Ga naar inhoud

laptop zeer traag


Aanbevolen berichten

Hallo,

mijn laptop start zeer traag op hij blijft minutenlang hangen op het boot scherm. Inmiddlels Malwarebytes, ADWCleaner en Avast virusscan toegepast maar blijft traag. Onderstaand een Hijack This logjes (links naar RSIT werken niet) :

Alvastbedankt voor het nazicht

Nago

Logfile of Trend Micro HijackThis v2.0.5

Scan saved at 21:16:55, on 23/02/2014

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v11.0 (11.00.9600.16518)

FIREFOX: 27.0.1 (en-US)

Boot mode: Normal

Running processes:

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskhost.exe

C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\TOP\SQL Anywhere 9\Shared\Sybase Central 4.3\win32\scjview.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe

C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe

C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe

C:\Program Files\Windows Live\Mail\wlmail.exe

C:\Program Files\Windows Live\Contacts\wlcomm.exe

C:\Program Files\TeamViewer\Version8\TeamViewer.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Users\Nancy\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: (no name) - {26842a09-ffa8-4e2c-ae12-0c80f01c3295} - (no file)

O2 - BHO: MSS+ Identifier - {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - C:\Program Files\McAfee Security Scan\3.8.141\McAfeeMSS_IE.dll

O2 - BHO: ExplorerWnd Helper - {10921475-03CE-4E04-90CE-E2E7EF20C814} - C:\Program Files\IObit\IObit Uninstaller\UninstallExplorer32.dll

O2 - BHO: (no name) - {1e91a655-bb4b-4693-a05e-2edebc4c9d89} - (no file)

O2 - BHO: (no name) - {71c1d63a-c944-428a-a5bd-ba513190e5d2} - (no file)

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll

O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Advanced SystemCare Browser Protection - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - C:\PROGRA~1\IObit\SURFIN~1\BROWER~1\ASCPLU~1.DLL

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll

O3 - Toolbar: avast! Online Security - {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll

O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui

O4 - HKCU\..\Run: [sybaseCentral43] "C:\Top\SQL Anywhere 9\Shared\Sybase Central 4.3\win32\scjview.exe" -preload

O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - HKUS\S-1-5-18\..\Run: [Advanced SystemCare 7] "C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [Advanced SystemCare 7] "C:\Program Files\IObit\Advanced SystemCare 7\ASCTray.exe" /Auto (User 'Default user')

O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay (file missing)

O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay (file missing)

O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL

O9 - Extra button: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay (file missing) (HKCU)

O9 - Extra 'Tools' menuitem: eBay.be - {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay (file missing) (HKCU)

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O15 - Trusted Zone: *.minfin.fgov.be

O15 - Trusted Zone: http://*.fgov.be

O16 - DPF: {A996E48C-D3DC-4244-89F7-AFA33EC60679} (Settings Class) - Federale Overheidsdienst Financiën

O18 - Protocol: linkscanner - (no CLSID) - (no file)

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe

O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

O23 - Service: IMF Service (IMFservice) - IObit - d:\Program Files\IObit\IObit Malware Fighter\IMFsrv.exe

O23 - Service: LiveUpdate (LiveUpdateSvc) - IObit - C:\Program Files\IObit\LiveUpdate\LiveUpdate.exe

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe

O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: NitroPDFReaderDriverCreatorReadSpool3 (NitroReaderDriverReadSpool3) - Nitro PDF Software - C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe

O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe

O23 - Service: Realtek11nSU - Realtek - C:\Program Files\Realtek\11n USB Wireless LAN Utility\RtlService.exe

O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe

O23 - Service: TomTomHOMEService - TomTom - C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

O23 - Service: Intel® Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: WisLMSvc - Wistron Corp. - C:\Program Files\Launch Manager\WisLMSvc.exe

O23 - Service: X10 Device Network Service (x10nets) - X10 - C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

--

End of file - 8347 bytes

Link naar reactie
Delen op andere sites

  • Reacties 24
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Beste reacties in dit topic

Geplaatste afbeeldingen

Dag Nago,

welkom op PCH!

Kan je de logs van Malwarebytes en AdwCleaner eens posten alvorens we verder gaan?

- Log Malwarebytes vind je onder de tab 'logbestanden'.

- Log AdwCleaner vind je op je C-schijf 'adwcleaner.txt'.

Zijn die problemen toevallig begonnen na het gebruik van Iobit Advanced Systemcare?

Wij hebben die tool al vaak ernstige problemen zien veroorzaken en raden deze dan ook steevast af om te gebruiken. :dong:

Link naar reactie
Delen op andere sites

Ik denk niet dat jouw probleem malware gerelateerd is, maar we zullen nog wat dieper graven. ;-)

Download DDS van sUBS van één van deze locaties en plaats het op je bureaublad:

DDS - Bleeping Computer download.

DDS - Bleeping Computer download.

