BtTray] "c:\program files\ivt corporation\bluesoleil\BtTray.exe" mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime mRun: [NBAgent] "c:\program files\nero\nero 10\nero backitup\NBAgent.exe" /WinStart mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe" mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe" mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" StartupFolder: c:\users\ivo\appdata\roaming\micros~1\windows\startm~1\programs\startup\mailwa~1.lnk - c:\program files\firetrust\mailwasher pro\MailWasher.exe mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5) mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3) mPolicies-system: EnableUIADesktopToggle = 0 (0x0) mPolicies-system: EnableLinkedConnections = 1 (0x1) IE: E&xporteren naar Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000 IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} - hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.5.7.cab DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab TCP: DhcpNameServer = 192.168.2.1 TCP: Interfaces\{91734A2F-C336-4BE9-8362-AA7479B0E354} : DhcpNameServer = 192.168.2.1 TCP: Interfaces\{91734A2F-C336-4BE9-8362-AA7479B0E354}\B4F656B6B6F656B6 : DhcpNameServer = 192.168.1.254 Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\windows\system32\skype4com.dll Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll Notify: igfxcui - igfxdev.dll AppInit_DLLs: c:\windows\system32\nvinit.dll STS: FencesShlExt Class: {1984dd45-52cf-49cd-ab77-18f378fea264} - c:\program files\stardock\fences\FencesMenu.dll SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll . ================= FIREFOX =================== . FF - ProfilePath - c:\users\ivo\appdata\roaming\mozilla\firefox\profiles\tdaagmoh.default\ FF - prefs.js: browser.startup.homepage - hxxp://retro.ilse.nl/ FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll FF - plugin: c:\program files\canon\easy-photoprint ex\NPEZFFPI.DLL FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\microsoft silverlight\4.0.60531.0\npctrlui.dll FF - plugin: c:\program files\nos\bin\np_gp.dll FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll . ============= SERVICES / DRIVERS =============== . R0 BtHidBus;Bluetooth HID Bus Service;c:\windows\system32\drivers\BtHidBus.sys [2010-4-6 20104] R0 nvpciflt;nvpciflt;c:\windows\system32\drivers\nvpciflt.sys [2010-8-9 19656] R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-14 48128] R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\common files\adobe\arm\1.0\armsvc.exe [2011-6-6 64952] R2 BsMobileCS;BsMobileCS;c:\program files\ivt corporation\bluesoleil\BsMobileCS.exe [2010-8-31 147563] R2 eamonm;eamonm;c:\windows\system32\drivers\eamonm.sys [2010-12-21 137144] R2 ekrn;ESET Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2011-1-12 810144] R2 epfwwfpr;epfwwfpr;c:\windows\system32\drivers\epfwwfpr.sys [2010-12-21 95384] R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\intel\intel(r) rapid storage technology\IAStorDataMgrSvc.exe [2010-8-9 13336] R2 NAUpdate;Nero Update;c:\program files\nero\update\NASvc.exe [2010-3-25 490280] R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\nvidia corporation\nvidia updatus\daemonu.exe [2010-8-9 