Destel
-
Items
22 -
Registratiedatum
-
Laatst bezocht
Destel's prestaties
-
Dag Jean-Pierre, Heb mijn PC opengedaan en het stof verwijderd. Daarna weer Speccy laten lopen en de temperatuur van de grafische kaart gaf 59° aan (PC stond al meer dan 3 dagen af!). Probleem is nu dat ik geen verbinding meer heb met internet, zodat ik logje niet kan aanmaken. Dit bericht verzend ik dan ook van een andere PC.
-
De map C:\Windows\Startup(disabled) is leeg. Weet niet wat er ooit zou in gestaan hebben, sorry. ---------- Post toegevoegd om 08:18 ---------- Vorige post was om 08:17 ---------- En inderdaad, in die 3 minuten zijn er geen zware grafische programma's gedraaid.
-
Hiep Hoi, Ik net even geprobeerd om Combofix eens te draaien, en jawel, hij doet het weer. Hieronder vind je dan ook het (volledig ditmaal) logbestand: ComboFix 11-09-26.01 - Snoks 26/09/2011 18:02:51.2.4 - x86 NETWORK Microsoft Windows 7 Ultimate 6.1.7600.0.1252.32.1033.18.3327.2784 [GMT 2:00] Gestart vanuit: c:\users\Snoks\Desktop\ComboFix.exe SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Nieuw herstelpunt werd aangemaakt . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\users\Snoks\AppData\Roaming\dach100.dll . ---- Voorgaande Run ------- . c:\program files\AutocompletePro\chrome\autocompleteprochrome.crx c:\program files\AutocompletePro\FireFoxExtension.exe c:\program files\AutocompletePro\InstTracker.exe c:\program files\AutocompletePro\support@predictad.com\chrome.manifest c:\program files\AutocompletePro\support@predictad.com\chrome\content\browserOverlay.xul c:\program files\AutocompletePro\support@predictad.com\chrome\content\options.js c:\program files\AutocompletePro\support@predictad.com\chrome\content\options.xul c:\program files\AutocompletePro\support@predictad.com\chrome\content\utils.js c:\program files\AutocompletePro\support@predictad.com\defaults\preferences\predictad.js c:\program files\AutocompletePro\support@predictad.com\install.rdf c:\program files\AutocompletePro\unins000.dat c:\program files\AutocompletePro\unins000.exe c:\users\Snoks\AppData\Roaming\_Dream_Chronicles_-_The_Book_of_Air_Collector_s_Edition__justforfun-games.com.exe c:\users\Snoks\AppData\Roaming\completescan c:\users\Snoks\AppData\Roaming\HdO_Adventure_Secrets_of_the_Vatican___justforfun-games.com.exe c:\users\Snoks\AppData\Roaming\inst.exe c:\users\Snoks\AppData\Roaming\install c:\users\Snoks\AppData\Roaming\Snokslog.dat c:\users\Snoks\Documents\58.png c:\windows\system32\drivers\hwinterface.sys c:\windows\system32\mfc100deu.dll c:\windows\unin0413.exe E:\autorun.inf . . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Legacy_hwinterface -------\Service_hwinterface . . (((((((((((((((((((( Bestanden Gemaakt van 2011-08-26 to 2011-09-26 )))))))))))))))))))))))))))))) . . 2011-09-26 16:10 . 2011-09-26 16:10 -------- d-----w- c:\users\Snoks\AppData\Local\temp 2011-09-26 15:19 . 2011-09-26 15:19 -------- d-----w- c:\windows\system32\PolarClock3 dir 2011-09-26 12:40 . 2011-09-26 12:40 -------- d-----w- c:\windows\system32\Adobe 2011-09-26 11:09 . 2011-09-26 15:19 201728 ----a-w- c:\windows\system32\PolarClock3.scr 2011-09-26 10:08 . 2011-09-26 10:08 -------- d-----w- c:\windows\Startup (disabled) 2011-09-26 09:15 . 2011-09-26 10:03 -------- d-----w- c:\program files\Dachshund Software 2011-09-19 15:26 . 2009-07-20 21:48 485920 ----a-w- c:\windows\system32\nvuninst.exe 2011-09-19 15:26 . 2008-09-28 22:00 453152 ----a-w- c:\windows\system32\nvusmb.exe 2011-09-18 12:00 . 2011-09-18 12:00 -------- d-----w- c:\program files\AIDA32 - Enterprise System Information 2011-09-18 11:12 . 2011-09-18 11:12 -------- d-----w- c:\programdata\Symantec 2011-09-18 10:20 . 2011-09-18 10:20 -------- d-----w- c:\program files\Speccy 2011-09-18 09:18 . 2011-09-18 09:18 -------- d-----w- c:\program files\MSI 2011-09-18 03:36 . 2011-09-18 03:36 -------- d-----w- c:\users\Snoks\AppData\Roaming\ExtremeCopy 2011-09-18 03:35 . 2011-09-18 03:35 -------- d-----w- c:\program files\Easersoft 2011-09-17 09:13 . 2011-09-17 09:13 -------- d-----w- c:\program files\AVIRA 2011-09-16 09:53 . 2011-02-18 19:27 44544 ----a-w- c:\windows\system32\msxml4a.dll 2011-09-16 09:53 . 2011-09-16 09:53 -------- d-----w- c:\program files\File Recover 2011-09-16 08:12 . 