DDS - Infospyware.

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met DDS (hier of hier) kan je lezen hoe je de gebruikte beveiligingssoftware kunt uitschakelen.


  • Windows XP: Dubbelklik op DDS om de tool te starten.
  • Windows Vista,7,8: Rechtsklik op DDS en klik op "Als administrator uitvoeren".
  • Vink in het volgende scherm dds.txt en attach.txt aan en klik op "Start"
  • Laat de tool ongehinderd zijn werk doen. Als de scan gereed is klikt u op "OK"
  • Post de inhoud van het geopende DDS.txt in het volgende bericht.
    (Plaats het attach logje alleen indien hierom wordt gevraagd!)

Link naar reactie
Delen op andere sites

Hallo,

merci alvast, hier de inhoud van het dds.txt logje (wel direct opgestart ipv opgeslagen op bureaublad) :

DDS (Ver_2012-11-20.01) - NTFS_x86

Internet Explorer: 11.0.9600.16518 BrowserJavaVersion: 10.51.2

Run by Nancy at 20:31:01 on 2014-02-24

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.3511.2115 [GMT 1:00]

.

AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}

SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

.

============== Running Processes ================

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Program Files\AVAST Software\Avast\AvastSvc.exe

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\Dwm.exe

C:\Windows\system32\taskhost.exe

C:\Windows\Explorer.EXE

C:\Program Files\Intel\Intel® Management Engine Components\LMS\LMS.exe

c:\Program Files\Microsoft SQL Server\MSSQL10_50.KLUWER2008R2\MSSQL\Binn\sqlservr.exe

C:\Program Files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe

c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe

C:\Program Files\Realtek\11n USB Wireless LAN Utility\RtlService.exe

c:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe

c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe

C:\Program Files\Realtek\11n USB Wireless LAN Utility\RtWlan.exe

C:\Program Files\TeamViewer\Version8\TeamViewer_Service.exe

C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe

C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\AVAST Software\Avast\AvastUI.exe

C:\PROGRA~1\COMMON~1\X10\Common\x10nets.exe

C:\TOP\SQL Anywhere 9\Shared\Sybase Central 4.3\win32\scjview.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe

C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe

C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe

C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe

C:\Program Files\Windows Live\Mail\wlmail.exe

C:\Program Files\Windows Live\Contacts\wlcomm.exe

C:\Program Files\Google\Update\GoogleUpdate.exe

C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe

C:\Program Files\Intel\Intel® Management Engine Components\UNS\UNS.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Windows\servicing\TrustedInstaller.exe

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\conhost.exe

C:\Windows\system32\wbem\wmiprvse.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Windows\system32\svchost.exe -k hpdevmgmt

C:\Windows\System32\svchost.exe -k HPZ12

C:\Windows\System32\svchost.exe -k HPZ12

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k secsvcs

C:\Windows\system32\svchost.exe -k defragsvc

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.google.be/

uURLSearchHooks: {26842a09-ffa8-4e2c-ae12-0c80f01c3295} - <orphaned>

BHO: MSS+ Identifier: {0E8A89AD-95D7-40EB-8D9D-083EF7066A01} - c:\program files\mcafee security scan\3.8.141\McAfeeMSS_IE.dll

BHO: {1e91a655-bb4b-4693-a05e-2edebc4c9d89} - <orphaned>

BHO: {71c1d63a-c944-428a-a5bd-ba513190e5d2} - <orphaned>

BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll

BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - c:\program files\avast software\avast\aswWebRepIE.dll

BHO: Windows Live Aanmelden - Help: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll

BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll

BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll

TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll

TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll

TB: avast! Online Security: {CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - c:\program files\avast software\avast\aswWebRepIE.dll

EB: <No Name>: {555D4D79-4BD2-4094-A395-CFC534424A05} - LocalServer32 - <no file>

uRun: [sybaseCentral43] "c:\top\sql anywhere 9\shared\sybase central 4.3\win32\scjview.exe" -preload

uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"

mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe -s

mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"

mRun: [sunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"

mRun: [AvastUI.exe] "c:\program files\avast software\avast\AvastUI.exe" /nogui

dRun: [Advanced SystemCare 7] "c:\program files\iobit\advanced systemcare 7\ASCTray.exe" /Auto

StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\hpdigi~1.lnk - c:\program files\hp\digital imaging\bin\hpqtra08.exe

mPolicies-System: ConsentPromptBehaviorAdmin = dword:5

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableUIADesktopToggle = dword:0

IE: {0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}

.

INFO: HKCU has more than 50 listed domains.

If you wish to scan all of them, select the 'Force scan all domains' option.

.

