Ga naar inhoud

pc blijft regelmatig 1 seconde vast zitten.


dspark

Aanbevolen berichten

Zo! eerst combofix;

ComboFix 12-01-17.01 - Danny 17/01/2012 19:52:25.5.4 - x64

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.6124.4469 [GMT 1:00]

Gestart vanuit: c:\users\Danny\Desktop\ComboFix.exe

gebruikte Opdracht switches :: c:\users\Danny\Desktop\CFScript.txt

AV: Norton 360 *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}

FW: Norton 360 *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}

SP: Norton 360 *Disabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

FILE ::

"c:\users\Danny\BIT4920.tmp"

"c:\windows\SysWow64\tmpBDC92.FOT"

.

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\windows\SysWow64\tmpBDC92.FOT

.

.

(((((((((((((((((((( Bestanden Gemaakt van 2011-12-18 to 2012-01-18 ))))))))))))))))))))))))))))))

.

.

2012-01-18 05:24 . 2012-01-18 05:24 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp

2012-01-18 05:24 . 2012-01-18 05:24 -------- d-----w- c:\users\Default\AppData\Local\temp

2012-01-17 20:56 . 2012-01-17 20:56 -------- d-----w- c:\program files (x86)\Playlogic

2012-01-16 09:17 . 2012-01-16 09:17 -------- d-----w- c:\users\Danny\AppData\Roaming\Malwarebytes

2012-01-16 09:17 . 2012-01-16 09:17 -------- d-----w- c:\programdata\Malwarebytes

2012-01-16 09:17 . 2012-01-16 09:51 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware

2012-01-16 09:17 . 2011-12-10 14:24 23152 ----a-w- c:\windows\system32\drivers\mbam.sys

2012-01-16 08:45 . 2012-01-16 08:45 388096 ----a-r- c:\users\Danny\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

2012-01-16 08:45 . 2012-01-16 08:45 -------- d-----w- c:\program files (x86)\Trend Micro

2012-01-14 09:57 . 2012-01-14 09:57 -------- d-----w- c:\program files (x86)\GameSpy Arcade

2012-01-14 09:57 . 2012-01-14 09:57 -------- d-----w- c:\program files (x86)\MSXML 4.0

2012-01-14 09:56 . 2012-01-14 09:56 -------- d-----w- c:\program files (x86)\Microsoft Games

2012-01-12 21:19 . 2012-01-12 21:19 -------- d-----w- c:\program files (x86)\AL-Software

2012-01-11 13:09 . 2011-10-26 05:25 1572864 ----a-w- c:\windows\system32\quartz.dll

2012-01-11 13:09 . 2011-10-26 05:25 366592 ----a-w- c:\windows\system32\qdvd.dll

2012-01-11 13:09 . 2011-10-26 04:32 514560 ----a-w- c:\windows\SysWow64\qdvd.dll

2012-01-11 13:09 . 2011-10-26 04:32 1328128 ----a-w- c:\windows\SysWow64\quartz.dll

2012-01-11 13:09 . 2011-11-17 06:41 1731920 ----a-w- c:\windows\system32\ntdll.dll

2012-01-11 13:09 . 2011-11-17 05:38 1292080 ----a-w- c:\windows\SysWow64\ntdll.dll

2012-01-11 13:09 . 2011-11-19 14:58 77312 ----a-w- c:\windows\system32\packager.dll

2012-01-11 13:09 . 2011-11-19 14:01 67072 ----a-w- c:\windows\SysWow64\packager.dll

2012-01-10 19:55 . 2012-01-10 19:55 -------- d-----w- c:\program files\Key Metric Software

2012-01-10 19:55 . 2012-01-10 19:55 -------- d-----w- c:\users\Danny\AppData\Roaming\Key Metric Software

2012-01-10 09:43 . 2012-01-10 10:31 -------- d-----w- c:\users\Danny\Calibrebibliotheek

2012-01-10 09:43 . 2012-01-10 09:52 -------- d-----w- c:\users\Danny\AppData\Roaming\calibre

