patrickvan71

Heb het juist gedaan met chrome krijg ik hem open

Heb combofix verwijderd cclaener gedaan 278 registerfouten maar nog altijd hetzelfde krijd de site niet open op mijn pc altijd no foutmelding en als ik klik met muis hoor je verschillende klikken erachter

Heb combofix uit kunnen voeren nadat internet 6 maal weg gevallen was Nadat combofix klaar was, kan ik mij op dit forum niet meer inloggen Heb 10 maal geprobeerd dus verstuur ik het met mijn dochters labtop Er verschijnt altijd venster fout in iexeplorer. ex en word afgesloten als ik dan klik op verzenden of niet verzenden gaat alles weg en microsoft visual c ++ runtime labray erorComboFix 12-08-20.02 - HP_Eigenaar 21/08/2012 18:50:45.1.2 - x86 Microsoft Windows XP Home Edition 5.1.2600.2.1252.31.1043.18.1023.551 [GMT 2:00] Gestart vanuit: c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Bureaublad\ComboFix.exe AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\documents and settings\Default User\WINDOWS c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\WINDOWS c:\documents and settings\HP_Eigenaar\WINDOWS c:\windows\IsUn0413.exe c:\windows\system32\config\systemprofile\WINDOWS c:\windows\system32\ps2.bat c:\windows\system32\URTTemp c:\windows\system32\URTTemp\fusion.dll c:\windows\system32\URTTemp\mscoree.dll c:\windows\system32\URTTemp\mscoree.dll.local c:\windows\system32\URTTemp\mscorsn.dll c:\windows\system32\URTTemp\mscorwks.dll c:\windows\system32\URTTemp\msvcr71.dll c:\windows\system32\URTTemp\regtlib.exe D:\Autorun.inf . . (((((((((((((((((((( Bestanden Gemaakt van 2012-07-21 to 2012-08-21 )))))))))))))))))))))))))))))) . . 2012-08-20 20:20 . 2012-08-20 20:20 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2012-08-20 20:20 . 2012-08-20 20:20 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2012-08-20 20:20 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-08-20 12:09 . 2007-01-24 18:27 67960 ----a-w- c:\windows\system32\drivers\btwusb.sys 2012-08-20 12:09 . 2006-11-28 15:48 47907 ----a-w- c:\windows\system32\drivers\btwhid.sys 2012-08-20 12:09 . 2006-10-15 17:01 149123 ----a-w- c:\windows\system32\drivers\btwdndis.sys 2012-08-20 12:09 . 2006-10-15 17:04 106557 ----a-w- c:\windows\system32\btw_ci.dll 2012-08-20 12:09 . 2006-10-10 01:00 30459 ----a-w- c:\windows\system32\drivers\btport.sys 2012-08-20 12:09 . 2007-02-27 18:02 868042 ----a-w- c:\windows\system32\drivers\btkrnl.sys 2012-08-20 12:09 . 2007-01-24 18:33 530861 ----a-w- c:\windows\system32\drivers\btaudio.sys 2012-08-20 12:09 . 2012-08-20 12:09 -------- d-----w- c:\program files\WIDCOMM 2012-08-16 15:07 . 2012-08-16 15:07 -------- d-----w- c:\program files\Trend Micro 2012-08-16 11:34 . 2012-07-03 16:21 21256 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys 2012-08-16 11:34 . 2012-07-03 16:21 353688 ----a-w- c:\windows\system32\drivers\aswSP.sys 2012-08-16 11:34 . 2012-07-03 16:21 54232 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2012-08-16 11:34 . 2012-07-03 16:21 35928 ----a-w- c:\windows\system32\drivers\aswRdr.sys 2012-08-16 11:34 . 2012-07-03 16:21 721000 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2012-08-16 11:34 . 2012-07-03 16:21 97608 ----a-w- c:\windows\system32\drivers\aswmon2.sys 2012-08-16 11:34 . 2012-07-03 16:21 89624 ----a-w- c:\windows\system32\drivers\aswmon.sys 2012-08-16 11:34 . 2012-07-03 16:21 25256 ----a-w- c:\windows\system32\drivers\aavmker4.sys 2012-08-16 11:34 . 2012-07-03 16:21 227648 ----a-w- c:\windows\system32\aswBoot.exe 2012-08-15 17:30 . 2012-08-20 11:46 -------- d-sh--r- c:\windows\system32\dllcache 2012-08-15 17:30 . 2012-08-15 17:35 -------- d-----r- c:\windows\system32\config\systemprofile\Menu Start 2012-08-15 08:48 . 2008-10-28 10:27 16496 ----a-r- c:\windows\system32\drivers\HPZipr12.sys 2012-08-15 08:48 . 2008-10-28 10:27 49920 ----a-r- c:\windows\system32\drivers\HPZid412.sys 2012-08-15 08:47 . 2009-04-20 10:23 123904 ----a-w- c:\windows\system32\hpf3l70w.dll 2012-08-15 08:47 . 2009-04-20 10:23 315904 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\hpfpp70w.dll 2012-08-15 08:47 . 2009-04-15 21:53 452408 ----a-r- c:\windows\system32\hpzids01.dll 2012-08-15 08:47 . 2008-10-28 10:27 21568 ----a-r- c:\windows\system32\drivers\HPZius12.sys 2012-08-15 08:47 . 2012-08-15 08:47 -------- dc----w- c:\windows\system32\DRVSTORE 2012-08-15 08:47 . 2008-10-28 10:27 372736 ----a-r- c:\windows\system32\hppldcoi.dll 2012-08-15 08:47 . 2008-10-28 10:27 309760 ----a-r- c:\windows\system32\difxapi.dll 2012-08-15 08:47 . 2009-02-10 20:03 315392 ----a-r- c:\windows\system32\hposc_p02a.dll 2012-08-15 08:47 . 2009-02-10 20:03 966656 ----a-r- c:\windows\system32\hpost_p02f.dll 2012-08-15 08:47 . 2009-02-10 20:03 712704 ----a-r- c:\windows\system32\hposwia_p02f.dll 2012-08-15 08:47 . 2004-08-03 20:58 15104 ----a-w- c:\windows\system32\drivers\usbscan.sys 2012-08-15 08:46 . 2004-08-04 04:00 221184 ----a-w- c:\windows\system32\wmpns.dll 2012-08-15 08:45 . 2012-08-21 16:55 -------- d-----w- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225 2012-08-15 08:44 . 2012-08-15 17:35 -------- d--h--r- c:\windows\system32\config\systemprofile\Onlangs geopend 2012-08-15 08:41 . 2004-08-03 22:57 14848 ----a-w- c:\windows\system32\drivers\kbdhid.sys 2012-08-15 08:41 . 2004-08-03 23:03 21504 ----a-w- c:\windows\system32\hidserv.dll 2012-08-15 08:41 . 2001-09-06 17:04 12288 ----a-w- c:\windows\system32\drivers\mouhid.sys 2012-08-15 08:41 . 2004-08-03 21:01 25856 ----a-w- c:\windows\system32\drivers\usbprint.sys 2012-08-15 08:41 . 2001-08-17 20:02 9600 ----a-w- c:\windows\system32\drivers\hidusb.sys 2012-08-15 08:41 . 2004-08-03 21:08 31616 ----a-w- c:\windows\system32\drivers\usbccgp.sys 2012-08-14 19:11 . 2012-08-14 19:14 -------- d-----w- c:\documents and settings\HP_Eigenaar\Application Data\HpUpdate 2012-08-14 19:11 . 2012-08-14 19:11 -------- d-----w- c:\windows\Hewlett-Packard 2012-08-13 12:56 . 2012-08-13 12:56 -------- d-----w- c:\documents and settings\All Users\Application Data\McAfee 2012-08-13 11:51 . 2012-08-15 08:21 -------- d-----w- c:\documents and settings\HP_Eigenaar\Application Data\HPAppData 2012-08-13 11:38 . 2012-08-13 11:38 -------- d-----w- c:\documents and settings\All Users\Application Data\HP Product Assistant . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-07-03 16:21 . 2012-07-13 11:10 41224 ----a-w- c:\windows\avastSS.scr 2012-06-04 15:35 . 2012-07-13 19:34 210968 ----a-w- c:\windows\system32\wuweb.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2012-07-03 16:21 121528 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"="c:\program files\Java\jre1.5.0\bin\jusched.exe" [2005-10-11 36972] "hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 52736] "Snelkoppeling naar eigenschappenvenster voor High Definition Audio"="HDAShCut.exe" [2005-01-07 61952] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2005-08-02 7110656] "nwiz"="nwiz.exe" [2005-08-02 1519616] "SoundMan"="SOUNDMAN.EXE" [2005-05-04 90112] "RemoteControl"="c:\program files\ASUS\ASUS Remote\RemoteControlAppl.exe" [2005-06-10 61440] "HPHUPD08"="c:\program files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe" [2005-06-02 49152] "KBD"="c:\hp\KBD\KBD.EXE" [2005-02-02 61440] "Home Theater SchSvr"="c:\program files\Common Files\InterVideo\SchSvr\SchSvr.exe" [2005-07-18 106496] "WINREMOTE"="c:\program files\InterVideo\Common\Bin\WinRemote.exe" [2005-07-18 262144] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2005-05-04 278528] "Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2004-04-14 233472] "PS2"="c:\windows\system32\ps2.exe" [2004-10-25 90112] "LSBWatcher"="c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe" [2005-05-11 253952] "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2011-05-10 49208] "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-07-03 4273976] "Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-07-03 462920] . c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\ BTTray.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-2-27 561213] HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2005-5-12 282624] . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= . R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [16/08/2012 13:34 721000] R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [16/08/2012 13:34 353688] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [16/08/2012 13:34 21256] R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [20/08/2012 22:20 655944] R3 3xHybrid;3xHybrid service;c:\windows\system32\drivers\3xHybrid.sys [11/10/2005 17:14 2786176] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [20/08/2012 22:20 22344] . Inhoud van de 'Gedeelde Taken' map . 2012-08-21 c:\windows\Tasks\avast! Emergency Update.job - c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2012-08-16 16:21] . . ------- Bijkomende Scan ------- . IE: &Google Search - c:\program files\Google\GoogleToolbar1.dll/cmsearch.html IE: Gelijkwaardige pagina's - c:\program files\Google\GoogleToolbar1.dll/cmsimilar.html IE: Koppelingspagina's - c:\program files\Google\GoogleToolbar1.dll/cmbacklinks.html IE: Opgeslagen momentopname van de pagina - c:\program files\Google\GoogleToolbar1.dll/cmcache.html IE: Verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm TCP: DhcpNameServer = 195.130.131.3 195.130.130.131 . - - - - ORPHANS VERWIJDERD - - - - . HKLM-Run-PCDrProfiler - (no file) AddRemove-Microsoft Interactive Training - c:\windows\IsUn0413.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2012-08-21 18:57 Windows 5.1.2600 Service Pack 2 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . Voltooingstijd: 2012-08-21 18:58:43 ComboFix-quarantined-files.txt 2012-08-21 16:58 . Pre-Run: 146.784.337.920 bytes beschikbaar Post-Run: 147.011.444.736 bytes beschikbaar . - - End Of File - - 7EDE540D5CED382BBBAFAB6CD5534E45

