Ga naar inhoud

Aanbevolen berichten

Geplaatst:

Ik heb wel een internet verbinding maar kan geen emails versturen en ontvangen. Kan ook geen verbinding maken met MSN en kan ook geen updates binnen halen. Ik kan wel op de normale internetsites komen. Kan ook geen systeemherstel uitvoeren.

Geplaatst:

Download HiJackThis

Dubbelklik op HJTInstall.exe

Hijackthis wordt nu op je PC geïnstalleerd, een snel koppeling wordt op je bureaublad geplaatst. Klik op "Do a systemscan and save a logfile". en hang dit logje aan je volgende bericht.

NB. Ben je een gebruiker van Windows Vista dan moet je eerst rechtsklikken op HijackThis.exe en dan kiezen voor "Run as Administrator".

Geplaatst:

Bijgaande het log

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 15:42:17, on 6-11-2008

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.6000.16735)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\csrss.exe

C:\WINDOWS\SYSTEM32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Windows Defender\MsMpEng.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Panda Security\Panda Internet Security 2009\TPSrv.exe

C:\WINDOWS\System32\svchost.exe

C:\PROGRAM FILES\PANDA SECURITY\PANDA INTERNET SECURITY 2009\WebProxy.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE

C:\Program Files\Panda Security\Panda Internet Security 2009\PsCtrls.exe

C:\Program Files\Panda Security\Panda Internet Security 2009\PskSvc.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\Explorer.EXE

c:\program files\panda security\panda internet security 2009\firewall\PSHOST.EXE

C:\Program Files\Panda Security\Panda Internet Security 2009\ApvxdWin.exe

C:\WINDOWS\System32\alg.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\Panda Security\Panda Internet Security 2009\SRVLOAD.EXE

C:\Program Files\Panda Security\Panda Internet Security 2009\PavBckPT.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe

C:\Program Files\Spyware Doctor\pctsAuxs.exe

C:\Program Files\Spyware Doctor\pctsSvc.exe

C:\Program Files\Spyware Doctor\pctsTray.exe

C:\Documents and Settings\Ria van Felius\Mijn documenten\downloads\HijackThis.exe

C:\WINDOWS\system32\NOTEPAD.EXE

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Program Files\Zylom Games\Chainz 2 Deluxe\chainz2.exe

C:\Program Files\Zylom Games\Chainz 2 Deluxe\chainz2.dll

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

C:\WINDOWS\System32\wbem\wmiprvse.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Live Search

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Live Search

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Live Search

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen

O2 - BHO: Adobe PDF Reader Help bij koppelingen - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll

O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - (no file)

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Bloglines BHO - {F128ED4D-364F-46D3-9E4C-1F3922A43A05} - C:\Program Files\BloglinesBHO\BloglinesBHO.dll

O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Security\Panda Internet Security 2009\APVXDWIN.EXE" /s

O4 - HKLM\..\Run: [sCANINICIO] "C:\Program Files\Panda Security\Panda Internet Security 2009\Inicio.exe"

O4 - HKLM\..\Run: [iSTray] "C:\Program Files\Spyware Doctor\pctsTray.exe"

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Lokale service')

O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Netwerkservice')

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll

O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_07\bin\npjpi160_07.dll

O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe

O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O20 - AppInit_DLLs: C:\WINDOWS\system32\wmfhotfix.dll

O23 - Service: Panda Software Controller - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Internet Security 2009\PsCtrls.exe

O23 - Service: Panda Host Service (PSHost) - Panda Software International - c:\program files\panda security\panda internet security 2009\firewall\PSHOST.EXE

O23 - Service: Panda PSK service (PskSvcRetail) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Internet Security 2009\PskSvc.exe

O23 - Service: PC Tools Auxiliary Service (sdAuxService) - PC Tools - C:\Program Files\Spyware Doctor\pctsAuxs.exe

O23 - Service: PC Tools Security Service (sdCoreService) - PC Tools - C:\Program Files\Spyware Doctor\pctsSvc.exe

O23 - Service: Panda TPSrv (TPSrv) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Internet Security 2009\TPSrv.exe

O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Program Files\TuneUp Utilities 2004\WinStylerThemeSvc.exe

--

End of file - 6566 bytes

Geplaatst:

Start Hijackthis op en kies voor 'Do a system scan only'. Selecteer alleen de items hieronder genoemd:

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

O2 - BHO: (no name) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - (no file)

O2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)

Klik op 'Fix checked' om de items te verwijderen.

