Vraag & Antwoord

Beveiliging & privacy

pc weer traag

Anoniem
kloassie
14 antwoorden
  • hoi de pc/muis is soms zeer traag in beeld en kan dan haast niks meer doen duurt een tijdje en dan is het weer goed
    heb een hijackthiss log wie kan me helpen



    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 20:27:15, on 14-10-2012
    Platform: Windows 7 SP1 (WinNT 6.00.3505)
    MSIE: Internet Explorer v9.00 (9.00.8112.16450)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\taskhost.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\Dwm.exe
    C:\Program Files\Alwil Software\Avast5\AvastUI.exe
    C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe
    C:\Program Files\Unlocker\UnlockerAssistant.exe
    C:\Program Files\Common Files\Java\Java Update\jusched.exe
    C:\Program Files\DAEMON Tools Lite\DTLite.exe
    C:\Program Files\Secunia\PSI\psi_tray.exe
    C:\Program Files\SpacialAudio\SimpleCast\SimpleCast.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
    C:\Windows\system32\DllHost.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=c485df33000000000000001bfc564fcd&tlver=1.4.19.19&affID=17160
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
    O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
    O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
    O2 - BHO: WOT Helper - {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files\WOT\WOT.dll
    O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
    O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
    O3 - Toolbar: WOT - {71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files\WOT\WOT.dll
    O3 - Toolbar: Nero Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
    O3 - Toolbar: (no name) - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - (no file)
    O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll
    O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
    O4 - HKLM\..\Run: [NBAgent] "C:\Program Files\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
    O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent
    O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
    O4 - Global Startup: Secunia PSI Tray.lnk = C:\Program Files\Secunia\PSI\psi_tray.exe
    O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
    O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
    O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    O16 - DPF: {E55FD215-A32E-43FE-A777-A7E8F165F560} (Flatcast Viewer 5.2) - http://download.flatcast.net/objects/NpFv522.dll
    O16 - DPF: {E55FD215-A32E-43FE-A777-A7E8F165F561} (Flatcast Viewer 5.3) - http://download.flatcast.net/objects/NpFv530.dll
    O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab
    O18 - Protocol: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files\WOT\WOT.dll
    O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
    O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
    O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
    O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
    O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe
    O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe


    End of file - 6115 bytes
  • Hoi, je hebt weer het een en ander erbij gekregen in Windows!

  • de eerste log

    # AdwCleaner v2.005 - Verslag gemaakt op 15/10/2012 om 09:10:51
    # Geactualiseerd op 14/10/2012 door Xplode
    # Besturingssysteem : Windows 7 Home Premium Service Pack 1 (32 bits)
    # Gebruiker : kloassie - KLOASSIE-PC
    # Opstarten Modus : Normale modus
    # Gelanceerd vanaf : C:\Users\kloassie\Desktop\adwcleaner.exe
    # Optie [Verwijderen]


    ***** [Diensten] *****


    ***** [Files / Mappen] *****

    File Verwijdert : C:\Users\kloassie\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\QuickStores.url
    File Verwijdert : C:\Users\kloassie\AppData\Roaming\Microsoft\Windows\Start Menu\QuickStores.url
    Map Verwijdert : C:\Program Files\Ask.com
    Map Verwijdert : C:\ProgramData\blekko toolbars
    Map Verwijdert : C:\Users\kloassie\AppData\LocalLow\BabylonToolbar
    Map Verwijdert : C:\Users\kloassie\AppData\Roaming\Mozilla\Firefox\Profiles\unvmwodt.default\extensions\ffxtlbr@babylon.com
    Map Verwijdert : C:\Users\kloassie\AppData\Roaming\Mozilla\Firefox\Profiles\unvmwodt.default\extensions\toolbar@ask.com
    Map Verwijdert : C:\Windows\assembly\GAC_MSIL\QuickStoresToolbar
    Map Verwijdert : C:\Windows\Installer\{86D4B82A-ABED-442A-BE86-96357B70F4FE}