Malwarebytes Anti-Malware (-evaluatieversie-) 1.62.0.1300 www.malwarebytes.org Databaseversie: v2012.08.20.09 Windows XP Service Pack 2 x86 NTFS Internet Explorer 6.0.2900.2180 HP_Eigenaar :: UW-4B58D8528225 [administrator] Realtime bescherming: Ingeschakeld 20/08/2012 22:22:11 mbam-log-2012-08-20 (22-22-11).txt Scantype: Volledige scan (A:\|C:\|D:\|E:\|F:\|G:\|H:\|I:\|J:\|K:\|) Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM Uitgeschakelde scanopties: P2P Objecten gescand: 248978 Verstreken tijd: 21 minuut/minuten, 19 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerwaarden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerdata gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Mappen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Bestanden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) (einde) Elke maal als ik mij wil aanlden val hij uit Moet altijd eerst een 5 tal keer terug inloggen eer ik iets kan posten

Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 13:53:15, on 20/08/2012 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Java\jre1.5.0\bin\jusched.exe C:\windows\system\hpsysdrv.exe C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\ALCWZRD.EXE C:\WINDOWS\ALCMTR.EXE C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe C:\HP\KBD\KBD.EXE C:\Program Files\Common Files\InterVideo\SchSvr\SchSvr.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\InterVideo\Common\Bin\WinRemote.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\AVAST Software\Avast\avastUI.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\system32\DllHost.exe C:\WINDOWS\system32\wscntfy.exe C:\Documents and Settings\HP_Eigenaar.UW-4B58D8528225\Bureaublad\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: NAV Helper - {BDF3E430-B101-42AD-A544-FADC6B084872} - c:\Program Files\Norton Internet Security\Norton AntiVirus\NavShExt.dll (file missing) O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O4 - HKLM\..\Run: [sunJavaUpdateSched] C:\Program Files\Java\jre1.5.0\bin\jusched.exe O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [snelkoppeling naar eigenschappenvenster voor High Definition Audio] HDAShCut.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [RemoteControl] C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe O4 - HKLM\..\Run: [HPHUPD08] c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [Home Theater SchSvr] "C:\Program Files\Common Files\InterVideo\SchSvr\SchSvr.exe" O4 - HKLM\..\Run: [WINREMOTE] "C:\Program Files\InterVideo\Common\Bin\WinRemote.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: Gelijkwaardige pagina's - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Koppelingspagina's - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Opgeslagen momentopname van de pagina - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\npjpi150.dll O9 - Extra button: Verbindingshelp - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm O9 - Extra 'Tools' menuitem: Verbindingshelp - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: iPod-service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe -- End of file - 6097 bytes

ok heeft mij heel wa moeite gekost om het te instaleren als ik klik met de muis hoor je de toon verschillende malen alleen op internet als ik in pc programma zit niet alleen met internetsite

Hallo, ik kan op internet surfen maar krijg elke maal fout microsoft explorer en sluit dan af. Kinderen hun laptob doen het wel goed 3 stuks. Heb al geprobeerd om terug te gaan naar mijn account hier om combofix te instaleren maar telkens slaagt hij vast en valt mijn verbinding weg.

ok hebben we ook gedaan moet ik nog iets doen?

