Vraag & Antwoord

Beveiliging & privacy

Rare codes als ik inlog bij hotmail

Anoniem
None
27 antwoorden
  • Hoi pdexie, ik wist dat het repareren van de MBR bij Dell computers tot problemen kan leiden!
    Daar komt nu dus Medion ook bij!
    Dus wat dat betreft bedankt voor je eigen speurwerk.

    Maar doe nu het volgende:

    [b:c78781d466]Welk programma[/b:c78781d466]: sUbs [b:c78781d466]dds.scr[/b:c78781d466]
    [b:c78781d466]Waarvoor/waarom[/b:c78781d466]: DDS is een diagnosetool en maakt gebruik van scripts.
    [b:c78781d466]Moeilijkheidsgraad[/b:c78781d466]: Min of meer lastige voorbereidingsfase, dus lees alles eerst goed.
    [b:c78781d466]Downloadlokatie[/b:c78781d466]: Dit programma absoluut naar het bureaublad downloaden of anders eerst daar naar toe verplaatsen!
    [b:c78781d466]Download[/b:c78781d466] sUBs dds.scr [b:c78781d466]hier[/b:c78781d466]

    [img:c78781d466]http://img.photobucket.com/albums/v666/sUBs/dds_scr.gif[/img:c78781d466]

    [b:c78781d466]sUBs dds.scr gebruiken[/b:c78781d466]:
    [list:c78781d466][*:c78781d466][b:c78781d466]
  • Hier de gevraagde logs:

