Ga naar inhoud

Nab

Lid
 Bekijk profiel  Bekijk hun activiteit

  • Items

    9

  • Registratiedatum

  • Laatst bezocht

 Inhoudstype 

Alles dat geplaatst werd door Nab

  1. Nab
    Hier de scans...: c:\windows\system32\dllcache\ntkrnlmp.exe Bestandsnaam: ntkrnlmp.exe Status: Scan voltooid. 0 uit 20 scanners vonden malware. c:\windows\system32\dllcache\ntoskrnl.exe Bestandsnaam: ntoskrnl.exe Status: Scan voltooid. 0 uit 20 scanners vonden malware. c:\windows\system32\dllcache\ntkrnlpa.exe Bestandsnaam: ntkrnlpa.exe Status: Scan voltooid. 0 uit 20 scanners vonden malware. c:\windows\system32\dllcache\ntkrpamp.exe Bestandsnaam: ntkrpamp.exe Status: Scan voltooid. 0 uit 20 scanners vonden malware.
  2. Nab
    ComboFix 12-01-19.02 - N 21-01-2012 0:19.1.2 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.1014.382 [GMT 1:00] Gestart vanuit: c:\documents and settings\N \Mijn documenten\Downloads\ComboFix.exe FW: AVG Firewall *Disabled* {8decf618-9569-4340-b34a-d78d28969b66} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\documents and settings\All Users\Application Data\TEMP . . (((((((((((((((((((( Bestanden Gemaakt van 2011-12-20 to 2012-01-20 )))))))))))))))))))))))))))))) . . 2012-01-20 08:36 . 2012-01-20 08:36 -------- d--h--r- c:\documents and settings\N \Onlangs geopend 2012-01-18 00:29 . 2012-01-18 00:29 -------- d-----w- c:\windows\Sun 2012-01-16 20:14 . 2012-01-16 20:14 -------- d-----w- c:\program files\Trend Micro 2012-01-10 06:06 . 2009-06-23 06:50 49262 ----a-w- c:\windows\system32\jpicpl32.cpl 2012-01-09 23:49 . 2012-01-09 23:49 -------- d-----w- c:\program files\Microsoft.NET 2012-01-09 23:38 . 2012-01-09 23:38 -------- d-----w- c:\program files\Microsoft Analysis Services 2012-01-09 23:37 . 2012-01-09 23:38 -------- d-----w- c:\windows\SHELLNEW 2012-01-09 23:33 . 2012-01-09 23:33 -------- d-----r- C:\MSOCache 2012-01-09 22:55 . 2012-01-10 07:11 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-01-09 20:37 . 2012-01-09 20:37 -------- d-----w- c:\documents and settings\N \Local Settings\Application Data\WMTools Downloaded Files 2012-01-09 20:34 . 2012-01-11 02:06 -------- d-----w- c:\program files\Microsoft Application Virtualization Client 2012-01-09 20:34 . 2012-01-09 20:34 -------- d-----w- c:\documents and settings\All Users\Microsoft 2012-01-09 20:33 . 2012-01-09 20:37 -------- d-----w- c:\documents and settings\N \Application Data\TP 2012-01-09 20:32 . 2012-01-09 20:32 -------- d-----w- c:\documents and settings\N \Local Settings\Application Data\Mozilla 2012-01-09 06:32 . 2012-01-09 06:32 -------- d-----w- c:\documents and settings\N \Application Data\AVG 2012-01-09 06:01 . 2012-01-20 08:17 -------- d-----w- c:\program files\AVG 2012-01-09 05:58 . 2012-01-09 05:57 73728 ----a-w- c:\windows\system32\javacpl.cpl 2012-01-09 05:58 . 2012-01-09 05:57 472808 ----a-w- c:\windows\system32\deployJava1.dll 2012-01-09 02:41 . 2012-01-09 02:41 -------- d-----w- c:\windows\system32\XPSViewer 2012-01-09 02:41 . 2012-01-09 02:41 -------- d-----w- c:\program files\MSBuild 2012-01-09 02:41 . 2012-01-09 02:41 -------- d-----w- c:\program files\Reference Assemblies 2012-01-09 02:40 . 2008-07-06 12:06 89088 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll 2012-01-09 02:40 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll 2012-01-09 02:40 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll 2012-01-09 02:40 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll 2012-01-09 02:40 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll 2012-01-09 02:40 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe 2012-01-09 02:40 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe 2012-01-09 02:40 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll 2012-01-09 02:40 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll 2012-01-09 02:26 . 