2011-09-16 08:12 87552 ----a-w- c:\windows\system32\wudriver.dll 2011-09-16 08:12 . 2011-09-16 08:12 575704 ----a-w- c:\windows\system32\wuapi.dll 2011-09-16 08:12 . 2011-09-16 08:12 35552 ----a-w- c:\windows\system32\wups.dll 2011-09-16 08:12 . 2011-09-16 08:12 33792 ----a-w- c:\windows\system32\wuapp.exe 2011-09-16 08:12 . 2011-09-16 08:12 171608 ----a-w- c:\windows\system32\wuwebv.dll 2011-09-16 08:12 . 2011-09-16 08:12 53472 ----a-w- c:\windows\system32\wuauclt.exe 2011-09-16 08:12 . 2011-09-16 08:12 44768 ----a-w- c:\windows\system32\wups2.dll 2011-09-16 08:12 . 2011-09-16 08:12 2421760 ----a-w- c:\windows\system32\wucltux.dll 2011-09-16 08:12 . 2011-09-16 08:12 1929952 ----a-w- c:\windows\system32\wuaueng.dll 2011-09-15 11:47 . 2011-09-17 07:02 -------- d-----w- c:\program files\Registry Easy 2011-09-15 11:28 . 2011-09-15 11:28 -------- d-----w- c:\programdata\Kaspersky Lab 2011-09-15 11:27 . 2011-09-15 11:27 -------- d-----w- C:\AIO AV TOOLKIT 2011-09-15 07:52 . 2011-09-15 07:52 -------- d-----w- c:\users\Snoks\AppData\Roaming\AVG2012 2011-09-15 07:51 . 2011-09-20 09:14 -------- d-----w- c:\programdata\AVG2012 2011-09-15 07:51 . 2011-09-20 08:59 -------- d-----w- c:\windows\system32\drivers\AVG 2011-09-15 07:51 . 2011-09-15 07:51 -------- d-----w- c:\program files\AVG 2011-09-15 07:50 . 2011-09-15 07:50 -------- d--h--w- c:\programdata\Common Files 2011-09-15 07:45 . 2011-09-20 09:00 -------- d-----w- c:\programdata\MFAData 2011-09-14 13:56 . 2011-09-14 13:59 -------- d-----w- c:\users\Snoks\AppData\Roaming\Registry Mechanic 2011-09-14 13:53 . 2010-09-16 09:26 37336 ----a-w- c:\windows\system32\CleanMFT32.exe 2011-09-14 13:53 . 2008-09-17 19:17 658432 ----a-w- c:\windows\system32\MSCOMCT2.OCX 2011-09-14 13:53 . 2008-04-02 13:54 1101824 ----a-w- c:\windows\system32\UniBox210.ocx 2011-09-14 13:53 . 2008-04-02 13:53 212992 ----a-w- c:\windows\system32\UniBoxVB12.ocx 2011-09-14 13:53 . 2008-04-02 13:53 880640 ----a-w- c:\windows\system32\UniBox10.ocx 2011-09-14 13:53 . 2004-08-04 05:00 506368 ----a-w- c:\windows\system32\msxml.dll 2011-09-14 13:53 . 2011-09-14 13:53 -------- d-----w- c:\program files\Common Files\PC Tools 2011-09-14 09:32 . 2011-09-01 11:29 31552 ----a-w- c:\windows\system32\TURegOpt.exe 2011-09-14 09:32 . 2011-09-01 11:19 21312 ----a-w- c:\windows\system32\authuitu.dll 2011-09-14 09:32 . 2011-09-01 11:18 29504 ----a-w- c:\windows\system32\uxtuneup.dll 2011-09-14 09:32 . 2011-09-14 09:32 -------- d-----w- c:\users\Snoks\AppData\Roaming\TuneUp Software 2011-09-14 09:32 . 2011-09-15 15:09 -------- d-----w- c:\program files\TuneUp Utilities 2011 2011-09-14 09:32 . 2011-09-14 09:41 -------- d-----w- c:\programdata\TuneUp Software 2011-09-14 09:32 . 2011-09-14 09:32 -------- d-sh--w- c:\programdata\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16} 2011-09-13 18:06 . 2011-09-13 18:06 -------- d-----w- c:\users\Snoks\AppData\Roaming\OpenOffice.org 2011-09-13 17:59 . 2011-09-13 17:59 -------- d-----w- c:\program files\Common Files\Java 2011-09-13 17:59 . 2011-09-13 17:59 472808 ----a-w- c:\windows\system32\deployJava1.dll 2011-09-13 17:59 . 2011-09-13 17:59 472808 ----a-w- c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll 2011-09-13 17:59 . 2011-09-13 17:59 -------- d-----w- c:\program files\Java 2011-09-13 08:40 . 2011-08-12 02:44 7152464 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{53E6E166-E7FE-4F77-B817-41B611E5FDB7}\mpengine.dll 2011-09-10 20:11 . 2011-09-10 20:11 -------- d-----w- c:\program files\LopeSoft 2011-09-01 05:22 . 2011-09-01 05:22 -------- d-----w- c:\users\Snoks\AppData\Roaming\casualArts 2011-09-01 05:22 . 2011-09-01 05:22 -------- d-----w- c:\programdata\casualArts 2011-08-31 06:15 . 2011-08-31 06:15 -------- d-----w- c:\programdata\Desktop Gaming 2011-08-31 06:15 . 2011-08-31 06:15 -------- d-----w- c:\program files\Crime Solitaire 2011-08-28 07:31 . 2011-08-28 07:31 -------- d-----w- C:\TMOTM 2011-08-28 07:31 . 2011-08-28 08:08 -------- d-----w- c:\program files\Mystery of the Mummy . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-09-26 11:47 . 2011-05-19 10:01 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-08-31 15:00 . 2010-09-03 15:38 22216 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-08-22 13:45 . 