    .
    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2011-06-12.02)
    .
    Microsoft Windows 7 Home Premium
    Boot Device: \Device\HarddiskVolume1
    Install Date: 11-4-2011 1:26:22
    System Uptime: 19-6-2011 18:44:32 (0 hours ago)
    .
    Motherboard: MEDION | | P6624
    Processor: Intel(R) Core(TM) i3 CPU M 370 @ 2.40GHz | CPU 1 | 2394/532mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 565 GiB total, 432,215 GiB free.
    D: is FIXED (NTFS) - 30 GiB total, 9,576 GiB free.
    E: is CDROM ()
    .
    ==== Disabled Device Manager Items =============
    .
    ==== System Restore Points ===================
    .
    RP69: 9-6-2011 13:31:40 - Windows Update
    RP70: 9-6-2011 15:20:31 - Herstelbewerking
    RP71: 9-6-2011 15:27:15 - Windows Update
    RP72: 14-6-2011 9:24:03 - Windows Update
    RP73: 15-6-2011 0:16:13 - Windows Update
    RP74: 18-6-2011 12:13:29 - Installed HiJackThis
    RP75: 18-6-2011 12:30:30 - Removed Synaptics Gesture Suite featuring SYNAPTICS | Scrybe.
    .
    ==== Installed Programs ======================
    .
    Update for Microsoft Office 2007 (KB2508958)
    2007 Microsoft Office Suite Service Pack 2 (SP2)
    ABC (remove only)
    Acrobat.com
    Adobe AIR
    Adobe Download Manager
    Adobe Flash Player 10 ActiveX
    Adobe Flash Player 10 Plugin
    Adobe Reader X (10.1.0) - Nederlands
    AnyDVD
    Apple Application Support
    Apple Mobile Device Support
    Apple Software Update
    Ashampoo Burning Studio
    Ashampoo Photo Commander
    Ashampoo Snap
    Atheros Communications Inc.(R) AR81Family Gigabit/Fast Ethernet Driver
    BlueSoleil 8.0.338.0
    Bonjour
    Canon Easy-PhotoPrint EX
    Canon Hulpprogramma Snelkiezen
    Canon IJ Network Scan Utility
    Canon IJ Network Tool
    Canon MP Navigator EX 3.1
    Canon MX340 series MP Drivers
    Canon My Printer
    Canon Utilities Solution Menu
    CCleaner
    Cisco EAP-FAST Module
    Cisco LEAP Module
    Cisco PEAP Module
    CloneCD
    CloneDVD2
    ConvertXtoDVD 4.0.10.324
    Core Temp version 0.99.8
    CorelDRAW Essentials 4
    CorelDRAW Essentials 4 - Content
    CorelDRAW Essentials 4 - Draw
    CorelDRAW Essentials 4 - Filters
    CorelDRAW Essentials 4 - ICA
    CorelDRAW Essentials 4 - IPM - No VBA
    CorelDRAW Essentials 4 - Lang BR
    CorelDRAW Essentials 4 - Lang DE
    CorelDRAW Essentials 4 - Lang EN
    CorelDRAW Essentials 4 - Lang ES
    CorelDRAW Essentials 4 - Lang FR
    CorelDRAW Essentials 4 - Lang IT
    CorelDRAW Essentials 4 - Lang NL
    CorelDRAW Essentials 4 - PHOTO-PAINT
    CorelDRAW Essentials 4 - Windows Shell Extension
    CyberLink LabelPrint
    CyberLink MediaShow
    CyberLink MediaShow Espresso
    CyberLink PhotoNow
    CyberLink Power2Go
    CyberLink PowerDirector
    CyberLink PowerDVD 9
    CyberLink PowerDVD Copy
    CyberLink PowerProducer
    CyberLink YouCam
    D3DX10
    DVD Decrypter (Remove Only)
    DVD Profiler Version 3.7.2
    DVD Shrink 3.2
    ESET NOD32 Antivirus
    Fences
    FormatFactory 2.60
    Futuremark SystemInfo
    Gebruikersregistratie voor Canon MX340 series
    Haali Media Splitter
    High-Definition Video Playback 10
    HiJackThis
    Intel(R) Graphics Media Accelerator Driver
    Intel(R) Management Engine Components
    Intel(R) Rapid Storage Technology
    iTunes
    Java Auto Updater
    Java(TM) 6 Update 25
    Launch Manager
    MailWasher Pro
    Malwarebytes' Anti-Malware versie 1.51.0.1200
    Medion Home Cinema
    Microsoft .NET Framework 4 Client Profile
    Microsoft Application Error Reporting
    Microsoft Office Access MUI (Dutch) 2007
    Microsoft Office Enterprise 2007
    Microsoft Office Excel MUI (Dutch) 2007
    Microsoft Office Groove MUI (Dutch) 2007
    Microsoft Office InfoPath MUI (Dutch) 2007
    Microsoft Office OneNote MUI (Dutch) 2007
    Microsoft Office Outlook MUI (Dutch) 2007
    Microsoft Office PowerPoint MUI (Dutch) 2007
    Microsoft Office Proof (Dutch) 2007
    Microsoft Office Proof (English) 2007
    Microsoft Office Proof (French) 2007
    Microsoft Office Proof (German) 2007
    Microsoft Office Proofing (Dutch) 2007
    Microsoft Office Publisher MUI (Dutch) 2007
    Microsoft Office Shared MUI (Dutch) 2007
    Microsoft Office Word MUI (Dutch) 2007
    Microsoft Primary Interoperability Assemblies 2005
