Op deze website gebruiken we cookies om content en advertenties te personaliseren, om functies voor social media te bieden en om ons websiteverkeer te analyseren. Ook delen we informatie over uw gebruik van onze site met onze partners voor social media, adverteren en analyse. Deze partners kunnen deze gegevens combineren met andere informatie die u aan ze heeft verstrekt of die ze hebben verzameld op basis van uw gebruik van hun services. Meer informatie.

Akkoord

Vraag & Antwoord

Beveiliging & privacy

Ik stuur SPAM ;-(

Abraham54
12 antwoorden
  • Kreeg vanmorgen te horen dat ik vreemde links doorspeel vanaf mn mSN Account.
    MBAM , F Secure en ADW cleaner zeggen niets te vinden.
    Wachtwoord op MSN veranderd en gemeld mij MSN (hoop ik )

    Combofix gedraaid
    ComboFix 12-12-20.02 - HP-G6 21-12-2012 11:48:22.1.4 - x64
    Microsoft Windows 7 Ultimate 6.1.7601.1.1252.31.1043.18.4044.2250 [GMT 1:00]
    Gestart vanuit: c:\users\HP-G6\Desktop\ComboFix.exe
    AV: Basis *Disabled/Updated* {15414183-282E-D62C-CA37-EF24860A2F17}
    SP: Basis *Disabled/Updated* {AE20A067-0E14-D9A2-F087-D456FD8D65AA}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    .
    (((((((((((((((((((( Bestanden Gemaakt van 2012-11-21 to 2012-12-21 ))))))))))))))))))))))))))))))
    .
    .
    2012-12-21 10:22 . 2012-12-16 17:11 46080 —-a-w- c:\windows\system32\atmlib.dll
    2012-12-21 10:22 . 2012-12-16 14:45 367616 —-a-w- c:\windows\system32\atmfd.dll
    2012-12-21 10:22 . 2012-12-16 14:13 34304 —-a-w- c:\windows\SysWow64\atmlib.dll
    2012-12-21 10:22 . 2012-12-16 14:13 295424 —-a-w- c:\windows\SysWow64\atmfd.dll
    2012-12-21 07:23 . 2012-12-21 07:23 ——– d—–w- c:\programdata\Malwarebytes
    2012-12-21 07:23 . 2012-12-21 07:23 ——– d—–w- c:\program files (x86)\Malwarebytes' Anti-Malware
    2012-12-21 07:23 . 2012-09-29 18:54 25928 —-a-w- c:\windows\system32\drivers\mbam.sys
    2012-12-17 08:31 . 2011-02-19 12:05 1139200 —-a-w- c:\windows\system32\FntCache.dll
    2012-12-17 08:31 . 2011-02-19 12:04 902656 —-a-w- c:\windows\system32\d2d1.dll
    2012-12-17 08:31 . 2011-02-19 06:30 739840 —-a-w- c:\windows\SysWow64\d2d1.dll
    2012-12-12 06:36 . 2012-11-09 05:45 2048 —-a-w- c:\windows\system32\tzres.dll
    2012-12-12 06:36 . 2012-11-09 04:42 2048 —-a-w- c:\windows\SysWow64\tzres.dll
    2012-12-12 06:34 . 2012-10-04 17:38 3072 —ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
    2012-12-10 07:56 . 2012-12-10 07:56 ——– d—–w- c:\windows\PCHEALTH
    2012-12-10 07:55 . 2012-12-10 07:56 ——– d—–w- c:\program files (x86)\Windows Live
    2012-12-09 09:25 . 2012-12-21 10:33 73656 —-a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
    2012-12-09 09:25 . 2012-12-21 10:33 697272 —-a-w- c:\windows\SysWow64\FlashPlayerApp.exe
    2012-12-08 10:36 . 2012-12-08 10:36 ——– d—–w- c:\programdata\McAfee
    2012-12-08 08:47 . 2012-12-08 08:47 ——– d—–w- C:\ATISupport
    2012-12-08 08:42 . 2012-12-08 08:42 ——– dc-h–w- c:\programdata\{4E78170A-6049-4586-A083-3AECE1A687E4}
    2012-12-08 08:42 . 2012-12-08 08:42 ——– d—–w- c:\program files\WinSysClean X2
    2012-12-08 08:42 . 2004-11-13 01:29 939368 —-a-w- c:\windows\SysWow64\flash.ocx
    2012-12-07 09:57 . 2009-07-14 01:40 84992 —-a-w- c:\windows\system32\Spool\prtprocs\x64\CNBPP4.DLL
    2012-12-05 11:49 . 2012-12-05 11:50 ——– d—–w- c:\program files (x86)\FAHClient