Download Combofix naar je Bureaublad.

OPMERKING: indien je, tijdens of na het downloaden van Combofix of tijdens het gebruik van Combofix een melding krijgt van je Antivirus- of een andere realtime scanner, schakel dan deze scanner uit en download Combofix opnieuw.

Sommige scanners zien bepaalde componenten die Combofix gebruikt als verdacht en gaan deze blokkeren of verwijderen!

  • Dubbelklik op Combofix.exe om het te starten.
    Indien je Combofix al eerder hebt gebruikt, kan je een waarschuwing krijgen dat een update beschikbaar is. Sta toe dat ComboFix wordt geupdate.
    Volg de instructies, aanvaard de disclaimer door op Ja te klikken.
    Indien de Recovery Console niet geïnstalleerd is, wordt je gevraagd om dit alsnog te doen door op JA te klikken in het "Query - Recovery Console" venster.
    Klik op OK en Ja om automatisch de Recovery Console te laten installeren.
    Klik na afloop terug op Ja om het scannen op malware te starten.
    Tijdens het runnen van de fix, NIET in het venster klikken, want dit zal je pc doen vasthangen.

Wanneer de fix voltooid is en na herstart, zal de log Combofix.txt openen.

Post dit logje in je volgende antwoord.

Geplaatst:

Bijgaande het combofix.txt

ComboFix 08-11-05.02 - Eigenaar 2008-11-06 20:33:06.1 - NTFSx86

Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1043.18.144 [GMT 1:00]

Gestart vanuit: \\Server\mijn documenten\Donwloads\Programma\ComboFix.exe

* Nieuw herstelpunt werd aangemaakt

WAARSCHUWING - DE RECOVERY CONSOLE IS NIET OP DIT SYSTEEM GEINSTALLEERD !!

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

c:\windows\system32\open.ico

.

(((((((((((((((((((( Bestanden Gemaakt van 2008-10-06 to 2008-11-06 ))))))))))))))))))))))))))))))

.

2008-11-06 16:01 . 2008-11-06 16:01 <DIR> d-------- c:\documents and settings\Eigenaar\Application Data\PC Tools

2008-11-06 15:41 . 2008-11-06 15:41 <DIR> d-------- c:\program files\Trend Micro

2008-11-06 10:44 . 2008-08-25 12:36 81,288 --a------ c:\windows\system32\drivers\iksyssec.sys

2008-11-06 10:44 . 2008-08-25 12:36 66,952 --a------ c:\windows\system32\drivers\iksysflt.sys

2008-11-06 10:44 . 2008-08-25 12:36 40,840 --a------ c:\windows\system32\drivers\ikfilesec.sys

2008-11-06 10:44 . 2008-06-02 16:19 29,576 --a------ c:\windows\system32\drivers\kcom.sys

2008-11-06 10:43 . 2008-11-06 16:01 <DIR> d-------- c:\program files\Spyware Doctor

2008-11-05 13:02 . 2008-11-05 21:18 <DIR> d-------- c:\program files\Spybot - Search & Destroy

2008-11-05 12:49 . 2008-11-06 17:01 <DIR> d-a------ c:\documents and settings\All Users.WINDOWS\Application Data\TEMP

2008-11-04 19:45 . 2008-11-04 19:46 <DIR> d-------- c:\program files\Pixum

2008-11-04 15:21 . 2008-11-04 20:13 <DIR> d-------- c:\documents and settings\All Users.WINDOWS\Application Data\Hema Album Software Advanced

2008-10-25 13:40 . 2008-10-25 13:40 <DIR> d-------- c:\documents and settings\Eigenaar\Application Data\Eyeblaster

2008-10-24 08:30 . 2008-10-15 17:37 337,408 -----c--- c:\windows\system32\dllcache\netapi32.dll

2008-10-22 16:27 . 2008-10-22 16:27 <DIR> d-------- c:\documents and settings\Eigenaar\Application Data\Windows Search

2008-10-20 15:35 . 2008-10-22 08:30 <DIR> d-------- c:\program files\Microsoft Silverlight

2008-10-20 15:33 . 2008-10-20 15:33 <DIR> d-------- c:\windows\system32\GroupPolicy

2008-10-20 15:33 . 2008-11-03 20:58 <DIR> d-------- c:\program files\Windows Desktop Search

2008-10-20 15:32 . 2008-03-07 18:02 192,000 -----c--- c:\windows\system32\dllcache\offfilt.dll