2010-06-24 09:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2011-07-22 02:54 . 2011-08-10 05:28 1797632 ----a-w- c:\windows\system32\jscript9.dll 2011-07-22 02:48 . 2011-08-10 05:28 1126912 ----a-w- c:\windows\system32\wininet.dll 2011-07-22 02:44 . 2011-08-10 05:28 2382848 ----a-w- c:\windows\system32\mshtml.tlb 2011-07-16 04:37 . 2011-08-10 05:18 169984 ----a-w- c:\windows\system32\winsrv.dll 2011-07-16 04:34 . 2011-08-10 05:18 290816 ----a-w- c:\windows\system32\KernelBase.dll 2011-07-16 04:31 . 2011-08-10 05:18 271360 ----a-w- c:\windows\system32\conhost.exe 2011-07-16 04:19 . 2011-08-10 05:18 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 4096 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 3584 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 3072 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2011-07-16 04:19 . 2011-08-10 05:18 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll 2011-07-16 02:21 . 2011-08-10 05:18 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll 2011-07-16 02:21 . 2011-08-10 05:18 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2011-07-16 02:21 . 2011-08-10 05:18 3584 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2011-07-16 02:21 . 2011-08-10 05:18 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll 2011-07-09 04:30 . 2011-08-24 06:52 2048 ----a-w- c:\windows\system32\tzres.dll 2011-07-09 02:26 . 2011-08-10 05:18 222720 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys 2011-09-08 07:40 . 2011-03-30 16:03 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Rainlendar2"="c:\program files\Rainlendar2\Rainlendar2.exe" [2010-07-11 2199040] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "WinPatrol"="c:\program files\BillP Studios\WinPatrol\winpatrol.exe" [2011-05-15 325512] . c:\users\Snoks\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ AntiCrash.lnk - c:\program files\Dachshund Software\AntiCrash\AntiCrash.exe [2002-12-17 2301798] Hare.lnk - c:\program files\Dachshund Software\Hare\Hare.exe [2002-9-21 1874381] Zoom.lnk - c:\program files\Dachshund Software\Zoom\Zoom.exe [2002-9-21 1446302] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) . [hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler] "{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "c:\program files\Stardock\Fences\FencesMenu.dll" [2010-06-22 202088] . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "aux2"=wdmaud.drv . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer] @="Service" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SolutoService] @="Service" HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer . R0 PCGenFAM;PCGenFAM;c:\windows\system32\DRIVERS\PCGenFAM.sys [2010-11-01 181704] R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-09-03 691696] R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152] R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-10-07 369256] R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [2011-09-01 1526080] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-08-31 22216] R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208] R3 MSI_MSIBIOS_010507;MSI_MSIBIOS_010507;c:\program files\MSI\Live Update 5\msibios32_100507.sys [x] R3 NTIOLib_1_0_4;NTIOLib_1_0_4;c:\program files\MSI\Live Update 5\NTIOLib.sys [x] R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000] R3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [2010-09-22 47360] R3 speccy;speccy;c:\users\Snoks\AppData\Local\Temp\a5e5c489-4274-4451-b753-a4a3bb74700e [x] R3 TBIMount;TBIMount;c:\windows\System32\drivers\tbimount.sys [2010-09-09 87648] R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys [2011-06-06 10064] R4 PCAutoShutdown_Service;PCAutoShutdown_Service;c:\program files\PC Auto Shutdown\ShutdownService.exe [2011-02-16 441624] R4 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service;c:\program files\Common Files\PC Tools\sMonitor\StartManSvc.exe [2011-01-28 632792] R4 SolutoService;Soluto PCGenome Core Service;c:\program files\Soluto\SolutoService.exe [2010-11-01 331296] R4 SolutoUpdate;Soluto Auto Update Service;c:\programdata\Soluto\Update\SolutoUpdateService.exe [2010-11-01 131104] S0 phylock;phylock;c:\windows\system32\drivers\phylock.sys [2010-06-08 20960] S1 FNETURPX;FNETURPX;c:\windows\system32\drivers\FNETURPX.SYS [2011-03-28 7936] S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128] S3 FNETTBOH;FNETTBOH;c:\windows\system32\drivers\FNETTBOH.SYS [2011-03-28 23680] S3 netr28u;RT2870 USB Extensible Wireless LAN Card Driver;c:\windows\system32\DRIVERS\netr28u.sys [2009-05-25 734208] S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336] . . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] WindowsMobile REG_MULTI_SZ wcescomm rapimgr LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr . HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs UxTuneUp . Inhoud van de 'Gedeelde Taken' map . 2011-08-07 c:\windows\Tasks\Ad-Aware Update (Weekly).job - c:\program files\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2011-08-10 15:37] . 2011-09-04 c:\windows\Tasks\GBM - Back-uptaak met eenvoudige indeling-Volledig.job - c:\program files\LaCie\Genie Backup Assistant\GBM8.exe [2011-03-28 01:57] . 2011-09-14 c:\windows\Tasks\RMSchedule.job - c:\program files\Registry Mechanic\RegMech.exe [2011-09-14 08:02] . 2011-09-15 c:\windows\Tasks\SidebarExecute.job - c:\program files\Windows Sidebar\sidebar.exe [2009-07-13 01:14] . . ------- Bijkomende Scan ------- . uDefault_Search_URL = hxxp://www.google.com/ie uInternet Settings,ProxyOverride = *.local uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: &Verzenden naar OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105 IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000 TCP: DhcpNameServer = 195.130.131.2 195.130.130.130 FF - ProfilePath - c:\users\Snoks\AppData\Roaming\Mozilla\Firefox\Profiles\ogrqmx0q.default\ FF - prefs.js: browser.search.defaulturl - hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q= FF - prefs.js: browser.search.selectedEngine - Google FF - prefs.js: browser.startup.homepage - hxxp://nl.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:nl:official FF - prefs.js: keyword.URL - hxxp://www.bing.com/search?FORM=WLETDF&PC=WLEM&q= FF - prefs.js: network.proxy.type - 0 . - - - - ORPHANS VERWIJDERD - - - - . AddRemove-Adobe Flash Player Plugin - c:\windows\system32\Macromed\Flash\FlashUtil10v_Plugin.exe AddRemove-AutocompletePro3_is1 - c:\program files\AutocompletePro\unins000.exe AddRemove-SUCCES ADRESMANAGER DE LUXE - c:\windows\unin0413.exe . . . [HKEY_LOCAL_MACHINE\system\ControlSet001\services\speccy] "ImagePath"="\??\c:\users\Snoks\AppData\Local\Temp\a5e5c489-4274-4451-b753-a4a3bb74700e" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System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system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security] @Denied: (Full) (Everyone) . Voltooingstijd: 2011-09-26 18:13:09 ComboFix-quarantined-files.txt 2011-09-26 16:13 . Pre-Run: 751.596.982.272 bytes free Post-Run: 751.597.096.960 bytes beschikbaar . - - End Of File - - 421422B30AF1D040D3A713E80E332528 Hopelijk kan dit een redding betekenen! Op hoop van zegen.
-
Heb later ook eens geprobeerd deze scan in 'normale modus' uit te voeren, maar aangezien m'n PC slechts 3 minuten actief blijft kan deze test niet volledig uitgevoerd worden (slechts 33%).
-
Hey Jean-Pierre, Ik heb deze scan uitgevoerd (weliswaar in veilige modus) en kreeg na de scan de melding: Er zijn geen schendingen van de integriteit gevonden. Dit klinkt positief natuurlijk. Tenzij ...
-
Op mijn C:-schijf heb in nog 700Gb over (van 1 Tb) en op mijn externe schijf heb ik nog 1.5Tb (2Tb totaal). Ik zie wel dat er een partitie verdwenen is (waar volgens mij al een backup op stond). Hoe neem ik het best een backup naar mijn externe schijf? Moet dit via een of ander programma of kan dit rechtstreeks (waar ik zo'n beetje schrik van heb, gezien voorgaande)?
-
Dag Jean-Pierre, Ik heb gedaan wat je me vroeg (heeft wel 2 uur geduurd), maar ik zie geen verandering. Hopelijk is m'n PC nog te redden.
-
Bug Check String: Kernel_mode_exception_not_handled Bug Check Code: 0x1000008e Parameter 1: 0x0000005 Parameter 2: 0x8be9c487 Parameter 3: 0x99e0af7c Parameter 4: 0x00000000 Caused by driver: ataport.sys datum: 17/09/2011 16:32
-
Spijtig genoeg lukt het mij niet om Combofix nog eens te runnen. Na enkele seconden verschijnt een blauw scherm en start de PC weer op (zelfs in veilige modus).
