Ga naar inhoud
  • 0

HijackThis Tijger79


Anoniem2

Vraag

Hallo Allemaal,\r\n\r\nSinds gister kreeg ik in verschillende internet vensters het bericht: \r\n\"website kan niet worden geopend\" en \"de bewerking is afgebroken\"\r\nVandaag kom ik helemaal niet meer op internet.\r\nDit geldt alleen voor de desktop PC, op de laptops is dit geen probleem.\r\n\r\nLogfile of Trend Micro HijackThis v2.0.4\r\nScan saved at 13:47:06, on 24-2-2011\r\nPlatform: Windows XP SP2 (WinNT 5.01.2600)\r\nMSIE: Internet Explorer v7.00 (7.00.5730.0013)\r\nBoot mode: Normal\r\n\r\nRunning processes:\r\nC:\\WINDOWS\\System32\\smss.exe\r\nC:\\PROGRA~1\\AVG\\AVG10\\avgchsvx.exe\r\nC:\\WINDOWS\\system32\\winlogon.exe\r\nC:\\WINDOWS\\system32\\services.exe\r\nC:\\WINDOWS\\system32\\lsass.exe\r\nC:\\WINDOWS\\system32\\svchost.exe\r\nC:\\WINDOWS\\System32\\svchost.exe\r\nC:\\WINDOWS\\system32\\svchost.exe\r\nC:\\WINDOWS\\system32\\spoolsv.exe\r\nC:\\WINDOWS\\Explorer.EXE\r\nC:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\bin\\AppleMobileDeviceService.exe\r\nC:\\WINDOWS\\arservice.exe\r\nC:\\Program Files\\AVG\\AVG10\\avgwdsvc.exe\r\nC:\\Program Files\\Cisco Systems\\VPN Client\\cvpnd.exe\r\nC:\\WINDOWS\\eHome\\ehRecvr.exe\r\nC:\\WINDOWS\\eHome\\ehSched.exe\r\nC:\\Program Files\\Java\\jre6\\bin\\jqs.exe\r\nC:\\Program Files\\Common Files\\LightScribe\\LSSrvc.exe\r\nC:\\WINDOWS\\system32\\nvsvc32.exe\r\nC:\\WINDOWS\\system32\\HPZipm12.exe\r\nC:\\WINDOWS\\system32\\svchost.exe\r\nC:\\Program Files\\AVG\\AVG10\\Identity Protection\\Agent\\Bin\\AVGIDSAgent.exe\r\nC:\\Program Files\\AVG\\AVG10\\avgnsx.exe\r\nC:\\WINDOWS\\system32\\dllhost.exe\r\nC:\\WINDOWS\\ehome\\ehtray.exe\r\nC:\\WINDOWS\\RTHDCPL.EXE\r\nC:\\WINDOWS\\ARPWRMSG.EXE\r\nC:\\WINDOWS\\eHome\\ehmsas.exe\r\nC:\\Program Files\\HP DigitalMedia Archive\\DMAScheduler.exe\r\nC:\\Program Files\\Hp\\HP Software Update\\HPWuSchd2.exe\r\nC:\\WINDOWS\\system32\\rundll32.exe\r\nC:\\WINDOWS\\system32\\LVCOMSX.EXE\r\nC:\\Program Files\\AVG\\AVG10\\avgtray.exe\r\nC:\\HP\\KBD\\KBD.EXE\r\nC:\\WINDOWS\\system32\\ctfmon.exe\r\nC:\\Documents and Settings\\HP_Administrator\\Local Settings\\Application Data\\Google\\Update\\GoogleUpdate.exe\r\nC:\\Program Files\\AVG\\AVG10\\Identity Protection\\agent\\bin\\avgidsmonitor.exe\r\nc:\\windows\\system\\hpsysdrv.exe\r\nC:\\Program Files\\Java\\jre1.5.0_10\\bin\\jusched.exe\r\nC:\\PROGRA~1\\AVG\\AVG10\\avgrsx.exe\r\nC:\\Program Files\\AVG\\AVG10\\avgcsrvx.exe\r\nC:\\WINDOWS\\system32\\msiexec.exe\r\nC:\\Program Files\\Trend Micro\\HiJackThis\\HiJackThis.exe\r\n\r\nR1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = [url]http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=NL_NL&c=64&bd=PAVILION&pf=desktop[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = [url]http://go.microsoft.com/fwlink/?LinkId=69157[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Bar = [url]http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=NL_NL&c=64&bd=PAVILION&pf=desktop[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url]\r\nR0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = [url]http://go.microsoft.com/fwlink/?LinkId=69157[/url]\r\nR0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar,LinksFolderName = Koppelingen\r\nO2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\\Program Files\\Common Files\\Adobe\\Acrobat\\ActiveX\\AcroIEHelper.dll\r\nO2 - BHO: QFX Software KeyScrambler - {2B9F5787-88A5-4945-90E7-C4B18563BC5E} - C:\\Program Files\\KeyScrambler\\KeyScramblerIE.dll\r\nO2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\\Program Files\\Real\\RealPlayer\\rpbrowserrecordplugin.dll\r\nO2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\\Program Files\\AVG\\AVG10\\avgssie.dll\r\nO2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)\r\nO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\\Program Files\\Java\\jre6\\bin\\ssv.dll\r\nO2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\\Program Files\\Common Files\\Microsoft Shared\\Windows Live\\WindowsLiveLogin.dll\r\nO2 - BHO: Encarta Web Companion Helper Object - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\\Program Files\\Common Files\\Microsoft Shared\\Encarta Web Companion\\2007\\ENCWCBAR.DLL\r\nO2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll\r\nO2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\\Program Files\\Java\\jre6\\lib\\deploy\\jqs\\ie\\jqs_plugin.dll\r\nO2 - BHO: (no name) - {fb3943ff-3a1f-46c6-a467-9811a204061c} - (no file)\r\nO3 - Toolbar: Encarta Web Companion - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\\Program Files\\Common Files\\Microsoft Shared\\Encarta Web Companion\\2007\\ENCWCBAR.DLL\r\nO4 - HKLM\\..\\Run: [ehTray] C:\\WINDOWS\\ehome\\ehtray.exe\r\nO4 - HKLM\\..\\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode\r\nO4 - HKLM\\..\\Run: [RTHDCPL] RTHDCPL.EXE\r\nO4 - HKLM\\..\\Run: [AlwaysReady Power Message APP] ARPWRMSG.EXE\r\nO4 - HKLM\\..\\Run: [NvCplDaemon] RUNDLL32.EXE C:\\WINDOWS\\system32\\NvCpl.dll,NvStartup\r\nO4 - HKLM\\..\\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect\r\nO4 - HKLM\\..\\Run: [DMAScheduler] \"c:\\Program Files\\HP DigitalMedia Archive\\DMAScheduler.exe\"\r\nO4 - HKLM\\..\\Run: [Recguard] C:\\WINDOWS\\SMINST\\RECGUARD.EXE\r\nO4 - HKLM\\..\\Run: [HPBootOp] \"C:\\Program Files\\Hewlett-Packard\\HP Boot Optimizer\\HPBootOp.exe\" /run\r\nO4 - HKLM\\..\\Run: [HP Software Update] C:\\Program Files\\Hp\\HP Software Update\\HPWuSchd2.exe\r\nO4 - HKLM\\..\\Run: [amd_dc_opt] C:\\Program Files\\AMD\\Dual-Core Optimizer\\amd_dc_opt.exe\r\nO4 - HKLM\\..\\Run: [QuickTime Task] \"C:\\Program Files\\K-Lite Codec Pack\\QuickTime\\qttask.exe\" -atboottime\r\nO4 - HKLM\\..\\Run: [LVCOMSX] C:\\WINDOWS\\system32\\LVCOMSX.EXE\r\nO4 - HKLM\\..\\Run: [AVG_TRAY] C:\\Program Files\\AVG\\AVG10\\avgtray.exe\r\nO4 - HKLM\\..\\Run: [SunJavaUpdateSched] \"C:\\Program Files\\Java\\jre6\\bin\\jusched.exe\"\r\nO4 - HKLM\\..\\Run: [KBD] C:\\HP\\KBD\\KBD.EXE\r\nO4 - HKLM\\..\\Run: [Adobe Reader Speed Launcher] \"C:\\Program Files\\Adobe\\Reader 8.0\\Reader\\Reader_sl.exe\"\r\nO4 - HKLM\\..\\RunOnce: [SymInstallStub] C:\\WINDOWS\\system32\\Adobe\\Shockwave 11\\syminstallstub.exe /partnerid=adobe /productlist=nss /staging=false /debug /cfgtries=1 /delay=5 /tasktries=10\r\nO4 - HKCU\\..\\Run: [ctfmon.exe] C:\\WINDOWS\\system32\\ctfmon.exe\r\nO4 - HKCU\\..\\Run: [Google Update] \"C:\\Documents and Settings\\HP_Administrator\\Local Settings\\Application Data\\Google\\Update\\GoogleUpdate.exe\" /c\r\nO4 - HKUS\\S-1-5-19\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'Lokale service\')\r\nO4 - HKUS\\S-1-5-20\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'Netwerkservice\')\r\nO4 - .DEFAULT User Startup: Pin.lnk = C:\\hp\\bin\\CLOAKER.EXE (User \'Default user\')\r\nO4 - .DEFAULT User Startup: PinMcLnk.lnk = C:\\hp\\bin\\cloaker.exe (User \'Default user\')\r\nO4 - Startup: Iomega Product Registration.lnk = C:\\Program Files\\Iomega\\Registration\\Register.exe\r\nO4 - Global Startup: Microsoft Office.lnk = C:\\Program Files\\Microsoft Office\\Office10\\OSA.EXE\r\nO8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\\PROGRA~1\\MICROS~2\\Office10\\EXCEL.EXE/3000\r\nO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\\Program Files\\Java\\jre6\\bin\\jp2iexp.dll\r\nO9 - Extra \'Tools\' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\\Program Files\\Java\\jre6\\bin\\jp2iexp.dll\r\nO9 - Extra button: (no name) - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\\Program Files\\KeyScrambler\\KeyScramblerIE.dll\r\nO9 - Extra \'Tools\' menuitem: &KeyScrambler... - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\\Program Files\\KeyScrambler\\KeyScramblerIE.dll\r\nO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\\PROGRA~1\\MICROS~2\\Office12\\REFIEBAR.DLL\r\nO9 - Extra button: Encarta Search Bar - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\\Program Files\\Common Files\\Microsoft Shared\\Encarta Search Bar\\ENCSBAR.DLL\r\nO9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\\WINDOWS\\system32\\shdocvw.dll\r\nO9 - Extra button: Verbindingshelp - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\\WINDOWS\\PCHEALTH\\HELPCTR\\Vendors\\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\\IEButton\\support.htm\r\nO9 - Extra \'Tools\' menuitem: Verbindingshelp - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\\WINDOWS\\PCHEALTH\\HELPCTR\\Vendors\\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\\IEButton\\support.htm\r\nO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe\r\nO9 - Extra \'Tools\' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe\r\nO16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - [url]http://by132w.bay132.mail.live.com/mail/resources/MsnPUpld.cab[/url]\r\nO16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - [url]http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab[/url]\r\nO16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - [url]http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab[/url]\r\nO16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - [url]http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab[/url]\r\nO17 - HKLM\\System\\CS1\\Services\\Tcpip\\Parameters: NameServer = \r\nO17 - HKLM\\System\\CCS\\Services\\Tcpip\\Parameters: NameServer = \r\nO18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\\Program Files\\AVG\\AVG10\\avgpp.dll\r\nO18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\\PROGRA~1\\COMMON~1\\Skype\\SKYPE4~1.DLL\r\nO20 - AppInit_DLLs: C:\\WINDOWS\\system32\\ravazohi.dll c:\\windows\\system32\\tupopazo.dll\r\nO22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\\WINDOWS\\system32\\browseui.dll\r\nO22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\\WINDOWS\\system32\\browseui.dll\r\nO23 - Service: Apple Mobile Device - Apple, Inc. - C:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\bin\\AppleMobileDeviceService.exe\r\nO23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\\Program Files\\AVG\\AVG10\\Identity Protection\\Agent\\Bin\\AVGIDSAgent.exe\r\nO23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\\Program Files\\AVG\\AVG10\\avgwdsvc.exe\r\nO23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\\Program Files\\Cisco Systems\\VPN Client\\cvpnd.exe\r\nO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\\Program Files\\Common Files\\InstallShield\\Driver\\1150\\Intel 32\\IDriverT.exe\r\nO23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\\Program Files\\Java\\jre6\\bin\\jqs.exe\r\nO23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\\Program Files\\Common Files\\LightScribe\\LSSrvc.exe\r\nO23 - Service: MSCSPTISRV - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\AVLib\\MSCSPTISRV.exe\r\nO23 - Service: NBService - Nero AG - C:\\Program Files\\Nero\\Nero 7\\Nero BackItUp\\NBService.exe\r\nO23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\\WINDOWS\\system32\\nvsvc32.exe\r\nO23 - Service: PACSPTISVR - Unknown owner - C:\\Program Files\\Common Files\\Sony Shared\\AVLib\\PACSPTISVR.exe\r\nO23 - Service: Pml Driver HPZ12 - HP - C:\\WINDOWS\\system32\\HPZipm12.exe\r\nO23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - C:\\Program Files\\SiSoftware\\SiSoftware Sandra Lite 2010.SP1d\\RpcAgentSrv.exe\r\nO23 - Service: ServiceLayer - Nokia. - C:\\Program Files\\Common Files\\PCSuite\\Services\\ServiceLayer.exe\r\nO23 - Service: SonicStage Back-End Service - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\AVLib\\SsBeSvc.exe\r\nO23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\AVLib\\SPTISRV.exe\r\nO23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\AVLib\\SSScsiSV.exe\r\n\r\n--\r\nEnd of file - 11760 bytes\r\n\r\n\r\nWeet iemand hier een oplossing voor?\r\nOp dit moment is Malwarebytes de computer aan het scannen, hoewel ik daar bij het opstarten ook een foutmelding krijg. zie afbeelding
Link naar reactie