2012-01-10 09:42 . 2012-01-10 09:46 -------- d-----w- c:\program files (x86)\Calibre2

2012-01-09 11:50 . 2012-01-12 13:34 -------- d-----w- c:\users\Danny\AppData\Local\Newsbin

2012-01-09 11:50 . 2012-01-09 11:50 -------- d-----w- c:\program files\Newsbin

2012-01-09 09:17 . 2012-01-09 09:17 -------- d-----w- c:\program files\Mozilla Plugins

2012-01-09 09:16 . 2012-01-09 09:17 -------- d-----w- c:\program files\iTunes

2012-01-09 09:16 . 2012-01-09 09:16 -------- d-----w- c:\program files\iPod

2012-01-09 09:16 . 2012-01-09 09:16 -------- d-----w- c:\program files\CD Configuration

2012-01-08 17:53 . 2012-01-08 17:53 -------- d-----w- c:\users\Danny\AppData\Local\Apps

2012-01-08 17:50 . 2012-01-08 17:50 -------- d-----w- c:\users\Danny\Nieuwe map

2012-01-08 15:24 . 2012-01-15 19:29 -------- d-----w- c:\program files (x86)\1-Click PC Fix v4

2012-01-08 15:04 . 2012-01-08 15:04 -------- d-----w- c:\users\Danny\AppData\Local\Locktime

2012-01-08 14:08 . 2012-01-08 14:08 -------- d-----w- c:\programdata\Locktime

2012-01-08 14:08 . 2012-01-08 14:08 -------- d-----w- c:\program files\NetLimiter 3

2012-01-08 08:34 . 2011-10-15 06:31 723456 ----a-w- c:\windows\system32\EncDec.dll

2012-01-08 08:34 . 2011-10-15 05:38 534528 ----a-w- c:\windows\SysWow64\EncDec.dll

2012-01-08 08:34 . 2011-10-26 05:21 43520 ----a-w- c:\windows\system32\csrsrv.dll

2012-01-08 08:34 . 2011-11-24 04:52 3145216 ----a-w- c:\windows\system32\win32k.sys

2012-01-08 08:34 . 2011-11-05 05:32 2048 ----a-w- c:\windows\system32\tzres.dll

2012-01-08 08:34 . 2011-11-05 04:26 2048 ----a-w- c:\windows\SysWow64\tzres.dll

.

.

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2011-12-08 00:36 . 2011-12-08 00:36 293736 ----a-w- c:\program files\iTunesOutlookAddIn.dll

2011-12-08 00:36 . 2011-12-08 00:36 421736 ----a-w- c:\program files\iTunesHelper.exe

2011-12-08 00:36 . 2011-12-08 00:36 403304 ----a-w- c:\program files\iTunesAdmin.dll

2011-12-08 00:36 . 2011-12-08 00:36 156520 ----a-w- c:\program files\iTunesHelper.dll

2011-12-08 00:36 . 2011-12-08 00:36 9777000 ----a-w- c:\program files\iTunes.exe

2011-12-08 00:36 . 2011-12-08 00:36 20864360 ----a-w- c:\program files\iTunes.dll

2011-12-08 00:36 . 2011-12-08 00:36 797208 ----a-w- c:\program files\gnsdk_sdkmanager.dll

2011-12-08 00:36 . 2011-12-08 00:36 3029528 ----a-w- c:\program files\gnsdk_dsp.dll

2011-12-08 00:36 . 2011-12-08 00:36 281112 ----a-w- c:\program files\gnsdk_submit.dll

2011-12-08 00:36 . 2011-12-08 00:36 240152 ----a-w- c:\program files\gnsdk_musicid.dll

2011-12-04 09:24 . 2011-09-24 11:31 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl

2011-12-02 16:39 . 2011-12-02 16:39 189248 ----a-w- c:\windows\SysWow64\PnkBstrB.exe

2011-12-02 16:39 . 2011-12-02 16:39 75136 ----a-w- c:\windows\SysWow64\PnkBstrA.exe

2011-11-14 19:16 . 2011-11-14 19:16 112488 ----a-w- c:\program files\ITDetector.ocx

2010-04-07 04:25 . 2010-04-07 04:25 68112 ----a-w- c:\program files\Install.exe

.

