chico2

hoi, nu had ik politie crime unit op mijn pc. is eraf met malwarebyte te laten scannen. Is nu wel alles inorde? kan je het effen checken i het logje? Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 19:18:25, on 23-9-2012 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16448) Boot mode: Normal Running processes: C:\Windows\system32\taskhost.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe C:\Program Files\AVG\AVG2012\avgtray.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Windows\system32\Macromed\Flash\FlashUtil32_11_3_300_271_ActiveX.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\SearchProtocolHost.exe C:\Users\kevin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\KLR76JVW\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: AVG Do Not Track - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files\AVG\AVG2012\avgdtiex.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG2012\avgssie.dll O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll O4 - HKLM\..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O9 - Extra button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files\AVG\AVG2012\avgdtiex.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} (Shockwave ActiveX Control) - http://fpdownload2.macromedia.com/get/shockwave/cabs/director/sw.cab O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game.zylom.com/activex/zylomgamesplayer.cab O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\AVGIDSAgent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG2012\avgwdsvc.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: VUAgent - Sony Corporation - C:\Program Files\Sony\VAIO Update Common\VUAgent.exe -- End of file - 4645 bytes

ComboFix 11-12-09.03 - ellen 10/12/2011 1:08.2.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.32.1043.18.1919.1124 [GMT 1:00] Gestart vanuit: c:\users\ellen\Desktop\ComboFix.exe AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160} SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((( Bestanden Gemaakt van 2011-11-10 to 2011-12-10 )))))))))))))))))))))))))))))) . . 2011-12-10 00:33 . 2011-12-10 00:33 -------- d-----w- c:\users\ellen\AppData\Local\temp 2011-12-10 00:33 . 2011-12-10 00:33 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-12-09 14:27 . 2011-11-21 10:47 6823496 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C59B7BFC-FD56-46EE-A50D-0AE86D20381F}\mpengine.dll 2011-12-08 21:38 . 2011-12-08 21:38 388096 ----a-r- c:\users\ellen\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2011-12-08 21:38 . 2011-12-08 21:38 -------- d-----w- c:\program files\Trend Micro 2011-11-30 12:51 . 2011-11-30 12:51 -------- d-----w- c:\program files\ESET 2011-11-29 16:25 . 2011-11-21 10:47 6823496 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll 2011-11-29 16:16 . 2011-12-03 14:57 -------- d-----w- c:\users\ellen\AppData\Local\Albelli.be Fotoboeken 2011-11-28 15:59 . 2011-10-04 16:22 703824 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{2DED55F1-9A7B-4353-8365-226A263A33E8}\gapaengine.dll 2011-11-28 15:51 . 2011-11-28 15:53 -------- d-----w- c:\program files\Microsoft Security Client 2011-11-28 15:51 . 2010-04-05 20:00 221568 ----a-w- c:\windows\system32\drivers\netio.sys 2011-11-25 13:22 . 2011-10-18 00:28 6668624 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{DF771A1F-C2B9-407F-9625-C3325108A3FE}\mpengine.dll . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-12-09 23:02 . 2007-10-11 13:32 45056 ----a-w- c:\windows\system32\acovcnt.exe 2011-09-30 23:06 . 2011-10-12 20:59 916480 ----a-w- c:\windows\system32\wininet.dll 2011-09-30 23:02 . 2011-10-12 20:59 43520 ----a-w- c:\windows\system32\licmgr10.dll 2011-09-30 23:01 . 2011-10-12 20:59 1469440 ----a-w- c:\windows\system32\inetcpl.cpl 2011-09-30 23:01 . 2011-10-12 20:59 71680 ----a-w- c:\windows\system32\iesetup.dll 2011-09-30 23:01 . 2011-10-12 20:59 109056 ----a-w- c:\windows\system32\iesysprep.dll 2011-09-30 22:07 . 2011-10-12 20:59 385024 ----a-w- c:\windows\system32\html.iec 2011-09-30 21:29 . 2011-10-12 20:59 133632 ----a-w- c:\windows\system32\ieUnatt.exe 2011-09-30 21:28 . 2011-10-12 20:59 1638912 ----a-w- c:\windows\system32\mshtml.tlb 2011-09-20 21:02 . 2011-11-09 13:29 913280 ----a-w- c:\windows\system32\drivers\tcpip.sys 2011-09-20 13:44 . 2011-11-09 13:29 31232 ----a-w- c:\windows\system32\drivers\tcpipreg.sys . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2006-11-10 90112] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2011-08-16 39408] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="RtHDVCpl.exe" [2007-02-15 4390912] "SMSERIAL"="c:\program files\Motorola\SMSERIAL\sm56hlpr.exe" [2007-09-03 630784] "ATKMEDIA"="c:\program files\ASUS\ATK Media\DMEDIA.EXE" [2006-11-02 61440] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2006-11-23 815104] "ASUSTPE"="c:\windows\system32\ASUSTPE.exe" [2006-12-12 106496] "ASUS Camera ScreenSaver"="c:\windows\ASScrProlog.exe" [2007-10-11 37232] "ASUS Screen Saver Protector"="c:\windows\ASScrPro.exe" [2007-10-11 33136] "PowerForPhone"="c:\program files\PowerForPhone\PowerForPhone.exe" [2007-06-26 778240] "BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520] "PMBVolumeWatcher"="c:\program files\Sony\PMB\PMBVolumeWatcher.exe" [2010-11-26 648032] "MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 997920] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe [2006-10-23 40048] Adobe Reader Synchronizer.lnk - c:\program files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2006-10-23 734872] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc] @="Service" . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD] 2007-03-26 18:42 1057328 ----a-w- c:\program files\Nero\Nero 7\InCD\InCD.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr] 2010-04-16 20:12 3872080 ----a-w- c:\program files\Windows Live\Messenger\msnmsgr.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck] 2007-03-26 19:12 161328 ----a-w- c:\program files\Common Files\Ahead\Lib\NeroCheck.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched] 2011-04-08 10:59 254696 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 . [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc\S-1-5-21-395040867-3756178888-943524222-1000] "EnableNotificationsRef"=dword:00000002 . R1 MpKsl1c9a1a17;MpKsl1c9a1a17;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{4DEA1E39-EB1C-440A-A131-2AEF4AFC2D31}\MpKsl1c9a1a17.sys [x] R1 MpKsl3b209ef0;MpKsl3b209ef0;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{62960B6D-5247-49E8-95F7-3A90B1501FD7}\MpKsl3b209ef0.sys [x] R1 MpKsl5b4f6f5c;MpKsl5b4f6f5c;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{8FBA2B97-29EA-43F6-A202-71476FEA621A}\MpKsl5b4f6f5c.sys [x] R1 MpKsl7db2c9d8;MpKsl7db2c9d8;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{24923F84-A874-4B5F-93BE-8D063CF9E6D4}\MpKsl7db2c9d8.sys [x] R1 MpKslc6c47c1e;MpKslc6c47c1e;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{24923F84-A874-4B5F-93BE-8D063CF9E6D4}\MpKslc6c47c1e.sys [x] R1 MpKsle879fcd4;MpKsle879fcd4;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{4DEA1E39-EB1C-440A-A131-2AEF4AFC2D31}\MpKsle879fcd4.sys [x] R1 MpKsle91ae6cf;MpKsle91ae6cf;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{FAAFAD9D-7BFD-4017-A1EA-C1745F604E7E}\MpKsle91ae6cf.sys [x] R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 gupdate;Google Update-service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2011-08-06 136176] R3 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2011-08-06 136176] R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 31125880] R3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [2011-04-18 43392] R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2011-04-27 65024] R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-04-27 208944] R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000] R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504] S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys [2011-02-23 16184] S2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files\Sony\PMB\PMBDeviceInfoProvider.exe [2010-11-26 398176] S3 Atc002;NDIS Miniport Driver for Atheros L2 Fast Ethernet Controller;c:\windows\system32\DRIVERS\l260x86.sys [2007-08-17 28672] . . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] bthsvcs REG_MULTI_SZ BthServ LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . Inhoud van de 'Gedeelde Taken' map . 2011-12-09 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-08-16 13:12] . 2011-12-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2011-08-16 13:12] . 2011-12-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-395040867-3756178888-943524222-1000Core.job - c:\users\ellen\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-13 21:07] . 2011-12-09 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-395040867-3756178888-943524222-1000UA.job - c:\users\ellen\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-13 21:07] . 2011-12-09 c:\windows\Tasks\User_Feed_Synchronization-{5713ABDE-3BC2-4F50-A48D-640F30A5CE22}.job - c:\windows\system32\msfeedssync.exe [2011-10-12 21:29] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/ IE: &Verzenden naar OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105 IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html TCP: DhcpNameServer = 192.168.38.1 . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2011-12-10 01:33 Windows 6.0.6002 Service Pack 2 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . Scan succesvol afgerond verborgen bestanden: 0 . ************************************************************************** . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 "MSCurrentCountry"=dword:000000b5 . Voltooingstijd: 2011-12-10 01:37:53 ComboFix-quarantined-files.txt 2011-12-10 00:37 ComboFix2.txt 2011-12-09 23:35 . Pre-Run: 20.070.207.488 bytes beschikbaar Post-Run: 20.046.782.464 bytes beschikbaar . - - End Of File - - 29FE8507D54AA37F0A74500192EEAEDF dit is de juiste tekst van het probleem,

Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 22:48:38, on 8/12/2011 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.19154) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe C:\Program Files\ASUS\ATK Media\DMedia.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Windows\System32\ASUSTPE.exe C:\Windows\ASScrPro.exe C:\Program Files\PowerForPhone\PowerForPhone.exe C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Windows\system32\rundll32.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE C:\Users\ellen\AppData\Local\Google\Update\1.3.21.79\GoogleCrashHandler.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Windows\system32\Macromed\Flash\FlashUtil10u_ActiveX.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = ASUSTeK Computer Inc. R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, nieuws en entertainment vind je op MSN.nl R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7018.1622\swg.dll O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [sMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [ASUSTPE] C:\Windows\system32\ASUSTPE.exe O4 - HKLM\..\Run: [ASUS Camera ScreenSaver] C:\Windows\ASScrProlog.exe O4 - HKLM\..\Run: [ASUS Screen Saver Protector] C:\Windows\ASScrPro.exe O4 - HKLM\..\Run: [PowerForPhone] C:\Program Files\PowerForPhone\PowerForPhone.exe O4 - HKLM\..\Run: [bCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices O4 - HKLM\..\Run: [PMBVolumeWatcher] C:\Program Files\Sony\PMB\PMBVolumeWatcher.exe O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey O4 - HKCU\..\Run: [startCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe O4 - HKCU\..\Run: [Google Update] "C:\Users\ellen\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE') O4 - Startup: OpenOffice.org 3.3 .lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe O4 - Startup: scandisk.lnk = ? O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105 O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} (OnlineScanner Control) - http://download.eset.com/special/eos/OnlineScanner.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InCD Helper (InCDsrv) - Nero AG - C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: PMBDeviceInfoProvider - Sony Corporation - C:\Program Files\Sony\PMB\PMBDeviceInfoProvider.exe O23 - Service: spmgr - Unknown owner - C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe -- End of file - 9133 bytes

elke keer als ik mijn laptop opstart komt er een venster te voorschijn dat een fout is opgetreden rundlll. kan deze niet verwijderen, graag oplossing Run DLL Er is een fout opgetreden tijden het laden van: C:\ User\ellen\appdata\Roaming\MICROS~1 \Windows\STARTM~1\Programs\startup\SCANXD~1.DLL Kan opgegeven module niet vinden

Heb nieuwe harddisk gestoken . probleem opgelost. dank je voor de hulp. mag een slotje op.

