Ga naar inhoud

internet ineens heel traag


wouterter

Aanbevolen berichten

nee, we hebben geen downloadlimiet
OK, dan gaan we nog eens dieper kijken :

Download ComboFix van één van deze locaties:

Link 1

Link 2

* BELANGRIJK !!! Sla ComboFix.exe op je Bureaublad op

1. Schakel alle antivirus- en antispywareprogramma's uit, want anders kunnen ze misschien conflicteren met ComboFix. Hier is een handleiding over hoe je ze kan uitschakelen:

Klik hier

2. Het kan voorkomen dat de computer meerdere malen opnieuw gestart moet worden, dit is normaal.

3. Dubbelklik op "Combofix.exe" om de tool te starten.

4. Klik niet in het scherm van Combofix als deze actief is, hierdoor kan de 'tool' vastlopen.

Noot !!! Als er een error wordt getoond met de melding "Illegal operation attempted on a registery key that has been marked for deletion", herstart dan de computer.

5. Wanneer ComboFix klaar is, zal het het een logbestand voor je maken. Post de inhoud van dit logbestand (te vinden als C:\ComboFix.txt) in je volgende bericht.

Link naar reactie
Delen op andere sites

sorry voor de late reactie.

hier is de combofix log:

ComboFix 11-01-11.03 - Wouter 12-01-2011 17:27:16.1.2 - x86

Microsoft Windows 7 Professional 6.1.7600.0.1252.31.1043.18.3037.1996 [GMT 1:00]

Gestart vanuit: c:\users\Wouter\Desktop\ComboFix.exe

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

C:\Install.exe

C:\messenger.exe

c:\windows\XSxS

.

(((((((((((((((((((( Bestanden Gemaakt van 2010-12-12 to 2011-01-12 ))))))))))))))))))))))))))))))

.

2011-01-12 16:32 . 2011-01-12 16:32 -------- d-----w- c:\users\Default\AppData\Local\temp

2011-01-12 16:22 . 2010-11-16 11:01 6273872 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{9B7FB6BF-933B-475C-8AFD-319AD97B2876}\mpengine.dll

2011-01-12 16:15 . 2011-01-12 16:15 -------- d-----w- c:\windows\system32\wbem\repository

2011-01-11 21:15 . 2011-01-12 16:09 -------- d-----w- c:\program files\AGEIA Technologies

2011-01-11 19:17 . 2011-01-12 10:14 -------- d-----w- c:\programdata\Electronic Arts

2011-01-11 19:17 . 2011-01-11 21:25 -------- d-----w- c:\program files\Electronic Arts

2011-01-10 21:26 . 2011-01-10 21:26 -------- d-----w- C:\Games

2011-01-10 15:40 . 2011-01-10 15:40 -------- d-----w- c:\program files\MegaDev

2011-01-09 21:13 . 2011-01-12 16:08 -------- d-----w- C:\weet ik

2011-01-09 21:03 . 2011-01-12 16:09 -------- d-----w- c:\program files\DAEMON Tools Toolbar

2011-01-09 21:03 . 2011-01-12 16:09 -------- d-----w- c:\program files\DAEMON Tools Lite

2011-01-09 20:27 . 2011-01-09 20:27 -------- d-----w- c:\program files\EA GAMES

2011-01-09 20:08 . 2011-01-12 16:09 -------- d-----w- c:\program files\PFConfig

2011-01-09 19:24 . 2011-01-12 16:09 -------- d-----w- C:\Downloads

2011-01-09 19:23 . 2011-01-12 16:09 -------- d-----w- c:\program files\BitComet

2011-01-09 18:25 . 2011-01-12 16:09 -------- d-----w- c:\program files\Microsoft Silverlight

2011-01-09 17:45 . 2011-01-09 17:45 -------- d-----w- c:\programdata\Malwarebytes

2011-01-09 17:45 . 2011-01-12 16:09 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2011-01-09 17:39 . 2011-01-12 16:09 -------- d-----w- c:\program files\CCleaner

2011-01-07 12:51 . 2011-01-07 12:51 -------- d-----w- c:\program files\LimeWire Plus

2011-01-06 21:16 . 2011-01-06 21:16 -------- d-----w- c:\program files\RAR Password Cracker

2011-01-06 21:07 . 2011-01-06 21:07 -------- d-----w- c:\program files\HackTheGame

2011-01-06 19:03 . 2011-01-06 19:03 -------- d-----w- c:\program files\Xenocode

2011-01-05 18:31 . 2011-01-05 18:31 -------- d-----w- c:\program files\Foxit Software

2011-01-03 19:19 . 2011-01-07 12:40 -------- d-----w- c:\program files\BitLord 1.2

2011-01-03 19:08 . 2011-01-03 19:08 -------- d-----w- c:\program files\SRS Labs

2011-01-03 19:08 . 2011-01-03 19:08 -------- d-----w- c:\windows\system32\SRSLabs

2011-01-03 19:08 . 2010-03-02 20:29 881664 ----a-w- c:\windows\system32\VIAPropPageExt.dll

2011-01-03 19:08 . 2009-03-04 21:42 75776 ----a-w- c:\windows\system32\Dts2PropPageExt.dll

2011-01-03 19:08 . 2007-12-04 16:28 71680 ----a-w- c:\windows\system32\nQAPO.dll

2011-01-03 19:08 . 2009-01-20 02:29 181248 ----a-w- c:\windows\system32\ViaMicArrayAPO.dll

2011-01-03 19:08 . 2007-12-04 16:28 76288 ----a-w- c:\windows\system32\nQPropPageExt.dll

2011-01-03 19:08 . 2010-03-04 15:20 504320 ----a-w- c:\windows\system32\VIASysFx.dll

2011-01-03 19:08 . 2010-03-03 00:27 1127936 ----a-w- c:\windows\system32\drivers\viahduaa.sys

2011-01-03 19:08 . 2009-06-01 15:10 211456 ----a-w- c:\windows\system32\Dts2APO.dll

2011-01-03 19:08 . 2009-01-20 02:30 68608 ----a-w- c:\windows\system32\ViaMicArrayPropPageExt.dll

2011-01-03 19:05 . 2011-01-03 19:08 -------- d-----w- c:\program files\VIA

2011-01-03 14:02 . 2011-01-03 14:02 -------- d-----w- c:\program files\Atheros

2011-01-03 14:02 . 2010-02-12 22:48 1781760 ----a-w- c:\windows\system32\drivers\athr.sys

