maxjuhh3

heb ik gedaan, even met een borstel goed afgeveegd er zat bijna geen stof in. dit heeft geen nut gehad me computer raakt nog steeds over hit waarschinlijk zal mijn ventilator kapot zijn, of kunnen er nog andere mogelijk heden zijn?

dankje wel voor de tip ik heb inderdaad vanmiddag mijn laptop open gehaald en even met een borsteltje me ventrilator stof vrij gemaakt dit zal het inderdaad zijn want verder zag het er perfect uit. dit zal wel betekenen goed elke maand je computer stof vrijhouden.

het is al heel wat minder geworden nu is het cpu 60-65 graden ( ze blijven niet altijd op dezelfde tempratuur) core 0 30-40 graden ( ze blijven niet altijd op dezelfde tempratuur) core 1 30-40 ( ze blijven niet altijd op dezelfde tempratuur)

het ziet er nu wel wat beter uit ik hou het in de gaten. als het echt slecht ga informeer ik u hier over

ik weet al dat het niet goed is. cpu 75 graden ( ze blijven niet altijd op dezelfde tempratuur) core 0 77 graden ( ze blijven niet altijd op dezelfde tempratuur) core 1 73 ( ze blijven niet altijd op dezelfde tempratuur)

nee dit heeft allemaal niet geholpen ik zou echt niet weten wat er aan de hand is?

als ik bezig ben dan niet... maar soms als hij bezig is met opstarten dan hoor je klik en dan valt hij uit. De tempratuur weet ik niet heb je hier een programma voor?

hi, Mijn acer aspire 7720 valt soms onder het werken uit.. ook heb ik opstart problemen. Als ik me computer opstart kan het zijn dat hij helemaal niks doet ik krijg zwart beeld maar hij is wel aan. De andere keer start hij op en onder het laden valt hij opeens uit? heeft u hier een oplossing voor (het is geen viruss heb alle virus scanners die bestaan al later scannen)

hier ben ik nog mee bezig als deze klaar is zal ik het laten horen als het probleem nog niet is opgelost

nee ik daar niks raars vinden het ligt volgens mij aan de snelheid van mijn computer?

