Ga naar inhoud

22 find tapak portal verwijderen.


Aanbevolen berichten

  • Reacties 52
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Beste reacties in dit topic

Geplaatste afbeeldingen

Zoek.exe Version 4.0.0.1 Updated 25-02-2013

Tool run by Compaq on ma 25-02-2013 at 9:12:54,32.

Microsoft® Windows Vista™ Home Basic 6.0.6002 Service Pack 2 x86

Running in: Normal Mode Internet Access Detected

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-279592566-1776291336-1976008511-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully

HKEY_USERS\S-1-5-21-279592566-1776291336-1976008511-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC} deleted successfully

HKEY_USERS\S-1-5-21-279592566-1776291336-1976008511-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-279592566-1776291336-1976008511-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{95324E44-4B0A-47A9-8F77-9C6415E51C29} deleted successfully

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks\{AEB6717E-7E19-11d0-97EE-00C04FD91972} deleted successfully

==== Reset Hosts File ======================

# Copyright © 1993-2006 Microsoft Corp.

#

# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.

#

# This file contains the mappings of IP addresses to host names. Each

# entry should be kept on an individual line. The IP address should

# be placed in the first column followed by the corresponding host name.

# The IP address and the host name should be separated by at least one

# space.

#

# Additionally, comments (such as these) may be inserted on individual

# lines or following the machine name denoted by a '#' symbol.

#

# For example:

#

# 102.54.94.97 rhino.acme.com # source server

# 38.25.63.10 x.acme.com # x client host

127.0.0.1 localhost

::1 localhost

==== Files Recently Created / Modified ======================

====== C:\Windows ====

2013-02-04 14:45:37 515E4684008E955DE0C81E6A7AEA1C2A 306688 ----a-w- C:\Windows\IsUninst.exe

====== C:\Users\Compaq\AppData\Local\Temp ====

====== C:\Windows\system32 =====

2013-02-13 23:14:25 EED68558AAA106535E7290C9A8E0D5A3 2382848 ----a-w- C:\Windows\System32\mshtml.tlb

2013-02-13 23:14:25 A9919376933F7E43F93E5DA1FFBEFC9F 73216 ----a-w- C:\Windows\System32\mshtmled.dll

2013-02-13 23:14:24 CDBFCB9A88E130F1138F80B01C56B680 420864 ----a-w- C:\Windows\System32\vbscript.dll

2013-02-13 23:14:23 F8D269134EEC097B7E47C818AF4862A7 176640 ----a-w- C:\Windows\System32\ieui.dll

2013-02-13 23:14:23 39511E05F37F0BEF8FA3B85386800BB9 65024 ----a-w- C:\Windows\System32\jsproxy.dll

2013-02-13 23:14:22 CBC39CAD3421AB71966BDD98ABF847E0 607744 ----a-w- C:\Windows\System32\msfeeds.dll

2013-02-13 23:14:22 6E14642F79C2510626BA399F9BCC4DE6 142848 ----a-w- C:\Windows\System32\ieUnatt.exe

2013-02-13 23:14:21 B49B56B64F57699A1A663D2CF7D0A56F 1129472 ----a-w- C:\Windows\System32\wininet.dll

2013-02-13 23:14:21 8843B6A1B8E102841B2DFF02805C5CEC 717824 ----a-w- C:\Windows\System32\jscript.dll

2013-02-13 23:14:20 D171EAA745A2C0C583CDDA13D9088EE4 1796096 ----a-w- C:\Windows\System32\iertutil.dll

2013-02-13 23:14:20 C079169E6A07FC4412475C02969EB9CE 1800704 ----a-w- C:\Windows\System32\jscript9.dll

2013-02-13 23:14:20 9352AF851D98380738161620C916A042 231936 ----a-w- C:\Windows\System32\url.dll

2013-02-13 23:14:18 BE157C3800DA3010EFC48280ECF81C16 1103872 ----a-w- C:\Windows\System32\urlmon.dll

