Vertraagde laptop met popups.

[Juisterr]

Wat kan je nog wel doen?


Probeer dit eens.

Download HitmanPro

[frankie3]

Ik heb hem zojuist terug kunnen zetten naar een eerder herstel punt toen ik me laptop opnieuw opstartte.
enige problemen die ik nu nog heb is:
Miss nog wat virussen of andere troep die op me laptop staan
en me Windows auto updater doet het niet (kan geen verbinding maken)

groeten

[Juisterr]

Lees mijn vorige bericht even aub.

[frankie3]

gedownload en is nu aan voor 2e keer aan het scannen
ik kan hem 30 dagen gratis geregistreerd gebruiken.

[frankie3]

als goed is is dit de log

- <Log computer="FRANKHOMELAPTOP" scan="Normal" version="3.5.6.111" date="2010-08-29T16:44:14" timeSpentInSecs="133" filesProcessed="25386">
- <Item type="Repair" score="0.0" status="None">
<File path="$tdl3.sticky" />

</Item>


- <Item type="Repair" score="0.0" status="DeleteFailed">
<File path="C:\Users\Frank\AppData\Roaming\Microsoft\Windows\C ookies\frank@atdmt[1].txt" />

</Item>


- <Item type="Repair" score="0.0" status="DeleteFailed">
<File path="C:\Users\Frank\AppData\Roaming\Microsoft\Windows\C ookies\frank@atdmt[2].txt" />

</Item>


- <Item type="Repair" score="0.0" status="DeleteFailed">
<File path="C:\Users\Frank\AppData\Roaming\Microsoft\Windows\C ookies\frank@serving-sys[1].txt" />

</Item>


- <Item type="Repair" score="0.0" status="DeleteFailed">
<File path="C:\Users\Frank\AppData\Roaming\Microsoft\Windows\C ookies\frank@serving-sys[2].txt" />

</Item>


- <Item type="Suspicious" score="32.0" status="Deleted">
<File path="C:\Windows\system32\config\systemprofile\userinit. exe" hash="1ADF3F1DA48A4DEE7FE74FB9EF2D899C8754C51CA53506CC63 E7221747D4FD7A" />

</Item>


</Log>

[frankie3]

Log 2

<Log computer="FRANKHOMELAPTOP" scan="Normal" version="3.5.6.111" date="2010-08-29T16:51:29" timeSpentInSecs="145" filesProcessed="26458">
- <Item type="Repair" score="0.0" status="None">
<File path="$tdl3.sticky" />

</Item>


- <Item type="Repair" score="0.0" status="Deleted">
<File path="C:\Users\Frank\AppData\Roaming\Microsoft\Windows\C ookies\frank@atdmt[1].txt" />

</Item>


- <Item type="Repair" score="0.0" status="DeleteFailed">
<File path="C:\Users\Frank\AppData\Roaming\Microsoft\Windows\C ookies\frank@atdmt[2].txt" />

</Item>


- <Item type="Repair" score="0.0" status="DeleteFailed">
<File path="C:\Users\Frank\AppData\Roaming\Microsoft\Windows\C ookies\frank@atdmt[6].txt" />

</Item>


- <Item type="Repair" score="0.0" status="DeleteFailed">
<File path="C:\Users\Frank\AppData\Roaming\Microsoft\Windows\C ookies\frank@serving-sys[1].txt" />

</Item>


- <Item type="Repair" score="0.0" status="DeleteFailed">
<File path="C:\Users\Frank\AppData\Roaming\Microsoft\Windows\C ookies\frank@serving-sys[2].txt" />

</Item>


</Log>

[Juisterr]

Enige verbetering ?

[frankie3]

Nou ik heb tot nu toe maar 1 pop up gehad van een of andere casino en ik heb nog steeds problemen met auto update van windows

[Juisterr]

Laat combofix nogmaals runnen aub en plaats de uitslag aub.

[frankie3]

ComboFix 10-09-01.04 - Frank 02-09-2010 23:21:08.1.2 - x86
Microsoft Windows 7 Professional 6.1.7600.0.1252.31.1043.18.3067.2026 [GMT 2:00]
Gestart vanuit: c:\users\Frank\Desktop\ComboFix.exe
* Nieuw herstelpunt werd aangemaakt
.