ohh ik heb het geprobeert en hij kraakt ook als hij staat uitgeschakelt

tot nu toe gaat het nog goed als ik iets hoor dan zeg ik het wel

ComboFix 10-02-20.04 - Maximus 21-02-2010 17:16:45.1.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.31.1043.18.3069.2100 [GMT 1:00] Gestart vanuit: c:\users\Maximus\Documents\ComboFix.exe SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46} * Aanwezig AV is actief . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\users\Maximus\AppData\Roaming\.# c:\users\Maximus\AppData\Roaming\02000000cf56b8f5648C.manifest c:\users\Maximus\AppData\Roaming\02000000cf56b8f5648O.manifest c:\users\Maximus\AppData\Roaming\02000000cf56b8f5648P.manifest c:\users\Maximus\AppData\Roaming\02000000cf56b8f5648S.manifest c:\windows\system32\ar3GqnwDoZ435IC.vbs c:\windows\system32\SIntf16.dll . (((((((((((((((((((( Bestanden Gemaakt van 2010-01-21 to 2010-02-21 )))))))))))))))))))))))))))))) . 2010-02-21 16:27 . 2010-02-21 16:28 -------- d-----w- c:\users\Maximus\AppData\Local\temp 2010-02-21 16:27 . 2010-02-21 16:27 -------- d-----w- c:\users\Default\AppData\Local\temp 2010-02-18 16:02 . 2010-02-18 16:02 -------- d-----w- c:\program files\K-Lite Codec Pack 2010-02-17 16:39 . 2010-02-17 16:39 388096 ----a-r- c:\users\Maximus\AppData\Roaming\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HiJackThis.exe 2010-02-17 16:39 . 2010-02-20 02:00 -------- d-----w- c:\program files\TrendMicro 2010-02-17 14:56 . 2010-02-17 14:56 -------- d-----w- C:\Medion 2010-02-17 14:30 . 2010-02-20 02:01 -------- d-----w- c:\program files\RS2Bot 2010-02-15 17:33 . 2010-02-15 17:33 -------- d-----w- c:\program files\Ubisoft 2010-02-15 13:32 . 2010-02-15 13:32 -------- d-----w- c:\program files\Free Offers from Freeze.com 2010-02-12 13:59 . 2010-02-12 13:59 -------- d-----w- c:\windows\McAfee.com 2010-02-11 17:08 . 2010-01-07 15:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-02-11 17:08 . 2010-02-20 02:01 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-02-11 17:08 . 2010-01-07 15:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-02-11 15:41 . 2010-02-11 15:41 -------- d-----w- C:\rsit 2010-02-09 21:40 . 2009-12-11 11:43 302080 ----a-w- c:\windows\system32\drivers\srv.sys 2010-02-09 21:40 . 2009-12-11 11:43 98816 ----a-w- c:\windows\system32\drivers\srvnet.sys 2010-02-09 21:40 . 2009-12-08 20:01 3600456 ----a-w- c:\windows\system32\ntkrnlpa.exe 2010-02-09 21:40 . 2009-12-08 20:01 3548216 ----a-w- c:\windows\system32\ntoskrnl.exe 2010-02-09 21:40 . 2009-12-08 20:01 904776 ----a-w- c:\windows\system32\drivers\tcpip.sys 2010-02-09 21:40 . 2009-12-08 17:26 30720 ----a-w- c:\windows\system32\drivers\tcpipreg.sys 2010-02-09 21:39 . 2009-12-04 18:29 1314816 ----a-w- c:\windows\system32\quartz.dll 2010-02-09 21:39 . 2009-12-04 18:30 12288 ----a-w- c:\windows\system32\tsbyuv.dll 2010-02-09 21:39 . 2009-12-04 18:28 22528 ----a-w- c:\windows\system32\msyuv.dll 2010-02-09 21:39 . 2009-12-04 18:28 31744 ----a-w- c:\windows\system32\msvidc32.dll 2010-02-09 21:39 . 2009-12-04 18:28 13312 ----a-w- c:\windows\system32\msrle32.dll 2010-02-09 21:39 . 2009-12-04 18:28 123904 ----a-w- c:\windows\system32\msvfw32.dll 2010-02-09 21:39 . 2009-12-04 18:28 82944 ----a-w- c:\windows\system32\mciavi32.dll 2010-02-09 21:39 . 2009-12-04 18:28 50176 ----a-w- c:\windows\system32\iyuv_32.dll 2010-02-09 21:39 . 2009-12-04 18:27 91136 ----a-w- c:\windows\system32\avifil32.dll 2010-02-09 21:39 . 2009-12-04 15:56 105984 ----a-w- c:\windows\system32\drivers\mrxsmb.sys 2010-02-09 21:39 . 2009-12-04 15:56 212992 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys 2010-02-07 18:29 . 2010-02-07 18:29 -------- d-----w- c:\program files\RealFogs 2010-01-31 14:45 . 2010-01-31 14:45 -------- d-----w- c:\users\Maximus\AppData\Roaming\AVS4YOU 2010-01-31 14:45 . 2010-01-31 14:45 -------- d-----w- c:\programdata\AVS4YOU 2010-01-31 14:44 . 2010-02-02 18:01 -------- d-----w- c:\program files\Common Files\AVSMedia 2010-01-31 14:44 . 2008-08-13 09:22 974848 ----a-w- c:\windows\system32\mfc70.dll 2010-01-31 14:44 . 2008-08-13 09:22 24576 ----a-w- c:\windows\system32\msxml3a.dll . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-02-21 15:38 . 2010-02-21 14:47 -------- d-----w- c:\program files\TribalManager 2010-02-21 01:30 . 2010-02-20 21:51 -------- d-----w- c:\program files\Everest Poker 2010-02-20 21:36 . 2010-02-20 21:36 -------- d-----w- c:\program files\Arthaus Paint & Fotoshop 2010-02-20 21:28 . 2009-12-28 19:56 69 ----a-w- c:\users\Maximus\jagex_runescape_preferences2.dat 2010-02-20 21:27 . 2009-12-28 19:55 41 ----a-w- c:\users\Maximus\jagex_runescape_preferences.dat 2010-02-19 20:59 . 2008-07-08 21:37 -------- d-----w- c:\program files\Sun 2010-02-19 20:57 . 