ESETSmartInstaller@High as downloader log: all ok # version=7 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6425 # api_version=3.0.2 # EOSSerial=635b7a5c55f3b9458fb41d03fa97c400 # end=finished # remove_checked=true # archives_checked=true # unwanted_checked=true # unsafe_checked=true # antistealth_checked=true # utc_time=2011-03-12 02:44:35 # local_time=2011-03-12 03:44:35 (+0100, Romance (standaardtijd)) # country="Netherlands" # lang=1033 # osver=6.0.6002 NT Service Pack 2 # compatibility_mode=512 16777215 100 0 231631 231631 0 0 # compatibility_mode=1032 16777213 100 95 11635 43227985 0 0 # compatibility_mode=5892 16776574 100 95 160921 137466721 0 0 # compatibility_mode=8192 67108863 100 0 3736 3736 0 0 # scanned=120241 # found=1 # cleaned=1 # scan_time=7081 C:\Windows\System32\AscConTest.dll Win32/Adware.Ascentive application (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

heeft geen beter resultaat gegeven. duurt nog altijd lang dat pc opstart

ComboFix 11-03-09.05 - paul 10-03-2011 18:00:11.3.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.31.1043.18.2045.1109 [GMT 1:00] Gestart vanuit: c:\users\paul\Documents\Downloads\ComboFix.exe AV: AVG Anti-Virus Free Edition 2011 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0} SP: AVG Anti-Virus Free Edition 2011 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D} SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\windows\system32\oem18.inf . . (((((((((((((((((((( Bestanden Gemaakt van 2011-02-10 to 2011-03-10 )))))))))))))))))))))))))))))) . . 2011-03-10 17:07 . 2011-03-10 17:07 -------- d-----w- c:\users\Public\AppData\Local\temp 2011-03-10 17:07 . 2011-03-10 17:07 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-03-10 16:59 . 2011-01-13 09:41 5890896 ----a-w- c:\progra~2\Microsoft\Windows Defender\Definition Updates\{792ED03E-BA02-4383-BA90-F3B7BDFA9F41}\mpengine.dll 2011-03-10 06:15 . 2009-05-07 10:03 307200 ----a-w- c:\windows\system32\AscSQLite.dll 2011-03-10 06:15 . 2009-04-15 17:50 217088 ----a-w- c:\windows\system32\AscConTest.dll 2011-03-10 06:15 . 2008-11-06 15:04 20480 ----a-w- c:\windows\system32\SysRestore.dll 2011-03-10 06:15 . 2008-11-06 15:04 36864 ----a-w- c:\windows\system32\ascbalon.dll 2011-03-10 06:15 . 2011-03-10 06:27 -------- d-----w- c:\program files\Ascentive 2011-03-09 21:26 . 2011-03-09 21:26 388096 ----a-r- c:\users\paul\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2011-03-09 21:26 . 2011-03-09 21:26 -------- d-----w- c:\program files\Trend Micro 2011-03-07 21:06 . 2011-03-07 21:37 -------- d-----w- c:\progra~2\clp 2011-03-07 21:05 . 2011-03-07 21:05 -------- d-----w- c:\program files\Fighters 2011-03-07 21:05 . 2011-03-07 21:05 -------- d-----w- c:\progra~2\Common Toolkit Suite 2011-03-07 21:04 . 2011-03-07 21:05 -------- d-----w- c:\progra~2\Fighters 2011-03-07 21:03 . 2011-03-07 21:05 -------- dc-h--w- c:\progra~2\{D81057B4-29EC-41EB-A123-4E4E49873404} 2011-03-07 20:53 . 2011-03-07 20:54 -------- d-----w- c:\users\paul\AppData\Roaming\Fighters 2011-03-07 19:03 . 2011-03-07 19:25 -------- d-----w- c:\progra~2\PCPitstop 2011-03-05 20:37 . 2011-03-05 20:37 -------- d-----w- c:\users\paul\AppData\Roaming\f-secure 2011-02-26 23:29 . 2011-02-26 23:29 -------- d-----w- c:\users\paul\AppData\Local\Windows Live Writer 2011-02-26 23:29 . 2011-02-26 23:29 -------- d-----w- c:\users\paul\AppData\Roaming\Windows Live Writer 2011-02-26 00:19 . 2011-02-26 00:19 -------- d-----w- c:\program files\Windows Portable Devices 2011-02-26 00:12 . 2011-02-26 00:12 6260088 ------w- c:\program files\Common Files\Windows Live\.cache\d5d019611cbd5490e\Silverlight.4.0.exe 2011-02-26 00:10 . 2011-02-26 23:28 -------- d-----w- c:\users\paul\AppData\Local\Windows Live 2011-02-26 00:09 . 2009-08-04 08:02 754688 ------w- c:\windows\system32\webservices.dll 2011-02-26 00:08 . 2009-09-10 02:00 92672 ------w- c:\windows\system32\UIAnimation.dll 2011-02-26 00:08 . 2009-09-10 02:01 3023360 ------w- c:\windows\system32\UIRibbon.dll 2011-02-26 00:08 . 2009-09-10 02:00 1164800 ------w- c:\windows\system32\UIRibbonRes.dll 2011-02-26 00:08 . 2009-09-25 01:33 369664 ------w- c:\windows\system32\WMPhoto.dll 2011-02-26 00:08 . 2009-09-25 02:10 974848 ----a-w- c:\windows\system32\WindowsCodecs.dll 2011-02-26 00:08 . 2009-09-25 02:07 189440 ------w- c:\windows\system32\WindowsCodecsExt.dll 2011-02-26 00:08 . 2009-09-25 02:04 321024 ------w- c:\windows\system32\PhotoMetadataHandler.dll 2011-02-26 00:08 . 2009-09-25 01:33 195584 ------w- c:\windows\system32\dxdiagn.dll 2011-02-26 00:08 . 2009-09-25 01:32 252928 ------w- c:\windows\system32\dxdiag.exe 2011-02-26 00:08 . 2009-09-25 01:31 519680 ------w- c:\windows\system32\d3d11.dll 2011-02-26 00:05 . 2009-10-08 21:08 555520 ------w- c:\windows\system32\UIAutomationCore.dll 2011-02-26 00:05 . 2009-10-08 21:08 234496 ----a-w- c:\windows\system32\oleacc.dll 2011-02-26 00:05 . 2009-10-08 21:07 4096 ------w- c:\windows\system32\oleaccrc.dll 2011-02-25 23:57 . 