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab

DPF: {A996E48C-D3DC-4244-89F7-AFA33EC60679} - hxxp://ccff02.minfin.fgov.be/diagnosis/static/resources/capicom.cab

DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab

TCP: NameServer = 195.130.131.4 195.130.130.132

TCP: Interfaces\{010B9879-A692-401A-AE4C-02616152CCA3}\B62796374796E623030393 : DHCPNameServer = 195.130.131.4 195.130.130.132

TCP: Interfaces\{87009144-BBAF-4077-80C9-4F1846086AB2} : DHCPNameServer = 195.130.131.4 195.130.130.132

Handler: linkscanner - <Clsid value has no data>

Notify: igfxcui - igfxdev.dll

SSODL: WebCheck - <orphaned>

.

================= FIREFOX ===================

.

FF - ProfilePath - c:\users\nancy\appdata\roaming\mozilla\firefox\profiles\kel9af6g.default\

FF - prefs.js: browser.startup.homepage - hxxp://www.google.be/

FF - plugin: c:\program files\adobe\reader 11.0\reader\air\nppdf32.dll

FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll

FF - plugin: c:\program files\google\update\1.3.22.5\npGoogleUpdate3.dll

FF - plugin: c:\program files\java\jre7\bin\dtplugin\npdeployJava1.dll

FF - plugin: c:\program files\java\jre7\bin\plugin2\npjp2.dll

FF - plugin: c:\program files\mcafee security scan\3.8.141\npMcAfeeMSS.dll

FF - plugin: c:\program files\microsoft silverlight\5.1.20913.0\npctrlui.dll

FF - plugin: c:\program files\nitro\reader 3\npdf.dll

FF - plugin: c:\program files\nitro\reader 3\npnitroie.dll

FF - plugin: c:\program files\nitro\reader 3\npnitromozilla.dll

FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll

.

============= SERVICES / DRIVERS ===============

.

R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [2014-2-23 49944]

R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [2014-2-23 180248]

R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2014-2-23 775952]

R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2014-2-23 410784]

R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2014-2-23 67824]

R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2014-2-23 50344]

R2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files\intel\intel® rapid storage technology\IAStorDataMgrSvc.exe [2010-6-29 13336]

R2 MSSQL$KLUWER2008R2;SQL Server (KLUWER2008R2);c:\program files\microsoft sql server\mssql10_50.kluwer2008r2\mssql\binn\sqlservr.exe [2011-6-17 43040096]

R2 NitroReaderDriverReadSpool3;NitroPDFReaderDriverCreatorReadSpool3;c:\program files\nitro\reader 3\NitroPDFReaderDriverService3.exe [2013-3-26 196624]

R2 Realtek11nSU;Realtek11nSU;c:\program files\realtek\11n usb wireless lan utility\RtlService.exe [2011-8-1 40960]

R2 TeamViewer8;TeamViewer 8;c:\program files\teamviewer\version8\TeamViewer_Service.exe [2013-7-10 5093216]

R2 TomTomHOMEService;TomTomHOMEService;c:\program files\tomtom home 2\TomTomHOMEService.exe [2013-8-27 93072]

R2 UNS;Intel® Management & Security Application User Notification Service;c:\program files\intel\intel® management engine components\uns\UNS.exe [2010-6-29 2320920]

R3 cxbu0wdm;OMNIKEY 3x21;c:\windows\system32\drivers\cxbu0wdm.sys [2013-3-22 126592]

R3 Impcd;Impcd;c:\windows\system32\drivers\Impcd.sys [2010-8-14 132480]

R3 IntcDAud;Intel® Display Audio;c:\windows\system32\drivers\IntcDAud.sys [2010-6-28 232960]

R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\drivers\L1C62x86.sys [2010-6-28 67624]

R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;c:\windows\system32\drivers\rtl8192se.sys [2010-4-1 1009184]

R3 X10Hid;X10 Hid Device;c:\windows\system32\drivers\x10hid.sys [2010-8-14 13720]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 LiveUpdateSvc;LiveUpdate;c:\program files\iobit\liveupdate\LiveUpdate.exe [2013-11-11 2151200]

S2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2014-2-23 418376]

S2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2014-2-23 701512]

S3 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys [2014-2-23 64168]

S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]

S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\ieetwcollector.exe [2014-2-13 108032]

S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2014-2-23 22856]

S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2013-2-9 14848]

S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [2010-6-29 193056]

S3 RTL8192su;%RTL8192su.DeviceDesc.DispName%;c:\windows\system32\drivers\rtl8192su.sys [2011-8-1 583680]

S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2013-2-9 49664]

S3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\wat\WatAdminSvc.exe [2010-9-19 1343400]

S3 WisLMSvc;WisLMSvc;c:\program files\launch manager\WisLMSvc.exe [2010-8-14 118560]

S4 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\mcafee security scan\3.8.141\McCHSvc.exe [2014-1-16 235696]

S4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\microsoft sql server\100\shared\sqladhlp.exe [2010-4-3 44896]

S4 RsFx0151;RsFx0151 Driver;c:\windows\system32\drivers\RsFx0151.sys [2011-6-17 240736]

S4 SQLAgent$KLUWER2008R2;SQL Server Agent (KLUWER2008R2);c:\program files\microsoft sql server\mssql10_50.kluwer2008r2\mssql\binn\SQLAGENT.EXE [2011-6-17 370016]

.

