Ga naar inhoud

delta-homes.com startpagina

geiteke
 Delen

Aanbevolen berichten

geiteke Enthousiasteling

geiteke

Geplaatst:
  • Auteur
Geplaatst:

Dit lijkt me een serieuze hap...

ComboFix 13-08-22.01 - Mike 24/08/2013 20:59:32.1.4 - x64

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.3955.2341 [GMT 2:00]

Gestart vanuit: c:\users\Mike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6HF3F77S\ComboFix.exe

AV: avast! Internet Security *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

FW: avast! Internet Security *Disabled* {131692B0-0864-D491-4E21-3A3A1D8BBB47}

SP: avast! Internet Security *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

* Nieuw herstelpunt werd aangemaakt

.

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

C:\prefs.js

.

.

(((((((((((((((((((( Bestanden Gemaakt van 2013-07-24 to 2013-08-24 ))))))))))))))))))))))))))))))

.

.

2013-08-24 19:05 . 2013-08-24 19:05 -------- d-----w- c:\users\Default\AppData\Local\temp

2013-08-23 19:07 . 2013-08-23 19:07 76232 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{04C7EB9F-4A2A-4BC0-A631-3012BBAFE6D3}\offreg.dll

2013-08-23 18:37 . 2013-08-23 18:37 -------- d-----w- c:\program files (x86)\Microsoft Silverlight

2013-08-23 08:05 . 2013-08-23 20:35 -------- d-----w- C:\AdwCleaner

2013-08-23 07:50 . 2013-08-06 08:58 9515512 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{04C7EB9F-4A2A-4BC0-A631-3012BBAFE6D3}\mpengine.dll

2013-08-22 18:25 . 2013-08-22 18:25 388096 ----a-r- c:\users\Mike\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

2013-08-22 18:25 . 2013-08-22 18:25 -------- d-----w- c:\program files (x86)\Trend Micro

2013-08-22 16:50 . 2013-08-22 16:50 -------- d-----w- C:\User Data

2013-08-22 16:50 . 2013-08-22 17:26 -------- d-----w- c:\program files (x86)\WinZipper

2013-08-22 16:50 . 2013-08-22 16:50 -------- d-----w- c:\users\Mike\AppData\Roaming\WinZipper

2013-08-14 21:13 . 2013-08-14 21:15 -------- d-----w- c:\windows\system32\MRT

2013-07-27 12:46 . 2013-07-27 12:46 88 ----a-w- c:\windows\DeleteOnReboot.bat

2013-07-27 10:48 . 2013-07-27 10:52 -------- d-----w- c:\program files (x86)\SpeedFan

.

.

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2013-08-22 16:50 . 2011-02-19 21:03 421032 ----a-w- c:\windows\SysWow64\msvcp100.dll

2013-08-22 16:50 . 2011-02-18 22:40 773800 ----a-w- c:\windows\SysWow64\msvcr100.dll

2013-08-14 21:13 . 2012-12-11 18:28 78161360 ----a-w- c:\windows\system32\MRT.exe

2013-07-21 10:46 . 2013-07-21 10:46 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl

2013-07-21 10:46 . 2013-07-21 10:46 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe

2013-07-09 04:45 . 2013-08-14 17:35 44032 ----a-w- c:\windows\apppatch\acwow64.dll

2013-06-27 08:39 . 2013-07-09 11:11 189936 ----a-w- c:\windows\system32\drivers\aswVmm.sys

2013-06-27 08:39 . 2013-07-09 11:11 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys

2013-06-27 08:39 . 2013-01-06 13:59 377920 ----a-w- c:\windows\system32\drivers\aswSP.sys

2013-06-27 08:39 . 2013-01-06 13:59 68920 ----a-w- c:\windows\system32\drivers\aswTdi.sys

2013-06-27 08:39 . 2013-01-06 13:59 1025808 ----a-w- c:\windows\system32\drivers\aswSnx.sys

2013-06-27 08:39 . 2013-01-06 13:59 70992 ----a-w- c:\windows\system32\drivers\aswRdr2.sys

2013-06-27 08:39 . 2013-01-06 13:59 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys

2013-06-27 08:39 . 2013-01-06 13:59 127648 ----a-w- c:\windows\system32\drivers\aswFW.sys

2013-06-27 08:39 . 2013-01-06 13:59 263096 ----a-w- c:\windows\system32\drivers\aswNdis2.sys

2013-06-27 08:39 . 2013-01-06 13:59 22600 ----a-w- c:\windows\system32\drivers\aswKbd.sys

2013-06-27 08:39 . 2013-01-06 13:59 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys

2013-06-27 08:37 . 2013-01-06 13:59 41664 ----a-w- c:\windows\avastSS.scr

2013-06-27 08:36 . 2012-12-10 11:09 287840 ----a-w- c:\windows\system32\aswBoot.exe