(((((((((((((((((((( Bestanden Gemaakt van 2010-08-02 to 2010-09-02 ))))))))))))))))))))))))))))))
.

2010-09-02 21:29 . 2010-09-02 21:30 -------- d-----w- c:\users\Frank\AppData\Local\temp
2010-09-02 21:29 . 2010-09-02 21:29 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-08-30 15:54 . 2010-08-30 15:54 -------- d-----w- c:\program files\Common Files\Java
2010-08-30 05:37 . 2010-08-30 05:37 2560 ----a-w- c:\windows\_MSRSTRT.EXE
2010-08-29 20:36 . 2010-08-29 20:36 -------- d-----w- c:\users\Frank\AppData\Local\Apple Computer
2010-08-29 14:43 . 2010-08-29 14:47 12872 ----a-w- c:\windows\system32\bootdelete.exe
2010-08-29 14:31 . 2010-08-29 21:06 16968 ----a-w- c:\windows\system32\drivers\hitmanpro35.sys
2010-08-29 14:31 . 2010-08-29 14:43 -------- d-----w- c:\programdata\Hitman Pro
2010-08-29 14:31 . 2010-08-29 14:31 -------- d-----w- c:\program files\Hitman Pro 3.5
2010-08-29 14:27 . 2010-09-01 18:43 -------- d-----w- c:\users\Frank\AppData\Roaming\Spotify
2010-08-29 14:27 . 2010-09-01 18:43 -------- d-----w- c:\users\Frank\AppData\Local\Spotify
2010-08-29 14:27 . 2010-08-29 14:27 655360 ----a-w- c:\users\Frank\AppData\Roaming\Spotify\Gracenote\g nsdk_sdkmanager.dll
2010-08-29 14:27 . 2010-08-29 14:27 282624 ----a-w- c:\users\Frank\AppData\Roaming\Spotify\Gracenote\g nsdk_musicid_file.dll
2010-08-29 14:27 . 2010-08-29 14:27 208896 ----a-w- c:\users\Frank\AppData\Roaming\Spotify\Gracenote\g nsdk_dsp.dll
2010-08-29 14:27 . 2010-08-29 14:27 -------- d-----w- c:\program files\Spotify
2010-08-29 14:26 . 2010-06-02 02:55 74072 ----a-w- c:\windows\system32\XAPOFX1_5.dll
2010-08-29 14:26 . 2010-06-02 02:55 527192 ----a-w- c:\windows\system32\XAudio2_7.dll
2010-08-29 14:26 . 2010-06-02 02:55 239960 ----a-w- c:\windows\system32\xactengine3_7.dll
2010-08-29 14:26 . 2010-05-26 09:41 2106216 ----a-w- c:\windows\system32\D3DCompiler_43.dll
2010-08-29 14:26 . 2010-05-26 09:41 1868128 ----a-w- c:\windows\system32\d3dcsx_43.dll
2010-08-16 14:20 . 2010-08-29 14:25 -------- d--h--w- c:\windows\msdownld.tmp
2010-08-16 14:20 . 2010-08-29 14:25 -------- d-----w- c:\program files\XBMC
2010-08-14 19:16 . 2010-08-29 12:51 -------- d-----w- c:\program files\K-Lite Codec Pack
2010-08-14 18:18 . 2010-08-14 18:19 -------- d-----w- c:\program files\Uniblue
2010-08-14 18:15 . 2010-08-29 18:01 -------- d-----w- c:\program files\AutoUnpack
2010-08-14 17:35 . 2010-08-14 17:35 -------- d-----w- c:\programdata\Uniblue
2010-08-14 17:32 . 2010-08-14 18:19 -------- d-----w- c:\users\Frank\AppData\Roaming\Uniblue
2010-08-12 13:33 . 2010-08-12 13:33 -------- d-----w- c:\program files\Trend Micro
2010-08-12 11:01 . 2010-08-12 13:31 -------- d-----w- c:\program files\Emsisoft Anti-Malware
2010-08-11 21:24 . 2010-08-29 12:51 -------- d-----w- c:\program files\Common Files\PC Tools
2010-08-05 20:56 . 2010-08-05 20:56 -------- d-----w- c:\programdata\NVIDIA Corporation
2010-08-05 11:34 . 2010-04-21 10:06 52224 ----a-w- c:\users\Frank\AppData\Roaming\Mozilla\Firefox\Pro files\tp0er5ib.default\extensions\{b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}\components\FFExternalAlert.dll
2010-08-05 11:34 . 2010-04-21 10:06 101376 ----a-w- c:\users\Frank\AppData\Roaming\Mozilla\Firefox\Pro files\tp0er5ib.default\extensions\{b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}\components\RadioWMPCore.dll
2010-08-05 11:34 . 2010-08-29 12:51 -------- d-----w- c:\program files\myBabylon_English
2010-08-05 11:34 . 2010-08-29 12:51 -------- d-----w- c:\program files\VLC Player
2010-08-04 21:02 . 2010-08-04 21:04 -------- d-----w- c:\users\Frank\AppData\Roaming\Media Player Classic

