Hallo allemaal,
Ik zit met een raar probleem. Sinds een paar dagen kan ik op bepaalde sites geen filmpjes meer kijken. Zo ben ik fan van dumpert.nl maar kan daar niet meer normaal een filmpje kijken. Ik krijg dan een zwart scherm met "video not found" erin met de naam van het filmpje. De video bestaat wel. (http://www.dumpert.nl/mediabase/6403492/63d0f34f/semmy_schilt_sloopt_badr_hari.html). De ene keer begint het filmpje wel. Scroll ik dan wat verder krijg ik weer dat zwarte schermpje. De andere keer begint het meteen met dat zwarte schermpje. Youtube doet het wel zonder problemen.
Open ik het linkje met internet explorer krijg ik dit:
I@sj~#@t l@t@x@tt-V@tlC@tڬ1&@u R@uA+ I@utnO@uzH@uhr@v-V@vAlC@vt ě@v-@v/w@wnO@wAzH@wtm@w1&x@wp =@x ě@xA-@xu33333@xr Ĝ@x۲-V@ym@yB1&x@yutj~@y9Xb@yE@z33333@zBr Ĝ@zuE@z\)@z5?|@{tj~@{BQ@{u@{7KƧ@{vȴ9X@|E@|B"@|v9XbN@|x@|ܸQ@}@}C;dZ@}vzG@}^5?}@}"@~9XbN@~C|hs@~vj~@~lD@~;dZ@zG@Cvȴ9@vE@=p @|hs@^5?|@"@;vȴ@U?|h@n;dZ@~"@ ě filepositions @4A`A&nA1 A8A>.AAADAGpAJAL]AODAQ @AR|?AS*AUmy@AVAWAXAY@A[:A^EA`0 Aa(@Aa@Ab'`Ac[5`Ad`AdH`Ae1 Af0=`AfO Ag@Ah\̀Ai
Die tekens gaan oneindig door. Ik heb internet afgezocht, kan echt nergens een antwoord vinden. Heb IE gereset, cache geleegd enz enz. Ik weet het niet meer.
MBAM gedownload met dit resultaat:
Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org
Databaseversie: v2012.10.24.06
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Harmen :: HARMEN-PC [administrator]
24-10-2012 20:20:33
mbam-log-2012-10-24 (20-20-33).txt
Scantype: Snelle scan
Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
Uitgeschakelde scanopties: P2P
Objecten gescand: 198863
Verstreken tijd: 4 minuut/minuten, 3 seconde
Geheugenprocessen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Geheugenmodulen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registersleutels gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerwaarden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerdata gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Mappen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Bestanden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
(einde)
---------- Bericht toegevoegd op 20:40 ---------- Vorige bericht was op 20:40 ----------
[hjt]
dds (ver_2012-10-19.01) - ntfs_amd64
internet explorer: 9.0.8112.16421
run by harmen at 20:28:35 on 2012-10-24
microsoft windows 7 home premium 6.1.7601.1.1252.31.1043.18.4091.2477 [gmt 2:00]
.
av: g data internetsecurity 2013 *disabled/updated* {39b780b4-63c2-05b0-3b40-8f7a21e4f496}
sp: g data internetsecurity 2013 *disabled/updated* {82d66150-45f8-0a3e-01f0-b4085a63be2b}
sp: windows defender *enabled/updated* {d68ddc3a-831f-4fae-9e44-da132c1acf46}
fw: g data personal firewall *disabled* {018c0191-29ad-04e8-101f-264fdf37b3ed}
.
============== running processes ===============
.
c:\windows\system32\wininit.exe
c:\windows\system32\lsm.exe
c:\windows\system32\svchost.exe -k dcomlaunch
c:\windows\system32\svchost.exe -k rpcss
c:\program files (x86)\common files\g data\gdscan\gdscan.exe
c:\program files (x86)\g data\internetsecurity\avk\avkwctlx64.exe
c:\windows\system32\atiesrxx.exe
c:\windows\system32\svchost.exe -k localservicenetworkrestricted
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k localservice
c:\windows\system32\atieclxx.exe
c:\windows\system32\svchost.exe -k networkservice
c:\windows\system32\spoolsv.exe
c:\windows\system32\svchost.exe -k localservicenonetwork
c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe
c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe
c:\program files (x86)\common files\g data\avkproxy\avkproxy.exe
c:\program files (x86)\g data\internetsecurity\avk\avkservice.exe
c:\program files\bonjour\mdnsresponder.exe
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation
c:\windows\system32\drivers\o2flash.exe
c:\windows\syswow64\pnkbstra.exe
c:\windows\system32\svchost.exe -k imgsvc
c:\program files\common files\microsoft shared\windows live\wlidsvc.exe
c:\program files (x86)\intel\intel matrix storage manager\iaantmon.exe
c:\program files (x86)\spybot - search & destroy\sdwinsec.exe
c:\program files\common files\microsoft shared\windows live\wlidsvcm.exe
c:\program files (x86)\g data\internetsecurity\firewall\gdfwsvcx64.exe
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted
c:\program files (x86)\common files\g data\avkproxy\avkbap64.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\dwm.exe
c:\windows\explorer.exe
c:\program files\dell\quickset\quickset.exe
c:\program files\java\jre6\bin\jusched.exe
c:\program files\synaptics\syntp\syntpenh.exe
c:\program files (x86)\intel\intel matrix storage manager\iaanotif.exe
c:\program files (x86)\samsung\kies\external\firmwareupdate\kiespdlr.exe
c:\windows\system32\wbem\wmiprvse.exe
c:\program files (x86)\samsung\kies\kies.exe
c:\users\harmen\appdata\local\google\update\1.3.21.123\googlecrashhandler.exe
c:\users\harmen\appdata\local\google\update\1.3.21.123\googlecrashhandler64.exe
c:\program files (x86)\g data\internetsecurity\avktray\avktray.exe
c:\program files\synaptics\syntp\syntphelper.exe
c:\program files (x86)\samsung\kies\kiestrayagent.exe
c:\program files (x86)\g data\internetsecurity\firewall\gdfirewalltray.exe
c:\program files (x86)\itunes\ituneshelper.exe
c:\program files (x86)\common files\java\java update\jusched.exe
c:\windows\system32\searchindexer.exe
c:\program files\ipod\bin\ipodservice.exe
c:\program files\windows media player\wmpnetwk.exe
c:\windows\system32\svchost.exe -k localservicepeernet
c:\windows\system32\dllhost.exe
c:\windows\system32\svchost.exe -k secsvcs
c:\windows\system32\taskeng.exe
c:\users\harmen\appdata\local\google\chrome\application\chrome.exe
c:\users\harmen\appdata\local\google\chrome\application\chrome.exe
c:\users\harmen\appdata\local\google\chrome\application\chrome.exe
c:\windows\system32\searchprotocolhost.exe
c:\windows\system32\searchfilterhost.exe
c:\users\harmen\appdata\local\google\chrome\application\chrome.exe
c:\windows\system32\conhost.exe
c:\windows\system32\wbem\wmiprvse.exe
c:\windows\system32\cscript.exe
.