    2012-11-29 19:47 . 2007-04-15 00:05 991232 —-a-w- c:\windows\SysWow64\imageviewer2.ocx
    2012-11-29 19:47 . 2004-03-08 23:00 224016 —-a-w- c:\windows\SysWow64\tabctl32.ocx
    2012-11-29 19:47 . 2002-08-29 19:00 1703936 —-a-w- c:\windows\SysWow64\gdiplus.dll
    2012-11-29 19:47 . 2000-07-09 18:15 106496 —-a-w- c:\windows\SysWow64\mbprgbar.ocx
    2012-11-29 19:47 . 2000-05-22 00:00 608448 —-a-w- c:\windows\SysWow64\comctl32.ocx
    2012-11-29 19:47 . 1998-06-24 00:00 164144 —-a-w- c:\windows\SysWow64\comct232.ocx
    2012-11-29 19:47 . 1996-01-12 00:00 200704 —-a-w- c:\windows\SysWow64\threed32.ocx
    2012-11-29 19:47 . 2012-11-29 19:47 ——– d—–w- c:\program files (x86)\PIXresizer
    2012-11-29 19:47 . 2000-05-01 23:02 110592 —-a-w- c:\windows\SysWow64\ccrpbds6.dll
    2012-11-29 19:47 . 1999-09-16 09:04 151552 —-a-w- c:\windows\SysWow64\ccrpfd6.ocx
    2012-11-26 09:47 . 2011-10-08 15:28 54272 —-a-r- c:\windows\system32\HP1100SMs.dll
    2012-11-26 09:47 . 2011-04-02 15:05 1696256 —-a-w- c:\windows\system32\HP1100SM.EXE
    2012-11-26 09:47 . 2011-04-02 15:05 290304 —-a-w- c:\windows\system32\HP1100LM.DLL
    2012-11-26 09:47 . 2011-04-02 15:04 74240 —-a-w- c:\windows\system32\Spool\prtprocs\x64\HP1100PP.dll
    2012-11-26 09:43 . 2011-11-11 10:08 126520 —-a-r- c:\windows\system32\HPSIsvc.exe
    2012-11-26 09:43 . 2012-11-26 09:43 ——– d—–w- c:\programdata\HPSSUPPLY
    2012-11-26 09:41 . 2012-11-26 09:41 ——– d—–w- c:\program files\HP
    2012-11-22 11:44 . 2012-11-22 11:44 ——– d—–w- c:\program files (x86)\Common Files\Adobe
    2012-11-22 10:16 . 2012-11-22 10:16 ——– d—–w- c:\users\Default\AppData\Local\Microsoft Help
    2012-11-21 19:43 . 2012-11-21 19:43 ——– d—–w- c:\program files (x86)\VideoLAN
    2012-11-21 18:59 . 2012-11-21 18:59 ——– d—–w- c:\program files (x86)\Common Files\LogiShrd
    2012-11-21 18:58 . 2012-11-21 19:01 ——– d—–w- c:\programdata\Logitech
    2012-11-21 18:58 . 2012-11-21 19:01 ——– d—–w- c:\programdata\Logishrd
    2012-11-21 18:58 . 2012-11-21 18:58 ——– d—–w- c:\program files\Logitech
    2012-11-21 18:57 . 2012-11-21 18:59 ——– d—–w- c:\program files\Common Files\Logishrd
    2012-11-21 18:48 . 2012-11-21 18:59 18960 —-a-w- c:\windows\system32\drivers\LNonPnP.sys
    2012-11-21 18:48 . 2012-09-18 10:32 1845560 —-a-w- c:\windows\system32\LkmdfCoInst.dll
    2012-11-21 18:48 . 2012-09-18 10:32 78648 —-a-w- c:\windows\system32\drivers\LEqdUsb.sys
    2012-11-21 18:48 . 2012-10-26 17:46 9888912 —-a-w- c:\windows\SysWow64\RtsPStorIcon.dll
    2012-11-21 18:48 . 2012-10-26 17:46 343696 —-a-w- c:\windows\system32\drivers\RtsPStor.sys
    2012-11-21 18:47 . 2012-08-01 15:01 18832 —-a-w- c:\windows\system32\drivers\pmkbdfltr.sys
    2012-11-21 18:44 . 2012-08-19 20:45 542208 —-a-w- c:\windows\system32\drivers\stwrt64.sys
    2012-11-21 18:44 . 2012-08-19 20:45 499200 —-a-w- c:\windows\system32\stcplx64.dll
    2012-11-21 18:44 . 2012-08-19 20:45 2188800 —-a-w- c:\windows\system32\stapo64.dll
    2012-11-21 18:44 . 2012-08-19 20:45 671744 —-a-w- c:\windows\system32\stapi64.dll
    2012-11-21 18:44 . 2012-08-19 20:45 255488 —-a-w- c:\windows\system32\st646425.dll
    2012-11-21 18:08 . 2012-11-21 18:28 ——– d—–w- c:\programdata\Stentec
    2012-11-21 18:08 . 2012-11-21 18:28 ——– d—–w- c:\program files (x86)\Stentec
    2012-11-21 18:08 . 2010-05-26 10:41 1998168 —-a-w- c:\windows\SysWow64\D3DX9_43.dll
    2012-11-21 17:51 . 2012-11-21 17:55 ——– d—–w- c:\program files (x86)\Google