20 antwoorden op deze vraag

Aanbevolen berichten

  • 0
Uitslag Malwarebytes:\r\n\r\n\r\nMalwarebytes\' Anti-Malware 1.50.1.1100\r\n[url]www.malwarebytes.org[/url]\r\n\r\nDatabaseversie: 5363\r\n\r\nWindows 5.1.2600 Service Pack 2\r\nInternet Explorer 7.0.5730.13\r\n\r\n24-2-2011 14:35:58\r\nmbam-log-2011-02-24 (14-35-58).txt\r\n\r\nScantype: Snelle scan\r\nObjecten gescand: 185216\r\nVerstreken tijd: 38 minuut/minuten, 30 seconde(n)\r\n\r\nGeheugenprocessen geïnfecteerd: 0\r\nGeheugenmodulen geïnfecteerd: 0\r\nRegistersleutels geïnfecteerd: 0\r\nRegisterwaarden geïnfecteerd: 0\r\nRegisterdata geïnfecteerd: 0\r\nMappen geïnfecteerd: 0\r\nBestanden geïnfecteerd: 0\r\n\r\nGeheugenprocessen geïnfecteerd:\r\n(Geen kwaadaardige objecten gedetecteerd)\r\n\r\nGeheugenmodulen geïnfecteerd:\r\n(Geen kwaadaardige objecten gedetecteerd)\r\n\r\nRegistersleutels geïnfecteerd:\r\n(Geen kwaadaardige objecten gedetecteerd)\r\n\r\nRegisterwaarden geïnfecteerd:\r\n(Geen kwaadaardige objecten gedetecteerd)\r\n\r\nRegisterdata geïnfecteerd:\r\n(Geen kwaadaardige objecten gedetecteerd)\r\n\r\nMappen geïnfecteerd:\r\n(Geen kwaadaardige objecten gedetecteerd)\r\n\r\nBestanden geïnfecteerd:\r\n(Geen kwaadaardige objecten gedetecteerd)
Link naar reactie
  • 0
Ik doe niks met je HijackThis logje, maar wel een tip, zeker omdat MBAM negatief is:\neerst Internet Explorer starten met de snelkoppeling \'[I]Internet Explorer (zonder invoegtoepassingen)[/I]\' die ergens in je Start-menu staat.\nZo kan je zien of het aan een invoegtoepassing (plug-in, add-on) ligt.\n\nDoet Internet het dan wel, dan kan je onder het menu \'[I]Extra[/I]\' kijken bij \'[I]Invoegtoepassingen beheren[/I]\' om ze selectief uit te schakelen tot je de boosdoener vindt.
Link naar reactie
  • 0
SiSoftware Sandra, hier ben ik ruim 10 jaar geleden al eens door gebeten heeft mij zelfs een harde schijf gekost omdat tijdens de scan van SiSoftware Sandra de schijf fysiek zo heet was geworden dat zelfs in het midden van de cirkel boven op schijf die aangeeft vanbuiten waar de schijven liggen de het metal zo heet was geweest dat het gewoon blauw was afgetekend.\r\n\r\nMaar misschien draait het nu wel beter en heb ik ongelijk maar ik wilde toch even waarschuwen.\r\n\r\nStart op in veilige modus met netwerk instellingen en ga enkele dagen terug in de tijd het liefst enkele dagen voor het probleem zich het eerst voordeed.
Link naar reactie
  • 0
[QUOTE=Tijger79;562385]Sinds gister kreeg ik in verschillende internet vensters het bericht:\r\n\"website kan niet worden geopend\" en \"de bewerking is afgebroken\"\r\nVandaag kom ik helemaal niet meer op internet.\r\nDit geldt alleen voor de desktop PC, op de laptops is dit geen probleem.Heb geprobeert zonder invoegtoepassingen maar dit help ook niet.\r\n\r\nIn veilige modus opgestart, systeemherstelpunt gekozen van voor installatie SiSoftware (mei 2010) maar krijg de melding \"herstellen is niet voltooid\".\r\nDaarna een punt genomen uit sept. 2009 maar weer dezelfde boodschap...[/QUOTE]\r\nQUOTE]\r\nHeb geprobeert zonder invoegtoepassingen maar dit help ook niet.\r\n\r\nIn veilige modus opgestart, systeemherstelpunt gekozen van voor installatie SiSoftware (mei 2010) maar krijg de melding \"herstellen is niet voltooid\".\r\nDaarna een punt genomen uit sept. 2009 maar weer dezelfde boodschap...\r\n\r\n[/QUOTE]\r\n\r\nKun je voor jezelf nagaan wat je eergisteren of de dag ervoor hebt geïnstalleerd op je PC, heb de PC 24/7 aan of gaat deze elke avond uit.\r\n\r\nGooi je internet verbinding eens weg en start opnieuw op dan zou Windows de verbinding weer terug moeten vinden en opnieuw instellen. (hier zal het niet aan liggen maar )kijk even naar je netwerk kabel of deze er nog wel inzit zowel in de PC als in d router en of het ledje naast de aansluiting wel brand op PC als router, pak eens een andere poort als je er vier hebt op je router/routermodem.
Link naar reactie
  • 0
[QUOTE=Tijger79;562400]Heb gister extra werkgeheugen bijgeplaatst. \r\nDaarvoor is de computer mischien een keer aangezet in de laatste twee maanden, laptop is sneller :rolleyes:\r\nMaar wil weer wat meer gebruik gaam maken van het oude beestje, vandaag de geheugen uitbreiding[/QUOTE]\r\n\r\nOntstond het probleem voor het plaatsen van het geheugen of erna.Mocht het laatste het geval zijn zet de situatie qua geheugen weer terug zoals deze was.
Link naar reactie
  • 0
Mei 2010 is wel erg ver terug voor een herstelpunt... \r\n\r\nOpen een opdrachtprompt (met een rechtsklik op de snelkoppeling, en kiezen voor \'[I]Starten als... administrator[/I]\'), en voer in:\r\nIPCONFIG /all\r\nen noteer het IP wat er bij \'[I]Standaard Gateway[/I]\' staat.\r\n\r\nGa met een andere PC naar [url]www.watismijnip.nl[/url] en noteer welk IP je daar vermeld ziet. Dat is het IP van jouw router vanaf buiten gezien.\r\n\r\nOpen dan op je niet werkende PC weer zo\'n zelfde opdrachtprompt, en voer in voor elke van de twee boven gevonden IP\'s en voor 127.0.0.1 (drie keer doen dus)\r\n\r\n[CODE]PING [I]één_van_de_drie_IP\'s[/I] >> c:\\ping.txt [/CODE]\r\n\r\nDan staan er 3 resultaten in c:\\ping.txt welke je hier aan ons kan tonen.\r\n\r\n\r\nEigenlijk heb je toch ook iemand nodig voor dat HijackThis logje, maar er zijn hier niet zo veel loglezers meer aanwezig :(
Link naar reactie
  • 0
Een nieuwe dag.....\r\n\r\nZover heb ik de lan kabel eruit gehaald en geprobeerd draadloos verbinding te maken, maakt wel verbinding met het netwerk maar kan geen pagina\'s openen.\r\n\r\nHeb het onlangs gepaatste geheugen eruit gehaald en weer in gedaan, dit helpt ook niet.\r\nOok zonder het extra geheugen (begin situatie) kunnen er geen webpagina\'s meer worden geopend.\r\n\r\nKan het zijn dat er software is verouderd, zoals gezegt werd de pc nauwelijks gebruikt??
Link naar reactie
  • 0
VirusTotal \r\n1.\r\nVerborgen bestanden weergeven\r\n[url]http://users.telenet.be/marcvn/spyware/1117602.htm[/url]\r\n2.\r\nLaat het volgende bestand(en) bij [url]http://www.virustotal.com/nl/[/url] controleren\r\nEn post hier alleen de de URL die in de adresbalk staat \r\n\r\nC:\\WINDOWS\\system32\\ravazohi.dll\r\nc:\\windows\\system32\\tupopazo.dll
Link naar reactie
  • 0
[QUOTE=Argus;562640]VirusTotal \r\n1.\r\nVerborgen bestanden weergeven\r\n[url]http://users.telenet.be/marcvn/spyware/1117602.htm[/url]\r\n2.\r\nLaat het volgende bestand(en) bij [url]http://www.virustotal.com/nl/[/url] controleren\r\nEn post hier alleen de de URL die in de adresbalk staat \r\n\r\nC:\\WINDOWS\\system32\\ravazohi.dll\r\nc:\\windows\\system32\\tupopazo.dll[/QUOTE]\r\n\r\n\r\nOm de een of andere duistere reden kan ik beide bestanden niet terug vinden in de system32 map.\r\n\r\nHeb nog even gekeken, nu is XP Pro SP2 geinstalleerd. Vervolgens SP3 gedownload maar de installatie loopt steeds vast, voorlopig dus terug naar SP2
Link naar reactie
  • 0
HitmanPro 3.5\r\n\r\n[U][B]HitmanPro 3.5[/B][/U]\r\nDownload HitmanPro 3.5 naar je Bureaublad\r\nDubbelklik HP35 en klik volgende , de Scan start \r\n\r\nWorden Infecties gevonden:\r\nKlik Instellingen en activeer de [B]Licentie voor 30-dagen [/B]en scan opnieuw.\r\nVerwijder de gevonden Infecties \r\n\r\nDownload link [URL=\"http://files.surfright.nl/HitmanPro35.exe\"] HitmanPro 3.5 [/URL] 32-Bit\r\nSupport : Windows XP, Vista, 2000, 2003, 2008 and Windows 7\r\n\r\nDownload link [URL=\"http://files.surfright.nl/HitmanPro35_x64.exe\"] HitmanPro 3.5 [/URL] 64-Bit\r\nSupport : Windows XP x64 Edition, Vista x64 and Windows 7 x64
Link naar reactie
  • 0
Even wat problemen met AVG maar hier dan eindelijk het resultaat van ComboFix\r\n\r\nComboFix 11-02-25.01 - HP_Administrator 26-02-2011 11:14:19.1.2 - x86\r\nMicrosoft Windows XP Professional 5.1.2600.3.1252.31.1043.18.3070.2557 [GMT 1:00]\r\nGestart vanuit: c:\\documents and settings\\HP_Administrator\\Bureaublad\\ComboFix.exe\r\n.\r\n\r\n(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))\r\n.\r\n\r\nc:\\documents and settings\\HP_Administrator\\Application Data\\inst.exe\r\nc:\\windows\\cdegjl.ini\r\nc:\\windows\\dcfilm.ini\r\nc:\\windows\\effghk.ini\r\nc:\\windows\\ffiiii.ini\r\nc:\\windows\\ghklmp.ini\r\nc:\\windows\\hghklm.ini\r\nc:\\windows\\lllmpo.ini\r\nc:\\windows\\llorss.ini\r\nc:\\windows\\mmnpoq.ini\r\nc:\\windows\\monpru.ini\r\nc:\\windows\\pprtvw.ini\r\nc:\\windows\\ruttss.ini\r\nc:\\windows\\stuvut.ini\r\nc:\\windows\\system32\\awuvomey.ini\r\nc:\\windows\\system32\\ekejavet.ini\r\nc:\\windows\\system32\\epikigoy.ini\r\nc:\\windows\\system32\\w32apiw.dll\r\nc:\\windows\\tvuttv.ini\r\nc:\\windows\\twayxx.ini\r\nc:\\windows\\twyaay.ini\r\nc:\\windows\\uuvxay.ini\r\nc:\\windows\\vvvxbc.ini\r\nc:\\windows\\WinBots32\r\nD:\\Autorun.inf\r\n\r\n.\r\n(((((((((((((((((((( Bestanden Gemaakt van 2011-01-26 to 2011-02-26 ))))))))))))))))))))))))))))))\r\n.\r\n\r\n2011-02-26 09:19 . 2011-02-26 09:19 388096 ----a-r- c:\\documents and settings\\HP_Administrator\\Application Data\\Microsoft\\Installer\\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\\HiJackThis.exe\r\n2011-02-26 09:19 . 2011-02-26 09:19 -------- d-----w- c:\\program files\\Trend Micro\r\n2011-02-25 21:54 . 2008-04-14 21:32 4255 ------w- c:\\windows\\system32\\drivers\\adv01nt5.dll\r\n2011-02-25 21:52 . 2006-12-28 23:31 19569 ----a-w- c:\\windows\\003295_.tmp\r\n2011-02-25 21:07 . 2011-02-25 22:00 -------- d-----w- c:\\windows\\system32\\nl\r\n2011-02-25 21:07 . 2011-02-25 22:00 -------- d-----w- c:\\windows\\system32\\bits\r\n2011-02-25 20:08 . 