    Microsoft Search Enhancement Pack
    Microsoft Silverlight
    Microsoft SQL Server 2005 Compact Edition [ENU]
    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
    Mozilla Firefox 4.0.1 (x86 nl)
    MSVCRT
    MSXML 4.0 SP2 (KB973688)
    Nero 10 Menu TemplatePack Basic
    Nero 10 Movie ThemePack Basic
    Nero BackItUp 10
    Nero BackItUp 10 Help (CHM)
    Nero Burning ROM 10
    Nero BurningROM 10 Help (CHM)
    Nero BurnRights 10
    Nero BurnRights 10 Help (CHM)
    Nero Control Center 10
    Nero ControlCenter 10 Help (CHM)
    Nero Core Components 10
    Nero CoverDesigner 10
    Nero CoverDesigner 10 Help (CHM)
    Nero DiscCopy Gadget 10
    Nero DiscCopyGadget 10 Help (CHM)
    Nero DiscSpeed 10
    Nero DiscSpeed 10 Help (CHM)
    Nero Dolby Files 10
    Nero Express 10
    Nero Express 10 Help (CHM)
    Nero InfoTool 10
    Nero InfoTool 10 Help (CHM)
    Nero MediaHub 10
    Nero MediaHub 10 Help (CHM)
    Nero Multimedia Suite 10
    Nero Recode 10
    Nero Recode 10 Help (CHM)
    Nero RescueAgent 10
    Nero RescueAgent 10 Help (CHM)
    Nero SoundTrax 10
    Nero SoundTrax 10 Help (CHM)
    Nero StartSmart 10
    Nero StartSmart 10 Help (CHM)
    Nero Update
    Nero Vision 10
    Nero Vision 10 Help (CHM)
    Nero WaveEditor 10
    Nero WaveEditor 10 Help (CHM)
    Nokia Connectivity Cable Driver
    NVIDIA Display Control Panel
    NVIDIA Drivers
    NVIDIA Updatus
    PC Connectivity Solution
    PlayReady PC Runtime x86
    Privacy Eraser Pro
    QuickTime
    Realtek High Definition Audio Driver
    Realtek USB 2.0 Card Reader
    REALTEK Wireless LAN Driver
    Renesas Electronics USB 3.0 Host Controller Driver
    Security Update for 2007 Microsoft Office System (KB2288621)
    Security Update for 2007 Microsoft Office System (KB2288931)
    Security Update for 2007 Microsoft Office System (KB2345043)
    Security Update for 2007 Microsoft Office System (KB2509488)
    Security Update for 2007 Microsoft Office System (KB969559)
    Security Update for 2007 Microsoft Office System (KB976321)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
    Security Update for Microsoft Office 2007 System (KB2541012)
    Security Update for Microsoft Office Access 2007 (KB979440)
    Security Update for Microsoft Office Excel 2007 (KB2541007)
    Security Update for Microsoft Office Groove 2007 (KB2494047)
    Security Update for Microsoft Office InfoPath 2007 (KB2510061)
    Security Update for Microsoft Office InfoPath 2007 (KB979441)
    Security Update for Microsoft Office PowerPoint 2007 (KB2535818)
    Security Update for Microsoft Office PowerPoint Viewer 2007 (KB2464623)
    Security Update for Microsoft Office Publisher 2007 (KB2284697)
    Security Update for Microsoft Office system 2007 (972581)
    Security Update for Microsoft Office system 2007 (KB974234)
    Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
    Security Update for Microsoft Office Word 2007 (KB2344993)
    SIW version 2010.07.14
    Songbird 1.9.3 (Build 1959)
    Speccy
    Spotnet
    SpywareBlaster 4.4
    Synaptics Pointing Device Driver
    System Requirements Lab
    Teletekstbrowser versie 3.4
    Update for 2007 Microsoft Office System (KB967642)
    Update for Microsoft Office 2007 System (KB2539530)
    Update for Microsoft Office OneNote 2007 (KB980729)
    Update for Microsoft Office Outlook 2007 (KB2509470)
    Update for Outlook 2007 Junk Email Filter (KB2536413)
    Update voor Microsoft Office Excel 2007 Help (KB963678)
    Update voor Microsoft Office Powerpoint 2007 Help (KB963669)
    Update voor Microsoft Office Word 2007 Help (KB963665)
    VoiceOver Kit
    Windows-stuurprogrammapakket - Nokia pccsmcfd (08/22/2008 7.0.0.0)
    Windows Live Communications Platform
    Windows Live Essentials
    Windows Live ID Sign-in Assistant
    Windows Live Installer
    Windows Live Messenger
    Windows Live Movie Maker
    Windows Live Photo Common
    Windows Live Photo Gallery
    Windows Live PIMT Platform
    Windows Live SOXE
    Windows Live SOXE Definitions
    Windows Live Sync
    Windows Live UX Platform
    Windows Live UX Platform Language Pack
    Windows Media Encoder 9 Series
    X10 Hardware(TM)
    XMedia Recode 2.3.1.8
    ZoneAlarm Pro
    .
    ==== End Of File ===========================