2013-06-05 03:34 . 2013-07-10 19:16 3153920 ----a-w- c:\windows\system32\win32k.sys

2013-06-04 06:00 . 2013-07-10 19:16 624128 ----a-w- c:\windows\system32\qedit.dll

2013-06-04 04:53 . 2013-07-10 19:16 509440 ----a-w- c:\windows\SysWow64\qedit.dll

2011-08-05 11:56 . 2011-08-05 11:56 645856 ----a-w- c:\program files\UIX.renderapi.dll

2011-08-05 11:56 . 2011-08-05 11:56 1530592 ----a-w- c:\program files\UIX.dll

2011-08-05 11:56 . 2011-08-05 11:56 1288928 ----a-w- c:\program files\UIXcontrols.dll

2011-08-05 11:56 . 2011-08-05 11:56 1272544 ----a-w- c:\program files\ZuneShell.dll

2011-08-05 11:56 . 2011-08-05 11:56 1175264 ----a-w- c:\program files\ZuneDBApi.dll

2011-08-05 11:53 . 2011-08-05 11:53 9440 ----a-w- c:\program files\ZuneWmduResources.dll

2011-08-05 11:53 . 2011-08-05 11:53 863968 ----a-w- c:\program files\ZuneWmdu.dll

2011-08-05 11:53 . 2011-08-05 11:53 74464 ----a-w- c:\program files\ZuneShellExt.dll

2011-08-05 11:53 . 2011-08-05 11:53 507104 ----a-w- c:\program files\ZuneSP.dll

2011-08-05 11:53 . 2011-08-05 11:53 467680 ----a-w- c:\program files\ZuneWlanCfgSvc.exe

2011-08-05 11:53 . 2011-08-05 11:53 4020448 ----a-w- c:\program files\ZuneSetup.exe

2011-08-05 11:53 . 2011-08-05 11:53 366816 ----a-w- c:\program files\ZuneSrcWrp.dll

2011-08-05 11:53 . 2011-08-05 11:53 306400 ----a-w- c:\program files\WMZuneComm.exe

2011-08-05 11:53 . 2011-08-05 11:53 27872 ----a-w- c:\program files\WMZuneTCP2UDP.dll

2011-08-05 11:53 . 2011-08-05 11:53 21216 ----a-w- c:\program files\WMZuneDTPTDNS.dll

2011-08-05 11:53 . 2011-08-05 11:53 196832 ----a-w- c:\program files\ZuneZMDB.Mobile.dll

2011-08-05 11:53 . 2011-08-05 11:53 18656 ----a-w- c:\program files\WMZuneCommProxyStub.dll

2011-08-05 11:53 . 2011-08-05 11:53 17632 ----a-w- c:\program files\ZuneShare.exe

2011-08-05 11:53 . 2011-08-05 11:53 16921312 ----a-w- c:\program files\ZuneShellResources.dll

2011-08-05 11:53 . 2011-08-05 11:53 157920 ----a-w- c:\program files\ZuneZMDB.Library.dll

2011-08-05 11:53 . 2011-08-05 11:53 157408 ----a-w- c:\program files\ZuneZMDB.ZuneHD.dll

2011-08-05 11:53 . 2011-08-05 11:53 152288 ----a-w- c:\program files\ZuneZMDB.Classic.dll

2011-08-05 11:53 . 2011-08-05 11:53 100064 ----a-w- c:\program files\ZuneTaskbar.dll

2011-08-05 11:53 . 2011-08-05 11:53 916704 ----a-w- c:\program files\ZuneQP.dll

2011-08-05 11:53 . 2011-08-05 11:53 683744 ----a-w- c:\program files\ZuneSH.dll

2011-08-05 11:53 . 2011-08-05 11:53 514272 ----a-w- c:\program files\ZuneSE.dll

2011-08-05 11:53 . 2011-08-05 11:53 3889376 ----a-w- c:\program files\ZuneResources.dll

2011-08-05 11:53 . 2011-08-05 11:53 155872 ----a-w- c:\program files\ZuneSA.dll

2011-08-05 11:53 . 2011-08-05 11:53 1257184 ----a-w- c:\program files\ZuneService.dll

2011-08-05 11:53 . 2011-08-05 11:53 879328 ----a-w- c:\program files\ZuneMBR.dll

2011-08-05 11:53 . 2011-08-05 11:53 8277728 ----a-w- c:\program files\ZuneNss.exe

2011-08-05 11:53 . 2011-08-05 11:53 72928 ----a-w- c:\program files\ZuneDXVA2.dll

2011-08-05 11:53 . 2011-08-05 11:53 707808 ----a-w- c:\program files\ZUNEMP4SDECD.dll

2011-08-05 11:53 . 2011-08-05 11:53 61664 ----a-w- c:\program files\ZuneCfg.dll

2011-08-05 11:53 . 2011-08-05 11:53 56544 ----a-w- c:\program files\ZuneConfig.exe