2008-07-01 14:08 -------- d-----w- c:\program files\Java 2010-02-19 17:08 . 2009-11-23 14:54 -------- d-----w- c:\users\Maximus\AppData\Roaming\DNA 2010-02-18 21:17 . 2008-06-22 20:41 56733 ----a-w- c:\users\Maximus\AppData\Roaming\nvModes.dat 2010-02-15 22:12 . 2009-09-21 17:57 -------- d-----w- c:\programdata\McAfee Security Scan 2010-02-15 17:33 . 2008-04-16 05:00 -------- d--h--w- c:\program files\InstallShield Installation Information 2010-02-11 17:26 . 2009-12-13 21:43 -------- d-----w- c:\program files\Trend Micro 2010-02-10 02:29 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail 2010-02-09 16:39 . 2008-08-17 13:36 680 ----a-w- c:\users\Maximus\AppData\Local\d3d9caps.dat 2010-01-26 18:40 . 2008-01-21 06:47 50698 ----a-w- c:\windows\system32\perfh013.dat 2010-01-26 18:40 . 2008-01-21 06:47 11730 ----a-w- c:\windows\system32\perfc013.dat 2010-01-20 11:50 . 2008-08-20 19:46 -------- d-----w- c:\program files\Microsoft Silverlight 2010-01-04 19:47 . 2008-04-16 05:53 -------- d-----w- c:\program files\Common Files\Adobe 2010-01-02 06:38 . 2010-01-21 22:38 916480 ----a-w- c:\windows\system32\wininet.dll 2010-01-02 06:32 . 2010-01-21 22:38 71680 ----a-w- c:\windows\system32\iesetup.dll 2010-01-02 06:32 . 2010-01-21 22:38 109056 ----a-w- c:\windows\system32\iesysprep.dll 2010-01-02 04:57 . 2010-01-21 22:38 133632 ----a-w- c:\windows\system32\ieUnatt.exe 2009-12-13 16:04 . 2009-12-13 16:04 2560 ----a-w- c:\windows\_MSRSTRT.EXE 2009-12-13 00:41 . 2009-12-13 00:41 2855 ----a-w- c:\users\Maximus\AppData\Roaming\Microsoft\Windows\Recent\Comfy Cakes.pif . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{47e161a0-f4ba-41dd-a17b-d2eb26ad6a02}] 2009-07-02 17:46 2094616 ----a-w- c:\program files\LimewirePlus\tbLim1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{47e161a0-f4ba-41dd-a17b-d2eb26ad6a02}"= "c:\program files\LimewirePlus\tbLim1.dll" [2009-07-02 2094616] [HKEY_CLASSES_ROOT\clsid\{47e161a0-f4ba-41dd-a17b-d2eb26ad6a02}] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{47E161A0-F4BA-41DD-A17B-D2EB26AD6A02}"= "c:\program files\LimewirePlus\tbLim1.dll" [2009-07-02 2094616] [HKEY_CLASSES_ROOT\clsid\{47e161a0-f4ba-41dd-a17b-d2eb26ad6a02}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP] @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}" [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}] 2008-01-03 00:00 39472 ----a-w- c:\acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-02-09 39408] "Google Update"="c:\users\Maximus\AppData\Local\Google\Update\GoogleUpdate.exe" [2010-02-19 135664] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc] @="" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] @="Driver" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] @="Service" [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Empowering Technology Launcher.lnk] path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Empowering Technology Launcher.lnk backup=c:\windows\pss\Empowering Technology Launcher.lnk.CommonStartup backupExtension=.CommonStartup [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan.lnk] path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan.lnk backup=c:\windows\pss\McAfee Security Scan.lnk.CommonStartup backupExtension=.CommonStartup [HKLM\~\startupfolder\C:^Users^Maximus^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Schermopname en Snel starten.lnk] path=c:\users\Maximus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Schermopname en Snel starten.lnk backup=c:\windows\pss\OneNote 2007 Schermopname en Snel starten.lnk.Startup backupExtension=.Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] 2009-09-04 11:08 935288 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] 2009-10-03 03:08 35696 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Apoint] 2007-07-21 10:18 159744 ----a-w- c:\program files\Apoint2K\Apoint.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BisonInst0402] 2007-05-08 18:48 53248 ----a-w- c:\windows\BR040286.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent DNA] 2009-11-25 13:01 323392 ----a-w- c:\users\Maximus\Program Files\DNA\btdna.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eAudio] 2007-10-10 04:41 1286144 ------w- c:\acer\Empowering Technology\eAudio\eAudio.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eDataSecurity Loader] 2008-03-05 13:15 525360 ----a-w- c:\acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray.exe] 2008-01-21 02:25 125952 ----a-w- c:\windows\ehome\ehtray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAAnotif] 2007-07-12 14:36 178712 ----a-w- c:\program files\Intel\Intel Matrix Storage Manager\IAAnotif.