2010-05-04 19:13 231424 ----a-w- c:\windows\system32\msshsq.dll 2011-02-25 22:48 . 2011-02-25 22:50 -------- d-----w- c:\windows\system32\ca-ES 2011-02-25 22:48 . 2011-02-25 22:49 -------- d-----w- c:\windows\system32\eu-ES 2011-02-25 22:48 . 2011-02-25 22:49 -------- d-----w- c:\windows\system32\vi-VN 2011-02-25 22:42 . 2011-02-25 22:42 -------- d-----w- c:\windows\system32\SPReview 2011-02-25 22:19 . 2009-04-10 22:28 928768 ------w- c:\windows\system32\scavenge.dll 2011-02-25 22:19 . 2009-04-10 22:27 57856 ------w- c:\windows\system32\compcln.exe 2011-02-25 22:10 . 2009-04-10 22:28 1078784 ------w- c:\windows\system32\diagperf.dll 2011-02-25 22:09 . 2009-04-10 22:32 438744 ------w- c:\windows\system32\mcupdate_GenuineIntel.dll 2011-02-25 22:08 . 2009-04-10 22:28 33280 ----a-w- c:\windows\system32\wscapi.dll 2011-02-25 14:46 . 2011-02-25 14:46 -------- d-----w- c:\windows\CheckSur 2011-02-22 13:58 . 2006-12-19 11:19 262144 ------w- c:\windows\system32\bcmwlu00.exe 2011-02-22 13:57 . 2007-08-07 14:49 65536 ------w- c:\windows\system32\bcmwlrmt.dll 2011-02-22 13:57 . 2007-08-07 14:49 3821568 ------w- c:\windows\system32\BCMWLCPL.CPL 2011-02-22 13:57 . 2007-03-15 17:41 65536 ------w- c:\windows\system32\wltrynt.dll 2011-02-22 13:57 . 2007-08-07 14:49 1548288 ------w- c:\windows\system32\WLTRAY.EXE 2011-02-22 13:57 . 2007-08-07 14:49 1724416 ------w- c:\windows\system32\BCMWLTRY.EXE 2011-02-22 13:57 . 2007-03-15 17:41 24064 ------w- c:\windows\system32\WLTRYSVC.EXE 2011-02-22 13:57 . 2001-09-05 02:18 77824 ------w- c:\program files\Common Files\InstallShield\Engine\6\Intel 32\ctor.dll 2011-02-22 13:57 . 2001-09-05 02:18 225280 ------w- c:\program files\Common Files\InstallShield\IScript\iscript.dll 2011-02-22 13:57 . 2001-09-05 02:14 176128 ------w- c:\program files\Common Files\InstallShield\Engine\6\Intel 32\iuser.dll 2011-02-22 13:57 . 2001-09-05 02:13 32768 ------w- c:\program files\Common Files\InstallShield\Engine\6\Intel 32\objectps.dll 2011-02-22 13:57 . 2006-12-19 11:19 610436 ------w- c:\program files\Common Files\InstallShield\Engine\6\Intel 32\IKernel.exe 2011-02-22 13:56 . 2011-02-22 13:56 0 ------w- c:\windows\system32\bcmA1EA.tmp 2011-02-22 13:56 . 2011-02-22 13:56 0 ------w- c:\windows\system32\bcm6D5A.tmp 2011-02-22 11:58 . 2011-02-22 11:58 -------- d-----w- c:\users\paul\AppData\Roaming\RadarSync 2011-02-15 15:56 . 2011-02-15 15:56 -------- d-----w- c:\program files\Common Files\Java 2011-02-15 15:56 . 2010-11-12 17:53 472808 ------w- c:\windows\system32\deployJava1.dll 2011-02-14 12:46 . 2010-12-31 13:57 2039808 ------w- c:\windows\system32\win32k.sys 2011-02-14 12:46 . 2011-01-06 10:51 2409784 ------w- c:\program files\Windows Mail\OESpamFilter.dat 2011-02-14 12:45 . 2011-01-08 06:28 292352 ------w- c:\windows\system32\atmfd.dll 2011-02-14 12:45 . 2011-01-08 08:47 34304 ------w- c:\windows\system32\atmlib.dll . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-03-08 19:32 . 2010-06-24 10:33 18328 ----a-w- c:\progra~2\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2011-02-14 11:04 . 2006-11-02 08:11 40960 ------w- c:\windows\system32\cliconfg.rll 2011-02-14 11:01 . 2006-11-02 06:37 20480 ------w- c:\windows\system32\drivers\secdrv.sys 2011-02-14 11:00 . 1999-01-05 22:30 225280 ------w- c:\windows\system32\VSFLEX3.OCX 2011-02-14 11:00 . 2006-07-25 00:00 77824 ------w- c:\windows\system32\UMLoader.dll 2011-02-14 11:00 . 1998-12-24 17:23 40960 ------w- c:\windows\system32\VBAME.DLL 2011-02-14 11:00 . 2004-09-03 11:00 90112 ------w- c:\windows\system32\snymsico.dll 2011-02-14 11:00 . 2010-11-02 13:17 172032 ------w- c:\windows\system32\rixdicon.dll 2011-02-14 11:00 . 2008-11-02 12:50 53248 ------w- c:\windows\system32\pscND113.exe 2011-02-14 11:00 . 2008-11-02 12:50 356352 ------w- c:\windows\system32\pscUD113.dll 2011-02-14 11:00 . 2008-11-02 12:50 32768 ------w- c:\windows\system32\pscVSSTI.dll 2011-02-14 11:00 . 2008-11-02 12:50 98304 ------w- c:\windows\system32\PSCLU113.dll 2011-02-14 11:00 . 2006-08-24 11:49 176128 ------w- c:\windows\system32\rcdscan.dll 2011-02-14 11:00 . 1998-09-17 04:20 151552 ------w- c:\windows\system32\RDOCURS.DLL 2011-02-14 10:59 . 2007-10-10 16:04 393216 ------w- c:\windows\system32\OEM02Cvw.dll 2011-02-14 10:59 . 2007-10-10 16:03 335872 ------w- c:\windows\system32\OEM02Cvw.crl 2011-02-14 10:59 . 2007-07-17 16:02 40960 ------w- c:\windows\system32\OEM02Pin.dll 2011-02-14 10:59 . 2007-05-09 16:01 20480 ------w- c:\windows\system32\OEM02Pin.crl 2011-02-14 10:59 . 2007-03-01 16:00 24576 ------w- c:\windows\system32\OEM02Srv.exe 2011-02-14 10:59 . 2007-02-01 16:00 32768 ------w- c:\windows\system32\OEM02Hwx.dll 2011-02-14 10:59 . 2009-06-16 09:27 143360 ------w- c:\windows\system32\nvshext.dll 2011-02-14 10:59 . 2008-10-14 20:09 307200 ------w- c:\windows\system32\nvexpbar.dll 2011-02-14 10:59 . 2007-10-04 20:24 45056 ------w- c:\windows\system32\nvmccsrs.dll 2011-02-14 10:59 . 2007-10-04 20:24 229376 ------w- c:\windows\system32\nvmccs.dll 2011-02-14 10:59 . 