    ***** [Register] *****

    Sleutel Verwijdert : HKCU\Software\AppDataLow\AskBarDis
    Sleutel Verwijdert : HKCU\Software\AppDataLow\AskToolbarInfo
    Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\AskToolbar
    Sleutel Verwijdert : HKCU\Software\AppDataLow\Software\Conduit
    Sleutel Verwijdert : HKCU\Software\Ask.com
    Sleutel Verwijdert : HKCU\Software\Conduit
    Sleutel Verwijdert : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1F096B29-E9DA-4D64-8D63-936BE7762CC5}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AD22EBAF-0D18-4FC7-90CC-5EA0ABBE9EB8}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{2EECD738-5844-4A99-B4B6-146BF802613B}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{2EECD738-5844-4A99-B4B6-146BF802613B}
    Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
    Sleutel Verwijdert : HKCU\Software\Softonic
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{9B0CB95C-933A-4B8C-B6D4-EDCD19A43874}
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\escort.DLL
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\GenericAskToolbar.DLL
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{00000000-6E41-4FD3-8538-502F5495E5FC}
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{2EECD738-5844-4A99-B4B6-146BF802613B}
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{E46C8196-B634-44A1-AF6E-957C64278AB1}
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Conduit.Engine
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\GenericAskToolbar.ToolbarWnd.1
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Installer\Features\A28B4D68DEBAA244EB686953B7074FEF
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Installer\Products\A28B4D68DEBAA244EB686953B7074FEF
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{6C434537-053E-486D-B62A-160059D9D456}
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{91CF619A-4686-4CA4-9232-3B2E6B63AA92}
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{AC71B60E-94C9-4EDE-BA46-E146747BB67E}
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Toolbar.CT2801948
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{09C554C3-109B-483C-A06B-F14172F1A947}
    Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}
    Sleutel Verwijdert : HKLM\Software\Conduit
    Sleutel Verwijdert : HKLM\SOFTWARE\Google\Chrome\Extensions\dhkplhfnhceodhffomolpfigojocbpcb
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{AFDBDDAA-5D3F-42EE-B79C-185A7020515B}
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\A28B4D68DEBAA244EB686953B7074FEF
    Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{86D4B82A-ABED-442A-BE86-96357B70F4FE}
    Waarde Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}]
    Waarde Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{D4027C7F-154A-4066-A1AD-4243D8127440}]

    ***** [Browsers] *****

    -\\ Internet Explorer v9.0.8112.16421

    Vervangen : [HKLM\SOFTWARE\Microsoft\Internet Explorer\Search - SearchAssistant] = hxxp://search.babylon.com/?babsrc=SP_ss&q={searchTerms}&mntrId=c485df33000000000000001bfc564fcd&tlver=1.4.19.19&affID=17160 –> hxxp://www.google.com

    -\\ Mozilla Firefox v15.0.1 (nl)

    Profielnaam : default
    File : C:\Users\kloassie\AppData\Roaming\Mozilla\Firefox\Profiles\unvmwodt.default\prefs.js

    Verwijdert : user_pref("browser.search.selectedEngine", "Search the web (Babylon)";);
    Verwijdert : user_pref("browser.startup.homepage", "hxxp://search.babylon.com/?babsrc=HP_ss&mntrId=c485df33000000[…]
    Verwijdert : user_pref("extensions.BabylonToolbar.aflt", "orgnl";);
    Verwijdert : user_pref("extensions.BabylonToolbar.bbDpng", 20);
    Verwijdert : user_pref("extensions.BabylonToolbar.cntry", "NL";);
    Verwijdert : user_pref("extensions.BabylonToolbar.firstRun", false);
    Verwijdert : user_pref("extensions.BabylonToolbar.hdrMd5", "AF04EAE8AF3367BA700FD545D0AC1789";);
    Verwijdert : user_pref("extensions.BabylonToolbar.lastActv", "25";);
    Verwijdert : user_pref("extensions.BabylonToolbar.lastDP", 20);
    Verwijdert : user_pref("extensions.BabylonToolbar.lastVrsnTs", "";);
    Verwijdert : user_pref("extensions.BabylonToolbar.mntrFFxVrsn", "15.0";);
    Verwijdert : user_pref("extensions.BabylonToolbar.propectorlck", 86721841);
    Verwijdert : user_pref("extensions.BabylonToolbar.prtkDS", 1);
    Verwijdert : user_pref("extensions.BabylonToolbar.prtkHmpg", 1);
    Verwijdert : user_pref("extensions.BabylonToolbar.smplGrp", "tzb";);
    Verwijdert : user_pref("extensions.enabledAddons", "ffxtlbr@babylon.com:1.1.9,{19503e42-ca3c-4c27-b1e2-9cdb2170ee[…]
    Verwijdert : user_pref("keyword.URL", "hxxp://search.babylon.com/?babsrc=SP_ss&mntrId=c485df33000000000000001bfc5[…]
    Verwijdert : user_pref("browser.search.defaultenginename", "Blekko";);
    Verwijdert : user_pref("browser.search.selectedEngine", "Blekko";);
    Verwijdert : user_pref("browser.search.order.1", "Blekko";);
    Verwijdert : user_pref("keyword.URL", "hxxp://blekko.com/ws/?source=c3348dd4&tbp=rbox&toolbarid=blekkotb_031&u=6E[…]