2012-01-20 08:36 -------- d-s---w- c:\documents and settings\N \UserData 2012-01-09 02:06 . 2012-01-09 02:06 -------- d--h--w- c:\documents and settings\All Users\Application Data\Common Files 2012-01-09 02:03 . 2012-01-20 08:22 -------- d-----w- c:\documents and settings\All Users\Application Data\MFAData 2012-01-09 01:27 . 2012-01-09 01:27 -------- d-----w- c:\program files\CCleaner 2012-01-07 22:08 . 2012-01-07 22:08 -------- d-----w- c:\documents and settings\N \Application Data\DDMSettings 2012-01-07 22:05 . 2012-01-07 22:05 -------- d-----w- c:\documents and settings\N \Application Data\DivX 2012-01-07 22:02 . 2012-01-07 22:03 -------- d-----w- c:\program files\Common Files\DivX Shared 2012-01-07 22:00 . 2012-01-07 22:05 -------- d-----w- c:\program files\DivX 2012-01-07 22:00 . 2012-01-07 22:05 -------- d-----w- c:\documents and settings\All Users\Application Data\DivX 2012-01-07 09:51 . 2008-06-14 17:36 272640 -c----w- c:\windows\system32\dllcache\bthport.sys 2012-01-07 09:51 . 2008-06-14 17:36 272640 ------w- c:\windows\system32\drivers\bthport.sys 2012-01-07 09:48 . 2011-07-15 13:29 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys 2012-01-07 09:34 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe 2012-01-07 02:02 . 2008-07-09 07:44 26488 ----a-w- c:\windows\system32\spupdsvc.exe 2012-01-06 18:49 . 2012-01-06 18:49 -------- d-----w- c:\documents and settings\N \Local Settings\Application Data\Microsoft Help 2012-01-06 18:49 . 2012-01-12 01:10 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help 2012-01-06 18:21 . 2009-08-06 18:23 274288 ----a-w- c:\windows\system32\mucltui.dll 2012-01-06 18:21 . 2009-08-06 18:23 215920 ----a-w- c:\windows\system32\muweb.dll 2012-01-06 16:11 . 2012-01-06 16:11 -------- d-----w- c:\program files\MSECache 2012-01-06 01:04 . 2012-01-06 01:04 -------- d-----w- c:\documents and settings\N \Application Data\Malwarebytes 2012-01-06 01:04 . 2012-01-06 01:04 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2012-01-06 01:04 . 2011-12-10 14:24 20464 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-01-06 01:04 . 2012-01-06 01:04 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2012-01-06 00:15 . 2012-01-20 08:31 -------- d-----w- c:\documents and settings\N \Tracing 2012-01-06 00:13 . 2012-01-07 11:55 -------- d-----w- c:\program files\Microsoft Silverlight 2012-01-06 00:08 . 2006-11-29 12:06 3426072 ----a-w- c:\windows\system32\d3dx9_32.dll 2012-01-06 00:02 . 2012-01-06 00:02 -------- d-----w- c:\program files\Common Files\Windows Live 2012-01-05 22:13 . 2012-01-09 21:18 -------- d-----w- c:\documents and settings\N \Local Settings\Application Data\Google 2012-01-05 22:10 . 2011-10-26 10:50 2153472 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe 2012-01-05 22:10 . 2011-10-26 10:50 2197120 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe 2012-01-05 22:10 . 2011-10-26 10:50 2073728 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe 2012-01-05 22:10 . 2011-10-26 10:50 2031616 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-11-25 21:57 . 2008-06-22 23:54 293888 ----a-w- c:\windows\system32\winsrv.dll 2011-11-23 14:40 . 2008-06-22 23:54 1859712 ----a-w- c:\windows\system32\win32k.sys 2011-11-20 06:12 . 2008-06-22 23:54 60928 ----a-w- c:\windows\system32\packager.exe 2011-11-16 14:22 . 2008-06-22 23:54 354816 ----a-w- c:\windows\system32\winhttp.dll 2011-11-16 14:22 . 2008-06-22 23:54 152064 ----a-w- c:\windows\system32\schannel.dll 2011-11-03 15:29 . 2008-06-22 23:54 386560 ----a-w- c:\windows\system32\qdvd.dll 2011-11-03 15:29 . 2008-06-22 23:54 1296384 ----a-w- c:\windows\system32\quartz.dll 2011-11-01 20:36 . 