thaonlyone
Lid-
Items
20 -
Registratiedatum
-
Laatst bezocht
thaonlyone's prestaties
-
PC opeens traag (3)
thaonlyone reageerde op thaonlyone's topic in Archief Bestrijding malware & virussen
uhmmm... hij is nog wel traag maar ik moet nog wel ff een moment zoeken om de comp uit te zuigen want dat doe je niet 1 2 3 -
PC opeens traag (3)
thaonlyone reageerde op thaonlyone's topic in Archief Bestrijding malware & virussen
http://speccy.piriform.com/results/pHwZ0PBXbTdN5kYhKZbsP0a -
PC opeens traag (3)
thaonlyone reageerde op thaonlyone's topic in Archief Bestrijding malware & virussen
neej mijn computer was al veel langer traag helaas maar het hij was eerst wel snel -
PC opeens traag (3)
thaonlyone reageerde op thaonlyone's topic in Archief Bestrijding malware & virussen
nog steeds is mijn computer echt traag snap er niets meer van het is wel beter dan eerst maar ik heb nu natuurlijk die irritante meldingen dat de software niet legitiem is -
Ik weet het niet zeker maar als je het filmpje bekijkt kun je bij het bovenste balkje waar de website op staat (ben ff de naam kwijt) bij youtube er gewoon xd voor zetten en dan kom je op clib.dj uit( je kan er ook gewoon naar toe en dan vindt je ook de youtube filmjes) en dan kan je ze daar downloaden www.clib.dj
-
PC opeens traag (3)
thaonlyone reageerde op thaonlyone's topic in Archief Bestrijding malware & virussen
okeey 23:26:21.0593 3812 TDSS rootkit removing tool 2.7.31.0 Apr 20 2012 19:49:47 23:26:21.0656 3812 ============================================================ 23:26:21.0656 3812 Current date / time: 2012/04/20 23:26:21.0656 23:26:21.0656 3812 SystemInfo: 23:26:21.0656 3812 23:26:21.0656 3812 OS Version: 5.1.2600 ServicePack: 3.0 23:26:21.0656 3812 Product type: Workstation 23:26:21.0656 3812 ComputerName: JOHAN-COMPUTER 23:26:21.0656 3812 UserName: Administrator 23:26:21.0656 3812 Windows directory: C:\WINDOWS 23:26:21.0656 3812 System windows directory: C:\WINDOWS 23:26:21.0656 3812 Processor architecture: Intel x86 23:26:21.0656 3812 Number of processors: 2 23:26:21.0656 3812 Page size: 0x1000 23:26:21.0656 3812 Boot type: Normal boot 23:26:21.0656 3812 ============================================================ 23:26:24.0500 3812 Drive \Device\Harddisk0\DR0 - Size: 0x2658AE0000 (153.39 Gb), SectorSize: 0x200, Cylinders: 0x531A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000054 23:26:24.0500 3812 \Device\Harddisk0\DR0: 23:26:24.0500 3812 MBR partitions: 23:26:24.0500 3812 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xFFF9D41 23:26:24.0531 3812 C: <-> \Device\Harddisk0\DR0\Partition0 23:26:24.0531 3812 Initialize success 23:26:24.0531 3812 ============================================================ 23:26:26.0312 6084 ============================================================ 23:26:26.0312 6084 Scan started 23:26:26.0312 6084 Mode: Manual; 23:26:26.0312 6084 ============================================================ 23:26:27.0062 6084 Aavmker4 (473f97edc5a5312f3665ab2921196c0c) C:\WINDOWS\system32\drivers\Aavmker4.sys 23:26:27.0062 6084 Aavmker4 - ok 23:26:27.0078 6084 Abiosdsk - ok 23:26:27.0093 6084 abp480n5 - ok 23:26:27.0125 6084 ACPI (02273a448ba21a7d447daeb47810d40c) C:\WINDOWS\system32\DRIVERS\ACPI.sys 23:26:27.0140 6084 ACPI - ok 23:26:27.0203 6084 ACPIEC (63f517b1a87dabf3f5acb8a7952fc1d1) C:\WINDOWS\system32\drivers\ACPIEC.sys 23:26:27.0250 6084 ACPIEC - ok 23:26:27.0265 6084 adpu160m - ok 23:26:27.0296 6084 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys 23:26:27.0312 6084 aec - ok 23:26:27.0406 6084 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys 23:26:27.0406 6084 AFD - ok 23:26:27.0421 6084 Aha154x - ok 23:26:27.0437 6084 aic78u2 - ok 23:26:27.0437 6084 aic78xx - ok 23:26:27.0484 6084 Alerter (8bed67d13dcb55b3e9ff6dac4c6d3b49) C:\WINDOWS\system32\alrsvc.dll 23:26:27.0484 6084 Alerter - ok 23:26:27.0500 6084 ALG (dab2a89fde5cf791161200d90c1bcb12) C:\WINDOWS\System32\alg.exe 23:26:27.0500 6084 ALG - ok 23:26:27.0515 6084 AliIde - ok 23:26:27.0531 6084 amsint - ok 23:26:27.0640 6084 Apple Mobile Device (7ef47644b74ebe721cc32211d3c35e76) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe 23:26:27.0640 6084 Apple Mobile Device - ok 23:26:27.0718 6084 AppMgmt (434a70fa278eb3c42140e3755c2fa4f8) C:\WINDOWS\System32\appmgmts.dll 23:26:27.0734 6084 AppMgmt - ok 23:26:27.0734 6084 asc - ok 23:26:27.0750 6084 asc3350p - ok 23:26:27.0765 6084 asc3550 - ok 23:26:27.0828 6084 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe 23:26:27.0843 6084 aspnet_state - ok 23:26:27.0875 6084 aswFsBlk (0ae43c6c411254049279c2ee55630f95) C:\WINDOWS\system32\drivers\aswFsBlk.sys 23:26:27.0875 6084 aswFsBlk - ok 23:26:27.0906 6084 aswMon2 (8c30b7ddd2f1d8d138ebe40345af2b11) C:\WINDOWS\system32\drivers\aswMon2.sys 23:26:27.0906 6084 aswMon2 - ok 23:26:27.0921 6084 AswRdr (da12626fd9a67f4e917e2f2fbe1e1764) C:\WINDOWS\system32\drivers\AswRdr.sys 23:26:27.0921 6084 AswRdr - ok 23:26:28.0031 6084 aswSnx (dcb199b967375753b5019ec15f008f53) C:\WINDOWS\system32\drivers\aswSnx.sys 23:26:28.0046 6084 aswSnx - ok 23:26:28.0062 6084 aswSP (b32873e5a1443c0a1e322266e203bf10) C:\WINDOWS\system32\drivers\aswSP.sys 23:26:28.0078 6084 aswSP - ok 23:26:28.0390 6084 aswTdi (6ff544175a9180c5d88534d3d9c9a9f7) C:\WINDOWS\system32\drivers\aswTdi.sys 23:26:28.0421 6084 aswTdi - ok 23:26:28.0515 6084 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 23:26:28.0515 6084 AsyncMac - ok 23:26:28.0593 6084 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys 23:26:28.0593 6084 atapi - ok 23:26:28.0609 6084 Atdisk - ok 23:26:28.0671 6084 Ati HotKey Poller (1bd87fec00508dcfc23af4727ba14333) C:\WINDOWS\system32\Ati2evxx.exe 23:26:28.0671 6084 Ati HotKey Poller - ok 23:26:28.0875 6084 ati2mtag (caadf7aa3abc6afcb3d02b129de9863a) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys 23:26:29.0015 6084 ati2mtag - ok 23:26:29.0125 6084 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 23:26:29.0156 6084 Atmarpc - ok 23:26:29.0234 6084 AudioSrv (f10745ed3195360e69aa4a6e7768c0e0) C:\WINDOWS\System32\audiosrv.dll 23:26:29.0234 6084 AudioSrv - ok 23:26:29.0281 6084 