=============== Created Last 30 ================

.

2014-02-23 14:09:07 -------- d-----w- c:\users\nancy\appdata\roaming\AVAST Software

2014-02-23 14:08:24 64168 ----a-w- c:\windows\system32\drivers\aswStm.sys

2014-02-23 14:08:24 180248 ----a-w- c:\windows\system32\drivers\aswVmm.sys

2014-02-23 14:08:23 79720 ----a-w- c:\windows\system32\drivers\aswRdr2.sys

2014-02-23 14:08:23 775952 ----a-w- c:\windows\system32\drivers\aswSnx.sys

2014-02-23 14:08:23 67824 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys

2014-02-23 14:08:23 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys

2014-02-23 14:08:14 43152 ----a-w- c:\windows\avastSS.scr

2014-02-23 14:07:34 -------- d-----w- c:\program files\AVAST Software

2014-02-23 14:07:25 -------- d-----w- c:\program files\CCleaner

2014-02-23 14:06:21 -------- d-----w- c:\programdata\AVAST Software

2014-02-23 13:37:07 -------- d-----w- C:\AdwCleaner

2014-02-23 13:27:15 -------- d-----w- c:\users\nancy\appdata\roaming\Malwarebytes

2014-02-23 13:27:10 22856 ----a-w- c:\windows\system32\drivers\mbam.sys

2014-02-23 13:27:10 -------- d-----w- c:\programdata\Malwarebytes

2014-02-23 13:27:10 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2014-02-23 13:23:18 -------- d-----w- c:\windows\pss

2014-02-22 21:32:20 -------- d-sh--w- c:\programdata\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}

2014-02-17 16:37:13 -------- d-----w- c:\programdata\Oracle

2014-02-17 16:36:18 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll

2014-02-15 18:32:35 -------- d-----w- c:\program files\McAfee Security Scan

2014-02-13 18:33:16 454656 ----a-w- c:\windows\system32\vbscript.dll

.

==================== Find3M ====================

.

2014-02-21 16:32:07 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2014-02-21 16:32:07 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe

2014-02-06 10:20:26 2724864 ----a-w- c:\windows\system32\mshtml.tlb

2014-02-06 10:19:55 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll

2014-02-06 10:01:36 61952 ----a-w- c:\windows\system32\iesetup.dll

2014-02-06 10:00:46 51200 ----a-w- c:\windows\system32\ieetwproxystub.dll

2014-02-06 09:47:22 112128 ----a-w- c:\windows\system32\ieUnatt.exe

2014-02-06 09:47:18 108032 ----a-w- c:\windows\system32\ieetwcollector.exe

2014-02-06 09:46:27 553472 ----a-w- c:\windows\system32\jscript9diag.dll

2014-02-06 09:25:36 4244480 ----a-w- c:\windows\system32\jscript9.dll

2014-02-06 09:09:30 1964032 ----a-w- c:\windows\system32\inetcpl.cpl

2014-02-06 08:41:35 1820160 ----a-w- c:\windows\system32\wininet.dll

2014-01-01 19:56:33 60 ----a-w- c:\windows\wpd99.drv

2013-12-24 23:09:41 1987584 ----a-w- c:\windows\system32\d3d10warp.dll

2013-12-06 02:02:08 2048 ----a-w- c:\windows\system32\msxml3r.dll

2013-12-06 02:02:08 1237504 ----a-w- c:\windows\system32\msxml3.dll

2013-12-04 02:03:20 87040 ----a-w- c:\windows\system32\secproc_ssp_isv.dll

2013-12-04 02:03:20 87040 ----a-w- c:\windows\system32\secproc_ssp.dll

2013-12-04 02:03:20 423936 ----a-w- c:\windows\system32\secproc_isv.dll

2013-12-04 02:03:08 428032 ----a-w- c:\windows\system32\secproc.dll

2013-12-04 02:02:06 390144 ----a-w- c:\windows\system32\msdrm.dll

2013-12-04 01:54:14 510976 ----a-w- c:\windows\system32\RMActivate_ssp.exe

2013-12-04 01:54:10 594944 ----a-w- c:\windows\system32\RMActivate_isv.exe

2013-12-04 01:54:09 572416 ----a-w- c:\windows\system32\RMActivate.exe

2013-12-04 01:54:06 508928 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe

2013-12-03 13:16:30 323408 ----a-w- c:\windows\system32\XceedZip.dll

2013-11-27 01:14:25 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys

2013-11-27 01:13:46 284672 ----a-w- c:\windows\system32\drivers\usbport.sys

2013-11-27 01:13:44 76288 ----a-w- c:\windows\system32\drivers\usbccgp.sys

2013-11-27 01:13:41 43520 ----a-w- c:\windows\system32\drivers\usbehci.sys

2013-11-27 01:13:38 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys

2013-11-27 01:13:36 24064 ----a-w- c:\windows\system32\drivers\usbuhci.sys

2013-11-27 01:13:33 6016 ----a-w- c:\windows\system32\drivers\usbd.sys

.