2008-06-22 23:54 670208 ----a-w- c:\windows\system32\wininet.dll 2011-11-01 20:36 . 2008-06-22 23:54 61952 ----a-w- c:\windows\system32\tdc.ocx 2011-11-01 20:36 . 2008-06-22 23:54 81920 ----a-w- c:\windows\system32\ieencode.dll 2011-11-01 20:34 . 2008-06-22 23:54 371712 ----a-w- c:\windows\system32\html.iec 2011-11-01 16:07 . 2008-06-22 23:54 1288192 ----a-w- c:\windows\system32\ole32.dll 2011-10-28 05:32 . 2008-06-22 23:53 33280 ----a-w- c:\windows\system32\csrsrv.dll 2011-10-26 10:50 . 2008-04-14 22:11 2031616 ----a-w- c:\windows\system32\ntkrnlpa.exe 2011-10-26 10:50 . 2008-04-14 22:11 2153472 ----a-w- c:\windows\system32\ntoskrnl.exe 2011-12-21 08:02 . 2012-01-09 20:32 121816 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696] "RTHDCPL"="RTHDCPL.EXE" [2008-08-26 16851456] "EDS"="c:\program files\Samsung\Samsung EDS\EDSAgent.exe" [2007-12-20 659456] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-02-28 141848] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-02-28 166424] "Persistence"="c:\windows\system32\igfxpers.exe" [2008-02-28 137752] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-08-28 1044480] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 39792] "DMHotKey"="c:\program files\Samsung\Easy Display Manager\DMLoader.exe" [2006-12-27 466944] "BatteryManager"="c:\program files\Samsung\Samsung Battery Manager\BatteryManager.exe" [2008-10-20 2768896] "MagicKeyboard"="c:\program files\SAMSUNG\MagicKBD\PreMKBD.exe" [2006-05-14 151552] "Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-12-24 460872] "DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2011-07-28 1259376] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-15 15360] . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\WINDOWS\\system32\\dpvsetup.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= "c:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE"= "c:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE"= . R2 cvhsvc;Client Virtualization Handler;c:\program files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [20-10-2010 15:23 821664] R2 DOSMEMIO;MEMIO;c:\windows\system32\MEMIO.SYS [23-6-2009 7:50 4300] R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [6-1-2012 2:04 652872] R2 sftlist;Application Virtualization Client;c:\program files\Microsoft Application Virtualization Client\sftlist.exe [14-9-2010 5:46 508264] R2 yksvc;Marvell Yukon Service;c:\windows\System32\svchost.exe -k yksvcs [23-6-2008 0:54 14336] R3 DNSeFilter;DNSeFilter;c:\windows\system32\drivers\SamsungEDS.SYS [14-1-2008 18:01 30208] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [6-1-2012 2:04 20464] R3 Sftfs;Sftfs;c:\windows\system32\drivers\Sftfsxp.sys [2-12-2009 22:23 581480] R3 Sftplay;Sftplay;c:\windows\system32\drivers\Sftplayxp.sys [2-12-2009 22:23 209640] R3 Sftredir;Sftredir;c:\windows\system32\drivers\Sftredirxp.sys [2-12-2009 22:23 20584] R3 Sftvol;Sftvol;c:\windows\system32\drivers\Sftvolxp.sys [2-12-2009 22:23 18280] R3 sftvsa;Application Virtualization Service Agent;c:\program files\Microsoft Application Virtualization Client\sftvsa.exe [14-9-2010 5:46 219496] R3 VMC326;Vimicro Camera Service VMC326;c:\windows\system32\drivers\VMC326.sys [23-6-2009 7:54 238464] S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [9-1-2010 21:37 4640000] . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] yksvcs REG_MULTI_SZ yksvc . . ------- Bijkomende Scan ------- . mStart Page = hxxp://www.google.com/ig/redirectdomain?brand=SMSN&bmod=SMSN uInternet Connection Wizard,ShellNext = hxxp://www.google.com/ig/redirectdomain?brand=SMSN&bmod=SMSN uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: &Verzenden naar OneNote - c:\progra~1\MI1933~1\Office14\ONBttnIE.dll/105 IE: E&xport to Microsoft Excel - c:\progra~1\MI1933~1\Office12\EXCEL.EXE/3000 IE: E&xporteren naar Microsoft Excel - c:\progra~1\MI1933~1\Office14\EXCEL.EXE/3000 TCP: DhcpNameServer = 192.168.0.1 FF - ProfilePath - c:\documents and settings\N \Application Data\Mozilla\Firefox\Profiles\50ks0dhl.default\ . - - - - ORPHANS VERWIJDERD - - - - . WebBrowser-{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} - (no file) . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2012-01-21 00:24 Windows 5.1.2600 Service Pack 3 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . Voltooingstijd: 2012-01-21 00:26:21 ComboFix-quarantined-files.txt 2012-01-20 23:26 . Pre-Run: 60.667.850.752 bytes beschikbaar Post-Run: 60.734.513.152 bytes beschikbaar . WindowsXP-KB310994-SP2-Home-BootDisk-NLD.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons UnsupportedDebug="do not select this" /debug multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect . - - End Of File - - 1652C3ED7F7143A4BEAE3EA26D2E1FD6
  3. Nab
    Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 21:15:36, on 16-1-2012 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\PROGRA~1\AVG\AVG2012\avgrsx.exe C:\Program Files\AVG\AVG2012\avgcsrvx.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\AVG\AVG2012\avgfws.exe C:\Program Files\AVG\AVG2012\avgwdsvc.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files\AVG\AVG2012\avgnsx.exe C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\9.0.1\ToolbarUpdater.exe C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\Samsung\Samsung EDS\EDSAgent.exe C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe C:\WINDOWS\system32\igfxsrvc.exe C:\Program Files\Samsung\Samsung Battery Manager\BatteryManager.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe C:\Program Files\DivX\DivX Update\DivXUpdate.exe C:\Program Files\AVG\AVG2012\avgtray.exe C:\Program Files\AVG Secure Search\vprot.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\SAMSUNG\MagicKBD\MagicKBD.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\igfxext.exe C:\Program Files\SAMSUNG\MagicKBD\PerformanceManager.exe C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE C:\Program Files\AVG\AVG2012\avgcsrvx.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\WINDOWS\system32\msiexec.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\9.0.0.23\AVG Secure Search_toolbar.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MI1933~1\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: AVG Security Toolbar - {95B7759C-8C7F-4BF1-B163-73684A933233} - C:\Program Files\AVG Secure Search\9.0.0.23\AVG Secure Search_toolbar.dll O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [EDS] C:\Program Files\Samsung\Samsung EDS\EDSAgent.exe O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [DMHotKey] C:\Program Files\Samsung\Easy Display Manager\DMLoader.exe O4 - HKLM\..\Run: [batteryManager] C:\Program Files\Samsung\Samsung Battery Manager\BatteryManager.exe O4 - HKLM\..\Run: [MagicKeyboard] C:\Program Files\SAMSUNG\MagicKBD\PreMKBD.exe O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe" O4 - HKLM\..\Run: [vProt] "C:\Program Files\AVG Secure Search\vprot.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MI1933~1\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office14\EXCEL.EXE/3000 O9 - Extra button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll O18 - Protocol: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - C:\Program Files\Common Files\AVG Secure Search\ViProtocolInstaller\9.0.1\ViProtocol.dll O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgfws.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: Samsung Update Plus - Unknown owner - C:\Program Files\Samsung\Samsung Update Plus\SLUBackgroundService.exe O23 - Service: vToolbarUpdater - Unknown owner - C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\9.0.1\ToolbarUpdater.exe -- End of file - 9232 bytes