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] 2009-10-28 19:21 141600 ----a-w- c:\program files\iTunes\iTunesHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LManager] 2008-01-04 10:21 768520 ----a-w- c:\progra~1\LAUNCH~1\LManager.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (reboot)] 2010-01-07 15:07 1394000 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbam.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mcagent_exe] 2009-10-29 05:54 1218008 ----a-w- c:\program files\McAfee.com\Agent\mcagent.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\McENUI] 2009-07-07 19:02 1176808 ----a-w- c:\progra~1\McAfee\MHN\McENUI.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] 2009-07-26 14:44 3883856 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon] 2007-11-15 03:03 8534560 ----a-w- c:\windows\System32\nvcpl.dll [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter] 2007-11-15 03:03 81920 ----a-w- c:\windows\System32\nvmctray.dll [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvSvc] 2007-11-15 03:03 86016 ----a-w- c:\windows\System32\nvsvc.dll [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PlayMovie] 2008-01-22 09:14 200704 ------w- c:\program files\Acer Arcade Deluxe\Play Movie\PMVService.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2009-09-05 00:54 417792 ----a-w- c:\program files\QuickTime\QTTask.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl] 2007-09-03 10:39 4702208 ----a-w- c:\windows\RtHDVCpl.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar] 2009-04-11 06:28 1233920 ----a-w- c:\program files\Windows Sidebar\sidebar.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skytel] 2007-08-03 05:22 1826816 ----a-w- c:\windows\SkyTel.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] 2009-10-11 03:17 149280 ----a-w- c:\program files\Java\jre6\bin\jusched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] 2009-02-09 15:37 39408 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WarReg_PopUp] 2008-01-29 07:03 303104 ----a-w- c:\program files\Acer\WR_PopUp\WarReg_PopUp.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender] 2008-01-21 02:23 1008184 ----a-w- c:\program files\Windows Defender\MSASCui.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG] 2008-01-21 02:25 202240 ----a-w- c:\program files\Windows Media Player\wmpnscfg.exe [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc] "VistaSp2"=hex(:d6,67,55,80,89,34,ca,01 R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};{49DE1C67-83F8-4102-99E0-C16DCC7EEC796};c:\program files\Acer Arcade Deluxe\Play Movie\000.fcl [20-6-2008 23:20 41456] R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\McAfee\SiteAdvisor\McSACore.exe [31-10-2008 11:44 203280] R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\System32\drivers\b57nd60x.sys [16-4-2008 14:30 180736] R3 enecir;ENE CIR Receiver;c:\windows\System32\drivers\enecir.sys [16-4-2008 14:31 32256] R3 NETw5v32;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\System32\drivers\NETw5v32.sys [17-11-2008 7:40 3668480] S3 fssfltr;FssFltr;c:\windows\System32\drivers\fssfltr.sys [19-3-2009 21:24 55280] S3 fsssvc;Windows Live Family Safety;c:\program files\Windows Live\Family Safety\fsssvc.exe [5-8-2009 21:48 533360] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . Inhoud van de 'Gedeelde Taken' map 2010-02-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2285587042-1580576303-2642232439-1000Core.job - c:\users\Maximus\AppData\Local\Google\Update\GoogleUpdate.exe [2010-02-19 20:45] 2010-02-21 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2285587042-1580576303-2642232439-1000UA.job - c:\users\Maximus\AppData\Local\Google\Update\GoogleUpdate.exe [2010-02-19 20:45] 2010-01-15 c:\windows\Tasks\McDefragTask.job - c:\progra~1\mcafee\mqc\QcConsol.exe [2009-10-21 10:22] 2010-02-01 c:\windows\Tasks\McQcTask.job - c:\progra~1\mcafee\mqc\QcConsol.exe [2009-10-21 10:22] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.nl/ uDefault_Search_URL = hxxp://www.google.com/ie mStart Page = hxxp://nl.intl.acer.yahoo.com uInternet Settings,ProxyOverride = *.local uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 Trusted Zone: internet Trusted Zone: mcafee.com Trusted Zone: mcafee.com\download . - - - - ORPHANS VERWIJDERD - - - - HKLM-Run-eRecoveryService - (no file) ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2010-02-21 17:28 Windows 6.0.6002 Service Pack 2 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}] "ImagePath"="\??\c:\program files\Acer Arcade Deluxe\Play Movie\000.fcl" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . Voltooingstijd: 2010-02-21 17:34:35 ComboFix-quarantined-files.txt 2010-02-21 16:34 Pre-Run: 49.327.464.448 bytes beschikbaar Post-Run: 49.501.929.472 bytes beschikbaar - - End Of File - - 6A601F56762EA71E0407C156222C7695

