ericlownoise
-
Items
11 -
Registratiedatum
-
Laatst bezocht
Inhoudstype
Profielen
Forums
Store
Berichten die geplaatst zijn door ericlownoise
-
-
-
heb ik gedaan, Wie gaat mij verder helpen
-
na 5 minuten was het gedaan en viel ie weer uit
-
Hier is ie,
ComboFix 12-02-08.01 - Famzoet 08-02-2012 17:01:56.1.2 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1252.31.1043.18.3062.2170 [GMT 1:00]
Gestart vanuit: c:\users\Famzoet\Downloads\ComboFix.exe
AV: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Nieuw herstelpunt werd aangemaakt
.
.
(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\Install.exe
c:\program files\DealBulldog Toolbar
c:\program files\DealBulldog Toolbar\affid.dat
c:\program files\DealBulldog Toolbar\alert_plugin.dll
c:\program files\DealBulldog Toolbar\basis.xml
c:\program files\DealBulldog Toolbar\icons.bmp
c:\program files\DealBulldog Toolbar\info.txt
c:\program files\DealBulldog Toolbar\install.ico
c:\program files\DealBulldog Toolbar\MacroParserPlugin.dll
c:\program files\DealBulldog Toolbar\mbback.bmp
c:\program files\DealBulldog Toolbar\mbbigopen.bmp
c:\program files\DealBulldog Toolbar\mbclose.bmp
c:\program files\DealBulldog Toolbar\mbfwd.bmp
c:\program files\DealBulldog Toolbar\mbsep.bmp
c:\program files\DealBulldog Toolbar\nav1c.bmp
c:\program files\DealBulldog Toolbar\somoto.dll
c:\program files\DealBulldog Toolbar\TbCommonUtils.dll
c:\program files\DealBulldog Toolbar\tbcore3.inf
c:\program files\DealBulldog Toolbar\tbHElper.dll
c:\program files\DealBulldog Toolbar\TbHelper2.exe
c:\program files\DealBulldog Toolbar\uninstall.exe
c:\program files\DealBulldog Toolbar\UninstallToolbar.exe
c:\program files\DealBulldog Toolbar\update.exe
c:\program files\DealBulldog Toolbar\version.txt
c:\users\Famzoet\AppData\Local\TempDIR
c:\users\Famzoet\AppData\Local\TempDIR\BetterInstaller.exe
.
.
(((((((((((((((((((( Bestanden Gemaakt van 2012-01-08 to 2012-02-08 ))))))))))))))))))))))))))))))
.
.
2012-02-08 16:07 . 2012-02-08 16:07 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-02-06 22:05 . 2012-02-06 22:05 -------- d-----w- c:\program files\NirSoft
2012-02-05 16:05 . 2012-02-05 16:05 -------- dc----w- c:\windows\system32\DRVSTORE
2012-02-05 16:05 . 2009-05-18 12:17 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2012-02-05 16:05 . 2008-04-17 11:12 107368 ----a-w- c:\windows\system32\GEARAspi.dll
2012-02-05 16:05 . 2012-02-05 16:05 -------- d-----w- c:\program files\iPod
2012-02-05 16:05 . 2012-02-05 16:05 -------- d-----w- c:\programdata\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2012-02-05 16:05 . 2012-02-05 16:05 -------- d-----w- c:\program files\iTunes
2012-02-05 16:05 . 2012-02-05 16:05 -------- d-----w- c:\programdata\Apple Computer
2012-02-05 16:03 . 2012-02-05 16:03 -------- d-----w- c:\program files\Apple Software Update
2012-02-05 16:02 . 2012-02-05 16:03 -------- d-----w- c:\program files\Bonjour
2012-02-05 16:02 . 2012-02-05 16:05 -------- d-----w- c:\program files\Common Files\Apple
2012-02-05 16:02 . 2012-02-05 16:03 -------- d-----w- c:\programdata\Apple
2012-02-05 12:31 . 2010-11-24 08:52 1677312 ----a-w- c:\windows\system32\wmvcore2.dll
2012-02-05 10:36 . 2012-02-05 12:40 -------- d-----w- c:\program files\coolpro2
2012-02-04 20:56 . 2012-02-04 20:56 -------- d-----w- c:\programdata\Malwarebytes
2012-02-04 20:56 . 2012-02-04 20:56 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2012-02-04 20:56 . 2011-12-10 14:24 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-02-04 12:35 . 2012-02-04 12:35 -------- d-----w- c:\program files\Trend Micro