    -\\ Google Chrome v [Onmogelijk de versie te verkrijgen]

    File : C:\Users\kloassie\AppData\Local\Google\Chrome\User Data\Default\Preferences

    Verwijdert [l.8] : homepage = "hxxp://blekko.com/ws/?source=c3348dd4&toolbarid=blekkotb_031&u=6E58A479CC44632E66B160505B5121D5&tbp=homepage",
    Verwijdert [l.12] : urls_to_restore_on_startup = [ "hxxp://blekko.com/ws/?source=c3348dd4&toolbarid=blekkotb_031&u=6E58A479CC44632E66B160505B5121D5&tbp=homepage", "hxxp://www.google.com" ]
    Verwijdert [l.1162] : homepage = "hxxp://blekko.com/ws/?source=c3348dd4&toolbarid=blekkotb_031&u=6E58A479CC44632E66B160505B5121D5&tbp=homepage",
    Verwijdert [l.1321] : urls_to_restore_on_startup = [ "hxxp://blekko.com/ws/?source=c3348dd4&toolbarid=blekkotb_031&u=6E58A479CC44632E66B160505B5121D5&tbp=homepage", "hxxp://www.google.com" ]

    *************************

    AdwCleaner[S1].txt - [8465 octets] - [15/10/2012 09:10:51]

    ########## EOF - C:\AdwCleaner[S1].txt - [8525 octets] ##########
  • en de combo log