2009-06-16 13:59 151552 ------w- c:\windows\system32\nvcod155.dll 2011-02-14 10:59 . 2009-06-16 13:59 151552 ------w- c:\windows\system32\nvcod.dll 2011-02-14 10:59 . 2007-10-04 20:24 36864 ------w- c:\windows\system32\nvcod100.dll 2011-02-14 10:59 . 2007-10-04 20:24 147456 ------w- c:\windows\system32\nvcolor.exe 2011-02-14 10:59 . 2008-10-21 22:30 487424 ------w- c:\windows\system32\msvcp70.dll 2011-02-14 10:59 . 2008-10-21 22:30 344064 ------w- c:\windows\system32\msvcr70.dll 2011-02-14 10:59 . 2008-10-21 22:30 24576 ------w- c:\windows\system32\msxml3a.dll 2011-02-14 10:59 . 1999-03-25 19:30 8192 ------w- c:\windows\system32\MSPRPNL.DLL 2011-02-14 10:59 . 1999-01-22 17:46 65536 ------w- c:\windows\system32\MSRTEDIT.DLL 2011-02-14 10:59 . 1998-09-17 04:20 393216 ------w- c:\windows\system32\MSRDO20.DLL 2011-02-14 10:59 . 1998-08-09 16:07 94208 ------w- c:\windows\system32\MSSTKPRP.DLL 2011-02-14 10:59 . 2003-03-18 19:44 49152 ------w- c:\windows\system32\MFC71KOR.DLL 2011-02-14 10:59 . 2003-03-18 19:44 49152 ------w- c:\windows\system32\MFC71JPN.DLL 2011-02-14 10:59 . 2008-10-21 22:30 974848 ------w- c:\windows\system32\mfc70.dll 2011-02-14 10:59 . 2003-03-18 19:44 57344 ------w- c:\windows\system32\MFC71ENU.DLL 2011-02-14 10:59 . 2003-03-18 19:44 61440 ------w- c:\windows\system32\MFC71ITA.DLL 2011-02-14 10:59 . 2003-03-18 19:44 61440 ------w- c:\windows\system32\MFC71ESP.DLL 2011-02-14 10:59 . 2003-03-18 19:44 45056 ------w- c:\windows\system32\MFC71CHT.DLL 2011-02-14 10:59 . 2003-03-18 19:44 40960 ------w- c:\windows\system32\MFC71CHS.DLL 2011-02-14 10:59 . 2003-03-18 19:44 65536 ------w- c:\windows\system32\MFC71DEU.DLL 2011-02-14 10:59 . 2003-03-18 19:44 61440 ------w- c:\windows\system32\MFC71FRA.DLL 2011-02-14 10:59 . 1999-03-03 17:05 81920 ------w- c:\windows\system32\MDT2FW95.DLL 2011-02-14 10:59 . 1998-12-14 17:33 57344 ------w- c:\windows\system32\MFC42LOC.DLL 2011-02-14 10:59 . 2008-10-14 15:33 5627904 ------w- c:\windows\system32\LiveCamVirtual.ocx 2011-02-14 10:59 . 2004-08-09 05:04 73728 ------w- c:\windows\system32\ISUSPM.cpl 2011-02-14 10:59 . 1998-09-22 15:26 32768 ------w- c:\windows\system32\IMESHARE.DLL 2011-02-14 10:58 . 2006-11-02 10:25 200704 ------w- c:\windows\system32\drivers\VSTAZL3.SYS 2011-02-14 10:58 . 2006-11-02 08:51 20480 ------w- c:\windows\system32\drivers\flpydisk.sys 2011-02-14 10:58 . 2006-11-02 08:42 65536 ------w- c:\windows\system32\drivers\IPMIDrv.sys 2011-02-14 10:58 . 2006-11-02 10:25 45056 ------w- c:\windows\system32\drivers\bcm4sbxp.sys 2011-02-14 10:58 . 2006-11-02 08:30 40960 ------w- c:\windows\system32\drivers\amdk8.sys 2011-02-14 10:58 . 2006-11-24 09:33 811008 ------w- c:\windows\system32\cximage.dll 2011-02-14 10:58 . 2005-07-06 16:07 36864 ------w- c:\windows\system32\CtCamMgr.dll 2011-02-14 10:58 . 2006-09-20 18:02 106496 ------w- c:\windows\system32\cdrtc.dll 2011-02-14 10:58 . 2006-09-20 18:02 81920 ------w- c:\windows\system32\cdral.dll 2011-02-14 10:58 . 2006-09-16 22:36 90112 ------w- c:\windows\system32\CddbWOManagerRoxio.dll 2011-02-14 10:58 . 2006-09-16 22:36 770048 ------w- c:\windows\system32\CDDBUIRoxio.dll 2011-02-14 10:58 . 2006-09-16 22:36 520192 ------w- c:\windows\system32\CddbPlaylist2Roxio.dll 2011-02-14 10:58 . 2006-09-16 22:36 643072 ------w- c:\windows\system32\CDDBControlRoxio.dll 2011-02-14 10:58 . 2006-09-16 22:36 585728 ------w- c:\windows\system32\CddbMusicIDRoxio.dll 2011-02-14 10:58 . 2006-09-16 22:36 204800 ------w- c:\windows\system32\CddbFileTaggerRoxio.dll 2011-02-14 10:58 . 2006-09-16 22:36 147456 ------w- c:\windows\system32\CddbCleanRoxio.dll 2011-02-14 10:56 . 2011-01-20 21:59 3244032 ------w- c:\windows\system32\bcmihvui.dll 2011-02-14 10:55 . 2007-10-10 16:02 28672 ------w- c:\windows\OEM02Cfg.exe 2011-02-14 10:52 . 2007-07-18 10:51 90112 ------w- c:\windows\CtDrvIns.exe 2011-02-14 10:48 . 2008-10-14 15:36 45056 ----a-r- c:\users\paul\AppData\Roaming\Microsoft\Installer\{42929F0F-CE14-47AF-9FC7-FF297A603021}\NewShortcut1_42929F0FCE1447AF9FC7FF297A603021_1.exe 2011-02-02 16:11 . 2009-10-04 14:13 222080 ------w- c:\windows\system32\MpSigStub.exe 2011-01-19 18:40 . 2011-01-19 18:40 3192 ------w- c:\windows\bcm98D5.tmp 2011-01-15 08:50 . 2011-01-15 08:50 970504 ------w- c:\progra~2\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll 2011-01-08 03:27 . 2011-01-19 17:46 5653096 ------w- c:\windows\system32\nvwgf2um.dll 2011-01-08 03:27 . 2011-01-19 17:46 15047272 ------w- c:\windows\system32\nvoglv32.dll 2011-01-08 03:27 . 2011-01-19 17:46 837736 ------w- c:\windows\system32\nvgenco322040.dll 2011-01-08 03:27 . 2011-01-19 17:46 10467656 ------w- c:\windows\system32\drivers\nvlddmkm.sys 2011-01-08 03:27 . 2011-01-19 17:46 941160 ------w- c:\windows\system32\nvdispco322090.dll 2011-01-08 03:27 . 2011-01-19 17:46 2251368 ------w- c:\windows\system32\nvcuvenc.dll 2011-01-08 03:27 . 2011-01-19 17:46 57960 ------w- c:\windows\system32\OpenCL.dll 2011-01-08 03:27 . 2011-01-19 17:46 4941928 ------w- c:\windows\system32\nvcuda.dll 2011-01-08 03:27 . 