.

((((((((((((((((((((((((((((( SnapShot@2012-01-17_12.09.03 )))))))))))))))))))))))))))))))))))))))))

.

+ 2009-07-14 05:10 . 2012-01-17 12:10 35444 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin

+ 2011-09-16 14:27 . 2012-01-17 12:10 10576 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1556954611-3077419938-1783922913-1001_UserData.bin

+ 2011-02-11 19:25 . 2012-01-18 05:51 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

- 2011-02-11 19:25 . 2012-01-16 09:21 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

- 2011-02-11 19:25 . 2012-01-16 09:21 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat

+ 2011-02-11 19:25 . 2012-01-18 05:51 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat

+ 2009-07-14 04:54 . 2012-01-18 05:51 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

- 2009-07-14 04:54 . 2012-01-16 09:21 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

+ 2012-01-18 07:33 . 2012-01-18 07:33 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat

- 2012-01-17 12:07 . 2012-01-17 12:08 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat

+ 2012-01-18 07:33 . 2012-01-18 07:33 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat

- 2012-01-17 12:07 . 2012-01-17 12:07 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat

+ 2011-07-29 08:21 . 2012-01-17 17:27 746048 c:\windows\system32\perfh013.dat

- 2011-07-29 08:21 . 2012-01-16 13:02 746048 c:\windows\system32\perfh013.dat

- 2009-07-14 02:36 . 2012-01-16 13:02 654842 c:\windows\system32\perfh009.dat

+ 2009-07-14 02:36 . 2012-01-17 17:27 654842 c:\windows\system32\perfh009.dat

+ 2011-07-29 08:21 . 2012-01-17 17:27 153254 c:\windows\system32\perfc013.dat

- 2011-07-29 08:21 . 2012-01-16 13:02 153254 c:\windows\system32\perfc013.dat

+ 2009-07-14 02:36 . 2012-01-17 17:27 121714 c:\windows\system32\perfc009.dat

- 2009-07-14 02:36 . 2012-01-16 13:02 121714 c:\windows\system32\perfc009.dat

+ 2009-07-14 05:01 . 2012-01-18 06:52 385568 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat

- 2009-07-14 05:01 . 2012-01-17 12:05 385568 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat

+ 2011-09-20 17:16 . 2012-01-18 06:53 4879120 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat

- 2011-09-20 17:16 . 2012-01-17 12:05 4879120 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat

+ 2011-09-16 16:57 . 2012-01-18 06:53 30000108 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1556954611-3077419938-1783922913-1001-12288.dat

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"NetLimiter"="c:\program files\NetLimiter 3\NLClientApp.exe" [2011-03-21 2910208]

"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]

"uTorrent"="c:\program files (x86)\uTorrent\uTorrent.exe" [2011-10-20 641400]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"HP Remote Solution"="c:\program files (x86)\Hewlett-Packard\HP Remote Solution\HP_Remote_Solution.exe" [2009-08-25 656896]

"LaunchHPOSIAPP"="c:\program files (x86)\Hewlett-Packard\HP Keyboard\LaunchApp.exe" [2009-04-04 385024]

"Norton Ghost 15.0"="c:\program files (x86)\Norton Ghost\Agent\VProTray.exe" [2009-10-01 2596712]

"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-11-01 59240]

"iTunesHelper"="c:\program files\iTunesHelper.exe" [2011-12-08 421736]

"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-12-24 460872]

.

c:\users\Danny\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

HP SimpleSave Monitor.lnk - c:\users\Danny\AppData\Roaming\HP SimpleSave Application\StartHelper.exe [2011-11-2 477080]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 0 (0x0)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableLUA"= 0 (0x0)

"EnableUIADesktopToggle"= 0 (0x0)

"PromptOnSecureDesktop"= 0 (0x0)

"HideFastUserSwitching"= 0 (0x0)

"EnableLinkedConnections"= 1 (0x1)

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]

"EnableShellExecuteHooks"= 1 (0x1)

.