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 23:26:29.0281 6084 audstub - ok 23:26:29.0437 6084 avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\AVAST Software\Avast\AvastSvc.exe 23:26:29.0437 6084 avast! Antivirus - ok 23:26:29.0546 6084 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 23:26:29.0546 6084 Beep - ok 23:26:29.0593 6084 BITS (5c0073a51c4873430fa8b262e92183ff) C:\WINDOWS\system32\qmgr.dll 23:26:29.0609 6084 BITS - ok 23:26:29.0703 6084 Bonjour Service (db5bea73edaf19ac68b2c0fad0f92b1a) C:\Program Files\Bonjour\mDNSResponder.exe 23:26:29.0718 6084 Bonjour Service - ok 23:26:29.0750 6084 Browser (69eaa7501f53a40e8c04c69f2391224f) C:\WINDOWS\System32\browser.dll 23:26:29.0750 6084 Browser - ok 23:26:29.0781 6084 CachemanService (d86ccdb5759bdc61a49e96df425573ed) C:\Program Files\Cacheman\CachemanServ.exe 23:26:29.0781 6084 CachemanService - ok 23:26:29.0796 6084 catchme - ok 23:26:29.0906 6084 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 23:26:29.0937 6084 cbidf2k - ok 23:26:30.0015 6084 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys 23:26:30.0046 6084 CCDECODE - ok 23:26:30.0046 6084 cd20xrnt - ok 23:26:30.0078 6084 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 23:26:30.0078 6084 Cdaudio - ok 23:26:30.0093 6084 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys 23:26:30.0093 6084 Cdfs - ok 23:26:30.0171 6084 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys 23:26:30.0218 6084 Cdrom - ok 23:26:30.0218 6084 Changer - ok 23:26:30.0250 6084 cisvc (bd85400700b80fbe3d4a3412bce74861) C:\WINDOWS\system32\cisvc.exe 23:26:30.0250 6084 cisvc - ok 23:26:30.0265 6084 ClipSrv (4fb6108130829666c8fe96b442fead94) C:\WINDOWS\system32\clipsrv.exe 23:26:30.0265 6084 ClipSrv - ok 23:26:30.0500 6084 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 23:26:30.0546 6084 clr_optimization_v2.0.50727_32 - ok 23:26:30.0625 6084 CmdIde - ok 23:26:30.0625 6084 COMSysApp - ok 23:26:30.0640 6084 Cpqarray - ok 23:26:30.0671 6084 CryptSvc (0a9cf5d3cf63a8699f28c814ef821c7e) C:\WINDOWS\System32\cryptsvc.dll 23:26:30.0687 6084 CryptSvc - ok 23:26:30.0687 6084 dac2w2k - ok 23:26:30.0703 6084 dac960nt - ok 23:26:30.0750 6084 DcomLaunch (d9883335cc1c17afc3a09c8ac3e4dbe4) C:\WINDOWS\system32\rpcss.dll 23:26:30.0750 6084 DcomLaunch - ok 23:26:30.0843 6084 Dhcp (146ab038f5dbb366122d28444999ab2c) C:\WINDOWS\System32\dhcpcsvc.dll 23:26:30.0843 6084 Dhcp - ok 23:26:30.0875 6084 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys 23:26:30.0890 6084 Disk - ok 23:26:30.0921 6084 dmadmin - ok 23:26:30.0968 6084 dmboot (dec123e0c75971d0cc7a6c6a75e28429) C:\WINDOWS\system32\drivers\dmboot.sys 23:26:30.0984 6084 dmboot - ok 23:26:31.0000 6084 dmio (7268e66259722f6228c730685b201092) C:\WINDOWS\system32\DRIVERS\dmio.sys 23:26:31.0000 6084 dmio - ok 23:26:31.0015 6084 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 23:26:31.0015 6084 dmload - ok 23:26:31.0046 6084 dmserver (127db74184e2d3d31655da525a5efde1) C:\WINDOWS\System32\dmserver.dll 23:26:31.0046 6084 dmserver - ok 23:26:31.0140 6084 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys 23:26:31.0140 6084 DMusic - ok 23:26:31.0203 6084 Dnscache (de6cdb6cbc5c27b9085cfa6dfe8e5025) C:\WINDOWS\System32\dnsrslvr.dll 23:26:31.0218 6084 Dnscache - ok 23:26:31.0265 6084 Dot3svc (90ee765e1a598b578852901f74f914f1) C:\WINDOWS\System32\dot3svc.dll 23:26:31.0265 6084 Dot3svc - ok 23:26:31.0312 6084 dpti2o - ok 23:26:31.0328 6084 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys 23:26:31.0328 6084 drmkaud - ok 23:26:31.0343 6084 EagleXNt - ok 23:26:31.0375 6084 EapHost (e6bbdebf7081899d161c773e8d84d015) C:\WINDOWS\System32\eapsvc.dll 23:26:31.0375 6084 EapHost - ok 23:26:31.0421 6084 ERSvc (2f5c7f650b7af178988946ee4b0d9c01) C:\WINDOWS\System32\ersvc.dll 23:26:31.0421 6084 ERSvc - ok 23:26:31.0468 6084 Eventlog (657b69389b893f440b07590c9e963f23) C:\WINDOWS\system32\services.exe 23:26:31.0468 6084 Eventlog - ok 23:26:31.0562 6084 EventSystem (97912dc0679d2da60cce589bbc196d72) C:\WINDOWS\system32\es.dll 23:26:31.0562 6084 EventSystem - ok 23:26:31.0625 6084 Fabs - ok 23:26:31.0671 6084 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys 23:26:31.0687 6084 Fastfat - ok 23:26:31.0750 6084 FastUserSwitchingCompatibility (2d5d4156292150fe571872c1b88e9299) C:\WINDOWS\System32\shsvcs.dll 23:26:31.0750 6084 FastUserSwitchingCompatibility - ok 23:26:31.0796 6084 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys 23:26:31.0796 6084 Fdc - ok 23:26:31.0843 6084 Fips (8bfffb5ac954e19dfdb96d56512aa518) C:\WINDOWS\system32\drivers\Fips.sys 23:26:31.0843 6084 Fips - ok 23:26:31.0937 6084 FirebirdServerMAGIXInstance (fff1130f7c9fa01d093a1edfc5cce8fc) C:\Program Files\Common Files\MAGIX Services\Database\bin\fbserver.exe 23:26:32.0046 6084 FirebirdServerMAGIXInstance - ok 23:26:32.0156 6084 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys 23:26:32.0156 6084 Flpydisk - ok 23:26:32.0250 6084 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys 23:26:32.0250 6084 FltMgr - ok 23:26:32.0375 6084 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe 23:26:32.0375 6084 FontCache3.0.0.0 - ok 23:26:32.0406 6084 fssfltr (e0087225b137e57239ff40f8ae82059b) C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys 23:26:32.0406 6084 fssfltr - ok 23:26:32.0500 6084 fsssvc (45b52394f9624237f33a8a3d73c0b221) C:\Program Files\Windows Live\Family Safety\fsssvc.exe 23:26:32.0562 6084 fsssvc - ok 23:26:32.0656 6084 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 23:26:32.0656 6084 Fs_Rec - ok 23:26:32.0687 6084 Ftdisk (fa8ca22e70245c81ff29c36af56292fc) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 23:26:32.0687 6084 Ftdisk - ok 23:26:32.0718 6084 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys 23:26:32.0718 6084 GEARAspiWDM - ok 23:26:32.0734 6084 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys 23:26:32.0734 6084 Gpc - ok 23:26:32.0828 6084 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe 23:26:32.0828 6084 gupdate - ok 23:26:32.0828 6084 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe 23:26:32.0843 6084 gupdatem - ok 23:26:32.0953 6084 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys 23:26:32.0953 6084 HDAudBus - ok 23:26:33.0062 6084 helpsvc (5327bad9b35c33d2a64b64e4cf282ecd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll 23:26:33.0062 6084 helpsvc - ok 23:26:33.0093 6084 HidServ (10003105aab8d5a7db51a9cb3d9f55a3) C:\WINDOWS\System32\hidserv.dll 23:26:33.0109 6084 HidServ - ok 23:26:33.0140 6084 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys 23:26:33.0156 6084 HidUsb - ok 23:26:33.0265 6084 hkmsvc (1ff903ffa2da1704e5a5443d37d8e49e) C:\WINDOWS\System32\kmsvc.dll 23:26:33.0281 6084 hkmsvc - ok 23:26:33.0343 6084 hpn - ok 23:26:33.0484 6084 hpt3xx - ok 23:26:33.0656 6084 htcnprot (04e3b3554076b8192a668efe88a682a1) C:\WINDOWS\system32\DRIVERS\htcnprot.sys 23:26:33.0671 6084 htcnprot - ok 23:26:34.0031 6084 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys 23:26:34.0062 6084 HTTP - ok 23:26:34.0234 6084 HTTPFilter (2529c7ba05242beed0027f554d0513bb) C:\WINDOWS\System32\w3ssl.dll 23:26:34.0234 6084 HTTPFilter - ok 23:26:34.0281 6084 i2omgmt - ok 23:26:34.0281 6084 i2omp - ok 23:26:34.0328 6084 i8042prt (c43372d0682f8e32e4ec21117e089ec0) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 23:26:34.0375 6084 i8042prt - ok 23:26:34.0484 6084 IDriverT (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe 23:26:34.0484 6084 IDriverT - ok 23:26:34.0734 6084 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 23:26:34.0765 6084 idsvc - ok 23:26:34.0859 6084 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys 23:26:34.0890 6084 Imapi - ok 23:26:34.0953 6084 ImapiService (a117772f94c854de5d1bbc1f1962b192) C:\WINDOWS\system32\imapi.exe 23:26:34.0953 6084 ImapiService - ok 23:26:34.0984 6084 ini910u - ok 23:26:35.0140 6084 IntcAzAudAddService (98b7fab86755a42fe8eb04538a4cd6c8) C:\WINDOWS\system32\drivers\RtkHDAud.sys 23:26:35.0203 6084 IntcAzAudAddService - ok 23:26:35.0328 6084 IntelIde - ok 23:26:35.0421 6084 intelppm (2d2254fac267e6b1c7865e8ebef60c6d) C:\WINDOWS\system32\DRIVERS\intelppm.sys 23:26:35.0421 6084 intelppm - ok 23:26:35.0437 6084 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys 23:26:35.0437 6084 Ip6Fw - ok 23:26:35.0453 6084 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 23:26:35.0453 6084 IpFilterDriver - ok 23:26:35.0468 6084 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys 23:26:35.0468 6084 IpInIp - ok 23:26:35.0500 6084 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys 23:26:35.0515 6084 IpNat - ok 23:26:35.0578 6084 iPod Service (ce004777b92dea56fe14ec900d20baa4) C:\Program Files\iPod\bin\iPodService.exe 23:26:35.0593 6084 iPod Service - ok 23:26:35.0703 6084 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys 23:26:35.0703 6084 IPSec - ok 23:26:35.0781 6084 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys 23:26:35.0796 6084 IRENUM - ok 23:26:35.0828 6084 isapnp (0b78e1a31340e1fb1e389d5633f7c3a0) C:\WINDOWS\system32\DRIVERS\isapnp.sys 23:26:35.0859 6084 isapnp - ok 23:26:36.0125 6084 JavaQuickStarterService (381b25dc8e958d905b33130d500bbf29) C:\Program Files\Java\jre6\bin\jqs.exe 23:26:36.0125 6084 JavaQuickStarterService - ok 23:26:36.0359 6084 Kbdclass (380397621e94b32c744e7b2cc1330390) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 23:26:36.0359 6084 Kbdclass - ok 23:26:36.0406 6084 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys 23:26:36.0421 6084 kmixer - ok 23:26:36.0468 6084 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys 23:26:36.0468 6084 KSecDD - ok 23:26:36.0546 6084 LanmanWorkstation (a936a575eaf6dce8dc08bc0c53972add) C:\WINDOWS\System32\wkssvc.dll 23:26:36.0546 6084 LanmanWorkstation - ok 23:26:36.0593 6084 lbrtfdc - ok 23:26:36.0640 6084 LmHosts (91ae20c5c2776c511994aa1308c05283) C:\WINDOWS\System32\lmhsvc.dll 23:26:36.0640 6084 LmHosts - ok 23:26:36.0671 6084 mcdbus - ok 23:26:36.0687 6084 Messenger (c56a45a03dca11712de9fdf98224230b) C:\WINDOWS\System32\msgsvc.dll 23:26:36.0687 6084 Messenger - ok 23:26:36.0703 6084 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 23:26:36.0703 6084 mnmdd - ok 23:26:36.0734 6084 mnmsrvc (9468f9f10da27aad64108182ab5c2f29) C:\WINDOWS\System32\mnmsrvc.exe 23:26:36.0734 6084 mnmsrvc - ok 23:26:36.0765 6084 Modem (8114eeac353f549331ab73e9af4219ed) C:\WINDOWS\system32\drivers\Modem.sys 23:26:36.0781 6084 Modem - ok 23:26:36.0890 6084 Mouclass (1a4e2214dd63e4a876463d3427ee8261) C:\WINDOWS\system32\DRIVERS\mouclass.sys 23:26:36.0890 6084 Mouclass - ok 23:26:36.0937 6084 mouhid (18017899254e01371e1a39754d6bf98c) C:\WINDOWS\system32\DRIVERS\mouhid.sys 23:26:36.0937 6084 mouhid - ok 23:26:36.0984 6084 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys 23:26:36.0984 6084 MountMgr - ok 23:26:36.0984 6084 mraid35x - ok 23:26:37.0031 6084 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 23:26:37.0046 6084 MRxDAV - ok 23:26:37.0093 6084 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 23:26:37.0109 6084 MRxSmb - ok 23:26:37.0187 6084 MSDTC (21ea21984d7d1ad50db2e627020ab14c) C:\WINDOWS\System32\msdtc.exe 23:26:37.0187 6084 MSDTC - ok 23:26:37.0265 6084 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys 23:26:37.0265 6084 Msfs - ok 23:26:37.0281 6084 MSIServer - ok 23:26:37.0312 6084 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys 23:26:37.0312 6084 MSKSSRV - ok 23:26:37.0343 6084 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 23:26:37.0343 6084 MSPCLOCK - ok 23:26:37.0375 6084 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys 23:26:37.0375 6084 MSPQM - ok 23:26:37.0593 6084 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 23:26:37.0593 6084 mssmbios - ok 23:26:37.0750 6084 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys 23:26:37.0765 6084 MSTEE - ok 23:26:38.0000 6084 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys 23:26:38.0015 6084 Mup - ok 23:26:38.0234 6084 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys 23:26:38.0250 6084 NABTSFEC - ok 23:26:38.0375 6084 napagent (87e394c810794d3c70cf22e8316cb23e) C:\WINDOWS\System32\qagentrt.dll 23:26:38.0406 6084 napagent - ok 23:26:38.0453 6084 NAUpdate - ok 23:26:38.0671 