============== pseudo hjt report ===============
.
usearch bar = preserve
mwinlogon: userinit = userinit.exe,
urun: [kiespdlr] c:\program files (x86)\samsung\kies\external\firmwareupdate\kiespdlr.exe
urun: [kiespreload] c:\program files (x86)\samsung\kies\kies.exe /preload
urun: [google update] c:\users\harmen\appdata\local\google\update\googleupdate.exe /c
mrun: [g data antivirus tray application] c:\program files (x86)\g data\internetsecurity\avktray\avktray.exe
mrun: [adobe arm] c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe
mrun: [kiestrayagent] c:\program files (x86)\samsung\kies\kiestrayagent.exe
mrun: [apsdaemon] c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe
mrun: [gdfirewalltray] c:\program files (x86)\g data\internetsecurity\firewall\gdfirewalltray.exe
mrun: [ituneshelper] c:\program files (x86)\itunes\ituneshelper.exe
mrun: [sunjavaupdatesched] c:\program files (x86)\common files\java\java update\jusched.exe
mrunonce: [malwarebytes anti-malware] c:\program files (x86)\malwarebytes' anti-malware\mbamgui.exe /install /silent
mpolicies-explorer: noactivedesktop = dword:1
mpolicies-explorer: noactivedesktopchanges = dword:1
mpolicies-system: consentpromptbehavioradmin = dword:5
mpolicies-system: consentpromptbehavioruser = dword:3
mpolicies-system: enableuiadesktoptoggle = dword:0
ie: {2670000a-7350-4f3c-8081-5663ee0c6c49} - {48e73304-e1d6-4330-914c-f5f514e3486c} - c:\program files (x86)\microsoft office\office14\onbttnie.dll
ie: {789fe86f-6fc4-46a1-9849-ede0db0c95ca} - {fffdc614-b694-4ae6-ab38-5d6374584b52} - c:\program files (x86)\microsoft office\office14\onbttnielinkednotes.dll
dpf: {8ad9c840-044e-11d1-b3e9-00805f499d93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
dpf: {cafeefac-0016-0000-0037-abcdeffedcba} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
dpf: {cafeefac-ffff-ffff-ffff-abcdeffedcba} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
tcp: nameserver = 212.54.35.25 212.54.40.25
tcp: interfaces\{9b5fec57-5268-4fb7-8f20-05ef9fffcf35} : dhcpnameserver = 212.54.35.25 212.54.40.25
tcp: interfaces\{9b5fec57-5268-4fb7-8f20-05ef9fffcf35}\3596475636f6d6243403341303 : dhcpnameserver = 192.168.0.1
tcp: interfaces\{9b5fec57-5268-4fb7-8f20-05ef9fffcf35}\a616e626c6f6b6 : dhcpnameserver = 192.168.2.254
tcp: interfaces\{9b5fec57-5268-4fb7-8f20-05ef9fffcf35}\a64626c6f6b6 : dhcpnameserver = 192.168.1.1
tcp: interfaces\{9b5fec57-5268-4fb7-8f20-05ef9fffcf35}\c696e6b6379737 : dhcpnameserver = 212.54.35.25 212.54.40.25
tcp: interfaces\{9b5fec57-5268-4fb7-8f20-05ef9fffcf35}\d456e6d4 : dhcpnameserver = 192.168.1.1
tcp: interfaces\{9b5fec57-5268-4fb7-8f20-05ef9fffcf35}\d456e6d474f6574616 : dhcpnameserver = 192.168.1.1
filter: text/xml - {807573e5-5146-11d5-a672-00b0d022e945} - c:\program files (x86)\common files\microsoft shared\office14\msoxmlmf.dll
handler: wlpg - {e43ef6cd-a37a-4a9b-9e6f-83f89b8e6324} - c:\program files (x86)\windows live\photo gallery\albumdownloadprotocolhandler.dll
ssodl: webcheck - <orphaned>
seh: groove gfs stub execution hook - {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files (x86)\microsoft office\office14\grooveex.dll
lsa: security packages = kerberos msv1_0 schannel wdigest tspkg pku2u livessp
x64-run: [quickset] c:\program files\dell\quickset\quickset.exe
x64-run: [sunjavaupdatesched] c:\program files\java\jre6\bin\jusched.exe
x64-run: [syntpenh] c:\program files (x86)\synaptics\syntp\syntpenh.exe
x64-run: [logitech download assistant] c:\windows\system32\rundll32.exe c:\windows\system32\logilda.dll,logifetch
x64-run: [iaanotif] c:\program files (x86)\intel\intel matrix storage manager\iaanotif.exe
x64-ie: {2670000a-7350-4f3c-8081-5663ee0c6c49} - {48e73304-e1d6-4330-914c-f5f514e3486c} - c:\program files\microsoft office\office14\onbttnie.dll
x64-ie: {789fe86f-6fc4-46a1-9849-ede0db0c95ca} - {fffdc614-b694-4ae6-ab38-5d6374584b52} - c:\program files\microsoft office\office14\onbttnielinkednotes.dll
x64-dpf: {8ad9c840-044e-11d1-b3e9-00805f499d93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
x64-dpf: {cafeefac-0016-0000-0016-abcdeffedcba} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
x64-dpf: {cafeefac-ffff-ffff-ffff-abcdeffedcba} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
x64-filter: text/xml - {807573e5-5146-11d5-a672-00b0d022e945} - c:\program files\common files\microsoft shared\office14\msoxmlmf.dll
x64-handler: wlpg - {e43ef6cd-a37a-4a9b-9e6f-83f89b8e6324} - <orphaned>
x64-ssodl: webcheck - <orphaned>
x64-seh: groove gfs stub execution hook - {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office14\grooveex.dll
.