[hkey_local_machine\software\Wow6432Node\microsoft\windows\currentversion\explorer\ShellExecuteHooks]

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]

"mixer3"=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]

BootExecute REG_MULTI_SZ PDBoot.exe\0autocheck autochk *

.

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]

Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer]

@="Service"

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SolutoService]

@="Service"

.

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-06-21 85560]

R2 SolutoService;Soluto PCGenome Core Service;c:\program files\Soluto\SolutoService.exe [2011-08-31 396320]

R3 dfg;dfg;c:\windows\system32\DRIVERS\dfg.sys [x]

R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [2011-08-15 130976]

R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]

R3 GenericMount Helper Service;GenericMount Helper Service;c:\program files (x86)\Norton Ghost\Shared\Drivers\GenericMountHelper.exe [2009-09-21 1571336]

R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536]

R3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys [x]

R3 NLNdisPT;NetLimiter Ndis Protocol Service;c:\windows\system32\DRIVERS\nlndis.sys [x]

R3 NOBU;Norton Online Backup;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]

R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]

R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]

R3 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe [2011-02-01 1127448]

R3 RTCore64;RTCore64;c:\program files (x86)\MSI Afterburner\RTCore64.sys [2010-02-01 14648]

R3 s1018bus;Sony Ericsson Device 1018 driver (WDM);c:\windows\system32\DRIVERS\s1018bus.sys [x]

R3 s1018mdfl;Sony Ericsson Device 1018 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s1018mdfl.sys [x]

R3 s1018mdm;Sony Ericsson Device 1018 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s1018mdm.sys [x]

R3 s1018mgmt;Sony Ericsson Device 1018 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s1018mgmt.sys [x]

R3 s1018nd5;Sony Ericsson Device 1018 USB Ethernet Emulation (NDIS);c:\windows\system32\DRIVERS\s1018nd5.sys [x]

R3 s1018obex;Sony Ericsson Device 1018 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s1018obex.sys [x]

R3 s1018unic;Sony Ericsson Device 1018 USB Ethernet Emulation (WDM);c:\windows\system32\DRIVERS\s1018unic.sys [x]

R3 Symantec SymSnap VSS Provider;Symantec SymSnap VSS Provider;c:\windows\system32\dllhost.exe [2009-07-14 9728]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]

R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]

R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]

R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x]

R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]

S0 Soluto;Soluto;c:\windows\system32\DRIVERS\Soluto.sys [x]

S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\N360x64\0501000.01D\SYMDS64.SYS [x]

S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\N360x64\0501000.01D\SYMEFA64.SYS [x]

S1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20111223.001\BHDrvx64.sys [2011-12-01 1157240]

S1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20120114.005\IDSvia64.sys [2012-01-06 488568]

S1 nltdi;nltdi;c:\program files\NetLimiter 3\nltdi.sys [2011-03-21 88200]

S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\N360x64\0501000.01D\Ironx64.SYS [x]

S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\System32\Drivers\N360x64\0501000.01D\SYMNETS.SYS [x]

S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]

S2 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe [2009-03-02 89600]

S2 BackupService;BackupService;c:\users\Danny\AppData\Roaming\HP SimpleSave Application\uUACTokenSvc.exe [2010-07-01 83512]

S2 hcwD3bda_dvbt;Hauppauge MSi2500 DVBT Service;c:\windows\system32\hauppauge\hcwD3dvb\DVBT\DVBService.exe [x]

S2 HP Power Assistant Service;HP Power Assistant Service;c:\program files\Hewlett-Packard\HP Power Assistant\HPPA_Service.exe [2010-11-17 107576]

S2 HPAuto;HP Auto;c:\program files\Hewlett-Packard\HP Auto\HPAuto.exe [2011-02-17 682040]