1620584] R2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files\intel\intel(r) management engine components\uns\UNS.exe [2010-8-9 2320920] R3 BTCOMBUS;Bluetooth Serial Port Bus Service;c:\windows\system32\drivers\btcombus.sys [2010-8-26 22024] R3 btnetBUs;Bluetooth PAN Bus Service;c:\windows\system32\drivers\btnetBus.sys [2010-4-6 25864] R3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys [2010-8-9 132480] R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\drivers\IntcDAud.sys [2010-8-9 246272] R3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\drivers\IvtBtBus.sys [2010-4-6 23048] R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\L1C62x86.sys [2010-8-4 67624] R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys [2010-4-27 64904] R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys [2010-4-27 146568] R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;c:\windows\system32\drivers\rtl8192se.sys [2010-4-1 1009184] R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\drivers\vwifimp.sys [2009-7-14 14336] R3 WisLMSvc;WisLMSvc;c:\program files\launch manager\WisLMSvc.exe [2010-8-9 118560] R3 X10Hid;X10 Hid Device;c:\windows\system32\drivers\x10hid.sys [2010-8-14 13720] S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384] S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888] S3 BTCOM;Bluetooth Serial port driver;c:\windows\system32\drivers\btcomport.sys [2010-8-26 25992] S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files\common files\futuremark shared\futuremark systeminfo\FMSISvc.exe [2011-4-15 128928] S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-4-11 22712] S3 nosGetPlusHelper;getPlus(R) Helper 3004;c:\windows\system32\svchost.exe -k nosGetPlusHelper [2009-7-14 20992] S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [2010-8-9 193056] S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2009-6-10 139776] S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-4-11 52224] S3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\wat\WatAdminSvc.exe [2011-4-11 1343400] S4 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2011-4-11 366640] . =============== Created Last 30 ================ . 2011-06-18 23:16:54 -------- d-----w- c:\users\ivo\appdata\local\{643D3E42-4B56-444B-9D88-D8C5ED2BF3BE} 2011-06-18 10:13:57 388096 ----a-r- c:\users\ivo\appdata\roaming\microsoft\installer\{45a66726-69bc-466b-a7a4-12fcba4883d7}\HiJackThis.exe 2011-06-17 23:41:10 -------- d-----w- c:\users\ivo\appdata\local\{60FDA689-F8C0-4423-A24C-12C5953E8B50} 2011-06-17 20:30:39 6962000 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{036c6c9a-83f8-49a5-aa54-30124173e044}\mpengine.dll 2011-06-17 18:14:33 -------- d-----w- c:\program files\Trend Micro 2011-06-17 11:40:46 -------- d-----w- c:\users\ivo\appdata\local\{EEFA0C31-A61A-4666-97A4-D417470955A1} 2011-06-16 14:32:11 -------- d-----w- c:\users\ivo\appdata\local\{D5DC33BE-1066-487F-AF75-3B6D1FC185DB} 2011-06-15 23:52:23 -------- d-----w- c:\users\ivo\appdata\roaming\Intel Corporation 2011-06-15 23:40:38 -------- d-----w- c:\users\ivo\appdata\local\{563339E0-4113-4853-890D-C14801570BE8} 2011-06-15 11:40:14 -------- d-----w- c:\users\ivo\appdata\local\{F18224D0-F240-47FE-B088-E198B36CDB65} 2011-06-15 