2012-02-04 12:30 . 2012-02-04 12:30 -------- d-----w- c:\program files\Speccy
2012-01-29 11:10 . 2012-01-29 11:10 -------- d-----w- c:\windows\system32\SPReview
2012-01-29 11:09 . 2012-01-29 11:09 -------- d-----w- c:\windows\system32\EventProviders
2012-01-28 12:04 . 2009-06-22 17:58 89600 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\HPZPPLHN.DLL
2012-01-27 13:08 . 2012-01-27 13:08 -------- d-----w- c:\program files\TweetDeck
2012-01-27 13:02 . 2012-01-27 13:02 -------- d-----w- c:\program files\Common Files\Adobe AIR
2012-01-26 22:25 . 2012-01-26 22:25 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2012-01-26 20:25 . 2012-01-26 20:25 -------- d-----w- c:\program files\Conduit
2012-01-26 20:25 . 2012-01-26 20:25 -------- d-----w- c:\program files\uTorrent
2012-01-26 20:09 . 2012-02-04 20:54 -------- d-----w- c:\program files\AP Suggestor
2012-01-26 20:09 . 2012-01-26 20:09 -------- d-----w- c:\programdata\APSuggestor
2012-01-26 18:04 . 2012-01-26 18:04 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-01-26 18:04 . 2012-01-26 18:04 -------- d-----w- c:\windows\system32\Macromed
2012-01-26 17:19 . 2010-11-20 12:20 563712 ----a-w- c:\windows\system32\netlogon.dll
2012-01-26 17:18 . 2010-11-20 12:21 363008 ----a-w- c:\windows\system32\wbemcomn.dll
2012-01-26 17:18 . 2010-11-20 12:21 189952 ----a-w- c:\program files\Windows Portable Devices\sqmapi.dll
2012-01-26 17:18 . 2010-11-20 12:19 606208 ----a-w- c:\windows\system32\wbem\fastprox.dll
2012-01-26 17:18 . 2010-11-20 12:21 189952 ----a-w- c:\windows\system32\sqmapi.dll
2012-01-26 17:16 . 2011-11-17 05:41 67440 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2012-01-26 17:16 . 2011-11-17 05:41 134000 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2012-01-26 17:16 . 2011-11-17 05:39 369352 ----a-w- c:\windows\system32\drivers\cng.sys
2012-01-26 17:16 . 2011-11-17 05:35 314880 ----a-w- c:\windows\system32\webio.dll
2012-01-26 17:16 . 2011-11-17 05:34 15872 ----a-w- c:\windows\system32\sspisrv.dll
2012-01-26 17:16 . 2011-11-17 05:34 100352 ----a-w- c:\windows\system32\sspicli.dll
2012-01-26 17:16 . 2011-11-17 05:34 224768 ----a-w- c:\windows\system32\schannel.dll
2012-01-26 17:16 . 2011-11-17 05:34 22016 ----a-w- c:\windows\system32\secur32.dll
2012-01-26 17:16 . 2011-11-17 05:32 1038848 ----a-w- c:\windows\system32\lsasrv.dll
2012-01-26 17:16 . 2011-11-17 05:29 22528 ----a-w- c:\windows\system32\lsass.exe
2012-01-25 23:36 . 2008-11-04 02:30 30568 ----a-w- c:\windows\system32\mdimon.dll
2012-01-25 23:36 . 2006-10-26 18:58 30512 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\mdippr.dll
2012-01-25 23:34 . 2012-01-26 22:24 -------- d-----w- c:\program files\Microsoft Works
2012-01-25 23:34 . 2012-01-25 23:34 -------- d-----w- c:\windows\PCHEALTH
2012-01-25 23:32 . 2012-01-28 02:06 -------- d-----w- c:\programdata\Microsoft Help
2012-01-25 23:32 . 2012-01-25 23:32 -------- d-----r- C:\MSOCache
2012-01-25 19:59 . 2012-01-25 19:59 -------- d-----w- c:\windows\system32\RTCOM
2012-01-25 19:53 . 2010-06-17 11:02 53248 ----a-w- c:\windows\system32\CSVer.dll
2012-01-25 19:53 . 2012-01-25 19:53 -------- d-----w- C:\Intel
2012-01-25 19:03 . 2012-01-25 23:34 -------- d-----w- c:\program files\Microsoft.NET
2012-01-23 21:57 . 2012-01-23 21:57 -------- d--h--w- c:\programdata\Common Files
2012-01-23 21:57 . 2012-02-08 15:45 -------- d-----w- c:\windows\system32\drivers\AVG
2012-01-23 21:57 . 2012-01-25 18:57 -------- d-----w- c:\programdata\AVG2012