    .
    DDS (Ver_2011-06-12.02) - NTFSx86
    Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_25
    Run by Ivo at 18:53:03 on 2011-06-19
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.3253.1982 [GMT 2:00]
    .
    AV: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
    SP: ESET NOD32 Antivirus 4.2 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    FW: ZoneAlarm Pro Firewall *Enabled* {D17DF357-CFF5-F001-D1C1-FCD21DFE3D5E}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\nvvsvc.exe
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\system32\nvvsvc.exe
    C:\Windows\System32\ZoneLabs\vsmon.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\Dwm.exe
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Windows\system32\taskhost.exe
    C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
    C:\Windows\system32\taskeng.exe
    C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    C:\Program Files\CyberLink\Power2Go\CLMLSvc.exe
    C:\Program Files\Core Temp\Core Temp.exe
    C:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe
    C:\Program Files\Bonjour\mDNSResponder.exe
    C:\Program Files\IVT Corporation\BlueSoleil\BsMobileCS.exe
    C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
    C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
    C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
    c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
    C:\Program Files\CyberLink\Shared files\RichVideo.exe
    C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Program Files\Realtek\Audio\HDA\RtHDVBg.exe
    C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Program Files\IVT Corporation\BlueSoleil\BsHelpCS.exe
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Windows\servicing\TrustedInstaller.exe
    C:\Program Files\Launch Manager\HotkeyApp.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\Program Files\Launch Manager\OSD.exe
    C:\Program Files\Launch Manager\WButton.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
    C:\Windows\System32\hkcmd.exe
    C:\Program Files\Launch Manager\WisLMSvc.exe
    C:\Windows\System32\igfxpers.exe
    C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
    C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
    C:\Program Files\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe
    C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
    C:\Program Files\IVT Corporation\BlueSoleil\BtTray.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    C:\Program Files\Songbird\songbirditunesagent.exe
    C:\Program Files\FireTrust\MailWasher Pro\MailWasher.exe
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Windows\system32\Macromed\Flash\FlashUtil10t_ActiveX.exe
    C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
    C:\Program Files\Nero\Update\NASvc.exe
    C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
    C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    C:\Windows\System32\svchost.exe -k secsvcs
    C:\Windows\system32\DllHost.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\system32\conhost.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://retro.ilse.nl/
    uDefault_Page_URL = hxxp://medion.msn.com
    uInternet Settings,ProxyOverride = *.local
    BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
    BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\program files\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll
    BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
    BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
    BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
    TB: {21FA44EF-376D-4D53-9B0F-8A89D3229068} - No File
    uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
    uRun: [sbitunesagent] c:\program files\songbird\songbirditunesagent.exe
    mRun: [CLMLServer] "c:\program files\cyberlink\power2go\CLMLSvc.exe"
    mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s
    mRun: [RtHDVBg] c:\program files\realtek\audio\hda\RtHDVBg.exe /FORPCEE3
    mRun: [HotkeyApp] "c:\program files\launch manager\HotkeyApp.exe"
    mRun: [LMgrVolOSD] "c:\program files\launch manager\OSD.exe"
    mRun: [Wbutton] "c:\program files\launch manager\Wbutton.exe"
    mRun: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
    mRun: [NUSB3MON] "c:\program files\renesas electronics\usb 3.0 host controller driver\application\nusb3mon.exe"
    mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
    mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