2013-02-13 23:14:18 470D8189D7FE9928FFFECBF55AAA3233 1427968 ----a-w- C:\Windows\System32\inetcpl.cpl

2013-02-13 23:14:17 C97434C851C4821BD92D2831FDF1ECBE 12321280 ----a-w- C:\Windows\System32\mshtml.dll

2013-02-13 23:14:15 0E816EA3C5DCE94C95099E8B38E75E67 9738240 ----a-w- C:\Windows\System32\ieframe.dll

2013-02-13 08:42:20 1C1F3014453865E805A8708751743A48 2048512 ----a-w- C:\Windows\System32\win32k.sys

2013-02-13 08:42:18 C43DECDAC58C0A43E0376A216590F40A 1314816 ----a-w- C:\Windows\System32\quartz.dll

2013-02-13 08:42:04 E185428925DBC53CE59B2A5CBA64B837 3602808 ----a-w- C:\Windows\System32\ntkrnlpa.exe

2013-02-13 08:42:04 691F1612558BF6B27F952C4B1073B0D1 3550072 ----a-w- C:\Windows\System32\ntoskrnl.exe

====== C:\Windows\system32\drivers =====

2013-02-13 08:42:17 CD21572F83F7EC6E2C20C465967BEDD9 31232 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys

2013-02-13 08:42:17 3535CD93F944C00F098E73E12EE7FEB6 914792 ----a-w- C:\Windows\System32\drivers\tcpip.sys

====== C:\Windows\Tasks ======

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-02-24 16:05:50 -------- d-----w- C:\Program Files\Trend Micro

2013-02-21 10:30:23 -------- d-----w- C:\Program Files\Bonjour

2013-02-16 18:22:32 -------- d-----w- C:\Program Files\IncrediMail

2013-02-07 15:34:55 -------- d-----w- C:\Program Files\Lexmark 3500-4500 Series

2013-01-30 15:29:24 24576 ----a-w- C:\Program Files\Lexmark 3500-4500 Series(271)

======= C: =====

====== C:\Users\Compaq\AppData\Roaming ======

2013-02-24 13:31:46 -------- d-----w- C:\users\Compaq\AppData\Local\Temp

2013-01-29 08:17:30 -------- d-----w- C:\users\Compaq\AppData\Local\Real

====== C:\Users\Compaq ======

2013-02-24 18:02:44 B8C50314B86427F0C26B4C509D8A020E 64613 ----a-w- C:\Users\Compaq\.recently-used.xbel

2013-02-23 09:01:45 -------- d-----w- C:\Users\Compaq\.Virtualbox.sav

2013-02-23 09:01:09 -------- d-----w- C:\Users\Compaq\youwave

2013-02-21 19:38:48 -------- d-----w- C:\ProgramData\BlueStacks

2013-02-21 18:42:00 DA24ABEBDE71F0FBA51F7F7C78296862 92481 ----a-w- C:\Users\Compaq\final_bstSnapshot_13104.jpg

2013-02-21 18:41:16 8CD11A92E561EE9E05201F9031169698 110362 ----a-w- C:\Users\Compaq\final_bstSnapshot_74277.jpg

2013-02-21 15:09:47 6409CAD442CE10C928BC50B9CF1AB068 91583 ----a-w- C:\Users\Compaq\final_bstSnapshot_41770.jpg

2013-02-21 13:49:10 1188276298D020A71FFD7689B81A199B 98427 ----a-w- C:\Users\Compaq\final_bstSnapshot_41300.jpg

2013-02-21 13:43:41 35475ACB12BEF3268525F3EDE2C26D60 83802 ----a-w- C:\Users\Compaq\final_bstSnapshot_48962.jpg

2013-02-21 13:40:36 3F98724C1CAC264144EDA21CED050172 91720 ----a-w- C:\Users\Compaq\final_bstSnapshot_92857.jpg

2013-02-21 13:40:28 0003EC5B452230E079E96D08774A9262 114139 ----a-w- C:\Users\Compaq\final_bstSnapshot_45383.jpg