2011-08-05 11:53 . 2011-08-05 11:53 38624 ----a-w- c:\program files\ZuneEnc.exe

2011-08-05 11:53 . 2011-08-05 11:53 376544 ----a-w- c:\program files\ZuneEvr.dll

2011-08-05 11:53 . 2011-08-05 11:53 35552 ----a-w- c:\program files\UIXsup.dll

2011-08-05 11:53 . 2011-08-05 11:53 347872 ----a-w- c:\program files\ZuneNssci.dll

2011-08-05 11:53 . 2011-08-05 11:53 223968 ----a-w- c:\program files\Zune.exe

2011-08-05 11:53 . 2011-08-05 11:53 218848 ----a-w- c:\program files\ZuneHost.exe

2011-08-05 11:53 . 2011-08-05 11:53 212192 ----a-w- c:\program files\ZuneDB.dll

2011-08-05 11:53 . 2011-08-05 11:53 2110176 ----a-w- c:\program files\ZuneEncEng.dll

2011-08-05 11:53 . 2011-08-05 11:53 20704 ----a-w- c:\program files\ZunePS.dll

2011-08-05 11:53 . 2011-08-05 11:53 1752288 ----a-w- c:\program files\UIXrender.dll

2011-08-05 11:53 . 2011-08-05 11:53 163552 ----a-w- c:\program files\ZuneLauncher.exe

2011-08-05 11:53 . 2011-08-05 11:53 1481440 ----a-w- c:\program files\ZuneCore.dll

2011-08-05 11:53 . 2011-08-05 11:53 131296 ----a-w- c:\program files\ZunePresenter.dll

2011-08-05 11:53 . 2011-08-05 11:53 129248 ----a-w- c:\program files\ZuneEffects.dll

2011-08-05 11:53 . 2011-08-05 11:53 121056 ----a-w- c:\program files\ZuneAACDec.dll

2011-08-05 11:53 . 2011-08-05 11:53 1184480 ----a-w- c:\program files\ZuneH264Dec.dll

2011-08-05 11:53 . 2011-08-05 11:53 1161440 ----a-w- c:\program files\ZuneMde.dll

2011-08-05 11:53 . 2011-08-05 11:53 1096928 ----a-w- c:\program files\ZuneMarketplaceResources.dll

2011-08-05 11:53 . 2011-08-05 11:53 10061536 ----a-w- c:\program files\ZuneNativeLib.dll

2011-08-05 11:31 . 2011-08-05 11:31 182784 ----a-w- c:\program files\l3codecp.acm

2011-06-06 12:48 . 2011-06-06 12:48 856576 ----a-w- c:\program files\msvcp90.dll

2011-06-06 12:48 . 2011-06-06 12:48 626688 ----a-w- c:\program files\msvcr90.dll

2011-06-06 12:48 . 2011-06-06 12:48 245760 ----a-w- c:\program files\msvcm90.dll

2007-10-02 13:12 . 2007-10-02 13:12 1642568 ----a-w- c:\program files\msidcrl40.dll

.

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"KiesPreload"="c:\program files (x86)\Samsung\Kies\Kies.exe" [2013-04-23 1561968]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-03-15 98304]

"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-06-27 4769352]

"CanonSolutionMenuEx"="c:\program files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" [2010-04-02 1185112]

"IJNetworkScanUtility"="c:\program files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe" [2010-03-02 140640]

"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-11-28 59280]

"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-12-12 152544]

"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]

"KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2013-04-23 311152]

.

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"TOSHIBA Online Product Information"="c:\program files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe" [2010-03-03 4581280]

.

c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

TRDCReminder.lnk - c:\program files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe [2009-9-1 481184]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]

"LoadAppInit_DLLs"=1 (0x1)

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

@=""

.

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]

R3 aswVmm;aswVmm; [x]

R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]

R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des;c:\windows\SYSNATIVE\GameMon.des [x]

R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]

R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]

R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]

R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]

R3 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO);c:\program files (x86)\Toshiba TEMPRO\TemproSvc.exe;c:\program files (x86)\Toshiba TEMPRO\TemproSvc.exe [x]

R3 TMachInfo;TMachInfo;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [x]

R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [x]

R3 TPCHSrv;TPCH Service;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe [x]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]

R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]

R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]

R3 WSDScan;Ondersteuning voor WSD-scan via UMB;c:\windows\system32\DRIVERS\WSDScan.sys;c:\windows\SYSNATIVE\DRIVERS\WSDScan.sys [x]

S0 aswKbd;aswKbd; [x]

S0 aswNdis;avast! Firewall NDIS Filter Service;c:\windows\system32\DRIVERS\aswNdis.sys;c:\windows\SYSNATIVE\DRIVERS\aswNdis.sys [x]

S0 aswNdis2;avast! Firewall Core Firewall Service; [x]