============= FINISH: 20:32:04,28 ===============

Link naar reactie
Delen op andere sites

Download HD Tune en sla het bestand op.

Installeer HD Tune en start deze na de installatie op.

HDTune-error-scan.png

Vervolgens ga je naar het tabblad Error Scan, selecteer de harde schijf die je wil controleren en druk op Start.

De controle kan een hele tijd in beslag nemen afhankelijk van de grootte van de te controleren harde schijf.

Wat is het resultaat van deze test? Rode blokjes te zien?

Link naar reactie
Delen op andere sites

Download 51a5bf3d99e8a-ComboFixlogo16.pngComboFix van één van de onderstaande locaties naar het bureaublad.

Bleeping Computer

Info Spyware

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met ComboFix.exe

(hier of hier) kan je lezen hoe je de gebruikte beveiligingssoftware kunt uitschakelen.


  • Dubbelklik op "ComboFix" om de tool te starten, Windows Vista, 7 & 8 gebruikers zullen een melding krijgen van UAC (Gebruikersaccountbeheer), klik hier op Ja / yes.
  • Op een Windows XP computer zal ComboFix de "Recovery Console" installeren als deze nog niet aanwezig is. (Een actieve internet verbinding is dan een vereiste).
  • Klik in het venster bij het 'Installeren van de Recovery Console' op "Ok".
  • Klik in het info scherm op "Ja" als de Recovery Console met succes is geïnstalleerd.
  • Klik in het scherm van de disclaimer op "I Agree", de benodigde onderdelen worden nu uitgepakt en middels ERUNT wordt er een register back-up gemaakt.
  • Wanneer dit gereed is zal ComboFix vanzelf starten, in het blauwe scherm ziet u de voortgang van de systeemscan die wordt uitgevoerd.
  • Belangrijk! gebruik de computer tijdens de scan niet voor andere zaken.
  • Het kan voorkomen dat de computer meerdere malen opnieuw gestart moet worden zoals bijvoorbeeld bij de aanwezigheid van een rootkit, dit is normaal.
  • Wanneer ComboFix gereed is, zal het een logbestand aanmaken. Post de inhoud van dit logbestand (te vinden als C:\ComboFix.txt) in je volgende bericht.

* Noot !!! Indien u één van de onderstaande meldingen krijgt na het gebruik van ComboFix herstart dan de computer.


  • Er is geprobeerd een ongeldige bewerking uit te voeren op een registersleutel die is gemarkeerd voor verwijdering.
  • Illegal operation attempted on a registry key that has been marked for deletion.

Link naar reactie
Delen op andere sites

hallo,

Dit is 'em :

ComboFix 14-02-24.02 - Nancy 25/02/2014 17:08:52.1.4 - x86

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.3511.2177 [GMT 1:00]

Gestart vanuit: c:\users\Nancy\Downloads\ComboFix.exe

AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}

SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}

SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

* Nieuw herstelpunt werd aangemaakt

.

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\windows\IsUn0413.exe

c:\windows\security\Database\tmp.edb

c:\windows\system32\zip32.dll

.

.

(((((((((((((((((((( Bestanden Gemaakt van 2014-01-25 to 2014-02-25 ))))))))))))))))))))))))))))))

.

.

2014-02-24 19:55 . 2014-02-24 19:55 -------- d-----w- c:\program files\HD Tune

2014-02-23 14:09 . 2014-02-23 14:09 -------- d-----w- c:\users\Nancy\AppData\Roaming\AVAST Software

2014-02-23 14:08 . 2014-02-23 14:08 64168 ----a-w- c:\windows\system32\drivers\aswStm.sys

2014-02-23 14:08 . 2014-02-23 14:08 180248 ----a-w- c:\windows\system32\drivers\aswVmm.sys

2014-02-23 14:08 . 2014-02-23 14:08 79720 ----a-w- c:\windows\system32\drivers\aswRdr2.sys

2014-02-23 14:08 . 2014-02-23 14:08 775952 ----a-w- c:\windows\system32\drivers\aswSnx.sys

2014-02-23 14:08 . 2014-02-23 14:08 67824 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys

2014-02-23 14:08 . 2014-02-23 14:08 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys

2014-02-23 14:08 . 2014-02-23 14:08 410784 ----a-w- c:\windows\system32\drivers\aswSP.sys

2014-02-23 14:08 . 2014-02-23 14:08 270240 ----a-w- c:\windows\system32\aswBoot.exe