2013-02-21 10:47:34 B3F64FB25E2A2B2B687243157FADBA49 91199 ----a-w- C:\Users\Compaq\final_bstSnapshot_77757.jpg

2013-02-21 10:35:59 -------- d-----w- C:\ProgramData\188F1432-103A-4ffb-80F1-36B633C5C9E1

2013-02-21 10:33:03 07D0A71645A2C730108A95D838B687D2 91739 ----a-w- C:\Users\Compaq\final_bstSnapshot_9644.jpg

2013-02-21 10:32:30 29B9A8E0BA7C4FCD5B4FA266976D15E3 103932 ----a-w- C:\Users\Compaq\final_bstSnapshot_39741.jpg

2013-02-21 10:31:39 E1745889A251C82936B3054E1976D910 78033 ----a-w- C:\Users\Compaq\final_bstSnapshot_57353.jpg

2013-02-21 10:09:03 CAE06C341A182601D5866B791FD7B239 124158 ----a-w- C:\Users\Compaq\final_bstSnapshot_94959.jpg

2013-02-21 10:04:12 066B67960F077E9D8E7784EDA692D1D7 78459 ----a-w- C:\Users\Compaq\final_bstSnapshot_78699.jpg

2013-02-21 10:02:36 7E2933699E15CD548ECFB1A29632FEE5 78365 ----a-w- C:\Users\Compaq\final_bstSnapshot_88790.jpg

2013-02-21 10:01:00 ECC31E2F8043D9606F83B87332F72455 102389 ----a-w- C:\Users\Compaq\final_bstSnapshot_29528.jpg

2013-02-21 09:41:47 1484A8AB0D9FC88463804279935EF4E9 99296 ----a-w- C:\Users\Compaq\final_bstSnapshot_37561.jpg

2013-02-21 09:41:35 D450E7FA9CC47CADEF5BECE8960556F2 76804 ----a-w- C:\Users\Compaq\final_bstSnapshot_86319.jpg

2013-02-21 09:40:51 A1AA3D47D4A2B304AD9C11C48002337D 76733 ----a-w- C:\Users\Compaq\final_bstSnapshot_16515.jpg

2013-02-07 15:52:22 83F08B6E11A9F56B1C28F92787DE11A0 687859 ----a-w- C:\ProgramData\SPL42E4.tmp

2013-02-04 10:58:05 CD6235E1BBDD43F4431DE70080DF2C26 398056 ----a-w- C:\ProgramData\SPLE5AD.tmp

2013-02-02 11:58:35 -------- d-----w- C:\ProgramData\Xerox

2013-01-30 15:49:14 -------- d-----w- C:\Users\Compaq\{4f2f8c7e-f45b-4e33-b049-2c7d3a203053}

====== C: exe-files ==

2013-02-25 07:48:10 E8F9516B646ED12FE0FBDD2D65D277C9 544 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-279592566-1776291336-1976008511-1000\$IIUWCFN.exe

2013-02-25 07:47:49 AA3E2A5EB08A36471641B5283DD70F72 1262573 ----a-w- C:\$RECYCLE.BIN\S-1-5-21-279592566-1776291336-1976008511-1000\$RIUWCFN.exe

2013-02-23 09:34:57 92405A3EEB9D74DB7CCFBF32CC720176 53319 ----a-w- C:\ProgramData\Temp\{C59C179C-668D-49A9-B6EA-0121CCFC1243}\PostBuild.exe

2013-02-19 14:48:46 3644168EBD9967E2568ED3E723610B8E 177129 ------r- C:\Program Files\Belastingdienst\Aangifte inkomstenbelasting\2012\ib2012u.exe

=== C: other files ==

2231-04-23 12:00:36 C5334DD82ED64A48168DD324AA5B99D9 237568 ----a-w- C:\Users\Compaq\AppData\Local\Google\Chrome\User Data\Default\Extensions\elchiiiejkobdbblfejjkbphbddgmljf\1.0\CTB.dll