S0 aswRvrt;aswRvrt; [x]

S1 aswFW;avast! TDI Firewall driver; [x]

S1 aswSnx;aswSnx; [x]

S1 aswSP;aswSP; [x]

S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]

S2 aswFsBlk;aswFsBlk; [x]

S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]

S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe;c:\program files\AVAST Software\Avast\afwServ.exe [x]

S2 cfWiMAXService;ConfigFree WiMAX Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe;c:\program files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [x]

S2 ConfigFree Service;ConfigFree Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe;c:\program files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [x]

S2 regi;regi;c:\windows\system32\drivers\regi.sys;c:\windows\SYSNATIVE\drivers\regi.sys [x]

S2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;c:\program files\TOSHIBA\TECO\TecoService.exe;c:\program files\TOSHIBA\TECO\TecoService.exe [x]

S2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;c:\windows\system32\DRIVERS\TVALZFL.sys;c:\windows\SYSNATIVE\DRIVERS\TVALZFL.sys [x]

S2 UNS;Intel® Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]

S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]

S3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]

S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys;c:\windows\SYSNATIVE\DRIVERS\Impcd.sys [x]

S3 PGEffect;Pangu effect driver;c:\windows\system32\DRIVERS\pgeffect.sys;c:\windows\SYSNATIVE\DRIVERS\pgeffect.sys [x]

S3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;c:\windows\system32\DRIVERS\rtl8192se.sys;c:\windows\SYSNATIVE\DRIVERS\rtl8192se.sys [x]

.

.

Inhoud van de 'Gedeelde Taken' map

.

2013-08-24 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-21 10:46]

.

.

--------- X64 Entries -----------

.

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]

@="{472083B0-C522-11CF-8763-00608CC02F24}"

[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]

2013-06-27 08:36 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-10-17 13307496]

"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-10-14 2278504]

"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]

"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2010-03-24 2726728]

.

------- Bijkomende Scan -------

.

uLocal Page = c:\windows\system32\blank.htm

uStart Page = hxxp://www.google.be/

mLocal Page = c:\windows\SysWOW64\blank.htm

uInternet Settings,ProxyOverride = *.local

uSearchAssistant = hxxp://www.google.com

TCP: DhcpNameServer = 195.130.131.132 195.130.130.4

DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/4.0.4.0/GarminAxControl_32.CAB

.

- - - - ORPHANS VERWIJDERD - - - -

.

Toolbar-Locked - (no file)

Wow6432Node-HKCU-Run-KiesAirMessage - c:\program files (x86)\Samsung\Kies\KiesAirMessage.exe

HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start

Toolbar-Locked - (no file)

HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe

AddRemove-Adobe Flash Player ActiveX - c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_8_800_94_ActiveX.exe

AddRemove-{53820F89-063F-10D7-7457-06C201F4CBF0} - c:\programdata\Zoomex\uninstall.exe

.

.

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc]

"ImagePath"="c:\windows\system32\GameMon.des -service"

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.11"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]

"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,

00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Voltooingstijd: 2013-08-24 21:07:47

ComboFix-quarantined-files.txt 2013-08-24 19:07

.

Pre-Run: 162.610.540.544 bytes beschikbaar

Post-Run: 162.466.746.368 bytes beschikbaar

.

- - End Of File - - 1D849C245949685088A9866B06A5BD9C

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

OK, weer wat verwijderd ... maar dan hebben we al het mogelijk eruitgehaald om de snelheid nog iets te verbeteren.

Download 51a5ce45263de-delfix.pngDelfix by Xplode naar het bureaublad.

Dubbelklik op Delfix.exe om de tool te starten.

Zet nu vinkjes voor de volgende items:

  • Remove disinfection tools
  • Purge System Restore
  • Reset system settings

Klik nu op "Run" en wacht geduldig tot de tool gereed is.

Wanneer de tool gereed is wordt er een logbestand aangemaakt. Dit hoeft u echter niet te plaatsen.

Download CCleaner. (Als je het nog niet hebt)

Installeer het (als je niet wilt dat Google Chrome op je PC als standaard-webbrowser wordt geïnstalleerd, moet je de 2 vinkjes wegdoen !!!) en start CCleaner op.

Klik in de linkse kolom op “Cleaner”. Klik achtereenvolgens op ‘Analyseren’ en na de analyse op 'Schoonmaken'. Klik vervolgens in de linkse kolom op “Register” en klik op ‘Scan naar problemen”. Als er fouten gevonden worden klik je op ”Herstel geselecteerde problemen” en ”OK”. Dan krijg je de vraag om een back-up te maken. Klik op “JA”. Kies dan “Herstel alle geselecteerde fouten”.

Soms is 1 analyse niet voldoende. Deze procedure mag je herhalen tot de analyse geen fouten meer aangeeft.

Sluit hierna CCleaner terug af.