2006-12-28 23:31 19569 ----a-w- c:\\windows\\006619_.tmp\r\n2011-02-25 20:07 . 2008-04-13 23:06 15488 ----a-w- c:\\windows\\system32\\drivers\\mssmbios.sys\r\n2011-02-25 20:07 . 2008-04-13 21:06 144384 ----a-w- c:\\windows\\system32\\drivers\\hdaudbus.sys\r\n2011-02-25 20:07 . 2008-04-13 23:23 264832 ----a-w- c:\\windows\\system32\\drivers\\http.sys\r\n2011-02-25 20:07 . 2008-04-13 23:15 30208 ----a-w- c:\\windows\\system32\\drivers\\usbehci.sys\r\n2011-02-25 20:07 . 2008-04-13 23:15 19200 ----a-w- c:\\windows\\system32\\drivers\\hidir.sys\r\n2011-02-25 19:07 . 2011-02-25 19:07 -------- d-----w- c:\\documents and settings\\HP_Administrator\\Local Settings\\Application Data\\Temp\r\n2011-02-25 18:09 . 2011-02-25 18:09 -------- d-----w- c:\\windows\\system32\\wbem\\Repository\r\n2011-02-25 17:50 . 2006-12-28 23:31 19569 ----a-w- c:\\windows\\000001_.tmp\r\n2011-02-25 16:39 . 2011-02-25 16:39 -------- d-----w- c:\\windows\\l2schemas\r\n2011-02-25 16:35 . 2011-02-25 16:40 -------- d-----w- c:\\windows\\ServicePackFiles\r\n2011-02-25 16:29 . 2006-12-28 23:31 19569 ----a-w- c:\\windows\\003328_.tmp\r\n2011-02-25 16:25 . 2008-04-14 21:33 146944 ----a-w- c:\\windows\\system32\\winspool.drv\r\n2011-02-25 16:25 . 2008-04-14 21:32 132096 ----a-w- c:\\windows\\system32\\wkssvc.dll\r\n2011-02-25 16:25 . 2008-04-14 21:32 102400 ----a-w- c:\\windows\\system32\\win32spl.dll\r\n2011-02-25 16:25 . 2008-04-14 21:05 1845760 ----a-w- c:\\windows\\system32\\win32k.sys\r\n2011-02-25 16:25 . 2008-04-13 23:47 83072 ----a-w- c:\\windows\\system32\\drivers\\wdmaud.sys\r\n2011-02-25 16:25 . 2008-04-13 23:16 19200 ----a-w- c:\\windows\\system32\\drivers\\wstcodec.sys\r\n2011-02-24 15:27 . 2011-02-25 19:10 -------- d-s---w- c:\\documents and settings\\Administrator.BERGHOUT\r\n2011-02-24 09:29 . 2011-02-24 09:29 -------- d-----w- c:\\documents and settings\\HP_Administrator\\Application Data\\Malwarebytes\r\n2011-02-24 09:29 . 2011-02-24 09:29 -------- d-----w- c:\\documents and settings\\All Users\\Application Data\\Malwarebytes\r\n2011-02-24 09:29 . 2010-12-20 17:09 38224 ----a-w- c:\\windows\\system32\\drivers\\mbamswissarmy.sys\r\n2011-02-24 09:29 . 2011-02-25 19:06 -------- d-----w- c:\\program files\\Malwarebytes\' Anti-Malware\r\n2011-02-24 09:29 . 2010-12-20 17:08 20952 ----a-w- c:\\windows\\system32\\drivers\\mbam.sys\r\n2011-02-23 16:56 . 2011-02-23 16:56 -------- d-----w- c:\\documents and settings\\All Users\\Application Data\\Driver Whiz\r\n2011-02-23 16:32 . 2011-02-23 16:32 -------- d-----w- c:\\documents and settings\\HP_Administrator\\Application Data\\nCleaner\r\n2011-02-23 16:32 . 2011-02-23 16:32 -------- d-----w- c:\\program files\\NKProds\r\n2011-02-23 15:25 . 2011-02-23 15:25 -------- d-----w- c:\\documents and settings\\HP_Administrator\\Application Data\\InstallShield\r\n2011-02-23 10:22 . 2011-02-23 10:22 -------- d-----w- c:\\documents and settings\\HP_Administrator\\Application Data\\GlarySoft\r\n2011-02-23 10:18 . 2011-02-23 10:18 -------- d-----w- c:\\program files\\Glary Utilities\r\n2011-02-23 10:09 . 2011-02-23 10:09 -------- d-----w- c:\\documents and settings\\HP_Administrator\\Application Data\\AVG10\r\n2011-02-23 10:08 . 2011-02-23 10:08 -------- d--h--w- c:\\documents and settings\\All Users\\Application Data\\Common Files\r\n2011-02-23 10:06 . 2011-02-26 09:51 -------- d-----w- c:\\documents and settings\\All Users\\Application Data\\AVG10\r\n2011-02-23 09:42 . 2011-02-23 10:05 -------- d-----w- c:\\documents and settings\\All Users\\Application Data\\MFAData\r\n2011-01-30 00:28 . 2011-01-30 00:28 -------- d-----w- c:\\documents and settings\\HP_Administrator\\Local Settings\\Application Data\\IomegaStorageManager\r\n2011-01-30 00:23 . 2011-01-30 00:23 -------- d-----w- c:\\documents and settings\\HP_Administrator\\Application Data\\Leadertech\r\n2011-01-30 00:22 . 2011-01-30 00:22 -------- d-----w- c:\\program files\\Iomega Storage Manager\r\n2011-01-30 00:22 . 2011-01-30 00:22 40960 ----a-r- c:\\documents and settings\\HP_Administrator\\Application Data\\Microsoft\\Installer\\{90FF23FE-0E1B-40DF-A22E-B4C0372E5936}\\ARPPRODUCTICON.exe\r\n2011-01-30 00:22 . 2011-01-30 00:22 -------- d-----w- c:\\program files\\Iomega\r\n\r\n.\r\n((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))\r\n.\r\n2011-02-25 21:18 . 2011-02-25 21:18 45056 ----a-w- c:\\windows\\pchealth\\helpctr\\Vendors\\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\\uninstallUI\\eHelpSetup.exe\r\n2011-02-25 21:18 . 2011-02-25 21:18 61440 ----a-w- c:\\windows\\pchealth\\helpctr\\Vendors\\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\\plugin\\modemutil.dll\r\n2011-02-25 21:18 . 2011-02-25 21:18 44032 ----a-w- c:\\windows\\pchealth\\helpctr\\Vendors\\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\\Scripts\\devcon.exe\r\n2011-02-25 21:18 . 2011-02-25 21:18 40960 ----a-w- c:\\windows\\pchealth\\helpctr\\Vendors\\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\\plugin\\ScDmi.dll\r\n2011-02-25 21:18 . 2011-02-25 21:18 341048 ----a-w- c:\\windows\\pchealth\\helpctr\\Vendors\\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\\plugin\\HPBasicDetection3.dll\r\n2011-02-25 21:18 . 2011-02-25 21:18 32768 ----a-w- c:\\windows\\pchealth\\helpctr\\Vendors\\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\\plugin\\uploadHSC.dll\r\n2011-02-25 21:18 . 2011-02-25 21:18 32768 ----a-w- c:\\windows\\pchealth\\helpctr\\Vendors\\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\\plugin\\Scom.dll\r\n2011-02-25 21:18 . 2011-02-25 21:18 217088 ----a-w- c:\\windows\\pchealth\\helpctr\\Vendors\\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\\plugin\\WebHelper.dll\r\n2011-02-25 21:18 . 2011-02-25 21:18 163840 ----a-w- c:\\windows\\pchealth\\helpctr\\Vendors\\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\\plugin\\modemcheck.dll\r\n2011-02-23 15:17 . 2010-05-31 05:32 2263 ----a-w- c:\\documents and settings\\All Users\\Application Data\\xml34.tmp\r\n2011-02-23 15:17 . 2010-05-31 05:32 13367 ----a-w- c:\\documents and settings\\All Users\\Application Data\\xml33.tmp\r\n2011-02-23 15:17 . 2010-05-31 05:32 7415 ----a-w- c:\\documents and settings\\All Users\\Application Data\\xml32.tmp\r\n2008-04-03 20:38 . 2008-04-03 20:37 8544768 ----a-w- c:\\program files\\vpnclient_setup.msi\r\n2006-05-03 09:06 163328 --sh--r- c:\\windows\\system32\\flvDX.dll\r\n2007-02-21 10:47 31232 --sh--r- c:\\windows\\system32\\msfDX.dll\r\n2007-12-17 12:43 27648 --sh--w- c:\\windows\\system32\\Smab0.dll\r\n.\r\n\r\n((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))\r\n.\r\n.\r\n*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond \r\nREGEDIT4\r\n\r\n[HKEY_CURRENT_USER\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run]\r\n\"Google Update\"=\"c:\\documents and settings\\HP_Administrator\\Local Settings\\Application Data\\Google\\Update\\GoogleUpdate.exe\" [2011-02-23 136176]\r\n\r\n[HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run]\r\n\"ehTray\"=\"c:\\windows\\ehome\\ehtray.exe\" [2005-08-18 64512]\r\n\"ftutil2\"=\"ftutil2.dll\" [2004-06-07 106496]\r\n\"RTHDCPL\"=\"RTHDCPL.EXE\" [2006-07-21 16261632]\r\n\"AlwaysReady Power Message APP\"=\"ARPWRMSG.EXE\" [2005-08-02 77312]\r\n\"NvCplDaemon\"=\"c:\\windows\\system32\\NvCpl.dll\" [2006-10-31 7634944]\r\n\"nwiz\"=\"nwiz.exe\" [2006-10-31 1622016]\r\n\"DMAScheduler\"=\"c:\\program files\\HP DigitalMedia Archive\\DMAScheduler.exe\" [2006-04-13 90112]\r\n\"Recguard\"=\"c:\\windows\\SMINST\\RECGUARD.EXE\" [2005-07-22 237568]\r\n\"HPBootOp\"=\"c:\\program files\\Hewlett-Packard\\HP Boot Optimizer\\HPBootOp.exe\" [2006-02-15 249856]\r\n\"HP Software Update\"=\"c:\\program files\\Hp\\HP Software Update\\HPWuSchd2.exe\" [2010-06-09 49208]\r\n\"amd_dc_opt\"=\"c:\\program files\\AMD\\Dual-Core Optimizer\\amd_dc_opt.exe\" [2006-11-17 77824]\r\n\"QuickTime Task\"=\"c:\\program files\\K-Lite Codec Pack\\QuickTime\\qttask.exe\" [2007-06-29 286720]\r\n\"LVCOMSX\"=\"c:\\windows\\system32\\LVCOMSX.EXE\" [2005-07-19 221184]\r\n\"KBD\"=\"c:\\hp\\KBD\\KBD.EXE\" [2005-02-02 61440]\r\n\"Adobe Reader Speed Launcher\"=\"c:\\program files\\Adobe\\Reader 8.0\\Reader\\Reader_sl.exe\" [2008-10-15 39792]\r\n\r\nc:\\documents and settings\\Administrator.BERGHOUT.000\\Menu Start\\Programma\'s\\Opstarten\\\r\nPin.lnk - c:\\hp\\bin\\CLOAKER.EXE [2006-1-2 27136]\r\nPinMcLnk.lnk - c:\\hp\\bin\\cloaker.exe [2006-1-2 27136]\r\n\r\nc:\\documents and settings\\Default User\\Menu Start\\Programma\'s\\Opstarten\\\r\nPin.lnk - c:\\hp\\bin\\CLOAKER.EXE [2006-1-2 27136]\r\nPinMcLnk.lnk - c:\\hp\\bin\\cloaker.exe [2006-1-2 27136]\r\n\r\nc:\\documents and settings\\Gast\\Menu Start\\Programma\'s\\Opstarten\\\r\nPin.lnk - c:\\hp\\bin\\CLOAKER.EXE [2006-1-2 27136]\r\nPinMcLnk.lnk - c:\\hp\\bin\\cloaker.exe [2006-1-2 27136]\r\n\r\nc:\\documents and settings\\HP_Administrator\\Menu Start\\Programma\'s\\Opstarten\\\r\nIomega Product Registration.lnk - c:\\program files\\Iomega\\Registration\\Register.exe [2004-2-4 16175104]\r\n\r\nc:\\documents and settings\\All Users\\Menu Start\\Programma\'s\\Opstarten\\\r\nMicrosoft Office.lnk - c:\\program files\\Microsoft Office\\Office10\\OSA.EXE [2001-2-13 83360]\r\n\r\n[hkey_local_machine\\software\\microsoft\\windows\\currentversion\\explorer\\ShellExecuteHooks]\r\n\"{93994DE8-8239-4655-B1D1-5F4E91300429}\"= \"c:\\progra~1\\DVDREG~1\\DVDShell.dll\" [2004-06-08 49152]\r\n\r\n[HKLM\\~\\startupfolder\\C:^Documents and Settings^All Users^Menu Start^Programma\'s^Opstarten^HP Digital Imaging