2012-01-23 21:56 . 2012-01-23 21:56 -------- d-----w- c:\program files\AVG
2012-01-23 21:55 . 2012-02-08 15:45 -------- d-----w- c:\programdata\MFAData
2012-01-23 21:55 . 2012-01-23 21:55 -------- d-----w- c:\program files\Google
2012-01-23 21:54 . 2012-01-23 21:54 -------- d-----w- c:\program files\Paint.NET
2012-01-23 21:53 . 2012-01-23 21:53 -------- d-----w- c:\program files\Common Files\Adobe
2012-01-23 21:52 . 2012-01-23 21:52 -------- d-----w- c:\program files\VideoLAN
2012-01-23 21:51 . 2012-01-23 21:51 -------- d-----w- c:\program files\Audacity 1.3 Beta (Unicode)
2012-01-23 21:51 . 2012-01-23 21:51 -------- d-----w- c:\program files\ImgBurn
2012-01-23 21:51 . 2012-01-23 21:51 -------- d-----w- c:\program files\IrfanView
2012-01-23 21:51 . 2012-01-23 21:51 -------- d-----w- c:\program files\Common Files\Java
2012-01-23 21:51 . 2012-01-23 21:50 472808 ----a-w- c:\windows\system32\deployJava1.dll
2012-01-23 21:50 . 2012-01-23 21:50 -------- d-----w- c:\program files\Java
2012-01-23 21:45 . 2012-01-23 21:45 -------- d-----w- c:\program files\Microsoft Silverlight
2012-01-23 21:45 . 2012-02-05 16:05 -------- d-sh--w- c:\windows\Installer
2012-01-23 21:35 . 2012-01-23 21:35 -------- d-----w- c:\windows\system32\wbem\en-US
2012-01-23 21:03 . 2012-01-23 21:03 -------- d-----w- c:\windows\system32\Wat
2012-01-23 20:19 . 2010-02-11 07:10 293376 ----a-w- c:\windows\system32\browserchoice.exe
2012-01-23 20:18 . 2012-01-17 03:39 6557240 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{D8CEE168-8896-4C6F-8B0D-B1CAFC07046B}\mpengine.dll
2012-01-23 20:18 . 2011-11-15 13:29 222080 ------w- c:\windows\system32\MpSigStub.exe
2012-01-23 20:17 . 2011-02-18 05:39 31232 ----a-w- c:\windows\system32\prevhost.exe
2012-01-23 20:17 . 2011-11-05 04:26 2048 ----a-w- c:\windows\system32\tzres.dll
2012-01-23 20:15 . 2011-11-19 14:01 67072 ----a-w- c:\windows\system32\packager.dll
2012-01-23 20:15 . 2011-01-17 05:47 161792 ----a-w- c:\windows\system32\d3d10_1.dll
2012-01-23 20:15 . 2010-11-20 12:18 219136 ----a-w- c:\windows\system32\d3d10_1core.dll
2012-01-23 20:15 . 2011-02-25 05:30 2616320 ----a-w- c:\windows\explorer.exe
2012-01-23 20:15 . 2011-03-11 05:33 1164288 ----a-w- c:\windows\system32\mfc42u.dll
2012-01-23 20:15 . 2011-03-11 05:33 1137664 ----a-w- c:\windows\system32\mfc42.dll
2012-01-23 20:15 . 2011-10-26 04:28 38912 ----a-w- c:\windows\system32\csrsrv.dll
2012-01-23 20:15 . 2011-04-22 19:14 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2012-01-23 20:09 . 2011-02-03 05:54 219008 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2012-01-23 20:09 . 2010-11-20 12:29 728448 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2012-01-23 20:09 . 2010-11-20 11:56 107520 ----a-w- c:\windows\system32\cdd.dll
2012-01-23 20:04 . 2012-01-25 19:54 -------- d-----w- c:\windows\system32\Lang
2012-01-23 20:04 . 2012-01-25 19:53 -------- d-----w- c:\program files\Intel
2012-01-23 20:04 . 2009-09-23 10:50 398336 ----a-w- c:\windows\system32\TVWizudlg.exe
2012-01-23 20:04 . 2009-09-23 10:49 140288 ----a-w- c:\windows\system32\igfxtvcx.dll
2012-01-23 20:02 . 2012-02-08 15:46 -------- d-----w- c:\windows\system32\wbem\Performance
2012-01-23 20:02 . 2012-01-23 20:02 -------- d-----w- c:\windows\system32\x64
2012-01-23 20:02 . 2009-10-19 14:57 1002008 ----a-w- c:\windows\system32\igxpun.exe
2012-01-23 19:58 . 2012-01-23 19:59 -------- d-----w- c:\users\Famzoet
2012-01-23 19:58 . 2012-01-23 19:58 -------- d-sh--we c:\users\Default\Sjablonen
2012-01-23 19:58 . 2012-01-23 19:58 -------- d-sh--we c:\users\Default\Netwerkprinteromgeving
.