6084 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys 23:26:38.0671 6084 NDIS - ok 23:26:38.0703 6084 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys 23:26:38.0703 6084 NdisIP - ok 23:26:38.0734 6084 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 23:26:38.0734 6084 NdisTapi - ok 23:26:38.0781 6084 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 23:26:38.0781 6084 Ndisuio - ok 23:26:38.0812 6084 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 23:26:38.0812 6084 NdisWan - ok 23:26:38.0906 6084 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys 23:26:38.0906 6084 NDProxy - ok 23:26:39.0093 6084 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys 23:26:39.0093 6084 NetBIOS - ok 23:26:39.0171 6084 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys 23:26:39.0171 6084 NetBT - ok 23:26:39.0218 6084 NetDDE (dc6bae085e9b3c2f3a963ed46791feab) C:\WINDOWS\system32\netdde.exe 23:26:39.0218 6084 NetDDE - ok 23:26:39.0234 6084 NetDDEdsdm (dc6bae085e9b3c2f3a963ed46791feab) C:\WINDOWS\system32\netdde.exe 23:26:39.0234 6084 NetDDEdsdm - ok 23:26:39.0296 6084 Netlogon (8754210a3399d19610ce2d71e0c3e5d9) C:\WINDOWS\system32\lsass.exe 23:26:39.0296 6084 Netlogon - ok 23:26:39.0359 6084 Netman (5431fb616ecae0d587c5b97d0b86cbd8) C:\WINDOWS\System32\netman.dll 23:26:39.0359 6084 Netman - ok 23:26:39.0453 6084 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 23:26:39.0453 6084 NetTcpPortSharing - ok 23:26:39.0531 6084 Nla (4522cbe00a9e9eee36aa82ed4b319148) C:\WINDOWS\System32\mswsock.dll 23:26:39.0531 6084 Nla - ok 23:26:39.0578 6084 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys 23:26:39.0578 6084 Npfs - ok 23:26:39.0609 6084 npggsvc - ok 23:26:39.0640 6084 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys 23:26:39.0640 6084 Ntfs - ok 23:26:39.0671 6084 NtLmSsp (8754210a3399d19610ce2d71e0c3e5d9) C:\WINDOWS\system32\lsass.exe 23:26:39.0671 6084 NtLmSsp - ok 23:26:39.0734 6084 NtmsSvc (ac1a78237b53044735693633f8235468) C:\WINDOWS\system32\ntmssvc.dll 23:26:39.0734 6084 NtmsSvc - ok 23:26:39.0765 6084 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 23:26:39.0765 6084 Null - ok 23:26:39.0812 6084 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 23:26:39.0828 6084 NwlnkFlt - ok 23:26:39.0875 6084 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 23:26:39.0875 6084 NwlnkFwd - ok 23:26:40.0140 6084 odserv (1f0e05dff4f5a833168e49be1256f002) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 23:26:40.0156 6084 odserv - ok 23:26:40.0203 6084 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 23:26:40.0203 6084 ose - ok 23:26:40.0468 6084 Parport (e3934ccc20a4d24f1924e13d36d2a5bd) C:\WINDOWS\system32\DRIVERS\parport.sys 23:26:40.0500 6084 Parport - ok 23:26:40.0578 6084 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys 23:26:40.0578 6084 PartMgr - ok 23:26:40.0640 6084 ParVdm (1eade28746a64c21e0a808bb12a63326) C:\WINDOWS\system32\drivers\ParVdm.sys 23:26:40.0640 6084 ParVdm - ok 23:26:40.0765 6084 PassThru Service (68139940b5ac84affb7eb1b713be66e7) C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe 23:26:40.0906 6084 PassThru Service - ok 23:26:41.0125 6084 PCI (3b166f9f753c21aedaa9a6bd76b49655) C:\WINDOWS\system32\DRIVERS\pci.sys 23:26:41.0171 6084 PCI - ok 23:26:41.0203 6084 PCIDump - ok 23:26:41.0234 6084 PCIIde (b31edeba4da28283f6b8dc4756fb9585) C:\WINDOWS\system32\DRIVERS\pciide.sys 23:26:41.0234 6084 PCIIde - ok 23:26:41.0265 6084 Pcmcia (2137ffd65f8e609a3a5acd487c56cce0) C:\WINDOWS\system32\drivers\Pcmcia.sys 23:26:41.0265 6084 Pcmcia - ok 23:26:41.0437 6084 PCToolsSSDMonitorSvc (e6e503845208a148a9e3e7faa63b97a4) C:\Program Files\Common Files\PC Tools\sMonitor\StartManSvc.exe 23:26:41.0453 6084 PCToolsSSDMonitorSvc - ok 23:26:41.0515 6084 PDCOMP - ok 23:26:41.0515 6084 PDFRAME - ok 23:26:41.0531 6084 PDRELI - ok 23:26:41.0546 6084 PDRFRAME - ok 23:26:41.0546 6084 perc2 - ok 23:26:41.0562 6084 perc2hib - ok 23:26:41.0578 6084 pktpra1.sys - ok 23:26:41.0625 6084 PlugPlay (657b69389b893f440b07590c9e963f23) C:\WINDOWS\system32\services.exe 23:26:41.0625 6084 PlugPlay - ok 23:26:41.0625 6084 PolicyAgent (8754210a3399d19610ce2d71e0c3e5d9) C:\WINDOWS\system32\lsass.exe 23:26:41.0640 6084 PolicyAgent - ok 23:26:41.0656 6084 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys 23:26:41.0656 6084 PptpMiniport - ok 23:26:41.0703 6084 Processor (82a17eca34d801590a67c0a2244965ed) C:\WINDOWS\system32\DRIVERS\processr.sys 23:26:41.0703 6084 Processor - ok 23:26:41.0703 6084 ProtectedStorage (8754210a3399d19610ce2d71e0c3e5d9) C:\WINDOWS\system32\lsass.exe 23:26:41.0703 6084 ProtectedStorage - ok 23:26:41.0734 6084 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys 23:26:41.0734 6084 PSched - ok 23:26:41.0765 6084 PSI (d24dfd16a1e2a76034df5aa18125c35d) C:\WINDOWS\system32\DRIVERS\psi_mf.sys 23:26:41.0765 6084 PSI - ok 23:26:41.0921 6084 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 23:26:41.0921 6084 Ptilink - ok 23:26:41.0937 6084 ql1080 - ok 23:26:41.0953 6084 Ql10wnt - ok 23:26:41.0953 6084 ql12160 - ok 23:26:41.0968 6084 ql1240 - ok 23:26:41.0984 6084 ql1280 - ok 23:26:42.0015 6084 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 23:26:42.0015 6084 RasAcd - ok 23:26:42.0046 6084 RasAuto (0575d034b1292ca3a9bb9f67a8ee289c) C:\WINDOWS\System32\rasauto.dll 23:26:42.0046 6084 RasAuto - ok 23:26:42.0078 6084 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 23:26:42.0078 6084 Rasl2tp - ok 23:26:42.0109 6084 RasMan (9e7e2df6971a5f00102be3f901cc3bdc) C:\WINDOWS\System32\rasmans.dll 23:26:42.0109 6084 RasMan - ok 23:26:42.0140 6084 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 23:26:42.0140 6084 RasPppoe - ok 23:26:42.0187 6084 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 23:26:42.0203 6084 Raspti - ok 23:26:42.0265 6084 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys 23:26:42.0265 6084 Rdbss - ok 23:26:42.0281 6084 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 23:26:42.0281 6084 RDPCDD - ok 23:26:42.0328 6084 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys 23:26:42.0343 6084 rdpdr - ok 23:26:42.0406 