Monitor.lnk]\r\nbackup=c:\\windows\\pss\\HP Digital Imaging Monitor.lnkCommon Startup\r\n\r\n[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\Adobe Reader Speed Launcher]\r\n2008-10-15 00:04 39792 ----a-w- c:\\program files\\Adobe\\Reader 8.0\\Reader\\reader_sl.exe\r\n\r\n[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\LogitechSoftwareUpdate]\r\n2005-06-08 12:44 196608 ----a-w- c:\\program files\\Logitech\\Video\\ManifestEngine.exe\r\n\r\n[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\LogitechVideoRepair]\r\n2005-06-08 13:24 458752 ----a-w- c:\\program files\\Logitech\\Video\\ISStart.exe\r\n\r\n[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\LogitechVideoTray]\r\n2005-06-08 13:14 217088 ----a-w- c:\\program files\\Logitech\\Video\\LogiTray.exe\r\n\r\n[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\NeroFilterCheck]\r\n2006-01-12 14:40 155648 ----a-w- c:\\program files\\Common Files\\Ahead\\Lib\\NeroCheck.exe\r\n\r\n[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\NSLauncher]\r\n2006-11-27 23:12 2658304 ----a-w- c:\\program files\\Nokia\\Nokia Software Launcher\\NSLauncher.exe\r\n\r\n[HKEY_LOCAL_MACHINE\\software\\microsoft\\shared tools\\msconfig\\startupreg\\Sidebar]\r\n2007-01-30 05:21 1230848 ----a-w- c:\\program files\\Windows Sidebar\\sidebar.exe\r\n\r\n[HKEY_LOCAL_MACHINE\\software\\microsoft\\security center\\Monitoring]\r\n\"DisableMonitoring\"=dword:00000001\r\n\r\n[HKEY_LOCAL_MACHINE\\software\\microsoft\\security center\\Monitoring\\SymantecAntiVirus]\r\n\"DisableMonitoring\"=dword:00000001\r\n\r\n[HKEY_LOCAL_MACHINE\\software\\microsoft\\security center\\Monitoring\\SymantecFirewall]\r\n\"DisableMonitoring\"=dword:00000001\r\n\r\n[HKLM\\~\\services\\sharedaccess\\parameters\\firewallpolicy\\standardprofile]\r\n\"EnableFirewall\"= 0 (0x0)\r\n\r\n[HKLM\\~\\services\\sharedaccess\\parameters\\firewallpolicy\\standardprofile\\AuthorizedApplications\\List]\r\n\"%windir%\\\\system32\\\\sessmgr.exe\"=\r\n\"c:\\\\Program Files\\\\Messenger\\\\msmsgs.exe\"=\r\n\"c:\\\\Program Files\\\\uTorrent\\\\uTorrent.exe\"=\r\n\"c:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpqtra08.exe\"=\r\n\"c:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpqste08.exe\"=\r\n\"c:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpofxm08.exe\"=\r\n\"c:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hposfx08.exe\"=\r\n\"c:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hposid01.exe\"=\r\n\"c:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpqscnvw.exe\"=\r\n\"c:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpqkygrp.exe\"=\r\n\"c:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpqCopy.exe\"=\r\n\"c:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpfccopy.exe\"=\r\n\"c:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpzwiz01.exe\"=\r\n\"c:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\Unload\\\\HpqPhUnl.exe\"=\r\n\"c:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\Unload\\\\HpqDIA.exe\"=\r\n\"c:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpoews01.exe\"=\r\n\"c:\\\\Program Files\\\\HP\\\\Digital Imaging\\\\bin\\\\hpqnrs08.exe\"=\r\n\"c:\\\\hp\\\\KBD\\\\kbd.exe\"=\r\n\"c:\\\\Program Files\\\\Skype\\\\Phone\\\\Skype.exe\"=\r\n\"c:\\\\Program Files\\\\Windows Live\\\\Messenger\\\\wlcsdk.exe\"=\r\n\"c:\\\\Program Files\\\\Windows Live\\\\Messenger\\\\msnmsgr.exe\"=\r\n\"c:\\\\Program Files\\\\SiSoftware\\\\SiSoftware Sandra Lite 2010.SP1d\\\\RpcAgentSrv.exe\"=\r\n\"c:\\\\Program Files\\\\Iomega Storage Manager\\\\IomegaStorageManager.exe\"=\r\n\"c:\\\\Program Files\\\\SiSoftware\\\\SiSoftware Sandra Lite 2010.SP1d\\\\WNt500x86\\\\RpcSandraSrv.exe\"=\r\n\"%windir%\\\\Network Diagnostic\\\\xpnetdiag.exe\"=\r\n\r\n[HKLM\\~\\services\\sharedaccess\\parameters\\firewallpolicy\\standardprofile\\IcmpSettings]\r\n\"AllowInboundEchoRequest\"= 1 (0x1)\r\n\r\nR0 AmdAcpi;AmdAcpi Bus Filter Driver;c:\\windows\\system32\\drivers\\amdacpi.sys [9-12-2006 11:45 14336]\r\nR2 ACEDRV06;ACEDRV06;c:\\windows\\system32\\drivers\\ACEDRV06.sys [6-9-2007 10:57 99840]\r\nR3 3xHybrid;3xHybrid service;c:\\windows\\system32\\drivers\\3xHybrid.sys [2-1-2006 14:48 2829696]\r\nR3 AmdTools;AMD Special Tools Driver;c:\\windows\\system32\\drivers\\AmdTools.sys [9-12-2006 11:45 33792]\r\nR3 KeyScrambler;KeyScrambler;c:\\windows\\system32\\drivers\\keyscrambler.sys [9-12-2006 2:55 152320]\r\nR3 WN5301;LIteon Wireless PCI Network Adapter Service;c:\\windows\\system32\\drivers\\wn5301.sys [2-1-2006 14:48 468768]\r\nS3 hitmanpro3;Hitman Pro 3 Support Driver; [x]\r\nS3 SandraAgentSrv;SiSoftware Deployment Agent Service;c:\\program files\\SiSoftware\\SiSoftware Sandra Lite 2010.SP1d\\RpcAgentSrv.exe [31-5-2010 6:28 93336]\r\n\r\n[HKEY_LOCAL_MACHINE\\software\\microsoft\\active setup\\installed components\\{34A19196-274E-4D75-9D30-D7A45A0A4178}]\r\n2004-08-04 00:07 11776 ----a-w- c:\\program files\\Windows Sidebar\\regsvr32.exe\r\n\r\n[HKEY_LOCAL_MACHINE\\software\\microsoft\\active setup\\installed components\\{6B9228DA-9C15-419e-856C-19E768A13BDC}]\r\n2004-08-04 00:07 11776 ----a-w- c:\\program files\\Windows Sidebar\\regsvr32.exe\r\n.\r\nInhoud van de \'Gedeelde Taken\' map\r\n\r\n2011-02-25 c:\\windows\\Tasks\\$~$Sys0$.job\r\n- c:\\windows\\System32\\SchedSvc.dll [2004-09-02 21:32]\r\n\r\n2008-05-14 c:\\windows\\Tasks\\AppleSoftwareUpdate.job\r\n- c:\\program files\\Apple Software Update\\SoftwareUpdate.exe [2007-08-29 12:57]\r\n\r\n2011-02-23 c:\\windows\\Tasks\\GlaryInitialize.job\r\n- c:\\program files\\Glary Utilities\\initialize.exe [2011-02-23 10:28]\r\n\r\n2011-02-23 c:\\windows\\Tasks\\GoogleUpdateTaskUserS-1-5-21-1871043915-3130451060-1730147463-1007Core.job\r\n- c:\\documents and settings\\HP_Administrator\\Local Settings\\Application Data\\Google\\Update\\GoogleUpdate.exe [2011-02-23 23:07]\r\n.\r\n.\r\n------- Bijkomende Scan -------\r\n.\r\nuStart Page = hxxp://www.google.com/\r\nuDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=NL_NL&c=64&bd=PAVILION&pf=desktop\r\nuSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8\r\nmSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=NL_NL&c=64&bd=PAVILION&pf=desktop\r\nuSearchAssistant = hxxp://www.google.com/ie\r\nuSearchURL,(Default) = hxxp://www.google.com/search?q=%s\r\nIE: E&xport to Microsoft Excel - c:\\progra~1\\MICROS~2\\Office10\\EXCEL.EXE/3000\r\nIE: {{d9288080-1baa-4bc4-9cf8-a92d743db949}\r\n.\r\n- - - - ORPHANS VERWIJDERD - - - -\r\n\r\nBHO-{fb3943ff-3a1f-46c6-a467-9811a204061c} - (no file)\r\nHKLM-Run-SunJavaUpdateSched - c:\\program files\\Java\\jre6\\bin\\jusched.exe\r\nHKLM_ActiveSetup-{D58F39FF-953E-4F45-898F-59F243B9A523} - c:\\windows\\system32\\hidec\r\n\r\n\r\n\r\n**************************************************************************\r\n\r\ncatchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, [url]http://www.gmer.net[/url]\r\nRootkit scan 2011-02-26 11:22\r\nWindows 5.1.2600 Service Pack 3 NTFS\r\n\r\nscannen van verborgen processen ... \r\n\r\nscannen van verborgen autostart items ... \r\n\r\nscannen van verborgen bestanden ... \r\n\r\nScan succesvol afgerond\r\nverborgen bestanden: 0\r\n\r\n**************************************************************************\r\n.
Link naar reactie
  • 0
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------\r\n\r\n[HKEY_USERS\\S-1-5-21-1871043915-3130451060-1730147463-1007\\Software\\Microsoft\\SystemCertificates\\AddressBook*]\r\n@Allowed: (Read) (RestrictedCode)\r\n@Allowed: (Read) (RestrictedCode)\r\n\r\n[HKEY_USERS\\S-1-5-21-1871043915-3130451060-1730147463-1007\\Software\\Microsoft\\Windows Mobile Disc\\W*i*n*d*o*w*s* *M*o*b*i*l*e*\"!\\CriticalAppInstall\\ActiveSync]\r\n\"Name\"=\"ActiveSync\"\r\n\"DisplayName\"=\"Microsoft ActiveSync\"\r\n\"Param1\"=\"ActiveSync\"\r\n\"Type\"=\"wellknown\"\r\n\"Order\"=dword:00000001\r\n\"State\"=dword:0000000b\r\n\r\n[HKEY_USERS\\S-1-5-21-1871043915-3130451060-1730147463-1007\\Software\\Microsoft\\Windows Mobile Disc\\W*i*n*d*o*w*s* *M*o*b*i*l*e*\"!\\CriticalAppInstall\\IESettings]\r\n\"Name\"=\"IESettings\"\r\n\"Type\"=\"IESettings\"\r\n\"Order\"=dword:00000004\r\n\"State\"=dword:0000000b\r\n\r\n[HKEY_USERS\\S-1-5-21-1871043915-3130451060-1730147463-1007\\Software\\Microsoft\\Windows Mobile Disc\\W*i*n*d*o*w*s* *M*o*b*i*l*e*\"!\\CriticalAppInstall\\MediaFiles]\r\n\"Name\"=\"MediaFiles\"\r\n\"Type\"=\"MediaFiles\"\r\n\"Order\"=dword:00000003\r\n\"State\"=dword:0000000b\r\n\r\n[HKEY_USERS\\S-1-5-21-1871043915-3130451060-1730147463-1007\\Software\\Microsoft\\Windows Mobile Disc\\W*i*n*d*o*w*s* *M*o*b*i*l*e*\"!\\CriticalAppInstall\\NPW]\r\n\"Name\"=\"NPW\"\r\n\"Param1\"=\"NPW\"\r\n\"Type\"=\"wellknown\"\r\n\"Order\"=dword:00000002\r\n\"State\"=dword:0000000b\r\n\r\n[HKEY_USERS\\S-1-5-21-1871043915-3130451060-1730147463-1007\\Software\\Microsoft\\Windows Mobile Disc\\W*i*n*d*o*w*s* *M*o*b*i*l*e*\"!\\CriticalAppInstall\\Outlook]\r\n\"Name\"=\"Outlook\"\r\n\"DisplayName\"=\"Microsoft Outlook\"\r\n\"Param1\"=\"Outlook\"\r\n\"Type\"=\"wellknown\"\r\n\"Order\"=dword:00000000\r\n\"State\"=dword:00000002\r\n\r\n[HKEY_LOCAL_MACHINE\\software\\DeterministicNetworks\\DNE\\Parameters]\r\n\"SymbolicLinkValue\"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,\r\n 00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,79,00,73,00,\\\r\n.