2231-04-23 12:00:36 1A60DDBD05E3018E29075726C2368B13 194048 ----a-w- C:\Users\Compaq\AppData\Local\Google\Chrome\User Data\Default\Extensions\elchiiiejkobdbblfejjkbphbddgmljf\1.0\CrmAdpt.dll

2013-02-24 13:38:16 949AF3E92B8ADF423A222F4A27A41A30 115137 ----a-w- C:\Users\Compaq\AppData\Local\Temp\fbe2808e-2380-4f14-a1fa-3fa9c3a364e8\CliSecureRT.dll

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\Aangifte inkomstenbelasting 2012.lnk - C:\Program Files\Belastingdienst\Aangifte inkomstenbelasting\2012\ib2012.exe

C:\Users\Public\Desktop\IncrediMail.lnk - C:\Program Files\IncrediMail\Bin\IncMail.exe

C:\Users\Public\Desktop\Lexmark Imaging Studio - 3500-4500 Series.LNK - C:\Program Files\Lexmark 3500-4500 Series\App4R.exe

C:\Users\Public\Desktop\RealPlayer.lnk - C:\program files\real\realplayer\RealPlay.exe /launch:desktop

C:\Users\Public\Desktop\Start BlueStacks.lnk - C:\Program Files\BlueStacks\HD-StartLauncher.exe

==== shortcuts in Users Start Menu ======================

C:\Users\Compaq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!

C:\Users\Compaq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!

C:\Users\Compaq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis\HiJackThis.lnk - c:\Users\Compaq\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IncrediMail.lnk - C:\Program Files\IncrediMail\Bin\IncMail.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belastingdienst\Aangifte inkomstenbelasting\2012\Aangifte inkomstenbelasting 2012 Help.lnk - C:\Program Files\Belastingdienst\Aangifte inkomstenbelasting\2012\ib2012.chm

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belastingdienst\Aangifte inkomstenbelasting\2012\Aangifte inkomstenbelasting 2012 verwijderen.lnk - C:\Program Files\Belastingdienst\Aangifte inkomstenbelasting\2012\ib2012u.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belastingdienst\Aangifte inkomstenbelasting\2012\Aangifte inkomstenbelasting 2012.lnk - C:\Program Files\Belastingdienst\Aangifte inkomstenbelasting\2012\ib2012.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Belastingdienst\Aangifte inkomstenbelasting\2012\PC Helpforum - Gratis hulp bij computer problemen - C:\Program Files\Belastingdienst\Aangifte inkomstenbelasting\2012\PC Helpforum - Gratis hulp bij computer problemen

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\BlueStacks\Start BlueStacks.lnk - C:\Program Files\BlueStacks\HD-StartLauncher.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Games\More Games.lnk - C:\Program Files\IncrediMail\Bin\IncrediGamesStart.url

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IncrediMail\IncrediMail Gallery.lnk - C:\Program Files\IncrediMail\Bin\IncrediGalleryStart.url

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IncrediMail\IncrediMail.lnk - C:\Program Files\IncrediMail\Bin\IncMail.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IncrediMail\Letter Creator.lnk - C:\Program Files\IncrediMail\Bin\ImLc.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\IncrediMail\Uninstall IncrediMail.lnk - C:\Program Files\IncrediMail\Bin\ImSetup.exe /uninstallProduct /addon:incredimail

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark 3500-4500 Series\EU Waste Electronics Information.LNK - C:\Windows\System32\spool\drivers\w32x86\3\EU_Waste_Electronic_Information.pdf

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark 3500-4500 Series\Lexmark Cartridge Diagnostic Wizard.LNK -

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark 3500-4500 Series\Lexmark Imaging Studio.LNK - C:\Program Files\Lexmark 3500-4500 Series\App4R.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark 3500-4500 Series\Lexmark Solution Center.LNK - C:\Windows\system32\spool\DRIVERS\W32X86\3\lxdipswx.exe /M=Lexmark 3500-4500 Series /T=100

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark 3500-4500 Series\Release Notes.LNK - C:\Windows\System32\write.exe C:\Windows\system32\spool\DRIVERS\W32X86\3\lxdirme.doc

