Volledige versie bekijken : msn probleem
FONZY 18 November 2007, 16:47 bij het openen van msn en het online zijn stuurt mijne msn een bericht aan alle personen die zich online bevinden met de melding "heb je dit al gezien" dit is wel een rar bestand dat men dan krijgt en als men dit opent dan heeft men hetzelfde probleem.
Als msn dit bericht heeft verstuurd kan je zelf niks meer sturen naar de personen die zich online bevinden.
de enige manier om terug te spreken met de personen is u afmelden en terug opnieuw aanmelden en dit moet je doen ongeveer om de 10 minuten.
Heeft er iemand een oplossing voor dit probleem ?
Bedankt bij voorbaat
Dit zijn de files van Hijackthis:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 15:27:10, on 18/11/2007
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16546)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ASUS\ATK Media\DMedia.exe
C:\Program Files\PowerForPhone\PowerForPhone.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Windows\ccSvcHst.exe
C:\Program Files\Alwil Software\Avast4\ashDisp.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\ASUS\WL-500gP Wireless Router Utilities\Download.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\G oogleToolbarNotifier.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\17PHolmes1148.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://dutch.ircfast2.com/index.php?rvs=hompag
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.be/0SENLBE/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
O4 - HKLM\..\Run: [PowerForPhone] C:\Program Files\PowerForPhone\PowerForPhone.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ccSvcHst.exe] C:\Windows\ccSvcHst.exe
O4 - HKLM\..\Run: [avast!] C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
O4 - HKLM\..\Run: [runner1] C:\Windows\mrofinu1148.exe 61A847B5BBF72813339F30466188719AB689201522886B092C BD44BD8689220221DD3257
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Download Master] C:\Program Files\ASUS\WL-500gP Wireless Router Utilities\Download.exe /hide
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\G oogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Ieuu] "C:\PROGRA~1\STEM~1\explorer.exe" -vt yazb
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Download All by ASUS Download - C:\Program Files\ASUS\WL-500gP Wireless Router Utilities\ASDownloadAll.htm
O8 - Extra context menu item: Download using ASUS Download - C:\Program Files\ASUS\WL-500gP Wireless Router Utilities\ASDownload.htm
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft AB - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: avast! Antivirus - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashServ.exe
O23 - Service: avast! Mail Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
O23 - Service: avast! Web Scanner - ALWIL Software - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek America Inc. - C:\Windows\System32\StkCSrv.exe
--
End of file - 7322 bytes
FONZY 19 November 2007, 14:41 ik zou nogmaals willen vragen of er iemand zo vriendelijk wil zijn om dit probleem even te bekijken en als het mogelijk is een oplossing te bieden thx in ieder geval voor de moeite
Juisterr 19 November 2007, 14:55 ik zou nogmaals willen vragen of er iemand zo vriendelijk wil zijn om dit probleem even te bekijken en als het mogelijk is een oplossing te bieden thx in ieder geval voor de moeite
maar natuurlijk. :eek:
Download hier MSNFix by BendeBoy (http://www.bendeboy.nl/misc/MSNFix.exe) (Mirror (http://bendeboy.be.funpic.org/MSNFix.exe)) en sla het op je bureaublad.
Dubbelklik MSNFix.exe, er zal nu een icoontje op je bureaublad verschijnen.
Sla eerst al uw documenten en werkjes etc. op omdat er een kans is dat de PC opnieuw moet gestart. Dit is normaal als een bestand zich hardnekkig heeft vast gezet.
Dubbelklik het icoontje "Start MSNFix"en laat het zijn gang gaan.
(Indien je meldingen krijgt van je scanner e.d. sta dit toe).
Het bestand gaat zijn taken uitvoeren, je hoeft ondertussen niets te doen. Zodra het klaar is en eventueel na herstart zal het een rapport openen (MSNFix.txt ).
Post die in je volgende bericht, tesamen met een logje van Hijackthis.