  4. Nab
    Dag allen, Sinds een tijdje krijg ik vreemde tekens (chinees en vierkantjes met cijfers er in) na heen en weer mailen met mijn hotmail adres. De eerste 2 mailtjes heen en weer gaan zonder problemen, maar als ik een derde mailtje wil opstellen zie ik dat de voorgaande berichten veranderd zijn in vreemde tekens. Ik kan dus wel reageren dmv reply, maar kan de tekst eronder niet meer lezen. Hoe kan ik dit wegkrijgen? Alvast bedankt voor de reacties
  5. Nab
    Ik vind het zelf ook vreemd en UPC zegt dat er niks aan de hand is... Ik download ook nooit wat (films bekijk ik gewoon online etc.) en heb ook geen download programma. Ik blijf erbij dat het de connectie is, maar ja, spreek hen maar tegen. Het is van de ene dag op de andere ineens supertraag geworden op beide apparaten. Dat kan toch niet.
  6. Nab
    ComboFix 11-11-09.01 - N 09-11-2011 20:58:33.1.2 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.1014.593 [GMT 1:00] Gestart vanuit: c:\documents and settings\N\Mijn documenten\Downloads\ComboFix.exe . . (((((((((((((((((((( Bestanden Gemaakt van 2011-10-09 to 2011-11-09 )))))))))))))))))))))))))))))) . . 2011-11-07 19:58 . 2011-11-07 19:58 388096 ----a-r- c:\documents and settings\N\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2011-11-07 19:58 . 2011-11-07 19:58 -------- d-----w- c:\program files\Trend Micro 2011-11-07 00:47 . 2011-11-07 16:39 -------- d--h--r- c:\documents and settings\N\Onlangs geopend 2011-11-07 00:24 . 2011-11-07 00:24 -------- d-----w- c:\program files\CCleaner 2011-11-06 15:46 . 2011-11-06 15:46 -------- d-----w- c:\documents and settings\Gast 2011-11-03 17:08 . 2011-11-03 17:08 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache 2011-11-03 17:04 . 2011-11-03 17:04 -------- d-sh--w- c:\documents and settings\N\IETldCache 2011-11-03 07:28 . 2011-08-16 10:45 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll 2011-11-03 07:26 . 2011-08-22 23:41 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll 2011-11-03 07:26 . 2011-08-23 16:41 11081728 -c----w- c:\windows\system32\dllcache\ieframe.dll 2011-11-03 07:26 . 2011-08-22 23:41 602112 -c----w- c:\windows\system32\dllcache\msfeeds.dll 2011-11-03 07:26 . 2011-08-22 23:41 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll 2011-11-03 07:26 . 2011-08-22 23:41 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll 2011-11-03 07:26 . 2011-08-22 23:41 2000384 -c----w- c:\windows\system32\dllcache\iertutil.dll 2011-11-03 07:26 . 2011-08-22 23:41 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll 2011-11-03 07:25 . 2011-11-03 07:26 -------- dc-h--w- c:\windows\ie8 2011-11-02 20:53 . 2011-11-02 20:53 -------- d-----w- c:\documents and settings\N\Local Settings\Application Data\Temp 2011-10-25 23:44 . 2011-11-06 21:02 -------- d-----w- c:\documents and settings\N\Local Settings\Application Data\Google 2011-10-25 23:44 . 2011-10-25 23:44 -------- d-----w- c:\documents and settings\N\Local Settings\Application Data\Deployment 2011-10-24 08:00 . 2011-10-24 08:00 -------- d-----w- c:\program files\Common Files\Adobe 2011-10-23 15:02 . 2011-10-23 15:02 -------- d-----w- c:\windows\system32\XPSViewer 2011-10-23 15:02 . 2011-10-23 15:02 -------- d-----w- c:\program files\MSBuild 2011-10-23 15:01 . 2011-10-23 15:01 -------- d-----w- c:\program files\Reference Assemblies 2011-10-23 15:01 . 