.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))) ))
.
2010-09-02 21:25 . 2009-07-14 08:27 691728 ----a-w- c:\windows\system32\perfh013.dat
2010-09-02 21:25 . 2009-07-14 08:27 130232 ----a-w- c:\windows\system32\perfc013.dat
2010-09-02 08:41 . 2010-03-09 08:35 0 ----a-w- c:\users\Frank\AppData\Local\prvlcl.dat
2010-08-31 21:22 . 2010-03-03 09:52 -------- d-----w- c:\users\Frank\AppData\Roaming\GrabIt
2010-08-31 19:30 . 2010-08-29 14:25 -------- d-----w- c:\users\Frank\AppData\Roaming\XBMC
2010-08-30 21:21 . 2010-04-12 10:42 -------- d-----w- c:\users\Frank\AppData\Roaming\vlc
2010-08-30 15:54 . 2010-03-03 14:41 -------- d-----w- c:\program files\Java
2010-08-30 05:39 . 2010-03-03 18:17 -------- d-----w- c:\users\Frank\AppData\Roaming\LimeWire
2010-08-30 05:38 . 2010-07-31 23:41 -------- d-----w- c:\program files\Softonic-Eng7
2010-08-29 14:02 . 2010-08-29 14:02 -------- d-----w- c:\program files\QuickTime
2010-08-29 12:51 . 2010-03-04 15:15 -------- d-----w- c:\users\Frank\AppData\Roaming\uTorrent
2010-08-29 12:51 . 2010-03-02 23:35 -------- d-----w- c:\users\Frank\AppData\Roaming\Winamp
2010-08-29 12:51 . 2010-07-20 10:45 -------- d-----w- c:\programdata\FLEXnet
2010-08-29 12:50 . 2010-03-02 22:23 -------- d-----w- c:\programdata\avg9
2010-08-29 12:50 . 2010-04-12 10:40 -------- d-----w- c:\program files\VideoLAN
2010-08-29 12:50 . 2010-03-03 09:34 -------- d-----w- c:\program files\FTDv3.8
2010-08-10 10:10 . 2010-03-02 22:57 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-08-05 20:59 . 2010-03-02 22:11 -------- d-----w- c:\programdata\NVIDIA
2010-08-05 20:56 . 2010-03-02 22:09 -------- d-----w- c:\program files\NVIDIA Corporation
2010-08-01 17:11 . 2010-04-12 10:43 -------- d-----w- c:\users\Frank\AppData\Roaming\dvdcss
2010-08-01 15:22 . 2010-03-20 13:41 -------- d-----w- c:\programdata\DVD Shrink
2010-08-01 15:13 . 2010-07-31 23:41 -------- d-----w- c:\program files\The KMPlayer
2010-07-31 23:41 . 2010-07-31 23:41 -------- d-----w- c:\program files\Conduit
2010-07-28 16:52 . 2010-07-28 16:51 -------- d-----w- c:\program files\iTunes
2010-07-28 16:51 . 2010-07-28 16:51 -------- d-----w- c:\program files\iPod
2010-07-28 16:51 . 2010-04-11 10:36 -------- d-----w- c:\program files\Common Files\Apple
2010-07-28 16:48 . 2010-07-28 16:48 73000 ----a-w- c:\programdata\Apple Computer\Installer Cache\iTunes 9.2.1.5\SetupAdmin.exe
2010-07-27 23:01 . 2010-03-02 18:53 -------- d-----w- c:\program files\Windows Live
2010-07-25 17:01 . 2010-07-25 17:01 -------- d-----w- c:\program files\GrabIt
2010-07-22 12:07 . 2010-07-22 12:07 -------- d-----w- c:\programdata\Hema Album Software Advanced
2010-07-22 12:07 . 2010-07-22 12:07 -------- d-----w- c:\program files\Hema Album Software Advanced