FONZY 21 November 2007, 12:00 Dit zijn de gevraagde scans van dochter hare laptop maar ik moet erbij zeggen dat een vriend van haar gisteren de pc heeft gescand met norton anti virus pro ik weet niet of daarmee alle virussen zijn verwijderd daarom deze scan nog eens en voorts dank bij voorbaat en het geeft een goed gevoel dat er nog mensen zijn die willen helpen in plaats van allerhande zever door te sturen thx
------------- BENDEBOYS MSNFIX RAPORT -------------
- Version: 3.6.0.8 - Last Update: 09/11/07
- Scan performed on: wo 21/11/2007 - 10:39:34,53 By liesje
- Bootmode: Normal Mode
It is possible to complain about messenger virusses.
Visit MalwareComplaints.com for more information!
Het is mogelijk om uw beklag te doen tegen messenger virussen.
Bezoek MalwareComplaints.com voor meer informatie.
((((((((((((((( CREATED FILES LAST MONTH )))))))))))))))
2007-11-21 -10:06:26 - A.S.. "C:\Windows\bootstat.dat"
2007-11-21 - 0:15:08 - A.... "C:\Windows\bthservsdp.dat"
2007-10-29 -18:56:20 - A.... "C:\Windows\catchme.exe"
2007-11-15 -23:49:20 - A.... "C:\Windows\explorer.exe"
2007-10-23 -17:49:24 - A.... "C:\Windows\WLXPGSS.SCR"
2007-11-21 -10:07:08 - A.... "C:\Windows\System32\acovcnt.exe"
2007-10-09 -21:18:08 - A.... "C:\Windows\System32\advpack.dll"
2007-11-15 -23:43:12 - A.... "C:\Windows\System32\authui.dll"
2007-11-15 -23:43:10 - A.... "C:\Windows\System32\avicap32.dll"
2007-11-15 -23:43:10 - A.... "C:\Windows\System32\avifil32.dll"
2007-11-15 -23:49:58 - A.... "C:\Windows\System32\cdd.dll"
2007-11-15 -23:43:12 - A.... "C:\Windows\System32\dhcpcsvc.dll"
2007-11-15 -23:49:58 - A.... "C:\Windows\System32\dps.dll"
2007-11-15 -23:47:32 - A.... "C:\Windows\System32\dxmasf.dll"
2007-10-09 -21:18:00 - A.... "C:\Windows\System32\dxtmsft.dll"
2007-10-09 -21:18:02 - A.... "C:\Windows\System32\dxtrans.dll"
2007-11-21 -10:06:40 - A.... "C:\Windows\System32\FNTCACHE.DAT"
2007-11-15 -23:46:42 - A.... "C:\Windows\System32\gameux.dll"
2007-10-09 -21:18:02 - A.... "C:\Windows\System32\icardie.dll"
2007-10-09 -21:18:06 - A.... "C:\Windows\System32\ie4uinit.exe"
2007-10-09 -21:18:00 - A.... "C:\Windows\System32\ieapfltr.dll"
2007-10-09 -21:18:10 - A.... "C:\Windows\System32\ieframe.dll"
2007-10-09 -21:18:06 - A.... "C:\Windows\System32\iernonce.dll"
2007-10-09 -21:18:06 - A.... "C:\Windows\System32\iesetup.dll"
2007-10-09 -21:18:12 - A.... "C:\Windows\System32\ieui.dll"
2007-10-09 -21:18:06 - A.... "C:\Windows\System32\ieUnatt.exe"
2007-10-09 -21:17:16 - A.... "C:\Windows\System32\inetcomm.dll"
2007-10-09 -21:17:16 - A.... "C:\Windows\System32\INETRES.dll"
2007-11-15 -23:49:58 - A.... "C:\Windows\System32\ipnathlp.dll"
2007-09-24 -22:30:28 - A.... "C:\Windows\System32\java.exe"
2007-09-24 -22:30:30 - A.... "C:\Windows\System32\javaw.exe"
2007-10-09 -21:18:08 - A.... "C:\Windows\System32\jsproxy.dll"
2007-11-15 -23:49:58 - A.... "C:\Windows\System32\localspl.dll"
2007-11-15 -23:43:10 - A.... "C:\Windows\System32\mciavi32.dll"
2007-11-15 -23:44:22 - A.... "C:\Windows\System32\mcmde.dll"
2007-11-02 - 8:12:58 - A.... "C:\Windows\System32\mrt.exe"
2007-11-15 -23:50:00 - A.... "C:\Windows\System32\msftedit.dll"