2011-01-03 14:02 . 2010-02-12 22:48 1781760 ----a-w- c:\windows\system32\athr.sys

2011-01-03 14:02 . 2011-01-03 14:02 -------- d-----w- c:\programdata\Atheros

2011-01-03 14:01 . 2011-01-03 14:01 -------- d-----w- c:\windows\system32\Atheros_L1e

2011-01-03 14:01 . 2011-01-03 19:10 -------- d--h--w- c:\program files\InstallShield Installation Information

2011-01-03 14:00 . 2010-02-23 21:34 53248 ----a-w- c:\windows\system32\CSVer.dll

2011-01-03 11:09 . 2011-01-03 11:09 -------- d-----w- c:\program files\YouTube Downloader

2011-01-02 21:25 . 2010-01-08 19:34 331288 ----a-w- c:\windows\system32\drivers\iaStor.sys

2011-01-02 21:18 . 2011-01-02 21:18 -------- d-----w- c:\program files\Driver-Soft

2011-01-02 20:38 . 2011-01-02 20:38 -------- d-----w- c:\programdata\UAB

2011-01-02 20:38 . 2011-01-02 20:38 -------- d-----w- c:\programdata\PC Drivers HeadQuarters

2011-01-02 20:37 . 2011-01-02 20:37 -------- d-----w- c:\program files\PC Drivers HeadQuarters

2011-01-02 20:29 . 2011-01-02 20:29 -------- d-----w- c:\program files\Easeware

2011-01-02 15:03 . 2011-01-02 15:03 -------- d-----w- c:\program files\Microsoft.NET

2011-01-02 14:33 . 2011-01-03 14:00 -------- d-----w- c:\program files\Intel

2011-01-02 14:33 . 2011-01-02 14:33 -------- d-----w- C:\Intel

2011-01-02 14:32 . 2009-10-10 02:57 12800 ----a-w- c:\windows\system32\drivers\sffp_sd.sys

2011-01-01 23:05 . 2011-01-01 23:05 -------- d-----w- c:\program files\Auran

2010-12-29 14:55 . 2010-12-29 14:56 -------- d-----w- c:\program files\GameHike

2010-12-28 23:26 . 2010-12-29 14:58 -------- d-----w- c:\programdata\Test Drive Unlimited

2010-12-28 23:23 . 2010-12-28 23:23 108144 ----a-w- c:\windows\system32\CmdLineExt.dll

2010-12-28 23:01 . 2010-12-28 23:01 -------- d-----w- c:\program files\Atari

2010-12-28 22:34 . 2010-12-28 22:34 691696 ----a-w- c:\windows\system32\drivers\sptd.sys

2010-12-28 22:33 . 2010-12-28 22:33 -------- d-----w- c:\programdata\DAEMON Tools Lite

2010-12-28 21:58 . 2011-01-12 16:09 -------- d-----w- c:\program files\HyCam2

2010-12-26 20:43 . 2011-01-06 21:29 -------- d-----w- C:\CafeWorldBot 2

2010-12-25 23:51 . 2009-09-10 05:52 257024 ----a-w- c:\windows\system32\msv1_0.dll

2010-12-25 23:50 . 2009-11-25 11:47 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll

2010-12-25 23:50 . 2009-11-25 11:47 49472 ----a-w- c:\windows\system32\netfxperf.dll

2010-12-25 23:50 . 2009-11-25 11:47 297808 ----a-w- c:\windows\system32\mscoree.dll

2010-12-25 23:50 . 2009-11-25 11:47 295264 ----a-w- c:\windows\system32\PresentationHost.exe

2010-12-25 23:50 . 2009-11-25 11:47 1130824 ----a-w- c:\windows\system32\dfshim.dll

2010-12-25 23:46 . 2010-02-11 07:10 293376 ----a-w- c:\windows\system32\browserchoice.exe

2010-12-25 23:45 . 2010-03-04 04:04 146304 ----a-w- c:\windows\system32\drivers\usbvideo.sys

2010-12-25 23:45 . 2010-03-04 03:57 190976 ----a-w- c:\windows\system32\drivers\ks.sys

2010-12-25 19:21 . 2010-12-25 19:21 -------- d-----w- c:\program files\Notepad++

2010-12-25 19:16 . 2011-01-05 14:53 -------- d-----w- c:\program files\Fiddler2

2010-12-25 18:53 . 2010-12-25 18:53 -------- d-----w- c:\program files\Charles

2010-12-25 16:01 . 2011-01-12 16:09 -------- d-----w- c:\program files\Ask.com

2010-12-25 15:29 . 2010-12-25 15:37 -------- d-----w- c:\program files\FrontierVilleBot

2010-12-25 12:07 . 2010-06-29 04:57 4247040 ----a-w- c:\program files\Windows NT\Accessories\wordpad.exe

2010-12-25 12:07 . 2010-06-29 05:02 1413632 ----a-w- c:\windows\system32\ole32.dll

2010-12-25 12:07 . 2010-06-14 06:12 1286016 ----a-w- c:\windows\system32\drivers\tcpip.sys

2010-12-25 12:07 . 2009-09-26 05:58 194488 ----a-w- c:\windows\system32\drivers\fvevol.sys

2010-12-25 12:07 . 2010-08-21 05:32 316928 ----a-w- c:\windows\system32\spoolsv.exe

2010-12-25 12:05 . 2010-03-05 07:42 67584 ----a-w- c:\windows\system32\asycfilt.dll

2010-12-25 12:04 . 2010-03-08 21:33 427520 ----a-w- c:\windows\system32\vbscript.dll

2010-12-25 12:04 . 2010-08-21 05:36 738816 ----a-w- c:\windows\system32\wmpmde.dll

2010-12-25 12:04 . 2010-10-16 04:41 101760 ----a-w- c:\windows\system32\consent.exe

2010-12-25 12:04 . 2010-01-18 23:29 85504 ----a-w- c:\windows\system32\secproc_ssp_isv.dll

2010-12-25 12:04 . 2010-01-18 23:29 85504 ----a-w- c:\windows\system32\secproc_ssp.dll

2010-12-25 12:04 . 2010-01-18 23:29 365568 ----a-w- c:\windows\system32\secproc_isv.dll

2010-12-25 12:04 . 2010-01-18 23:29 369152 ----a-w- c:\windows\system32\secproc.dll

2010-12-25 12:04 . 2010-01-18 23:28 324608 ----a-w- c:\windows\system32\RMActivate_isv.exe

2010-12-25 12:04 . 2010-01-18 23:28 277504 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe

2010-12-25 12:04 . 2010-01-18 23:28 320512 ----a-w- c:\windows\system32\RMActivate.exe

2010-12-25 12:04 . 2010-01-18 23:28 280064 ----a-w- c:\windows\system32\RMActivate_ssp.exe

2010-12-25 12:04 . 2010-10-19 08:10 7680 ----a-w- c:\program files\Internet Explorer\iecompat.dll

2010-12-25 12:04 . 2010-04-07 07:10 571904 ----a-w- c:\windows\system32\oleaut32.dll

2010-12-25 12:01 . 2010-10-20 03:00 2327552 ----a-w- c:\windows\system32\win32k.sys

2010-12-24 22:20 . 2009-11-03 13:07 679936 ----a-w- c:\windows\system32\D3DX81ab.dll

2010-12-24 22:20 . 2009-11-03 13:07 1970176 ----a-w- c:\windows\system32\d3dx9.dll

2010-12-24 22:20 . 2011-01-07 14:26 -------- d-----w- c:\program files\Cheat Engine

2010-12-24 20:50 . 2010-12-24 20:50 -------- d-----w- c:\program files\CityVilleBot

2010-12-24 18:22 . 2010-12-24 18:22 -------- d-----w- c:\program files\Common Files\Java

2010-12-24 18:22 . 2010-12-24 18:21 472808 ----a-w- c:\windows\system32\deployJava1.dll

2010-12-24 18:21 . 2010-12-24 18:21 -------- d-----w- c:\program files\Java

2010-12-24 18:20 . 2010-12-24 18:20 -------- d--h--w- c:\program files\InstallJammer Registry

2010-12-24 18:20 . 2011-01-06 21:29 -------- d-----w- C:\CafeWorldBot

2010-12-24 18:08 . 2010-12-26 20:28 -------- d-----w- c:\program files\CafeWorldBot

2010-12-24 18:05 . 2010-10-19 09:41 222080 ------w- c:\windows\system32\MpSigStub.exe

2010-12-24 17:59 . 2010-12-24 17:59 -------- d-----w- c:\windows\system32\Macromed

2010-12-24 17:51 . 2010-12-31 19:56 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys

2010-12-24 17:51 . 2010-12-31 20:00 293968 ----a-w- c:\windows\system32\drivers\aswSP.sys

2010-12-24 17:51 . 2010-12-31 19:56 23632 ----a-w- c:\windows\system32\drivers\aswRdr.sys

2010-12-24 17:51 . 2010-12-31 19:59 47440 ----a-w- c:\windows\system32\drivers\aswTdi.sys

2010-12-24 17:51 . 2010-12-31 19:56 51280 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys

2010-12-24 17:50 . 2010-12-31 20:06 38848 ----a-w- c:\windows\avastSS.scr

2010-12-24 17:50 . 2010-12-31 20:06 188216 ----a-w- c:\windows\system32\aswBoot.exe

2010-12-24 17:46 . 2010-12-24 17:46 -------- d-----w- c:\windows\system32\Wat

2010-12-24 17:42 . 2011-01-12 16:09 -------- d-sh--w- c:\windows\Installer

2010-12-24 17:42 . 2010-12-24 17:42 -------- d-----w- c:\programdata\Alwil Software

2010-12-24 17:42 . 2010-12-24 17:42 -------- d-----w- c:\program files\Alwil Software

2010-12-24 17:39 . 2011-01-12 16:20 -------- d-----w- c:\windows\system32\wbem\Performance

2010-12-24 17:39 . 2011-01-02 21:14 -------- d-----w- c:\program files\BitLord

2010-12-24 17:39 . 2009-12-29 06:55 172032 ----a-w- c:\windows\system32\wintrust.dll

2010-12-24 17:39 . 2010-01-09 06:52 132608 ----a-w- c:\windows\system32\cabview.dll

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]

"{00000000-6E41-4FD3-8538-502F5495E5FC}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-09-28 1400712]

[HKEY_CLASSES_ROOT\clsid\{00000000-6e41-4fd3-8538-502f5495e5fc}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]

2010-09-28 21:44 1400712 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-09-28 1400712]

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]

[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]

[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]

[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]

"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-09-28 1400712]

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]

[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]

[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]

[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]

@="{472083B0-C522-11CF-8763-00608CC02F24}"

[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]

2010-12-31 20:06 120712 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2010-12-31 3395600]

"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-08-25 136216]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-08-25 171032]

"Persistence"="c:\windows\system32\igfxpers.exe" [2010-08-25 170520]

"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2010-01-08 186904]

"HDAudDeck"="c:\program files\VIA\VIAudioi\VDeck\VDeck.exe" [2010-03-02 1778688]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\

SRS Premium Sound.lnk - c:\windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut4_E9C83B3EDF9141A39DA5EC05C79BBB91.exe [2011-1-3 156952]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

R1 aswSnx;aswSnx; [x]

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-12-24 1343400]

S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-12-28 691696]

S1 aswSP;aswSP; [x]

S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]

S2 aswFsBlk;aswFsBlk; [x]

S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-12-31 51280]

S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2010-03-03 1127936]

.

Inhoud van de 'Gedeelde Taken' map

2011-01-02 c:\windows\Tasks\DriverNavigator Scheduled Scan.job

- c:\program files\Easeware\DriverNavigator\DriverNavigator.exe [2011-01-02 21:37]

.

.

------- Bijkomende Scan -------

.

FF - ProfilePath - c:\users\Wouter\AppData\Roaming\Mozilla\Firefox\Profiles\n4n7d4rl.default\

FF - prefs.js: browser.search.selectedEngine - Ask.com

FF - prefs.js: keyword.URL - hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=BOO&o=19244&locale=nl_NL&apn_uid=F5D478FB-FE7E-4511-A6D3-DE463E12639A&apn_ptnrs=4G&apn_sauid=D297DE15-4F50-4097-9AC5-349350800F01&apn_dtid=YYYYYYYYNL&q=

FF - prefs.js: network.proxy.type - 0

FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

FF - Ext: Charles Autoconfiguration: {3e9a3920-1b27-11da-8cd6-0800200c9a66} - %profile%\extensions\{3e9a3920-1b27-11da-8cd6-0800200c9a66}

FF - Ext: Zynga Toolbar: {7b13ec3e-999a-4b70-b9cb-2617b8323822} - %profile%\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}

FF - Ext: Greasemonkey: {e4a8a97b-f2ed-450b-b12d-ee082ba24781} - %profile%\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}

FF - Ext: BitComet Video Downloader: {B042753D-F57E-4e8e-A01B-7379A6D4CEFB} - %profile%\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}

FF - Ext: DAEMON Tools Toolbar: DTToolbar@toolbarnet.com - %profile%\extensions\DTToolbar@toolbarnet.com

FF - Ext: FiddlerHook: fiddlerhook@fiddler2.com - c:\program files\Fiddler2\FiddlerHook

.