    2012-11-21 16:41 . 2012-11-21 16:41 ——– d—–w- c:\programdata\MediaMonkey
    2012-11-21 16:41 . 2012-11-21 16:42 ——– d—–w- c:\program files (x86)\MediaMonkey
    2012-11-21 16:34 . 2012-09-12 11:36 35112 —-a-w- c:\windows\system32\drivers\teamviewervpn.sys
    2012-11-21 16:34 . 2012-11-21 16:34 ——– d—–w- c:\program files (x86)\TeamViewer
    2012-11-21 16:31 . 2012-11-21 16:31 ——– d—–w- c:\program files (x86)\Common Files\Skype
    2012-11-21 16:31 . 2012-11-21 16:31 ——– d—–r- c:\program files (x86)\Skype
    2012-11-21 16:31 . 2012-11-21 16:31 ——– d—–w- c:\programdata\Skype
    2012-11-21 16:26 . 2010-06-02 03:55 77656 —-a-w- c:\windows\system32\XAPOFX1_5.dll
    2012-11-21 16:26 . 2010-06-02 03:55 74072 —-a-w- c:\windows\SysWow64\XAPOFX1_5.dll
    2012-11-21 16:26 . 2010-06-02 03:55 527192 —-a-w- c:\windows\SysWow64\XAudio2_7.dll
    2012-11-21 16:26 . 2010-06-02 03:55 518488 —-a-w- c:\windows\system32\XAudio2_7.dll
    2012-11-21 16:26 . 2010-05-26 10:41 2526056 —-a-w- c:\windows\system32\D3DCompiler_43.dll
    2012-11-21 16:26 . 2010-05-26 10:41 2106216 —-a-w- c:\windows\SysWow64\D3DCompiler_43.dll
    2012-11-21 16:26 . 2010-05-26 10:41 276832 —-a-w- c:\windows\system32\d3dx11_43.dll
    2012-11-21 16:26 . 2010-05-26 10:41 248672 —-a-w- c:\windows\SysWow64\d3dx11_43.dll
    2012-11-21 16:25 . 2009-09-04 16:29 453456 —-a-w- c:\windows\SysWow64\d3dx10_42.dll
    2012-11-21 16:25 . 2009-09-04 16:29 523088 —-a-w- c:\windows\system32\d3dx10_42.dll
    2012-11-21 16:24 . 2006-11-29 12:06 4398360 —-a-w- c:\windows\system32\d3dx9_32.dll
    2012-11-21 16:24 . 2006-11-29 12:06 3426072 —-a-w- c:\windows\SysWow64\d3dx9_32.dll
    2012-11-21 16:23 . 2012-11-21 16:23 ——– d—–w- c:\program files (x86)\Microsoft SkyDrive
    2012-11-21 16:23 . 2012-11-21 16:23 ——– d—–w- c:\programdata\Microsoft SkyDrive
    2012-11-21 16:21 . 2012-11-21 16:21 ——– d—–w- c:\program files (x86)\Common Files\Windows Live
    2012-11-21 15:38 . 2012-11-21 15:38 ——– d—–w- c:\programdata\Synaptics
    2012-11-21 15:26 . 2012-11-21 15:26 ——– d—–w- c:\program files\Microsoft Silverlight
    2012-11-21 15:26 . 2012-11-21 15:26 ——– d—–w- c:\program files (x86)\Microsoft Silverlight
    2012-11-21 15:11 . 2012-08-24 18:05 340992 —-a-w- c:\windows\system32\schannel.dll
    2012-11-21 15:11 . 2012-08-24 16:57 247808 —-a-w- c:\windows\SysWow64\schannel.dll
    2012-11-21 15:11 . 2012-08-24 18:13 154480 —-a-w- c:\windows\system32\drivers\ksecpkg.sys
    2012-11-21 15:11 . 2012-08-24 18:09 458712 —-a-w- c:\windows\system32\drivers\cng.sys
    2012-11-21 15:11 . 2012-08-24 18:04 307200 —-a-w- c:\windows\system32
    crypt.dll
    2012-11-21 15:11 . 2012-08-24 16:57 220160 —-a-w- c:\windows\SysWow64
    crypt.dll
    2012-11-21 15:11 . 2012-08-24 18:03 1448448 —-a-w- c:\windows\system32\lsasrv.dll
    2012-11-21 15:11 . 2012-08-24 16:57 22016 —-a-w- c:\windows\SysWow64\secur32.dll
    2012-11-21 15:11 . 2012-08-24 16:53 96768 —-a-w- c:\windows\SysWow64\sspicli.dll
    2012-11-21 15:10 . 2012-05-04 11:00 366592 —-a-w- c:\windows\system32\qdvd.dll
    2012-11-21 15:10 . 2012-05-04 09:59 514560 —-a-w- c:\windows\SysWow64\qdvd.dll
    2012-11-21 15:10 . 2011-03-25 03:29 52736 —-a-w- c:\windows\system32\drivers\usbehci.sys
    2012-11-21 15:10 . 2011-03-25 03:29 343040 —-a-w- c:\windows\system32\drivers\usbhub.sys