2007-10-09 -21:18:16 - A.... "C:\Windows\System32\mshtml.dll"
2007-10-09 -21:18:14 - A.... "C:\Windows\System32\mshtmled.dll"
2007-11-15 -23:43:10 - A.... "C:\Windows\System32\msrle32.dll"
2007-11-15 -23:47:08 - A.... "C:\Windows\System32\msshsq.dll"
2007-10-09 -21:18:02 - A.... "C:\Windows\System32\mstime.dll"
2007-11-15 -23:43:10 - A.... "C:\Windows\System32\msvfw32.dll"
2007-11-15 -23:43:10 - A.... "C:\Windows\System32\msvidc32.dll"
2007-11-15 -23:50:00 - A.... "C:\Windows\System32\netcfgx.dll"
2007-11-15 -23:49:22 - A.... "C:\Windows\System32\ntkrnlpa.exe"
2007-11-15 -23:49:22 - A.... "C:\Windows\System32\ntoskrnl.exe"
2007-11-15 -23:43:16 - A.... "C:\Windows\System32\ntprint.dll"
2007-11-15 -23:43:16 - A.... "C:\Windows\System32\ntprint.exe"
2007-11-15 -23:49:58 - A.... "C:\Windows\System32\pacerprf.dll"
2007-11-21 -10:30:34 - A.... "C:\Windows\System32\perfc009.dat"
2007-11-21 -10:30:36 - A.... "C:\Windows\System32\perfc013.dat"
2007-11-21 -10:30:36 - A.... "C:\Windows\System32\perfh009.dat"
2007-11-21 -10:30:36 - A.... "C:\Windows\System32\perfh013.dat"
2007-11-15 -23:50:00 - A.... "C:\Windows\System32\rascfg.dll"
2007-11-15 -23:50:00 - A.... "C:\Windows\System32\rasdiag.dll"
2007-11-15 -23:50:00 - A.... "C:\Windows\System32\rasmxs.dll"
2007-11-15 -23:50:00 - A.... "C:\Windows\System32\rasser.dll"
2007-11-15 -23:50:04 - A.... "C:\Windows\System32\riched20.dll"
2007-11-15 -23:50:04 - A.... "C:\Windows\System32\riched32.dll"
2007-10-09 -21:16:22 - A.... "C:\Windows\System32\rpcrt4.dll"
2007-11-15 -23:43:16 - A.... "C:\Windows\System32\schannel.dll"
2007-11-15 -23:43:08 - A.... "C:\Windows\System32\sendmail.dll"
2007-11-15 -23:43:18 - A.... "C:\Windows\System32\shell32.dll"
2007-10-18 -11:31:46 - A.... "C:\Windows\System32\sirenacm.dll"
2007-11-15 -23:45:20 - A.... "C:\Windows\System32\SLC.dll"
2007-11-15 -23:45:18 - A.... "C:\Windows\System32\slcinst.dll"
2007-11-15 -23:45:18 - A.... "C:\Windows\System32\SLLUA.exe"
2007-11-15 -23:45:18 - A.... "C:\Windows\System32\SLsvc.exe"
2007-11-15 -23:45:20 - A.... "C:\Windows\System32\SLUI.exe"
2007-11-15 -23:45:20 - A.... "C:\Windows\System32\slwmi.dll"
2007-11-15 -23:47:32 - A.... "C:\Windows\System32\spwmp.dll"
2007-11-15 -23:49:18 - A.... "C:\Windows\System32\sysmain.dll"
2007-11-15 -23:49:58 - A.... "C:\Windows\System32\traffic.dll"
2007-10-09 -21:18:08 - A.... "C:\Windows\System32\urlmon.dll"
2007-10-09 -21:18:08 - A.... "C:\Windows\System32\wininet.dll"
2007-11-15 -23:49:16 - A.... "C:\Windows\System32\wlanapi.dll"
2007-11-15 -23:49:16 - A.... "C:\Windows\System32\wlanhlp.dll"
2007-11-15 -23:49:16 - A.... "C:\Windows\System32\wlanmsm.dll"
2007-11-15 -23:49:16 - A.... "C:\Windows\System32\wlansec.dll"
2007-11-15 -23:49:16 - A.... "C:\Windows\System32\wlansvc.dll"
2007-11-15 -23:47:34 - A.... "C:\Windows\System32\wmp.dll"
2007-11-15 -23:47:36 - A.... "C:\Windows\System32\wmploc.DLL"
2007-11-15 -23:49:58 - A.... "C:\Windows\System32\wshqos.dll"
2007-11-15 -23:49:20 - A.... "C:\Windows\System32\wtsapi32.dll"
2007-11-21 -10:38:30 - A.SH. "C:\Users\liesje\NTUSER.DAT"
((((((((((((((( FOUND FILES )))))))))))))))
!! BEFORE FIX !!