ComboFix 10-02-20.04 - Maximus 21-02-2010 17:16:45.1.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.31.1043.18.3069.2100 [GMT 1:00] Gestart vanuit: c:\users\Maximus\Documents\ComboFix.exe SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46} * Aanwezig AV is actief . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\users\Maximus\AppData\Roaming\.# c:\users\Maximus\AppData\Roaming\02000000cf56b8f5648C.manifest c:\users\Maximus\AppData\Roaming\02000000cf56b8f5648O.manifest c:\users\Maximus\AppData\Roaming\02000000cf56b8f5648P.manifest c:\users\Maximus\AppData\Roaming\02000000cf56b8f5648S.manifest c:\windows\system32\ar3GqnwDoZ435IC.vbs c:\windows\system32\SIntf16.dll . (((((((((((((((((((( Bestanden Gemaakt van 2010-01-21 to 2010-02-21 )))))))))))))))))))))))))))))) . 2010-02-21 16:27 . 2010-02-21 16:28 -------- d-----w- c:\users\Maximus\AppData\Local\temp 2010-02-21 16:27 . 2010-02-21 16:27 -------- d-----w- c:\users\Default\AppData\Local\temp 2010-02-18 16:02 . 2010-02-18 16:02 -------- d-----w- c:\program files\K-Lite Codec Pack 2010-02-17 16:39 . 2010-02-17 16:39 388096 ----a-r- c:\users\Maximus\AppData\Roaming\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HiJackThis.exe 2010-02-17 16:39 . 2010-02-20 02:00 -------- d-----w- c:\program files\TrendMicro 2010-02-17 14:56 . 2010-02-17 14:56 -------- d-----w- C:\Medion 2010-02-17 14:30 . 2010-02-20 02:01 -------- d-----w- c:\program files\RS2Bot 2010-02-15 17:33 . 2010-02-15 17:33 -------- d-----w- c:\program files\Ubisoft 2010-02-15 13:32 . 2010-02-15 13:32 -------- d-----w- c:\program files\Free Offers from Freeze.com 2010-02-12 13:59 . 2010-02-12 13:59 -------- d-----w- c:\windows\McAfee.com 2010-02-11 17:08 . 2010-01-07 15:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-02-11 17:08 . 2010-02-20 02:01 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-02-11 17:08 . 2010-01-07 15:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-02-11 15:41 . 2010-02-11 15:41 -------- d-----w- C:\rsit 2010-02-09 21:40 . 2009-12-11 11:43 302080 ----a-w- c:\windows\system32\drivers\srv.sys 2010-02-09 21:40 . 2009-12-11 11:43 98816 ----a-w- c:\windows\system32\drivers\srvnet.sys 2010-02-09 21:40 . 2009-12-08 20:01 3600456 ----a-w- c:\windows\system32\ntkrnlpa.exe 2010-02-09 21:40 . 2009-12-08 20:01 3548216 ----a-w- c:\windows\system32\ntoskrnl.exe 2010-02-09 21:40 . 2009-12-08 20:01 904776 ----a-w- c:\windows\system32\drivers\tcpip.sys 2010-02-09 21:40 . 2009-12-08 17:26 30720 ----a-w- c:\windows\system32\drivers\tcpipreg.sys 2010-02-09 21:39 . 2009-12-04 18:29 1314816 ----a-w- c:\windows\system32\quartz.dll 2010-02-09 21:39 . 2009-12-04 18:30 12288 ----a-w- c:\windows\system32\tsbyuv.dll 2010-02-09 21:39 . 2009-12-04 18:28 22528 ----a-w- c:\windows\system32\msyuv.dll 2010-02-09 21:39 . 2009-12-04 18:28 31744 ----a-w- c:\windows\system32\msvidc32.dll 2010-02-09 21:39 . 2009-12-04 18:28 13312 ----a-w- c:\windows\system32\msrle32.dll 2010-02-09 21:39 . 2009-12-04 18:28 123904 ----a-w- c:\windows\system32\msvfw32.dll 2010-02-09 21:39 . 2009-12-04 18:28 82944 ----a-w- c:\windows\system32\mciavi32.dll 2010-02-09 21:39 . 2009-12-04 18:28 50176 ----a-w- c:\windows\system32\iyuv_32.dll 2010-02-09 21:39 . 2009-12-04 18:27 91136 ----a-w- c:\windows\system32\avifil32.dll 2010-02-09 21:39 . 2009-12-04 15:56 105984 ----a-w- c:\windows\system32\drivers\mrxsmb.sys 2010-02-09 21:39 . 2009-12-04 15:56 212992 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys 2010-02-07 18:29 . 2010-02-07 18:29 -------- d-----w- c:\program files\RealFogs 2010-01-31 14:45 . 2010-01-31 14:45 -------- d-----w- c:\users\Maximus\AppData\Roaming\AVS4YOU 2010-01-31 14:45 . 2010-01-31 14:45 -------- d-----w- c:\programdata\AVS4YOU 2010-01-31 14:44 . 2010-02-02 18:01 -------- d-----w- c:\program files\Common Files\AVSMedia 2010-01-31 14:44 . 2008-08-13 09:22 974848 ----a-w- c:\windows\system32\mfc70.dll 2010-01-31 14:44 . 2008-08-13 09:22 24576 ----a-w- c:\windows\system32\msxml3a.dll . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-02-21 15:38 . 2010-02-21 14:47 -------- d-----w- c:\program files\TribalManager 2010-02-21 01:30 . 2010-02-20 21:51 -------- d-----w- c:\program files\Everest Poker 2010-02-20 21:36 . 2010-02-20 21:36 -------- d-----w- c:\program files\Arthaus Paint & Fotoshop 2010-02-20 21:28 . 2009-12-28 19:56 69 ----a-w- c:\users\Maximus\jagex_runescape_preferences2.dat 2010-02-20 21:27 . 2009-12-28 19:55 41 ----a-w- c:\users\Maximus\jagex_runescape_preferences.dat 2010-02-19 20:59 . 2008-07-08 21:37 -------- d-----w- c:\program files\Sun 2010-02-19 20:57 . 2008-07-01 14:08 -------- d-----w- c:\program files\Java 2010-02-19 17:08 . 2009-11-23 14:54 -------- d-----w- c:\users\Maximus\AppData\Roaming\DNA 2010-02-18 21:17 . 