Loop loopt goed maar start nog altijd op vanzelf uit slaapstand

ComboFix 12-04-31.02 - HP_Eigenaar 30/04/2012 21:55:27.3.2 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.1023.416 [GMT 2:00] Gestart vanuit: c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Bureaublad\ComboFix.exe gebruikte Opdracht switches :: c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Bureaublad\CFScript.txt AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D} . FILE :: "c:\windows\~DF4A3D.tmp" "c:\windows\~DFE5D9.tmp" "c:\windows\~DFF864.tmp" . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . C:\4fdb71e325699258d029bc45cda40310 c:\4fdb71e325699258d029bc45cda40310\$shtdwn$.req c:\4fdb71e325699258d029bc45cda40310\dotnetfx20\aspnet.msp c:\4fdb71e325699258d029bc45cda40310\dotnetfx20\clr.msp c:\4fdb71e325699258d029bc45cda40310\dotnetfx20\crt.msp c:\4fdb71e325699258d029bc45cda40310\dotnetfx20\dw.msp c:\4fdb71e325699258d029bc45cda40310\dotnetfx20\netfx_ca.msp c:\4fdb71e325699258d029bc45cda40310\dotnetfx20\netfx_core.msp c:\4fdb71e325699258d029bc45cda40310\dotnetfx20\netfx_other.msp c:\4fdb71e325699258d029bc45cda40310\dotnetfx20\netfx20a_x86.msi c:\4fdb71e325699258d029bc45cda40310\dotnetfx20\prexp.msp c:\4fdb71e325699258d029bc45cda40310\dotnetfx20\winforms.msp c:\4fdb71e325699258d029bc45cda40310\dotnetfx30\netfx30a_x86.msi c:\4fdb71e325699258d029bc45cda40310\dotnetfx30\rgb9rast_x86.msi c:\4fdb71e325699258d029bc45cda40310\dotnetfx30\wcf.msp c:\4fdb71e325699258d029bc45cda40310\dotnetfx30\wcs.msp c:\4fdb71e325699258d029bc45cda40310\dotnetfx30\wf.msp c:\4fdb71e325699258d029bc45cda40310\dotnetfx30\wf_32.msp c:\4fdb71e325699258d029bc45cda40310\dotnetfx30\wic_x86_enu.exe c:\4fdb71e325699258d029bc45cda40310\dotnetfx30\wpf_other.msp c:\4fdb71e325699258d029bc45cda40310\dotnetfx30\wpf_other_32.msp c:\4fdb71e325699258d029bc45cda40310\dotnetfx30\wpf1.msp c:\4fdb71e325699258d029bc45cda40310\dotnetfx30\wpf2.msp c:\4fdb71e325699258d029bc45cda40310\dotnetfx30\wpf2_32.msp c:\4fdb71e325699258d029bc45cda40310\dotnetfx30\x86\msxml6.msi c:\4fdb71e325699258d029bc45cda40310\dotnetfx30\xps.msp c:\4fdb71e325699258d029bc45cda40310\dotnetfx30\xpsepsc-x86-en-us.exe c:\4fdb71e325699258d029bc45cda40310\dotnetfx35\x86\netfx35_x86.exe c:\4fdb71e325699258d029bc45cda40310\dotnetfx35setup.exe c:\4fdb71e325699258d029bc45cda40310\tools\clwireg.exe c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Local Settings\Application Data\Conduit c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Local Settings\Application Data\Conduit\Toolbar\Facebook\http___facebook_conduit-services_com_Settings_ashx_locale=en&browserType=IE&toolbarVersion=6_8_8_8.xml C:\f673d44ffb79198f2cd0038b373c29 c:\f673d44ffb79198f2cd0038b373c29\baseline.dat c:\f673d44ffb79198f2cd0038b373c29\deffactory.dat c:\f673d44ffb79198f2cd0038b373c29\DeleteTemp.exe c:\f673d44ffb79198f2cd0038b373c29\dlmgr.dll c:\f673d44ffb79198f2cd0038b373c29\DW20.EXE c:\f673d44ffb79198f2cd0038b373c29\DWINTL20.DLL c:\f673d44ffb79198f2cd0038b373c29\eula.1025.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.1028.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.1029.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.1030.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.1031.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.1032.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.1033.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.1035.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.1036.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.1037.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.1038.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.1040.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.1041.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.1042.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.1043.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.1044.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.1045.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.1046.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.1049.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.1053.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.1055.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.2052.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.2070.rtf c:\f673d44ffb79198f2cd0038b373c29\eula.3082.rtf c:\f673d44ffb79198f2cd0038b373c29\gencomp.dll c:\f673d44ffb79198f2cd0038b373c29\HtmlLite.dll c:\f673d44ffb79198f2cd0038b373c29\locdata.1025.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.1028.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.1029.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.1030.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.1031.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.1032.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.1035.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.1036.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.1037.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.1038.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.1040.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.1041.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.1042.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.1043.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.1044.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.1045.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.1046.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.1049.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.1053.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.1055.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.2052.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.2070.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.3082.ini c:\f673d44ffb79198f2cd0038b373c29\locdata.ini c:\f673d44ffb79198f2cd0038b373c29\logo.bmp c:\f673d44ffb79198f2cd0038b373c29\setup.exe c:\f673d44ffb79198f2cd0038b373c29\setup.sdb c:\f673d44ffb79198f2cd0038b373c29\setupres.1025.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.1028.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.1029.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.1030.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.1031.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.1032.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.1035.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.1036.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.1037.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.1038.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.1040.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.1041.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.1042.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.1043.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.1044.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.1045.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.1046.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.1049.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.1053.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.1055.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.2052.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.2070.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.3082.dll c:\f673d44ffb79198f2cd0038b373c29\setupres.dll c:\f673d44ffb79198f2cd0038b373c29\SITSetup.dll c:\f673d44ffb79198f2cd0038b373c29\vs_setup.dll c:\f673d44ffb79198f2cd0038b373c29\vs_setup.MS_ c:\f673d44ffb79198f2cd0038b373c29\vs_setup.pdi c:\f673d44ffb79198f2cd0038b373c29\vs70uimgr.dll c:\f673d44ffb79198f2cd0038b373c29\vsbasereqs.dll c:\f673d44ffb79198f2cd0038b373c29\vsscenario.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.1025.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.1028.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.1029.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.1030.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.1031.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.1032.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.1035.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.1036.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.1037.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.1038.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.1040.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.1041.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.1042.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.1043.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.1044.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.1045.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.1046.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.1049.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.1053.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.1055.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.2052.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.2070.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.3082.dll c:\f673d44ffb79198f2cd0038b373c29\WapRes.dll c:\f673d44ffb79198f2cd0038b373c29\WapUI.dll c:\program files\Conduit c:\program files\Conduit\Community Alerts\Alert.dll c:\windows\~DF4A3D.tmp c:\windows\~DFE5D9.tmp c:\windows\~DFF864.tmp . . (((((((((((((((((((( Bestanden Gemaakt van 2012-03-28 to 2012-04-30 )))))))))))))))))))))))))))))) . . 2012-04-25 13:45 . 2012-04-25 13:45 -------- d-----w- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\Malwarebytes 2012-04-25 13:45 . 2012-04-25 13:45 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2012-04-25 13:45 . 2012-04-04 13:56 22344 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-04-23 13:44 . 