    ComboFix 12-10-14.03 - kloassie 15-10-2012 9:25.2.2 - x86
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.1023.170 [GMT 2:00]
    Gestart vanuit: c:\users\kloassie\Desktop\ComboFix.exe
    AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
    SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    .
    (((((((((((((((((((( Bestanden Gemaakt van 2012-09-15 to 2012-10-15 ))))))))))))))))))))))))))))))
    .
    .
    2012-10-15 07:39 . 2012-10-15 07:39 ——– d—–w- c:\users\Public\AppData\Local\temp
    2012-10-15 07:39 . 2012-10-15 07:39 ——– d—–w- c:\users\Default\AppData\Local\temp
    2012-10-15 07:31 . 2012-10-15 07:31 56200 —-a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{3576D78C-BF1F-439A-9296-47D23D38F8E3}\offreg.dll
    2012-10-14 18:22 . 2012-10-14 18:22 388096 —-a-r- c:\users\kloassie\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
    2012-10-14 18:22 . 2012-10-14 18:22 ——– d—–w- c:\program files\Trend Micro
    2012-10-12 13:06 . 2012-08-30 08:17 6980552 —-a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{3576D78C-BF1F-439A-9296-47D23D38F8E3}\mpengine.dll
    2012-10-09 20:50 . 2012-08-24 16:57 172544 —-a-w- c:\windows\system32\wintrust.dll
    2012-10-09 20:49 . 2012-09-14 18:28 2048 —-a-w- c:\windows\system32\tzres.dll
    2012-10-09 20:47 . 2012-08-20 15:33 4608 —ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
    2012-10-09 20:47 . 2012-08-20 15:33 3072 —ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
    2012-10-09 20:47 . 2012-08-20 15:33 6144 —ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
    2012-10-09 20:47 . 2012-08-20 17:32 4096 —ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
    2012-10-09 20:47 . 2012-08-20 17:32 3072 —ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
    2012-10-09 20:45 . 2012-06-02 04:36 1159680 —-a-w- c:\windows\system32\crypt32.dll
    2012-10-09 20:45 . 2012-06-02 04:36 140288 —-a-w- c:\windows\system32\cryptsvc.dll
    2012-10-09 20:45 . 2012-06-02 04:36 103936 —-a-w- c:\windows\system32\cryptnet.dll
    2012-10-09 20:42 . 2012-08-31 17:18 1211760 —-a-w- c:\windows\system32\drivers\ntfs.sys
    2012-10-09 20:42 . 2012-08-10 23:56 542208 —-a-w- c:\windows\system32\kerberos.dll
    2012-10-09 20:39 . 2012-08-30 17:12 3914096 —-a-w- c:\windows\system32\ntoskrnl.exe
    2012-10-09 20:39 . 2012-08-30 17:12 3968880 —-a-w- c:\windows\system32\ntkrnlpa.exe
    2012-09-26 06:27 . 2012-08-21 20:12 245760 —-a-w- c:\windows\system32\OxpsConverter.exe
    2012-09-22 19:25 . 2012-08-24 06:53 678912 —-a-w- c:\program files\Internet Explorer\iedvtool.dll
    2012-09-22 19:25 . 2012-08-24 06:51 1427968 —-a-w- c:\windows\system32\inetcpl.cpl
    2012-09-21 12:41 . 2012-05-04 09:59 514560 —-a-w- c:\windows\system32\qdvd.dll
    2012-09-20 17:23 . 2012-09-20 17:23 ——– d—–w- c:\users\kloassie\AppData\Local\blekkotb_031
    2012-09-20 16:58 . 2012-09-20 16:58 ——– d—–w- c:\program files\Mozilla Maintenance Service
    .
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2012-10-08 18:45 . 2012-03-30 09:41 696760 —-a-w- c:\windows\system32\FlashPlayerApp.exe
    2012-10-08 18:45 . 2011-05-16 15:19 73656 —-a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2012-09-07 20:33 . 2012-09-07 20:33 93672 —-a-w- c:\windows\system32\WindowsAccessBridge.dll
    2012-09-07 20:33 . 2012-06-26 20:28 821736 —-a-w- c:\windows\system32\npdeployJava1.dll
    2012-09-07 20:33 . 2011-03-02 14:07 746984 —-a-w- c:\windows\system32\deployJava1.dll
    2012-09-07 15:04 . 2011-01-03 12:51 22856 —-a-w- c:\windows\system32\drivers\mbam.sys
    2012-08-22 17:16 . 2012-09-12 12:57 1292144 —-a-w- c:\windows\system32\drivers\tcpip.sys
    2012-08-22 17:16 . 2012-09-12 12:57 712048 —-a-w- c:\windows\system32\drivers\ndis.sys
    2012-08-22 17:16 . 2012-09-12 12:57 240496 —-a-w- c:\windows\system32\drivers\netio.sys
    2012-08-22 17:16 . 2012-09-12 12:57 187760 —-a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
    2012-08-21 09:13 . 2011-06-01 15:49 729752 —-a-w- c:\windows\system32\drivers\aswSnx.sys
    2012-08-21 09:13 . 2011-01-03 12:05 355632 —-a-w- c:\windows\system32\drivers\aswSP.sys
    2012-08-21 09:13 . 2011-01-03 12:05 54232 —-a-w- c:\windows\system32\drivers\aswTdi.sys
    2012-08-21 09:13 . 2012-02-26 07:16 44784 —-a-w- c:\windows\system32\drivers\aswRdr2.sys
    2012-08-21 09:13 . 2011-01-03 12:05 58680 —-a-w- c:\windows\system32\drivers\aswMonFlt.sys
    2012-08-21 09:13 . 2011-01-03 12:05 21256 —-a-w- c:\windows\system32\drivers\aswFsBlk.sys
    2012-08-21 09:12 . 2011-01-03 12:04 41224 —-a-w- c:\windows\avastSS.scr
    2012-08-21 09:12 . 2011-01-03 12:04 227648 —-a-w- c:\windows\system32\aswBoot.exe
    2012-08-02 16:57 . 2012-09-12 12:57 490496 —-a-w- c:\windows\system32\d3d10level9.dll
    2012-07-18 17:47 . 2012-08-15 05:03 2345984 —-a-w- c:\windows\system32\win32k.sys
    2012-09-06 01:26 . 2012-09-20 16:58 266720 —-a-w- c:\program files\mozilla firefox\components\browsercomps.dll
    .
    .
    ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