    2012-11-21 15:10 . 2011-03-25 03:29 325120 —-a-w- c:\windows\system32\drivers\usbport.sys
    2012-11-21 15:10 . 2011-03-25 03:29 98816 —-a-w- c:\windows\system32\drivers\usbccgp.sys
    2012-11-21 15:10 . 2011-03-25 03:29 25600 —-a-w- c:\windows\system32\drivers\usbohci.sys
    2012-11-21 15:10 . 2011-03-25 03:29 30720 —-a-w- c:\windows\system32\drivers\usbuhci.sys
    2012-11-21 15:10 . 2011-03-25 03:28 7936 —-a-w- c:\windows\system32\drivers\usbd.sys
    2012-11-21 15:10 . 2012-07-06 20:07 552960 —-a-w- c:\windows\system32\drivers\bthport.sys
    2012-11-21 15:10 . 2011-04-28 03:54 80384 —-a-w- c:\windows\system32\drivers\BTHUSB.SYS
    2012-11-21 15:09 . 2011-03-11 06:33 2565632 —-a-w- c:\windows\system32\esent.dll
    2012-11-21 15:08 . 2011-03-11 06:30 96768 —-a-w- c:\windows\system32\fsutil.exe
    2012-11-21 15:08 . 2011-03-11 06:41 27008 —-a-w- c:\windows\system32\drivers\amdxata.sys
    2012-11-21 15:08 . 2011-03-11 05:33 1699328 —-a-w- c:\windows\SysWow64\esent.dll
    2012-11-21 15:08 . 2011-03-11 05:31 74240 —-a-w- c:\windows\SysWow64\fsutil.exe
    2012-11-21 15:08 . 2011-03-11 06:41 189824 —-a-w- c:\windows\system32\drivers\storport.sys
    2012-11-21 15:08 . 2011-03-11 06:41 410496 —-a-w- c:\windows\system32\drivers\iaStorV.sys
    2012-11-21 15:08 . 2011-03-11 06:41 148352 —-a-w- c:\windows\system32\drivers
    vraid.sys
    2012-11-21 15:08 . 2011-03-11 06:41 107904 —-a-w- c:\windows\system32\drivers\amdsata.sys
    2012-11-21 15:08 . 2011-03-11 06:41 166272 —-a-w- c:\windows\system32\drivers
    vstor.sys
    2012-11-21 15:08 . 2011-03-11 04:37 91648 —-a-w- c:\windows\system32\drivers\USBSTOR.SYS
    2012-11-21 14:59 . 2012-11-21 14:59 ——– d—–w- c:\windows\SysWow64\Macromed
    2012-11-21 14:59 . 2012-11-21 14:59 ——– d—–w- c:\windows\system32\Macromed
    2012-11-21 14:56 . 2012-11-21 14:56 ——– d—–w- c:\program files (x86)\Common Files\Java
    2012-11-21 14:56 . 2012-11-21 14:55 746984 —-a-w- c:\windows\SysWow64\deployJava1.dll
    2012-11-21 14:56 . 2012-11-21 14:55 821736 —-a-w- c:\windows\SysWow64
    pDeployJava1.dll
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2012-10-22 16:40 . 2011-04-05 01:29 63488 —-a-w- c:\windows\system32\igfxsrvc.dll
    2012-10-22 16:40 . 2011-04-05 01:28 9007616 —-a-w- c:\windows\system32\igfxress.dll
    2012-10-22 16:39 . 2011-04-05 01:29 110592 —-a-w- c:\windows\system32\hccutils.dll
    2012-10-16 08:38 . 2012-11-28 09:02 135168 —-a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
    2012-10-16 08:38 . 2012-11-28 09:02 350208 —-a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
    2012-10-16 07:39 . 2012-11-28 09:02 561664 —-a-w- c:\windows\apppatch\AcLayers.dll
    2012-10-04 16:40 . 2012-12-12 06:35 44032 —-a-w- c:\windows\apppatch\acwow64.dll
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
    @="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
    [HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
    2012-11-21 16:23 220632 —-a-w- c:\users\HP-G6\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
    @="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
    [HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
    2012-11-21 16:23 220632 —-a-w- c:\users\HP-G6\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
    @="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
    [HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