2008-07-06 12:06 89088 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\filterpipelineprintproc.dll 2011-10-23 15:01 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll 2011-10-23 15:01 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll 2011-10-23 15:01 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll 2011-10-23 15:01 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll 2011-10-23 15:01 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll 2011-10-23 15:01 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll 2011-10-23 15:01 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe 2011-10-23 15:01 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe 2011-10-23 15:01 . 2011-10-23 15:01 -------- d-----w- C:\1073770a7b524a58ea 2011-10-22 10:29 . 2010-12-09 15:14 2153472 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe 2011-10-22 10:29 . 2010-12-09 15:14 2197120 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe 2011-10-22 10:29 . 2010-12-09 15:14 2031616 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe 2011-10-22 10:29 . 2010-12-09 15:14 2073728 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe 2011-10-22 10:18 . 2008-06-14 17:36 272640 -c----w- c:\windows\system32\dllcache\bthport.sys 2011-10-22 10:18 . 2008-06-14 17:36 272640 ------w- c:\windows\system32\drivers\bthport.sys 2011-10-22 10:14 . 2011-07-15 13:29 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys 2011-10-22 10:10 . 2010-02-12 10:03 293376 ------w- c:\windows\system32\browserchoice.exe 2011-10-21 23:35 . 2009-01-07 17:21 26144 ----a-w- c:\windows\system32\spupdsvc.exe 2011-10-21 20:04 . 2011-10-21 20:04 -------- d-----w- c:\documents and settings\N\Application Data\DivX 2011-10-21 19:59 . 2011-10-21 20:04 -------- d-----w- c:\program files\DivX 2011-10-21 19:58 . 2011-10-21 20:04 -------- d-----w- c:\documents and settings\All Users\Application Data\DivX 2011-10-21 12:45 . 2009-08-06 17:23 215920 ----a-w- c:\windows\system32\muweb.dll 2011-10-21 12:45 . 2009-08-06 17:23 274288 ----a-w- c:\windows\system32\mucltui.dll 2011-10-21 11:16 . 2011-10-21 11:16 -------- d-----w- c:\documents and settings\All Users\Microsoft 2011-10-21 11:12 . 2011-10-21 11:12 -------- d-----w- c:\program files\Microsoft Analysis Services 2011-10-21 11:12 . 2011-10-21 11:12 -------- d-----w- c:\windows\SHELLNEW 2011-10-21 11:12 . 2011-10-21 11:12 -------- d-----w- c:\documents and settings\N\Local Settings\Application Data\Microsoft Help 2011-10-21 11:12 . 2011-10-23 10:38 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help 2011-10-21 11:11 . 2011-10-21 11:11 -------- d-----r- C:\MSOCache 2011-10-20 22:02 . 2011-11-09 20:02 -------- d-----w- c:\documents and settings\N\Tracing 2011-10-20 22:01 . 2011-10-23 22:41 -------- d-----w- c:\program files\Microsoft Silverlight 2011-10-20 21:53 . 2006-11-29 11:06 3426072 ----a-w- c:\windows\system32\d3dx9_32.dll 2011-10-20 21:53 . 2011-10-20 21:53 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition 2011-10-20 21:52 . 2011-10-20 21:52 -------- d-----w- c:\program files\Microsoft 2011-10-20 21:51 . 2011-10-20 21:51 -------- d-----w- c:\program files\Windows Live SkyDrive 2011-10-20 21:51 . 2011-10-20 22:00 -------- d-----w- c:\program files\Windows Live 2011-10-20 21:49 . 2011-10-20 21:49 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-10-20 21:44 . 2011-10-20 21:44 -------- d-----w- c:\program files\Common Files\Windows Live 2011-10-20 21:41 . 2011-10-20 21:41 -------- d-----w- c:\documents and settings\N\Local Settings\Application Data\Mozilla 2011-10-20 21:35 . 2011-11-07 00:47 -------- d-sh--w- c:\documents and settings\N\UserData . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-09-26 09:41 . 2011-09-26 09:41 614912 ------w- c:\windows\system32\uiautomationcore.dll 2011-09-26 09:41 . 2008-06-22 23:54 23040 ----a-w- c:\windows\system32\oleaccrc.dll 2011-09-26 09:41 . 2008-06-22 23:54 220160 ----a-w- c:\windows\system32\oleacc.dll 2011-09-09 09:12 . 