.
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-29 11:17 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
"AVG_TRAY"="c:\program files\AVG\AVG2012\avgtray.exe" [2012-01-24 2416480]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-23 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-23 173592]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-23 150552]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-12-05 11487848]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-11-01 59240]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2012-01-16 421736]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG2012\avgrsx.exe /sync /restart
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2012-01-23 1343400]
S0 AVGIDSEH;AVGIDSEH;c:\windows\system32\DRIVERS\AVGIDSEH.Sys [2011-07-11 23120]
S0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx86.sys [2011-09-13 32592]
S1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx86.sys [2011-10-07 230608]
S1 Avgtdix;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdix.sys [2011-07-11 295248]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG2012\AVGIDSAgent.exe [2011-10-12 4433248]
S2 avgwd;AVG WatchDog;c:\program files\AVG\AVG2012\avgwdsvc.exe [2011-08-02 192776]
S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\AVGIDSDriver.Sys [2011-07-11 134736]
S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\AVGIDSFilter.Sys [2011-07-11 24272]
S3 AVGIDSShim;AVGIDSShim;c:\windows\system32\DRIVERS\AVGIDSShim.Sys [2011-10-04 16720]
S3 yukonw7;NDIS6.2 Minipoortstuurprogramma voor Marvell Yukon Ethernet-controller;c:\windows\system32\DRIVERS\yk62x86.sys [2009-07-13 311296]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
.
Inhoud van de 'Gedeelde Taken' map
.
2012-02-07 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2277385644-3743377315-546737084-1000Core.job
- c:\users\Famzoet\AppData\Local\Google\Update\GoogleUpdate.exe [2012-01-27 06:40]
.
2012-02-08 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2277385644-3743377315-546737084-1000UA.job
- c:\users\Famzoet\AppData\Local\Google\Update\GoogleUpdate.exe [2012-01-27 06:40]
.
.
------- Bijkomende Scan -------
.
uStart Page = hxxp://www.google.nl/
uInternet Settings,ProxyOverride = *.local
IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
.
- - - - ORPHANS VERWIJDERD - - - -
.
WebBrowser-{87775FDB-6972-41F9-AE51-8326E38CB206} - (no file)
HKCU-Run-Spotify - c:\users\Famzoet\AppData\Roaming\Spotify\spotify.exe
AddRemove-DealBulldog Toolbar - c:\program files\DealBulldog Toolbar\UninstallToolbar.exe
.
.
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Voltooingstijd: 2012-02-08 17:08:56
ComboFix-quarantined-files.txt 2012-02-08 16:08
.
Pre-Run: 286.691.414.016 bytes beschikbaar
Post-Run: 287.005.114.368 bytes beschikbaar
.