2008-06-22 20:41 56733 ----a-w- c:\users\Maximus\AppData\Roaming\nvModes.dat 2010-02-15 22:12 . 2009-09-21 17:57 -------- d-----w- c:\programdata\McAfee Security Scan 2010-02-15 17:33 . 2008-04-16 05:00 -------- d--h--w- c:\program files\InstallShield Installation Information 2010-02-11 17:26 . 2009-12-13 21:43 -------- d-----w- c:\program files\Trend Micro 2010-02-10 02:29 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail 2010-02-09 16:39 . 2008-08-17 13:36 680 ----a-w- c:\users\Maximus\AppData\Local\d3d9caps.dat 2010-01-26 18:40 . 2008-01-21 06:47 50698 ----a-w- c:\windows\system32\perfh013.dat 2010-01-26 18:40 . 2008-01-21 06:47 11730 ----a-w- c:\windows\system32\perfc013.dat 2010-01-20 11:50 . 2008-08-20 19:46 -------- d-----w- c:\program files\Microsoft Silverlight 2010-01-04 19:47 . 2008-04-16 05:53 -------- d-----w- c:\program files\Common Files\Adobe 2010-01-02 06:38 . 2010-01-21 22:38 916480 ----a-w- c:\windows\system32\wininet.dll 2010-01-02 06:32 . 2010-01-21 22:38 71680 ----a-w- c:\windows\system32\iesetup.dll 2010-01-02 06:32 . 2010-01-21 22:38 109056 ----a-w- c:\windows\system32\iesysprep.dll 2010-01-02 04:57 . 2010-01-21 22:38 133632 ----a-w- c:\windows\system32\ieUnatt.exe 2009-12-13 16:04 . 2009-12-13 16:04 2560 ----a-w- c:\windows\_MSRSTRT.EXE 2009-12-13 00:41 . 2009-12-13 00:41 2855 ----a-w- c:\users\Maximus\AppData\Roaming\Microsoft\Windows\Recent\Comfy Cakes.pif . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{47e161a0-f4ba-41dd-a17b-d2eb26ad6a02}] 2009-07-02 17:46 2094616 ----a-w- c:\program files\LimewirePlus\tbLim1.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{47e161a0-f4ba-41dd-a17b-d2eb26ad6a02}"= "c:\program files\LimewirePlus\tbLim1.dll" [2009-07-02 2094616] [HKEY_CLASSES_ROOT\clsid\{47e161a0-f4ba-41dd-a17b-d2eb26ad6a02}] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{47E161A0-F4BA-41DD-A17B-D2EB26AD6A02}"= "c:\program files\LimewirePlus\tbLim1.dll" [2009-07-02 2094616] [HKEY_CLASSES_ROOT\clsid\{47e161a0-f4ba-41dd-a17b-d2eb26ad6a02}] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP] @="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}" [HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}] 2008-01-03 00:00 39472 ----a-w- c:\acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-02-09 39408] "Google Update"="c:\users\Maximus\AppData\Local\Google\Update\GoogleUpdate.exe" [2010-02-19 135664] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc] @="" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] @="Driver" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] @="Service" [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Empowering Technology Launcher.lnk] path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Empowering Technology Launcher.lnk backup=c:\windows\pss\Empowering Technology Launcher.lnk.CommonStartup backupExtension=.CommonStartup [HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan.lnk] path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan.lnk backup=c:\windows\pss\McAfee Security Scan.lnk.CommonStartup backupExtension=.CommonStartup [HKLM\~\startupfolder\C:^Users^Maximus^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Schermopname en Snel starten.lnk] path=c:\users\Maximus\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Schermopname en Snel starten.lnk backup=c:\windows\pss\OneNote 2007 Schermopname en Snel starten.lnk.Startup backupExtension=.Startup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] 2009-09-04 11:08 935288 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] 2009-10-03 03:08 35696 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Apoint] 2007-07-21 10:18 159744 ----a-w- c:\program files\Apoint2K\Apoint.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BisonInst0402] 2007-05-08 18:48 53248 ----a-w- c:\windows\BR040286.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BitTorrent DNA] 2009-11-25 13:01 323392 ----a-w- c:\users\Maximus\Program Files\DNA\btdna.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eAudio] 2007-10-10 04:41 1286144 ------w- c:\acer\Empowering Technology\eAudio\eAudio.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eDataSecurity Loader] 2008-03-05 13:15 525360 ----a-w- c:\acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray.exe] 2008-01-21 02:25 125952 ----a-w- c:\windows\ehome\ehtray.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAAnotif] 2007-07-12 14:36 178712 ----a-w- c:\program files\Intel\Intel Matrix Storage Manager\IAAnotif.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper] 2009-10-28 19:21 141600 ----a-w- c:\program files\iTunes\iTunesHelper.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LManager] 2008-01-04 10:21 768520 ----a-w- c:\progra~1\LAUNCH~1\LManager.