============= services / drivers ===============
.
r0 gdbehave;gdbehave;c:\windows\system32\drivers\gdbehave.sys [2011-10-12 54176]
r1 gdmnicpt;gdmnicpt;c:\windows\system32\drivers\miniicpt.sys [2011-10-12 126880]
r1 gdwfpcd;g data wfp cd;c:\windows\system32\drivers\gdwfpcd64.sys [2011-10-12 64416]
r1 grd;g data rootkit detector driver;c:\windows\system32\drivers\grd.sys [2011-10-12 106648]
r1 hookcentre;hookcentre;c:\windows\system32\drivers\hookcentre.sys [2012-5-5 64376]
r2 adobearmservice;adobe acrobat update service;c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe [2012-7-27 63960]
r2 amd external events utility;amd external events utility;c:\windows\system32\atiesrxx.exe [2009-8-18 203264]
r2 avkproxy;g data antivirus proxy;c:\program files (x86)\common files\g data\avkproxy\avkproxy.exe [2012-10-8 1542680]
r2 avkservice;g data scheduler;c:\program files (x86)\g data\internetsecurity\avk\avkservice.exe [2012-8-7 468472]
r2 avkwctl;g data bestandssysteembewaker;c:\program files (x86)\g data\internetsecurity\avk\avkwctlx64.exe [2012-10-8 2011568]
r2 sbsdwscservice;sbsd security center service;c:\program files (x86)\spybot - search & destroy\sdwinsec.exe [2012-10-20 1153368]
r3 gdfwsvc;g data personal firewall;c:\program files (x86)\g data\internetsecurity\firewall\gdfwsvcx64.exe [2012-8-7 1766464]
r3 gdpkicpt;gdpkicpt;c:\windows\system32\drivers\pkticpt.sys [2011-10-12 60320]
r3 gdscan;g data scanner;c:\program files (x86)\common files\g data\gdscan\gdscan.exe [2012-8-7 470008]
r3 netw5v64;stuurprogramma voor intel(r) wireless wifi link 5000 series-adapter voor 64-bits windows vista;c:\windows\system32\drivers\netw5v64.sys [2009-6-10 5434368]
r3 o2mdgrdr;o2mdgrdr;c:\windows\system32\drivers\o2mdgx64.sys [2009-5-22 69152]
r3 rtl8167;realtek 8167 nt driver;c:\windows\system32\drivers\rt64win7.sys [2011-6-10 539240]
s2 clr_optimization_v4.0.30319_32;microsoft .net framework ngen v4.0.30319_x86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
s2 clr_optimization_v4.0.30319_64;microsoft .net framework ngen v4.0.30319_x64;c:\windows\microsoft.net\framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
s3 microsoft sharepoint workspace audit service;microsoft sharepoint workspace audit service;c:\program files (x86)\microsoft office\office14\groove.exe [2011-6-12 31125880]
s3 osppsvc;office software protection platform;c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe [2010-1-9 4925184]
s3 ssadbus;samsung android usb composite device driver (wdm);c:\windows\system32\drivers\ssadbus.sys [2012-5-28 157672]
s3 ssadmdfl;samsung android usb modem (filter);c:\windows\system32\drivers\ssadmdfl.sys [2012-5-28 16872]
s3 ssadmdm;samsung android usb modem drivers;c:\windows\system32\drivers\ssadmdm.sys [2012-5-28 177640]
s3 tsusbflt;tsusbflt;c:\windows\system32\drivers\tsusbflt.sys [2011-10-15 59392]
s3 usbaapl64;apple mobile usb driver;c:\windows\system32\drivers\usbaapl64.sys [2012-7-9 52736]
s3 watadminsvc;windows activation technologies-service;c:\windows\system32\wat\watadminsvc.exe [2011-10-15 1255736]
.
=============== created last 30 ================
.
2012-10-24 18:19:28 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-10-24 18:19:28 -------- d-----w- c:\program files (x86)\malwarebytes' anti-malware
2012-10-24 17:39:18 -------- d-----w- c:\users\harmen\appdata\roaming\malwarebytes
2012-10-24 17:39:03 -------- d-----w- c:\programdata\malwarebytes
2012-10-23 16:32:09 9291768 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{518487d3-a7da-492e-90fd-fa03059f57be}\mpengine.dll
2012-10-22 19:41:36 -------- d-----w- c:\users\harmen\appdata\local\apps
2012-10-22 19:41:35 -------- d-----w- c:\users\harmen\appdata\local\deployment
2012-10-20 10:41:16 -------- d-----w- c:\programdata\spybot - search & destroy
2012-10-20 10:41:16 -------- d-----w- c:\program files (x86)\spybot - search & destroy
2012-10-20 10:29:42 514560 ----a-w- c:\windows\syswow64\qdvd.dll
2012-10-20 10:29:42 366592 ----a-w- c:\windows\system32\qdvd.dll
2012-10-09 18:11:58 2048 ----a-w- c:\windows\syswow64\user.exe
2012-10-09 18:11:52 220160 ----a-w- c:\windows\system32\wintrust.dll
2012-10-09 18:11:52 172544 ----a-w- c:\windows\syswow64\wintrust.dll
2012-10-09 18:11:48 2048 ----a-w- c:\windows\syswow64\tzres.dll
2012-10-09 18:11:48 2048 ----a-w- c:\windows\system32\tzres.dll
2012-10-09 18:11:43 715776 ----a-w- c:\windows\system32\kerberos.dll
2012-10-09 18:11:43 542208 ----a-w- c:\windows\syswow64\kerberos.dll
2012-10-09 18:11:39 1464320 ----a-w- c:\windows\system32\crypt32.dll
2012-10-09 18:11:38 184320 ----a-w- c:\windows\system32\cryptsvc.dll
2012-10-09 18:11:38 140288 ----a-w- c:\windows\syswow64\cryptsvc.dll
2012-10-09 18:11:38 140288 ----a-w- c:\windows\system32\cryptnet.dll
2012-10-09 18:11:38 1159680 ----a-w- c:\windows\syswow64\crypt32.dll
2012-10-09 18:11:38 103936 ----a-w- c:\windows\syswow64\cryptnet.dll
2012-09-25 18:35:27 245760 ----a-w- c:\windows\system32\oxpsconverter.exe
.