Wil je dit uitgebreid in beeld bekijken, klik dan hier voor de handleiding.

Indien dit allemaal probleemloos verlopen is en je binnen dit topic verder geen vragen of problemen meer hebt, mag je dit onderwerp afsluiten door een klik op de knop "Markeer als opgelost", die je links onderaan kan terugvinden … zo blijft het voor iedereen overzichtelijk.

Link naar reactie
Delen op andere sites
geiteke Enthousiasteling

geiteke

Geplaatst:
  • Auteur
Geplaatst:

Met enige vertraging...

ComboFix 13-08-22.01 - Mike 24/08/2013 20:59:32.1.4 - x64

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.3955.2341 [GMT 2:00]

Gestart vanuit: c:\users\Mike\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\6HF3F77S\ComboFix.exe

AV: avast! Internet Security *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}

FW: avast! Internet Security *Disabled* {131692B0-0864-D491-4E21-3A3A1D8BBB47}

SP: avast! Internet Security *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

* Nieuw herstelpunt werd aangemaakt

.

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

C:\prefs.js

.

.

(((((((((((((((((((( Bestanden Gemaakt van 2013-07-24 to 2013-08-24 ))))))))))))))))))))))))))))))

.

.

2013-08-24 19:05 . 2013-08-24 19:05 -------- d-----w- c:\users\Default\AppData\Local\temp

2013-08-23 19:07 . 2013-08-23 19:07 76232 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{04C7EB9F-4A2A-4BC0-A631-3012BBAFE6D3}\offreg.dll

2013-08-23 18:37 . 2013-08-23 18:37 -------- d-----w- c:\program files (x86)\Microsoft Silverlight

2013-08-23 08:05 . 2013-08-23 20:35 -------- d-----w- C:\AdwCleaner

2013-08-23 07:50 . 2013-08-06 08:58 9515512 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{04C7EB9F-4A2A-4BC0-A631-3012BBAFE6D3}\mpengine.dll

2013-08-22 18:25 . 2013-08-22 18:25 388096 ----a-r- c:\users\Mike\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

2013-08-22 18:25 . 2013-08-22 18:25 -------- d-----w- c:\program files (x86)\Trend Micro

2013-08-22 16:50 . 2013-08-22 16:50 -------- d-----w- C:\User Data

2013-08-22 16:50 . 2013-08-22 17:26 -------- d-----w- c:\program files (x86)\WinZipper

2013-08-22 16:50 . 2013-08-22 16:50 -------- d-----w- c:\users\Mike\AppData\Roaming\WinZipper

2013-08-14 21:13 . 2013-08-14 21:15 -------- d-----w- c:\windows\system32\MRT

2013-07-27 12:46 . 2013-07-27 12:46 88 ----a-w- c:\windows\DeleteOnReboot.bat

2013-07-27 10:48 . 2013-07-27 10:52 -------- d-----w- c:\program files (x86)\SpeedFan

.

.

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2013-08-22 16:50 . 2011-02-19 21:03 421032 ----a-w- c:\windows\SysWow64\msvcp100.dll

2013-08-22 16:50 . 2011-02-18 22:40 773800 ----a-w- c:\windows\SysWow64\msvcr100.dll

2013-08-14 21:13 . 2012-12-11 18:28 78161360 ----a-w- c:\windows\system32\MRT.exe

2013-07-21 10:46 . 2013-07-21 10:46 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl

2013-07-21 10:46 . 2013-07-21 10:46 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe

2013-07-09 04:45 . 2013-08-14 17:35 44032 ----a-w- c:\windows\apppatch\acwow64.dll

2013-06-27 08:39 . 2013-07-09 11:11 189936 ----a-w- c:\windows\system32\drivers\aswVmm.sys

2013-06-27 08:39 . 2013-07-09 11:11 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys

2013-06-27 08:39 . 2013-01-06 13:59 377920 ----a-w- c:\windows\system32\drivers\aswSP.sys

2013-06-27 08:39 . 2013-01-06 13:59 68920 ----a-w- c:\windows\system32\drivers\aswTdi.sys

2013-06-27 08:39 . 2013-01-06 13:59 1025808 ----a-w- c:\windows\system32\drivers\aswSnx.sys

2013-06-27 08:39 . 2013-01-06 13:59 70992 ----a-w- c:\windows\system32\drivers\aswRdr2.sys

2013-06-27 08:39 . 2013-01-06 13:59 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys

2013-06-27 08:39 . 2013-01-06 13:59 127648 ----a-w- c:\windows\system32\drivers\aswFW.sys

2013-06-27 08:39 . 2013-01-06 13:59 263096 ----a-w- c:\windows\system32\drivers\aswNdis2.sys

2013-06-27 08:39 . 2013-01-06 13:59 22600 ----a-w- c:\windows\system32\drivers\aswKbd.sys

2013-06-27 08:39 . 2013-01-06 13:59 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys

2013-06-27 08:37 . 2013-01-06 13:59 41664 ----a-w- c:\windows\avastSS.scr

2013-06-27 08:36 . 2012-12-10 11:09 287840 ----a-w- c:\windows\system32\aswBoot.exe

2013-06-05 03:34 . 2013-07-10 19:16 3153920 ----a-w- c:\windows\system32\win32k.sys

2013-06-04 06:00 . 2013-07-10 19:16 624128 ----a-w- c:\windows\system32\qedit.dll

2013-06-04 04:53 . 2013-07-10 19:16 509440 ----a-w- c:\windows\SysWow64\qedit.dll

2011-08-05 11:56 . 2011-08-05 11:56 645856 ----a-w- c:\program files\UIX.renderapi.dll

2011-08-05 11:56 . 2011-08-05 11:56 1530592 ----a-w- c:\program files\UIX.dll

2011-08-05 11:56 . 2011-08-05 11:56 1288928 ----a-w- c:\program files\UIXcontrols.dll

2011-08-05 11:56 . 2011-08-05 11:56 1272544 ----a-w- c:\program files\ZuneShell.dll

2011-08-05 11:56 . 2011-08-05 11:56 1175264 ----a-w- c:\program files\ZuneDBApi.dll

2011-08-05 11:53 . 2011-08-05 11:53 9440 ----a-w- c:\program files\ZuneWmduResources.dll

2011-08-05 11:53 . 2011-08-05 11:53 863968 ----a-w- c:\program files\ZuneWmdu.dll

2011-08-05 11:53 . 2011-08-05 11:53 74464 ----a-w- c:\program files\ZuneShellExt.dll

2011-08-05 11:53 . 2011-08-05 11:53 507104 ----a-w- c:\program files\ZuneSP.dll

2011-08-05 11:53 . 2011-08-05 11:53 467680 ----a-w- c:\program files\ZuneWlanCfgSvc.exe

2011-08-05 11:53 . 2011-08-05 11:53 4020448 ----a-w- c:\program files\ZuneSetup.exe

2011-08-05 11:53 . 2011-08-05 11:53 366816 ----a-w- c:\program files\ZuneSrcWrp.dll

2011-08-05 11:53 . 2011-08-05 11:53 306400 ----a-w- c:\program files\WMZuneComm.exe

2011-08-05 11:53 . 2011-08-05 11:53 27872 ----a-w- c:\program files\WMZuneTCP2UDP.dll

2011-08-05 11:53 . 2011-08-05 11:53 21216 ----a-w- c:\program files\WMZuneDTPTDNS.dll

2011-08-05 11:53 . 2011-08-05 11:53 196832 ----a-w- c:\program files\ZuneZMDB.Mobile.dll

2011-08-05 11:53 . 2011-08-05 11:53 18656 ----a-w- c:\program files\WMZuneCommProxyStub.dll

2011-08-05 11:53 . 2011-08-05 11:53 17632 ----a-w- c:\program files\ZuneShare.exe

2011-08-05 11:53 . 2011-08-05 11:53 16921312 ----a-w- c:\program files\ZuneShellResources.dll

2011-08-05 11:53 . 2011-08-05 11:53 157920 ----a-w- c:\program files\ZuneZMDB.Library.dll

2011-08-05 11:53 . 2011-08-05 11:53 157408 ----a-w- c:\program files\ZuneZMDB.ZuneHD.dll

2011-08-05 11:53 . 2011-08-05 11:53 152288 ----a-w- c:\program files\ZuneZMDB.Classic.dll

2011-08-05 11:53 . 2011-08-05 11:53 100064 ----a-w- c:\program files\ZuneTaskbar.dll

2011-08-05 11:53 . 2011-08-05 11:53 916704 ----a-w- c:\program files\ZuneQP.dll

2011-08-05 11:53 . 2011-08-05 11:53 683744 ----a-w- c:\program files\ZuneSH.dll

2011-08-05 11:53 . 2011-08-05 11:53 514272 ----a-w- c:\program files\ZuneSE.dll

2011-08-05 11:53 . 2011-08-05 11:53 3889376 ----a-w- c:\program files\ZuneResources.dll

2011-08-05 11:53 . 2011-08-05 11:53 155872 ----a-w- c:\program files\ZuneSA.dll

2011-08-05 11:53 . 2011-08-05 11:53 1257184 ----a-w- c:\program files\ZuneService.dll

2011-08-05 11:53 . 2011-08-05 11:53 879328 ----a-w- c:\program files\ZuneMBR.dll

2011-08-05 11:53 . 2011-08-05 11:53 8277728 ----a-w- c:\program files\ZuneNss.exe

2011-08-05 11:53 . 2011-08-05 11:53 72928 ----a-w- c:\program files\ZuneDXVA2.dll