6084 RDPWD (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys 23:26:42.0406 6084 RDPWD - ok 23:26:42.0453 6084 RDSessMgr (ea9fdf71d696b532bdc44c8bff03a737) C:\WINDOWS\system32\sessmgr.exe 23:26:42.0468 6084 RDSessMgr - ok 23:26:42.0484 6084 redbook (4173bc66e485fd77a03c4819f60bd0da) C:\WINDOWS\system32\DRIVERS\redbook.sys 23:26:42.0500 6084 redbook - ok 23:26:42.0515 6084 RemoteAccess (4007abf5d9bf0e55451d775443d1f985) C:\WINDOWS\System32\mprdim.dll 23:26:42.0531 6084 RemoteAccess - ok 23:26:42.0593 6084 RemoteRegistry (2fd5b89bf9289c774c5c730dea96cd91) C:\WINDOWS\system32\regsvc.dll 23:26:42.0593 6084 RemoteRegistry - ok 23:26:42.0640 6084 RimUsb (616eac1b0e48b236a5a9b8ae07fdb81c) C:\WINDOWS\system32\Drivers\RimUsb.sys 23:26:42.0640 6084 RimUsb - ok 23:26:42.0703 6084 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\WINDOWS\system32\DRIVERS\RimSerial.sys 23:26:42.0703 6084 RimVSerPort - ok 23:26:42.0734 6084 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys 23:26:42.0734 6084 ROOTMODEM - ok 23:26:42.0765 6084 RpcLocator (be078f8f7ec2491efdd79a53353a060f) C:\WINDOWS\system32\locator.exe 23:26:42.0765 6084 RpcLocator - ok 23:26:42.0843 6084 RpcSs (d9883335cc1c17afc3a09c8ac3e4dbe4) C:\WINDOWS\System32\rpcss.dll 23:26:42.0859 6084 RpcSs - ok 23:26:42.0953 6084 RSVP (ad1b5f1b99fff08c99f443d784711a81) C:\WINDOWS\system32\rsvp.exe 23:26:42.0953 6084 RSVP - ok 23:26:43.0000 6084 SamSs (8754210a3399d19610ce2d71e0c3e5d9) C:\WINDOWS\system32\lsass.exe 23:26:43.0015 6084 SamSs - ok 23:26:43.0046 6084 SCardDrv (392fab18bdb3532d349063c62f514270) C:\WINDOWS\System32\SCardSvr.exe 23:26:43.0046 6084 SCardDrv - ok 23:26:43.0062 6084 SCardSvr (392fab18bdb3532d349063c62f514270) C:\WINDOWS\System32\SCardSvr.exe 23:26:43.0062 6084 SCardSvr - ok 23:26:43.0140 6084 Schedule (7c288ae0f75cb18cff1df6179a67ad8f) C:\WINDOWS\system32\schedsvc.dll 23:26:43.0156 6084 Schedule - ok 23:26:43.0218 6084 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys 23:26:43.0218 6084 Secdrv - ok 23:26:43.0296 6084 seclogon (6983665bea867125b1da5757cd8b2f9d) C:\WINDOWS\System32\seclogon.dll 23:26:43.0343 6084 seclogon - ok 23:26:43.0500 6084 Secunia PSI Agent (5b66db4877bbac9f7493aa8d84421e49) C:\Program Files\Secunia\PSI\PSIA.exe 23:26:43.0515 6084 Secunia PSI Agent - ok 23:26:43.0625 6084 SENS (f6ec8f1e50e40237bddee1cb7fe20b42) C:\WINDOWS\system32\sens.dll 23:26:43.0625 6084 SENS - ok 23:26:43.0687 6084 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys 23:26:43.0687 6084 serenum - ok 23:26:43.0687 6084 Serial (92c21762653bb2ce51147eb8a9aa654f) C:\WINDOWS\system32\DRIVERS\serial.sys 23:26:43.0687 6084 Serial - ok 23:26:43.0734 6084 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys 23:26:43.0734 6084 Sfloppy - ok 23:26:43.0781 6084 SharedAccess (7579c4be909d47f10f3d8d801cb13ed9) C:\WINDOWS\System32\ipnathlp.dll 23:26:43.0796 6084 SharedAccess - ok 23:26:43.0843 6084 ShellHWDetection (2d5d4156292150fe571872c1b88e9299) C:\WINDOWS\System32\shsvcs.dll 23:26:43.0859 6084 ShellHWDetection - ok 23:26:43.0859 6084 Simbad - ok 23:26:43.0890 6084 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys 23:26:43.0890 6084 SLIP - ok 23:26:43.0968 6084 SmartDefragDriver (14bb60a4f1c5291217a05d5728c403e6) C:\WINDOWS\system32\Drivers\SmartDefragDriver.sys 23:26:44.0015 6084 SmartDefragDriver - ok 23:26:44.0093 6084 Sparrow - ok 23:26:44.0140 6084 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys 23:26:44.0156 6084 splitter - ok 23:26:44.0187 6084 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe 23:26:44.0187 6084 Spooler - ok 23:26:44.0250 6084 sptd (8ea0fd60a5b047e0c734d51aace531c9) C:\WINDOWS\System32\Drivers\sptd.sys 23:26:44.0250 6084 Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\sptd.sys. md5: 8ea0fd60a5b047e0c734d51aace531c9 23:26:44.0250 6084 sptd ( LockedFile.Multi.Generic ) - warning 23:26:44.0250 6084 sptd - detected LockedFile.Multi.Generic (1) 23:26:44.0281 6084 sr (64d2a7640e0767ecd3bcb38d3200e7ce) C:\WINDOWS\system32\DRIVERS\sr.sys 23:26:44.0281 6084 sr - ok 23:26:44.0421 6084 srservice (81cbf363c414620caa61bd6843d8fdb9) C:\WINDOWS\system32\srsvc.dll 23:26:44.0437 6084 srservice - ok 23:26:44.0484 6084 SSDPSRV (5b9d0de64be96a806819516440fd211c) C:\WINDOWS\System32\ssdpsrv.dll 23:26:44.0484 6084 SSDPSRV - ok 23:26:44.0546 6084 StarWindServiceAE (b1691af4a072cb674d600db16dd7308e) C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe 23:26:44.0546 6084 StarWindServiceAE - ok 23:26:44.0593 6084 stisvc (5ae996186d2dc694fef88f14a3fc9242) C:\WINDOWS\system32\wiaservc.dll 23:26:44.0609 6084 stisvc - ok 23:26:44.0703 6084 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys 23:26:44.0703 6084 streamip - ok 23:26:44.0734 6084 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys 23:26:44.0750 6084 swenum - ok 23:26:44.0781 6084 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys 23:26:44.0781 6084 swmidi - ok 23:26:44.0796 6084 SwPrv - ok 23:26:44.0796 6084 symc810 - ok 23:26:44.0968 6084 symc8xx - ok 23:26:45.0062 6084 sym_hi - ok 23:26:45.0156 6084 sym_u3 - ok 23:26:45.0187 6084 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys 23:26:45.0187 6084 sysaudio - ok 23:26:45.0234 6084 SysmonLog (251eae7c56c6ab9490311a3c9757e18d) C:\WINDOWS\system32\smlogsvc.exe 23:26:45.0234 6084 SysmonLog - ok 23:26:45.0296 6084 TapiSrv (2bc9fb448f0c2394ff53c83a7bb04731) C:\WINDOWS\System32\tapisrv.dll 23:26:45.0343 6084 TapiSrv - ok 23:26:45.0546 6084 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys 23:26:45.0546 6084 Tcpip - ok 23:26:45.0578 6084 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys 23:26:45.0578 6084 TDPIPE - ok 23:26:45.0609 6084 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys 23:26:45.0609 6084 TDTCP - ok 23:26:45.0656 6084 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys 23:26:45.0656 6084 TermDD - ok 23:26:45.0703 6084 TermService (e0aef86a594c9990d6321c5ca239c5b7) C:\WINDOWS\System32\termsrv.dll 23:26:45.0718 6084 TermService - ok 23:26:45.0796 6084 Themes (2d5d4156292150fe571872c1b88e9299) C:\WINDOWS\System32\shsvcs.dll 23:26:45.0812 6084 Themes - ok 23:26:45.0984 6084 