    @="{472083B0-C522-11CF-8763-00608CC02F24}"
    [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
    2012-08-21 09:12 121528 —-a-w- c:\program files\Alwil Software\Avast5\ashShell.dll
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "NBAgent"="c:\program files\Nero\Nero 10\Nero BackItUp\NBAgent.exe" [2010-03-26 1234216]
    "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
    "UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2010-07-04 17408]
    "SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
    .
    c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
    Secunia PSI Tray.lnk - c:\program files\Secunia\PSI\psi_tray.exe [2010-12-21 291896]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 5 (0x5)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableUIADesktopToggle"= 0 (0x0)
    "EnableLinkedConnections"= 1 (0x1)
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
    "aux"=wdmaud.drv
    .
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
    Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
    .
    R2 gupdate;Google Update-service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [x]
    R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [x]
    R3 gupdatem;Google Update-service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [x]
    R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [x]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
    R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [x]
    S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
    S1 aswSnx;aswSnx; [x]
    S1 aswSP;aswSP; [x]
    S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
    S2 aswFsBlk;aswFsBlk; [x]
    S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
    S2 NAUpdate;Nero Update;c:\program files\Nero\Update\NASvc.exe [x]
    S2 Secunia PSI Agent;Secunia PSI Agent;c:\program files\Secunia\PSI\PSIA.exe [x]
    S2 Secunia Update Agent;Secunia Update Agent;c:\program files\Secunia\PSI\sua.exe [x]
    S3 FETND6V;VIA Rhine Family Fast Ethernet Adapter Driver;c:\windows\system32\DRIVERS\fetnd6v.sys [x]
    S3 PSI;PSI;c:\windows\system32\DRIVERS\psi_mf.sys [x]
    .
    .
    Inhoud van de 'Gedeelde Taken' map
    .
    2012-10-15 c:\windows\Tasks\Adobe Flash Player Updater.job
    - c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-26 18:45]
    .
    2012-10-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files\Google\Update\GoogleUpdate.exe [2012-09-04 07:45]
    .
    2012-10-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files\Google\Update\GoogleUpdate.exe [2012-09-04 07:45]
    .
    .
    ——- Bijkomende Scan ——-
    .
    uStart Page = hxxp://www.google.nl/
    TCP: DhcpNameServer = 212.54.35.25 212.54.40.25
    DPF: {E55FD215-A32E-43FE-A777-A7E8F165F560} - hxxp://download.flatcast.net/objects/NpFv522.dll
    DPF: {E55FD215-A32E-43FE-A777-A7E8F165F561} - hxxp://download.flatcast.net/objects/NpFv530.dll
    FF - ProfilePath - c:\users\kloassie\AppData\Roaming\Mozilla\Firefox\Profiles\unvmwodt.default\
    FF - prefs.js: keyword.URL - hxxp://www.google.com/search?btnI=I%27m+Feeling+Lucky&ie=UTF-8&oe=UTF-8&q=
    FF - ExtSQL: 2012-09-20 19:04; anttoolbar@ant.com; c:\users\kloassie\AppData\Roaming\Mozilla\Firefox\Profiles\unvmwodt.default\extensions\anttoolbar@ant.com
    .
    .
    ——————— VERGRENDELDE REGISTER SLEUTELS ———————
    .
    [HKEY_USERS\S-1-5-21-3975068280-2874374618-3581001523-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
    @Denied: (2) (LocalSystem)
    "Progid"="WindowsLiveMail.Email.1"
    .
    [HKEY_USERS\S-1-5-21-3975068280-2874374618-3581001523-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
    @Denied: (2) (LocalSystem)
    "Progid"="WindowsLiveMail.VCard.1"
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    Voltooingstijd: 2012-10-15 09:43:49
    ComboFix-quarantined-files.txt 2012-10-15 07:43
    ComboFix2.txt 2011-04-12 09:40
    .
    Pre-Run: 150.919.872.512 bytes beschikbaar
    Post-Run: 150.647.685.120 bytes beschikbaar
    .
    - - End Of File - - 889EF27864938B06EAD584003C9E3648
  • Hoe staat het ondertussen met het muisprobleem?
  • tot nu toe goed ,geen last meer gehad.

    mag ik je wederom bedanken voor je hulp
  • hoi ik heb even te vroeg gejuichd ,hij doet nog steeds raar ,gaat uitzichzelf de pagina`s verversen en kan de muis dan haast niet bewegen door het scherm!Moet dan eerst de paginas wegklikken als dit al lukt en daarna doet hij het wel weer
  • Wat voor muis is het?
    Gedraad of draadloos?
  • hoi het is een muis met draad
  • Betreft het een desktop PC of een notebook?
  • het is een gewone pc ,en klop nu met de muis even hard op de tafel en idd dan doet hij het wel gewoon.
  • Dan kan het vervuiling zijn onder de klik gedeelten.
    Hoe oud is die muis al?
  • de muis is wel een paar jaar oud
  • Ik heb al een poosje deze muis: http://www.alternate.nl/html/product/Logitech/M500/151244/?tk=7&lk=4047

    Bevalt perfekt.

Beantwoord deze vraag

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.