    mRun: [Persistence] c:\windows\system32\igfxpers.exe
    mRun: [egui] "c:\program files\eset\eset nod32 antivirus\egui.exe" /hide /waitservice
    mRun: [ZoneAlarm Client] "c:\program files\zone labs\zonealarm\zlclient.exe"
    mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
    mRun: [CloneCDTray] "c:\program files\slysoft\clonecd\CloneCDTray.exe" /s
    mRun: [CanonSolutionMenu] c:\program files\canon\solutionmenu\CNSLMAIN.exe /logon
    mRun: [Malwarebytes' Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
    mRun: [IJNetworkScanUtility] c:\program files\canon\canon ij network scan utility\CNMNSUT.exe
    mRun: [CanonMyPrinter] c:\program files\canon\myprinter\BJMyPrt.exe /logon
    mRun: [BtTray] "c:\program files\ivt corporation\bluesoleil\BtTray.exe"
    mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
    mRun: [NBAgent] "c:\program files\nero\nero 10\nero backitup\NBAgent.exe" /WinStart
    mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
    mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
    mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
    StartupFolder: c:\users\ivo\appdata\roaming\micros~1\windows\startm~1\programs\startup\mailwa~1.lnk - c:\program files\firetrust\mailwasher pro\MailWasher.exe
    mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
    mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
    mPolicies-system: EnableLinkedConnections = 1 (0x1)
    IE: E&xporteren naar Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
    DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
    DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
    DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} - hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.5.7.cab
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0025-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_25-windows-i586.cab
    DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    TCP: DhcpNameServer = 192.168.2.1
    TCP: Interfaces\{91734A2F-C336-4BE9-8362-AA7479B0E354} : DhcpNameServer = 192.168.2.1
    TCP: Interfaces\{91734A2F-C336-4BE9-8362-AA7479B0E354}\B4F656B6B6F656B6 : DhcpNameServer = 192.168.1.254
    Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\windows\system32\skype4com.dll
    Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
    Notify: igfxcui - igfxdev.dll
    AppInit_DLLs: c:\windows\system32\nvinit.dll
    STS: FencesShlExt Class: {1984dd45-52cf-49cd-ab77-18f378fea264} - c:\program files\stardock\fences\FencesMenu.dll
    SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - c:\users\ivo\appdata\roaming\mozilla\firefox\profiles\tdaagmoh.default\
    FF - prefs.js: browser.startup.homepage - hxxp://retro.ilse.nl/
    FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
    FF - plugin: c:\program files\canon\easy-photoprint ex\NPEZFFPI.DLL
    FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
    FF - plugin: c:\program files\microsoft silverlight\4.0.60531.0\npctrlui.dll
    FF - plugin: c:\program files\nos\bin\np_gp.dll
    FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 BtHidBus;Bluetooth HID Bus Service;c:\windows\system32\drivers\BtHidBus.sys [2010-4-6 20104]
    R0 nvpciflt;nvpciflt;c:\windows\system32\drivers\nvpciflt.sys [2010-8-9 19656]
    R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-14 48128]
    R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\common files\adobe\arm\1.0\armsvc.exe [2011-6-6 64952]
    R2 BsMobileCS;BsMobileCS;c:\program files\ivt corporation\bluesoleil\BsMobileCS.exe [2010-8-31 147563]
    R2 eamonm;eamonm;c:\windows\system32\drivers\eamonm.sys [2010-12-21 137144]
    R2 ekrn;ESET Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2011-1-12 810144]
    R2 epfwwfpr;epfwwfpr;c:\windows\system32\drivers\epfwwfpr.sys [2010-12-21 95384]
    R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\intel\intel(r) rapid storage technology\IAStorDataMgrSvc.exe [2010-8-9 13336]
    R2 NAUpdate;Nero Update;c:\program files\nero\update\NASvc.exe [2010-3-25 490280]
    R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\nvidia corporation\nvidia updatus\daemonu.exe [2010-8-9 1620584]
    R2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files\intel\intel(r) management engine components\uns\UNS.exe [2010-8-9 2320920]
    R3 BTCOMBUS;Bluetooth Serial Port Bus Service;c:\windows\system32\drivers\btcombus.sys [2010-8-26 22024]
    R3 btnetBUs;Bluetooth PAN Bus Service;c:\windows\system32\drivers\btnetBus.sys [2010-4-6 25864]