- - End Of File - - 9677772DC6DAF8A4052F70C89539712A
-
Mailwaren analyse?
maar in iedergeval alvast bedankt
-
-
hij valt met een simple spelletje van facebook weer uit.
en dan geeft windows na op starten dit weer,
Probleemhandtekening:
Gebeurtenisnaam van probleem: BlueScreen
Versie van besturingssysteem: 6.1.7601.2.1.0.256.48
Landinstelling-id: 1043
Aanvullende informatie over dit probleem:
BCCode: 124
BCP1: 00000000
BCP2: 8639D024
BCP3: F2000040
BCP4: 00000800
OS Version: 6_1_7601
Service Pack: 1_0
Product: 256_1
Bestanden die helpen bij het beschrijven van het probleem:
C:\Windows\Minidump\020512-19109-01.dmp
C:\Users\Famzoet\AppData\Local\Temp\WER-33859-0.sysdata.xml
-
Malwarebytes Anti-Malware 1.60.1.1000
Malwarebytes : Free anti-malware, anti-virus and spyware removal download
Databaseversie: v2012.02.04.03
Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Famzoet :: FAMZOET-PC [administrator]
4-2-2012 21:57:51
mbam-log-2012-02-04 (21-57-51).txt
Scantype: Snelle scan
Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
Uitgeschakelde scanopties: P2P
Objecten gescand: 162835
Verstreken tijd: 3 minuut/minuten, 17 seconde(n)
Geheugenprocessen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Geheugenmodulen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registersleutels gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerwaarden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerdata gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Mappen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Bestanden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
(einde)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:02:38, on 4-2-2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Windows\system32\igfxsrvc.exe
C:\Users\Famzoet\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Famzoet\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Famzoet\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Famzoet\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Famzoet\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Famzoet\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Famzoet\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Famzoet\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll
O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: DealBulldog Toolbar - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\DealBulldog Toolbar\tbcore3.dll (file missing)
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
O4 - HKCU\..\Run: [Google Update] "C:\Users\Famzoet\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [spotify] "C:\Users\Famzoet\AppData\Roaming\Spotify\spotify.exe" /uri spotify:autostart
O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe
--
End of file - 4919 bytes
-
http://speccy.piriform.com/results/vBFV8qaRysHmJmV4ddd7yjm
bij hack this staat kan het bestands log niet vinden, en nu?
---------- Post toegevoegd om 13:48 ---------- Vorige post was om 13:46 ----------
hebbez
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 13:47:22, on 4-2-2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVG\AVG2012\avgtray.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Users\Famzoet\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Famzoet\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Famzoet\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Famzoet\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Famzoet\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\System32\msdt.exe
C:\Windows\System32\sdiagnhost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: uTorrentBar_NL Toolbar - {87775fdb-6972-41f9-ae51-8326e38cb206} - C:\Program Files\uTorrentBar_NL\prxtbuTor.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll
O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: uTorrentBar_NL - {87775fdb-6972-41f9-ae51-8326e38cb206} - C:\Program Files\uTorrentBar_NL\prxtbuTor.dll
O2 - BHO: AP Suggestor - {D0984FD4-FA9A-46ee-9072-70B0735FF852} - C:\Program Files\AP Suggestor\APSuggestor.dll
O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SMTTB2009 - {FCBCCB87-9224-4B8D-B117-F56D924BEB18} - C:\Program Files\DealBulldog Toolbar\tbcore3.dll
O3 - Toolbar: DealBulldog Toolbar - {338B4DFE-2E2C-4338-9E41-E176D497299E} - C:\Program Files\DealBulldog Toolbar\tbcore3.dll
O3 - Toolbar: uTorrentBar_NL Toolbar - {87775fdb-6972-41f9-ae51-8326e38cb206} - C:\Program Files\uTorrentBar_NL\prxtbuTor.dll
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe"
O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKCU\..\Run: [Google Update] "C:\Users\Famzoet\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [spotify] "C:\Users\Famzoet\AppData\Roaming\Spotify\spotify.exe" /uri spotify:autostart
O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: AP Suggestor - {02E2473F-766B-4ce2-8FD0-C4E8071EF1C4} - C:\Program Files\AP Suggestor\APSuggestor.dll
O9 - Extra 'Tools' menuitem: AP Suggestor options - {02E2473F-766B-4ce2-8FD0-C4E8071EF1C4} - C:\Program Files\AP Suggestor\APSuggestor.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe
--
End of file - 5643 bytes
-
Wie kan mij helpen? mijn pc valt regelmatig plotseling uit
Pc valt uit
in Archief Hardware algemeen
Geplaatst:
nee die heb ik afgekoppeld ik d8t dat het daar de foutmelding van kwam