2014-02-23 14:08 . 2014-02-23 14:08 43152 ----a-w- c:\windows\avastSS.scr

2014-02-23 14:07 . 2014-02-23 14:07 -------- d-----w- c:\program files\AVAST Software

2014-02-23 14:07 . 2014-02-23 14:07 -------- d-----w- c:\program files\CCleaner

2014-02-23 14:06 . 2014-02-23 14:06 -------- d-----w- c:\programdata\AVAST Software

2014-02-23 13:37 . 2014-02-24 17:26 -------- d-----w- C:\AdwCleaner

2014-02-23 13:27 . 2014-02-23 13:27 -------- d-----w- c:\users\Nancy\AppData\Roaming\Malwarebytes

2014-02-23 13:27 . 2014-02-23 13:27 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2014-02-23 13:27 . 2014-02-23 13:27 -------- d-----w- c:\programdata\Malwarebytes

2014-02-23 13:27 . 2013-04-04 13:50 22856 ----a-w- c:\windows\system32\drivers\mbam.sys

2014-02-22 21:32 . 2014-02-22 21:32 -------- d-sh--w- c:\programdata\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}

2014-02-17 16:37 . 2014-02-17 16:37 -------- d-----w- c:\programdata\Oracle

2014-02-17 16:36 . 2014-02-17 16:36 -------- d-----w- c:\program files\Common Files\Java

2014-02-17 16:36 . 2014-02-17 16:36 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll

2014-02-15 18:32 . 2014-02-15 18:32 -------- d-----w- c:\program files\McAfee Security Scan

2014-02-13 18:33 . 2013-12-21 08:56 454656 ----a-w- c:\windows\system32\vbscript.dll

.

.

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2014-02-21 16:32 . 2012-09-29 14:41 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe

2014-02-21 16:32 . 2011-11-06 13:09 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2013-12-16 21:57 . 2013-12-16 21:57 646144 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe

2013-12-16 21:57 . 2013-12-16 21:57 645120 ----a-w- c:\windows\system32\jsIntl.dll

2013-12-16 21:57 . 2013-12-16 21:57 194048 ----a-w- c:\windows\system32\elshyph.dll

2013-12-16 21:57 . 2013-12-16 21:57 71680 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe

2013-12-16 21:57 . 2013-12-16 21:57 62464 ----a-w- c:\windows\system32\tdc.ocx

2013-12-16 21:57 . 2013-12-16 21:57 34816 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll

2013-12-16 21:57 . 2013-12-16 21:57 182272 ----a-w- c:\windows\system32\msls31.dll

2013-12-16 21:57 . 2013-12-16 21:57 337408 ----a-w- c:\windows\system32\html.iec

2013-12-16 21:57 . 2013-12-16 21:57 24576 ----a-w- c:\windows\system32\licmgr10.dll

2013-12-16 21:57 . 2013-12-16 21:57 1051136 ----a-w- c:\windows\system32\mshtmlmedia.dll

2013-12-16 21:57 . 2013-12-16 21:57 151552 ----a-w- c:\windows\system32\iexpress.exe

2013-12-16 21:57 . 2013-12-16 21:57 139264 ----a-w- c:\windows\system32\wextract.exe

2013-12-16 21:57 . 2013-12-16 21:57 13312 ----a-w- c:\windows\system32\mshta.exe

2013-12-16 21:57 . 2013-12-16 21:57 61952 ----a-w- c:\windows\system32\MshtmlDac.dll

2013-12-16 21:57 . 2013-12-16 21:57 36352 ----a-w- c:\windows\system32\imgutil.dll

2013-12-16 21:57 . 2013-12-16 21:57 86016 ----a-w- c:\windows\system32\iesysprep.dll

2013-12-16 21:57 . 2013-12-16 21:57 74240 ----a-w- c:\windows\system32\SetIEInstalledDate.exe

2013-12-16 21:57 . 2013-12-16 21:57 48640 ----a-w- c:\windows\system32\mshtmler.dll

2013-12-16 21:57 . 2013-12-16 21:57 111616 ----a-w- c:\windows\system32\IEAdvpack.dll

2013-12-03 13:16 . 2012-09-24 11:36 323408 ----a-w- c:\windows\system32\XceedZip.dll

.

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]

@="{472083B0-C522-11CF-8763-00608CC02F24}"

[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]

2014-02-23 14:08 259464 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SybaseCentral43"="c:\top\SQL Anywhere 9\Shared\Sybase Central 4.3\win32\scjview.exe" [2005-03-31 102400]

"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-09-29 39408]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-06-02 9222760]

"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]

"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]

"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-02-23 3767096]

.