2011-01-19 17:46 2895976 ------w- c:\windows\system32\nvcuvid.dll 2011-01-08 03:27 . 2011-01-19 17:46 13011560 ------w- c:\windows\system32\nvcompiler.dll 2011-01-08 03:27 . 2011-01-19 17:46 10920 ------w- c:\windows\system32\drivers\nvBridge.kmd 2011-01-08 03:27 . 2007-10-04 20:24 1965672 ------w- c:\windows\system32\nvapi.dll 2011-01-08 03:27 . 2007-10-04 20:24 10078312 ------w- c:\windows\system32\nvd3dum.dll 2011-01-07 20:06 . 2011-01-07 20:06 580200 ------w- c:\windows\system32\easyUpdatusAPIU.dll 2011-01-07 20:06 . 2011-01-07 20:06 3597416 ------w- c:\windows\system32\nvcpl.dll 2011-01-07 20:06 . 2011-01-07 20:06 2620520 ------w- c:\windows\system32\nvsvc.dll 2011-01-07 20:06 . 2011-01-07 20:06 608872 ------w- c:\windows\system32\nvvsvc.exe 2011-01-07 20:06 . 2011-01-07 20:06 288872 ------w- c:\windows\system32\nvhotkey.dll 2011-01-07 20:06 . 2011-01-07 20:06 2558568 ------w- c:\windows\system32\nvsvcr.dll 2011-01-07 20:06 . 2011-01-07 20:06 111208 ------w- c:\windows\system32\nvmctray.dll 2010-12-28 15:55 . 2011-01-12 12:59 413696 ------w- c:\windows\system32\odbc32.dll 2010-12-20 17:09 . 2011-01-21 00:15 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-12-20 17:08 . 2011-01-21 00:15 20952 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-12-14 14:49 . 2011-01-12 12:59 1169408 ------w- c:\windows\system32\sdclt.exe . . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-10-15 39408] "SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552] "SigmatelSysTrayApp"="%ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe" [bU] "RoxWatchTray"="c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe" [2006-11-05 221184] "OEM02Mon.exe"="c:\windows\OEM02Mon.exe" [2007-05-09 36864] "NVHotkey"="c:\windows\system32\nvHotkey.dll" [2011-01-07 288872] "ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2006-10-03 81920] "ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2006-10-03 221184] "Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2007-08-07 1548288] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-01-31 35760] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [1999-2-17 65588] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) . R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 gupdate1ca8f2696da3af0;Google Updateservice (gupdate1ca8f2696da3af0);c:\program files\Google\Update\GoogleUpdate.exe [2010-01-06 133104] R3 DellBIOS;DellBIOS;c:\windows\DellBIOS.Sys [2010-06-22 7168] R3 evserial7;Virtual Serial Ports Driver 7 (Eltima Softwate);c:\windows\system32\DRIVERS\evserial7.sys [2010-07-15 57928] R3 Ph3xIB32;Philips 713x Inbox PCI TV Card;c:\windows\system32\DRIVERS\Ph3xIB32.sys [2007-04-03 1131136] R3 VSBC7;Virtual Serial Bus Enumerator 7 (Eltima Software);c:\windows\system32\DRIVERS\evsbc7.sys [2010-07-15 31816] R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504] S2 AESTFilters;Andrea ST Filters Service;c:\windows\system32\aestsrv.exe [2007-09-20 73728] S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-01-07 378984] S4 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\AVGIDSDriver.Sys [x] S4 AVGIDSEH;AVGIDSEH;c:\windows\system32\DRIVERS\AVGIDSEH.Sys [x] S4 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\AVGIDSFilter.Sys [x] S4 AVGIDSShim;AVGIDSShim;c:\windows\system32\DRIVERS\AVGIDSShim.Sys [x] S4 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx86.sys [x] S4 Avgtdix;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdix.sys [x] . . --- Andere Services/Drivers In Geheugen --- . *Deregistered* - Avgldx86 . [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . Inhoud van de 'Gedeelde Taken' map . 2011-03-10 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-01-06 23:18] . 2011-03-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-01-06 23:18] . 2011-02-28 c:\windows\Tasks\SmartDefrag.job - c:\program files\IObit\IObit SmartDefrag\IObit SmartDefrag.exe [2011-02-26 17:08] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.hln.be/ IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html DPF: {2C546582-48CE-4890-9C88-B2665B125E15} - hxxp://www.registrywinner.com/RWOnline.cab . - - - - ORPHANS VERWIJDERD - - - - . HKLM-Run-Performance Center - c:\program files\Ascentive\Performance Center\APCMain.exe . . . ************************************************************************** . catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2011-03-10 18:07 Windows 6.0.6002 Service Pack 2 NTFS . scannen van verborgen processen ... . scannen van verborgen autostart items ... . scannen van verborgen bestanden ... . . c:\windows\TEMP\TMP00000026F4670FDC9F602C56 524288 bytes . Scan succesvol afgerond verborgen bestanden: 1 . ************************************************************************** . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . Voltooingstijd: 2011-03-10 18:09:32 ComboFix-quarantined-files.txt 2011-03-10 17:09 . Pre-Run: 92.718.022.656 bytes beschikbaar Post-Run: 92.399.628.288 bytes beschikbaar . - - End Of File - - F8F8D4ECF11483EF4AD8C818BA10AF30