- - - - ORPHANS VERWIJDERD - - - -

HKCU-Run-Flock Update - c:\users\Wouter\AppData\Local\Flock\Update\FlockUpdate.exe

HKCU-Run-Google Update - c:\users\Wouter\AppData\Local\Google\Update\GoogleUpdate.exe

AddRemove-CafeWorldBot 2.00 - c:\cafeworldbot 2\Uninstall.exe

AddRemove-Flock - c:\users\Wouter\AppData\Local\Flock\Application\7.0.517.442\Installer\setup.exe

AddRemove-Google Chrome - c:\users\Wouter\AppData\Local\Google\Chrome\Application\8.0.552.224\Installer\setup.exe

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

[HKEY_USERS\S-1-5-21-3199720724-4050899850-534630476-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]

"??"=hex:34,d8,91,ac,7c,db,f1,0a,5c,2d,35,98,94,3e,0a,dc,17,96,14,68,79,70,c5,

8a,36,4e,79,36,81,c2,bb,95,22,d1,4a,dc,3d,5e,1f,e6,8a,5d,8c,48,73,bd,34,61,\

"??"=hex:5c,06,09,a7,cc,91,17,b5,3a,bf,63,8e,b7,6e,26,17

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Voltooingstijd: 2011-01-12 17:36:20

ComboFix-quarantined-files.txt 2011-01-12 16:36

Pre-Run: 212.347.535.360 bytes beschikbaar

Post-Run: 212.366.491.648 bytes beschikbaar

- - End Of File - - E0712B2D1533D0455BA42CC87378B328

Link naar reactie
Delen op andere sites

Open een kladblokbestand.

Kopieer en plak daarin de onderstaande vetgedrukte tekst.

File::

c:\windows\system32\CSVer.dll

Folder::

c:\program files\Ask.com

c:\program files\DAEMON Tools Toolbar

Driver::

aswSP

aswFsBlk

Registry::

[-HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]

[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]

[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

[-HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]

[-HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]

[-HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

[-HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]

[-HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]

[-HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]

[-HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]

[-HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

FireFox::

FF - ProfilePath - c:\users\Wouter\AppData\Roaming\Mozilla\Firefox\Profiles\n4n7d4rl.default\

FF - prefs.js: browser.search.selectedEngine -

FF - prefs.js: keyword.URL –

Sla dit bestand op je bureaublad op als CFScript.txt.

Sleep CFScript.txt in ComboFix.exe

Dit zal ComboFix doen herstarten. Start opnieuw op als dat gevraagd wordt.

Post na herstart de inhoud van de Combofix.txt in je volgende bericht.

Link naar reactie
Delen op andere sites

ComboFix 11-01-11.03 - Wouter 12-01-2011 18:20:16.2.2 - x86

Microsoft Windows 7 Professional 6.1.7600.0.1252.31.1043.18.3037.2170 [GMT 1:00]

Gestart vanuit: c:\users\Wouter\Desktop\ComboFix.exe

gebruikte Opdracht switches :: c:\users\Wouter\Desktop\CFScript.txt

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FILE ::

"c:\windows\system32\CSVer.dll"