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\

HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2009-5-21 275768]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]

path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\McAfee Security Scan Plus.lnk

backup=c:\windows\pss\McAfee Security Scan Plus.lnk.CommonStartup

backupExtension=.CommonStartup

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]

2010-08-25 18:45 171032 ----a-w- c:\windows\System32\hkcmd.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]

2010-08-25 18:45 136216 ----a-w- c:\windows\System32\igfxtray.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LMgrVolOSD]

2009-12-11 13:18 348960 ----a-w- c:\program files\Launch Manager\OSD.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]

2010-08-25 18:45 170520 ----a-w- c:\windows\System32\igfxpers.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]

2012-09-29 14:42 39408 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]

2009-12-11 03:22 1594664 ----a-w- c:\program files\Synaptics\SynTP\SynTPEnh.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Wbutton]

2010-06-21 11:53 436264 ----a-w- c:\program files\Launch Manager\WButton.exe

.

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]

"DBISQL9"="c:\top\SQL Anywhere 9\SQL Anywhere 9\win32\dbisqlg.exe" -preload

"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

"TomTomHOME.exe"="c:\program files\TomTom HOME 2\TomTomHOMERunner.exe"

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]

"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"HP Software Update"=c:\program files\HP\HP Software Update\HPWuSchd2.exe

"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

"RtHDVBg"=c:\program files\Realtek\Audio\HDA\RtHDVBg.exe /FORPCEE3

.

R2 LiveUpdateSvc;LiveUpdate;c:\program files\IObit\LiveUpdate\LiveUpdate.exe [2013-12-03 2151200]

R3 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys [2014-02-23 64168]

R3 hwusbfake;Huawei DataCard USB Fake;c:\windows\system32\DRIVERS\ewusbfake.sys [x]

R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-02-06 108032]

R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2013-02-09 14848]

R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-05-24 193056]

R3 RTL8192su;%RTL8192su.DeviceDesc.DispName%;c:\windows\system32\DRIVERS\RTL8192su.sys [2009-12-29 583680]

R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2013-02-09 49664]

R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-09-19 1343400]

R3 WisLMSvc;WisLMSvc;c:\program files\Launch Manager\WisLMSvc.exe [2009-10-22 118560]

R4 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\3.8.141\McCHSvc.exe [2014-01-16 235696]

R4 MSSQLServerADHelper100;SQL Active Directory Helper Service;c:\program files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2010-04-03 44896]

R4 RsFx0151;RsFx0151 Driver;c:\windows\system32\DRIVERS\RsFx0151.sys [2011-06-17 240736]

R4 SQLAgent$KLUWER2008R2;SQL Server Agent (KLUWER2008R2);c:\program files\Microsoft SQL Server\MSSQL10_50.KLUWER2008R2\MSSQL\Binn\SQLAGENT.EXE [2011-06-17 370016]

S0 aswRvrt;avast! Revert; [x]

S0 aswVmm;avast! VM Monitor; [x]

S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2014-02-23 775952]

S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2014-02-23 410784]

S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2014-02-23 67824]

S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-03-04 13336]

S2 MBAMScheduler;MBAMScheduler;c:\program files\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-04-04 418376]

S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2013-04-04 701512]

S2 MSSQL$KLUWER2008R2;SQL Server (KLUWER2008R2);c:\program files\Microsoft SQL Server\MSSQL10_50.KLUWER2008R2\MSSQL\Binn\sqlservr.exe [2011-06-17 43040096]

S2 NitroReaderDriverReadSpool3;NitroPDFReaderDriverCreatorReadSpool3;c:\program files\Nitro\Reader 3\NitroPDFReaderDriverService3.exe [2013-03-26 196624]

S2 Realtek11nSU;Realtek11nSU;c:\program files\Realtek\11n USB Wireless LAN Utility\RtlService.exe [2009-12-07 40960]

S2 TeamViewer8;TeamViewer 8;c:\program files\TeamViewer\Version8\TeamViewer_Service.exe [2014-02-07 5093216]

S2 TomTomHOMEService;TomTomHOMEService;c:\program files\TomTom HOME 2\TomTomHOMEService.exe [2013-08-27 93072]

S2 UNS;Intel® Management & Security Application User Notification Service;c:\program files\Intel\Intel® Management Engine Components\UNS\UNS.exe [2009-12-10 2320920]

S3 cxbu0wdm;OMNIKEY 3x21;c:\windows\system32\DRIVERS\cxbu0wdm.sys [2013-03-22 126592]

S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2010-02-26 132480]

S3 IntcDAud;Intel® Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-02-03 232960]

S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x86.sys [2010-03-04 67624]

S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-04-04 22856]

S3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;c:\windows\system32\DRIVERS\rtl8192se.sys [2010-04-01 1009184]

S3 X10Hid;X10 Hid Device;c:\windows\System32\Drivers\x10hid.sys [2009-05-13 13720]

.

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12

hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc

.

Inhoud van de 'Gedeelde Taken' map

.

2014-02-23 c:\windows\Tasks\Adobe Flash Player Updater.job

- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-29 16:32]

.

2014-02-23 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files\Google\Update\GoogleUpdate.exe [2012-06-18 20:13]

.