Is er iets mis in dit logje: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 22:44:37, on 9-3-2011 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.19019) Boot mode: Normal Running processes: C:\Windows\system32\taskeng.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe C:\Windows\OEM02Mon.exe C:\Windows\System32\WLTRAY.EXE C:\Program Files\AVG\AVG10\avgtray.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\CPSHelpRunner.exe C:\Program Files\AVG\AVG10\Identity Protection\agent\bin\avgidsmonitor.exe C:\Windows\system32\wuauclt.exe C:\Windows\notepad.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = HLN home R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.6209.1142\swg.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [sigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe O4 - HKLM\..\Run: [RoxWatchTray] "C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe" O4 - HKLM\..\Run: [OEM02Mon.exe] C:\Windows\OEM02Mon.exe O4 - HKLM\..\Run: [NVHotkey] rundll32.exe C:\Windows\system32\nvHotkey.dll,Start O4 - HKLM\..\Run: [iSUSScheduler] "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start O4 - HKLM\..\Run: [iSUSPM Startup] C:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe -startup O4 - HKLM\..\Run: [broadcom Wireless Manager UI] C:\Windows\system32\WLTRAY.exe O4 - HKLM\..\Run: [AVG_TRAY] C:\Program Files\AVG\AVG10\avgtray.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_D183CA64F05FDD98.dll/cmsidewiki.html O16 - DPF: {2C546582-48CE-4890-9C88-B2665B125E15} - http://www.registrywinner.com/RWOnline.cab O16 - DPF: {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} (WMI Class) - http://support.euro.dell.com/systemprofiler/SysProExe.CAB O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Windows\system32\aestsrv.exe O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG10\avgwdsvc.exe O23 - Service: Google Updateservice (gupdate1ca8f2696da3af0) (gupdate1ca8f2696da3af0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Roxio\Roxio MyDVD DE\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe O23 - Service: SigmaTel Audio Service (STacSV) - IDT, Inc. - C:\Windows\system32\STacSV.exe O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\Windows\System32\WLTRYSVC.EXE -- End of file - 6575 bytes