2012-04-23 13:44 -------- d-----w- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Local Settings\Application Data\Temp 2012-04-15 04:44 . 2012-04-30 19:49 -------- d--h--r- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Onlangs geopend 2012-04-13 14:34 . 2012-04-13 14:34 -------- d-----w- c:\program files\Garmin GPS Plugin . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-04-12 03:24 . 2011-12-17 12:58 73728 ----a-w- c:\windows\ALCFDRTM.VER 2012-03-18 19:25 . 2012-03-18 19:25 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-03-13 15:11 . 2012-03-13 15:12 73728 ----a-w- c:\windows\system32\javacpl.cpl 2012-03-13 15:11 . 2012-02-29 16:19 472808 ----a-w- c:\windows\system32\deployJava1.dll 2012-03-07 00:15 . 2012-03-22 09:52 41184 ----a-w- c:\windows\avastSS.scr 2012-03-07 00:15 . 2012-03-22 09:52 201352 ----a-w- c:\windows\system32\aswBoot.exe 2012-03-07 00:03 . 2012-03-22 09:53 612184 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2012-03-07 00:03 . 2012-03-22 09:53 337880 ----a-w- c:\windows\system32\drivers\aswSP.sys 2012-03-07 00:02 . 2012-03-22 09:53 35672 ----a-w- c:\windows\system32\drivers\aswRdr.sys 2012-03-07 00:01 . 2012-03-22 09:53 53848 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2012-03-07 00:01 . 2012-03-22 09:53 95704 ----a-w- c:\windows\system32\drivers\aswmon2.sys 2012-03-07 00:01 . 2012-03-22 09:53 89048 ----a-w- c:\windows\system32\drivers\aswmon.sys 2012-03-07 00:01 . 2012-03-22 09:53 20696 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys 2012-03-06 23:58 . 2012-03-22 09:53 24920 ----a-w- c:\windows\system32\drivers\aavmker4.sys 2012-03-01 11:00 . 2010-09-07 21:37 43520 ------w- c:\windows\system32\licmgr10.dll 2012-03-01 11:00 . 2010-09-07 21:36 1469440 ------w- c:\windows\system32\inetcpl.cpl 2012-03-01 11:00 . 2004-08-04 11:00 916992 ----a-w- c:\windows\system32\wininet.dll 2012-02-29 14:10 . 2010-09-07 21:39 177664 ----a-w- c:\windows\system32\wintrust.dll 2012-02-29 14:10 . 2004-08-04 18:00 148480 ----a-w- c:\windows\system32\imagehlp.dll 2012-02-29 12:17 . 2010-09-07 21:36 385024 ------w- c:\windows\system32\html.iec 2012-02-23 16:11 . 2012-02-29 15:01 24408 ----a-w- c:\windows\system32\drivers\aswKbd.sys 2012-02-03 09:57 . 2010-09-07 21:39 1860224 ----a-w- c:\windows\system32\win32k.sys . . ((((((((((((((((((((((((((((( SnapShot@2012-04-26_13.23.53 ))))))))))))))))))))))))))))))))))))))))) . + 2012-04-30 15:18 . 2012-04-30 15:18 16384 c:\windows\Temp\Perflib_Perfdata_5ec.dat + 2008-07-25 09:16 . 2005-09-23 06:28 7680 c:\windows\Microsoft.NET\Framework\sbscmp10.dll - 2005-09-23 06:28 . 2005-09-23 06:28 7680 c:\windows\Microsoft.NET\Framework\sbscmp10.dll + 2008-07-29 15:37 . 2008-07-29 15:37 911360 c:\windows\Installer\5aed912.msp + 2008-07-29 15:33 . 2008-07-29 15:33 506368 c:\windows\Installer\5aed911.msp + 2008-07-29 15:35 . 2008-07-29 15:35 553472 c:\windows\Installer\5aed90f.msp + 2008-07-29 15:37 . 2008-07-29 15:37 911360 c:\windows\Installer\3cc684f.msp + 2008-07-29 15:33 . 2008-07-29 15:33 506368 c:\windows\Installer\3cc684e.msp + 2008-07-29 15:35 . 2008-07-29 15:35 553472 c:\windows\Installer\3cc684c.msp + 2008-07-29 15:37 . 2008-07-29 15:37 911360 c:\windows\Installer\1f17536.msp + 2008-07-29 15:33 . 2008-07-29 15:33 506368 c:\windows\Installer\1f17535.msp + 2008-07-29 15:35 . 2008-07-29 15:35 553472 c:\windows\Installer\1f17533.msp + 2008-07-29 15:31 . 2008-07-29 15:31 6083072 c:\windows\Installer\5aed913.msp + 2008-07-29 15:43 . 2008-07-29 15:43 1013248 c:\windows\Installer\5aed910.msp + 2008-07-29 15:39 . 2008-07-29 15:39 3403264 c:\windows\Installer\5aed90e.msp + 2008-07-29 15:41 . 2008-07-29 15:41 6487040 c:\windows\Installer\5aed90d.msp + 2008-07-29 15:29 . 2008-07-29 15:29 2926080 c:\windows\Installer\5aed90c.msp + 2008-07-29 15:45 . 2008-07-29 15:45 2543616 c:\windows\Installer\5aed90b.msp + 2008-07-29 15:31 . 2008-07-29 15:31 6083072 c:\windows\Installer\3cc6850.msp + 2008-07-29 15:43 . 2008-07-29 15:43 1013248 c:\windows\Installer\3cc684d.msp + 2008-07-29 15:39 . 2008-07-29 15:39 3403264 c:\windows\Installer\3cc684b.msp + 2008-07-29 15:41 . 2008-07-29 15:41 6487040 c:\windows\Installer\3cc684a.msp + 2008-07-29 15:29 . 2008-07-29 15:29 2926080 c:\windows\Installer\3cc6849.msp + 2008-07-29 15:45 . 2008-07-29 15:45 2543616 c:\windows\Installer\3cc6848.msp + 2008-07-29 15:31 . 2008-07-29 15:31 6083072 c:\windows\Installer\1f17537.msp + 2008-07-29 15:43 . 2008-07-29 15:43 1013248 c:\windows\Installer\1f17534.msp + 2008-07-29 15:39 . 2008-07-29 15:39 3403264 c:\windows\Installer\1f17532.msp + 2008-07-29 15:41 . 2008-07-29 15:41 6487040 c:\windows\Installer\1f17531.msp + 2008-07-29 15:29 . 2008-07-29 15:29 2926080 c:\windows\Installer\1f17530.msp + 2008-07-29 15:45 . 2008-07-29 15:45 2543616 c:\windows\Installer\1f1752f.msp . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2012-03-07 00:15 123536 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 52736] "Snelkoppeling naar eigenschappenvenster voor High Definition Audio"="HDAShCut.exe" [2005-01-07 61952] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2005-08-02 7110656] "nwiz"="nwiz.exe" [2005-08-02 1519616] "SoundMan"="SOUNDMAN.EXE" [2005-05-04 90112] "AlcWzrd"="ALCWZRD.EXE" [2005-05-04 2805248] "RemoteControl"="c:\program files\ASUS\ASUS Remote\RemoteControlAppl.exe" [2005-06-10 61440] "HPHUPD08"="c:\program files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe" [2005-06-02 49152] "KBD"="c:\hp\KBD\KBD.EXE" [2005-02-02 61440] "Home Theater SchSvr"="c:\program files\Common Files\InterVideo\SchSvr\SchSvr.exe" [2005-07-18 106496] "WINREMOTE"="c:\program files\InterVideo\Common\Bin\WinRemote.exe" [2005-07-18 262144] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2005-05-04 278528] "Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2004-04-14 233472] "PS2"="c:\windows\system32\ps2.exe" [2004-10-25 90112] "LSBWatcher"="c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe" [2005-05-11 253952] "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2009-11-18 54576] "QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2005-10-11 98304] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696] "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-03-07 4241512] "Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-04-04 462408] . c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\ HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2009-11-18 275072] Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360] . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"= "c:\\Program Files\\Common Files\\HP\\Digital Imaging\\Bin\\hpqPhotoCrm.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxs08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgm.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgh.exe"= "c:\\Program Files\\HP\\HP Software Update\\hpwucli.exe"= "c:\\Program Files\\HP\\Digital Imaging\\smart web printing\\SmartWebPrintExe.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= . R1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [29/02/2012 17:01 24408] R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [22/03/2012 11:53 612184] R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [22/03/2012 11:53 337880] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [22/03/2012 11:53 20696] R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [25/04/2012 15:45 654408] R3 3xHybrid;3xHybrid service;c:\windows\system32\drivers\3xHybrid.sys [11/10/2005 17:14 2786176] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [25/04/2012 15:45 22344] S2 gupdate;Google Update-service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [13/09/2010 15:22 136176] S3 ACSSCR;ACR38 Smart Card Reader;c:\windows\system32\drivers\a38usbxp.sys [30/04/2004 15:35 24832] S3 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [13/09/2010 15:22 136176] . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 HPService REG_MULTI_SZ HPSLPSVC hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc . Inhoud van de 'Gedeelde Taken' map . 2012-04-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore1cd053ce728536e.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-09-13 13:22] . 2012-04-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA1cd053ce7749eae.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-09-13 13:22] . 2012-04-30 c:\windows\Tasks\User_Feed_Synchronization-{0B2E3EB1-E7B8-43E9-91E4-F5DE6EFABA99}.job - c:\windows\system32\msfeedssync.exe [2009-03-08 03:31] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/ IE: &Google Search - c:\program files\Google\GoogleToolbar1.dll/cmsearch.html IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000 IE: Gelijkwaardige pagina's - c:\program files\Google\GoogleToolbar1.dll/cmsimilar.html IE: Koppelingspagina's - c:\program files\Google\GoogleToolbar1.dll/cmbacklinks.html IE: Opgeslagen momentopname van de pagina - c:\program files\Google\GoogleToolbar1.dll/cmcache.html Trusted Zone: dexia.be\www TCP: DhcpNameServer = 195.130.131.3 195.130.130.131 DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/4.0.1.0/GarminAxControl_32.CAB . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2012-04-30 22:06 Windows 5.1.2600 Service Pack 3 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\System\ControlSet001\Hardware Profiles\0001\System\CurrentControlSet\Enum\¬ ©**\DirectSound\Device Presence] "VxD"=dword:00000001 "WDM"=dword:00000001 . Voltooingstijd: 2012-04-30 22:09:01 ComboFix-quarantined-files.txt 2012-04-30 20:08 ComboFix2.txt 2012-04-26 13:26 ComboFix3.txt 2012-03-22 16:05 . Pre-Run: 125.531.934.720 bytes beschikbaar Post-Run: 125.713.403.904 bytes beschikbaar . - - End Of File - - CA43688BB3CFCD914C91B3898CB98D74