2008-06-22 23:53 602624 ----a-w- c:\windows\system32\crypt32.dll 2011-09-06 14:09 . 2008-06-22 23:54 1859072 ----a-w- c:\windows\system32\win32k.sys 2011-08-22 23:41 . 2008-06-22 23:54 916480 ----a-w- c:\windows\system32\wininet.dll 2011-08-22 23:41 . 2008-06-22 23:54 43520 ------w- c:\windows\system32\licmgr10.dll 2011-08-22 23:41 . 2008-06-22 23:54 1469440 ------w- c:\windows\system32\inetcpl.cpl 2011-08-22 11:58 . 2008-06-22 23:54 385024 ------w- c:\windows\system32\html.iec 2011-08-17 13:49 . 2008-06-22 23:53 138496 ----a-w- c:\windows\system32\drivers\afd.sys . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-04-16 3872080] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"="c:\program files\Java\jre1.5.0\bin\jusched.exe" [2009-06-23 36972] "RTHDCPL"="RTHDCPL.EXE" [2008-08-26 16851456] "EDS"="c:\program files\Samsung\Samsung EDS\EDSAgent.exe" [2007-12-20 659456] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-02-28 141848] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-02-28 166424] "Persistence"="c:\windows\system32\igfxpers.exe" [2008-02-28 137752] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-08-28 1044480] "DMHotKey"="c:\program files\Samsung\Easy Display Manager\DMLoader.exe" [2006-12-27 466944] "BatteryManager"="c:\program files\Samsung\Samsung Battery Manager\BatteryManager.exe" [2008-10-20 2768896] "MagicKeyboard"="c:\program files\SAMSUNG\MagicKBD\PreMKBD.exe" [2006-05-14 151552] "DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2011-07-28 1259376] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920] . [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-15 15360] . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\WINDOWS\\system32\\dpvsetup.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= "c:\\Program Files\\Microsoft Office\\Office14\\ONENOTE.EXE"= "c:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE"= "c:\\Program Files\\Messenger\\msmsgs.exe"= . R2 DOSMEMIO;MEMIO;c:\windows\system32\MEMIO.SYS [23-6-2009 7:50 4300] R2 yksvc;Marvell Yukon Service;c:\windows\System32\svchost.exe -k yksvcs [23-6-2008 0:54 14336] R3 DNSeFilter;DNSeFilter;c:\windows\system32\drivers\SamsungEDS.SYS [14-1-2008 18:01 30208] R3 VMC326;Vimicro Camera Service VMC326;c:\windows\system32\drivers\VMC326.sys [23-6-2009 7:54 238464] S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [9-1-2010 20:37 4640000] S3 SUEPD;SUE NDIS Protocol Driver;c:\windows\system32\drivers\SUE_PD.sys [1-8-2006 14:57 19840] . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] yksvcs REG_MULTI_SZ yksvc . Inhoud van de 'Gedeelde Taken' map . 2011-11-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1841516730-1972342768-3808621247-1005Core.job - c:\documents and settings\N\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-11-06 21:01] . 2011-11-09 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1841516730-1972342768-3808621247-1005UA.job - c:\documents and settings\N\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-11-06 21:01] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.com/ig/redirectdomain?brand=SMSN&bmod=SMSN uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: &Verzenden naar OneNote - c:\progra~1\MI1933~1\Office14\ONBttnIE.dll/105 IE: E&xporteren naar Microsoft Excel - c:\progra~1\MI1933~1\Office14\EXCEL.EXE/3000 TCP: DhcpNameServer = 192.168.0.1 . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2011-11-09 21:03 Windows 5.1.2600 Service Pack 3 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . --------------------- DLLs Geladen Onder Lopende Processen --------------------- . - - - - - - - > 'explorer.exe'(360) c:\windows\system32\webcheck.dll c:\program files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.dll c:\program files\Common Files\Adobe\Acrobat\ActiveX\PDFShell.NLD . Voltooingstijd: 2011-11-09 21:05:05 ComboFix-quarantined-files.txt 2011-11-09 20:05 . Pre-Run: 61.476.597.760 bytes beschikbaar Post-Run: 61.552.123.904 bytes beschikbaar . WindowsXP-KB310994-SP2-Home-BootDisk-NLD.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons UnsupportedDebug="do not select this" /debug multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect . - - End Of File - - C973A4E035ABA56633A5EE483D423A9C