-
Hoi, Combofix heeft zijn werk niet kunnen beëindigen. Tijdens het aanmaken van het logbestand is de PC in een blauw scherm veranderd. Er werd dus geen log aangemaakt. Als ik dan Combofix opnieuw wil laten werken, krijg ik weer een blauw scherm. Wat wel positief is, is dat ik nu wel een bureaublad krijg. ---------- Post toegevoegd om 11:57 ---------- Vorige post was om 11:48 ---------- Sorry, ik ben dus echt wel een beginner! Het bestand stond in de map van Combofix en niet onder de C:. Mijn excuses!!!! Hier volgt het: ComboFix 11-09-19.05 - Snoks 20/09/2011 11:05:30.1.4 - x86 NETWORK Microsoft Windows 7 Ultimate 6.1.7600.0.1252.32.1033.18.3327.2596 [GMT 2:00] Gestart vanuit: C:\Users\Snoks\Desktop\ComboFix.exe AV: AVG Anti-Virus 2012 *Enabled/Outdated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0} SP: AVG Anti-Virus 2012 *Enabled/Outdated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} * Nieuw herstelpunt werd aangemaakt (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) C:\Program Files\AutocompletePro C:\Program Files\AutocompletePro\chrome\autocompleteprochrome.crx C:\Program Files\AutocompletePro\FireFoxExtension.exe C:\Program Files\AutocompletePro\InstTracker.exe C:\Program Files\AutocompletePro\support@predictad.com\chrome.manifest C:\Program Files\AutocompletePro\support@predictad.com\chrome\content\browserOverlay.xul C:\Program Files\AutocompletePro\support@predictad.com\chrome\content\options.js C:\Program Files\AutocompletePro\support@predictad.com\chrome\content\options.xul C:\Program Files\AutocompletePro\support@predictad.com\chrome\content\utils.js C:\Program Files\AutocompletePro\support@predictad.com\defaults\preferences\predictad.js C:\Program Files\AutocompletePro\support@predictad.com\install.rdf C:\Program Files\AutocompletePro\unins000.dat C:\Program Files\AutocompletePro\unins000.exe C:\Users\Snoks\AppData\Roaming\_Dream_Chronicles_-_The_Book_of_Air_Collector_s_Edition__justforfun-games.com.exe C:\Users\Snoks\AppData\Roaming\completescan C:\Users\Snoks\AppData\Roaming\HdO_Adventure_Secrets_of_the_Vatican___justforfun-games.com.exe C:\Users\Snoks\AppData\Roaming\inst.exe C:\Users\Snoks\AppData\Roaming\install C:\Users\Snoks\AppData\Roaming\Snokslog.dat C:\Users\Snoks\Documents\58.png C:\Windows\system32\drivers\hwinterface.sys C:\Windows\system32\install C:\Windows\system32\mfc100deu.dll C:\Windows\unin0413.exe C:\Windows\XSxS E:\autorun.inf ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_hwinterface -------\Service_hwinterface (((((((((((((((((((( Bestanden Gemaakt van 2011-08-20 to 2011-09-20 )))))))))))))))))))))))))))))) 2011-09-19 15:26:19 . 2009-07-20 21:48:34 485920 ----a-w- C:\Windows\system32\nvuninst.exe 2011-09-19 15:26:19 . 2008-09-28 22:00:00 453152 ----a-w- C:\Windows\system32\nvusmb.exe 2011-09-18 12:00:07 . 2011-09-18 12:00:08 -------- d-----w- C:\Program Files\AIDA32 - Enterprise System Information 2011-09-18 11:12:20 . 2011-09-18 11:12:20 -------- d-----w- C:\ProgramData\Symantec 2011-09-18 10:20:19 . 2011-09-18 10:20:20 -------- d-----w- C:\Program Files\Speccy 2011-09-18 09:18:58 . 2011-09-18 09:18:58 -------- d-----w- C:\Program Files\MSI 2011-09-18 03:36:37 . 2011-09-18 03:36:37 -------- d-----w- C:\Users\Snoks\AppData\Roaming\ExtremeCopy 2011-09-18 03:35:34 . 2011-09-18 03:35:34 -------- d-----w- C:\Program Files\Easersoft 2011-09-17 09:13:27 . 2011-09-17 09:13:27 -------- d-----w- C:\Program Files\AVIRA 2011-09-16 09:53:39 . 2011-02-18 19:27:48 44544 ----a-w- C:\Windows\system32\msxml4a.dll 2011-09-16 09:53:38 . 2011-09-16 09:53:43 -------- d-----w- C:\Program Files\File Recover 2011-09-16 08:12:40 . 2011-09-16 08:12:40 87552 ----a-w- C:\Windows\system32\wudriver.dll 2011-09-16 08:12:40 . 2011-09-16 08:12:40 575704 ----a-w- C:\Windows\system32\wuapi.dll 2011-09-16 08:12:40 . 2011-09-16 08:12:40 35552 ----a-w- C:\Windows\system32\wups.dll 2011-09-16 08:12:30 . 2011-09-16 08:12:30 33792 ----a-w- C:\Windows\system32\wuapp.exe 2011-09-16 08:12:30 . 2011-09-16 08:12:30 171608 ----a-w- C:\Windows\system32\wuwebv.dll 2011-09-16 08:12:24 . 2011-09-16 08:12:24 53472 ----a-w- C:\Windows\system32\wuauclt.exe 2011-09-16 08:12:24 . 2011-09-16 08:12:24 44768 ----a-w- C:\Windows\system32\wups2.dll 2011-09-16 08:12:24 . 2011-09-16 08:12:24 2421760 ----a-w- C:\Windows\system32\wucltux.dll 2011-09-16 08:12:24 . 2011-09-16 08:12:24 1929952 ----a-w- C:\Windows\system32\wuaueng.dll 2011-09-15 11:47:13 . 2011-09-17 07:02:58 -------- d-----w- C:\Program Files\Registry Easy 2011-09-15 11:28:40 . 