S2 HPClientSvc;HP Client Services;c:\program files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-10-11 346168]

S2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-03-28 94264]

S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-12-24 652872]

S2 N360;Norton 360;c:\program files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe [2011-04-17 130008]

S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-15 2253120]

S2 PDFSFilter;PDFSFilter;c:\windows\system32\DRIVERS\PDFsFilter.sys [x]

S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-10-14 381248]

S2 UNS;Intel® Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [2011-02-01 2656280]

S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-01-08 138360]

S3 GenericMount;Generic Mount Driver;c:\windows\system32\DRIVERS\GenericMount.sys [x]

S3 hcwD3bda;Driver for WinTV DVB-T (Model 133xxx);c:\windows\system32\DRIVERS\hcwD3bda64.sys [x]

S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]

S3 MEIx64;Intel® Management Engine Interface;c:\windows\system32\drivers\HECIx64.sys [x]

S3 NLNdisMP;NLNdisMP;c:\windows\system32\DRIVERS\nlndis.sys [x]

S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda64v.sys [x]

S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]

S3 SymSnapService;SymSnapService;c:\program files (x86)\Norton Ghost\Shared\Drivers\SymSnapServicex64.exe [2009-09-21 2963960]

S3 tihub3;TI USB3 Hub Service;c:\windows\system32\drivers\tihub3.sys [x]

S3 tixhci;TI XHCI Service;c:\windows\system32\drivers\tixhci.sys [x]

.

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{A8D647C8-65AC-409F-B7B2-3C0FEE1A32F2}]

2010-02-16 17:02 114688 ----a-w- c:\program files (x86)\PixiePack Codec Pack\InstallerHelper.exe

.

Inhoud van de 'Gedeelde Taken' map

.

2012-01-15 c:\windows\Tasks\1-Click PC Fix Scheduled Scan.job

- c:\program files (x86)\1-Click PC Fix v4\1-Click PC Fix.exe [2012-01-08 22:52]

.

2012-01-15 c:\windows\Tasks\HPCeeScheduleForDANNY-HP$.job

- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 05:15]

.

2012-01-18 c:\windows\Tasks\HPCeeScheduleForDanny.job

- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-14 05:15]

.

.

--------- x86-64 -----------

.

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"BeatsOSDApp"="c:\program files\IDT\WDM\beats64.exe" [2010-10-21 37888]

"hpsysdrv"="c:\program files (x86)\hewlett-packard\HP odometer\hpsysdrv.exe" [2008-11-20 62768]

"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2011-06-24 1128448]

.

------- Bijkomende Scan -------

.

uStart Page = hxxp://www.google.be/

uLocal Page = c:\windows\system32\blank.htm

mLocal Page = c:\windows\SysWOW64\blank.htm

uInternet Settings,ProxyOverride = *.local

IE: &Verzenden naar OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105

IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000

TCP: DhcpNameServer = 192.168.1.1

DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/3.0.1.0/GarminAxControl.CAB

FF - ProfilePath - c:\users\Danny\AppData\Roaming\Mozilla\Firefox\Profiles\4bep9edt.default\

FF - prefs.js: browser.startup.homepage - hxxp://my.benl.ebay.be/ws/eBayISAPI.dll?MyEbay&gbh=1|http://h33t.com/index.php|http://h33t.com/torrents.php?search=nl&category=27&Go.x=40&Go.y=3|http://www.gamezonemail.com/eonapps/ft/wm/page/wm#%7B%22page%22:%22view%22,%22folder%22:%7B%22boxHandle%22:%7B%22owner%22:28877093,%22eonType%22:%22PersonalBoxHandle%22%7D,%22folderPath%22:%7B%22path%22:%22/INBOX%22,%22eonType%22:%22Path%22%7D,%22eonType%22:%22FolderHandle%22%7D,%22EV1%22:%22tLTe%22%7D|http://www.hetmultimediacafe.be/index.php|http://forum-mp3server.biz/index.php?sid=6dad632492143b7b6b271f8ec8d7cd55

FF - prefs.js: network.proxy.type - 0

.