TlntSvr (2d357c84f399dc78fca9f03d5db85d24) C:\WINDOWS\System32\tlntsvr.exe 23:26:45.0984 6084 TlntSvr - ok 23:26:46.0046 6084 TosIde - ok 23:26:46.0078 6084 TrkWks (20655e8ca1c78bc7088b18e93806d21b) C:\WINDOWS\system32\trkwks.dll 23:26:46.0093 6084 TrkWks - ok 23:26:46.0156 6084 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys 23:26:46.0156 6084 Udfs - ok 23:26:46.0171 6084 ultra - ok 23:26:46.0296 6084 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys 23:26:46.0312 6084 Update - ok 23:26:46.0343 6084 upnphost (01653d6c9604f1fb31a76ec94e08954f) C:\WINDOWS\System32\upnphost.dll 23:26:46.0359 6084 upnphost - ok 23:26:46.0390 6084 UPS (a89796dd0de24cf03b3a39407e1f46a3) C:\WINDOWS\System32\ups.exe 23:26:46.0390 6084 UPS - ok 23:26:46.0453 6084 USBAAPL (eafe1e00739afe6c51487a050e772e17) C:\WINDOWS\system32\Drivers\usbaapl.sys 23:26:46.0453 6084 USBAAPL - ok 23:26:46.0484 6084 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys 23:26:46.0515 6084 usbaudio - ok 23:26:46.0578 6084 usbbus (9419faac6552a51542dbba02971c841c) C:\WINDOWS\system32\DRIVERS\lgusbbus.sys 23:26:46.0578 6084 usbbus - ok 23:26:46.0625 6084 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 23:26:46.0625 6084 usbccgp - ok 23:26:46.0671 6084 UsbDiag (c0a466fa4ffec464320e159bc1bbdc0c) C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys 23:26:46.0671 6084 UsbDiag - ok 23:26:46.0703 6084 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys 23:26:46.0703 6084 usbehci - ok 23:26:46.0718 6084 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys 23:26:46.0734 6084 usbhub - ok 23:26:47.0031 6084 USBModem (f74a54774a9b0afeb3c40adec68aa600) C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys 23:26:47.0046 6084 USBModem - ok 23:26:47.0203 6084 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys 23:26:47.0234 6084 usbscan - ok 23:26:47.0468 6084 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 23:26:47.0515 6084 USBSTOR - ok 23:26:47.0906 6084 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys 23:26:47.0906 6084 usbuhci - ok 23:26:47.0937 6084 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys 23:26:47.0937 6084 usbvideo - ok 23:26:47.0984 6084 usb_rndisx (b6cc50279d6cd28e090a5d33244adc9a) C:\WINDOWS\system32\DRIVERS\usb8023x.sys 23:26:48.0015 6084 usb_rndisx - ok 23:26:48.0078 6084 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys 23:26:48.0078 6084 VgaSave - ok 23:26:48.0125 6084 ViaIde - ok 23:26:48.0171 6084 VolSnap (8ab662b3c4691e6ddf61c96bb5b7d103) C:\WINDOWS\system32\drivers\VolSnap.sys 23:26:48.0171 6084 VolSnap - ok 23:26:48.0218 6084 VSS (a585edd6965b301de8a45c6768c7c215) C:\WINDOWS\System32\vssvc.exe 23:26:48.0234 6084 VSS - ok 23:26:48.0296 6084 W32Time (390d8e65f362327ad510b08971478301) C:\WINDOWS\system32\w32time.dll 23:26:48.0296 6084 W32Time - ok 23:26:48.0343 6084 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys 23:26:48.0343 6084 Wanarp - ok 23:26:48.0390 6084 wceusbsh (46a247f6617526afe38b6f12f5512120) C:\WINDOWS\system32\DRIVERS\wceusbsh.sys 23:26:48.0390 6084 wceusbsh - ok 23:26:48.0437 6084 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys 23:26:48.0437 6084 Wdf01000 - ok 23:26:48.0484 6084 WDICA - ok 23:26:48.0515 6084 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys 23:26:48.0515 6084 wdmaud - ok 23:26:48.0578 6084 WebClient (33d8e2812054d97a0aec9b8f04277927) C:\WINDOWS\System32\webclnt.dll 23:26:48.0578 6084 WebClient - ok 23:26:48.0609 6084 winmgmt (f9e105f369c18e4001e0c05aaf600d73) C:\WINDOWS\system32\wbem\WMIsvc.dll 23:26:48.0625 6084 winmgmt - ok 23:26:48.0687 6084 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll 23:26:48.0734 6084 WmdmPmSN - ok 23:26:48.0843 6084 Wmi (93f8eb8c7cd4e325ec92edbfc545103d) C:\WINDOWS\System32\advapi32.dll 23:26:48.0859 6084 Wmi - ok 23:26:48.0953 6084 WmiApSrv (87f11d161207c7063edabac0aadc33c3) C:\WINDOWS\system32\wbem\wmiapsrv.exe 23:26:48.0953 6084 WmiApSrv - ok 23:26:49.0109 6084 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe 23:26:49.0281 6084 WMPNetworkSvc - ok 23:26:49.0375 6084 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys 23:26:49.0375 6084 WS2IFSL - ok 23:26:49.0406 6084 wscsvc (843f7fa8ea38e6a4262976dcc994c81a) C:\WINDOWS\system32\wscsvc.dll 23:26:49.0421 6084 wscsvc - ok 23:26:49.0453 6084 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS 23:26:49.0453 6084 WSTCODEC - ok 23:26:49.0468 6084 wuauserv (1e8fdddef3fe260badab06dae10d753a) C:\WINDOWS\system32\wuauserv.dll 23:26:49.0484 6084 wuauserv - ok 23:26:49.0515 6084 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys 23:26:49.0515 6084 WudfPf - ok 23:26:49.0531 6084 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys 23:26:49.0546 6084 WudfRd - ok 23:26:49.0578 6084 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll 23:26:49.0578 6084 WudfSvc - ok 23:26:49.0703 6084 WZCSVC (e99782dbb8ffa2aee72b31dac8d8d887) C:\WINDOWS\System32\wzcsvc.dll 23:26:49.0718 6084 WZCSVC - ok 23:26:49.0812 6084 xmlprov (fd3c38635808920f8235bf2fed642f54) C:\WINDOWS\System32\xmlprov.dll 23:26:49.0828 6084 xmlprov - ok 23:26:49.0875 6084 xpsec - ok 23:26:49.0968 6084 yukonwxp (ae9573e9563771c7f2f333e728fe7e76) C:\WINDOWS\system32\DRIVERS\yk51x86.sys 23:26:49.0984 6084 yukonwxp - ok 23:26:50.0015 6084 MBR (0x1B8) (3051207086651214e435112e51817dc5) \Device\Harddisk0\DR0 23:26:50.0031 6084 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - infected 23:26:50.0031 6084 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Sinowal.b (0) 23:26:50.0031 6084 Boot (0x1200) (45d8a0654722d0cc56dce1606d83e2c6) \Device\Harddisk0\DR0\Partition0 23:26:50.0031 6084 \Device\Harddisk0\DR0\Partition0 - ok 23:26:50.0031 6084 ============================================================ 23:26:50.0031 6084 Scan finished 23:26:50.0031 6084 ============================================================ 23:26:50.0046 1240 Detected object count: 2 23:26:50.0046 1240 Actual detected object count: 2 23:27:59.0859 1240 C:\WINDOWS\System32\Drivers\sptd.sys - copied to quarantine 23:28:00.0546 1240 HKLM\SYSTEM\ControlSet002\services\sptd - will be deleted on reboot 23:28:00.0546 1240 HKLM\SYSTEM\ControlSet003\services\sptd - will be deleted on reboot 23:28:00.0562 1240 C:\WINDOWS\System32\Drivers\sptd.sys - will be deleted on reboot 23:28:00.0562 1240 sptd ( LockedFile.Multi.Generic ) - User select action: Delete 23:28:02.0625 1240 \Device\Harddisk0\DR0\# - copied to quarantine 23:28:02.0625 1240 \Device\Harddisk0\DR0 - copied to quarantine 23:28:02.0687 1240 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - will be cured on reboot 23:28:02.0750 1240 \Device\Harddisk0\DR0 - ok 23:28:02.0750 1240 \Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - User select action: Cure -