2011-09-15 11:28:45 -------- d-----w- C:\ProgramData\Kaspersky Lab 2011-09-15 11:27:44 . 2011-09-15 11:27:54 -------- d-----w- C:\AIO AV TOOLKIT 2011-09-15 07:52:26 . 2011-09-15 07:52:26 -------- d-----w- C:\Users\Snoks\AppData\Roaming\AVG2012 2011-09-15 07:51:39 . 2011-09-20 09:14:25 -------- d-----w- C:\ProgramData\AVG2012 2011-09-15 07:51:39 . 2011-09-20 08:59:56 -------- d-----w- C:\Windows\system32\drivers\AVG 2011-09-15 07:51:32 . 2011-09-15 07:51:32 -------- d-----w- C:\Program Files\AVG 2011-09-15 07:50:07 . 2011-09-15 07:50:07 -------- d--h--w- C:\ProgramData\Common Files 2011-09-15 07:45:38 . 2011-09-20 09:00:06 -------- d-----w- C:\ProgramData\MFAData 2011-09-14 13:56:44 . 2011-09-14 13:59:07 -------- d-----w- C:\Users\Snoks\AppData\Roaming\Registry Mechanic 2011-09-14 13:53:47 . 2010-09-16 09:26:02 37336 ----a-w- C:\Windows\system32\CleanMFT32.exe 2011-09-14 13:53:47 . 2008-09-17 19:17:48 658432 ----a-w- C:\Windows\system32\MSCOMCT2.OCX 2011-09-14 13:53:47 . 2008-04-02 13:54:20 1101824 ----a-w- C:\Windows\system32\UniBox210.ocx 2011-09-14 13:53:47 . 2008-04-02 13:53:50 212992 ----a-w- C:\Windows\system32\UniBoxVB12.ocx 2011-09-14 13:53:47 . 2008-04-02 13:53:36 880640 ----a-w- C:\Windows\system32\UniBox10.ocx 2011-09-14 13:53:47 . 2004-08-04 05:00:00 506368 ----a-w- C:\Windows\system32\msxml.dll 2011-09-14 13:53:45 . 2011-09-14 13:53:47 -------- d-----w- C:\Program Files\Common Files\PC Tools 2011-09-14 09:32:48 . 2011-09-01 11:29:56 31552 ----a-w- C:\Windows\system32\TURegOpt.exe 2011-09-14 09:32:47 . 2011-09-01 11:19:18 21312 ----a-w- C:\Windows\system32\authuitu.dll 2011-09-14 09:32:47 . 2011-09-01 11:18:56 29504 ----a-w- C:\Windows\system32\uxtuneup.dll 2011-09-14 09:32:42 . 2011-09-14 09:32:42 -------- d-----w- C:\Users\Snoks\AppData\Roaming\TuneUp Software 2011-09-14 09:32:41 . 2011-09-15 15:09:38 -------- d-----w- C:\Program Files\TuneUp Utilities 2011 2011-09-14 09:32:37 . 2011-09-14 09:41:55 -------- d-----w- C:\ProgramData\TuneUp Software 2011-09-14 09:32:33 . 2011-09-14 09:32:33 -------- d-sh--w- C:\ProgramData\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16} 2011-09-13 18:06:24 . 2011-09-13 18:06:24 -------- d-----w- C:\Users\Snoks\AppData\Roaming\OpenOffice.org 2011-09-13 17:59:56 . 2011-09-13 17:59:56 -------- d-----w- C:\Program Files\Common Files\Java 2011-09-13 17:59:47 . 2011-09-13 17:59:28 472808 ----a-w- C:\Windows\system32\deployJava1.dll 2011-09-13 17:59:47 . 2011-09-13 17:59:28 472808 ----a-w- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll 2011-09-13 17:59:24 . 2011-09-13 17:59:24 -------- d-----w- C:\Program Files\Java 2011-09-13 08:40:08 . 2011-08-12 02:44:27 7152464 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{53E6E166-E7FE-4F77-B817-41B611E5FDB7}\mpengine.dll 2011-09-10 20:11:23 . 2011-09-10 20:11:23 -------- d-----w- C:\Program Files\LopeSoft 2011-09-01 05:22:30 . 2011-09-01 05:22:30 -------- d-----w- C:\Users\Snoks\AppData\Roaming\casualArts 2011-09-01 05:22:30 . 2011-09-01 05:22:30 -------- d-----w- C:\ProgramData\casualArts 2011-08-31 06:15:37 . 2011-08-31 06:15:37 -------- d-----w- C:\ProgramData\Desktop Gaming 2011-08-31 06:15:00 . 2011-08-31 06:15:05 -------- d-----w- C:\Program Files\Crime Solitaire 2011-08-28 07:31:55 . 2011-08-28 07:31:55 -------- d-----w- C:\TMOTM 2011-08-28 07:31:02 . 2011-08-28 08:08:32 -------- d-----w- C:\Program Files\Mystery of the Mummy 2011-08-27 08:16:45 . 2011-08-27 08:16:45 -------- d-----w- C:\ProgramData\ICON Games 2011-08-27 08:15:34 . 2011-08-27 08:15:35 -------- d-----w- C:\Program Files\Mahjong Max 2011-08-24 19:48:29 . 2011-08-24 19:48:29 -------- d-----w- C:\Users\Snoks\AppData\Roaming\NVIDIA 2011-08-24 08:49:07 . 2011-08-24 08:49:07 -------- d-----w- C:\Users\Snoks\AppData\Roaming\Casual Box 2011-08-24 06:52:27 . 2011-07-09 04:30:52 2048 ----a-w- C:\Windows\system32\tzres.dll 2011-08-23 10:15:34 . 2011-08-23 10:15:34 -------- d-----w- C:\Users\Snoks\AppData\Roaming\Written-Legends-Nightmare-at-Sea-Strategy-Guide . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) 2011-08-31 15:00:50 . 2010-09-03 15:38:18 22216 ----a-w- C:\Windows\system32\drivers\mbam.sys 2011-08-22 13:45:15 . 2010-06-24 09:33:56 18328 ----a-w- C:\ProgramData\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2011-08-18 06:11:36 . 2011-05-19 10:01:42 404640 ----a-w- C:\Windows\system32\FlashPlayerCPLApp.cpl 2011-07-22 02:54:43 . 2011-08-10 05:28:02 1797632 ----a-w- C:\Windows\system32\jscript9.dll 2011-07-22 02:48:26 . 2011-08-10 05:28:02 1126912 ----a-w- C:\Windows\system32\wininet.dll 2011-07-22 02:44:36 . 