Ga naar inhoud

Combofix

Joskuh37
 Delen

Aanbevolen berichten

Joskuh37 Nieuweling

Joskuh37

Geplaatst:
Geplaatst:

Ik heb combofix laten runnen.

Maar moet de log door een deskundige laten checken op nog meer virussen.

WIE WIL ME HELPEN???

ComboFix 12-07-16.01 - Jos 16-07-2012 22:59:08.2.2 - x86

Microsoft Windows 7 Ultimate 6.1.7601.1.1252.31.1033.18.2046.1149 [GMT 2:00]

Gestart vanuit: c:\users\Jos\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\2WAJFU1N\ComboFix.exe

AV: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}

FW: AVG Internet Security 2012 *Disabled* {621CC794-9486-F902-D092-0484E8EA828B}

SP: AVG Anti-Virus Free Edition 2012 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}

SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

(((((((((((((((((((( Bestanden Gemaakt van 2012-06-16 to 2012-07-16 ))))))))))))))))))))))))))))))

.

.

2012-07-16 21:08 . 2012-07-16 21:08 -------- d-----w- c:\users\Default\AppData\Local\temp

2012-07-16 21:08 . 2012-07-16 21:08 -------- d-----w- c:\users\Administrator\AppData\Local\temp

2012-07-16 20:03 . 2012-07-16 20:03 -------- d-----w- c:\program files\News Server Tester

2012-07-16 20:03 . 1998-07-05 22:00 16896 ----a-w- c:\windows\system32\Winskde.dll

2012-07-16 20:03 . 1998-07-05 22:00 125712 ----a-w- c:\windows\system32\Vb6de.dll

2012-07-16 20:03 . 1998-06-23 22:00 108336 ----a-w- c:\windows\system32\Mswinsck.ocx

2012-07-15 17:37 . 2012-07-15 17:37 -------- d-----w- c:\users\Jos\AppData\Roaming\TuneUp Software

2012-07-15 17:36 . 2012-07-16 19:45 -------- d-----w- c:\programdata\TuneUp Software

2012-07-15 17:36 . 2012-07-15 17:36 -------- d-sh--w- c:\programdata\{32364CEA-7855-4A3C-B674-53D8E9B97936}

2012-07-15 10:38 . 2012-07-15 10:38 -------- d-----w- c:\program files\Spotnet

2012-07-15 09:31 . 2012-07-15 10:47 -------- d-----w- c:\programdata\Spotnet

2012-07-10 21:17 . 2012-06-12 02:40 2345984 ----a-w- c:\windows\system32\win32k.sys

2012-07-10 21:02 . 2012-06-06 05:05 372736 ----a-w- c:\program files\Common Files\System\ado\msadox.dll

2012-07-05 23:05 . 2012-07-16 21:09 -------- d-----w- c:\users\Jos\AppData\Local\temp

2012-07-05 20:27 . 2012-07-05 20:27 -------- d-----w- c:\users\Jos\AppData\Roaming\Malwarebytes

2012-07-02 15:45 . 2012-07-02 15:46 -------- d-----w- c:\program files\VirtualDJ

2012-07-02 15:38 . 2012-07-02 15:38 -------- d-----w- c:\program files\Guillemot

2012-07-02 15:38 . 2010-05-06 11:58 25088 ----a-w- c:\windows\system32\drivers\HDJCtrl.sys

2012-07-02 15:38 . 2010-05-06 11:58 141312 ----a-w- c:\windows\system32\drivers\HDJMidi.sys

2012-07-02 15:38 . 2010-01-22 12:54 77312 ----a-w- c:\windows\system32\HerculesDJDevices.dll

2012-07-02 15:38 . 2010-05-06 11:58 135168 ----a-w- c:\windows\system32\drivers\HDJBulk.sys

2012-07-02 15:38 . 2010-05-06 11:58 185344 ----a-w- c:\windows\system32\drivers\HDJAsioK.sys

2012-07-02 15:38 . 2010-01-25 10:36 110592 ----a-w- c:\windows\system32\HRFDongle.dll

2012-07-02 15:38 . 2010-01-22 12:54 66048 ----a-w- c:\windows\system32\HDJAsiou.dll

2012-07-02 15:38 . 2009-12-04 15:26 73728 ----a-w- c:\windows\system32\HDJSAPI.dll