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

c:\program files\Ask.com

c:\program files\Ask.com\cb_92c2.ico

c:\program files\Ask.com\cobrand.ico

c:\program files\Ask.com\favicon.ico

c:\program files\Ask.com\fv_9080.ico

c:\program files\Ask.com\GenericAskToolbar.dll

c:\program files\Ask.com\SaUpdate.exe

c:\program files\Ask.com\UpdateTask.exe

c:\program files\DAEMON Tools Toolbar

c:\program files\DAEMON Tools Toolbar\_DTLite.xml

c:\program files\DAEMON Tools Toolbar\Resources\ARA.xml

c:\program files\DAEMON Tools Toolbar\Resources\as.png

c:\program files\DAEMON Tools Toolbar\Resources\AZE.xml

c:\program files\DAEMON Tools Toolbar\Resources\b1.png

c:\program files\DAEMON Tools Toolbar\Resources\CHS.xml

c:\program files\DAEMON Tools Toolbar\Resources\CHT.xml

c:\program files\DAEMON Tools Toolbar\Resources\DEU.xml

c:\program files\DAEMON Tools Toolbar\Resources\dot_disabled.bmp

c:\program files\DAEMON Tools Toolbar\Resources\dot_enabled.bmp

c:\program files\DAEMON Tools Toolbar\Resources\dot_on_over.bmp

c:\program files\DAEMON Tools Toolbar\Resources\ENG.xml

c:\program files\DAEMON Tools Toolbar\Resources\FRA.xml

c:\program files\DAEMON Tools Toolbar\Resources\genre.xml

c:\program files\DAEMON Tools Toolbar\Resources\hb.bmp

c:\program files\DAEMON Tools Toolbar\Resources\ITA.xml

c:\program files\DAEMON Tools Toolbar\Resources\JPN.xml

c:\program files\DAEMON Tools Toolbar\Resources\KOR.xml

c:\program files\DAEMON Tools Toolbar\Resources\lang.xml

c:\program files\DAEMON Tools Toolbar\Resources\mail.bmp

c:\program files\DAEMON Tools Toolbar\Resources\mail_disable.bmp

c:\program files\DAEMON Tools Toolbar\Resources\mail_down.bmp

c:\program files\DAEMON Tools Toolbar\Resources\mail_m.bmp

c:\program files\DAEMON Tools Toolbar\Resources\mail_under.bmp

c:\program files\DAEMON Tools Toolbar\Resources\mailc.bmp

c:\program files\DAEMON Tools Toolbar\Resources\mailc_disable.bmp

c:\program files\DAEMON Tools Toolbar\Resources\mailc_down.bmp

c:\program files\DAEMON Tools Toolbar\Resources\mailc_m.bmp

c:\program files\DAEMON Tools Toolbar\Resources\mailc_under.bmp

c:\program files\DAEMON Tools Toolbar\Resources\next.bmp

c:\program files\DAEMON Tools Toolbar\Resources\next_down.bmp

c:\program files\DAEMON Tools Toolbar\Resources\next_m.bmp

c:\program files\DAEMON Tools Toolbar\Resources\next_under.bmp

c:\program files\DAEMON Tools Toolbar\Resources\none.bmp

c:\program files\DAEMON Tools Toolbar\Resources\none_m.bmp

c:\program files\DAEMON Tools Toolbar\Resources\play.bmp

c:\program files\DAEMON Tools Toolbar\Resources\play_down.bmp

c:\program files\DAEMON Tools Toolbar\Resources\play_m.bmp

c:\program files\DAEMON Tools Toolbar\Resources\play_under.bmp

c:\program files\DAEMON Tools Toolbar\Resources\prev.bmp

c:\program files\DAEMON Tools Toolbar\Resources\prev_down.bmp

c:\program files\DAEMON Tools Toolbar\Resources\prev_m.bmp

c:\program files\DAEMON Tools Toolbar\Resources\prev_under.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioBg.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioBgMask.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioDisp.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioDisp_m.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioDown.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioDown_down.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioDown_m.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioDown_under.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioE.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioG.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioL.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioLDotMask.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioLeft.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioLeftMask.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioLM.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioM.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioN.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioR.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioRM.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioRU.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioVolume.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioVolume_down.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioVolume_m.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioVolume_under.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RadioW.bmp

c:\program files\DAEMON Tools Toolbar\Resources\refresh.bmp

c:\program files\DAEMON Tools Toolbar\Resources\refresh_down.bmp

c:\program files\DAEMON Tools Toolbar\Resources\refresh_m.bmp

c:\program files\DAEMON Tools Toolbar\Resources\refresh_under.bmp

c:\program files\DAEMON Tools Toolbar\Resources\rssL.bmp

c:\program files\DAEMON Tools Toolbar\Resources\RUS.xml

c:\program files\DAEMON Tools Toolbar\Resources\size.bmp

c:\program files\DAEMON Tools Toolbar\Resources\size_m.bmp

c:\program files\DAEMON Tools Toolbar\Resources\stop.bmp

c:\program files\DAEMON Tools Toolbar\Resources\stop_down.bmp

c:\program files\DAEMON Tools Toolbar\Resources\stop_m.bmp

c:\program files\DAEMON Tools Toolbar\Resources\stop_under.bmp

c:\program files\DAEMON Tools Toolbar\Resources\toolbar.xml

c:\program files\DAEMON Tools Toolbar\Resources\Trash.bmp

c:\program files\DAEMON Tools Toolbar\Resources\Trash_disable.bmp

c:\program files\DAEMON Tools Toolbar\Resources\Trash_down.bmp

c:\program files\DAEMON Tools Toolbar\Resources\Trash_m.bmp

c:\program files\DAEMON Tools Toolbar\Resources\Trash_under.bmp

c:\program files\DAEMON Tools Toolbar\Resources\UKR.xml

c:\program files\DAEMON Tools Toolbar\Resources\vol.bmp

c:\program files\DAEMON Tools Toolbar\Resources\vol_back.bmp

c:\program files\DAEMON Tools Toolbar\Resources\vol_dott.bmp

c:\program files\DAEMON Tools Toolbar\Resources\vol_dott_m.bmp

c:\program files\DAEMON Tools Toolbar\Resources\vol_down.bmp

c:\program files\DAEMON Tools Toolbar\Resources\vol_m.bmp

c:\program files\DAEMON Tools Toolbar\Resources\vol_mute.bmp

c:\program files\DAEMON Tools Toolbar\Resources\vol_mute_check.bmp

c:\program files\DAEMON Tools Toolbar\Resources\vol_under.bmp

c:\program files\DAEMON Tools Toolbar\Resources\wBtClose.bmp

c:\program files\DAEMON Tools Toolbar\Resources\wBtClose_down.bmp

c:\program files\DAEMON Tools Toolbar\Resources\wBtClose_m.bmp

c:\program files\DAEMON Tools Toolbar\Resources\wBtClose_under.bmp

c:\program files\DAEMON Tools Toolbar\Resources\wBtText.bmp

c:\program files\DAEMON Tools Toolbar\Resources\wBtText_down.bmp

c:\program files\DAEMON Tools Toolbar\Resources\wBtText_m.bmp

c:\program files\DAEMON Tools Toolbar\Resources\wBtText_under.bmp

c:\windows\system32\CSVer.dll

.

((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

.

-------\Legacy_ASWFSBLK

-------\Legacy_ASWSP

-------\Service_aswFsBlk

-------\Service_aswSP

(((((((((((((((((((( Bestanden Gemaakt van 2010-12-12 to 2011-01-12 ))))))))))))))))))))))))))))))

.

2011-01-12 17:26 . 2011-01-12 17:26 -------- d-----w- c:\users\Default\AppData\Local\temp

2011-01-12 16:22 . 2010-11-16 11:01 6273872 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{9B7FB6BF-933B-475C-8AFD-319AD97B2876}\mpengine.dll

2011-01-12 16:15 . 2011-01-12 17:28 -------- d-----w- c:\windows\system32\wbem\repository

2011-01-11 21:15 . 2011-01-12 16:09 -------- d-----w- c:\program files\AGEIA Technologies

2011-01-11 19:17 . 2011-01-12 10:14 -------- d-----w- c:\programdata\Electronic Arts

2011-01-11 19:17 . 2011-01-11 21:25 -------- d-----w- c:\program files\Electronic Arts

2011-01-10 21:26 . 2011-01-10 21:26 -------- d-----w- C:\Games

2011-01-10 15:40 . 2011-01-10 15:40 -------- d-----w- c:\program files\MegaDev

2011-01-09 21:13 . 2011-01-12 16:08 -------- d-----w- C:\weet ik

2011-01-09 21:03 . 2011-01-12 16:09 -------- d-----w- c:\program files\DAEMON Tools Lite

2011-01-09 20:27 . 2011-01-09 20:27 -------- d-----w- c:\program files\EA GAMES

2011-01-09 20:08 . 2011-01-12 16:09 -------- d-----w- c:\program files\PFConfig

2011-01-09 19:24 . 2011-01-12 16:09 -------- d-----w- C:\Downloads

2011-01-09 19:23 . 2011-01-12 16:09 -------- d-----w- c:\program files\BitComet

2011-01-09 18:25 . 2011-01-12 16:09 -------- d-----w- c:\program files\Microsoft Silverlight