09:57:52 -------- d-----w- c:\users\ivo\appdata\local\{7AC2016D-888F-4D41-9771-AFD9E95DF64D} 2011-06-14 22:22:24 2382848 ----a-w- c:\windows\system32\mshtml.tlb 2011-06-14 22:22:24 141104 ----a-w- c:\program files\internet explorer\sqmapi.dll 2011-06-14 22:22:23 1797632 ----a-w- c:\windows\system32\jscript9.dll 2011-06-14 22:16:03 741376 ----a-w- c:\windows\system32\inetcomm.dll 2011-06-14 22:16:01 571904 ----a-w- c:\windows\system32\oleaut32.dll 2011-06-14 22:16:01 311808 ----a-w- c:\windows\system32\drivers\srv.sys 2011-06-14 22:16:01 310272 ----a-w- c:\windows\system32\drivers\srv2.sys 2011-06-14 22:16:01 114688 ----a-w- c:\windows\system32\drivers\srvnet.sys 2011-06-14 22:15:50 1290624 ----a-w- c:\windows\system32\drivers\tcpip.sys 2011-06-14 22:15:49 338944 ----a-w- c:\windows\system32\drivers\afd.sys 2011-06-14 22:15:12 96768 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys 2011-06-14 22:15:12 223744 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys 2011-06-14 22:15:12 123904 ----a-w- c:\windows\system32\drivers\mrxsmb.sys 2011-06-14 21:57:27 -------- d-----w- c:\users\ivo\appdata\local\{F6E24E59-02B3-4F2C-B24D-5D171F82F415} 2011-06-13 22:14:33 -------- d-----w- c:\users\ivo\appdata\local\{73F0B0D3-F343-4BEB-9FD2-5C114C408599} 2011-06-10 23:40:58 -------- d-----w- c:\users\ivo\appdata\local\{9E8A95C4-CCBD-4E9F-85EA-61F533918A05} 2011-06-10 11:40:34 -------- d-----w- c:\users\ivo\appdata\local\{A0D73EBA-F0ED-4D05-8CC6-3EDCC73D3E64} 2011-06-09 16:07:08 -------- d-----w- c:\users\ivo\appdata\local\{A85BEC58-790A-4B53-B8D0-6A6AEE21AB25} 2011-06-09 14:10:55 -------- d-----w- c:\program files\iPod 2011-06-09 11:38:18 -------- d-----w- c:\program files\CheckPoint 2011-06-09 09:44:07 -------- d-----w- c:\users\ivo\appdata\local\{6E7A22EC-02A7-4CAA-AD01-E4B4DE5171B8} 2011-06-08 14:45:47 -------- d-----w- c:\users\ivo\appdata\local\{F466E934-2EC5-4290-B800-660909F14244} 2011-06-07 23:01:31 -------- d-----w- c:\users\ivo\appdata\local\{A4A72686-327D-447C-942F-619FE71FED13} 2011-06-07 09:55:23 -------- d-----w- c:\users\ivo\appdata\local\{B1F70BCC-7524-48C6-AB25-24E698EBF7B6} 2011-06-06 21:54:59 -------- d-----w- c:\users\ivo\appdata\local\{F40B13EF-DC00-4620-AFA0-924148BAEE72} 2011-06-06 10:55:30 183696 ----a-w- c:\program files\internet explorer\plugins\nppdf32.dll 2011-06-06 09:04:30 -------- d-----w- c:\users\ivo\appdata\local\{1FF29577-E64A-421A-BFAE-3B3EB7093352} 2011-06-01 08:51:10 -------- d-----w- c:\users\ivo\appdata\local\{23268CB8-D612-4FD8-A4D8-944B0F20223E} 2011-05-31 10:44:43 -------- d-----w- c:\users\ivo\appdata\local\{6F8F9AD8-409B-479E-9ED9-8B5B36C4441F} 2011-05-30 11:07:46 -------- d-----w- c:\users\ivo\appdata\local\{25CE02A5-CC38-4B18-830D-C576B85A62F8} 2011-05-29 21:39:28 -------- d-----w- c:\users\ivo\appdata\local\{F8010782-2F25-4C31-BDCE-9B5031F8E57A} 2011-05-28 21:02:37 -------- d-----w- c:\users\ivo\appdata\local\{BFEB185C-EC68-418F-85A4-E27CBE64B93C} 2011-05-27 19:28:29 -------- d-----w- c:\users\ivo\appdata\local\{85DDDEA7-8F74-49FD-B16F-190FD52EB586} 2011-05-26 22:00:40 -------- d-----w- c:\users\ivo\appdata\local\{FE1E21E1-D2CD-456B-A12E-5558404C6E89} 2011-05-25 22:23:21 -------- d-----w- c:\users\ivo\appdata\local\{87CFF989-DE95-436D-8EE7-9AC92882F47E} 