2014-02-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files\Google\Update\GoogleUpdate.exe [2012-06-18 20:13]

.

.

------- Bijkomende Scan -------

.

uStart Page = hxxp://www.google.be/

IE: {{0B65DCC9-1740-43dc-B19C-4F309FB6A6CA} - Elektronica, auto's, kleding, verzamelobjecten, cadeaubons en meer | eBay

Trusted Zone: fgov.be

Trusted Zone: fgov.be\*.minfin

Trusted Zone: fgov.be\ccff02.minfin

Trusted Zone: fgov.be\minfin

Trusted Zone: nbb.be\cbso

Trusted Zone: nbb.be\www

Trusted Zone: nespresso.com\nesclub

TCP: DhcpNameServer = 195.130.131.4 195.130.130.132

FF - ProfilePath - c:\users\Nancy\AppData\Roaming\Mozilla\Firefox\Profiles\kel9af6g.default\

FF - prefs.js: browser.startup.homepage - hxxp://www.google.be/

.

- - - - ORPHANS VERWIJDERD - - - -

.

HKU-Default-Run-Advanced SystemCare 7 - c:\program files\IObit\Advanced SystemCare 7\ASCTray.exe

SafeBoot-BsScanner

MSConfigStartUp-CLMLServer - c:\program files\CyberLink\Power2Go\CLMLSvc.exe

MSConfigStartUp-MapsGalaxy Search Scope Monitor - c:\progra~1\MAPSGA~2\bar\1.bin\39srchmn.exe

MSConfigStartUp-MapsGalaxy_39 Browser Plugin Loader - c:\progra~1\MAPSGA~2\bar\1.bin\39brmon.exe

MSConfigStartUp-VideoDownloadConverter Search Scope Monitor - c:\progra~1\videod~2\bar\1.bin\4zsrchmn.exe

MSConfigStartUp-VideoDownloadConverter_4z Browser Plugin Loader - c:\progra~1\VIDEOD~2\bar\1.bin\4zbrmon.exe

MSConfigStartUp-vProt - c:\program files\avg secure search\vprot.exe

.

.

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

------------------------ Andere Aktieve Processen ------------------------

.

c:\program files\AVAST Software\Avast\AvastSvc.exe

c:\windows\system32\taskhost.exe

c:\program files\Intel\Intel® Management Engine Components\LMS\LMS.exe

c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe

c:\program files\Common Files\Protexis\License Service\PsiService_2.exe

c:\program files\Microsoft SQL Server\90\Shared\sqlbrowser.exe

c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe

c:\program files\Realtek\11n USB Wireless LAN Utility\RtWlan.exe

c:\progra~1\COMMON~1\X10\Common\x10nets.exe

c:\windows\servicing\TrustedInstaller.exe

c:\windows\system32\conhost.exe

c:\program files\HP\Digital Imaging\bin\hpqSTE08.exe

c:\program files\HP\Digital Imaging\bin\hpqbam08.exe

c:\program files\HP\Digital Imaging\bin\hpqgpc01.exe

c:\program files\Windows Media Player\wmpnetwk.exe

c:\program files\windows defender\MpCmdRun.exe

.

**************************************************************************

.

Voltooingstijd: 2014-02-25 17:29:44 - machine werd herstart

ComboFix-quarantined-files.txt 2014-02-25 16:29

.

Pre-Run: 381.328.760.832 bytes beschikbaar

Post-Run: 380.439.085.056 bytes beschikbaar

.

- - End Of File - - E570770C13F037F6464C86693E4CC120

4624822E540EC83CD0819525C65846BA

Link naar reactie
Delen op andere sites

Download CCleaner. (Als je het nog niet hebt)

Installeer het (als je niet wilt dat Google Chrome op je PC als standaard-webbrowser wordt geïnstalleerd, moet je de 2 vinkjes wegdoen !!!) en start CCleaner op.

Klik in de linkse kolom op “Cleaner”.

Klik achtereenvolgens op ‘Analyseren’ en na de analyse op 'Schoonmaken'.

Klik vervolgens in de linkse kolom op “Register” en klik op ‘Scan naar problemen”.

Als er fouten gevonden worden klik je op ”Herstel geselecteerde problemen” en ”OK”.

Dan krijg je de vraag om een back-up te maken. Klik op “JA”.

Kies dan “Herstel alle geselecteerde fouten”.

Soms is 1 analyse niet voldoende. Deze procedure mag je herhalen tot de analyse geen fouten meer aangeeft.

Klik hierna in de linkse kolom op "Gereedschap". Klik achtereenvolgens op "Opstarten".

Selecteer het tabblad Windows.

Klik vervolgens rechtsonder in het programmavenster op "Opslaan als tekstdocument..."

Browse naar de door jou gewenste locatie en klik op "Opslaan"

Voeg dit tekstbestand toe in je volgende bericht.

Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.