2011-01-09 17:45 . 2011-01-09 17:45 -------- d-----w- c:\programdata\Malwarebytes

2011-01-09 17:45 . 2011-01-12 16:09 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2011-01-09 17:39 . 2011-01-12 16:09 -------- d-----w- c:\program files\CCleaner

2011-01-07 12:51 . 2011-01-07 12:51 -------- d-----w- c:\program files\LimeWire Plus

2011-01-06 21:16 . 2011-01-06 21:16 -------- d-----w- c:\program files\RAR Password Cracker

2011-01-06 21:07 . 2011-01-06 21:07 -------- d-----w- c:\program files\HackTheGame

2011-01-06 19:03 . 2011-01-06 19:03 -------- d-----w- c:\program files\Xenocode

2011-01-05 18:31 . 2011-01-05 18:31 -------- d-----w- c:\program files\Foxit Software

2011-01-03 19:19 . 2011-01-07 12:40 -------- d-----w- c:\program files\BitLord 1.2

2011-01-03 19:08 . 2011-01-03 19:08 -------- d-----w- c:\program files\SRS Labs

2011-01-03 19:08 . 2011-01-03 19:08 -------- d-----w- c:\windows\system32\SRSLabs

2011-01-03 19:08 . 2010-03-02 20:29 881664 ----a-w- c:\windows\system32\VIAPropPageExt.dll

2011-01-03 19:08 . 2009-03-04 21:42 75776 ----a-w- c:\windows\system32\Dts2PropPageExt.dll

2011-01-03 19:08 . 2007-12-04 16:28 71680 ----a-w- c:\windows\system32\nQAPO.dll

2011-01-03 19:08 . 2009-01-20 02:29 181248 ----a-w- c:\windows\system32\ViaMicArrayAPO.dll

2011-01-03 19:08 . 2007-12-04 16:28 76288 ----a-w- c:\windows\system32\nQPropPageExt.dll

2011-01-03 19:08 . 2010-03-04 15:20 504320 ----a-w- c:\windows\system32\VIASysFx.dll

2011-01-03 19:08 . 2010-03-03 00:27 1127936 ----a-w- c:\windows\system32\drivers\viahduaa.sys

2011-01-03 19:08 . 2009-06-01 15:10 211456 ----a-w- c:\windows\system32\Dts2APO.dll

2011-01-03 19:08 . 2009-01-20 02:30 68608 ----a-w- c:\windows\system32\ViaMicArrayPropPageExt.dll

2011-01-03 19:05 . 2011-01-03 19:08 -------- d-----w- c:\program files\VIA

2011-01-03 14:02 . 2011-01-03 14:02 -------- d-----w- c:\program files\Atheros

2011-01-03 14:02 . 2010-02-12 22:48 1781760 ----a-w- c:\windows\system32\drivers\athr.sys

2011-01-03 14:02 . 2010-02-12 22:48 1781760 ----a-w- c:\windows\system32\athr.sys

2011-01-03 14:02 . 2011-01-03 14:02 -------- d-----w- c:\programdata\Atheros

2011-01-03 14:01 . 2011-01-03 14:01 -------- d-----w- c:\windows\system32\Atheros_L1e

2011-01-03 14:01 . 2011-01-03 19:10 -------- d--h--w- c:\program files\InstallShield Installation Information

2011-01-03 11:09 . 2011-01-03 11:09 -------- d-----w- c:\program files\YouTube Downloader

2011-01-02 21:25 . 2010-01-08 19:34 331288 ----a-w- c:\windows\system32\drivers\iaStor.sys

2011-01-02 21:18 . 2011-01-02 21:18 -------- d-----w- c:\program files\Driver-Soft

2011-01-02 20:38 . 2011-01-02 20:38 -------- d-----w- c:\programdata\UAB

2011-01-02 20:38 . 2011-01-02 20:38 -------- d-----w- c:\programdata\PC Drivers HeadQuarters

2011-01-02 20:37 . 2011-01-02 20:37 -------- d-----w- c:\program files\PC Drivers HeadQuarters

2011-01-02 20:29 . 2011-01-02 20:29 -------- d-----w- c:\program files\Easeware

2011-01-02 15:03 . 2011-01-02 15:03 -------- d-----w- c:\program files\Microsoft.NET

2011-01-02 14:33 . 2011-01-03 14:00 -------- d-----w- c:\program files\Intel

2011-01-02 14:33 . 2011-01-02 14:33 -------- d-----w- C:\Intel

2011-01-02 14:32 . 2009-10-10 02:57 12800 ----a-w- c:\windows\system32\drivers\sffp_sd.sys

2011-01-01 23:05 . 2011-01-01 23:05 -------- d-----w- c:\program files\Auran

2010-12-29 14:55 . 2010-12-29 14:56 -------- d-----w- c:\program files\GameHike

2010-12-28 23:26 . 2010-12-29 14:58 -------- d-----w- c:\programdata\Test Drive Unlimited

2010-12-28 23:23 . 2010-12-28 23:23 108144 ----a-w- c:\windows\system32\CmdLineExt.dll

2010-12-28 23:01 . 2010-12-28 23:01 -------- d-----w- c:\program files\Atari

2010-12-28 22:34 . 2010-12-28 22:34 691696 ----a-w- c:\windows\system32\drivers\sptd.sys

2010-12-28 22:33 . 2010-12-28 22:33 -------- d-----w- c:\programdata\DAEMON Tools Lite

2010-12-28 21:58 . 2011-01-12 16:09 -------- d-----w- c:\program files\HyCam2

2010-12-26 20:43 . 2011-01-06 21:29 -------- d-----w- C:\CafeWorldBot 2

2010-12-25 23:51 . 2009-09-10 05:52 257024 ----a-w- c:\windows\system32\msv1_0.dll

2010-12-25 23:50 . 2009-11-25 11:47 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll

2010-12-25 23:50 . 2009-11-25 11:47 49472 ----a-w- c:\windows\system32\netfxperf.dll

2010-12-25 23:50 . 2009-11-25 11:47 297808 ----a-w- c:\windows\system32\mscoree.dll

2010-12-25 23:50 . 2009-11-25 11:47 295264 ----a-w- c:\windows\system32\PresentationHost.exe

2010-12-25 23:50 . 2009-11-25 11:47 1130824 ----a-w- c:\windows\system32\dfshim.dll

2010-12-25 23:46 . 2010-02-11 07:10 293376 ----a-w- c:\windows\system32\browserchoice.exe