  7. Nab
    Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 20:58:57, on 7-11-2011 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Java\jre1.5.0\bin\jusched.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\Samsung\Samsung EDS\EDSAgent.exe C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Samsung\Samsung Battery Manager\BatteryManager.exe C:\Program Files\DivX\DivX Update\DivXUpdate.exe C:\WINDOWS\system32\igfxsrvc.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Samsung\Easy Display Manager\dmhkcore.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Messenger\msmsgs.exe C:\WINDOWS\system32\igfxext.exe C:\Program Files\SAMSUNG\MagicKBD\MagicKBD.exe C:\Program Files\SAMSUNG\MagicKBD\PerformanceManager.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Documents and Settings\N\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\N\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\N\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\N\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\Documents and Settings\N\Local Settings\Application Data\Google\Chrome\Application\chrome.exe C:\WINDOWS\system32\msiexec.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MI1933~1\Office14\URLREDIR.DLL O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0\bin\jusched.exe O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [EDS] C:\Program Files\Samsung\Samsung EDS\EDSAgent.exe O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [DMHotKey] C:\Program Files\Samsung\Easy Display Manager\DMLoader.exe O4 - HKLM\..\Run: [batteryManager] C:\Program Files\Samsung\Samsung Battery Manager\BatteryManager.exe O4 - HKLM\..\Run: [MagicKeyboard] C:\Program Files\SAMSUNG\MagicKBD\PreMKBD.exe O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\N\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" /c O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MI1933~1\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office14\EXCEL.EXE/3000 O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Samsung Update Plus - Unknown owner - C:\Program Files\Samsung\Samsung Update Plus\SLUBackgroundService.exe -- End of file - 7249 bytes
  8. Nab
    Dank voor de snelle reactie. Heb het net op de laptop uitgevoerd en het resultaat is: 3.28mbps download en 0.99mbps upload. Ik heb een UPC Fiber Power 25 abonnement. Toevallig hebben zij ook een speedtest op de site en die geeft aan: 13.63mbps download en 1.24mbps upload... 25mb en1.5mb is wat je krijgt bij het abonnement. Klopt het met bovenstaand?
  9. Nab
    Dag mensen, Sinds een maandje zijn mijn laptop (Samsung) en dekstop (Dell) enorm traag geworden. Dit is tegelijkertijd gebeurd. Het laden van websites kan soms erg lang duren. Zelfs even mijn mail checken kan een minuut duren terwijl het voorheen seconde werk was. Ook filmpjes etc. afspelen gaat erg traag. Ik vraag mij af hoe dit kan en vooral hoe ik dit kan verhelpen. Ik heb al contact opgenomen met UPC maar die zegt (na 1weken wachten op antwoord) dat alles naar behoren werkt volgens hen. So what to do.......? Ik hoop dat jullie mij hiermee kunnen helpen. Ik heb niet erg veel verstand van computers.
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.