2011-08-05 11:53 . 2011-08-05 11:53 707808 ----a-w- c:\program files\ZUNEMP4SDECD.dll

2011-08-05 11:53 . 2011-08-05 11:53 61664 ----a-w- c:\program files\ZuneCfg.dll

2011-08-05 11:53 . 2011-08-05 11:53 56544 ----a-w- c:\program files\ZuneConfig.exe

2011-08-05 11:53 . 2011-08-05 11:53 38624 ----a-w- c:\program files\ZuneEnc.exe

2011-08-05 11:53 . 2011-08-05 11:53 376544 ----a-w- c:\program files\ZuneEvr.dll

2011-08-05 11:53 . 2011-08-05 11:53 35552 ----a-w- c:\program files\UIXsup.dll

2011-08-05 11:53 . 2011-08-05 11:53 347872 ----a-w- c:\program files\ZuneNssci.dll

2011-08-05 11:53 . 2011-08-05 11:53 223968 ----a-w- c:\program files\Zune.exe

2011-08-05 11:53 . 2011-08-05 11:53 218848 ----a-w- c:\program files\ZuneHost.exe

2011-08-05 11:53 . 2011-08-05 11:53 212192 ----a-w- c:\program files\ZuneDB.dll

2011-08-05 11:53 . 2011-08-05 11:53 2110176 ----a-w- c:\program files\ZuneEncEng.dll

2011-08-05 11:53 . 2011-08-05 11:53 20704 ----a-w- c:\program files\ZunePS.dll

2011-08-05 11:53 . 2011-08-05 11:53 1752288 ----a-w- c:\program files\UIXrender.dll

2011-08-05 11:53 . 2011-08-05 11:53 163552 ----a-w- c:\program files\ZuneLauncher.exe

2011-08-05 11:53 . 2011-08-05 11:53 1481440 ----a-w- c:\program files\ZuneCore.dll

2011-08-05 11:53 . 2011-08-05 11:53 131296 ----a-w- c:\program files\ZunePresenter.dll

2011-08-05 11:53 . 2011-08-05 11:53 129248 ----a-w- c:\program files\ZuneEffects.dll

2011-08-05 11:53 . 2011-08-05 11:53 121056 ----a-w- c:\program files\ZuneAACDec.dll

2011-08-05 11:53 . 2011-08-05 11:53 1184480 ----a-w- c:\program files\ZuneH264Dec.dll

2011-08-05 11:53 . 2011-08-05 11:53 1161440 ----a-w- c:\program files\ZuneMde.dll

2011-08-05 11:53 . 2011-08-05 11:53 1096928 ----a-w- c:\program files\ZuneMarketplaceResources.dll

2011-08-05 11:53 . 2011-08-05 11:53 10061536 ----a-w- c:\program files\ZuneNativeLib.dll

2011-08-05 11:31 . 2011-08-05 11:31 182784 ----a-w- c:\program files\l3codecp.acm

2011-06-06 12:48 . 2011-06-06 12:48 856576 ----a-w- c:\program files\msvcp90.dll

2011-06-06 12:48 . 2011-06-06 12:48 626688 ----a-w- c:\program files\msvcr90.dll

2011-06-06 12:48 . 2011-06-06 12:48 245760 ----a-w- c:\program files\msvcm90.dll

2007-10-02 13:12 . 2007-10-02 13:12 1642568 ----a-w- c:\program files\msidcrl40.dll

.

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"KiesPreload"="c:\program files (x86)\Samsung\Kies\Kies.exe" [2013-04-23 1561968]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-03-15 98304]

"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-06-27 4769352]

"CanonSolutionMenuEx"="c:\program files (x86)\Canon\Solution Menu EX\CNSEMAIN.EXE" [2010-04-02 1185112]

"IJNetworkScanUtility"="c:\program files (x86)\Canon\Canon IJ Network Scan Utility\CNMNSUT.exe" [2010-03-02 140640]

"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-11-28 59280]

"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2012-12-12 152544]

"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]

"KiesTrayAgent"="c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe" [2013-04-23 311152]

.

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"TOSHIBA Online Product Information"="c:\program files (x86)\TOSHIBA\TOSHIBA Online Product Information\topi.exe" [2010-03-03 4581280]

.

c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

TRDCReminder.lnk - c:\program files (x86)\TOSHIBA\TRDCReminder\TRDCReminder.exe [2009-9-1 481184]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]

"LoadAppInit_DLLs"=1 (0x1)

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

@=""

.