    2012-11-21 16:23 220632 —-a-w- c:\users\HP-G6\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
    @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
    2012-11-13 23:32 129272 —-a-w- c:\users\HP-G6\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
    @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
    2012-11-13 23:32 129272 —-a-w- c:\users\HP-G6\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
    @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
    2012-11-13 23:32 129272 —-a-w- c:\users\HP-G6\AppData\Roaming\Dropbox\bin\DropboxExt.17.dll
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2012-11-09 17877168]
    "DriverMax"="c:\program files (x86)\Innovative Solutions\DriverMax\drivermax.exe" [2012-11-14 11324864]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
    "F-Secure Hoster (45123)"="c:\program files (x86)\Internetbeveiliging\fshoster32.exe" [2012-08-27 167632]
    "F-Secure Manager"="c:\program files (x86)\Internetbeveiliging\apps\ComputerSecurity\Common\FSM32.EXE" [2012-07-03 310992]
    "BCSSync"="c:\program files (x86)\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
    "SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
    "{0228e555-4f9c-4e35-a3ec-b109a192b4c2}"="c:\program files (x86)\Google\Gmail Notifier\gnotify.exe" [2005-07-15 479232]
    "Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-09-23 926896]
    "HPUsageTrackingLEDM"="c:\program files (x86)\HP\HP UT LEDM\bin\hppusg.exe" [2009-08-04 30264]
    .
    c:\users\HP-G6\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    Dropbox.lnk - c:\users\HP-G6\AppData\Roaming\Dropbox\bin\Dropbox.exe [2012-12-17 29428448]
    FAHControl.lnk - c:\program files (x86)\FAHClient\FAHControl.exe [2012-10-4 1525760]
    .
    c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
    Google Calendar Sync.lnk - c:\program files (x86)\Google\Google Calendar Sync\GoogleCalendarSync.exe [2011-4-8 542264]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 5 (0x5)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableUIADesktopToggle"= 0 (0x0)
    .
    [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
    "mixer"=wdmaud.drv
    .
    R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
    R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
    R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-11-09 160944]
    R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys [2012-08-10 551040]
    R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
    R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
    R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2010-11-21 88960]
    R3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys [2012-09-12 35112]
    R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2012-08-23 29696]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
    R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
    R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
    R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
    R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2012-11-21 1255736]
    S0 fsbts;fsbts;c:\windows\system32\Drivers\fsbts.sys [2012-11-21 56016]
    S1 F-Secure HIPS;F-Secure HIPS Driver;c:\program files (x86)\Internetbeveiliging\apps\ComputerSecurity\HIPS\drivers\fshs.sys [2012-11-21 62232]
    S1 fsvista;F-Secure Vista Support Driver;c:\program files (x86)\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\minifilter\fsvista.sys [2012-07-03 16920]