    R3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys [2010-8-9 132480]
    R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\drivers\IntcDAud.sys [2010-8-9 246272]
    R3 IvtBtBUs;IVT Bluetooth Bus Service;c:\windows\system32\drivers\IvtBtBus.sys [2010-4-6 23048]
    R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\L1C62x86.sys [2010-8-4 67624]
    R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys [2010-4-27 64904]
    R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys [2010-4-27 146568]
    R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;c:\windows\system32\drivers\rtl8192se.sys [2010-4-1 1009184]
    R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\drivers\vwifimp.sys [2009-7-14 14336]
    R3 WisLMSvc;WisLMSvc;c:\program files\launch manager\WisLMSvc.exe [2010-8-9 118560]
    R3 X10Hid;X10 Hid Device;c:\windows\system32\drivers\x10hid.sys [2010-8-14 13720]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
    S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]
    S3 BTCOM;Bluetooth Serial port driver;c:\windows\system32\drivers\btcomport.sys [2010-8-26 25992]
    S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files\common files\futuremark shared\futuremark systeminfo\FMSISvc.exe [2011-4-15 128928]
    S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-4-11 22712]
    S3 nosGetPlusHelper;getPlus(R) Helper 3004;c:\windows\system32\svchost.exe -k nosGetPlusHelper [2009-7-14 20992]
    S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [2010-8-9 193056]
    S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2009-6-10 139776]
    S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-4-11 52224]
    S3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\wat\WatAdminSvc.exe [2011-4-11 1343400]
    S4 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2011-4-11 366640]
    .
    =============== Created Last 30 ================
    .
    2011-06-18 23:16:54 ——– d—–w- c:\users\ivo\appdata\local\{643D3E42-4B56-444B-9D88-D8C5ED2BF3BE}
    2011-06-18 10:13:57 388096 —-a-r- c:\users\ivo\appdata\roaming\microsoft\installer\{45a66726-69bc-466b-a7a4-12fcba4883d7}\HiJackThis.exe
    2011-06-17 23:41:10 ——– d—–w- c:\users\ivo\appdata\local\{60FDA689-F8C0-4423-A24C-12C5953E8B50}
    2011-06-17 20:30:39 6962000 —-a-w- c:\programdata\microsoft\windows defender\definition updates\{036c6c9a-83f8-49a5-aa54-30124173e044}\mpengine.dll
    2011-06-17 18:14:33 ——– d—–w- c:\program files\Trend Micro
    2011-06-17 11:40:46 ——– d—–w- c:\users\ivo\appdata\local\{EEFA0C31-A61A-4666-97A4-D417470955A1}
    2011-06-16 14:32:11 ——– d—–w- c:\users\ivo\appdata\local\{D5DC33BE-1066-487F-AF75-3B6D1FC185DB}
    2011-06-15 23:52:23 ——– d—–w- c:\users\ivo\appdata\roaming\Intel Corporation
    2011-06-15 23:40:38 ——– d—–w- c:\users\ivo\appdata\local\{563339E0-4113-4853-890D-C14801570BE8}
    2011-06-15 11:40:14 ——– d—–w- c:\users\ivo\appdata\local\{F18224D0-F240-47FE-B088-E198B36CDB65}
    2011-06-15 09:57:52 ——– d—–w- c:\users\ivo\appdata\local\{7AC2016D-888F-4D41-9771-AFD9E95DF64D}
    2011-06-14 22:22:24 2382848 —-a-w- c:\windows\system32\mshtml.tlb
    2011-06-14 22:22:24 141104 —-a-w- c:\program files\internet explorer\sqmapi.dll
    2011-06-14 22:22:23 1797632 —-a-w- c:\windows\system32\jscript9.dll
    2011-06-14 22:16:03 741376 —-a-w- c:\windows\system32\inetcomm.dll
    2011-06-14 22:16:01 571904 —-a-w- c:\windows\system32\oleaut32.dll
    2011-06-14 22:16:01 311808 —-a-w- c:\windows\system32\drivers\srv.sys
    2011-06-14 22:16:01 310272 —-a-w- c:\windows\system32\drivers\srv2.sys
    2011-06-14 22:16:01 114688 —-a-w- c:\windows\system32\drivers\srvnet.sys
    2011-06-14 22:15:50 1290624 —-a-w- c:\windows\system32\drivers\tcpip.sys
    2011-06-14 22:15:49 338944 —-a-w- c:\windows\system32\drivers\afd.sys
    2011-06-14 22:15:12 96768 —-a-w- c:\windows\system32\drivers\mrxsmb20.sys
    2011-06-14 22:15:12 223744 —-a-w- c:\windows\system32\drivers\mrxsmb10.sys
    2011-06-14 22:15:12 123904 —-a-w- c:\windows\system32\drivers\mrxsmb.sys
    2011-06-14 21:57:27 ——– d—–w- c:\users\ivo\appdata\local\{F6E24E59-02B3-4F2C-B24D-5D171F82F415}
    2011-06-13 22:14:33 ——– d—–w- c:\users\ivo\appdata\local\{73F0B0D3-F343-4BEB-9FD2-5C114C408599}
    2011-06-10 23:40:58 ——– d—–w- c:\users\ivo\appdata\local\{9E8A95C4-CCBD-4E9F-85EA-61F533918A05}
    2011-06-10 11:40:34 ——– d—–w- c:\users\ivo\appdata\local\{A0D73EBA-F0ED-4D05-8CC6-3EDCC73D3E64}
    2011-06-09 16:07:08 ——– d—–w- c:\users\ivo\appdata\local\{A85BEC58-790A-4B53-B8D0-6A6AEE21AB25}
    2011-06-09 14:10:55 ——– d—–w- c:\program files\iPod