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]

R3 aswVmm;aswVmm; [x]

R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]

R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des;c:\windows\SYSNATIVE\GameMon.des [x]

R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]

R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]

R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]

R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]

R3 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO);c:\program files (x86)\Toshiba TEMPRO\TemproSvc.exe;c:\program files (x86)\Toshiba TEMPRO\TemproSvc.exe [x]

R3 TMachInfo;TMachInfo;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe;c:\program files (x86)\TOSHIBA\TOSHIBA Service Station\TMachInfo.exe [x]

R3 TOSHIBA HDD SSD Alert Service;TOSHIBA HDD SSD Alert Service;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe;c:\program files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [x]

R3 TPCHSrv;TPCH Service;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe;c:\program files\TOSHIBA\TPHM\TPCHSrv.exe [x]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]

R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]

R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]

R3 WSDScan;Ondersteuning voor WSD-scan via UMB;c:\windows\system32\DRIVERS\WSDScan.sys;c:\windows\SYSNATIVE\DRIVERS\WSDScan.sys [x]

S0 aswKbd;aswKbd; [x]

S0 aswNdis;avast! Firewall NDIS Filter Service;c:\windows\system32\DRIVERS\aswNdis.sys;c:\windows\SYSNATIVE\DRIVERS\aswNdis.sys [x]

S0 aswNdis2;avast! Firewall Core Firewall Service; [x]

S0 aswRvrt;aswRvrt; [x]

S1 aswFW;avast! TDI Firewall driver; [x]

S1 aswSnx;aswSnx; [x]

S1 aswSP;aswSP; [x]

S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]

S2 aswFsBlk;aswFsBlk; [x]

S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]

S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe;c:\program files\AVAST Software\Avast\afwServ.exe [x]

S2 cfWiMAXService;ConfigFree WiMAX Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe;c:\program files (x86)\TOSHIBA\ConfigFree\CFIWmxSvcs64.exe [x]

S2 ConfigFree Service;ConfigFree Service;c:\program files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe;c:\program files (x86)\TOSHIBA\ConfigFree\CFSvcs.exe [x]

S2 regi;regi;c:\windows\system32\drivers\regi.sys;c:\windows\SYSNATIVE\drivers\regi.sys [x]

S2 TOSHIBA eco Utility Service;TOSHIBA eco Utility Service;c:\program files\TOSHIBA\TECO\TecoService.exe;c:\program files\TOSHIBA\TECO\TecoService.exe [x]

S2 TVALZFL;TOSHIBA ACPI-Based Value Added Logical and General Purpose Device Filter Driver;c:\windows\system32\DRIVERS\TVALZFL.sys;c:\windows\SYSNATIVE\DRIVERS\TVALZFL.sys [x]

S2 UNS;Intel® Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe [x]

S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]

S3 HECIx64;Intel® Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]

S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys;c:\windows\SYSNATIVE\DRIVERS\Impcd.sys [x]

S3 PGEffect;Pangu effect driver;c:\windows\system32\DRIVERS\pgeffect.sys;c:\windows\SYSNATIVE\DRIVERS\pgeffect.sys [x]

S3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;c:\windows\system32\DRIVERS\rtl8192se.sys;c:\windows\SYSNATIVE\DRIVERS\rtl8192se.sys [x]

.

.

Inhoud van de 'Gedeelde Taken' map

.

2013-08-24 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-21 10:46]

.

.

--------- X64 Entries -----------

.

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]

@="{472083B0-C522-11CF-8763-00608CC02F24}"

[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]

2013-06-27 08:36 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-10-17 13307496]

"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-10-14 2278504]

"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]

"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2010-03-24 2726728]

.

------- Bijkomende Scan -------

.

uLocal Page = c:\windows\system32\blank.htm

uStart Page = hxxp://www.google.be/

mLocal Page = c:\windows\SysWOW64\blank.htm

uInternet Settings,ProxyOverride = *.local

uSearchAssistant = hxxp://www.google.com

TCP: DhcpNameServer = 195.130.131.132 195.130.130.4

DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/4.0.4.0/GarminAxControl_32.CAB

.

- - - - ORPHANS VERWIJDERD - - - -

.

Toolbar-Locked - (no file)

Wow6432Node-HKCU-Run-KiesAirMessage - c:\program files (x86)\Samsung\Kies\KiesAirMessage.exe

HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start

Toolbar-Locked - (no file)

HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe

AddRemove-Adobe Flash Player ActiveX - c:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_8_800_94_ActiveX.exe

AddRemove-{53820F89-063F-10D7-7457-06C201F4CBF0} - c:\programdata\Zoomex\uninstall.exe

.

.

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc]

"ImagePath"="c:\windows\system32\GameMon.des -service"

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.11"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]

"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,

00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Voltooingstijd: 2013-08-24 21:07:47

ComboFix-quarantined-files.txt 2013-08-24 19:07

.

Pre-Run: 162.610.540.544 bytes beschikbaar

Post-Run: 162.466.746.368 bytes beschikbaar

.

- - End Of File - - 1D849C245949685088A9866B06A5BD9C

Bedankt kape om zo veel tijd te steken in dit probleem ( en bijkomende probleempjes ) :-)

Link naar reactie
Delen op andere sites
Gast
Dit topic is nu gesloten voor nieuwe reacties.
 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.