2010-12-25 23:45 . 2010-03-04 04:04 146304 ----a-w- c:\windows\system32\drivers\usbvideo.sys

2010-12-25 23:45 . 2010-03-04 03:57 190976 ----a-w- c:\windows\system32\drivers\ks.sys

2010-12-25 19:21 . 2010-12-25 19:21 -------- d-----w- c:\program files\Notepad++

2010-12-25 19:16 . 2011-01-05 14:53 -------- d-----w- c:\program files\Fiddler2

2010-12-25 18:53 . 2010-12-25 18:53 -------- d-----w- c:\program files\Charles

2010-12-25 15:29 . 2010-12-25 15:37 -------- d-----w- c:\program files\FrontierVilleBot

2010-12-25 12:07 . 2010-06-29 04:57 4247040 ----a-w- c:\program files\Windows NT\Accessories\wordpad.exe

2010-12-25 12:07 . 2010-06-29 05:02 1413632 ----a-w- c:\windows\system32\ole32.dll

2010-12-25 12:07 . 2010-06-14 06:12 1286016 ----a-w- c:\windows\system32\drivers\tcpip.sys

2010-12-25 12:07 . 2009-09-26 05:58 194488 ----a-w- c:\windows\system32\drivers\fvevol.sys

2010-12-25 12:07 . 2010-08-21 05:32 316928 ----a-w- c:\windows\system32\spoolsv.exe

2010-12-25 12:05 . 2010-03-05 07:42 67584 ----a-w- c:\windows\system32\asycfilt.dll

2010-12-25 12:04 . 2010-03-08 21:33 427520 ----a-w- c:\windows\system32\vbscript.dll

2010-12-25 12:04 . 2010-08-21 05:36 738816 ----a-w- c:\windows\system32\wmpmde.dll

2010-12-25 12:04 . 2010-10-16 04:41 101760 ----a-w- c:\windows\system32\consent.exe

2010-12-25 12:04 . 2010-01-18 23:29 85504 ----a-w- c:\windows\system32\secproc_ssp_isv.dll

2010-12-25 12:04 . 2010-01-18 23:29 85504 ----a-w- c:\windows\system32\secproc_ssp.dll

2010-12-25 12:04 . 2010-01-18 23:29 365568 ----a-w- c:\windows\system32\secproc_isv.dll

2010-12-25 12:04 . 2010-01-18 23:29 369152 ----a-w- c:\windows\system32\secproc.dll

2010-12-25 12:04 . 2010-01-18 23:28 324608 ----a-w- c:\windows\system32\RMActivate_isv.exe

2010-12-25 12:04 . 2010-01-18 23:28 277504 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe

2010-12-25 12:04 . 2010-01-18 23:28 320512 ----a-w- c:\windows\system32\RMActivate.exe

2010-12-25 12:04 . 2010-01-18 23:28 280064 ----a-w- c:\windows\system32\RMActivate_ssp.exe

2010-12-25 12:04 . 2010-10-19 08:10 7680 ----a-w- c:\program files\Internet Explorer\iecompat.dll

2010-12-25 12:04 . 2010-04-07 07:10 571904 ----a-w- c:\windows\system32\oleaut32.dll

2010-12-25 12:01 . 2010-10-20 03:00 2327552 ----a-w- c:\windows\system32\win32k.sys

2010-12-24 22:20 . 2009-11-03 13:07 679936 ----a-w- c:\windows\system32\D3DX81ab.dll

2010-12-24 22:20 . 2009-11-03 13:07 1970176 ----a-w- c:\windows\system32\d3dx9.dll

2010-12-24 22:20 . 2011-01-07 14:26 -------- d-----w- c:\program files\Cheat Engine

2010-12-24 20:50 . 2010-12-24 20:50 -------- d-----w- c:\program files\CityVilleBot

2010-12-24 18:22 . 2010-12-24 18:22 -------- d-----w- c:\program files\Common Files\Java

2010-12-24 18:22 . 2010-12-24 18:21 472808 ----a-w- c:\windows\system32\deployJava1.dll

2010-12-24 18:21 . 2010-12-24 18:21 -------- d-----w- c:\program files\Java

2010-12-24 18:20 . 2010-12-24 18:20 -------- d--h--w- c:\program files\InstallJammer Registry

2010-12-24 18:20 . 2011-01-06 21:29 -------- d-----w- C:\CafeWorldBot

2010-12-24 18:08 . 2010-12-26 20:28 -------- d-----w- c:\program files\CafeWorldBot

2010-12-24 18:05 . 2010-10-19 09:41 222080 ------w- c:\windows\system32\MpSigStub.exe

2010-12-24 17:59 . 2010-12-24 17:59 -------- d-----w- c:\windows\system32\Macromed

2010-12-24 17:51 . 2010-12-31 19:56 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys

2010-12-24 17:51 . 2010-12-31 20:00 293968 ----a-w- c:\windows\system32\drivers\aswSP.sys

2010-12-24 17:51 . 2010-12-31 19:56 23632 ----a-w- c:\windows\system32\drivers\aswRdr.sys

2010-12-24 17:51 . 2010-12-31 19:59 47440 ----a-w- c:\windows\system32\drivers\aswTdi.sys

2010-12-24 17:51 . 2010-12-31 19:56 51280 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys

2010-12-24 17:50 . 2010-12-31 20:06 38848 ----a-w- c:\windows\avastSS.scr

2010-12-24 17:50 . 2010-12-31 20:06 188216 ----a-w- c:\windows\system32\aswBoot.exe

2010-12-24 17:46 . 2010-12-24 17:46 -------- d-----w- c:\windows\system32\Wat

2010-12-24 17:42 . 2011-01-12 16:09 -------- d-sh--w- c:\windows\Installer

2010-12-24 17:42 . 2010-12-24 17:42 -------- d-----w- c:\programdata\Alwil Software

2010-12-24 17:42 . 2010-12-24 17:42 -------- d-----w- c:\program files\Alwil Software

2010-12-24 17:39 . 2011-01-12 16:20 -------- d-----w- c:\windows\system32\wbem\Performance

2010-12-24 17:39 . 2011-01-02 21:14 -------- d-----w- c:\program files\BitLord

2010-12-24 17:39 . 2009-12-29 06:55 172032 ----a-w- c:\windows\system32\wintrust.dll

2010-12-24 17:39 . 2010-01-09 06:52 132608 ----a-w- c:\windows\system32\cabview.dll