    2011-06-09 11:38:18 ——– d—–w- c:\program files\CheckPoint
    2011-06-09 09:44:07 ——– d—–w- c:\users\ivo\appdata\local\{6E7A22EC-02A7-4CAA-AD01-E4B4DE5171B8}
    2011-06-08 14:45:47 ——– d—–w- c:\users\ivo\appdata\local\{F466E934-2EC5-4290-B800-660909F14244}
    2011-06-07 23:01:31 ——– d—–w- c:\users\ivo\appdata\local\{A4A72686-327D-447C-942F-619FE71FED13}
    2011-06-07 09:55:23 ——– d—–w- c:\users\ivo\appdata\local\{B1F70BCC-7524-48C6-AB25-24E698EBF7B6}
    2011-06-06 21:54:59 ——– d—–w- c:\users\ivo\appdata\local\{F40B13EF-DC00-4620-AFA0-924148BAEE72}
    2011-06-06 10:55:30 183696 —-a-w- c:\program files\internet explorer\plugins\nppdf32.dll
    2011-06-06 09:04:30 ——– d—–w- c:\users\ivo\appdata\local\{1FF29577-E64A-421A-BFAE-3B3EB7093352}
    2011-06-01 08:51:10 ——– d—–w- c:\users\ivo\appdata\local\{23268CB8-D612-4FD8-A4D8-944B0F20223E}
    2011-05-31 10:44:43 ——– d—–w- c:\users\ivo\appdata\local\{6F8F9AD8-409B-479E-9ED9-8B5B36C4441F}
    2011-05-30 11:07:46 ——– d—–w- c:\users\ivo\appdata\local\{25CE02A5-CC38-4B18-830D-C576B85A62F8}
    2011-05-29 21:39:28 ——– d—–w- c:\users\ivo\appdata\local\{F8010782-2F25-4C31-BDCE-9B5031F8E57A}
    2011-05-28 21:02:37 ——– d—–w- c:\users\ivo\appdata\local\{BFEB185C-EC68-418F-85A4-E27CBE64B93C}
    2011-05-27 19:28:29 ——– d—–w- c:\users\ivo\appdata\local\{85DDDEA7-8F74-49FD-B16F-190FD52EB586}
    2011-05-26 22:00:40 ——– d—–w- c:\users\ivo\appdata\local\{FE1E21E1-D2CD-456B-A12E-5558404C6E89}
    2011-05-25 22:23:21 ——– d—–w- c:\users\ivo\appdata\local\{87CFF989-DE95-436D-8EE7-9AC92882F47E}
    2011-05-25 11:36:58 ——– d—–w- c:\users\ivo\appdata\local\Diagnostics
    2011-05-25 08:06:10 ——– d—–w- c:\users\ivo\appdata\local\{6EFF1E8F-46E8-43E9-800F-2593612D90C5}
    2011-05-25 07:13:11 27008 —-a-w- c:\windows\system32\drivers\Diskdump.sys
    2011-05-24 07:33:47 ——– d—–w- c:\users\ivo\appdata\local\{35AB7811-918F-4D5F-A0EE-4F3BD8BC988F}
    2011-05-23 19:12:34 ——– d—–w- c:\users\ivo\appdata\local\{E08034E2-CFF1-4F21-B84A-F0EC1EAE2E04}
    2011-05-23 00:38:39 ——– d—–w- c:\users\ivo\appdata\local\{53742DDA-B372-4EAF-AF4F-F70C078CF609}
    2011-05-22 10:51:14 ——– d—–w- c:\users\ivo\appdata\local\{EB6E923C-C34B-452F-BBC1-69F17291EA09}
    2011-05-21 22:50:51 ——– d—–w- c:\users\ivo\appdata\local\{6C63C16C-D42E-491E-8AEB-EE0C731FEEF2}
    2011-05-21 08:58:21 ——– d—–w- c:\users\ivo\appdata\local\{077D82A1-AD97-4780-A5DB-12A87D2754E6}
    2011-05-20 20:19:14 ——– d—–w- c:\users\ivo\appdata\local\{4FB3FB0B-FB39-4782-A389-8C12FB13C841}
    .
    ==================== Find3M ====================
    .
    2011-06-18 07:42:30 404640 —-a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2011-06-14 08:59:40 952 –sha-w- c:\programdata\KGyGaAvL.sys
    2011-05-29 07:11:30 39984 —-a-w- c:\windows\system32\drivers\mbamswissarmy.sys
    2011-05-29 07:11:20 22712 —-a-w- c:\windows\system32\drivers\mbam.sys
    2011-05-24 17:14:10 222080 ——w- c:\windows\system32\MpSigStub.exe
    2011-05-17 15:32:21 472808 —-a-w- c:\windows\system32\deployJava1.dll
    2011-04-11 17:29:09 87608 —-a-w- c:\users\ivo\appdata\roaming\inst.exe
    2011-04-11 17:29:09 47360 —-a-w- c:\windows\system32\drivers\pcouffin.sys
    2011-04-11 17:29:09 47360 —-a-w- c:\users\ivo\appdata\roaming\pcouffin.sys
    2011-04-11 01:17:52 152576 —-a-w- c:\windows\system32\msclmd.dll
    2011-04-09 06:02:25 3967872 —-a-w- c:\windows\system32\ntkrnlpa.exe
    2011-04-09 06:02:25 3912576 —-a-w- c:\windows\system32\ntoskrnl.exe
    2011-04-09 05:56:38 123904 —-a-w- c:\windows\system32\poqexec.exe
    2011-04-06 14:20:16 91424 —-a-w- c:\windows\system32\dnssd.dll
    2011-04-06 14:20:16 75040 —-a-w- c:\windows\system32\jdns_sd.dll
    2011-04-06 14:20:16 197920 —-a-w- c:\windows\system32\dnssdX.dll
    2011-04-06 14:20:16 107808 —-a-w- c:\windows\system32\dns-sd.exe
    2011-03-25 13:54:31 117752 —-a-w- c:\windows\system32\drivers\AnyDVD.sys
    2011-03-25 02:58:37 258560 —-a-w- c:\windows\system32\drivers\usbhub.sys
    2011-03-25 02:58:07 284672 —-a-w- c:\windows\system32\drivers\usbport.sys
    2011-03-25 02:58:06 75776 —-a-w- c:\windows\system32\drivers\usbccgp.sys
    2011-03-25 02:57:58 43008 —-a-w- c:\windows\system32\drivers\usbehci.sys
    2011-03-25 02:57:58 20480 —-a-w- c:\windows\system32\drivers\usbohci.sys
    2011-03-25 02:57:56 24064 —-a-w- c:\windows\system32\drivers\usbuhci.sys
    2011-03-25 02:57:53 5888 —-a-w- c:\windows\system32\drivers\usbd.sys
    .
    ============= FINISH: 18:54:12,61 ===============
  • En, heb je jouw notebook inmiddels opnieuw opgestart?