ComboFix 12-04-26.01 - HP_Eigenaar 26/04/2012 15:13:43.2.2 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.1023.570 [GMT 2:00] Gestart vanuit: c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Bureaublad\ComboFix.exe AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\1.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\a.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\b.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\c.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\d.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\e.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\f.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\g.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\h.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\i.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\j.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\k.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\l.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\m.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\mru.xml c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\n.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\o.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\p.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\q.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\r.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\s.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\t.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\u.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\v.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\w.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\wlu.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\x.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\y.txt c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\PriceGong\Data\z.txt c:\windows\system32\urttemp c:\windows\system32\urttemp\fusion.dll c:\windows\system32\urttemp\mscoree.dll c:\windows\system32\urttemp\mscoree.dll.local c:\windows\system32\urttemp\mscorsn.dll c:\windows\system32\urttemp\mscorwks.dll c:\windows\system32\urttemp\msvcr71.dll c:\windows\system32\urttemp\regtlib.exe . . (((((((((((((((((((( Bestanden Gemaakt van 2012-03-26 to 2012-04-26 )))))))))))))))))))))))))))))) . . 2012-04-25 13:45 . 2012-04-25 13:45 -------- d-----w- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Application Data\Malwarebytes 2012-04-25 13:45 . 2012-04-25 13:45 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2012-04-25 13:45 . 2012-04-04 13:56 22344 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-04-25 13:28 . 2012-04-25 13:30 110574 ----a-w- c:\windows\~DFE5D9.tmp 2012-04-25 13:19 . 2012-04-25 13:19 110574 ----a-w- c:\windows\~DF4A3D.tmp 2012-04-25 13:18 . 2012-04-25 13:19 110574 ----a-w- c:\windows\~DFF864.tmp 2012-04-23 13:44 . 2012-04-23 13:44 -------- d-----w- c:\program files\Conduit 2012-04-23 13:44 . 2012-04-23 13:51 -------- d-----w- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Local Settings\Application Data\Conduit 2012-04-23 13:44 . 2012-04-23 13:44 -------- d-----w- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Local Settings\Application Data\Temp 2012-04-15 04:44 . 2012-04-18 19:36 -------- d--h--r- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225\Onlangs geopend 2012-04-13 14:34 . 2012-04-13 14:34 -------- d-----w- c:\program files\Garmin GPS Plugin 2012-04-10 01:00 . 2012-04-10 01:00 -------- d-----w- C:\f673d44ffb79198f2cd0038b373c29 2012-04-10 01:00 . 2012-04-10 01:00 -------- d-----w- C:\4fdb71e325699258d029bc45cda40310 . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-04-12 03:24 . 2011-12-17 12:58 73728 ----a-w- c:\windows\ALCFDRTM.VER 2012-03-18 19:25 . 2012-03-18 19:25 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2012-03-13 15:11 . 2012-03-13 15:12 73728 ----a-w- c:\windows\system32\javacpl.cpl 2012-03-13 15:11 . 2012-02-29 16:19 472808 ----a-w- c:\windows\system32\deployJava1.dll 2012-03-07 00:15 . 2012-03-22 09:52 41184 ----a-w- c:\windows\avastSS.scr 2012-03-07 00:15 . 2012-03-22 09:52 201352 ----a-w- c:\windows\system32\aswBoot.exe 2012-03-07 00:03 . 2012-03-22 09:53 612184 ----a-w- c:\windows\system32\drivers\aswSnx.sys 2012-03-07 00:03 . 2012-03-22 09:53 337880 ----a-w- c:\windows\system32\drivers\aswSP.sys 2012-03-07 00:02 . 2012-03-22 09:53 35672 ----a-w- c:\windows\system32\drivers\aswRdr.sys 2012-03-07 00:01 . 2012-03-22 09:53 53848 ----a-w- c:\windows\system32\drivers\aswTdi.sys 2012-03-07 00:01 . 2012-03-22 09:53 95704 ----a-w- c:\windows\system32\drivers\aswmon2.sys 2012-03-07 00:01 . 2012-03-22 09:53 89048 ----a-w- c:\windows\system32\drivers\aswmon.sys 2012-03-07 00:01 . 2012-03-22 09:53 20696 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys 2012-03-06 23:58 . 2012-03-22 09:53 24920 ----a-w- c:\windows\system32\drivers\aavmker4.sys 2012-03-01 11:00 . 2010-09-07 21:37 43520 ------w- c:\windows\system32\licmgr10.dll 2012-03-01 11:00 . 2010-09-07 21:36 1469440 ------w- c:\windows\system32\inetcpl.cpl 2012-03-01 11:00 . 2004-08-04 11:00 916992 ----a-w- c:\windows\system32\wininet.dll 2012-02-29 14:10 . 2010-09-07 21:39 177664 ----a-w- c:\windows\system32\wintrust.dll 2012-02-29 14:10 . 2004-08-04 18:00 148480 ----a-w- c:\windows\system32\imagehlp.dll 2012-02-29 12:17 . 2010-09-07 21:36 385024 ------w- c:\windows\system32\html.iec 2012-02-23 16:11 . 2012-02-29 15:01 24408 ----a-w- c:\windows\system32\drivers\aswKbd.sys 2012-02-03 09:57 . 2010-09-07 21:39 1860224 ----a-w- c:\windows\system32\win32k.sys . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2012-03-07 00:15 123536 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 52736] "Snelkoppeling naar eigenschappenvenster voor High Definition Audio"="HDAShCut.exe" [2005-01-07 61952] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2005-08-02 7110656] "nwiz"="nwiz.exe" [2005-08-02 1519616] "SoundMan"="SOUNDMAN.EXE" [2005-05-04 90112] "AlcWzrd"="ALCWZRD.EXE" [2005-05-04 2805248] "RemoteControl"="c:\program files\ASUS\ASUS Remote\RemoteControlAppl.exe" [2005-06-10 61440] "HPHUPD08"="c:\program files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe" [2005-06-02 49152] "KBD"="c:\hp\KBD\KBD.EXE" [2005-02-02 61440] "Home Theater SchSvr"="c:\program files\Common Files\InterVideo\SchSvr\SchSvr.exe" [2005-07-18 106496] "WINREMOTE"="c:\program files\InterVideo\Common\Bin\WinRemote.exe" [2005-07-18 262144] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2005-05-04 278528] "Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2004-04-14 233472] "PS2"="c:\windows\system32\ps2.exe" [2004-10-25 90112] "LSBWatcher"="c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe" [2005-05-11 253952] "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2009-11-18 54576] "QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2005-10-11 98304] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696] "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-03-07 4241512] "Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-04-04 462408] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "Malwarebytes Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-04-04 462408] . c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\ HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2009-11-18 275072] Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360] . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"= "c:\\Program Files\\Common Files\\HP\\Digital Imaging\\Bin\\hpqPhotoCrm.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxs08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgm.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgh.exe"= "c:\\Program Files\\HP\\HP Software Update\\hpwucli.exe"= "c:\\Program Files\\HP\\Digital Imaging\\smart web printing\\SmartWebPrintExe.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= . R1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [29/02/2012 17:01 24408] R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [22/03/2012 11:53 612184] R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [22/03/2012 11:53 337880] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [22/03/2012 11:53 20696] R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [25/04/2012 15:45 654408] R3 3xHybrid;3xHybrid service;c:\windows\system32\drivers\3xHybrid.sys [11/10/2005 17:14 2786176] R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [25/04/2012 15:45 22344] S2 gupdate;Google Update-service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [13/09/2010 15:22 136176] S3 ACSSCR;ACR38 Smart Card Reader;c:\windows\system32\drivers\a38usbxp.sys [30/04/2004 15:35 24832] S3 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [13/09/2010 15:22 136176] . --- Andere Services/Drivers In Geheugen --- . *NewlyCreated* - IPFILTERDRIVER *NewlyCreated* - MBAMPROTECTOR *NewlyCreated* - MBAMSERVICE . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 HPService REG_MULTI_SZ HPSLPSVC hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc . Inhoud van de 'Gedeelde Taken' map . 2012-04-25 c:\windows\Tasks\GoogleUpdateTaskMachineCore1cd053ce728536e.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-09-13 13:22] . 2012-04-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA1cd053ce7749eae.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-09-13 13:22] . 2012-04-26 c:\windows\Tasks\User_Feed_Synchronization-{0B2E3EB1-E7B8-43E9-91E4-F5DE6EFABA99}.job - c:\windows\system32\msfeedssync.exe [2009-03-08 03:31] . . ------- Bijkomende Scan ------- . IE: &Google Search - c:\program files\Google\GoogleToolbar1.dll/cmsearch.html IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000 IE: Gelijkwaardige pagina's - c:\program files\Google\GoogleToolbar1.dll/cmsimilar.html IE: Koppelingspagina's - c:\program files\Google\GoogleToolbar1.dll/cmbacklinks.html IE: Opgeslagen momentopname van de pagina - c:\program files\Google\GoogleToolbar1.dll/cmcache.html Trusted Zone: dexia.be\www TCP: DhcpNameServer = 195.130.131.3 195.130.130.131 DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/4.0.1.0/GarminAxControl_32.CAB . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2012-04-26 15:23 Windows 5.1.2600 Service Pack 3 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\System\ControlSet001\Hardware Profiles\0001\System\CurrentControlSet\Enum\¬ ©**\DirectSound\Device Presence] "VxD"=dword:00000001 "WDM"=dword:00000001 . Voltooingstijd: 2012-04-26 15:26:04 ComboFix-quarantined-files.txt 2012-04-26 13:26 ComboFix2.txt 2012-03-22 16:05 . Pre-Run: 125.422.317.568 bytes beschikbaar Post-Run: 125.937.225.728 bytes beschikbaar . - - End Of File - - 3B1D2F356A326DA2B2F8BF6EB658A2D8