\r\n--------------------- DLLs Geladen Onder Lopende Processen ---------------------\r\n\r\n- - - - - - - > \'explorer.exe\'(2440)\r\nc:\\windows\\system32\\nview.dll\r\nc:\\windows\\system32\\NVWRSNL.DLL\r\nc:\\windows\\system32\\nvwddi.dll\r\nc:\\windows\\system32\\ieframe.dll\r\nc:\\windows\\system32\\WPDShServiceObj.dll\r\nc:\\program files\\Nokia\\Nokia PC Suite 6\\PhoneBrowser.dll\r\nc:\\program files\\Nokia\\Nokia PC Suite 6\\PCSCM.dll\r\nc:\\windows\\system32\\ConnAPI.DLL\r\nc:\\program files\\Nokia\\Nokia PC Suite 6\\Lang\\PhoneBrowser_dut.nlr\r\nc:\\program files\\Nokia\\Nokia PC Suite 6\\Resource\\PhoneBrowser_Nokia.ngr\r\nc:\\windows\\system32\\PortableDeviceTypes.dll\r\nc:\\windows\\system32\\PortableDeviceApi.dll\r\n.\r\n------------------------ Andere Aktieve Processen ------------------------\r\n.\r\nc:\\program files\\Common Files\\Apple\\Mobile Device Support\\bin\\AppleMobileDeviceService.exe\r\nc:\\windows\\arservice.exe\r\nc:\\program files\\Cisco Systems\\VPN Client\\cvpnd.exe\r\nc:\\windows\\eHome\\ehRecvr.exe\r\nc:\\windows\\eHome\\ehSched.exe\r\nc:\\program files\\Java\\jre6\\bin\\jqs.exe\r\nc:\\program files\\Common Files\\LightScribe\\LSSrvc.exe\r\nc:\\windows\\system32\\nvsvc32.exe\r\nc:\\windows\\system32\\HPZipm12.exe\r\nc:\\windows\\ehome\\mcrdsvc.exe\r\nc:\\windows\\system32\\dllhost.exe\r\nc:\\windows\\system32\\wscntfy.exe\r\nc:\\windows\\RTHDCPL.EXE\r\nc:\\windows\\ARPWRMSG.EXE\r\nc:\\windows\\eHome\\ehmsas.exe\r\nc:\\windows\\system32\\rundll32.exe\r\n.\r\n**************************************************************************\r\n.\r\nVoltooingstijd: 2011-02-26 11:28:10 - machine werd herstart\r\nComboFix-quarantined-files.txt 2011-02-26 10:28\r\n\r\nPre-Run: 243.262.902.272 bytes beschikbaar\r\nPost-Run: 243.222.061.056 bytes beschikbaar\r\n\r\n- - End Of File - - 367B0452705A638A4ADDEC786F046B11
Link naar reactie
  • 0
Vervolgens HijackThis gedraaid\r\n\r\nLogfile of Trend Micro HijackThis v2.0.4\r\nScan saved at 11:33:35, on 26-2-2011\r\nPlatform: Windows XP SP3 (WinNT 5.01.2600)\r\nMSIE: Internet Explorer v7.00 (7.00.5730.0013)\r\nBoot mode: Normal\r\n\r\nRunning processes:\r\nC:\\WINDOWS\\System32\\smss.exe\r\nC:\\WINDOWS\\system32\\winlogon.exe\r\nC:\\WINDOWS\\system32\\services.exe\r\nC:\\WINDOWS\\system32\\lsass.exe\r\nC:\\WINDOWS\\system32\\svchost.exe\r\nC:\\WINDOWS\\System32\\svchost.exe\r\nC:\\WINDOWS\\system32\\svchost.exe\r\nC:\\WINDOWS\\system32\\spoolsv.exe\r\nC:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\bin\\AppleMobileDeviceService.exe\r\nC:\\WINDOWS\\arservice.exe\r\nC:\\Program Files\\Cisco Systems\\VPN Client\\cvpnd.exe\r\nC:\\WINDOWS\\eHome\\ehRecvr.exe\r\nC:\\WINDOWS\\eHome\\ehSched.exe\r\nC:\\Program Files\\Java\\jre6\\bin\\jqs.exe\r\nC:\\Program Files\\Common Files\\LightScribe\\LSSrvc.exe\r\nC:\\WINDOWS\\system32\\nvsvc32.exe\r\nC:\\WINDOWS\\system32\\HPZipm12.exe\r\nC:\\WINDOWS\\system32\\svchost.exe\r\nC:\\WINDOWS\\system32\\dllhost.exe\r\nC:\\WINDOWS\\system32\\wscntfy.exe\r\nC:\\WINDOWS\\ehome\\ehtray.exe\r\nC:\\WINDOWS\\RTHDCPL.EXE\r\nC:\\WINDOWS\\ARPWRMSG.EXE\r\nC:\\WINDOWS\\eHome\\ehmsas.exe\r\nC:\\Program Files\\HP DigitalMedia Archive\\DMAScheduler.exe\r\nC:\\Program Files\\Hp\\HP Software Update\\HPWuSchd2.exe\r\nC:\\WINDOWS\\System32\\svchost.exe\r\nC:\\WINDOWS\\system32\\LVCOMSX.EXE\r\nC:\\WINDOWS\\system32\\rundll32.exe\r\nC:\\HP\\KBD\\KBD.EXE\r\nC:\\Documents and Settings\\HP_Administrator\\Local Settings\\Application Data\\Google\\Update\\GoogleUpdate.exe\r\nC:\\WINDOWS\\explorer.exe\r\nC:\\WINDOWS\\system32\\notepad.exe\r\nc:\\windows\\system\\hpsysdrv.exe\r\nC:\\Program Files\\Java\\jre1.5.0_10\\bin\\jusched.exe\r\nC:\\Program Files\\Trend Micro\\HiJackThis\\HiJackThis.exe\r\n\r\nR1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = [url]http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=NL_NL&c=64&bd=PAVILION&pf=desktop[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = [url]http://go.microsoft.com/fwlink/?LinkId=69157[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Bar = [url]http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=NL_NL&c=64&bd=PAVILION&pf=desktop[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url]\r\nR0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = [url]http://go.microsoft.com/fwlink/?LinkId=69157[/url]\r\nR0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar,LinksFolderName = Koppelingen\r\nO2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\\Program Files\\Common Files\\Adobe\\Acrobat\\ActiveX\\AcroIEHelper.dll\r\nO2 - BHO: QFX Software KeyScrambler - {2B9F5787-88A5-4945-90E7-C4B18563BC5E} - C:\\Program Files\\KeyScrambler\\KeyScramblerIE.dll\r\nO2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\\Program Files\\Real\\RealPlayer\\rpbrowserrecordplugin.dll\r\nO2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)\r\nO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\\Program Files\\Java\\jre6\\bin\\ssv.dll\r\nO2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\\Program Files\\Common Files\\Microsoft Shared\\Windows Live\\WindowsLiveLogin.dll\r\nO2 - BHO: Encarta Web Companion Helper Object - {955BE0B8-BC85-4CAF-856E-8E0D8B610560} - C:\\Program Files\\Common Files\\Microsoft Shared\\Encarta Web Companion\\2007\\ENCWCBAR.DLL\r\nO2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll\r\nO2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\\Program Files\\Java\\jre6\\lib\\deploy\\jqs\\ie\\jqs_plugin.dll\r\nO3 - Toolbar: Encarta Web Companion - {147D6308-0614-4112-89B1-31402F9B82C4} - C:\\Program Files\\Common Files\\Microsoft Shared\\Encarta Web Companion\\2007\\ENCWCBAR.DLL\r\nO4 - HKLM\\..\\Run: [ehTray] C:\\WINDOWS\\ehome\\ehtray.exe\r\nO4 - HKLM\\..\\Run: [ftutil2] rundll32.exe ftutil2.dll,SetWriteCacheMode\r\nO4 - HKLM\\..\\Run: [RTHDCPL] RTHDCPL.EXE\r\nO4 - HKLM\\..\\Run: [AlwaysReady Power Message APP] ARPWRMSG.EXE\r\nO4 - HKLM\\..\\Run: [NvCplDaemon] RUNDLL32.EXE C:\\WINDOWS\\system32\\NvCpl.dll,NvStartup\r\nO4 - HKLM\\..\\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect\r\nO4 - HKLM\\..\\Run: [DMAScheduler] \"c:\\Program Files\\HP DigitalMedia Archive\\DMAScheduler.exe\"\r\nO4 - HKLM\\..\\Run: [Recguard] C:\\WINDOWS\\SMINST\\RECGUARD.EXE\r\nO4 - HKLM\\..\\Run: [HPBootOp] \"C:\\Program Files\\Hewlett-Packard\\HP Boot Optimizer\\HPBootOp.exe\" /run\r\nO4 - HKLM\\..\\Run: [HP Software Update] C:\\Program Files\\Hp\\HP Software Update\\HPWuSchd2.exe\r\nO4 - HKLM\\..\\Run: [amd_dc_opt] C:\\Program Files\\AMD\\Dual-Core Optimizer\\amd_dc_opt.exe\r\nO4 - HKLM\\..\\Run: [QuickTime Task] \"C:\\Program Files\\K-Lite Codec Pack\\QuickTime\\qttask.exe\" -atboottime\r\nO4 - HKLM\\..\\Run: [LVCOMSX] C:\\WINDOWS\\system32\\LVCOMSX.EXE\r\nO4 - HKLM\\..\\Run: [KBD] C:\\HP\\KBD\\KBD.EXE\r\nO4 - HKLM\\..\\Run: [Adobe Reader Speed Launcher] \"C:\\Program Files\\Adobe\\Reader 8.0\\Reader\\Reader_sl.exe\"\r\nO4 - HKCU\\..\\Run: [Google Update] \"C:\\Documents and Settings\\HP_Administrator\\Local Settings\\Application Data\\Google\\Update\\GoogleUpdate.exe\" /c\r\nO4 - .DEFAULT User Startup: Pin.lnk = C:\\hp\\bin\\CLOAKER.EXE (User \'Default user\')\r\nO4 - .DEFAULT User Startup: PinMcLnk.lnk = C:\\hp\\bin\\cloaker.exe (User \'Default user\')\r\nO4 - Startup: Iomega Product Registration.lnk = C:\\Program Files\\Iomega\\Registration\\Register.exe\r\nO4 - Global Startup: Microsoft Office.lnk = C:\\Program Files\\Microsoft Office\\Office10\\OSA.EXE\r\nO8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\\PROGRA~1\\MICROS~2\\Office10\\EXCEL.EXE/3000\r\nO9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\\Program Files\\Java\\jre6\\bin\\jp2iexp.dll\r\nO9 - Extra \'Tools\' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\\Program Files\\Java\\jre6\\bin\\jp2iexp.dll\r\nO9 - Extra button: (no name) - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\\Program Files\\KeyScrambler\\KeyScramblerIE.dll\r\nO9 - Extra \'Tools\' menuitem: &KeyScrambler... - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\\Program Files\\KeyScrambler\\KeyScramblerIE.dll\r\nO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\\PROGRA~1\\MICROS~2\\Office12\\REFIEBAR.DLL\r\nO9 - Extra button: Encarta Search Bar - {B205A35E-1FC4-4CE3-818B-899DBBB3388C} - C:\\Program Files\\Common Files\\Microsoft Shared\\Encarta Search Bar\\ENCSBAR.DLL\r\nO9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\\WINDOWS\\system32\\shdocvw.dll\r\nO9 - Extra button: Verbindingshelp - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\\WINDOWS\\PCHEALTH\\HELPCTR\\Vendors\\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\\IEButton\\support.htm\r\nO9 - Extra \'Tools\' menuitem: Verbindingshelp - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\\WINDOWS\\PCHEALTH\\HELPCTR\\Vendors\\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\\IEButton\\support.htm\r\nO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe\r\nO9 - Extra \'Tools\' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe\r\nO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe\r\nO9 - Extra \'Tools\' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe\r\nO16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - [url]http://by132w.bay132.mail.live.com/mail/resources/MsnPUpld.cab[/url]\r\nO16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} (Symantec RuFSI Utility