2011-05-25 11:36:58 -------- d-----w- c:\users\ivo\appdata\local\Diagnostics 2011-05-25 08:06:10 -------- d-----w- c:\users\ivo\appdata\local\{6EFF1E8F-46E8-43E9-800F-2593612D90C5} 2011-05-25 07:13:11 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys 2011-05-24 07:33:47 -------- d-----w- c:\users\ivo\appdata\local\{35AB7811-918F-4D5F-A0EE-4F3BD8BC988F} 2011-05-23 19:12:34 -------- d-----w- c:\users\ivo\appdata\local\{E08034E2-CFF1-4F21-B84A-F0EC1EAE2E04} 2011-05-23 00:38:39 -------- d-----w- c:\users\ivo\appdata\local\{53742DDA-B372-4EAF-AF4F-F70C078CF609} 2011-05-22 10:51:14 -------- d-----w- c:\users\ivo\appdata\local\{EB6E923C-C34B-452F-BBC1-69F17291EA09} 2011-05-21 22:50:51 -------- d-----w- c:\users\ivo\appdata\local\{6C63C16C-D42E-491E-8AEB-EE0C731FEEF2} 2011-05-21 08:58:21 -------- d-----w- c:\users\ivo\appdata\local\{077D82A1-AD97-4780-A5DB-12A87D2754E6} 2011-05-20 20:19:14 -------- d-----w- c:\users\ivo\appdata\local\{4FB3FB0B-FB39-4782-A389-8C12FB13C841} . ==================== Find3M ==================== . 2011-06-18 07:42:30 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-06-14 08:59:40 952 --sha-w- c:\programdata\KGyGaAvL.sys 2011-05-29 07:11:30 39984 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2011-05-29 07:11:20 22712 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-05-24 17:14:10 222080 ------w- c:\windows\system32\MpSigStub.exe 2011-05-17 15:32:21 472808 ----a-w- c:\windows\system32\deployJava1.dll 2011-04-11 17:29:09 87608 ----a-w- c:\users\ivo\appdata\roaming\inst.exe 2011-04-11 17:29:09 47360 ----a-w- c:\windows\system32\drivers\pcouffin.sys 2011-04-11 17:29:09 47360 ----a-w- c:\users\ivo\appdata\roaming\pcouffin.sys 2011-04-11 01:17:52 152576 ----a-w- c:\windows\system32\msclmd.dll 2011-04-09 06:02:25 3967872 ----a-w- c:\windows\system32\ntkrnlpa.exe 2011-04-09 06:02:25 3912576 ----a-w- c:\windows\system32\ntoskrnl.exe 2011-04-09 05:56:38 123904 ----a-w- c:\windows\system32\poqexec.exe 2011-04-06 14:20:16 91424 ----a-w- c:\windows\system32\dnssd.dll 2011-04-06 14:20:16 75040 ----a-w- c:\windows\system32\jdns_sd.dll 2011-04-06 14:20:16 197920 ----a-w- c:\windows\system32\dnssdX.dll 2011-04-06 14:20:16 107808 ----a-w- c:\windows\system32\dns-sd.exe 2011-03-25 13:54:31 117752 ----a-w- c:\windows\system32\drivers\AnyDVD.sys 2011-03-25 02:58:37 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys 2011-03-25 02:58:07 284672 ----a-w- c:\windows\system32\drivers\usbport.sys 2011-03-25 02:58:06 75776 ----a-w- c:\windows\system32\drivers\usbccgp.sys 2011-03-25 02:57:58 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys 2011-03-25 02:57:58 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys 2011-03-25 02:57:56 24064 ----a-w- c:\windows\system32\drivers\usbuhci.sys 2011-03-25 02:57:53 5888 ----a-w- c:\windows\system32\drivers\usbd.sys . ============= FINISH: 18:54:12,61 ===============