2012-07-02 15:38 . 2008-01-25 10:37 73728 ----a-w- c:\windows\system32\HDJAsioCpl.dll

2012-07-02 15:38 . 2010-01-25 10:36 380928 ----a-w- c:\windows\system32\HDJAPI.dll

2012-07-02 15:38 . 2009-12-04 15:31 282624 ----a-w- c:\windows\system32\HDJSeries.cpl

2012-07-02 15:37 . 2012-07-02 15:37 -------- d--h--w- c:\program files\InstallShield Installation Information

2012-07-02 15:37 . 2012-07-02 15:37 -------- d-----w- c:\program files\Hercules

2012-07-02 15:37 . 2012-07-02 15:37 -------- d-----w- c:\users\Jos\AppData\Roaming\InstallShield

2012-06-21 14:00 . 2012-06-02 22:19 53784 ----a-w- c:\windows\system32\wuauclt.exe

2012-06-21 14:00 . 2012-06-02 22:19 45080 ----a-w- c:\windows\system32\wups2.dll

2012-06-21 14:00 . 2012-06-02 22:19 1933848 ----a-w- c:\windows\system32\wuaueng.dll

2012-06-21 14:00 . 2012-06-02 22:12 2422272 ----a-w- c:\windows\system32\wucltux.dll

2012-06-21 14:00 . 2012-06-02 22:19 35864 ----a-w- c:\windows\system32\wups.dll

2012-06-21 14:00 . 2012-06-02 22:19 577048 ----a-w- c:\windows\system32\wuapi.dll

2012-06-21 14:00 . 2012-06-02 22:12 88576 ----a-w- c:\windows\system32\wudriver.dll

2012-06-21 13:59 . 2012-06-02 13:19 171904 ----a-w- c:\windows\system32\wuwebv.dll

2012-06-21 13:59 . 2012-06-02 13:12 33792 ----a-w- c:\windows\system32\wuapp.exe

.

.

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2012-05-09 07:17 . 2012-05-09 07:17 419488 ----a-w- c:\windows\system32\FlashPlayerApp.exe

2012-05-09 07:17 . 2011-10-11 06:04 70304 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2012-05-01 04:44 . 2012-06-14 12:43 164352 ----a-w- c:\windows\system32\profsvc.dll

2012-04-28 04:41 . 2012-06-14 12:44 919040 ----a-w- c:\windows\system32\rdpcorets.dll

2012-04-28 03:17 . 2012-06-14 12:44 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys

2012-04-26 04:45 . 2012-06-14 12:43 58880 ----a-w- c:\windows\system32\rdpwsx.dll

2012-04-26 04:45 . 2012-06-14 12:43 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll

2012-04-26 04:41 . 2012-06-14 12:43 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe

2012-04-24 04:36 . 2012-06-14 12:44 140288 ----a-w- c:\windows\system32\cryptsvc.dll

2012-04-24 04:36 . 2012-06-14 12:44 1158656 ----a-w- c:\windows\system32\crypt32.dll

2012-04-24 04:36 . 2012-06-14 12:44 103936 ----a-w- c:\windows\system32\cryptnet.dll

2012-04-19 02:50 . 2012-04-19 02:50 24896 ----a-w- c:\windows\system32\drivers\avgidshx.sys

.

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

.

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{95B7759C-8C7F-4BF1-B163-73684A933233}]

2012-07-07 18:19 2074208 ----a-w- c:\program files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

"{95B7759C-8C7F-4BF1-B163-73684A933233}"= "c:\program files\AVG Secure Search\11.1.0.12\AVG Secure Search_toolbar.dll" [2012-07-07 2074208]

.

[HKEY_CLASSES_ROOT\clsid\{95b7759c-8c7f-4bf1-b163-73684a933233}]

[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj.1]

[HKEY_CLASSES_ROOT\AVG Secure Search.PugiObj]

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2008-06-09 2363392]

"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]

"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2011-08-15 39408]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]

"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]

"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 648072]

"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2012-04-05 2587008]

"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-09-07 37296]

"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]

"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-02-20 59240]

"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2011-10-24 421888]

"vProt"="c:\program files\AVG Secure Search\vprot.exe" [2012-07-07 1107552]

"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2011-05-10 49208]

"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-03-27 421736]

"Hercules DJ Series"="c:\program files\Hercules\Audio\DJ Console Series\HDJSeriesCPL.exe" [2010-02-03 918824]

.