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (reboot)] 2010-01-07 15:07 1394000 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbam.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mcagent_exe] 2009-10-29 05:54 1218008 ----a-w- c:\program files\McAfee.com\Agent\mcagent.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\McENUI] 2009-07-07 19:02 1176808 ----a-w- c:\progra~1\McAfee\MHN\McENUI.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr] 2009-07-26 14:44 3883856 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon] 2007-11-15 03:03 8534560 ----a-w- c:\windows\System32\nvcpl.dll [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter] 2007-11-15 03:03 81920 ----a-w- c:\windows\System32\nvmctray.dll [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvSvc] 2007-11-15 03:03 86016 ----a-w- c:\windows\System32\nvsvc.dll [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PlayMovie] 2008-01-22 09:14 200704 ------w- c:\program files\Acer Arcade Deluxe\Play Movie\PMVService.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task] 2009-09-05 00:54 417792 ----a-w- c:\program files\QuickTime\QTTask.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl] 2007-09-03 10:39 4702208 ----a-w- c:\windows\RtHDVCpl.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar] 2009-04-11 06:28 1233920 ----a-w- c:\program files\Windows Sidebar\sidebar.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skytel] 2007-08-03 05:22 1826816 ----a-w- c:\windows\SkyTel.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] 2009-10-11 03:17 149280 ----a-w- c:\program files\Java\jre6\bin\jusched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg] 2009-02-09 15:37 39408 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WarReg_PopUp] 2008-01-29 07:03 303104 ----a-w- c:\program files\Acer\WR_PopUp\WarReg_PopUp.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender] 2008-01-21 02:23 1008184 ----a-w- c:\program files\Windows Defender\MSASCui.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG] 2008-01-21 02:25 202240 ----a-w- c:\program files\Windows Media Player\wmpnscfg.exe [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiSpyware] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc] "VistaSp2"=hex(:d6,67,55,80,89,34,ca,01 R2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};{49DE1C67-83F8-4102-99E0-C16DCC7EEC796};c:\program files\Acer Arcade Deluxe\Play Movie\000.fcl [20-6-2008 23:20 41456] R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\McAfee\SiteAdvisor\McSACore.exe [31-10-2008 11:44 203280] R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\System32\drivers\b57nd60x.sys [16-4-2008 14:30 180736] R3 enecir;ENE CIR Receiver;c:\windows\System32\drivers\enecir.sys [16-4-2008 14:31 32256] R3 NETw5v32;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\System32\drivers\NETw5v32.sys [17-11-2008 7:40 3668480] S3 fssfltr;FssFltr;c:\windows\System32\drivers\fssfltr.sys [19-3-2009 21:24 55280] S3 fsssvc;Windows Live Family Safety;c:\program files\Windows Live\Family Safety\fsssvc.exe [5-8-2009 21:48 533360] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . Inhoud van de 'Gedeelde Taken' map 2010-02-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2285587042-1580576303-2642232439-1000Core.job - c:\users\Maximus\AppData\Local\Google\Update\GoogleUpdate.exe [2010-02-19 20:45] 2010-02-21 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2285587042-1580576303-2642232439-1000UA.job - c:\users\Maximus\AppData\Local\Google\Update\GoogleUpdate.exe [2010-02-19 20:45] 2010-01-15 c:\windows\Tasks\McDefragTask.job - c:\progra~1\mcafee\mqc\QcConsol.exe [2009-10-21 10:22] 2010-02-01 c:\windows\Tasks\McQcTask.job - c:\progra~1\mcafee\mqc\QcConsol.exe [2009-10-21 10:22] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.nl/ uDefault_Search_URL = hxxp://www.google.com/ie mStart Page = hxxp://nl.intl.acer.yahoo.com uInternet Settings,ProxyOverride = *.local uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 Trusted Zone: internet Trusted Zone: mcafee.com Trusted Zone: mcafee.com\download . - - - - ORPHANS VERWIJDERD - - - - HKLM-Run-eRecoveryService - (no file) ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2010-02-21 17:28 Windows 6.0.6002 Service Pack 2 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** [HKEY_LOCAL_MACHINE\system\ControlSet001\Services\{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}] "ImagePath"="\??\c:\program files\Acer Arcade Deluxe\Play Movie\000.fcl" . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . Voltooingstijd: 2010-02-21 17:34:35 ComboFix-quarantined-files.txt 2010-02-21 16:34 Pre-Run: 49.327.464.448 bytes beschikbaar Post-Run: 49.501.929.472 bytes beschikbaar - - End Of File - - 6A601F56762EA71E0407C156222C7695