Heb geen problemen meer. jij hebt het goed kunnen oplossen. Ik dank je hiervoor. groeten

heb browser google crome geinstalleerd; is veel sneller nu. heb internet explorer 8 erop gezet, internet surfen gaat wel snel nu.

ja,dit was alles.

ESETSmartInstaller@High as CAB hook log: OnlineScanner.ocx - registred OK

ComboFix 11-01-16.03 - paul 17-01-2011 11:48:04.2.2 - x86 Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.31.1043.18.2045.1190 [GMT 1:00] Gestart vanuit: c:\users\paul\Documents\Downloads\ComboFix.exe SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46} . (((((((((((((((((((( Bestanden Gemaakt van 2010-12-17 to 2011-01-17 )))))))))))))))))))))))))))))) . 2011-01-17 10:53 . 2011-01-17 10:53 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-01-16 22:30 . 2011-01-16 22:30 -------- d-----w- c:\users\paul\AppData\Local\Microsoft Corporation 2011-01-16 22:29 . 2011-01-16 22:34 -------- d-----w- c:\program files\Microsoft Windows 7 Upgrade Advisor 2011-01-16 15:09 . 2011-01-16 15:09 388096 ----a-r- c:\users\paul\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2011-01-16 08:36 . 2011-01-16 08:36 -------- d-----w- c:\users\paul\AppData\Roaming\GlarySoft 2011-01-15 08:50 . 2011-01-15 08:50 970504 ----a-w- c:\progra~2\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll 2011-01-14 13:16 . 2011-01-14 13:17 -------- d-----w- c:\users\paul\AppData\Roaming\Registry Mechanic 2011-01-14 12:40 . 2011-01-14 12:40 -------- d-----w- c:\users\paul\AppData\Roaming\Uniblue 2011-01-14 11:28 . 2011-01-14 11:28 -------- d-----w- c:\users\paul\AppData\Roaming\AVG10 2011-01-14 11:27 . 2011-01-14 11:27 -------- d--h--w- c:\progra~2\Common Files 2011-01-14 11:25 . 2011-01-17 10:40 -------- d-----w- c:\progra~2\AVG10 2011-01-14 11:17 . 2011-01-14 11:24 -------- d-----w- c:\progra~2\MFAData 2011-01-14 11:16 . 2010-11-16 11:01 6273872 ----a-w- c:\progra~2\Microsoft\Windows Defender\Definition Updates\{2FEB0BB7-B5E4-4CC1-BE2F-CA6381BAB0F5}\mpengine.dll 2011-01-13 11:47 . 2011-01-16 15:09 -------- d-----w- c:\program files\Trend Micro 2011-01-12 13:04 . 2011-01-12 13:04 -------- d-----w- c:\users\paul\AppData\Roaming\Genie-Soft 2011-01-12 13:04 . 2011-01-12 13:04 -------- d-----w- c:\program files\LaCie 2011-01-12 12:59 . 2010-12-28 14:57 409600 ----a-w- c:\windows\system32\odbc32.dll 2011-01-12 12:59 . 2010-12-28 14:56 708608 ----a-w- c:\program files\Common Files\System\ado\msado15.dll 2011-01-12 12:59 . 2010-12-28 14:56 253952 ----a-w- c:\program files\Common Files\System\ado\msadox.dll 2011-01-12 12:59 . 2010-12-28 14:56 241664 ----a-w- c:\program files\Common Files\System\ado\msadomd.dll 2011-01-12 12:59 . 2010-12-28 14:56 57344 ----a-w- c:\program files\Common Files\System\msadc\msadcs.dll 2011-01-12 12:59 . 2010-12-28 14:56 180224 ----a-w- c:\program files\Common Files\System\msadc\msadco.dll 2011-01-12 12:59 . 2010-12-14 15:49 1169408 ----a-w- c:\windows\system32\sdclt.exe 2011-01-11 09:08 . 2011-01-11 09:08 -------- d-----w- c:\users\paul\AppData\Roaming\IObit 2011-01-11 09:08 . 2011-01-11 09:08 -------- d-----w- c:\program files\IObit 2011-01-11 08:56 . 2011-01-11 08:56 -------- d-----w- c:\program files\Microsoft.NET 2010-12-26 11:41 . 2010-12-26 11:46 -------- d-----w- c:\users\paul\AppData\Local\Adobe 2010-12-25 12:42 . 2010-12-25 12:42 -------- d-----w- c:\users\paul\AppData\Local\PackageAware . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-12-20 17:09 . 2010-10-01 16:05 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-12-20 17:08 . 2010-10-01 16:05 20952 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-11-06 11:10 . 2010-12-15 10:09 345088 ----a-w- c:\windows\system32\wmicmiplugin.dll 2010-11-06 11:10 . 2010-12-15 10:09 357376 ----a-w- c:\windows\system32\taskschd.dll 2010-11-06 11:10 . 2010-12-15 10:09 270336 ----a-w- c:\windows\system32\taskcomp.dll 2010-11-06 11:09 . 2010-12-15 10:09 603648 ----a-w- c:\windows\system32\schedsvc.dll 2010-11-05 00:53 . 2010-12-15 10:09 171520 ----a-w- c:\windows\system32\taskeng.exe 2010-10-28 15:02 . 2010-12-15 10:09 34304 ----a-w- c:\windows\system32\atmlib.dll 2010-10-28 13:03 . 2010-12-15 10:09 292352 ----a-w- c:\windows\system32\atmfd.dll 2010-10-28 12:56 . 2010-12-15 10:09 2048 ----a-w- c:\windows\system32\tzres.dll 2010-10-20 17:45 . 2010-12-15 10:09 833024 ----a-w- c:\windows\system32\wininet.dll 2010-10-20 17:41 . 2010-12-15 10:09 78336 ----a-w- c:\windows\system32\ieencode.dll 2010-10-20 16:16 . 2010-12-15 10:09 389632 ----a-w- c:\windows\system32\html.iec 2010-10-20 15:51 . 2010-12-15 10:09 1383424 ----a-w- c:\windows\system32\mshtml.tlb . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-10-15 39408] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952] "SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480] "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2006-10-03 221184] "ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2006-10-03 81920] "RoxWatchTray"="c:\program files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatchTray9.exe" [2006-11-05 221184] "OEM02Mon.exe"="c:\windows\OEM02Mon.exe" [2007-05-09 36864] "NvSvc"="c:\windows\system32\nvsvc.dll" [2007-10-04 86016] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-10-04 8497696] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-10-04 81920] "NVHotkey"="c:\windows\system32\nvHotkey.dll" [2007-10-04 86016] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2008-11-10 136600] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-09-23 35760] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288] c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [1999-2-17 65588] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 gupdate1ca8f2696da3af0;Google Updateservice (gupdate1ca8f2696da3af0);c:\program files\Google\Update\GoogleUpdate.exe [2010-01-06 133104] R3 DellBIOS;DellBIOS;c:\windows\DellBIOS.Sys [2010-06-22 7168] R3 Ph3xIB32;Philips 713x Inbox PCI TV Card;c:\windows\system32\DRIVERS\Ph3xIB32.sys [2007-04-03 1131136] R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504] S2 AESTFilters;Andrea ST Filters Service;c:\windows\system32\aestsrv.exe [2007-09-20 73728] . Inhoud van de 'Gedeelde Taken' map 2011-01-17 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-01-06 23:18] 2011-01-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-01-06 23:18] 2010-07-01 c:\windows\Tasks\SLOW-PCfighter-paul-Scheduled.job - c:\program files\Fighters\SLOW-PCfighter\SLOW-PCfighter.exe [2010-03-18 16:41] 2011-01-14 c:\windows\Tasks\SmartDefrag.job - c:\program files\IObit\IObit SmartDefrag\IObit SmartDefrag.exe [2011-01-11 17:08] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.hln.be/ IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html DPF: {2C546582-48CE-4890-9C88-B2665B125E15} - hxxp://www.registrywinner.com/RWOnline.cab . - - - - ORPHANS VERWIJDERD - - - - WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file) ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2011-01-17 11:53 Windows 6.0.6001 Service Pack 1 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . Voltooingstijd: 2011-01-17 11:55:19 ComboFix-quarantined-files.txt 2011-01-17 10:55 Pre-Run: 94.618.435.584 bytes beschikbaar Post-Run: 94.587.445.248 bytes beschikbaar - - End Of File - - 4758BB312FB33F55B316991EC7071604

snelheids iets beter, maar toch nog niet zo als het moet