    S2 fshoster;F-Secure Dll Hoster;c:\program files (x86)\Internetbeveiliging\fshoster32.exe [2012-08-27 167632]
    S2 FSORSPClient;F-Secure ORSP Client;c:\program files (x86)\Internetbeveiliging\apps\CCF_Reputation\fsorsp.exe [2012-05-25 61152]
    S2 HP LaserJet Service;HP LaserJet Service;c:\program files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [2009-06-24 136704]
    S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-08-10 197536]
    S2 HPSIService;HP SI Service;c:\windows\system32\HPSIsvc.exe [2011-11-11 126520]
    S2 TeamViewer7;TeamViewer 7;c:\program files (x86)\TeamViewer\Version7\TeamViewer_Service.exe [2012-10-23 2848168]
    S3 F-Secure Gatekeeper;F-Secure Gatekeeper;c:\program files (x86)\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\minifilter\fsgk.sys [2012-11-21 199736]
    S3 fsni;fsni;c:\program files (x86)\Internetbeveiliging\apps\CCF_Scanning\fsni64.sys [2012-11-22 78904]
    S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2012-06-19 342528]
    S3 LEqdUsb;Logitech SetPoint Unifying KMDF USB Filter;c:\windows\system32\DRIVERS\LEqdUsb.Sys [2012-09-18 78648]
    S3 LHidEqd;Logitech SetPoint Unifying KMDF HID Filter;c:\windows\system32\DRIVERS\LHidEqd.Sys [2012-09-18 15160]
    S3 pmkbdfltr;PenMount Keyboard Device Filter Driver;c:\windows\system32\DRIVERS\pmkbdfltr.sys [2012-08-01 18832]
    S3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\DRIVERS\RtsPStor.sys [2012-10-26 343696]
    S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-08-23 565352]
    S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys [2012-10-17 44344]
    .
    .
    — Andere Services/Drivers In Geheugen —
    .
    *NewlyCreated* - WS2IFSL
    .
    Inhoud van de 'Gedeelde Taken' map
    .
    2012-12-21 c:\windows\Tasks\Adobe Flash Player Updater.job
    - c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-09 10:33]
    .
    .
    ——— X64 Entries ———–
    .
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
    @="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
    [HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
    2012-11-21 16:23 244696 —-a-w- c:\users\HP-G6\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
    @="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
    [HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
    2012-11-21 16:23 244696 —-a-w- c:\users\HP-G6\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
    @="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
    [HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
    2012-11-21 16:23 244696 —-a-w- c:\users\HP-G6\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
    @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
    2012-11-13 23:32 162552 —-a-w- c:\users\HP-G6\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
    @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
    2012-11-13 23:32 162552 —-a-w- c:\users\HP-G6\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
    @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
    2012-11-13 23:32 162552 —-a-w- c:\users\HP-G6\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
    @="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
    2012-11-13 23:32 162552 —-a-w- c:\users\HP-G6\AppData\Roaming\Dropbox\bin\DropboxExt64.17.dll