ik heb het gedaan en het was in veilige modus inderdaad weg maar toen ik weer normaal mijn computer ging gebruiken en hem liet scannen waren ze weer terug.?

hi, mijn internet is traag waardoor ik lang moet wachten om site's te laden. Iemand een oplossing?

kan het uitgebreiden ik ben een kind van 15 ik heb niet zo veel verstand van computer namen en die dingen. ik kweet alleen hoe ik hem kan gebruiken.

oke zal ik morgen doen

ik heb al een probleem met hijackthis ik krijg de dingen die u heeft gezegd neit weg dit heb ik ook al geprobeerd in veilige modus.

ow wacht ik geef je nog even de hijacklog ik had hem al op me computer staan ---------- Post toegevoegd om 17:06 ---------- Vorige post was om 17:03 ---------- ik had al wel wat problemen met hijackthis als ik iets wilde verwijderen kwam het bij de volgende scan gewoon weer terug maar hier is mijn log. en somige dingen staan wel in het logje maar niet waar ik ze kan verwijderen Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 17:43:13, on 17-2-2010 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.18882) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Windows\RtHDVCpl.exe C:\Acer\Empowering Technology\eDataSecurity\x86\eDSLoader.exe C:\Windows\BR040286.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Acer\Empowering Technology\eAudio\eAudio.exe C:\Windows\System32\rundll32.exe c:\PROGRA~1\mcafee.com\agent\mcagent.exe C:\Program Files\Launch Manager\LManager.exe C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe C:\Program Files\Apoint2K\Apoint.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Windows Sidebar\sidebar.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Windows\ehome\ehmsas.exe C:\Users\Maximus\Program Files\DNA\btdna.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Users\Maximus\AppData\Local\Temp\RtkBtMnt.exe C:\Program Files\McAfee Security Scan\1.0.150\SSScheduler.exe C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE C:\Acer\Empowering Technology\ENET\ENMTRAY.EXE C:\Program Files\Apoint2K\ApMsgFwd.exe C:\Acer\Empowering Technology\EPOWER\EPOWER_DMC.EXE C:\Acer\Empowering Technology\eRecovery\ERAGENT.EXE C:\Program Files\Apoint2K\Apntex.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Windows Live\Toolbar\wltuser.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\SearchProtocolHost.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe C:\Windows\system32\SearchFilterHost.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Yahoo! UK & Ireland R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Yahoo! UK & Ireland R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local O1 - Hosts: ::1 localhost O2 - BHO: (no name) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - (no file) O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: McAfee Phishing Filter - {27B4851A-3207-45A2-B947-BE8AFE6163AB} - c:\PROGRA~1\mcafee\msk\mskapbho.dll O2 - BHO: LimewirePlus Toolbar - {47e161a0-f4ba-41dd-a17b-d2eb26ad6a02} - C:\Program Files\LimewirePlus\tbLim1.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: scriptproxy - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan\scriptsn.dll O2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\Acer\Empowering Technology\eDataSecurity\x86\ActiveToolBand.dll O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: LimewirePlus Toolbar - {47e161a0-f4ba-41dd-a17b-d2eb26ad6a02} - C:\Program Files\LimewirePlus\tbLim1.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [eDataSecurity Loader] C:\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe O4 - HKLM\..\Run: [NvSvc] RUNDLL32.EXE C:\Windows\system32\nvsvc.dll,nvsvcStart O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [bisonInst0402] C:\Windows\BR040286.exe O4 - HKLM\..\Run: [iAAnotif] "C:\Program Files\Intel\Intel Matrix Storage Manager\Iaanotif.exe" O4 - HKLM\..\Run: [eAudio] "C:\Acer\Empowering Technology\eAudio\eAudio.exe" O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\LManager.exe O4 - HKLM\..\Run: [PlayMovie] "C:\Program Files\Acer Arcade Deluxe\Play Movie\PMVService.exe" O4 - HKLM\..\Run: [WarReg_PopUp] C:\Program Files\Acer\WR_PopUp\WarReg_PopUp.exe O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe O4 - HKLM\..\Run: [mcagent_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey O4 - HKLM\..\Run: [McENUI] C:\PROGRA~1\McAfee\MHN\McENUI.exe /hide O4 - HKLM\..\Run: [skytel] Skytel.exe O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [MsnMsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background O4 - HKCU\..\Run: [bitTorrent DNA] "C:\Users\Maximus\Program Files\DNA\btdna.exe" O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O4 - Global Startup: Empowering Technology Launcher.lnk = ? O4 - Global Startup: McAfee Security Scan.lnk = ? O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O13 - Gopher Prefix: O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} (McFreeScan Class) - http://download.mcafee.com/molbin/iss-loc/mcfscan/2,2,0,5889/mcfscan.cab O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~1\mcafee\SITEAD~1\mcieplg.dll O20 - AppInit_DLLs: C:\Windows\System32\cdd32.dll O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe O23 - Service: eLock Service (eLockService) - Acer Inc. - C:\Acer\Empowering Technology\eLock\Service\eLockServ.exe O23 - Service: eNet Service - Acer Inc. - C:\Acer\Empowering Technology\eNet\eNet Service.exe O23 - Service: eRecovery Service (eRecoveryService) - Acer Inc. - C:\Acer\Empowering Technology\eRecovery\eRecoveryService.exe O23 - Service: eSettings Service (eSettingsService) - Unknown owner - C:\Acer\Empowering Technology\eSettings\Service\capuserv.exe O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel® Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: McAfee SiteAdvisor Service - Unknown owner - C:\Program Files\McAfee\SiteAdvisor\McSACore.exe O23 - Service: McAfee Services (mcmscsvc) - McAfee, Inc. - C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe O23 - Service: McAfee Network Agent (McNASvc) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcods.exe O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe O23 - Service: McAfee Real-time Scanner (McShield) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe O23 - Service: McAfee SystemGuards (McSysmon) - McAfee, Inc. - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe O23 - Service: MobilityService - Unknown owner - C:\Acer\Mobility Center\MobilityService.exe O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee, Inc. - C:\Program Files\McAfee\MPF\MPFSrv.exe O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\McAfee\MSK\MskSrver.exe O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel® Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe O23 - Service: ePower Service (WMIService) - acer - C:\Acer\Empowering Technology\ePower\ePowerSvc.exe O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe -- End of file - 12843 bytes

dit heb ik gedaan kan ik nog meer doen?>

oke daar zal ik mee beginnen.

ik ga met me computer toch maar even naar de winkel volgens mij ligt het aan me ventilator. Als ik internet gebruik valt hij niet uit als ik een spel speel met wat andere programma's open dan moet de computer harden werken en valt hij uit.

dit heeft niks geholpen. Mijn muziek kraakt nog steeds ik kan zelfs niet eens meer itunes gebruiken met internet open. Als ik bijvoorbeeld een spel wil doen met muziek dat gaat natuurlijk niet. Misshien is mijn computer te traag geworden want als mijn muziek gaat kraken wordt heel mijn computer sloom de muis begint ook te haperen.

hi, ik heb met mijn acer laptop aspire 7720 veel dingen gedownload. Ik heb niet zoveel verstand van computers en er zullen vast wel documenten op zitten die er niet op horen of die niet nodig zijn. Ik wil mijn computer namelijk opschonen omdat hij redelijk traag is. Kunt u dit doen of moet ik hier speciaal voor naar een winkel?