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\N360]

"ImagePath"="\"c:\program files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe\" /s \"N360\" /m \"c:\program files (x86)\Norton 360\Engine\5.1.0.29\diMaster.dll\" /prefetch:1"

--

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\pdfcDispatcher]

"ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.10"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]

@Denied: (A 2) (Everyone)

@="IFlashBroker4"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

------------------------ Andere Aktieve Processen ------------------------

.

c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

c:\windows\SysWOW64\ezSharedSvcHost.exe

c:\program files (x86)\Hewlett-Packard\HP Keyboard\ModLEDKey.exe

c:\program files (x86)\Norton Ghost\Agent\VProSvc.exe

c:\windows\SysWOW64\PnkBstrA.exe

c:\program files (x86)\Hewlett-Packard\HP Keyboard\CNYHKEY.exe

c:\program files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

.

**************************************************************************

.

Voltooingstijd: 2012-01-18 08:49:19 - machine werd herstart

ComboFix-quarantined-files.txt 2012-01-18 07:49

ComboFix2.txt 2012-01-17 12:24

.

Pre-Run: 1.107.711.361.024 bytes beschikbaar

Post-Run: 1.110.539.309.056 bytes beschikbaar

.

- - End Of File - - 24AC99FBD49F3EE4B17CAB746B158A04

en nu emsisoftlog; ziet er ook heel proffesionele soft uit;

:-)

Emsisoft Emergency Kit - Versie 1.0

Laatste Update: 1/18/2012 10:24:01 AM

Scaninstellingen:

Scantype: Diepe Scan

Objecten: Geheugen, Sporen, Cookies, C:\, D:\

Scan archieven: Aan

Heuristieken: Uit

ADS Scan: Aan

Scan gestart: 1/18/2012 10:25:08 AM

c:\program files (x86)\GameSpy Arcade Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\AddIns Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\cstrike Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\cstrike\frontline Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\halflife Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\halflife\action Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\halflife\cstrike Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\halflife\firearms Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\halflife\frontline Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\halflife\gearbox Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\halflife\tfc Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2 Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\aq2 Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\battle Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\chaosdm Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\duel Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\freeze Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\gloom Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\gxmod Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\holywars Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\jail Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\kots Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\lfiredm Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\lithium2 Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\LMCTF Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\pball Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\q2comp Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\QPong Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\ra2 Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\requiem Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\sconfig Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\tourney Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\wf Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake2\wod Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake3 Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake3\alliance Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake3\beryllium Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake3\excessive Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake3\instagib Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake3\jailbreak Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake3\matchmod Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake3\osp Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake3\q3comp Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake3\q3f Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake3\q3ut2 Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake3\requiem Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake3\rocketarena3 Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\quake3\wfa Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\tribes Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\tribes\Arena Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\tribes\ch Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\tribes\CTF Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\tribes\CTFb Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\tribes\CTFplus Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\tribes\DD Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\tribes\DM Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\tribes\Duel Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\tribes\Fr Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\tribes\MT Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\tribes\Open Cal Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\tribes\RPG Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\tribes\TAC Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\ut Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\ut\Excessive Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\ut\RocketArena Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Custom\ut\Swat Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Images Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Images\portraits Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Profiles Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Profiles\(default) Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Services Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Services\_common Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Services\_demospy Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Services\_fplanet Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Services\_gnews Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Services\_gspyder Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Services\_news Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Services\_support Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Skins Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Sounds Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Sounds\(default) Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Sounds\classic Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\users\danny\appdata\roaming\microsoft\windows\start menu\programs\GameSpy Arcade Ontdekt: Trace.Directory.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\4dca9208.dat Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Aphex.exe Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\ArcRes.dll Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\dat.bmp Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\def_banner.gif Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\def_banner.html Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\def_bannerbg.jpg Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\def_loading.gif Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\def_logo.jpg Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\def_news.html Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\fpupdate.exe Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\GameSpy Arcade - Debug.lnk Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\GameSpy Arcade Help.url Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\GameSpy Arcade Website.url Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\GameSpy Arcade.lnk Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\GameSpy.com Gaming's Homepage.url Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\GSAPak.exe Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\gslan.dll Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\gsws.dll Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\INSTALL.LOG Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\pw32.dll Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\readme.html Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Register GameSpy Arcade.url Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\RptCrash.exe Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Services\_news\rsrc.dir Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Services\_news\service_tab.psd Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Services\_news\service_tab+.tga Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Services\_support\rsrc.dir Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Services\_support\service_tab.psd Ontdekt: Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\ws_default.html Ontdekt: Trace.File.GameSpy Arcade!A2