PC opeens traag (3)
thaonlyone reageerde op thaonlyone's topic in Archief Bestrijding malware & virussen
hier weer het volgende bericht Emsisoft Emergency Kit - Versie 1.0 Laatste Update: 20-4-2012 17:01:30 Scaninstellingen: Scantype: Diepe Scan Objecten: Geheugen, Sporen, Cookies, C:\ Scan archieven: Aan Heuristieken: Uit ADS Scan: Aan Scan gestart: 20-4-2012 17:01:58 [5072] C:\Program Files\GamersFirst\War Rock\system\WarRock.exe Ontdekt: Packed.Win32.Themida.AMN!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Freeze.com\Installer --> id Ontdekt: Trace.Registry.EZ Game Cheats!A2 Key: HKEY_CLASSES_ROOT\interface\{741de825-a6f0-4497-9aa6-8023cf9b0fff} Ontdekt: Trace.Registry.FunWebProducts!A2 Key: HKEY_CURRENT_USER\software\imesh Ontdekt: Trace.Registry.IMesh!A2 Value: HKEY_CURRENT_USER\Software\iMesh --> LastOpenFileDir Ontdekt: Trace.Registry.iMesh!A2 Key: HKEY_CLASSES_ROOT\interface\{07b18eac-a523-4961-b6bb-170de4475cca} Ontdekt: Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{120927bf-1700-43bc-810f-fab92549b390} Ontdekt: Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{1f52a5fa-a705-4415-b975-88503b291728} Ontdekt: Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{247a115f-06c2-4fb3-967d-2d62d3cf4f0a} Ontdekt: Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{2e9937fc-cf2f-4f56-af54-5a6a3dd375cc} Ontdekt: Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{3e720453-b472-4954-b7aa-33069eb53906} Ontdekt: Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{7473d295-b7bb-4f24-ae82-7e2ce94bb6a9} Ontdekt: Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{7473d297-b7bb-4f24-ae82-7e2ce94bb6a9} Ontdekt: Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{90449521-d834-4703-bb4e-d3aa44042ff8} Ontdekt: Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{991aac62-b100-47ce-8b75-253965244f69} Ontdekt: Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{bbabdc90-f3d5-4801-863a-ee6ae529862d} Ontdekt: Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{d6ff3684-ad3b-48eb-bbb4-b9e6c5a355c1} Ontdekt: Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{de38c398-b328-4f4c-a3ad-1b5e4ed93477} Ontdekt: Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{eb9e5c1c-b1f9-4c2b-be8a-27d6446fdaf8} Ontdekt: Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_LOCAL_MACHINE\software\Freeze.com\ Ontdekt: Trace.Registry.Freeze!A2 Key: HKEY_LOCAL_MACHINE\software\Europa Casino Ontdekt: Trace.Registry.EuropaCasino!A2 Key: HKEY_CURRENT_USER\software\Europa Casino Ontdekt: Trace.Registry.EuropaCasino!A2 C:\Documents and Settings\Administrator\Application Data\Sun\Java\Deployment\cache\6.0\60\369681fc-709b1598/iia\iia.class Ontdekt: Exploit.Java.CVE-2012-0507!IK C:\Program Files\GamersFirst\War Rock\system\WarRock.exe Ontdekt: Packed.Win32.Themida.AMN!A2 C:\Program Files\Windows Live\Messenger\riched20.dll Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054554.DLL Ontdekt: Adware.Win32.MyWebSearchToolbar!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054555.DLL Ontdekt: Adware.Win32.FunWeb.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054556.DLL Ontdekt: Adware.Win32.FunWeb.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054557.DLL Ontdekt: Adware.Win32.MyWebSearchToolbar!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054558.DLL Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054559.DLL Ontdekt: Adware.Win32.MyWebSearchToolbar!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054560.DLL Ontdekt: Adware.Win32.MyWebSearchToolbar!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054561.DLL Ontdekt: Adware.Win32.FunWeb!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054562.SCR Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054563.DLL Ontdekt: Adware.Win32.MyWebSearchToolbar!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054564.DLL Ontdekt: Adware.Win32.MyWebSearchToolbar!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054565.DLL Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054566.EXE Ontdekt: Adware.Win32.FunWeb!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054567.DLL Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054568.DLL Ontdekt: Riskware.WebToolbar.Win32.FunWeb.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054569.DLL Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054573.DLL Ontdekt: Riskware.WebToolbar.Win32.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054574.DLL Ontdekt: Adware.Win32.MyWebSearchToolbar!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054577.DLL Ontdekt: Adware.Win32.MyWebSearch!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054579.DLL Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054581.EXE Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054582.EXE Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054583.EXE Ontdekt: Riskware.WebToolbar.Win32.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054584.DLL Ontdekt: Adware.Win32.MyWebSearchToolbar!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054585.DLL Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054586.DLL Ontdekt: Adware.Win32.MyWebSearch!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054587.EXE Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054589.DLL Ontdekt: Adware.Win32.MyWebSearchToolbar!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054591.EXE Ontdekt: Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054592.DLL Ontdekt: Adware.Win32.MyWebSearchToolbar!