2008-10-20 15:32 . 2008-03-07 18:02 98,304 -----c--- c:\windows\system32\dllcache\nlhtml.dll

2008-10-20 15:32 . 2008-03-07 18:02 29,696 -----c--- c:\windows\system32\dllcache\mimefilt.dll

2008-10-20 13:17 . 2008-10-20 14:35 <DIR> d-------- c:\program files\Microsoft Works

2008-10-20 10:34 . 2008-10-20 10:34 <DIR> d-------- c:\program files\Windows Media Connect 2

2008-10-20 10:32 . 2008-10-20 10:32 <DIR> d-------- c:\windows\system32\LogFiles

2008-10-20 10:32 . 2008-10-20 10:33 <DIR> d-------- c:\windows\system32\drivers\UMDF

2008-10-15 16:26 . 2008-09-08 11:41 333,824 -----c--- c:\windows\system32\dllcache\srv.sys

2008-10-15 16:25 . 2008-09-15 16:28 1,846,528 -----c--- c:\windows\system32\dllcache\win32k.sys

2008-10-15 16:24 . 2008-08-14 14:27 2,193,536 -----c--- c:\windows\system32\dllcache\ntoskrnl.exe

2008-10-15 16:24 . 2008-08-14 14:27 2,149,888 -----c--- c:\windows\system32\dllcache\ntkrnlmp.exe

2008-10-15 16:24 . 2008-08-14 14:27 2,070,400 -----c--- c:\windows\system32\dllcache\ntkrnlpa.exe

2008-10-15 16:24 . 2008-08-14 14:27 2,028,544 -----c--- c:\windows\system32\dllcache\ntkrpamp.exe

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2008-11-05 21:43 --------- d-----w c:\program files\FinePixViewer

2008-11-05 20:18 --------- d-----w c:\documents and settings\All Users.WINDOWS\Application Data\Spybot - Search & Destroy

2008-11-05 19:52 --------- d-----w c:\program files\QuickTime

2008-11-05 14:40 --------- d-----w c:\program files\TuneUp Utilities 2004

2008-11-05 11:07 208,860 ----a-w c:\windows\system32\drivers\APPFCONT.DAT.bck

2008-11-05 11:07 208,860 ----a-w c:\windows\system32\drivers\APPFCONT.DAT

2008-11-05 10:57 --------- d-----w c:\documents and settings\All Users.WINDOWS\Application Data\Backup

2008-10-30 13:48 --------- d-----w c:\program files\ConquerCam

2008-10-25 12:40 --------- d-----w c:\documents and settings\Eigenaar\Application Data\Zylom

2008-10-25 12:39 --------- d-----w c:\program files\Zylom Games

2008-10-08 09:33 --------- d-----w c:\program files\Google

2008-10-06 07:28 1,132 ----a-w c:\windows\system32\drivers\APPFLTR.CFG.bck

2008-10-06 07:28 1,132 ----a-w c:\windows\system32\drivers\APPFLTR.CFG

2008-10-03 14:31 --------- d-----w c:\program files\Java

2008-10-02 22:33 --------- d-----w c:\documents and settings\All Users.WINDOWS\Application Data\Panda Software

2008-10-02 12:10 --------- d--h--w c:\program files\InstallShield Installation Information

2008-10-02 12:10 --------- d-----w c:\program files\Panda Security

2008-10-02 12:10 --------- d-----w c:\documents and settings\Eigenaar\Application Data\Panda Security

2008-10-02 12:10 --------- d-----w c:\documents and settings\All Users.WINDOWS\Application Data\Panda Security

2008-10-02 12:07 --------- d-----w c:\program files\Panda Software

2008-10-02 12:07 --------- d-----w c:\program files\Common Files\Panda Security

2008-09-15 15:28 1,846,528 ----a-w c:\windows\system32\win32k.sys

2008-09-08 10:41 333,824 ----a-w c:\windows\system32\drivers\srv.sys

2008-08-26 08:27 826,368 ----a-w c:\windows\system32\wininet.dll

2008-08-14 13:27 2,193,536 ----a-w c:\windows\system32\ntoskrnl.exe

2008-08-14 13:27 2,070,400 ----a-w c:\windows\system32\ntkrnlpa.exe

2007-02-03 13:47 105 ----a-w c:\program files\WS_FTP.LOG

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"APVXDWIN"="c:\program files\Panda Security\Panda Internet Security 2009\APVXDWIN.EXE" [2008-07-16 857344]