Malwarebytes Anti-Malware (-evaluatieversie-) 1.61.0.1400 www.malwarebytes.org Databaseversie: v2012.04.25.04 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 HP_Eigenaar :: UW-4B58D8528225 [administrator] Realtime bescherming: Ingeschakeld 25/04/2012 15:47:28 mbam-log-2012-04-25 (15-47-28).txt Scantype: Snelle scan Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM Uitgeschakelde scanopties: P2P Objecten gescand: 210135 Verstreken tijd: 21 minuut/minuten, 57 seconde(n) Geheugenprocessen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registersleutels gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerwaarden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Registerdata gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Mappen gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) Bestanden gedetecteerd: 0 (Geen kwaadaardige objecten gedetecteerd) (einde) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 16:16:06, on 25/04/2012 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\windows\system\hpsysdrv.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\ALCWZRD.EXE C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe C:\WINDOWS\system32\svchost.exe C:\HP\KBD\KBD.EXE C:\WINDOWS\system32\svchost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\InterVideo\SchSvr\SchSvr.exe C:\Program Files\InterVideo\Common\Bin\WinRemote.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\nvsvc32.exe C:\hp\drivers\hplsbwatcher\lsburnwatcher.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\Program Files\AVAST Software\Avast\avastUI.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe C:\Program Files\internet explorer\iexplore.exe C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\internet explorer\iexplore.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\Documents and Settings\HP_Eigenaar.UW-4B58D8528225\Bureaublad\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Zoeken R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [snelkoppeling naar eigenschappenvenster voor High Definition Audio] HDAShCut.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE O4 - HKLM\..\Run: [RemoteControl] C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe O4 - HKLM\..\Run: [HPHUPD08] c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [Home Theater SchSvr] "C:\Program Files\Common Files\InterVideo\SchSvr\SchSvr.exe" O4 - HKLM\..\Run: [WINREMOTE] "C:\Program Files\InterVideo\Common\Bin\WinRemote.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil11g_ActiveX.exe -update activex O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Gelijkwaardige pagina's - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Koppelingspagina's - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Opgeslagen momentopname van de pagina - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O9 - Extra button: Verbindingshelp - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm O9 - Extra 'Tools' menuitem: Verbindingshelp - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O15 - Trusted Zone: www.dexia.be O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.0.1.0/GarminAxControl_32.CAB O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/MessengerGamesContent/GameContent/nl/uno1/GAME_UNO1.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: iPod-service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe -- End of file - 10225 bytes

hier het logje bedankt Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 16:00:06, on 23/04/2012 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\windows\system\hpsysdrv.exe C:\WINDOWS\system32\rundll32.exe C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\ALCWZRD.EXE C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe C:\HP\KBD\KBD.EXE C:\Program Files\Common Files\InterVideo\SchSvr\SchSvr.exe C:\Program Files\InterVideo\Common\Bin\WinRemote.exe C:\Program Files\iTunes\iTunesHelper.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wuauclt.exe C:\hp\drivers\hplsbwatcher\lsburnwatcher.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\AVAST Software\Avast\avastUI.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\internet explorer\iexplore.exe C:\Program Files\internet explorer\iexplore.exe C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe C:\Program Files\internet explorer\iexplore.exe C:\Documents and Settings\HP_Eigenaar.UW-4B58D8528225\Bureaublad\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Zoeken R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [snelkoppeling naar eigenschappenvenster voor High Definition Audio] HDAShCut.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE O4 - HKLM\..\Run: [RemoteControl] C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe O4 - HKLM\..\Run: [HPHUPD08] c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [Home Theater SchSvr] "C:\Program Files\Common Files\InterVideo\SchSvr\SchSvr.exe" O4 - HKLM\..\Run: [WINREMOTE] "C:\Program Files\InterVideo\Common\Bin\WinRemote.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe O4 - HKLM\..\Run: [LSBWatcher] c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Gelijkwaardige pagina's - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Koppelingspagina's - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Opgeslagen momentopname van de pagina - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O9 - Extra button: Verbindingshelp - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm O9 - Extra 'Tools' menuitem: Verbindingshelp - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O15 - Trusted Zone: www.dexia.be O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.0.1.0/GarminAxControl_32.CAB O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/MessengerGamesContent/GameContent/nl/uno1/GAME_UNO1.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: iPod-service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe -- End of file - 9786 bytes