==================== find3m ====================
.
2012-10-24 15:54:18 837090 ----a-w- c:\windows\syswow64\sig.bin
2012-10-08 19:31:01 60320 ----a-w- c:\windows\system32\drivers\pkticpt.sys
2012-10-08 19:29:15 64416 ----a-w- c:\windows\system32\drivers\gdwfpcd64.sys
2012-10-08 19:29:15 54176 ----a-w- c:\windows\system32\drivers\gdbehave.sys
2012-10-08 19:29:15 126880 ----a-w- c:\windows\system32\drivers\miniicpt.sys
2012-10-04 14:21:01 10792 ----a-w- c:\windows\syswow64\gdscrsv.nl.dll
2012-09-24 13:32:24 477168 ----a-w- c:\windows\syswow64\npdeployjava1.dll
2012-09-24 13:32:20 473072 ----a-w- c:\windows\syswow64\deployjava1.dll
2012-09-20 14:02:06 1832760 ----a-w- c:\windows\system32\logilda.dll
2012-08-31 18:19:35 1659760 ----a-w- c:\windows\system32\drivers\ntfs.sys
2012-08-30 18:03:45 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-08-30 17:12:02 3968880 ----a-w- c:\windows\syswow64\ntkrnlpa.exe
2012-08-30 17:12:02 3914096 ----a-w- c:\windows\syswow64\ntoskrnl.exe
2012-08-24 10:31:32 2312704 ----a-w- c:\windows\system32\jscript9.dll
2012-08-24 10:21:18 1392128 ----a-w- c:\windows\system32\wininet.dll
2012-08-24 10:20:11 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
2012-08-24 10:14:45 173056 ----a-w- c:\windows\system32\ieunatt.exe
2012-08-24 10:13:29 599040 ----a-w- c:\windows\system32\vbscript.dll
2012-08-24 10:09:42 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-08-24 06:59:17 1800704 ----a-w- c:\windows\syswow64\jscript9.dll
2012-08-24 06:51:27 1129472 ----a-w- c:\windows\syswow64\wininet.dll
2012-08-24 06:51:02 1427968 ----a-w- c:\windows\syswow64\inetcpl.cpl
2012-08-24 06:47:26 142848 ----a-w- c:\windows\syswow64\ieunatt.exe
2012-08-24 06:47:12 420864 ----a-w- c:\windows\syswow64\vbscript.dll
2012-08-24 06:43:58 2382848 ----a-w- c:\windows\syswow64\mshtml.tlb
2012-08-22 18:12:50 1913200 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-08-22 18:12:40 950128 ----a-w- c:\windows\system32\drivers\ndis.sys
2012-08-22 18:12:40 376688 ----a-w- c:\windows\system32\drivers\netio.sys
2012-08-22 18:12:33 288624 ----a-w- c:\windows\system32\drivers\fwpkclnt.sys
2012-08-21 11:01:20 33240 ----a-w- c:\windows\system32\drivers\gearaspiwdm.sys
2012-08-21 11:01:20 125872 ----a-w- c:\windows\system32\gearaspi64.dll
2012-08-21 11:01:20 106928 ----a-w- c:\windows\syswow64\gearaspi.dll
2012-08-20 18:48:44 362496 ----a-w- c:\windows\system32\wow64win.dll
2012-08-20 18:48:44 243200 ----a-w- c:\windows\system32\wow64.dll
2012-08-20 18:48:44 13312 ----a-w- c:\windows\system32\wow64cpu.dll
2012-08-20 18:48:43 215040 ----a-w- c:\windows\system32\winsrv.dll
2012-08-20 18:48:37 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2012-08-20 18:48:35 424448 ----a-w- c:\windows\system32\kernelbase.dll
2012-08-20 18:46:22 338432 ----a-w- c:\windows\system32\conhost.exe
2012-08-20 17:40:21 14336 ----a-w- c:\windows\syswow64\ntvdm64.dll
2012-08-20 17:38:44 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2012-08-20 17:38:26 25600 ----a-w- c:\windows\syswow64\setup16.exe
2012-08-20 17:37:19 5120 ----a-w- c:\windows\syswow64\wow32.dll
2012-08-20 17:37:18 274944 ----a-w- c:\windows\syswow64\kernelbase.dll
2012-08-20 15:38:21 7680 ----a-w- c:\windows\syswow64\instnm.exe
2012-08-20 15:33:28 6144 ---ha-w- c:\windows\syswow64\api-ms-win-security-base-l1-1-0.dll
2012-08-20 15:33:28 4608 ---ha-w- c:\windows\syswow64\api-ms-win-core-threadpool-l1-1-0.dll
2012-08-20 15:33:28 3584 ---ha-w- c:\windows\syswow64\api-ms-win-core-xstate-l1-1-0.dll
2012-08-20 15:33:28 3072 ---ha-w- c:\windows\syswow64\api-ms-win-core-util-l1-1-0.dll
2012-08-13 08:04:49 16504 ----a-w- c:\windows\system32\drivers\gdphymem.sys
2012-08-13 08:04:45 106648 ----a-w- c:\windows\system32\drivers\grd.sys
2012-08-07 10:19:36 64376 ----a-w- c:\windows\system32\drivers\hookcentre.sys
2012-08-02 17:58:52 574464 ----a-w- c:\windows\system32\d3d10level9.dll
2012-08-02 16:57:20 490496 ----a-w- c:\windows\syswow64\d3d10level9.dll
.
============= finish: 20:29:19,66 ===============
[/hjt]
---------- Bericht toegevoegd op 20:46 ---------- Vorige bericht was op 20:40 ----------
Hoop dat jullie me kunnen helpen!!!