"SCANINICIO"="c:\program files\Panda Security\Panda Internet Security 2009\Inicio.exe" [2008-07-07 50432]

"ISTray"="c:\program files\Spyware Doctor\pctsTray.exe" [2008-08-25 1168264]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avldr]

2008-03-18 15:58 58672 c:\windows\system32\avldr.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]

"AppInit_DLLs"=c:\windows\system32\wmfhotfix.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PskSvcRetail]

@="Service"

[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Start^Programma's^Opstarten^Adobe Gamma Loader.lnk]

path=c:\documents and settings\All Users.WINDOWS\Menu Start\Programma's\Opstarten\Adobe Gamma Loader.lnk

backup=c:\windows\pss\Adobe Gamma Loader.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Start^Programma's^Opstarten^Exif Launcher.lnk]

path=c:\documents and settings\All Users.WINDOWS\Menu Start\Programma's\Opstarten\Exif Launcher.lnk

backup=c:\windows\pss\Exif Launcher.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Start^Programma's^Opstarten^Microsoft Office OneNote 2003 Snel Starten.lnk]

path=c:\documents and settings\All Users.WINDOWS\Menu Start\Programma's\Opstarten\Microsoft Office OneNote 2003 Snel Starten.lnk

backup=c:\windows\pss\Microsoft Office OneNote 2003 Snel Starten.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Start^Programma's^Opstarten^Microsoft Office.lnk]

path=c:\documents and settings\All Users.WINDOWS\Menu Start\Programma's\Opstarten\Microsoft Office.lnk

backup=c:\windows\pss\Microsoft Office.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]

--a------ 2008-01-11 22:16 39792 c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]

--a------ 2008-06-10 03:27 144784 c:\program files\Java\jre1.6.0_07\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]

--a------ 2005-11-12 22:35 180269 c:\program files\Common Files\Real\Update_OB\realsched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]

--a------ 2006-11-03 17:20 866584 c:\program files\Windows Defender\MSASCui.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]

--a------ 2006-11-17 05:42 577536 c:\windows\soundman.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]

"PSIMSVC"=2 (0x2)

"PREVSRV"=2 (0x2)

"PAVSRV"=2 (0x2)

"PavPrSrv"=2 (0x2)

"PavProt"=2 (0x2)

"Pavkre"=2 (0x2)

"PAVFNSVR"=2 (0x2)

"PAVFIRES"=2 (0x2)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]

"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"c:\\Program Files\\Messenger\\msmsgs.exe"=

"c:\\Program Files\\ConquerCam\\ConquerCam.exe"=

"c:\\Program Files\\WS_FTP\\WS_FTP95.exe"=

"c:\\WINDOWS\\PCHEALTH\\HELPCTR\\Binaries\\helpctr.exe"=

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=

"c:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=

R0 pavboot;Panda boot driver;c:\windows\system32\Drivers\pavboot.sys [2008-06-19 28544]

R1 APPFLT;App Filter Plugin;c:\windows\system32\Drivers\APPFLT.SYS [2008-06-25 73728]

R1 ATMhelpr;ATMhelpr;c:\windows\system32\drivers\ATMhelpr.sys [1997-06-17 4064]

R1 DSAFLT;DSA Filter Plugin;c:\windows\system32\Drivers\DSAFLT.SYS [2008-06-18 52992]

R1 FNETMON;NetMon Filter Plugin;c:\windows\system32\Drivers\fnetmon.SYS [2008-03-28 22072]

R1 IDSFLT;Ids Filter Plugin;c:\windows\system32\Drivers\IDSFLT.SYS [2008-06-18 193792]

R1 NETFLTDI;Panda Net Driver [TDI Layer];c:\windows\system32\Drivers\NETFLTDI.SYS [2008-07-11 13:58 158848]

R1 ShldDrv;Panda File Shield Driver;c:\windows\system32\DRIVERS\ShlDrv51.sys [2008-03-04 41144]

R1 WNMFLT;Wifi Monitor Filter Plugin;c:\windows\system32\Drivers\WNMFLT.SYS [2008-06-18 46720]

R2 Gwmsrv;Panda Goodware Cache Manager;c:\windows\system32\svchost -k Panda [ ]

R2 PavProc;Panda Process Protection Driver;c:\windows\system32\DRIVERS\PavProc.sys [2008-02-07 179640]