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark 3500-4500 Series\Uninstall Lexmark 3500-4500 Series.LNK - C:\Program Files\Lexmark 3500-4500 Series\Install\x86\Uninst.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark 3500-4500 Series\User's Guide.LNK - C:\Program Files\Lexmark 3500-4500 Series\LXDIuser.chm

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lexmark 3500-4500 Series\Wireless Configuration Utility.LNK - C:\Program Files\Lexmark 3500-4500 Series\Wireless\lxdiwpss.exe /ini=lxdiina.ini /title="Wireless Configuration Utility"

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks\RealDownloader.lnk - C:\Windows\Installer\{AF7EBCA4-9FAF-4DC8-8D09-67854BB84D34}\recordingmanager.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks\RealPlayer Converter.lnk - C:\Program Files\Real\RealPlayer\realconverter.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks\RealPlayer Trimmer.lnk - C:\Program Files\Real\RealPlayer\realtrimmer.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\RealNetworks\RealPlayer.lnk - C:\Program Files\Real\RealPlayer\realplay.exe /launch:start_menu

==== shortcuts in Quick Launch ======================

C:\Users\Compaq\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\IncrediMail 2.0.lnk - C:\Program Files\IncrediMail\Bin\IncMail.exe

C:\Users\Compaq\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!

==== shortcuts After Repair ======================

C:\Users\Compaq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!

C:\Users\Compaq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia!

C:\Users\Compaq\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe

Link naar reactie
Delen op andere sites

Download DDS van sUBS van één van deze locaties en plaats het op je bureaublad:

DDS - Bleeping Computer download.

DDS - Bleeping Computer download.

DDS - Infospyware.

dds_scr.gif

DDS is een diagnosetool en maakt gebruik van scripts.

Schakel je beveiligings software uit voordat je DDS uitvoert!

Dubbelklik op DDS om de tool te starten.

DDS zal 2 logfiles openen:

* DDS.txt

* Attach.txt

Een scherm vraagt je om beide logjes op te slaan omdat de logjes weg zullen zijn als je ze sluit.

Sla de logjes op bijvoorbeeld op je bureaublad of een andere plaats waar je ze makkelijk terug vind.

Post het DDS.txt logje met je volgende antwoord. De Attach.txt post je alleen wanneer ik hier om vraag.

Link naar reactie
Delen op andere sites

Goedenavond welke moet ik nog meer doen? de info spyware?

- - - Updated - - -

Och zie nu pas dat hij er niet op staat komt er zo aan .

- - - Updated - - -

mPolicies-Explorer: BindDirectlyToPropertySetStorage = dword:0

mPolicies-Explorer: NoDrives = dword:0

mPolicies-System: EnableUIADesktopToggle = dword:0

IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200

IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - c:\program files\windows live\companion\companioncore.dll

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll

IE: {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - c:\program files\pokerstars\PokerStarsUpdate.exe

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}

.

INFO: HKCU has more than 50 listed domains.

If you wish to scan all of them, select the 'Force scan all domains' option.

.

DPF: {888078C6-70B2-4F88-8EE7-1F50DDEA6120} - hxxps://as.photoprintit.de/ips-opdata/activex/ImageUploader6.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

DPF: {D71F9A27-723E-4B8B-B428-B725E47CBA3E} - hxxp://imikimi.com/download/imikimi_plugin_0.5.1.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} - hxxp://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab

TCP: NameServer = 212.54.40.25 212.54.35.25

TCP: Interfaces\{75380268-F390-455C-9CFA-4637BB461275} : DHCPNameServer = 212.54.40.25 212.54.35.25

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll

Notify: igfxcui - igfxdev.dll

AppInit_DLLs= c:\progra~2\browse~1\261123~1.78\{16cdf~1\browse~1.dll

LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg

mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "c:\program files\common files\lightscribe\LSRunOnce.exe"

Hosts: 216.239.32.20 www.google.ae # bck9

Hosts: 216.239.32.20 www.google.at # bck9

Hosts: 216.239.32.20 www.google.be # bck9

Hosts: 216.239.32.20 www.google.ca # bck9

Hosts: 216.239.32.20 www.google.ch # bck9

.