Class) - [url]http://security.symantec.com/sscv6/SharedContent/common/bin/cabsa.cab[/url]\r\nO16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - [url]http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab[/url]\r\nO16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - [url]http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab[/url]\r\nO18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\\PROGRA~1\\COMMON~1\\Skype\\SKYPE4~1.DLL\r\nO22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\\WINDOWS\\system32\\browseui.dll\r\nO22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\\WINDOWS\\system32\\browseui.dll\r\nO23 - Service: Apple Mobile Device - Apple, Inc. - C:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\bin\\AppleMobileDeviceService.exe\r\nO23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\\Program Files\\Cisco Systems\\VPN Client\\cvpnd.exe\r\nO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\\Program Files\\Common Files\\InstallShield\\Driver\\1150\\Intel 32\\IDriverT.exe\r\nO23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\\Program Files\\Java\\jre6\\bin\\jqs.exe\r\nO23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\\Program Files\\Common Files\\LightScribe\\LSSrvc.exe\r\nO23 - Service: MSCSPTISRV - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\AVLib\\MSCSPTISRV.exe\r\nO23 - Service: NBService - Nero AG - C:\\Program Files\\Nero\\Nero 7\\Nero BackItUp\\NBService.exe\r\nO23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\\WINDOWS\\system32\\nvsvc32.exe\r\nO23 - Service: PACSPTISVR - Unknown owner - C:\\Program Files\\Common Files\\Sony Shared\\AVLib\\PACSPTISVR.exe\r\nO23 - Service: Pml Driver HPZ12 - HP - C:\\WINDOWS\\system32\\HPZipm12.exe\r\nO23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - C:\\Program Files\\SiSoftware\\SiSoftware Sandra Lite 2010.SP1d\\RpcAgentSrv.exe\r\nO23 - Service: ServiceLayer - Nokia. - C:\\Program Files\\Common Files\\PCSuite\\Services\\ServiceLayer.exe\r\nO23 - Service: SonicStage Back-End Service - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\AVLib\\SsBeSvc.exe\r\nO23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\AVLib\\SPTISRV.exe\r\nO23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\\Program Files\\Common Files\\Sony Shared\\AVLib\\SSScsiSV.exe\r\n\r\n--\r\nEnd of file - 10297 bytes
Link naar reactie
  • 0
Vanmorgen ook netwerk diagnose gedaan;\r\n\r\nInternet-service \r\n Standaard Outlook Express Mail Niet geconfigureerd \r\n Standaard Outlook Express News Niet geconfigureerd \r\n Internet Explorer Webproxy Niet geconfigureerd \r\nInformatie over de computer \r\n+ Computersysteem BERGHOUT \r\n AdminPasswordStatus = 3 \r\n AutomaticResetBootOption = TRUE \r\n AutomaticResetCapability = TRUE \r\n BootROMSupported = TRUE \r\n BootupState = Normal boot \r\n Caption = BERGHOUT \r\n ChassisBootupState = 3 \r\n CreationClassName = Win32_ComputerSystem \r\n CurrentTimeZone = 60 \r\n DaylightInEffect = FALSE \r\n Description = AT/AT COMPATIBLE \r\n Domain = MSHOME \r\n DomainRole = 0 \r\n EnableDaylightSavingsTime = TRUE \r\n FrontPanelResetStatus = 3 \r\n InfraredSupported = FALSE \r\n KeyboardPasswordStatus = 3 \r\n Manufacturer = HP Pavilion 061 \r\n Model = RJ088AA-ABH m7670.nl \r\n Name = BERGHOUT \r\n NetworkServerModeEnabled = TRUE \r\n NumberOfLogicalProcessors = 2 \r\n NumberOfProcessors = 1 \r\n+ OEMStringArray \r\n bid=64NLemMPA2;ARDY;C_GC;DLED;DVDP_STD;IS.N60d;KBDRV;Lscribe;MDV \r\n D_STD;RP_STD;SDMED_PLS;SFCHK;.HA## \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n \r\n PartOfDomain = FALSE \r\n PauseAfterReset = -1 \r\n PowerOnPasswordStatus = 3 \r\n PowerState = 0 \r\n PowerSupplyState = 3 \r\n PrimaryOwnerName = Tjark Berghout \r\n ResetCapability = 1 \r\n ResetCount = -1 \r\n ResetLimit = -1 \r\n+ Roles \r\n LM_Workstation \r\n LM_Server \r\n NT \r\n Status = OK \r\n+ SupportContactDescription \r\n De HP Klantenservice biedt ondersteuning \r\n bij algemene vragen over Windows XP. \r\n Raadpleeg de ondersteuningskaart voor meer \r\n informatie over de ondersteuningsmogelijkheden in uw land. \r\n (Leeg) \r\n (Leeg) \r\n In Nederland kunt u bellen met (0)900 2020 165 (0,10€/min) \r\n maandag t/m vrijdag van 08:30-18:00; zaterdag van 10:00-16:00 \r\n \r\n (Leeg) \r\n Openingstijden kunnen worden gewijzigd zonder \r\n nadere kennisgeving. \r\n SystemStartupDelay = 3 \r\n+ SystemStartupOptions \r\n \"Windows XP Media Center Edition\" /noexecute=optin /fastdetect /usepmtimer \r\n \"Microsoft Windows XP Herstelconsole\" /cmdcons \r\n SystemStartupSetting = 0 \r\n SystemType = X86-based PC \r\n ThermalState = 3 \r\n TotalPhysicalMemory = 3219632128 \r\n UserName = BERGHOUT\\HP_Administrator \r\n WakeUpType = 6 \r\n+ Besturingssysteem Microsoft Windows XP Professional \r\n BootDevice = \\Device\\HarddiskVolume1 \r\n BuildNumber = 2600 \r\n BuildType = Multiprocessor Free \r\n Caption = Microsoft Windows XP Professional \r\n CodeSet = 1252 \r\n CountryCode = 31 \r\n CreationClassName = Win32_OperatingSystem \r\n CSCreationClassName = Win32_ComputerSystem \r\n CSDVersion = Service Pack 3 \r\n CSName = BERGHOUT \r\n CurrentTimeZone = 60 \r\n DataExecutionPrevention_32BitApplications = TRUE \r\n DataExecutionPrevention_Available = TRUE \r\n DataExecutionPrevention_Drivers = TRUE \r\n DataExecutionPrevention_SupportPolicy = 2 \r\n Debug = FALSE \r\n Description = Thuis PC \r\n Distributed = FALSE \r\n EncryptionLevel = 168 \r\n ForegroundApplicationBoost = 2 \r\n FreePhysicalMemory = 2448480 \r\n FreeSpaceInPagingFiles = 3982172 \r\n FreeVirtualMemory = 2053012 \r\n InstallDate = 22:45:33 8-12-2006 \r\n LargeSystemCache = 0 \r\n LastBootUpTime = 9:48:08 26-2-2011 \r\n LocalDateTime = 10:14:00 26-2-2011 \r\n Locale = 0413 \r\n Manufacturer = Microsoft Corporation \r\n MaxNumberOfProcesses = -1 \r\n MaxProcessMemorySize = 2097024 \r\n Name = Microsoft Windows XP Professional|C:\\WINDOWS|\\Device\\Harddisk0\\Partition1 \r\n NumberOfProcesses = 55 \r\n NumberOfUsers = 2 \r\n OSLanguage = 1043 \r\n OSType = 18 \r\n Primary = TRUE \r\n ProductType = 1 \r\n QuantumLength = 0 \r\n QuantumType = 0 \r\n RegisteredUser = Tjark Berghout \r\n SerialNumber = 76396-OEM-0011903-00803 \r\n ServicePackMajorVersion = 3 \r\n ServicePackMinorVersion = 0 \r\n SizeStoredInPagingFiles = 4552560 \r\n Status = OK \r\n SuiteMask = 272 \r\n SystemDevice = \\Device\\HarddiskVolume1 \r\n SystemDirectory = C:\\WINDOWS\\system32 \r\n SystemDrive = C: \r\n TotalVirtualMemorySize = 2097024 \r\n TotalVisibleMemorySize = 3144172 \r\n Version = 5.1.2600 \r\n WindowsDirectory = C:\\WINDOWS \r\n+ Versie 5.1.2600 \r\n Version = 5.1.2600 \r\n BuildVersion = 2600.0000 \r\nModems en netwerk-adapters \r\n+ Modems \r\n+ SAMSUNG Mobile USB Modem \r\n AttachedTo = COM4 \r\n Caption = SAMSUNG Mobile USB Modem \r\n ConfigurationDialog = modemui.dll \r\n CountrySelected = Nederland \r\n CreationClassName = Win32_PotsModem \r\n+ DCB \r\n 28 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 194 \r\n 1 \r\n 0 \r\n 21 \r\n 32 \r\n 0 \r\n 0 \r\n 0 \r\n+ Default \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n Description = SAMSUNG Mobile USB Modem \r\n DeviceID = Modem0 \r\n DeviceType = External Modem \r\n DriverDate = 1:00:00 30-8-2005 \r\n FlowControlHard = +IFC=2,2; \r\n FlowControlOff = +IFC=0,0; \r\n FlowControlSoft = +IFC=1,1; \r\n Index = 0 \r\n MaxBaudRateToSerialPort = 115200 \r\n Model = SAMSUNG Mobile USB Modem \r\n ModemInfPath = oem38.inf \r\n ModemInfSection = Samsung.Install \r\n Name = SAMSUNG Mobile USB Modem \r\n PortSubClass = \"02\" \r\n PowerManagementSupported = FALSE \r\n Prefix = AT \r\n+ Properties \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n ProviderName = SAMSUNG Electronics Co.,Ltd. \r\n Reset = AT&F \r\n ResponsesKeyName = SAMSUNG Mobile USB Modem::SAMSUNG Electronics Co.,Ltd. ::SAMSUNG Electronics Co.,Ltd. \r\n Status = Unknown \r\n StatusInfo = 2 \r\n SystemCreationClassName = Win32_ComputerSystem \r\n SystemName = BERGHOUT \r\n Terminator = \r\n+ Nokia N95 USB Modem \r\n AttachedTo = COM7 \r\n BlindOff = X5 \r\n BlindOn = X3 \r\n Caption = Nokia N95 USB Modem \r\n CompressionOff = +DS=0,0; \r\n CompressionOn = +DS=3,0; \r\n ConfigurationDialog = modemui.dll \r\n CountrySelected = Nederland \r\n CreationClassName = Win32_PotsModem \r\n+ DCB \r\n 28 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 8 \r\n 7 \r\n 0 \r\n 21 \r\n 32 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n+ Default \r\n 60 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n Description = Nokia N95 USB Modem \r\n DeviceID = Modem1 \r\n DeviceType = External Modem \r\n DriverDate = 1:00:00 5-6-2007 \r\n FlowControlHard = &K3 \r\n FlowControlOff = &K0 \r\n FlowControlSoft = &K4 \r\n Index = 1 \r\n MaxBaudRateToSerialPort = 115200 \r\n Model = Nokia N95 USB Modem \r\n ModemInfPath = oem55.inf \r\n ModemInfSection = ModemDeviceInstallN95 \r\n ModulationBell = B1 \r\n ModulationCCITT = B0 \r\n Name = Nokia N95 USB Modem \r\n PortSubClass = \"02\" \r\n PowerManagementSupported = FALSE \r\n Prefix = AT \r\n+ Properties \r\n 128 \r\n 0 \r\n 0 \r\n 0 \r\n 255 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n ProviderName = Nokia \r\n Pulse = P \r\n Reset = ATZ \r\n ResponsesKeyName = Nokia N95 USB Modem::Nokia::Nokia \r\n Status = Unknown \r\n StatusInfo = 2 \r\n SystemCreationClassName = Win32_ComputerSystem \r\n SystemName = BERGHOUT \r\n Terminator = \r\n Tone = T \r\n+ Nokia N95 USB Modem \r\n AttachedTo = COM9 \r\n BlindOff = X5 \r\n BlindOn = X3 \r\n Caption = Nokia N95 USB Modem \r\n CompressionOff = +DS=0,0; \r\n CompressionOn = +DS=3,0; \r\n ConfigurationDialog = modemui.dll \r\n CountrySelected = Nederland \r\n CreationClassName = Win32_PotsModem \r\n+ DCB \r\n 28 