2010-07-20 10:45 . 2010-03-02 18:47 67856 ----a-w- c:\users\Frank\AppData\Local\GDIPFONTCACHEV1.DAT
2010-07-20 10:36 . 2010-03-02 22:36 -------- d-----w- c:\program files\Common Files\Adobe
2010-07-20 10:35 . 2010-07-20 10:35 -------- d-----w- c:\program files\Adobe Media Player
2010-07-20 10:34 . 2010-07-20 10:34 -------- d-----w- c:\program files\Common Files\Adobe AIR
2010-07-20 10:31 . 2010-07-20 10:31 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2010-07-17 03:00 . 2010-07-25 14:05 423656 ----a-w- c:\windows\system32\deployJava1.dll
2010-07-16 12:55 . 2010-03-02 22:24 243024 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2010-07-16 12:55 . 2010-07-16 12:55 12536 ----a-w- c:\windows\system32\avgrsstx.dll
2010-07-16 12:54 . 2010-03-02 22:24 216400 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2010-07-12 14:49 . 2010-03-20 13:47 -------- d-----w- c:\program files\DVD Shrink
2010-07-09 14:20 . 2010-07-09 14:20 110696 ----a-w- c:\windows\system32\nvmctray.dll
2010-07-09 14:20 . 2010-07-09 14:20 261736 ----a-w- c:\windows\system32\nvhotkey.dll
2010-07-09 14:20 . 2010-07-09 14:20 1881704 ----a-w- c:\windows\system32\nvsvcr.dll
2010-07-09 14:20 . 2010-07-09 14:20 1469544 ----a-w- c:\windows\system32\nvsvc.dll
2010-07-09 14:20 . 2010-07-09 14:20 13939816 ----a-w- c:\windows\system32\nvcpl.dll
2010-07-09 14:20 . 2010-07-09 14:20 129640 ----a-w- c:\windows\system32\nvvsvc.exe
2010-06-23 20:58 . 2010-06-23 20:58 71992 ----a-w- c:\programdata\Apple Computer\Installer Cache\Safari 5.33.16.0\SetupAdmin.exe
2010-06-21 22:07 . 2010-08-05 20:54 26216 ----a-w- c:\windows\system32\nvhdap32.dll
2010-06-21 22:07 . 2010-03-02 22:09 232040 ----a-w- c:\windows\system32\nvcohda.dll
2010-06-21 22:07 . 2010-08-05 20:54 64104 ----a-w- c:\windows\system32\nvapo32v.dll
2010-06-21 22:07 . 2010-08-05 20:54 105576 ----a-w- c:\windows\system32\drivers\nvhda32v.sys
2010-06-08 09:28 . 2010-07-31 23:41 52224 ----a-w- c:\users\Frank\AppData\Roaming\Mozilla\Firefox\Pro files\tp0er5ib.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\components\FFExternalAlert.dll
2010-06-08 09:28 . 2010-07-31 23:41 101376 ----a-w- c:\users\Frank\AppData\Roaming\Mozilla\Firefox\Pro files\tp0er5ib.default\extensions\{414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3}\components\RadioWMPCore.dll
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
2009-12-08 11:33 . 2010-03-04 15:19 37 --sha-w- c:\windows\System32\config\systemprofile\pizda_bku rl.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb 108c86c\WinMail.exe
.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))) )
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}"= "c:\program files\myBabylon_English\tbmyBa.dll" [2010-06-13 2734688]