Note: multiple HOSTS entries found. Please refer to Attach.txt

.

============= SERVICES / DRIVERS ===============

.

R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2012-8-30 193552]

R1 bckd;bckd;c:\windows\system32\drivers\bckd.sys [2012-2-13 87312]

R1 MpKsl63c4e92d;MpKsl63c4e92d;c:\programdata\microsoft\microsoft antimalware\definition updates\{53b29f45-4444-4339-a063-c5dd9d347b35}\MpKsl63c4e92d.sys [2013-2-25 29904]

R2 AdobeActiveFileMonitor7.0;Adobe Active File Monitor V7;c:\program files\adobe\photoshop elements 7.0\PhotoshopElementsFileAgent.exe [2008-9-16 169312]

R2 bckwfs;Blue Coat K9 Web Protection;c:\program files\blue coat k9 web protection\k9filter.exe [2012-2-13 1604880]

R2 BstHdAndroidSvc;BlueStacks Android Service;c:\program files\bluestacks\HD-Service.exe [2012-9-24 393080]

R2 BstHdDrv;BlueStacks Hypervisor;c:\program files\bluestacks\HD-Hypervisor-x86.sys [2012-9-24 63864]

R2 EFUploadSrv;ExtraFilm upload service;c:\program files\extrafilm designer nl\EFUploadSrv.exe [2009-7-9 1716224]

R2 ezSharedSvc;Easybits Shared Services for Windows;c:\windows\system32\svchost.exe -k netsvcs [2008-1-21 21504]

R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-21 21504]

R2 lxdi_device;lxdi_device;c:\windows\system32\lxdicoms.exe -service --> c:\windows\system32\lxdicoms.exe -service [?]

R2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2010-10-24 99272]

R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files\sony\pmb\PMBDeviceInfoProvider.exe [2010-11-26 398176]

R2 RealNetworks Downloader Resolver Service;RealNetworks Downloader Resolver Service;c:\program files\realnetworks\realdownloader\rndlresolversvc.exe [2012-11-29 38608]

R2 Recovery Service for Windows;Recovery Service for Windows;c:\program files\sminst\BLService.exe [2008-11-8 365952]

R2 TeamViewer8;TeamViewer 8;c:\program files\teamviewer\version8\TeamViewer_Service.exe [2012-12-31 3467768]

R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\tuneup utilities 2012\TuneUpUtilitiesService32.exe [2011-11-23 1510720]

R3 Com4QLBEx;Com4QLBEx;c:\program files\hewlett-packard\hp quick launch buttons\Com4QLBEx.exe [2008-11-8 193840]

R3 IntcHdmiAddService;Intel® High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [2008-6-29 112128]

R3 NisSrv;Microsoft Netwerkinspectie;c:\program files\microsoft security client\NisSrv.exe [2012-9-12 287824]

R3 OA004Ufd;Creative Camera OA004 Upper Filter Driver;c:\windows\system32\drivers\OA004Ufd.sys [2008-6-3 144672]

R3 OA004Vid;Creative Camera OA004 Function Driver;c:\windows\system32\drivers\OA004Vid.sys [2008-7-17 269760]

R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\tuneup utilities 2012\TuneUpUtilitiesDriver32.sys [2011-11-9 10064]

R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]

S2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;c:\program files\bluestacks\HD-LogRotatorService.exe [2012-9-24 384888]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 lxdiCATSCustConnectService;lxdiCATSCustConnectService;c:\windows\system32\spool\drivers\w32x86\3\lxdiserv.exe [2007-6-11 99248]

S2 Secunia Update Agent;Secunia Update Agent;"c:\program files\secunia\psi\sua.exe" --start-service --> c:\program files\secunia\psi\sua.exe [?]