Ik zit met een raar probleem. Sinds een paar dagen kan ik op bepaalde sites geen filmpjes meer kijken. Zo ben ik fan van dumpert.nl maar kan daar niet meer normaal een filmpje kijken. Ik krijg dan een zwart scherm met "video not found" erin met de naam van het filmpje. De video bestaat wel. (http://www.dumpert.nl/mediabase/6403492/63d0f34f/semmy_schilt_sloopt_badr_hari.html). De ene keer begint het filmpje wel. Scroll ik dan wat verder krijg ik weer dat zwarte schermpje. De andere keer begint het meteen met dat zwarte schermpje. Youtube doet het wel zonder problemen.
Open ik het linkje met internet explorer krijg ik dit:
I@sj~#@t l@t@x@tt-V@tlC@tڬ1&@u R@uA+ I@utnO@uzH@uhr@v-V@vAlC@vt ě@v-@v/w@wnO@wAzH@wtm@w1&x@wp =@x ě@xA-@xu33333@xr Ĝ@x۲-V@ym@yB1&x@yutj~@y9Xb@yE@z33333@zBr Ĝ@zuE@z\)@z5?|@{tj~@{BQ@{u@{7KƧ@{vȴ9X@|E@|B"@|v9XbN@|x@|ܸQ@}@}C;dZ@}vzG@}^5?}@}"@~9XbN@~C|hs@~vj~@~lD@~;dZ@zG@Cvȴ9@vE@=p @|hs@^5?|@"@;vȴ@U?|h@n;dZ@~"@ ě filepositions @4A`A&nA1 A8A>.AAADAGpAJAL]AODAQ @AR|?AS*AUmy@AVAWAXAY@A[:A^EA`0 Aa(@Aa@Ab'`Ac[5`Ad`AdH`Ae1 Af0=`AfO Ag@Ah\̀Ai
Die tekens gaan oneindig door. Ik heb internet afgezocht, kan echt nergens een antwoord vinden. Heb IE gereset, cache geleegd enz enz. Ik weet het niet meer.
MBAM gedownload met dit resultaat:
Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org
Databaseversie: v2012.10.24.06
Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Harmen :: HARMEN-PC [administrator]
24-10-2012 20:20:33
mbam-log-2012-10-24 (20-20-33).txt
Scantype: Snelle scan
Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
Uitgeschakelde scanopties: P2P
Objecten gescand: 198863
Verstreken tijd: 4 minuut/minuten, 3 seconde
Geheugenprocessen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Geheugenmodulen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registersleutels gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerwaarden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Registerdata gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Mappen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Bestanden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
(einde)
---------- Bericht toegevoegd op 20:40 ---------- Vorige bericht was op 20:40 ----------
[hjt]
dds (ver_2012-10-19.01) - ntfs_amd64
internet explorer: 9.0.8112.16421
run by harmen at 20:28:35 on 2012-10-24
microsoft windows 7 home premium 6.1.7601.1.1252.31.1043.18.4091.2477 [gmt 2:00]
.
av: g data internetsecurity 2013 *disabled/updated* {39b780b4-63c2-05b0-3b40-8f7a21e4f496}
sp: g data internetsecurity 2013 *disabled/updated* {82d66150-45f8-0a3e-01f0-b4085a63be2b}
sp: windows defender *enabled/updated* {d68ddc3a-831f-4fae-9e44-da132c1acf46}
fw: g data personal firewall *disabled* {018c0191-29ad-04e8-101f-264fdf37b3ed}
.
============== running processes ===============
.
c:\windows\system32\wininit.exe
c:\windows\system32\lsm.exe
c:\windows\system32\svchost.exe -k dcomlaunch
c:\windows\system32\svchost.exe -k rpcss
c:\program files (x86)\common files\g data\gdscan\gdscan.exe
c:\program files (x86)\g data\internetsecurity\avk\avkwctlx64.exe
c:\windows\system32\atiesrxx.exe
c:\windows\system32\svchost.exe -k localservicenetworkrestricted
c:\windows\system32\svchost.exe -k localsystemnetworkrestricted
c:\windows\system32\svchost.exe -k netsvcs
c:\windows\system32\svchost.exe -k localservice
c:\windows\system32\atieclxx.exe
c:\windows\system32\svchost.exe -k networkservice
c:\windows\system32\spoolsv.exe
c:\windows\system32\svchost.exe -k localservicenonetwork
c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe
c:\program files (x86)\common files\apple\mobile device support\applemobiledeviceservice.exe
c:\program files (x86)\common files\g data\avkproxy\avkproxy.exe
c:\program files (x86)\g data\internetsecurity\avk\avkservice.exe
c:\program files\bonjour\mdnsresponder.exe
c:\windows\system32\svchost.exe -k localserviceandnoimpersonation
c:\windows\system32\drivers\o2flash.exe
c:\windows\syswow64\pnkbstra.exe
c:\windows\system32\svchost.exe -k imgsvc
c:\program files\common files\microsoft shared\windows live\wlidsvc.exe
c:\program files (x86)\intel\intel matrix storage manager\iaantmon.exe
c:\program files (x86)\spybot - search & destroy\sdwinsec.exe
c:\program files\common files\microsoft shared\windows live\wlidsvcm.exe
c:\program files (x86)\g data\internetsecurity\firewall\gdfwsvcx64.exe
c:\windows\system32\svchost.exe -k networkservicenetworkrestricted
c:\program files (x86)\common files\g data\avkproxy\avkbap64.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\dwm.exe
c:\windows\explorer.exe
c:\program files\dell\quickset\quickset.exe
c:\program files\java\jre6\bin\jusched.exe
c:\program files\synaptics\syntp\syntpenh.exe
c:\program files (x86)\intel\intel matrix storage manager\iaanotif.exe
c:\program files (x86)\samsung\kies\external\firmwareupdate\kiespdlr.exe
c:\windows\system32\wbem\wmiprvse.exe
c:\program files (x86)\samsung\kies\kies.exe
c:\users\harmen\appdata\local\google\update\1.3.21.123\googlecrashhandler.exe
c:\users\harmen\appdata\local\google\update\1.3.21.123\googlecrashhandler64.exe
c:\program files (x86)\g data\internetsecurity\avktray\avktray.exe
c:\program files\synaptics\syntp\syntphelper.exe
c:\program files (x86)\samsung\kies\kiestrayagent.exe
c:\program files (x86)\g data\internetsecurity\firewall\gdfirewalltray.exe
c:\program files (x86)\itunes\ituneshelper.exe
c:\program files (x86)\common files\java\java update\jusched.exe
c:\windows\system32\searchindexer.exe
c:\program files\ipod\bin\ipodservice.exe
c:\program files\windows media player\wmpnetwk.exe
c:\windows\system32\svchost.exe -k localservicepeernet
c:\windows\system32\dllhost.exe
c:\windows\system32\svchost.exe -k secsvcs
c:\windows\system32\taskeng.exe
c:\users\harmen\appdata\local\google\chrome\application\chrome.exe
c:\users\harmen\appdata\local\google\chrome\application\chrome.exe
c:\users\harmen\appdata\local\google\chrome\application\chrome.exe
c:\windows\system32\searchprotocolhost.exe
c:\windows\system32\searchfilterhost.exe
c:\users\harmen\appdata\local\google\chrome\application\chrome.exe
c:\windows\system32\conhost.exe
c:\windows\system32\wbem\wmiprvse.exe
c:\windows\system32\cscript.exe
.