[HKEY_CLASSES_ROOT\clsid\{b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}]
2010-06-13 17:10 2734688 ----a-w- c:\program files\myBabylon_English\tbmyBa.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}"= "c:\program files\myBabylon_English\tbmyBa.dll" [2010-06-13 2734688]

[HKEY_CLASSES_ROOT\clsid\{b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{B2E293EE-FD7E-4C71-A714-5F4750D8D7B7}"= "c:\program files\myBabylon_English\tbmyBa.dll" [2010-06-13 2734688]

[HKEY_CLASSES_ROOT\clsid\{b2e293ee-fd7e-4c71-a714-5f4750d8d7b7}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2010-04-16 3872080]
"igndlm.exe"="c:\program files\Download Manager\DLM.exe" [2009-10-27 1103216]
"RESTART_STICKY_NOTES"="c:\windows\System32\StikyN ot.exe" [2009-07-14 354304]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\RunOnce]
"FlashPlayerUpdate"="c:\windows\system32\Macromed\ Flash\NPSWF32_FlashUtil.exe" [2010-01-27 256280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"AVG9_TRAY"="c:\progra~1\AVG\AVG9\avgtray.exe" [2010-07-16 2065760]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-06-20 35760]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-06-09 976832]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-08-28 1557800]
"Acer ePower Management"="c:\program files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe" [2009-12-03 494112]
"PLFSetI"="c:\windows\PLFSetI.exe" [2010-03-10 200704]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-03-10 7703072]
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.ex e" [2008-08-14 611712]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2010-07-21 141608]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-08-10 421888]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]

c:\users\Frank\AppData\Roaming\Microsoft\Windows\S tart Menu\Programs\Startup\
LimeWire On Startup.lnk - c:\program files\LimeWire\LimeWire.exe [2010-2-19 503808]
OneNote 2007 Schermopname en Snel starten.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
VPN Client.lnk - c:\windows\Installer\{C91DE044-D900-4F15-BBD1-44FD9D59B277}\Icon3E5562ED7.ico [2010-3-5 6144]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\avgrsstx.dl l

[HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

R3 BthAvrcp;Bluetooth AVRCP-profiel;c:\windows\system32\DRIVERS\BthAvrcp.sys [2009-08-13 22528]
R3 netw5v32;Stuurprogramma voor Intel(R) Wireless WiFi Link 5000 Series-adapter 32-bits Windows Vista;c:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-22 1343400]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-03-20 691696]
S1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\System32\Drivers\avgldx86.sys [2010-07-16 216400]
S1 AvgTdiX;AVG Free Network Redirector;c:\windows\System32\Drivers\avgtdix.sys [2010-07-16 243024]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 avg9emc;AVG Free E-mail Scanner;c:\program files\AVG\AVG9\avgemc.exe [2010-07-21 921952]
S2 avg9wd;AVG Free WatchDog;c:\program files\AVG\AVG9\avgwdsvc.exe [2010-07-16 308136]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [2009-12-03 690720]
S2 ETService;Empowering Technology Service;c:\program files\Acer\Empowering Technology\Service\ETService.exe [2008-08-19 24576]
S3 k57nd60x;Broadcom NetLink Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60x.sys [2009-07-13 229888]
S3 NETw5s32;Intel(R) Wireless WiFi Link adapter stuurprogramma onder Windows 7 32 Bit;c:\windows\system32\DRIVERS\NETw5s32.sys [2009-09-15 6114816]
S3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32v.sys [2010-06-21 105576]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]

.
.
------- Bijkomende Scan -------
.
uStart Page = hxxp://search.babylon.com/home?AF=14542
uInternet Settings,ProxyOverride = *.local
IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~4\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\users\Frank\AppData\Roaming\Mozilla\Firefox\Pro files\tp0er5ib.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.babylon.com/web/{searchTerms}?babsrc=browsersearch&AF=14542
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.nl/
FF - component: c:\program files\AVG\AVG9\Firefox\components\avgssff.dll
FF - plugin: c:\program files\Download Manager\npfpdlm.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\Microsoft\Office Live\npOLW.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npwachk.dll

---- FIREFOX POLICIES ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
- - - - ORPHANS VERWIJDERD - - - -

WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)



************************************************** ************************

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: MBR read successfully
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x86AB1B4C]<<
kernel: MBR read successfully
detected MBR rootkit hooks:
IoDeviceObjectType -> DumpProcedure -> 0xd46a624f
SecurityProcedure -> 0x857c1ad8
QueryNameProcedure -> 0x857c1c68
user & kernel MBR OK

************************************************** ************************
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Cl ass\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PC W\Security]
@Denied: (Full) (Everyone)
.
Voltooingstijd: 2010-09-02 23:32:01
ComboFix-quarantined-files.txt 2010-09-02 21:32
ComboFix2.txt 2010-08-20 10:04

Pre-Run: 364.791.107.584 bytes beschikbaar
Post-Run: 364.740.546.560 bytes beschikbaar

- - End Of File - - D75AAADA9DBA980C8BDA6895EB69CF52