Value: HKEY_CURRENT_USER\Software\GameSpy\GameSpy Arcade --> InstDir Ontdekt: Trace.Registry.GameSpy Arcade!A2

Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\GameSpy Arcade --> DisplayName Ontdekt: Trace.Registry.GameSpy Arcade!A2

Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\GameSpy Arcade --> UninstallString Ontdekt: Trace.Registry.GameSpy Arcade!A2

C:\Users\Danny\AppData\Roaming\Mozilla\Firefox\Profiles\4bep9edt.default\cookies.sqlite:376 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2

C:\Users\Danny\AppData\Roaming\Mozilla\Firefox\Profiles\4bep9edt.default\cookies.sqlite:377 Ontdekt: Trace.TrackingCookie.nl.sitestat.com!A2

C:\Users\Danny\Documents\7.UPDATE\nds movie\Nieuwe map (2)\BatchDPG%201.52[1]\BatchDPG 1.52\BatchDPG 1.52\BatchDPG.exe Ontdekt: Trojan-Dropper.Agent!IK

C:\Users\Danny\Documents\My Trainers\CH Trainer Manager.exe Ontdekt: Trojan.Win32.Buzus.ezrz!A2

Gescand

Bestanden: 835374

Sporen: 403649

Cookies: 850

Processen: 85

Gevonden

Bestanden: 2

Sporen: 117

Cookies: 2

Processen: 0

Registersleutels: 0

Scan Geëindigd: 1/18/2012 5:12:40 PM

Scantijd: 6:47:32

C:\Users\Danny\Documents\My Trainers\CH Trainer Manager.exe Verwijderd Trojan.Win32.Buzus.ezrz!A2

C:\Users\Danny\Documents\7.UPDATE\nds movie\Nieuwe map (2)\BatchDPG%201.52[1]\BatchDPG 1.52\BatchDPG 1.52\BatchDPG.exe Verwijderd Trojan-Dropper.Agent!IK

C:\Users\Danny\AppData\Roaming\Mozilla\Firefox\Profiles\4bep9edt.default\cookies.sqlite:376 Verwijderd Trace.TrackingCookie.nl.sitestat.com!A2

C:\Users\Danny\AppData\Roaming\Mozilla\Firefox\Profiles\4bep9edt.default\cookies.sqlite:377 Verwijderd Trace.TrackingCookie.nl.sitestat.com!A2

Value: HKEY_CURRENT_USER\Software\GameSpy\GameSpy Arcade --> InstDir Verwijderd Trace.Registry.GameSpy Arcade!A2

Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\GameSpy Arcade --> DisplayName Verwijderd Trace.Registry.GameSpy Arcade!A2

Value: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\GameSpy Arcade --> UninstallString Verwijderd Trace.Registry.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\4dca9208.dat Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Aphex.exe Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\ArcRes.dll Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\dat.bmp Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\def_banner.gif Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\def_banner.html Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\def_bannerbg.jpg Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\def_loading.gif Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\def_logo.jpg Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\def_news.html Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\fpupdate.exe Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\GameSpy Arcade - Debug.lnk Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\GameSpy Arcade Help.url Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\GameSpy Arcade Website.url Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\GameSpy Arcade.lnk Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\GameSpy.com Gaming's Homepage.url Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\GSAPak.exe Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\gslan.dll Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\gsws.dll Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\INSTALL.LOG Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\pw32.dll Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\readme.html Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Register GameSpy Arcade.url Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\RptCrash.exe Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Services\_news\rsrc.dir Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Services\_news\service_tab.psd Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Services\_news\service_tab+.tga Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Services\_support\rsrc.dir Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\Services\_support\service_tab.psd Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade\ws_default.html Verwijderd Trace.File.GameSpy Arcade!A2

c:\program files (x86)\GameSpy Arcade Verwijderd Trace.Directory.GameSpy Arcade!A2

c:\users\danny\appdata\roaming\microsoft\windows\start menu\programs\GameSpy Arcade Verwijderd Trace.Directory.GameSpy Arcade!A2