  • Even terug naar HijackThis: O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll Dat zegt mij dat "Ouderlijk toezicht" is geactiveerd in Windows! Die 018 regel mag je fixen! Doe het volgende: [b:e33b3eb3a6]Welk programma[/b:e33b3eb3a6]: ComboFix [b:e33b3eb3a6]Waarvoor/waarom[/b:e33b3eb3a6]: Zeer specialistische scanner om Windows diepgaand te onderzoeken en zo mogelijk op te schonen. [b:e33b3eb3a6]Moeilijkheidsgraad[/b:e33b3eb3a6]: Min of meer lastige voorbereidingsfase, dus lees alles eerst goed. [b:e33b3eb3a6]Downloadlokatie[/b:e33b3eb3a6]: Dit programma absoluut naar het bureaublad downloaden! [b:e33b3eb3a6]Download ComboFix via één van deze locaties[/b:e33b3eb3a6]: [list:e33b3eb3a6][*:e33b3eb3a6][url=http://download.bleepingcomputer.com/sUBs/ComboFix.exe][b:e33b3eb3a6]Bleepingcomputer[/b:e33b3eb3a6][/url] [*:e33b3eb3a6][url=http://www.forospyware.com/sUBs/ComboFix.exe][b:e33b3eb3a6]ForoSpyware[/b:e33b3eb3a6][/url] [*:e33b3eb3a6][url=http://subs.geekstogo.com/ComboFix.exe][b:e33b3eb3a6]Geekstogo[/b:e33b3eb3a6][/url][/list:u:e33b3eb3a6] [url=http://www.bleepingcomputer.com/combofix/nl/hoe-dient-combofix-gebruikt-te-worden][b:e33b3eb3a6]Hier[/b:e33b3eb3a6][/url] zie je hoe je ComboFix moet gebruiken. Antivirusprogramma en actieve malwarescanners dienen al voor de ComboFix start gedeaktiveert zijn! [url=http://www.bleepingcomputer.com/forums/topic114351.html][b:e33b3eb3a6]Hier[/b:e33b3eb3a6][/url] en [url=http://www.techsupportforum.com/forums/f50/how-to-disable-your-security-applications-490111.html][b:e33b3eb3a6]hier[/b:e33b3eb3a6][/url] vindt je gegevens hoe antivirusprogramma's en spywarescanners te deaktiveren. [b:e33b3eb3a6]Voor alle duidelijkheid nogmaals[/b:e33b3eb3a6]: ComboFix dient vanaf het bureaublad gestart te worden. [b:e33b3eb3a6]Opmerkingen[/b:e33b3eb3a6]: [list:e33b3eb3a6][*:e33b3eb3a6] Bij gebruik van Windows XP zal er mogelijk gevraagd worden, om de "Recovery Console" te installeren! Sta dit dan toe (hiervoor is een actieve internet verbinding vereist). [*:e33b3eb3a6]Vista- en Windows 7 gebruikers starten Combofix op via rechtsklik met Administratorrechten. [*:e33b3eb3a6]Alle openstaande programma's en webpagina's dienen afgesloten te zijn.[/list:u:e33b3eb3a6] [b:e33b3eb3a6]ComboFix is opgestart[/b:e33b3eb3a6]: [list:e33b3eb3a6][*:e33b3eb3a6]Niet in het zwarte venster klikken, hierdoor kan ComboFix of zelfs Windows geheel "bevriezen"! [*:e33b3eb3a6]Combofix sluit tijdens de scan de internet verbinding – probeer deze tussentijds niet te herstellen! [*:e33b3eb3a6]Het kan voorkomen dat de computer meerdere malen opnieuw opgestart moet worden, dit is normaal. [*:e33b3eb3a6]Wanneer ComboFix gereed is, zal het het een logbestand voor je maken. [*:e33b3eb3a6]Post de inhoud van dit logbestand in je volgende bericht. [*:e33b3eb3a6]Indien het log niet opstart, is dit terug tevinden in C:\ComboFix.txt[/list:u:e33b3eb3a6] [b:e33b3eb3a6]Belangrijke opmerking[/b:e33b3eb3a6]: [list:e33b3eb3a6][*:e33b3eb3a6][b:e33b3eb3a6][color=Red:e33b3eb3a6]Indien na de scan bij het opstarten van programma's er een error wordt getoond met de melding:[/color:e33b3eb3a6][/b:e33b3eb3a6] [*:e33b3eb3a6][b:e33b3eb3a6][color=blue:e33b3eb3a6]Illegal operation attempted on a registery key that has been marked for deletion.[/color:e33b3eb3a6][/b:e33b3eb3a6] [*:e33b3eb3a6][b:e33b3eb3a6][color=Red:e33b3eb3a6]Start dan de computer opnieuw op.[/color:e33b3eb3a6][/b:e33b3eb3a6][/list:u:e33b3eb3a6]

Beantwoord deze vraag

Weet jij het antwoord op deze vraag? Registreer of meld je aan met je account

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.