    Enfin, ComboFix heeft verwijderd en opgeruimd.
    Voor de rest is alles Oké.

    Dus kunnen we opruimen:

    ComboFix mag nu verwijderd worden:
    [list:0b3f2e6d24][*:0b3f2e6d24] ga daarvoor naar Start - Uitvoeren
    [*:0b3f2e6d24] kopieer en plak hierin het volgende: [b:0b3f2e6d24]Combofix /Uninstall[/b:0b3f2e6d24]
    [*:0b3f2e6d24] klik daarna op [b:0b3f2e6d24]OK[/b:0b3f2e6d24].
    [*:0b3f2e6d24] indien het goed is, krijg je vervolgens een melding, dat Combofix verwijderd werd.[/list:u:0b3f2e6d24]

    Voorbeeld:

    [img:0b3f2e6d24]http://www.emphyrio.be/images/SMUninstall_combofix.png[/img:0b3f2e6d24]

    Uitvoeren kan ook gestart worden door de toetsen "Windowstoets + R" gelijktijdig in te drukken.

    [i:0b3f2e6d24]Dit zal Combofix verwijderen inclusief gerelateerde mappen en bestanden,
    herstelt de klokinstellingen opnieuw, verbergt de bestandsextensies,
    gaat verborgen bestanden en systeembestanden terug verbergen
    en reset je Systeemherstel opnieuw.[/i:0b3f2e6d24]



    Download [b:0b3f2e6d24] (by OldTimer)
    [list:0b3f2e6d24][*:0b3f2e6d24]Plaats het bestand op je bureaublad.
    [*:0b3f2e6d24]Zorg dat er een internetverbinding is.
    [*:0b3f2e6d24]Vista / W7 Gebruikers :
    [list:0b3f2e6d24][*:0b3f2e6d24]Klik vervolgens met je rechtermuisknop op OTC.exe en kies voor Run as Administrator (Nederlands: Uitvoeren als Administrator) om het programma te starten.[/list:u:0b3f2e6d24]
    [*:0b3f2e6d24]XP Gebruikers:
    [list:0b3f2e6d24][*:0b3f2e6d24]Dubbelklik op OTC[/list:u:0b3f2e6d24]
    [*:0b3f2e6d24]Klik nu op de knop "CleanUp!"
    [*:0b3f2e6d24]Als je firewall, of een ander beveiligingsprogramma, een waarschuwing geeft dat OTC.exe internettoegang wil,
    mag je dit toestaan, het programma heeft die connectie nodig.
    [*:0b3f2e6d24]OTC zal als laatste vragen of je de computer herstarten wilt, dit mag je toestaan, hiermee verwijdert het zichzelf ook.[/list:u:0b3f2e6d24]

    [i:0b3f2e6d24][b:0b3f2e6d24]Nota[/b:0b3f2e6d24]: Het gebruik van OTC.exe zal alle gebruikte tools(inclusief bijbehorende logs en backupmappen) van je computer doen verwijderen.[/i:0b3f2e6d24]
  • Graag gedaan hoor en zijn de icons weer terug in de systray?
  • Ja alle icons zijn weer terug in de systray.
  • Ja alle icons zijn weer terug in de systray.

    Waar was de latop eigenlijk mee "besmet" ?
  • Besmetting: Trojan.W32.RealSearch

    Meer: http://www.prevx.com/filenames/X1223305931300465095-X1/INST.EXE.html

Beantwoord deze vraag

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.