R2 PskSvcRetail;Panda PSK service;c:\program files\Panda Security\Panda Internet Security 2009\PskSvc.exe [2008-06-25 28928]

R3 Bonifay;Bonifay;c:\windows\system32\DRIVERS\Bonifay.sys [2006-05-08 12928]

R3 NETIMFLT01060034;PANDA NDIS IM Filter Miniport v1.6.0.34;c:\windows\system32\DRIVERS\neti1634.sys [2008-06-26 197888]

R3 PavTPK.sys;PavTPK.sys;c:\windows\system32\PavTPK.sys [ ]

S3 Gonzales;Gonzales;c:\windows\system32\DRIVERS\Gonzales.sys [2006-03-29 7040]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

panda REG_MULTI_SZ Gwmsrv

*Newly Created Service* - PROCEXP90

.

Inhoud van de 'Gedeelde Taken' map

2008-10-31 c:\windows\Tasks\1-Click Maintenance.job

- c:\program files\TuneUp Utilities 2004\SystemOptimizer.exe [2004-11-17 18:44]

2008-11-06 c:\windows\Tasks\MP Scheduled Scan.job

- c:\program files\Windows Defender\MpCmdRun.exe [2006-11-03 17:20]

2008-11-06 c:\windows\Tasks\User_Feed_Synchronization-{942B4F32-0E8D-4577-A890-7C7B8531F8F4}.job

- c:\windows\system32\msfeedssync.exe [2006-10-17 11:58]

.

- - - - ORPHANS VERWIJDERD - - - -

MSConfigStartUp-hpppta - c:\program files\Hewlett-Packard\HP PrecisionScan\PrecisionScan\hpppta.exe

MSConfigStartUp-QuickTime Task - c:\program files\QuickTime\qttask.exe

MSConfigStartUp-REGSHAVE - c:\program files\REGSHAVE\REGSHAVE.EXE

MSConfigStartUp-updateMgr - c:\program files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe

.

------- Bijkomende Scan -------

.

FireFox -: Profile - c:\documents and settings\Eigenaar\Application Data\Mozilla\Firefox\Profiles\hhcmsi0r.default\

.

.

------- Bestandsassociaties -------

.

JSEFile=c:\progra~1\PANDAS~2\PANDAI~1\PAVSCRIP.EXE "%1" %*

VBEFile=c:\progra~1\PANDAS~2\PANDAI~1\PAVSCRIP.EXE "%1" %*

VBSFile=c:\progra~1\PANDAS~2\PANDAI~1\PAVSCRIP.EXE "%1" %*

.

**************************************************************************

catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2008-11-06 20:40:37

Windows 5.1.2600 Service Pack 3 NTFS

detected NTDLL code modification:

ZwClose

scannen van verborgen processen ...

scannen van verborgen autostart items ...

scannen van verborgen bestanden ...

Scan succesvol afgerond

verborgen bestanden: 0

**************************************************************************

.

--------------------- DLLs Geladen Onder Lopende Processen ---------------------

PROCES: c:\windows\SYSTEM32\winlogon.exe

-> c:\windows\system32\wmfhotfix.dll

PROCES: c:\windows\system32\lsass.exe

-> c:\windows\system32\wmfhotfix.dll

.

Voltooingstijd: 2008-11-06 20:45:07

ComboFix-quarantined-files.txt 2008-11-06 19:44:59

Pre-Run: 25.114.042.368 bytes beschikbaar

Post-Run: 27,111,636,992 bytes beschikbaar

202 --- E O F --- 2008-11-05 08:01:31

Geplaatst:

Verwijder volgende vetgedrukte bestanden met Windows Verkenner :

c:\windows\Tasks\1-Click Maintenance.job

c:\windows\Tasks\User_Feed_Synchronization-{942B4F32-0E8D-4577-A890-7C7B8531F8F4}.job

En laat dan eens weten of dit enige invloed heeft gehad op je problemen ? Zo niet, mag je spyware/virussen als oorzaak van je moeilijkheden uitsluiten en moet er gezocht worden naar andere redenen.

Geplaatst:

Ik heb de bovenstaande zaken uitgevoerd. Geen effect.

Heb Panda uitgescahkeld. Geen effect.

Er bestaat dus nog steeds de situatie dat er wel een internet verbinding is maar ik kan geen verbinding maken met b.v. outlook, MSN en bepaalde bestanden niet downloaden.

Gast
Dit topic is nu gesloten voor nieuwe reacties.
×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.