Hallo mijn pc loopt vast en reageerd dan niet meer messenger loopt ook vast computer start zelf terug op telkens na slaapstand hoor steeds schijf dikwijls hard draaien wie kan mij helpen alvast bedankt

heb ik geprobeerd, maar maakt niet echt zoveel verschil uit

ik gebruik inetrnet explorer 8 maar zelfs om een venster te sluiten duurd het ook langer als normaal soms of scrollen met de muis dat doet hij ook niet direkt

neen eigenlijk niet hij werkt nu beter maar soms blijft hij nog hangen hij zegt dan onderaan dat hij gereed is als ik de pagina heb geopend en mijn groene balkje staat dan op volledig maar dan duurd het nog een tijdje eer de pagina verschijnt en dat is dan geen pagina waar veel foto's of dergelijke opstaan want als ik het dan wegklik en terug probeer gaat het dikwijls wel normaal

ok is gebeurd

http://www.speedtest.net/result/1672776250.png

Hallo, heb nu meerdere dagen op het internet gesurft. De bevindingen waren beter , maar moet toch nog verschillende keren uitzonderlijk lang wachten eer er een pagina verschijnt. Alle, nu geen minuut, maar toch abnormaal. Ook heb ik het probleem met messenger? Deze opent heel traag en blijft hangen. Ik doe enkel niets anders dan surfen op zoekertjes als 2dehands, kapaza e.a. soms komen mijn kids er ook wel op om iets af te printen en wat ze dan nog doen weet ik niet. Is eigenlijk om iets af te printen, want als ze op iets anders gaan, kom ik kijken. Dat kennen ze al en ze hebben er zelf een. Maar telkens word hij na jullie mij hier iets laten uitvoeren trager. In het begin niet, maar na een paar dagen weer. Ik betaal elke maal mijn rekening op tijd. Dus dat kan het ook niet zijn. Heb ik een verkeerd antivirus ofzoiets? Ik weet het niet meer. Mijn boel is oud aan het worden denk.

ok dit heb ik gedaan moet ik nog iets doen dank bij voorbaat

http://speccy.piriform.com/results/sElHFCaXEHClPBuIAKzkAgG

ComboFix 11-12-10.01 - HP_Eigenaar 10/12/2011 10:47:14.6.2 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.1023.548 [GMT 1:00] Gestart vanuit: c:\documents and settings\HP_Eigenaar\Bureaublad\ComboFix.exe AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D} . . (((((((((((((((((((( Bestanden Gemaakt van 2011-11-10 to 2011-12-10 )))))))))))))))))))))))))))))) . . 2011-12-09 16:05 . 2011-12-09 16:05 388096 ----a-r- c:\documents and settings\HP_Eigenaar\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2011-12-05 15:21 . 2011-12-08 06:20 -------- d--h--r- c:\documents and settings\HP_Eigenaar\Onlangs geopend . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-11-20 19:53 . 2011-05-23 13:35 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl 2011-10-10 14:22 . 2010-09-07 21:36 692736 ----a-w- c:\windows\system32\inetcomm.dll 2011-10-03 03:06 . 2010-09-07 14:08 472808 ----a-w- c:\windows\system32\deployJava1.dll 2011-10-03 00:37 . 2010-09-07 14:08 73728 ----a-w- c:\windows\system32\javacpl.cpl 2011-09-28 07:06 . 2010-09-07 21:34 602624 ----a-w- c:\windows\system32\crypt32.dll 2011-09-26 09:41 . 2010-09-07 21:38 23040 ----a-w- c:\windows\system32\oleaccrc.dll 2011-09-26 09:41 . 2008-07-29 17:59 614912 ----a-w- c:\windows\system32\uiautomationcore.dll 2011-09-26 09:41 . 2010-09-07 21:38 220160 ----a-w- c:\windows\system32\oleacc.dll 2011-04-14 16:57 . 2011-05-23 09:07 142296 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast] @="{472083B0-C522-11CF-8763-00608CC02F24}" [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}] 2011-09-06 20:45 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NokiaOviSuite2"="c:\program files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe" [2011-07-21 966712] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-09-13 39408] "TomTomHOME.exe"="c:\program files\TomTom HOME 2\TomTomHOMERunner.exe" [2010-08-24 247144] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NokiaMServer"="c:\program files\Common Files\Nokia\MPlatform\NokiaMServer" [X] "hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 52736] "Snelkoppeling naar eigenschappenvenster voor High Definition Audio"="HDAShCut.exe" [2005-01-07 61952] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2005-08-02 7110656] "nwiz"="nwiz.exe" [2005-08-02 1519616] "SoundMan"="SOUNDMAN.EXE" [2005-05-04 90112] "AlcWzrd"="ALCWZRD.EXE" [2005-05-04 2805248] "RemoteControl"="c:\program files\ASUS\ASUS Remote\RemoteControlAppl.exe" [2005-06-10 61440] "HPHUPD08"="c:\program files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe" [2005-06-02 49152] "KBD"="c:\hp\KBD\KBD.EXE" [2005-02-02 61440] "Home Theater SchSvr"="c:\program files\Common Files\InterVideo\SchSvr\SchSvr.exe" [2005-07-18 106496] "WINREMOTE"="c:\program files\InterVideo\Common\Bin\WinRemote.exe" [2005-07-18 262144] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2005-05-04 278528] "Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2004-04-14 233472] "PS2"="c:\windows\system32\ps2.exe" [2004-10-25 90112] "QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2005-10-11 98304] "Launch SilverCrest OMC807"="c:\program files\SilverCrest OMC807 Driver\MouClient_FD2_9063RL.exe" [2010-06-28 860160] "beid"="c:\program files\Belgium Identity Card\beid35gui.exe" [2010-08-12 2060288] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-09-07 37296] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920] "NokiaMusic FastStart"="c:\program files\Nokia\Ovi Player\NokiaOviPlayer.exe" [2010-10-20 2192752] "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2011-01-12 49208] "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-09-06 3722416] . c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\ HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2009-5-21 275768] Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360] . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] @="Driver" . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc] @="Service" . [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\Messenger\\msmsgs.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpiscnapp.exe"= "c:\\Program Files\\Common Files\\HP\\Digital Imaging\\Bin\\hpqPhotoCrm.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxs08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgplgtupl.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqgpc01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgm.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqusgh.exe"= "c:\\Program Files\\HP\\HP Software Update\\HPWUCli.exe"= "c:\\Program Files\\HP\\Digital Imaging\\smart web printing\\SmartWebPrintExe.exe"= "c:\\Program Files\\Nokia\\Nokia Ovi Suite\\NokiaOviSuite.exe"= "c:\\Program Files\\Common Files\\Nokia\\Service Layer\\A\\nsl_host_process.exe"= "c:\\WINDOWS\\pchealth\\helpctr\\binaries\\helpctr.exe"= . R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [26/10/2011 13:40 442200] R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [26/10/2011 13:40 320856] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [26/10/2011 13:40 20568] R2 LcSvrAdm;ELSA Administration Service;c:\elsawin\bin\LcSvrAdm.exe [7/09/2010 18:54 147456] R2 LcSvrDba;ELSA DBA Server;c:\elsawin\bin\LcSvrDba.exe [7/09/2010 18:54 233472] R2 LcSvrHis;ELSA Historie Server;c:\elsawin\bin\LcSvrHis.exe [7/09/2010 18:54 217088] R2 LcSvrPAS;ELSA PASS Server;c:\elsawin\bin\LcSvrPas.exe [7/09/2010 18:54 368640] R2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [24/08/2010 10:38 92008] R3 3xHybrid;3xHybrid service;c:\windows\system32\drivers\3xHybrid.sys [11/10/2005 16:14 2786176] R3 InputFilter_Hid_FlexDef2b;Siliten HID Devices(FlexDef2b) Driver Service;c:\windows\system32\drivers\InputFilter_FlexDef2b.sys [23/09/2010 20:54 14848] R3 LcSvrAuf;ELSA Auftragsverwaltungs Service;c:\elsawin\bin\LcSvrAuf.exe [7/09/2010 18:54 1302528] S2 gupdate;Google Updateservice (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [13/09/2010 14:22 136176] S3 ACSSCR;ACR38 Smart Card Reader;c:\windows\system32\drivers\a38usb.sys [5/10/2010 17:10 33536] S3 cpuz135;cpuz135;\??\c:\windows\TEMP\cpuz135\cpuz135_x32.sys --> c:\windows\TEMP\cpuz135\cpuz135_x32.sys [?] S3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe [23/05/2011 9:54 129440] S3 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [13/09/2010 14:22 136176] . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] HPService REG_MULTI_SZ HPSLPSVC HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12 hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc . Inhoud van de 'Gedeelde Taken' map . 2011-12-10 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-09-13 13:22] . 2011-12-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-09-13 13:22] . 2011-12-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1158552649-2627598947-2617169825-1008Core.job - c:\documents and settings\HP_Eigenaar\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-09-07 14:59] . 2011-12-10 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1158552649-2627598947-2617169825-1008UA.job - c:\documents and settings\HP_Eigenaar\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2010-09-07 14:59] . 2011-12-10 c:\windows\Tasks\User_Feed_Synchronization-{0B2E3EB1-E7B8-43E9-91E4-F5DE6EFABA99}.job - c:\windows\system32\msfeedssync.exe [2009-03-08 02:31] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/ uInternet Connection Wizard,ShellNext = iexplore IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office10\EXCEL.EXE/3000 IE: Verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm Trusted Zone: dexia.be\directnet Trusted Zone: dexia.be\www TCP: DhcpNameServer = 195.130.130.3 195.130.131.3 DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/3.0.1.0/GarminAxControl.CAB FF - ProfilePath - c:\documents and settings\HP_Eigenaar\Application Data\Mozilla\Firefox\Profiles\jjogq8cj.default\ FF - prefs.js: network.proxy.type - 0 . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2011-12-10 11:00 Windows 5.1.2600 Service Pack 3 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . --------------------- DLLs Geladen Onder Lopende Processen --------------------- . - - - - - - - > 'explorer.exe'(5040) c:\windows\system32\nview.dll c:\windows\system32\NVWRSNL.DLL c:\windows\system32\nvwddi.dll c:\windows\system32\webcheck.dll c:\windows\system32\WPDShServiceObj.dll c:\windows\system32\PortableDeviceTypes.dll c:\windows\system32\PortableDeviceApi.dll . Voltooingstijd: 2011-12-10 11:03:52 ComboFix-quarantined-files.txt 2011-12-10 10:03 ComboFix2.txt 2011-10-24 12:34 . Pre-Run: 127.465.644.032 bytes beschikbaar Post-Run: 127.765.078.016 bytes beschikbaar . - - End Of File - - 8C1A6ADF590C1065BC68E5D97A6F8A31