Carlson Dialer
C:\Windows\System32\javaws.exe
C:\Windows\mrofinu1148.exe
!! AFTER FIX !!
Carlson Dialer
((((((((((((((( ShellServiceObjectDelayLoad )))))))))))))))
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
---------- END OF LOG ----------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:53:43, on 21/11/2007
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16546)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ASUS\ATK Media\DMedia.exe
C:\Program Files\PowerForPhone\PowerForPhone.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Symantec AntiVirus\VPTray.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\ASUS\WL-500gP Wireless Router Utilities\Download.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\G oogleToolbarNotifier.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\conime.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.be/0SENLBE/SAOS01?FORM=TOOLBR
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
O4 - HKLM\..\Run: [PowerForPhone] C:\Program Files\PowerForPhone\PowerForPhone.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Download Master] C:\Program Files\ASUS\WL-500gP Wireless Router Utilities\Download.exe /hide
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\G oogleToolbarNotifier.exe
O4 - HKCU\..\Run: [Ieuu] "C:\PROGRA~1\STEM~1\explorer.exe" -vt yazb
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Download All by ASUS Download - C:\Program Files\ASUS\WL-500gP Wireless Router Utilities\ASDownloadAll.htm
O8 - Extra context menu item: Download using ASUS Download - C:\Program Files\ASUS\WL-500gP Wireless Router Utilities\ASDownload.htm
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O13 - Gopher Prefix:
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek America Inc. - C:\Windows\System32\StkCSrv.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
--
End of file - 7389 bytes
Juisterr 21 November 2007, 17:49 Download Deckard's System Scanner (http://www.techsupportforum.com/sectools/Deckard/dss.exe) naar je Bureaublad.
Sluit alle toepassingen en vensters.
Dubbelklik op dss.exe om het te activeren, en volg de aanwijzingen.
Wanneer de scan volledig is, zal een tekstbestand - main.txt - openen.
Kopiƫer (Ctrl+A gevolgd door Ctrl+C) en plak (Ctrl+V) de inhoud van main.txt in je volgende antwoord.
Opmerking: Sommige firewalls kunnen waarschuwen dat sigcheck.exe probeert verbinding te maken met het internet
- zorg dat sigcheck.exe toestemming krijgt om dit te doen !
Tevens kan het gebeuren dat je Antivirus DSS als verdacht aangeeft, of zelfs probeert te verwijderen.
Laat je Antivirus dit niet verwijderen ! (In dit geval is het misschien beter om tijdens de scan van DSS je Antivirus even uit te schakelen)
Start Hijackthis op en kies voor 'Do a system scan only'
Selecteer alleen de items die hieronder zijn genoemd:
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)
O4 - HKCU\..\Run: [Ieuu] "C:\PROGRA~1\STEM~1\explorer.exe" -vt yazb
O13 - Gopher Prefix:
Sluit alle vensters behalve Hijackthis
Klik op 'Fix checked' om de items te verwijderen.
FONZY 21 November 2007, 21:58 hierbij de volgende scan thx
Deckard's System Scanner v20071014.68
Run by liesje on 2007-11-21 20:53:31
Computer is in Normal Mode.