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\

HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2009-5-21 275768]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]

BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart

.

R2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2012\avgidsagent.exe [x]

R2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [x]

R2 HerculesDJControlMP3;Hercules DJ Control MP3;c:\program files\Hercules\Audio\DJ Console Series\HerculesDJControlMP3.EXE [x]

R3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\AVG\AVG10\Toolbar\ToolbarBroker.exe [x]

R3 Bulk;HDJBulk;c:\windows\system32\Drivers\HDJBulk.sys [x]

R3 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [x]

R3 HDJAsioK;HDJAsioK;c:\windows\system32\Drivers\HDJAsioK.sys [x]

R3 HDJMidi;Hercules DJ Console Mk4 MIDI;c:\windows\system32\DRIVERS\HDJMidi.sys [x]

R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]

R3 silabenm;Silicon Labs CP210x USB to UART Bridge Serial Port Enumerator Driver;c:\windows\system32\DRIVERS\silabenm.sys [x]

R3 silabser;Silicon Labs CP210x USB to UART Bridge Driver;c:\windows\system32\DRIVERS\silabser.sys [x]

R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]

R3 tsusbhub;tsusbhub; [x]

S0 AVGIDSHX;AVGIDSHX;c:\windows\system32\DRIVERS\avgidshx.sys [x]

S0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx86.sys [x]

S1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx86.sys [x]

S1 Avgtdix;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdix.sys [x]

S2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2012\avgwdsvc.exe [x]

S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdriverx.sys [x]

S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\avgidsfilterx.sys [x]

S3 AVGIDSShim;AVGIDSShim;c:\windows\system32\DRIVERS\avgidsshimx.sys [x]

S3 RTL8187;Realtek RTL8187 Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8187.sys [x]

.

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

WindowsMobile REG_MULTI_SZ wcescomm rapimgr

LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr

HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12

hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc

.

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]

2008-06-09 09:14 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{9C450606-ED24-4958-92BA-B8940C99D441}]

2009-03-04 15:32 8192 ----a-w- c:\program files\PixiePack Codec Pack\InstallerHelper.exe

.

Inhoud van de 'Gedeelde Taken' map

.

2012-07-16 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-18 18:06]

.

2012-07-16 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files\Google\Update\GoogleUpdate.exe [2010-05-18 18:06]

.

.

------- Bijkomende Scan -------

.

uStart Page = https://login.live.com/login.srf?wa=wsignin1.0&rpsnv=11&ct=1306876659&rver=6.1.6206.0&wp=MBI&wreply=hxxp:%2F%2Fmail.live.com%2Fdefault.aspx&lc=1043&id=64855&mkt=nl-nl&cbcxt=mai&snsc=1

uDefault_Search_URL = hxxp://www.google.com/ie

mStart Page = hxxp://www.bigseekpro.com/clipextractor/{E815D5A4-DC38-437D-A6DA-71B7B13E05D9}

uInternet Settings,ProxyOverride = *.local

uSearchAssistant = hxxp://www.google.com/ie

uSearchURL,(Default) = hxxp://www.google.com/search?q=%s

IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200

IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000

TCP: DhcpNameServer = 212.54.40.25 212.54.35.25

Handler: viprotocol - {B658800C-F66E-4EF3-AB85-6C0C227862A9} - c:\program files\Common Files\AVG Secure Search\ViProtocolInstaller\11.2.0\ViProtocol.dll

.

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Voltooingstijd: 2012-07-16 23:12:42

ComboFix-quarantined-files.txt 2012-07-16 21:12

ComboFix2.txt 2012-07-05 23:05

.

Pre-Run: 53.638.479.872 bytes beschikbaar

Post-Run: 53.553.176.576 bytes beschikbaar

.

- - End Of File - - EC769EE1E386C967A9014A41A1616E7F

kape Grootmeester

kape

Geplaatst:
Geplaatst:

Aan het logje van Combofix hebben we niet echt iets, als we niet weten wat het probleem met deze PC was ? Een virus of andere besmetting ? En zo ja, hetwelke dan ? Laat dat eerst even weten vóór we een begin van oplossing kunnen bieden.

 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.