============== pseudo hjt report ===============
.
usearch bar = preserve
mwinlogon: userinit = userinit.exe,
urun: [kiespdlr] c:\program files (x86)\samsung\kies\external\firmwareupdate\kiespdlr.exe
urun: [kiespreload] c:\program files (x86)\samsung\kies\kies.exe /preload
urun: [google update] c:\users\harmen\appdata\local\google\update\googleupdate.exe /c
mrun: [g data antivirus tray application] c:\program files (x86)\g data\internetsecurity\avktray\avktray.exe
mrun: [adobe arm] c:\program files (x86)\common files\adobe\arm\1.0\adobearm.exe
mrun: [kiestrayagent] c:\program files (x86)\samsung\kies\kiestrayagent.exe
mrun: [apsdaemon] c:\program files (x86)\common files\apple\apple application support\apsdaemon.exe
mrun: [gdfirewalltray] c:\program files (x86)\g data\internetsecurity\firewall\gdfirewalltray.exe
mrun: [ituneshelper] c:\program files (x86)\itunes\ituneshelper.exe
mrun: [sunjavaupdatesched] c:\program files (x86)\common files\java\java update\jusched.exe
mrunonce: [malwarebytes anti-malware] c:\program files (x86)\malwarebytes' anti-malware\mbamgui.exe /install /silent
mpolicies-explorer: noactivedesktop = dword:1
mpolicies-explorer: noactivedesktopchanges = dword:1
mpolicies-system: consentpromptbehavioradmin = dword:5
mpolicies-system: consentpromptbehavioruser = dword:3
mpolicies-system: enableuiadesktoptoggle = dword:0
ie: {2670000a-7350-4f3c-8081-5663ee0c6c49} - {48e73304-e1d6-4330-914c-f5f514e3486c} - c:\program files (x86)\microsoft office\office14\onbttnie.dll
ie: {789fe86f-6fc4-46a1-9849-ede0db0c95ca} - {fffdc614-b694-4ae6-ab38-5d6374584b52} - c:\program files (x86)\microsoft office\office14\onbttnielinkednotes.dll
dpf: {8ad9c840-044e-11d1-b3e9-00805f499d93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
dpf: {cafeefac-0016-0000-0037-abcdeffedcba} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
dpf: {cafeefac-ffff-ffff-ffff-abcdeffedcba} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
tcp: nameserver = 212.54.35.25 212.54.40.25
tcp: interfaces\{9b5fec57-5268-4fb7-8f20-05ef9fffcf35} : dhcpnameserver = 212.54.35.25 212.54.40.25
tcp: interfaces\{9b5fec57-5268-4fb7-8f20-05ef9fffcf35}\3596475636f6d6243403341303 : dhcpnameserver = 192.168.0.1
tcp: interfaces\{9b5fec57-5268-4fb7-8f20-05ef9fffcf35}\a616e626c6f6b6 : dhcpnameserver = 192.168.2.254
tcp: interfaces\{9b5fec57-5268-4fb7-8f20-05ef9fffcf35}\a64626c6f6b6 : dhcpnameserver = 192.168.1.1
tcp: interfaces\{9b5fec57-5268-4fb7-8f20-05ef9fffcf35}\c696e6b6379737 : dhcpnameserver = 212.54.35.25 212.54.40.25
tcp: interfaces\{9b5fec57-5268-4fb7-8f20-05ef9fffcf35}\d456e6d4 : dhcpnameserver = 192.168.1.1
tcp: interfaces\{9b5fec57-5268-4fb7-8f20-05ef9fffcf35}\d456e6d474f6574616 : dhcpnameserver = 192.168.1.1
filter: text/xml - {807573e5-5146-11d5-a672-00b0d022e945} - c:\program files (x86)\common files\microsoft shared\office14\msoxmlmf.dll
handler: wlpg - {e43ef6cd-a37a-4a9b-9e6f-83f89b8e6324} - c:\program files (x86)\windows live\photo gallery\albumdownloadprotocolhandler.dll
ssodl: webcheck - <orphaned>
seh: groove gfs stub execution hook - {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files (x86)\microsoft office\office14\grooveex.dll
lsa: security packages = kerberos msv1_0 schannel wdigest tspkg pku2u livessp
x64-run: [quickset] c:\program files\dell\quickset\quickset.exe
x64-run: [sunjavaupdatesched] c:\program files\java\jre6\bin\jusched.exe
x64-run: [syntpenh] c:\program files (x86)\synaptics\syntp\syntpenh.exe
x64-run: [logitech download assistant] c:\windows\system32\rundll32.exe c:\windows\system32\logilda.dll,logifetch
x64-run: [iaanotif] c:\program files (x86)\intel\intel matrix storage manager\iaanotif.exe
x64-ie: {2670000a-7350-4f3c-8081-5663ee0c6c49} - {48e73304-e1d6-4330-914c-f5f514e3486c} - c:\program files\microsoft office\office14\onbttnie.dll
x64-ie: {789fe86f-6fc4-46a1-9849-ede0db0c95ca} - {fffdc614-b694-4ae6-ab38-5d6374584b52} - c:\program files\microsoft office\office14\onbttnielinkednotes.dll
x64-dpf: {8ad9c840-044e-11d1-b3e9-00805f499d93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
x64-dpf: {cafeefac-0016-0000-0016-abcdeffedcba} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
x64-dpf: {cafeefac-ffff-ffff-ffff-abcdeffedcba} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
x64-filter: text/xml - {807573e5-5146-11d5-a672-00b0d022e945} - c:\program files\common files\microsoft shared\office14\msoxmlmf.dll
x64-handler: wlpg - {e43ef6cd-a37a-4a9b-9e6f-83f89b8e6324} - <orphaned>
x64-ssodl: webcheck - <orphaned>
x64-seh: groove gfs stub execution hook - {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office14\grooveex.dll
.