Hallo, Ik heb hier 2 maanden geleden hetzelfde probleem voorgehad mijn pc loopt vast en werkt met alles traag het is toen hier opgelost, maar nu heeft hij het terug aan wat zou dit toch telkens kunnen liggen alvast een logje Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 17:06:20, on 9/12/2011 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\AVAST Software\Avast\AvastSvc.exe C:\WINDOWS\Explorer.EXE C:\windows\system\hpsysdrv.exe C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\ALCWZRD.EXE C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe C:\HP\KBD\KBD.EXE C:\Program Files\Common Files\InterVideo\SchSvr\SchSvr.exe C:\Program Files\InterVideo\Common\Bin\WinRemote.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\QuickTime\qttask.exe C:\Program Files\SilverCrest OMC807 Driver\MouClient_FD2_9063RL.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\Belgium Identity Card\beid35gui.exe C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\AVAST Software\Avast\avastUI.exe C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\ElsaWin\bin\LcSvrAdm.exe C:\ElsaWin\bin\LcSvrDba.exe C:\ElsaWin\bin\LcSvrHis.exe C:\ElsaWin\bin\LcSvrPas.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\PC Connectivity Solution\ServiceLayer.exe C:\ElsaWin\bin\LcSvrAuf.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe C:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe C:\Program Files\PC Connectivity Solution\Transports\NclBCBTSrv.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_clipbook.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\WINDOWS\system32\msiexec.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7018.1622\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [snelkoppeling naar eigenschappenvenster voor High Definition Audio] HDAShCut.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE O4 - HKLM\..\Run: [RemoteControl] C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe O4 - HKLM\..\Run: [HPHUPD08] c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [Home Theater SchSvr] "C:\Program Files\Common Files\InterVideo\SchSvr\SchSvr.exe" O4 - HKLM\..\Run: [WINREMOTE] "C:\Program Files\InterVideo\Common\Bin\WinRemote.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [Launch SilverCrest OMC807] C:\Program Files\SilverCrest OMC807 Driver\MouClient_FD2_9063RL.exe O4 - HKLM\..\Run: [beid] "C:\Program Files\Belgium Identity Card\beid35gui.exe" /startup O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup O4 - HKLM\..\Run: [NokiaMusic FastStart] "C:\Program Files\Nokia\Ovi Player\NokiaOviPlayer.exe" /command:faststart O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKLM\..\RunOnce: [AvgUninstallURL] cmd.exe /c start Free Uninstall Survey | AVG Nederland O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [NokiaOviSuite2] C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre6\bin\jp2iexp.dll O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O9 - Extra button: Verbindingshelp - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm O9 - Extra 'Tools' menuitem: Verbindingshelp - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/3.0.1.0/GarminAxControl.CAB O16 - DPF: {6F15128C-E66A-490C-B848-5000B5ABEEAC} (HP Download Manager) - https://h20436.www2.hp.com/ediags/dex/secure/HPDEXAXO.cab O16 - DPF: {D1E7CBDA-E60E-4970-A01C-37301EF7BF98} (FuturemarkSystemInfoX Class) - http://clients.futuremark.com/openapi/receivers/FMSI.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: vw-wi - {0F3C833F-FB28-40EA-8CB9-6A55B996C3F6} - C:\ElsaWin\bin\wiProt.dll O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: Futuremark SystemInfo Service - Futuremark Corporation - C:\Program Files\Common Files\Futuremark Shared\Futuremark SystemInfo\FMSISvc.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: iPod-service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: ELSA Administration Service (LcSvrAdm) - Volkswagen AG - C:\ElsaWin\bin\LcSvrAdm.exe O23 - Service: ELSA Auftragsverwaltungs Service (LcSvrAuf) - Volkswagen AG - C:\ElsaWin\bin\LcSvrAuf.exe O23 - Service: ELSA DBA Server (LcSvrDba) - Volkswagen AG - C:\ElsaWin\bin\LcSvrDba.exe O23 - Service: ELSA Historie Server (LcSvrHis) - Volkswagen AG - C:\ElsaWin\bin\LcSvrHis.exe O23 - Service: ELSA PASS Server (LcSvrPAS) - Volkswagen AG - C:\ElsaWin\bin\LcSvrPas.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe -- End of file - 13647 bytes

dit is ook gebeurd