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 8 \r\n 7 \r\n 0 \r\n 21 \r\n 32 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n+ Default \r\n 60 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n Description = Nokia N95 USB Modem \r\n DeviceID = Modem2 \r\n DeviceType = External Modem \r\n DriverDate = 1:00:00 5-6-2007 \r\n FlowControlHard = &K3 \r\n FlowControlOff = &K0 \r\n FlowControlSoft = &K4 \r\n Index = 2 \r\n MaxBaudRateToSerialPort = 115200 \r\n Model = Nokia N95 USB Modem \r\n ModemInfPath = oem55.inf \r\n ModemInfSection = ModemDeviceInstallN95 \r\n ModulationBell = B1 \r\n ModulationCCITT = B0 \r\n Name = Nokia N95 USB Modem #2 \r\n PortSubClass = \"02\" \r\n PowerManagementSupported = FALSE \r\n Prefix = AT \r\n+ Properties \r\n 128 \r\n 0 \r\n 0 \r\n 0 \r\n 255 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n ProviderName = Nokia \r\n Pulse = P \r\n Reset = ATZ \r\n ResponsesKeyName = Nokia N95 USB Modem::Nokia::Nokia \r\n Status = Unknown \r\n StatusInfo = 2 \r\n SystemCreationClassName = Win32_ComputerSystem \r\n SystemName = BERGHOUT \r\n Terminator = \r\n Tone = T \r\n+ Nokia GSM Phone USB Modem \r\n AttachedTo = COM11 \r\n BlindOff = X5 \r\n BlindOn = X3 \r\n Caption = Nokia GSM Phone USB Modem \r\n CompressionOff = +DS=0,0; \r\n CompressionOn = +DS=3,0; \r\n ConfigurationDialog = modemui.dll \r\n CountrySelected = Nederland \r\n CreationClassName = Win32_PotsModem \r\n+ DCB \r\n 28 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 8 \r\n 7 \r\n 0 \r\n 21 \r\n 32 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n+ Default \r\n 60 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n Description = Nokia GSM Phone USB Modem \r\n DeviceID = Modem3 \r\n DeviceType = External Modem \r\n DriverDate = 1:00:00 5-6-2007 \r\n FlowControlHard = &K3 \r\n FlowControlOff = &K0 \r\n FlowControlSoft = &K4 \r\n Index = 3 \r\n MaxBaudRateToSerialPort = 115200 \r\n Model = Nokia GSM Phone USB Modem \r\n ModemInfPath = oem55.inf \r\n ModemInfSection = ModemDeviceInstallGSMPhone \r\n ModulationBell = B1 \r\n ModulationCCITT = B0 \r\n Name = Nokia GSM Phone USB Modem \r\n PortSubClass = \"02\" \r\n PowerManagementSupported = FALSE \r\n Prefix = AT \r\n+ Properties \r\n 128 \r\n 0 \r\n 0 \r\n 0 \r\n 255 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n 0 \r\n ProviderName = Nokia \r\n Pulse = P \r\n Reset = ATZ \r\n ResponsesKeyName = Nokia GSM Phone USB Modem::Nokia::Nokia \r\n Status = Unknown \r\n StatusInfo = 2 \r\n SystemCreationClassName = Win32_ComputerSystem \r\n SystemName = BERGHOUT \r\n Terminator = \r\n Tone = T \r\n- Netwerkadapters Mislukt \r\n- [00000001] HP EN1207D-TX PCI 10/100 Fast Ethernet Adapter (Mislukt) \r\n Caption = [00000001] HP EN1207D-TX PCI 10/100 Fast Ethernet Adapter \r\n DatabasePath = %SystemRoot%\\System32\\drivers\\etc \r\n+ DefaultIPGateway = 192.168.2.254(Hetzelfde subnet) (Geslaagd) \r\nPingen naar 192.168.2.254 met 32 bytes gegevens:\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nStatistieken van pingen van 192.168.2.254:\r\nPakketten: verzonden = 4, ontvangen = 4, verloren = 0 (0% verloren)\r\nGeschatte retourtijden in milliseconden:\r\nminimum = 4ms, maximum = 4ms, gemiddeld = 4ms\r\n Description = Wireless LAN PCI 802.11 b/g adapter WN5301A - Pakketplanner-minipoort \r\n DHCPEnabled = TRUE \r\n DHCPLeaseExpires = 12:47:09 11-2-2006 \r\n DHCPLeaseObtained = 12:47:09 27-1-2006 \r\n+ DHCPServer = 16.92.3.250 (Mislukt) \r\nPingen naar 16.92.3.250 met 32 bytes gegevens:\r\nTime-out bij opdracht.\r\nTime-out bij opdracht.\r\nTime-out bij opdracht.\r\nTime-out bij opdracht.\r\nStatistieken van pingen van 16.92.3.250:\r\nPakketten: verzonden = 4, ontvangen = 0, verloren = 4 (100% verloren)\r\n DNSDomain = americas.hpqcorp.net \r\n DNSEnabledForWINSResolution = FALSE \r\n DNSHostName = Berghout \r\n DomainDNSRegistrationEnabled = FALSE \r\n FullDNSRegistrationEnabled = TRUE \r\n GatewayCostMetric = 25 \r\n Index = 1
Link naar reactie
  • 0
+ IPAddress = 192.168.2.4 (Geslaagd) \r\nPingen naar 192.168.2.4 met 32 bytes gegevens:\r\nAntwoord van 192.168.2.4: bytes=32 tijd<1ms TTL=0\r\nAntwoord van 192.168.2.4: bytes=32 tijd<1ms TTL=0\r\nAntwoord van 192.168.2.4: bytes=32 tijd<1ms TTL=0\r\nAntwoord van 192.168.2.4: bytes=32 tijd<1ms TTL=0\r\nStatistieken van pingen van 192.168.2.4:\r\nPakketten: verzonden = 4, ontvangen = 4, verloren = 0 (0% verloren)\r\nGeschatte retourtijden in milliseconden:\r\nminimum = 0ms, maximum = 0ms, gemiddeld = 0ms\r\n IPConnectionMetric = 25 \r\n IPEnabled = TRUE \r\n IPFilterSecurityEnabled = FALSE \r\n IPSecPermitIPProtocols = 0 \r\n IPSecPermitTCPPorts = 0 \r\n IPSecPermitUDPPorts = 0 \r\n IPSubnet = 255.255.255.0 \r\n IPXEnabled = FALSE \r\n MACAddress = 00:C0:A8:C6:A2:FD \r\n ServiceName = RTL8139 \r\n SettingID = {BA885009-9ED3-4E26-9CFF-4E629664614E} \r\n TcpipNetbiosOptions = 0 \r\n WINSEnableLMHostsLookup = TRUE \r\n+ [00000010] Wireless LAN PCI 802.11 b/g adapter WN5301A (Geslaagd) \r\n Caption = [00000010] Wireless LAN PCI 802.11 b/g adapter WN5301A \r\n DatabasePath = %SystemRoot%\\System32\\drivers\\etc \r\n+ DefaultIPGateway = 192.168.2.254(Hetzelfde subnet) (Geslaagd) \r\nPingen naar 192.168.2.254 met 32 bytes gegevens:\r\nAntwoord van 192.168.2.254: bytes=32 tijd=6ms TTL=6\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=5ms TTL=5\r\nStatistieken van pingen van 192.168.2.254:\r\nPakketten: verzonden = 4, ontvangen = 4, verloren = 0 (0% verloren)\r\nGeschatte retourtijden in milliseconden:\r\nminimum = 4ms, maximum = 6ms, gemiddeld = 4ms\r\n Description = Wireless LAN PCI 802.11 b/g adapter WN5301A - Pakketplanner-minipoort \r\n DHCPEnabled = TRUE \r\n DHCPLeaseExpires = 9:58:49 27-2-2011 \r\n DHCPLeaseObtained = 9:58:49 26-2-2011 \r\n+ DHCPServer = 192.168.2.254 (Geslaagd) \r\nPingen naar 192.168.2.254 met 32 bytes gegevens:\r\nAntwoord van 192.168.2.254: bytes=32 tijd=6ms TTL=6\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nStatistieken van pingen van 192.168.2.254:\r\nPakketten: verzonden = 4, ontvangen = 4, verloren = 0 (0% verloren)\r\nGeschatte retourtijden in milliseconden:\r\nminimum = 4ms, maximum = 6ms, gemiddeld = 4ms\r\n DNSDomain = lan \r\n DNSEnabledForWINSResolution = FALSE \r\n DNSHostName = Berghout \r\n+ DNSServerSearchOrder = 192.168.2.254 (Geslaagd) \r\nPingen naar 192.168.2.254 met 32 bytes gegevens:\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nStatistieken van pingen van 192.168.2.254:\r\nPakketten: verzonden = 4, ontvangen = 4, verloren = 0 (0% verloren)\r\nGeschatte retourtijden in milliseconden:\r\nminimum = 4ms, maximum = 4ms, gemiddeld = 4ms\r\n DomainDNSRegistrationEnabled = FALSE \r\n FullDNSRegistrationEnabled = TRUE \r\n GatewayCostMetric = 25 \r\n Index = 10 \r\n+ IPAddress = 192.168.2.4 (Geslaagd) \r\nPingen naar 192.168.2.4 met 32 bytes gegevens:\r\nAntwoord van 192.168.2.4: bytes=32 tijd<1ms TTL=0\r\nAntwoord van 192.168.2.4: bytes=32 tijd<1ms TTL=0\r\nAntwoord van 192.168.2.4: bytes=32 tijd<1ms TTL=0\r\nAntwoord van 192.168.2.4: bytes=32 tijd<1ms TTL=0\r\nStatistieken van pingen van 192.168.2.4:\r\nPakketten: verzonden = 4, ontvangen = 4, verloren = 0 (0% verloren)\r\nGeschatte retourtijden in milliseconden:\r\nminimum = 0ms, maximum = 0ms, gemiddeld = 0ms\r\n IPConnectionMetric = 25 \r\n IPEnabled = TRUE \r\n IPFilterSecurityEnabled = FALSE \r\n IPSecPermitIPProtocols = 0 \r\n IPSecPermitTCPPorts = 0 \r\n IPSecPermitUDPPorts = 0 \r\n IPSubnet = 255.255.255.0 \r\n IPXEnabled = FALSE \r\n MACAddress = 00:C0:A8:C6:A2:FD \r\n ServiceName = WN5301 \r\n SettingID = {5D34468A-8289-46B7-833F-A3493C07880A} \r\n TcpipNetbiosOptions = 0 \r\n WINSEnableLMHostsLookup = TRUE \r\n+ [00000013] NVIDIA nForce Networking Controller (Geslaagd) \r\n Caption = [00000013] NVIDIA nForce Networking Controller \r\n DatabasePath = %SystemRoot%\\System32\\drivers\\etc \r\n+ DefaultIPGateway = 192.168.2.254(Hetzelfde subnet) (Geslaagd) \r\nPingen naar 192.168.2.254 met 32 bytes gegevens:\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=7ms TTL=7\r\nAntwoord van 192.168.2.254: bytes=32 tijd=7ms TTL=7\r\nStatistieken van pingen van 192.168.2.254:\r\nPakketten: verzonden = 4, ontvangen = 4, verloren = 0 (0% verloren)\r\nGeschatte retourtijden in milliseconden:\r\nminimum = 4ms, maximum = 7ms, gemiddeld = 5ms\r\n Description = NVIDIA nForce Networking Controller - Pakketplanner-minipoort \r\n DHCPEnabled = TRUE \r\n DHCPLeaseExpires = 9:49:15 27-2-2011 \r\n DHCPLeaseObtained = 9:49:15 26-2-2011 \r\n+ DHCPServer = 192.168.2.254 (Geslaagd) \r\nPingen naar 192.168.2.254 met 32 bytes gegevens:\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nStatistieken van pingen van 192.168.2.254:\r\nPakketten: verzonden = 4, ontvangen = 4, verloren = 0 (0% verloren)\r\nGeschatte retourtijden in milliseconden:\r\nminimum = 4ms, maximum = 4ms, gemiddeld = 4ms\r\n DNSDomain = lan \r\n DNSEnabledForWINSResolution = FALSE \r\n DNSHostName = Berghout \r\n+ DNSServerSearchOrder = 192.168.2.254 (Geslaagd) \r\nPingen naar 192.168.2.254 met 32 bytes gegevens:\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=7ms TTL=7\r\nAntwoord van 192.168.2.254: bytes=32 tijd=7ms TTL=7\r\nStatistieken van pingen van 192.168.2.254:\r\nPakketten: verzonden = 4, ontvangen = 4, verloren = 0 (0% verloren)\r\nGeschatte retourtijden in milliseconden:\r\nminimum = 4ms, maximum = 7ms, gemiddeld = 5ms\r\n DomainDNSRegistrationEnabled = FALSE \r\n FullDNSRegistrationEnabled = TRUE \r\n GatewayCostMetric = 20 \r\n Index = 13 \r\n+ IPAddress = 192.168.2.3 (Geslaagd) \r\nPingen naar 192.168.2.3 met 32 bytes gegevens:\r\nAntwoord van 192.168.2.3: bytes=32 tijd<1ms TTL=0\r\nAntwoord van 192.168.2.3: bytes=32 tijd<1ms TTL=0\r\nAntwoord van 192.168.2.3: bytes=32 tijd<1ms TTL=0\r\nAntwoord van 192.168.2.3: bytes=32 tijd<1ms TTL=0\r\nStatistieken van pingen van 192.168.2.3:\r\nPakketten: verzonden = 4, ontvangen = 4, verloren = 0 (0% verloren)\r\nGeschatte retourtijden in milliseconden:\r\nminimum = 0ms, maximum = 0ms, gemiddeld = 0ms\r\n IPConnectionMetric = 20 \r\n IPEnabled = TRUE \r\n IPFilterSecurityEnabled = FALSE \r\n IPSecPermitIPProtocols = 0 \r\n IPSecPermitTCPPorts = 0 \r\n IPSecPermitUDPPorts = 0 \r\n IPSubnet = 255.255.255.0 \r\n IPXEnabled = FALSE \r\n MACAddress = 00:18:F3:CB:36:69 \r\n ServiceName = NVENETFD \r\n SettingID = {99397BA8-ED0F-489C-85D0-BD10CDFF0E1F} \r\n TcpipNetbiosOptions = 0 \r\n WINSEnableLMHostsLookup = TRUE \r\n+ DNS-servers Geslaagd \r\n+ [00000010] Wireless LAN PCI 802.11 b/g adapter WN5301A (Geslaagd) \r\n+ DNSServerSearchOrder = 192.168.2.254 (Geslaagd) \r\nPingen naar 192.168.2.254 met 32 bytes gegevens:\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=5ms TTL=5\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nStatistieken van pingen van 192.168.2.254:\r\nPakketten: verzonden = 4, ontvangen = 4, verloren = 0 (0% verloren)\r\nGeschatte retourtijden in milliseconden:\r\nminimum = 4ms, maximum = 5ms, gemiddeld = 4ms\r\n+ [00000013] NVIDIA nForce Networking Controller (Geslaagd) \r\n+ DNSServerSearchOrder = 192.168.2.254 (Geslaagd) \r\nPingen naar 192.168.2.254 met 32 bytes gegevens:\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=11ms TTL=11\r\nAntwoord van 192.168.2.254: bytes=32 tijd=6ms TTL=6\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nStatistieken van pingen van 192.168.2.254:\r\nPakketten: verzonden = 4, ontvangen = 4, verloren = 0 (0% verloren)\r\nGeschatte retourtijden in milliseconden:\r\nminimum = 4ms, maximum = 11ms, gemiddeld = 6ms \r\n+ Standaardgateways Geslaagd \r\n+ [00000001] HP EN1207D-TX PCI 10/100 Fast Ethernet Adapter (Geslaagd) \r\n+ DefaultIPGateway = 192.168.2.254(Hetzelfde subnet) (Geslaagd) \r\nPingen naar 192.168.2.254 met 32 bytes gegevens:\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nStatistieken van pingen van 192.168.2.254:\r\nPakketten: verzonden = 4, ontvangen = 4, verloren = 0 (0% verloren)\r\nGeschatte retourtijden in milliseconden:\r\nminimum = 4ms, maximum = 4ms, gemiddeld = 4ms\r\n+ [00000010] Wireless LAN PCI 802.11 b/g adapter WN5301A (Geslaagd) \r\n+ DefaultIPGateway = 192.168.2.254(Hetzelfde subnet) (Geslaagd) \r\nPingen naar 192.168.2.254 met 32 bytes gegevens:\r\nAntwoord van 192.168.2.254: bytes=32 tijd=5ms TTL=5\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=6ms TTL=6\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nStatistieken van pingen van 192.168.2.254:\r\nPakketten: verzonden = 4, ontvangen = 4, verloren = 0 (0% verloren)\r\nGeschatte retourtijden in milliseconden:\r\nminimum = 4ms, maximum = 6ms, gemiddeld = 4ms\r\n+ [00000013] NVIDIA nForce Networking Controller (Geslaagd) \r\n+ DefaultIPGateway = 192.168.2.254(Hetzelfde subnet) (Geslaagd) \r\nPingen naar 192.168.2.254 met 32 bytes gegevens:\r\nAntwoord van 192.168.2.254: bytes=32 tijd=6ms TTL=6\r\nAntwoord van 192.168.2.254: bytes=32 tijd=7ms TTL=7\r\nAntwoord van 192.168.2.254: bytes=32 tijd=6ms TTL=6\r\nAntwoord van 192.168.2.254: bytes=32 tijd=6ms TTL=6\r\nStatistieken van pingen van 192.168.2.254:\r\nPakketten: verzonden = 4, ontvangen = 4, verloren = 0 (0% verloren)\r\nGeschatte retourtijden in milliseconden:\r\nminimum = 6ms, maximum = 7ms, gemiddeld = 6ms \r\n- DHCP-servers Mislukt \r\n- [00000001] HP EN1207D-TX PCI 10/100 Fast Ethernet Adapter (Mislukt) \r\n- DHCPServer = 16.92.3.250 (Mislukt) \r\nPingen naar 16.92.3.250 met 32 bytes gegevens:\r\nTime-out bij opdracht.\r\nTime-out bij opdracht.\r\nTime-out bij opdracht.\r\nTime-out bij opdracht.\r\nStatistieken van pingen van 16.92.3.250:\r\nPakketten: verzonden = 4, ontvangen = 0, verloren = 4 (100% verloren)\r\n+ [00000010] Wireless LAN PCI 802.11 b/g adapter WN5301A (Geslaagd) \r\n+ DHCPServer = 192.168.2.254 (Geslaagd) \r\nPingen naar 192.168.2.254 met 32 bytes gegevens:\r\nAntwoord van 192.168.2.254: bytes=32 tijd=5ms TTL=5\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nStatistieken van pingen van 192.168.2.254:\r\nPakketten: verzonden = 4, ontvangen = 4, verloren = 0 (0% verloren)\r\nGeschatte retourtijden in milliseconden:\r\nminimum = 4ms, maximum = 5ms, gemiddeld = 4ms\r\n+ [00000013] NVIDIA nForce Networking Controller (Geslaagd) \r\n+ DHCPServer = 192.168.2.254 (Geslaagd) \r\nPingen naar 192.168.2.254 met 32 bytes gegevens:\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=4ms TTL=4\r\nAntwoord van 192.168.2.254: bytes=32 tijd=5ms TTL=5\r\nStatistieken van pingen van 192.168.2.254:\r\nPakketten: verzonden = 4, ontvangen = 4, verloren = 0 (0% verloren)\r\nGeschatte retourtijden in milliseconden:\r\nminimum = 4ms, maximum = 5ms, gemiddeld = 4ms \r\n+ IP-adres Geslaagd \r\n+ [00000001] HP EN1207D-TX PCI 10/100 Fast Ethernet Adapter (Geslaagd) \r\n+ IPAddress = 192.168.2.4 (Geslaagd) \r\nPingen naar 192.168.2.4 met 32 bytes gegevens:\r\nAntwoord van 192.168.2.4: bytes=32 tijd<1ms TTL=0\r\nAntwoord van 192.168.2.4: bytes=32 tijd<1ms TTL=0\r\nAntwoord van 192.168.2.4: bytes=32 tijd<1ms TTL=0\r\nAntwoord van 192.168.2.4: bytes=32 tijd<1ms TTL=0\r\nStatistieken van pingen van 192.168.2.4:\r\nPakketten: verzonden = 4, ontvangen = 4, verloren = 0 (0% verloren)\r\nGeschatte retourtijden in milliseconden:\r\nminimum = 0ms, maximum = 0ms, gemiddeld = 0ms\r\n+ [00000010] Wireless LAN PCI 802.11 b/g adapter WN5301A (Geslaagd) \r\n+ IPAddress = 192.168.2.4 (Geslaagd) \r\nPingen naar 192.168.2.4 met 32 bytes gegevens:\r\nAntwoord van 192.168.2.4: bytes=32 tijd<1ms TTL=0\r\nAntwoord van 192.168.2.4: bytes=32 tijd<1ms TTL=0\r\nAntwoord van 192.168.2.4: bytes=32 tijd<1ms TTL=0\r\nAntwoord van 192.168.2.4: bytes=32 tijd<1ms TTL=0\r\nStatistieken van pingen van 192.168.2.4:\r\nPakketten: verzonden = 4, ontvangen = 4, verloren = 0 (0% verloren)\r\nGeschatte retourtijden in milliseconden:\r\nminimum = 0ms, maximum = 0ms, gemiddeld = 0ms\r\n+ [00000013] NVIDIA nForce Networking Controller (Geslaagd) \r\n+ IPAddress = 192.168.2.3 (Geslaagd) \r\nPingen naar 192.168.2.3 met 32 bytes gegevens:\r\nAntwoord van 192.168.2.3: bytes=32 tijd<1ms TTL=0\r\nAntwoord van 192.168.2.3: bytes=32 tijd<1ms TTL=0\r\nAntwoord van 192.168.2.3: bytes=32 tijd<1ms TTL=0\r\nAntwoord van 192.168.2.3: bytes=32 tijd<1ms TTL=0\r\nStatistieken van pingen van 192.168.2.3:\r\nPakketten: verzonden = 4, ontvangen = 4, verloren = 0 (0% verloren)\r\nGeschatte retourtijden in milliseconden:\r\nminimum = 0ms, maximum = 0ms, gemiddeld = 0ms \r\n WINS-servers \r\n+ Netwerkclients\r\n\r\n\r\nWeet niet of het relevant is....
Link naar reactie
  • 0
De computer gescanned met HP35 en een aantal Trojans gevonden, die vreemd genoeg niet werden gezien door AVG enz.\r\nHet stapje \"Licentie voor 30-dagen\" lukte niet dus heb ik de gevonden bestanden zelf opgezocht en verwijderd.\r\nHet goede nieuws is dat Internet Explorer het weer doet!!!!!\r\nNa de eerste scan werd ik vanzelf naar de site van Hitman gestuurd.\r\n\r\nIk wil dan ook iederen hartelijk bedanken voor de hulp!!\r\n\r\nTot slot nog, moeten/kunnen de volgende programma\'s weer verwijderd worden of kunnen ze op de PC blijven staan:\r\n- HijjackThis\r\n- Malwarebytes\r\n- Combofix\r\n\r\nGroet, Tijger79
Link naar reactie
  • 0
ComboFix verwijderen\r\nGa naar Start - Uitvoeren en [B]kopïeer[/B] het volgende er in:\r\n[B]Combofix /Uninstall [/B]\r\nKlik daarna op OK.\r\nDit zal combofix deïnstalleren \r\n \r\nDownload of Update [URL=\"http://www.piriform.com/ccleaner/download/slim\"]Ccleaner[/URL]\r\nStart CCleaner op.\r\nRun Ccleaner en klik in de linkse kolom op Opties \r\nSelecteer het tabblad Geavanceerd \r\nHaal het vinkje weg voor Verwijder alleen bestanden in Windows Temp-systeemmap die ouder zijn dan 24 uur \r\nSelecteer het tabblad Instellingen \r\nHaal het vinkje weg bij \"Computer automatisch schoonmaken....\" \r\nKlik in de linkse kolom op Cleaner. \r\nKlik dan achtereenvolgens op Analyseer en Schoonmaken. \r\nKlik vervolgens in de linkse kolom op Register \r\nKlik op Scan naar problemen. \r\nAls er fouten gevonden worden klik je op Herstel geselecteerde problemen en OK \r\n \r\nSysteemherstel\r\nSchakel Systeemherstel uit. Herstart de computer. Schakel Systeemherstel weer in.\r\nKijk [URL=\"http://users.pandora.be/marcvn/spyware/1852808.htm\"]hier [/URL]hoe je je systeemherstel moet uitschakelen.\r\n \r\nHP3.5 kun je weer verwijderen\r\n \r\nHijackThis en MalwareBytes kun je beter op je pc laten staan\r\n \r\nWil je een andere scanner kies dan dan voor Avira Antivir \r\n[url]http://www.avira.com/en/avira-free-antivirus[/url]\r\n\r\nJe Java is verouderd,verwijder de oude versie en download de nieuwste\r\n[url]http://www.java.com/nl/[/url]
Link naar reactie

Om een reactie te plaatsen, moet je eerst inloggen

Gast
Antwoord op deze vraag...

×   Geplakt als verrijkte tekst.   Herstel opmaak

  Er zijn maximaal 75 emoji toegestaan.

×   Je link werd automatisch ingevoegd.   Tonen als normale link

×   Je vorige inhoud werd hersteld.   Leeg de tekstverwerker

×   Je kunt afbeeldingen niet direct plakken. Upload of voeg afbeeldingen vanaf een URL in

×
×
  • Nieuwe aanmaken...