--------------------------------------------------------------------------------
-- HijackThis (run as liesje.exe) ----------------------------------------------
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 20:53:33, on 21/11/2007
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16546)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\ASUS\ASUS Live Update\ALU.exe
C:\Windows\Explorer.EXE
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\ASUS\ATK Media\DMedia.exe
C:\Program Files\PowerForPhone\PowerForPhone.exe
C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Symantec AntiVirus\VPTray.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\ASUS\WL-500gP Wireless Router Utilities\Download.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\G oogleToolbarNotifier.exe
C:\Windows\ehome\ehmsas.exe
C:\Windows\system32\conime.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\liesje\Desktop\dss(2).exe
C:\PROGRA~1\TRENDM~1\HIJACK~1\liesje.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/avcenter/fix_homepage/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.be/0SENLBE/SAOS01?FORM=TOOLBR
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O2 - BHO: Windows Live Toolbar Helper - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
O4 - HKLM\..\Run: [PowerForPhone] C:\Program Files\PowerForPhone\PowerForPhone.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Download Master] C:\Program Files\ASUS\WL-500gP Wireless Router Utilities\Download.exe /hide
O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\G oogleToolbarNotifier.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O8 - Extra context menu item: &Windows Live Search - res://C:\Program Files\Windows Live Toolbar\msntb.dll/search.htm
O8 - Extra context menu item: Download All by ASUS Download - C:\Program Files\ASUS\WL-500gP Wireless Router Utilities\ASDownloadAll.htm
O8 - Extra context menu item: Download using ASUS Download - C:\Program Files\ASUS\WL-500gP Wireless Router Utilities\ASDownload.htm
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe
O23 - Service: Syntek AVStream USB2.0 WebCam Service (StkSSrv) - Syntek America Inc. - C:\Windows\System32\StkCSrv.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
--
End of file - 7212 bytes
-- Files created between 2007-10-21 and 2007-11-21 -----------------------------
2007-11-21 10:25:28 0 d-------- C:\Program Files\Microsoft.NET
2007-11-20 18:40:44 0 d-------- C:\Users\liesje\Incomplete
2007-11-20 17:28:59 0 dr------- C:\Users\liesje\Pictures
2007-11-20 13:44:04 0 d-------- C:\Program Files\Symantec
2007-11-20 13:43:32 0 d-------- C:\Program Files\Symantec AntiVirus
2007-11-18 15:06:49 0 d-------- C:\Program Files\Trend Micro
2007-11-15 23:31:08 0 d-------- C:\Program Files\Windows Live Toolbar
2007-11-15 18:23:35 0 d-------- C:\Program Files\Microsoft SQL Server Compact Edition
2007-11-15 18:14:58 0 d--hs--c- C:\Program Files\Common Files\WindowsLiveInstaller
2007-11-15 18:14:43 0 d-------- C:\Program Files\Windows Live
2007-11-15 18:14:19 0 d-------- C:\Users\All Users\WLInstaller
2007-11-15 16:55:47 0 d-------- C:\Install
2007-11-15 16:51:12 0 d-------- C:\Users\All Users\Menu Start
2007-11-15 16:16:32 0 d-------- C:\Users\All Users\Avg7
2007-11-13 22:31:00 0 d-------- C:\Program Files\Alwil Software
2007-10-28 02:57:51 16384 --a------ C:\Windows\system32\restart.exe <Not Verified; WareSoft Software; restart>
2007-10-28 02:57:51 11254 --a------ C:\Windows\system32\locate.com
2007-10-28 01:15:10 62070 --a------ C:\Windows\system32\Fix.bat
2007-10-23 17:49:24 586752 --a------ C:\Windows\WLXPGSS.SCR <Not Verified; Microsoft Corporation; Windows Live Fotogalerij>
-- Find3M Report ---------------------------------------------------------------
2007-11-21 20:29:16 45056 --a------ C:\Windows\system32\acovcnt.exe
2007-11-21 17:18:00 12 --a------ C:\Windows\bthservsdp.dat
2007-11-21 10:39:34 0 d-------- C:\Program Files\Common Files
2007-11-21 10:30:34 692574 --a------ C:\Windows\system32\perfh013.dat
2007-11-21 10:30:34 123842 --a------ C:\Windows\system32\perfc013.dat
2007-11-20 13:45:56 0 d-------- C:\Program Files\Common Files\Symantec Shared
2007-11-16 22:55:45 0 d-------- C:\Users\liesje\AppData\Roaming\LimeWire