Verwijderd

Bestanden: 2

Sporen: 117

Cookies: 2

En nu nog testen!

Link naar reactie
Delen op andere sites

  • Reacties 36
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Beste reacties in dit topic

Malware is nu wel definitief uitgesloten, na de eerder behandelingen. Je zal het dan inderdaad op een ander vlak moeten gaan zoeken. Inmiddels mag je de gebruikte tools wel al opruimen :

Verwijder manueel Emsisoft Emergency Kit.

Verwijder Combofix: Start -> Uitvoeren/Zoekopdracht en typ: ComboFix /Uninstall

Dit zal Combofix verwijderen + gerelateerde mappen en bestanden, herstelt de klokinstellingen opnieuw, verbergt de bestandsextensies, gaat verborgen bestanden en systeembestanden terug verbergen en maakt een nieuw herstelpunt.

Indien aanwezig mag je de map C:\Qoobox manueel verwijderen.

Download CCleaner.

Klik op “Download Latest Version” en dan start de download van CCleaner automatisch en gratis op.

Installeer het en start CCleaner op. Klik in de linkse kolom op “Cleaner”. Klik achtereenvolgens op ‘Analyseren’ en 'Schoonmaken'. Soms is 1 analyse niet voldoende. Deze procedure mag je herhalen tot de analyse geen fouten meer aangeeft. Klik vervolgens in de linkse kolom op “Register” en klik op ‘Scan naar problemen”. Als er fouten gevonden worden klik je op ”Herstel geselecteerde problemen” en ”OK”. Dan krijg je de vraag om een back-up te maken. Klik op “JA”. Kies dan “Herstel alle geselecteerde fouten”. Sluit hierna CCleaner terug af.

Wil je dit uitgebreid in beeld bekijken, klik dan hier voor de handleiding.

Het is aangewezen om de bestaande herstelpunten te verwijderen (daar zitten besmette herstelpunten tussen die je eventueel zou kunnen terugzetten) door systeemherstel tijdelijk uit te schakelen. Doe dit

• via Start -> Configuratiescherm -> Systeem -> Systeembeveiliging -> schakel nu systeemherstel uit door de gewenste schijf te selecteren en op "configureren" te klikken.

• Klik nu op "verwijderen" om alle herstelpunten te verwijderen.

• Klik op "Toepassen" en "OK".

• Herstart nu de PC.

Link naar reactie
Delen op andere sites

Het zou inderdaad een hardwareprobleem kunnen zijn maar hierover een vraag stellen in de categorie hardware is niet nodig hoor.

We gaan hier wel verder alhoewel ik vrees dat we niet veel kunnen doen.

Er kunnen verschillende oorzaken zijn en waarschijnlijk moet er een onderdeel vervangen worden.

In je eerste bericht zeg je dat het om een nieuwe pc gaat (enkele maanden oud) en dus heb je er nog garantie op.

Ik zou er mee naar de winkel of de verkoper gaan en vragen om het na te kijken en te herstellen onder garantie.

Link naar reactie
Delen op andere sites

Naar de winkel teruggaan is moeilijk daar ik al een andere videokaart en zwaardere voeding gestoken heb. Ik kan die er wel terug uithalen en de originele terug erin steken, maar dat is een pak werk voor mij(doe dat niet dagelijks) en waarschijnlijk gaan ze dat kunnen zien in de winkel en geld er dan toch geen garantie meer.

a propos de pc werkte enkele weken prima met de andere videokaart en zwaardere voeding.

Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.