2011-08-10 05:28:04 2382848 ----a-w- C:\Windows\system32\mshtml.tlb 2011-07-16 04:37:32 . 2011-08-10 05:18:44 169984 ----a-w- C:\Windows\system32\winsrv.dll 2011-07-16 04:34:28 . 2011-08-10 05:18:44 290816 ----a-w- C:\Windows\system32\KernelBase.dll 2011-07-16 04:31:12 . 2011-08-10 05:18:45 271360 ----a-w- C:\Windows\system32\conhost.exe 2011-07-16 04:19:58 . 2011-08-10 05:18:44 5120 ---ha-w- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 4608 ---ha-w- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 4096 ---ha-w- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 4096 ---ha-w- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 4096 ---ha-w- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 4096 ---ha-w- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 4096 ---ha-w- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 3584 ---ha-w- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 3584 ---ha-w- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 3584 ---ha-w- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 3584 ---ha-w- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 3584 ---ha-w- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 3584 ---ha-w- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll 2011-07-16 04:19:58 . 2011-08-10 05:18:44 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll 2011-07-16 02:21:47 . 2011-08-10 05:18:44 6144 ---ha-w- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll 2011-07-16 02:21:47 . 2011-08-10 05:18:44 4608 ---ha-w- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll 2011-07-16 02:21:47 . 2011-08-10 05:18:44 3584 ---ha-w- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll 2011-07-16 02:21:47 . 2011-08-10 05:18:44 3072 ---ha-w- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll 2011-07-09 02:26:10 . 2011-08-10 05:18:51 222720 ----a-w- C:\Windows\system32\drivers\mrxsmb10.sys 2011-06-23 04:38:05 . 2011-08-10 05:18:54 3957120 ----a-w- C:\Windows\system32\ntkrnlpa.exe 2011-06-23 04:38:04 . 2011-08-10 05:18:53 3902336 ----a-w- C:\Windows\system32\ntoskrnl.exe 2011-09-08 07:40:47 . 2011-03-30 16:03:10 134104
-
Sorry, maar ik heb dit logbestand al opgeslagen vooraleer ik m'n PC opnieuw heb opgestart. Nadien heb ik opnieuw MBAM laten lopen en deze heeft niets gevonden. Hieronder het logje na het opstarten: Malwarebytes' Anti-Malware 1.51.2.1300 Malwarebytes : Free anti-malware, anti-virus and spyware removal download Databaseversie: 7752 Windows 6.1.7600 (Safe Mode) Internet Explorer 9.0.8112.16421 20/09/2011 9:49:13 mbam-log-2011-09-20 (09-49-13).txt Scantype: Snelle scan Objecten gescand: 175366 Verstreken tijd: 3 minuut/minuten, 16 seconde(n) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 0 Registerwaarden geïnfecteerd: 0 Registerdata geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 0 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registersleutels geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerwaarden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerdata geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Mappen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Bestanden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) ---------- Post toegevoegd om 10:04 ---------- Vorige post was om 10:03 ---------- Malwarebytes' Anti-Malware 1.51.2.1300 Malwarebytes : Free anti-malware, anti-virus and spyware removal download Databaseversie: 7752 Windows 6.1.7600 (Safe Mode) Internet Explorer 9.0.8112.16421 20/09/2011 9:25:55 mbam-log-2011-09-20 (09-25-55).txt Scantype: Snelle scan Objecten gescand: 175154 Verstreken tijd: 2 minuut/minuten, 25 seconde(n) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 2 Registerwaarden geïnfecteerd: 0 Registerdata geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 2 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registersleutels geïnfecteerd: HKEY_CLASSES_ROOT\CLSID\{83WL3QT8-5C75-3KC4-16FP-060U54H71GJ3} (Trojan.Inject) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{83WL3QT8-5C75-3KC4-16FP-060U54H71GJ3} (Trojan.Inject) -> Quarantined and deleted successfully. Registerwaarden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerdata geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Mappen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Bestanden geïnfecteerd: c:\Windows\System32\Install\Svchost.exe (Trojan.Inject) -> Quarantined and deleted successfully. c:\Users\Snoks\AppData\Local\Temp\PowerZip.tmp\Setup_EN.exe (Trojan.Inject) -> Quarantined and deleted successfully.