2007-11-15 23:58:51 174 --ahs---- C:\Program Files\desktop.ini
2007-11-15 23:51:50 0 d-------- C:\Program Files\Windows Calendar
2007-11-15 23:51:48 0 d-------- C:\Program Files\Windows Defender
2007-11-15 23:51:47 0 d-------- C:\Program Files\Windows Mail
2007-11-15 23:15:51 0 d-------- C:\Program Files\Java
2007-09-24 21:30:32 0 d-------- C:\Users\liesje\AppData\Roaming\Apple Computer
2007-08-24 18:08:24 1275392 --a------ C:\Windows\system32\msxml4.dll <Not Verified; Microsoft Corporation; Microsoft(R) MSXML 4.0 SP 2>
-- Registry Dump ---------------------------------------------------------------
*Note* empty entries & legit default entries are not shown
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"Windows Defender"="C:\Program Files\Windows Defender\MSASCui.exe" [15/11/2007 23:48]
"RtHDVCpl"="RtHDVCpl.exe" [01/12/2006 06:37 C:\Windows\RtHDVCpl.exe]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [22/11/2006 06:27]
"ATKMEDIA"="C:\Program Files\ASUS\ATK Media\DMEDIA.EXE" [02/11/2006 17:27]
"PowerForPhone"="C:\Program Files\PowerForPhone\PowerForPhone.exe" [11/01/2007 02:36]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe" [25/09/2007 01:11]
"iTunesHelper"="C:\Program Files\iTunes\iTunesHelper.exe" [23/02/2006 14:45]
"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [09/08/2007 13:42]
"ccApp"="C:\Program Files\Common Files\Symantec Shared\ccApp.exe" [22/11/2006 17:12]
"vptray"="C:\PROGRA~1\SYMANT~1\VPTray.exe" [28/11/2006 06:34]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [02/11/2006 13:35]
"Download Master"="C:\Program Files\ASUS\WL-500gP Wireless Router Utilities\Download.exe" [17/08/2006 19:16]
"MsnMsgr"="C:\Program Files\Windows Live\Messenger\MsnMsgr.exe" [18/10/2007 11:34]
"ehTray.exe"="C:\Windows\ehome\ehTray.exe" [02/11/2006 13:35]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\G oogleToolbarNotifier.exe" [28/02/2007 23:11]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [14/12/2004 13:44:06]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\policies\system]
"ConsentPromptBehaviorAdmin"=2 (0x2)
"EnableLUA"=0 (0x0)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\AppInfo]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\KeyIso]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\NTDS]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\ProfSvc]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\sacsvr]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\SWPRV]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\TabletInputService]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\TBS]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\TrustedInstaller]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\VDS]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\volmgr.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\volmgrx.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
@="IEEE 1394 Bus host controllers"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
@="SBP2 IEEE 1394 Devices"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
@="SecurityDevices"
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalSystemNetworkRestricted hidserv UxSms WdiSystemHost Netman trkwks AudioEndpointBuilder WUDFSvc irmon sysmain IPBusEnum dot3svc PcaSvc EMDMgmt TabletInputService wlansvc WPDBusEnum
bthsvcs BthServ
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
C:\Windows\system32\unregmp2.exe /ShowWMP
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
%SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI
-- End of Deckard's System Scanner: finished at 2007-11-21 20:54:02 ------------
Juisterr 21 November 2007, 22:21 En hoe gaat het nu met de pc?
FONZY 21 November 2007, 22:55 die doet terug vrij normaal start goed op doet word terug goed open msn werkt terug normaal denkt ge dat alle zever er nu af is en als dat zo is bedankt is hier heel toffe site thx
FONZY 22 November 2007, 13:13 laptop doet het nog steeds goed dus er mag slotje op en nogmaals bedankt
Juisterr 22 November 2007, 13:41 vergeet niet je systeemherstel even uit te doen en daarna weer aan.
Anders kan je per ongeluk terug besmet raken.
Je kan eventueel nog iets doen .
je kan hier http://www.malwarecomplaints.info/viewtopic.php?t=460
klagen over de besmetting.
|
|