============= services / drivers ===============
.
r0 gdbehave;gdbehave;c:\windows\system32\drivers\gdbehave.sys [2011-10-12 54176]
r1 gdmnicpt;gdmnicpt;c:\windows\system32\drivers\miniicpt.sys [2011-10-12 126880]
r1 gdwfpcd;g data wfp cd;c:\windows\system32\drivers\gdwfpcd64.sys [2011-10-12 64416]
r1 grd;g data rootkit detector driver;c:\windows\system32\drivers\grd.sys [2011-10-12 106648]
r1 hookcentre;hookcentre;c:\windows\system32\drivers\hookcentre.sys [2012-5-5 64376]
r2 adobearmservice;adobe acrobat update service;c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe [2012-7-27 63960]
r2 amd external events utility;amd external events utility;c:\windows\system32\atiesrxx.exe [2009-8-18 203264]
r2 avkproxy;g data antivirus proxy;c:\program files (x86)\common files\g data\avkproxy\avkproxy.exe [2012-10-8 1542680]
r2 avkservice;g data scheduler;c:\program files (x86)\g data\internetsecurity\avk\avkservice.exe [2012-8-7 468472]
r2 avkwctl;g data bestandssysteembewaker;c:\program files (x86)\g data\internetsecurity\avk\avkwctlx64.exe [2012-10-8 2011568]
r2 sbsdwscservice;sbsd security center service;c:\program files (x86)\spybot - search & destroy\sdwinsec.exe [2012-10-20 1153368]
r3 gdfwsvc;g data personal firewall;c:\program files (x86)\g data\internetsecurity\firewall\gdfwsvcx64.exe [2012-8-7 1766464]
r3 gdpkicpt;gdpkicpt;c:\windows\system32\drivers\pkticpt.sys [2011-10-12 60320]
r3 gdscan;g data scanner;c:\program files (x86)\common files\g data\gdscan\gdscan.exe [2012-8-7 470008]
r3 netw5v64;stuurprogramma voor intel(r) wireless wifi link 5000 series-adapter voor 64-bits windows vista;c:\windows\system32\drivers\netw5v64.sys [2009-6-10 5434368]
r3 o2mdgrdr;o2mdgrdr;c:\windows\system32\drivers\o2mdgx64.sys [2009-5-22 69152]
r3 rtl8167;realtek 8167 nt driver;c:\windows\system32\drivers\rt64win7.sys [2011-6-10 539240]
s2 clr_optimization_v4.0.30319_32;microsoft .net framework ngen v4.0.30319_x86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
s2 clr_optimization_v4.0.30319_64;microsoft .net framework ngen v4.0.30319_x64;c:\windows\microsoft.net\framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
s3 microsoft sharepoint workspace audit service;microsoft sharepoint workspace audit service;c:\program files (x86)\microsoft office\office14\groove.exe [2011-6-12 31125880]
s3 osppsvc;office software protection platform;c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\osppsvc.exe [2010-1-9 4925184]
s3 ssadbus;samsung android usb composite device driver (wdm);c:\windows\system32\drivers\ssadbus.sys [2012-5-28 157672]
s3 ssadmdfl;samsung android usb modem (filter);c:\windows\system32\drivers\ssadmdfl.sys [2012-5-28 16872]
s3 ssadmdm;samsung android usb modem drivers;c:\windows\system32\drivers\ssadmdm.sys [2012-5-28 177640]
s3 tsusbflt;tsusbflt;c:\windows\system32\drivers\tsusbflt.sys [2011-10-15 59392]
s3 usbaapl64;apple mobile usb driver;c:\windows\system32\drivers\usbaapl64.sys [2012-7-9 52736]
s3 watadminsvc;windows activation technologies-service;c:\windows\system32\wat\watadminsvc.exe [2011-10-15 1255736]
.
=============== created last 30 ================
.
2012-10-24 18:19:28 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2012-10-24 18:19:28 -------- d-----w- c:\program files (x86)\malwarebytes' anti-malware
2012-10-24 17:39:18 -------- d-----w- c:\users\harmen\appdata\roaming\malwarebytes
2012-10-24 17:39:03 -------- d-----w- c:\programdata\malwarebytes
2012-10-23 16:32:09 9291768 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{518487d3-a7da-492e-90fd-fa03059f57be}\mpengine.dll
2012-10-22 19:41:36 -------- d-----w- c:\users\harmen\appdata\local\apps
2012-10-22 19:41:35 -------- d-----w- c:\users\harmen\appdata\local\deployment
2012-10-20 10:41:16 -------- d-----w- c:\programdata\spybot - search & destroy
2012-10-20 10:41:16 -------- d-----w- c:\program files (x86)\spybot - search & destroy
2012-10-20 10:29:42 514560 ----a-w- c:\windows\syswow64\qdvd.dll
2012-10-20 10:29:42 366592 ----a-w- c:\windows\system32\qdvd.dll
2012-10-09 18:11:58 2048 ----a-w- c:\windows\syswow64\user.exe
2012-10-09 18:11:52 220160 ----a-w- c:\windows\system32\wintrust.dll
2012-10-09 18:11:52 172544 ----a-w- c:\windows\syswow64\wintrust.dll
2012-10-09 18:11:48 2048 ----a-w- c:\windows\syswow64\tzres.dll
2012-10-09 18:11:48 2048 ----a-w- c:\windows\system32\tzres.dll
2012-10-09 18:11:43 715776 ----a-w- c:\windows\system32\kerberos.dll
2012-10-09 18:11:43 542208 ----a-w- c:\windows\syswow64\kerberos.dll
2012-10-09 18:11:39 1464320 ----a-w- c:\windows\system32\crypt32.dll
2012-10-09 18:11:38 184320 ----a-w- c:\windows\system32\cryptsvc.dll
2012-10-09 18:11:38 140288 ----a-w- c:\windows\syswow64\cryptsvc.dll
2012-10-09 18:11:38 140288 ----a-w- c:\windows\system32\cryptnet.dll
2012-10-09 18:11:38 1159680 ----a-w- c:\windows\syswow64\crypt32.dll
2012-10-09 18:11:38 103936 ----a-w- c:\windows\syswow64\cryptnet.dll
2012-09-25 18:35:27 245760 ----a-w- c:\windows\system32\oxpsconverter.exe
.