S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-7-13 160944]

S3 BBSvc;Bing Bar Update Service;c:\program files\microsoft\bingbar\BBSvc.EXE [2011-4-1 183560]

S3 fssfltr;FssFltr;c:\windows\system32\drivers\fssfltr.sys [2012-6-20 39272]

S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2012-3-8 1492840]

S3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\drivers\ssadbus.sys [2012-8-3 121064]

S3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\drivers\ssadmdfl.sys [2012-8-3 12776]

S3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\drivers\ssadmdm.sys [2012-8-3 136808]

S3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\drivers\ssadserd.sys [2012-8-3 114280]

S4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\windows live\mesh\wlcrasvc.exe [2010-9-22 51040]

.

=============== Created Last 30 ================

.

2013-02-25 07:39:48 29904 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{53b29f45-4444-4339-a063-c5dd9d347b35}\MpKsl63c4e92d.sys

2013-02-24 16:05:51 388096 ----a-r- c:\users\compaq\appdata\roaming\microsoft\installer\{45a66726-69bc-466b-a7a4-12fcba4883d7}\HiJackThis.exe

2013-02-24 16:05:50 -------- d-----w- c:\program files\Trend Micro

2013-02-24 13:44:31 6954968 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\{53b29f45-4444-4339-a063-c5dd9d347b35}\mpengine.dll

2013-02-24 13:36:46 -------- d-sh--w- C:\$RECYCLE.BIN

2013-02-24 13:31:46 -------- d-----w- c:\users\compaq\appdata\local\Temp

2013-02-23 09:01:45 -------- d-----w- c:\users\compaq\.Virtualbox.sav

2013-02-23 09:01:09 -------- d-----w- c:\users\compaq\youwave

2013-02-23 08:24:31 6954968 ----a-w- c:\programdata\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll

2013-02-21 19:38:48 -------- d-----w- c:\programdata\BlueStacks

2013-02-21 10:35:59 -------- d-----w- c:\programdata\188F1432-103A-4ffb-80F1-36B633C5C9E1

2013-02-21 10:30:23 -------- d-----w- c:\program files\Bonjour

2013-02-16 18:22:32 -------- d-----w- c:\program files\IncrediMail

2013-02-13 23:13:58 768000 ----a-w- c:\program files\common files\microsoft shared\vgx\VGX.dll

2013-02-13 08:42:20 2048512 ----a-w- c:\windows\system32\win32k.sys

2013-02-13 08:42:18 1314816 ----a-w- c:\windows\system32\quartz.dll

2013-02-13 08:42:17 914792 ----a-w- c:\windows\system32\drivers\tcpip.sys

2013-02-13 08:42:17 31232 ----a-w- c:\windows\system32\drivers\tcpipreg.sys

2013-02-13 08:42:04 3602808 ----a-w- c:\windows\system32\ntkrnlpa.exe

2013-02-13 08:42:04 3550072 ----a-w- c:\windows\system32\ntoskrnl.exe

2013-02-08 14:28:14 16365936 ----a-w- c:\windows\system32\FlashPlayerInstaller.exe

2013-02-07 15:52:22 687859 ----a-w- c:\programdata\SPL42E4.tmp

2013-02-07 15:38:44 113664 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\lxdidrpp.dll

2013-02-07 15:34:59 765952 ----a-w- c:\windows\system32\lxdicomc.dll

2013-02-07 15:34:59 360448 ----a-w- c:\windows\system32\lxdicomm.dll

2013-02-07 15:34:58 77906 ----a-w- c:\windows\system32\lxdicfg.dll

2013-02-07 15:34:58 340912 ----a-w- c:\windows\system32\lxdicfg.exe

2013-02-07 15:34:55 -------- d-----w- c:\program files\Lexmark 3500-4500 Series

2013-02-05 21:11:40 -------- d-----w- C:\aiofw

2013-02-04 14:45:50 565760 ----a-w- c:\windows\system32\MSVCP50.DLL

2013-02-04 14:45:50 -------- d-----w- c:\windows\Profiles

2013-02-04 14:45:37 306688 ----a-w- c:\windows\IsUninst.exe

2013-02-04 10:58:05 398056 ----a-w- c:\programdata\SPLE5AD.tmp

2013-02-02 11:58:35 -------- d-----w- c:\programdata\Xerox

2013-01-30 15:49:14 -------- d-----w- c:\users\compaq\{4f2f8c7e-f45b-4e33-b049-2c7d3a203053}