2010-12-24 17:36 . 2011-01-12 16:09 -------- d-----w- c:\users\Wouter

2010-12-24 17:36 . 2010-12-24 17:36 -------- d-sh--we c:\users\Default\Sjablonen

2010-12-24 17:36 . 2010-12-24 17:36 -------- d-sh--we c:\users\Default\Netwerkprinteromgeving

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]

@="{472083B0-C522-11CF-8763-00608CC02F24}"

[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]

2010-12-31 20:06 120712 ----a-w- c:\program files\Alwil Software\Avast5\ashShell.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]

"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-08-25 136216]

"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-08-25 171032]

"Persistence"="c:\windows\system32\igfxpers.exe" [2010-08-25 170520]

"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2010-01-08 186904]

"HDAudDeck"="c:\program files\VIA\VIAudioi\VDeck\VDeck.exe" [2010-03-02 1778688]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\

SRS Premium Sound.lnk - c:\windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut4_E9C83B3EDF9141A39DA5EC05C79BBB91.exe [2011-1-3 156952]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

R1 aswSnx;aswSnx; [x]

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-12-24 1343400]

S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-12-28 691696]

S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]

S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-12-31 51280]

S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2010-03-03 1127936]

.

Inhoud van de 'Gedeelde Taken' map

2011-01-02 c:\windows\Tasks\DriverNavigator Scheduled Scan.job

- c:\program files\Easeware\DriverNavigator\DriverNavigator.exe [2011-01-02 21:37]

.

.

------- Bijkomende Scan -------

.

FF - ProfilePath - c:\users\Wouter\AppData\Roaming\Mozilla\Firefox\Profiles\n4n7d4rl.default\

FF - prefs.js: keyword.URL - hxxp://websearch.ask.com/redirect?client=ff&src=kw&tb=BOO&o=19244&locale=nl_NL&apn_uid=F5D478FB-FE7E-4511-A6D3-DE463E12639A&apn_ptnrs=4G&apn_sauid=D297DE15-4F50-4097-9AC5-349350800F01&apn_dtid=YYYYYYYYNL&q=

FF - prefs.js: network.proxy.type - 0

FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

FF - Ext: Charles Autoconfiguration: {3e9a3920-1b27-11da-8cd6-0800200c9a66} - %profile%\extensions\{3e9a3920-1b27-11da-8cd6-0800200c9a66}

FF - Ext: Zynga Toolbar: {7b13ec3e-999a-4b70-b9cb-2617b8323822} - %profile%\extensions\{7b13ec3e-999a-4b70-b9cb-2617b8323822}

FF - Ext: Greasemonkey: {e4a8a97b-f2ed-450b-b12d-ee082ba24781} - %profile%\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}

FF - Ext: BitComet Video Downloader: {B042753D-F57E-4e8e-A01B-7379A6D4CEFB} - %profile%\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}

FF - Ext: DAEMON Tools Toolbar: DTToolbar@toolbarnet.com - %profile%\extensions\DTToolbar@toolbarnet.com

FF - Ext: FiddlerHook: fiddlerhook@fiddler2.com - c:\program files\Fiddler2\FiddlerHook

.

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

[HKEY_USERS\S-1-5-21-3199720724-4050899850-534630476-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]

"??"=hex:34,d8,91,ac,7c,db,f1,0a,5c,2d,35,98,94,3e,0a,dc,17,96,14,68,79,70,c5,

8a,36,4e,79,36,81,c2,bb,95,22,d1,4a,dc,3d,5e,1f,e6,8a,5d,8c,48,73,bd,34,61,\

"??"=hex:5c,06,09,a7,cc,91,17,b5,3a,bf,63,8e,b7,6e,26,17

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

------------------------ Andere Aktieve Processen ------------------------

.

c:\program files\Alwil Software\Avast5\AvastSvc.exe

c:\windows\system32\taskhost.exe

c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe

c:\windows\system32\conhost.exe

c:\program files\Windows Media Player\wmpnetwk.exe

c:\windows\system32\sppsvc.exe

.

**************************************************************************

.

Voltooingstijd: 2011-01-12 18:33:42 - machine werd herstart

ComboFix-quarantined-files.txt 2011-01-12 17:33

ComboFix2.txt 2011-01-12 16:36

Pre-Run: 209.924.517.888 bytes beschikbaar

Post-Run: 209.794.289.664 bytes beschikbaar

- - End Of File - - A3680B0F00C0BCC3B942860CCD30C693

ik zag een foutje in je bericht:

Start opnieuw op als dat gevraagd wordt

dit moet je juist niet doen zegt Combofix

Combofix zegt dat hij dit zelf gaat doen

aangepast door wouterter
Link naar reactie
Delen op andere sites

Verwijder Combofix: Start -> Uitvoeren/Zoekopdracht en typ: ComboFix /Uninstall

Dit zal Combofix verwijderen + gerelateerde mappen en bestanden, herstelt de klokinstellingen opnieuw, verbergt de bestandsextensies, gaat verborgen bestanden en systeembestanden terug verbergen en maakt een nieuw herstelpunt.

Indien aanwezig mag je de map C:\Qoobox manueel verwijderen.

Download CCleaner.

Klik op “Download Latest Version” en dan start de download van CCleaner automatisch en gratis op.

Installeer het en start CCleaner op. Klik in de linkse kolom op “Cleaner”. Klik achtereenvolgens op ‘Analyseren’ en 'Schoonmaken'. Soms is 1 analyse niet voldoende. Deze procedure mag je herhalen tot de analyse geen fouten meer aangeeft. Klik vervolgens in de linkse kolom op “Register” en klik op ‘Scan naar problemen”. Als er fouten gevonden worden klik je op ”Herstel geselecteerde problemen” en ”OK”. Dan krijg je de vraag om een back-up te maken. Klik op “JA”. Kies dan “Herstel alle geselecteerde fouten”. Sluit hierna CCleaner terug af.

Wil je dit uitgebreid in beeld bekijken, klik dan hier voor de handleiding.

Het is aangewezen om de bestaande herstelpunten te verwijderen (daar zitten besmette herstelpunten tussen die je eventueel zou kunnen terugzetten) door systeemherstel tijdelijk uit te schakelen. Doe dit

  • via Start -> Configuratiescherm -> Systeem -> Systeembeveiliging -> schakel nu systeemherstel uit door de gewenste schijf te selecteren en op "configureren" te klikken.
  • Klik nu op "verwijderen" om alle herstelpunten te verwijderen.
  • Klik op "Toepassen" en "OK".

Herstart nu de PC ... en laat even weten of dat nu enig verschil geeft ?

Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.
×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.