==================== find3m ====================
.
2012-10-24 15:54:18 837090 ----a-w- c:\windows\syswow64\sig.bin
2012-10-08 19:31:01 60320 ----a-w- c:\windows\system32\drivers\pkticpt.sys
2012-10-08 19:29:15 64416 ----a-w- c:\windows\system32\drivers\gdwfpcd64.sys
2012-10-08 19:29:15 54176 ----a-w- c:\windows\system32\drivers\gdbehave.sys
2012-10-08 19:29:15 126880 ----a-w- c:\windows\system32\drivers\miniicpt.sys
2012-10-04 14:21:01 10792 ----a-w- c:\windows\syswow64\gdscrsv.nl.dll
2012-09-24 13:32:24 477168 ----a-w- c:\windows\syswow64\npdeployjava1.dll
2012-09-24 13:32:20 473072 ----a-w- c:\windows\syswow64\deployjava1.dll
2012-09-20 14:02:06 1832760 ----a-w- c:\windows\system32\logilda.dll
2012-08-31 18:19:35 1659760 ----a-w- c:\windows\system32\drivers\ntfs.sys
2012-08-30 18:03:45 5559664 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-08-30 17:12:02 3968880 ----a-w- c:\windows\syswow64\ntkrnlpa.exe
2012-08-30 17:12:02 3914096 ----a-w- c:\windows\syswow64\ntoskrnl.exe
2012-08-24 10:31:32 2312704 ----a-w- c:\windows\system32\jscript9.dll
2012-08-24 10:21:18 1392128 ----a-w- c:\windows\system32\wininet.dll
2012-08-24 10:20:11 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
2012-08-24 10:14:45 173056 ----a-w- c:\windows\system32\ieunatt.exe
2012-08-24 10:13:29 599040 ----a-w- c:\windows\system32\vbscript.dll
2012-08-24 10:09:42 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-08-24 06:59:17 1800704 ----a-w- c:\windows\syswow64\jscript9.dll
2012-08-24 06:51:27 1129472 ----a-w- c:\windows\syswow64\wininet.dll
2012-08-24 06:51:02 1427968 ----a-w- c:\windows\syswow64\inetcpl.cpl
2012-08-24 06:47:26 142848 ----a-w- c:\windows\syswow64\ieunatt.exe
2012-08-24 06:47:12 420864 ----a-w- c:\windows\syswow64\vbscript.dll
2012-08-24 06:43:58 2382848 ----a-w- c:\windows\syswow64\mshtml.tlb
2012-08-22 18:12:50 1913200 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-08-22 18:12:40 950128 ----a-w- c:\windows\system32\drivers\ndis.sys
2012-08-22 18:12:40 376688 ----a-w- c:\windows\system32\drivers\netio.sys
2012-08-22 18:12:33 288624 ----a-w- c:\windows\system32\drivers\fwpkclnt.sys
2012-08-21 11:01:20 33240 ----a-w- c:\windows\system32\drivers\gearaspiwdm.sys
2012-08-21 11:01:20 125872 ----a-w- c:\windows\system32\gearaspi64.dll
2012-08-21 11:01:20 106928 ----a-w- c:\windows\syswow64\gearaspi.dll
2012-08-20 18:48:44 362496 ----a-w- c:\windows\system32\wow64win.dll
2012-08-20 18:48:44 243200 ----a-w- c:\windows\system32\wow64.dll
2012-08-20 18:48:44 13312 ----a-w- c:\windows\system32\wow64cpu.dll
2012-08-20 18:48:43 215040 ----a-w- c:\windows\system32\winsrv.dll
2012-08-20 18:48:37 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2012-08-20 18:48:35 424448 ----a-w- c:\windows\system32\kernelbase.dll
2012-08-20 18:46:22 338432 ----a-w- c:\windows\system32\conhost.exe
2012-08-20 17:40:21 14336 ----a-w- c:\windows\syswow64\ntvdm64.dll
2012-08-20 17:38:44 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2012-08-20 17:38:26 25600 ----a-w- c:\windows\syswow64\setup16.exe
2012-08-20 17:37:19 5120 ----a-w- c:\windows\syswow64\wow32.dll
2012-08-20 17:37:18 274944 ----a-w- c:\windows\syswow64\kernelbase.dll
2012-08-20 15:38:21 7680 ----a-w- c:\windows\syswow64\instnm.exe
2012-08-20 15:33:28 6144 ---ha-w- c:\windows\syswow64\api-ms-win-security-base-l1-1-0.dll
2012-08-20 15:33:28 4608 ---ha-w- c:\windows\syswow64\api-ms-win-core-threadpool-l1-1-0.dll
2012-08-20 15:33:28 3584 ---ha-w- c:\windows\syswow64\api-ms-win-core-xstate-l1-1-0.dll
2012-08-20 15:33:28 3072 ---ha-w- c:\windows\syswow64\api-ms-win-core-util-l1-1-0.dll
2012-08-13 08:04:49 16504 ----a-w- c:\windows\system32\drivers\gdphymem.sys
2012-08-13 08:04:45 106648 ----a-w- c:\windows\system32\drivers\grd.sys
2012-08-07 10:19:36 64376 ----a-w- c:\windows\system32\drivers\hookcentre.sys
2012-08-02 17:58:52 574464 ----a-w- c:\windows\system32\d3d10level9.dll
2012-08-02 16:57:20 490496 ----a-w- c:\windows\syswow64\d3d10level9.dll
.
============= finish: 20:29:19,66 ===============
[/hjt]
---------- Bericht toegevoegd op 20:46 ---------- Vorige bericht was op 20:40 ----------
Hoop dat jullie me kunnen helpen!!!