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-10-22 171040]
    "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-10-22 399392]
    "Persistence"="c:\windows\system32\igfxpers.exe" [2012-10-22 441888]
    "SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2012-08-19 1664000]
    "EvtMgr6"="c:\program files\Logitech\SetPointP\SetPoint.exe" [2012-11-04 2419512]
    .
    ——- Bijkomende Scan ——-
    .
    uLocal Page = c:\windows\system32\blank.htm
    mLocal Page = c:\windows\SysWOW64\blank.htm
    IE: &Verzenden naar OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
    IE: E&xporteren naar Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
    TCP: DhcpNameServer = 212.54.40.25 212.54.35.25 192.168.1.1
    FF - ProfilePath - c:\users\HP-G6\AppData\Roaming\Mozilla\Firefox\Profiles\ykkzt56j.default\
    FF - prefs.js: browser.startup.homepage - hxxps://www.google.nl/
    FF - ExtSQL: 2012-11-21 19:58; {F003DA68-8256-4b37-A6C4-350FA04494DF}; c:\program files\Logitech\SetPointP\LogiSmoothFirefoxExt
    .
    - - - - ORPHANS VERWIJDERD - - - -
    .
    Wow6432Node-HKLM-Run-<NO NAME> - (no file)
    HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
    .
    .
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\fshoster]
    "ImagePath"="\"c:\program files (x86)\Internetbeveiliging\fshoster32.exe\" -hosterid:0"
    .
    ——————— VERGRENDELDE REGISTER SLEUTELS ———————
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
    @="?????????????????? v1"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
    @="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
    @="?????????????????? v2"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
    @="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\F-Secure\My Services Agent\Protected]
    @Denied: ) (Everyone)
    "AgentIdentifier"="91d071f7-f030-4c43-8c8c-12067195cdc9"
    "AuthorizationCode"="unM30L7ZwjzS07-8DzmUXvoeLcqL7rkNM7Y4pU1hlpfcALailsDgXw"
    "45123_AgentIdentifier"="91d071f7-f030-4c43-8c8c-12067195cdc9"
    "45123_AuthorizationCode"="unM30L7ZwjzS07-8DzmUXvoeLcqL7rkNM7Y4pU1hlpfcALailsDgXw"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
    @Denied: (A) (Everyone)
    "Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
    @Denied: (A) (Everyone)
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
    "Key"="ActionsPane3"
    "Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    ———————— Andere Aktieve Processen ————————
    .
    c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    c:\program files (x86)\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\FSGK32.EXE
    c:\program files (x86)\Internetbeveiliging\apps\ComputerSecurity\Common\FSMA32.EXE
    c:\program files (x86)\Auslogics\Auslogics BoostSpeed\BoostSpeed.exe
    c:\program files (x86)\TeamViewer\Version7\TeamViewer.exe
    c:\program files (x86)\Internetbeveiliging\apps\ComputerSecurity\Anti-Virus\fssm32.exe
    c:\program files (x86)\TeamViewer\Version7\tv_w32.exe
    .
    **************************************************************************
    .
    Voltooingstijd: 2012-12-21 11:57:17 - machine werd herstart
    ComboFix-quarantined-files.txt 2012-12-21 10:57
    .
    Pre-Run: 83.836.866.560 bytes beschikbaar
    Post-Run: 83.563.986.944 bytes beschikbaar
    .
    - - End Of File - - 26A6CC510F6792C46EA82A3873D5552F
  • hallo Anko, doe het volgende maar:

    download [b:d8d4879d46]MsnCleaner_eng.zip[/b:d8d4879d46] naar je bureaublad, pak het bestand alvast uit maar gebruik het nog niet.

    [list:d8d4879d46][*:d8d4879d46] Herstart je computer nu naar Veilige modus.
    [*:d8d4879d46] Klik/Dubbelklik op [b:d8d4879d46]MsnCleaner_eng.exe[/b:d8d4879d46] om het tool te starten.[/list:u:d8d4879d46]

    [list:d8d4879d46][*:d8d4879d46] Klik nu onder de knop 'Exit' op 'English' en kies dan voor 'Dutch'.[/list:u:d8d4879d46]

    [list:d8d4879d46][*:d8d4879d46] Klik vervolgens op de knop 'Analyze'.
    [*:d8d4879d46] Is de analyze gereed, wordt er een rapport gemaakt.[/list:u:d8d4879d46]

    [list:d8d4879d46][*:d8d4879d46] Indien er een infectie is gevonden, klik dan op de knop 'Verwijder".[/list:u:d8d4879d46]

    [list:d8d4879d46][*:d8d4879d46] Hertstart nu de computer naar normale modus.
    [*:d8d4879d46] Post vervolgens de inhoud van het log dat je vindt in 'C:\MsnCleaner.txt'[/list:u:d8d4879d46]
  • - Logbestand MSNCleaner 1.7.5 by www.forospyware.com
    - Aangemaakt logbestand: 21-12-2012 on 21:48:34
    - Besturingssyssteem: Windows 7
    - Boot modus: Veilige modus met netwerk support
    _________________________________________

    Gedetecteerde bestanden: 0
    Verwijderde bestanden: 0
    Niet verwijderde bestanden: 0

    <<<<<<< Geen bestand gevonden >>>>>>>
  • Je hebt dus het wachtwoord al veranderd schreef je.
    Wat je ook in zulk soort gevallen dient te veranderen, is de geheime vraag!

    En wacht dan af of je nog weer van die meldingen krijgt.
  • LOL, die geheime vraag weten misschien nog 3 mensen ter wereld t antwoord op, dat zit wel snor.
    Ik houd alles in de gaten.
    Verder nog op/aanmerkingen??
    Combofix OK??
  • Yes, is oké.

    Laat jij je browser soms de inlogs onthouden?
  • Van een aantal sites wel, dit forum en dat van www.zeilersforum.nl
    de rest niet.
    MSN is ook sinds vandaag zo ingesteld dat ik me elke keer moet aanmelden.

    Verder lopen CCleaner, Auslogics en het op jouw advies aangeschafte winsysclean met alles aangevinkt, dus moet ik regelmatig weer overal op inloggen
  • Kijk dan toch maar eens naar LastPass.
    Ik gebruik het ook.
    Met voor elke inlog een ander en lang wachtwoord!
  • Maak er vd week werk van.
    Bedankt en goede feestdagen.
  • Maak er vd week werk van.
    Bedankt en goede feestdagen.
  • Jij en de jouwen ook heel fijne Kerstdagen toegewenst.
  • Ik las het volgende op de site:

    In ieder geval een waarschuwing: LastPass zal niet voor iedereen een oplossing zijn en je moet erop kunnen vertrouwen dat jou wachtwoorden in de cloud staan. Vertrouw je het niet, dan kan je kijken naar bijvoorbeeld alternatieven zoals 1password of roboform.

    Is het opslaan in de cloud wel veilig?

Beantwoord deze vraag

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.