2013-01-30 15:29:24 24576 ----a-w- c:\program files\Lexmark 3500-4500 Series(271)

2013-01-30 14:53:38 -------- d-----w- C:\lxk3500-4500Patch

2013-01-29 08:17:30 -------- d-----w- c:\users\compaq\appdata\local\Real

2013-01-29 08:12:03 348160 ----a-w- c:\windows\system32\msvcr71.dll

.

==================== Find3M ====================

.

2013-02-23 08:55:27 420944 ----a-w- c:\windows\system32\msvcp100.dll

2013-02-08 14:28:25 74096 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2013-02-08 14:28:25 697712 ----a-w- c:\windows\system32\FlashPlayerApp.exe

2013-01-30 10:53:21 232336 ------w- c:\windows\system32\MpSigStub.exe

2013-01-29 08:12:03 499712 ----a-w- c:\windows\system32\msvcp71.dll

2013-01-08 22:11:21 1800704 ----a-w- c:\windows\system32\jscript9.dll

2013-01-08 22:03:20 1129472 ----a-w- c:\windows\system32\wininet.dll

2013-01-08 22:03:12 1427968 ----a-w- c:\windows\system32\inetcpl.cpl

2013-01-08 21:59:02 142848 ----a-w- c:\windows\system32\ieUnatt.exe

2013-01-08 21:58:29 420864 ----a-w- c:\windows\system32\vbscript.dll

2013-01-08 21:56:23 2382848 ----a-w- c:\windows\system32\mshtml.tlb

2012-12-16 13:12:54 34304 ----a-w- c:\windows\system32\atmlib.dll

2012-12-16 10:50:29 293376 ----a-w- c:\windows\system32\atmfd.dll

2012-12-14 15:49:28 21104 ----a-w- c:\windows\system32\drivers\mbam.sys

2012-12-09 18:55:34 90112 ----a-w- c:\windows\system32\bsrlback.dll

2012-12-09 18:55:34 90112 ----a-w- c:\windows\system32\bsreffs.dll

2012-12-09 18:55:32 81920 ----a-w- c:\windows\system32\bsrgvas.dll

2012-12-09 18:55:32 692224 ----a-w- c:\windows\system32\bsrmgcv.dll

2012-12-09 18:55:32 192512 ----a-w- c:\windows\system32\bsrmgps.dll

2012-12-09 18:55:24 585728 ----a-w- c:\windows\system32\bsratswf.dll

2012-12-09 18:55:24 147456 ----a-w- c:\windows\system32\bsratwmv.dll

.

============= FINISH: 12:56:32,17 ===============

Link naar reactie
Delen op andere sites

  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe
    (hier of hier) kan je lezen hoe je dat doet.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkwaardig probleem.
    
    C:\Users\Compaq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk;p
    shortcutfix;
    C:\Users\Compaq\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk;p
    C:\Users\Compaq\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk;p
    
    


  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post nu de inhoud van het geopende logje in het volgende bericht.

Download MVPS Hosts.

Unzip het programma naar een door u bepaalde locatie.

Windows XP

Klik op mvps.bat en kies voor “uitvoeren” om mvps.bat op te starten (*).

Druk op toets om door te gaan.

Van het bestaande bestand HOSTS op de standaardlocatie C:\windows\system32\drivers\etc wordt een backup gemaakt met de naam HOSTS.MVP

Dan wordt het bestand vervangen door de actuele MVPS Hosts-versie.

(*) Windows Vista en Windows 7 gebruikers moeten rechtsklikken op mvps.bat en kiezen voor ”uitvoeren als administrator” om mvps.bat op te starten.

aangepast door juisterr
Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.