-
Hoi Kape, Vooreerst moet ik zeggen dat jullie vliegensvlug reageren! Wauw!!! Thanks!!!! Ik heb dus alles gedaan wat je mij gezegd hebt, maar tot nog toe geen verandering in de situatie (na 3 min. valt PC uit en opstarten kan enkel in safe mode). Hieronder de gevraagde logjes: Malwarebytes' Anti-Malware 1.51.2.1300 Malwarebytes : Free anti-malware, anti-virus and spyware removal download Databaseversie: 7752 Windows 6.1.7600 (Safe Mode) Internet Explorer 9.0.8112.16421 20/09/2011 9:25:47 mbam-log-2011-09-20 (09-25-25).txt Scantype: Snelle scan Objecten gescand: 175154 Verstreken tijd: 2 minuut/minuten, 25 seconde(n) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 2 Registerwaarden geïnfecteerd: 0 Registerdata geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 2 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registersleutels geïnfecteerd: HKEY_CLASSES_ROOT\CLSID\{83WL3QT8-5C75-3KC4-16FP-060U54H71GJ3} (Trojan.Inject) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{83WL3QT8-5C75-3KC4-16FP-060U54H71GJ3} (Trojan.Inject) -> No action taken. Registerwaarden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerdata geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Mappen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Bestanden geïnfecteerd: c:\Windows\System32\Install\Svchost.exe (Trojan.Inject) -> No action taken. c:\Users\Snoks\AppData\Local\Temp\PowerZip.tmp\Setup_EN.exe (Trojan.Inject) -> No action taken. Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 9:43:49, on 20/09/2011 Platform: Windows 7 (WinNT 6.00.3504) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Safe mode with network support Running processes: C:\Windows\system32\ctfmon.exe C:\Windows\explorer.exe C:\Windows\helppane.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Windows\system32\NOTEPAD.EXE E:\Elements\Downloads\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local F2 - REG:system.ini: UserInit=%windows%\system32\userinit.exe, O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe" O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe -expressboot O4 - HKLM\..\Run: [Live Update 5] C:\Program Files\MSI\Live Update 5\LU5.exe /reminder O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript O4 - HKCU\..\Run: [Rainlendar2] C:\Program Files\Rainlendar2\Rainlendar2.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/MessengerGamesContent/GameContent/nl/uno1/GAME_UNO1.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O22 - SharedTaskScheduler: FencesShellExt - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files\Stardock\Fences\FencesMenu.dll O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe -- End of file - 6129 bytes
-
Neen, het update prog van Windows werkt niet. Vind wel het prog zelf (wuapp.exe) maar als ik hierop dubbelklik gebeurt er niets.
-
Hierbij het HijackThis rapport: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 18:13:29, on 19/09/2011 Platform: Windows 7 (WinNT 6.00.3504) MSIE: Internet Explorer v9.00 (9.00.8112.16421) Boot mode: Safe mode with network support Running processes: C:\Windows\system32\ctfmon.exe C:\Windows\explorer.exe C:\Program Files\Mozilla Firefox\firefox.exe E:\Elements\Downloads\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=;ftp=;https=; R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=%windows%\system32\userinit.exe, O2 - BHO: SuggestMeYesBHO - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Program Files\AutocompletePro\AutocompletePro.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe" O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe -expressboot O4 - HKLM\..\Run: [HKLM] C:\Windows\system32\Install\Svchost.exe O4 - HKLM\..\Run: [Live Update 5] C:\Program Files\MSI\Live Update 5\LU5.exe /reminder O4 - HKLM\..\RunOnce: [*WerKernelReporting] %SYSTEMROOT%\SYSTEM32\WerFault.exe -k -rq O4 - HKCU\..\Run: [Rainlendar2] C:\Program Files\Rainlendar2\Rainlendar2.exe O4 - HKCU\..\Run: [HKCU] C:\Windows\system32\Install\Svchost.exe O4 - HKLM\..\Policies\Explorer\Run: [Policies] C:\Windows\system32\Install\Svchost.exe O4 - HKCU\..\Policies\Explorer\Run: [Policies] C:\Windows\system32\Install\Svchost.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab O16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/MessengerGamesContent/GameContent/nl/uno1/GAME_UNO1.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O22 - SharedTaskScheduler: FencesShellExt - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files\Stardock\Fences\FencesMenu.dll O22 - SharedTaskScheduler: ObjectDockShellExt - {1984D045-52CF-49cd-DB77-08F378FEA4DB} - (no file) O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe -- End of file - 6873 bytes NB: Updaten is echt niet mogelijk. Er gebeurt niets; zowel het prog rechtstreeks starten (in map system32) als via de opdrachtregel in start. Heb ook geprobeerd om de wuapp.exe van een andere PC naar de mijne te kopiëren, maar krijg 'geen toegang'. Ook niet als ik de machtigingen wijzig (ben reeds 'administrator').
-
Heb geprobeerd via website van Windows om update te krijgen, maar deze verwijst me naar de startknop op mijn PC. Rechtstreeks updaten is dus blijkbaar niet mogelijk? Heb gedubbelklikt, maar enkel dat scherm met die commando's verschijnt.