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054620.dll Ontdekt: Trojan.Win32.Agent.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP219\A0055120.exe Ontdekt: Trojan.Crypt!IK C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP226\A0057104.exe Ontdekt: Trojan-Banker.Win32.Banker!IK C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP229\A0062356.exe Ontdekt: Trojan.Crypt!IK Gescand Bestanden: 238539 Sporen: 468574 Cookies: 91 Processen: 39 Gevonden Bestanden: 37 Sporen: 21 Cookies: 0 Processen: 1 Registersleutels: 0 Scan Geëindigd: 20-4-2012 20:47:22 Scantijd: 3:45:24 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP226\A0057104.exe Verwijderd Trojan-Banker.Win32.Banker!IK C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP219\A0055120.exe Verwijderd Trojan.Crypt!IK C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP229\A0062356.exe Verwijderd Trojan.Crypt!IK C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054620.dll Verwijderd Trojan.Win32.Agent.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054577.DLL Verwijderd Adware.Win32.MyWebSearch!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054586.DLL Verwijderd Adware.Win32.MyWebSearch!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054573.DLL Verwijderd Riskware.WebToolbar.Win32.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054583.EXE Verwijderd Riskware.WebToolbar.Win32.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054568.DLL Verwijderd Riskware.WebToolbar.Win32.FunWeb.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054561.DLL Verwijderd Adware.Win32.FunWeb!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054566.EXE Verwijderd Adware.Win32.FunWeb!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054555.DLL Verwijderd Adware.Win32.FunWeb.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054556.DLL Verwijderd Adware.Win32.FunWeb.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054554.DLL Verwijderd Adware.Win32.MyWebSearchToolbar!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054557.DLL Verwijderd Adware.Win32.MyWebSearchToolbar!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054559.DLL Verwijderd Adware.Win32.MyWebSearchToolbar!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054560.DLL Verwijderd Adware.Win32.MyWebSearchToolbar!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054563.DLL Verwijderd Adware.Win32.MyWebSearchToolbar!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054564.DLL Verwijderd Adware.Win32.MyWebSearchToolbar!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054574.DLL Verwijderd Adware.Win32.MyWebSearchToolbar!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054584.DLL Verwijderd Adware.Win32.MyWebSearchToolbar!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054589.DLL Verwijderd Adware.Win32.MyWebSearchToolbar!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054592.DLL Verwijderd Adware.Win32.MyWebSearchToolbar!A2 C:\Program Files\Windows Live\Messenger\riched20.dll Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054558.DLL Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054562.SCR Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054565.DLL Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054567.DLL Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054569.DLL Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054579.DLL Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054581.EXE Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054582.EXE Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054585.DLL Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054587.EXE Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\System Volume Information\_restore{D0489EFF-AC3D-43FD-98A1-C9D15ABD915A}\RP217\A0054591.EXE Verwijderd Trojan.Win32.Toolbar.MyWebSearch.AMN!A2 C:\Documents and Settings\Administrator\Application Data\Sun\Java\Deployment\cache\6.0\60\369681fc-709b1598/iia\iia.class Verwijderd Exploit.Java.CVE-2012-0507!IK Key: HKEY_LOCAL_MACHINE\software\Europa Casino Verwijderd Trace.Registry.EuropaCasino!A2 Key: HKEY_CURRENT_USER\software\Europa Casino Verwijderd Trace.Registry.EuropaCasino!A2 Key: HKEY_LOCAL_MACHINE\software\Freeze.com\ Verwijderd Trace.Registry.Freeze!A2 Key: HKEY_CLASSES_ROOT\interface\{07b18eac-a523-4961-b6bb-170de4475cca} Verwijderd Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{120927bf-1700-43bc-810f-fab92549b390} Verwijderd Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{1f52a5fa-a705-4415-b975-88503b291728} Verwijderd Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{247a115f-06c2-4fb3-967d-2d62d3cf4f0a} Verwijderd Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{2e9937fc-cf2f-4f56-af54-5a6a3dd375cc} Verwijderd Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{3e720453-b472-4954-b7aa-33069eb53906} Verwijderd Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{7473d295-b7bb-4f24-ae82-7e2ce94bb6a9} Verwijderd Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{7473d297-b7bb-4f24-ae82-7e2ce94bb6a9} Verwijderd Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{90449521-d834-4703-bb4e-d3aa44042ff8} Verwijderd Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{991aac62-b100-47ce-8b75-253965244f69} Verwijderd Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{bbabdc90-f3d5-4801-863a-ee6ae529862d} Verwijderd Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{d6ff3684-ad3b-48eb-bbb4-b9e6c5a355c1} Verwijderd Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{de38c398-b328-4f4c-a3ad-1b5e4ed93477} Verwijderd Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CLASSES_ROOT\interface\{eb9e5c1c-b1f9-4c2b-be8a-27d6446fdaf8} Verwijderd Trace.Registry.MyWebSearchToobar!A2 Key: HKEY_CURRENT_USER\software\imesh Verwijderd Trace.Registry.IMesh!A2 Value: HKEY_CURRENT_USER\Software\iMesh --> LastOpenFileDir Verwijderd Trace.Registry.IMesh!A2 Key: HKEY_CLASSES_ROOT\interface\{741de825-a6f0-4497-9aa6-8023cf9b0fff} Verwijderd Trace.Registry.FunWebProducts!A2 Value: HKEY_LOCAL_MACHINE\SOFTWARE\Freeze.com\Installer --> id Verwijderd Trace.Registry.EZ Game Cheats!A2 [5072] C:\Program Files\GamersFirst\War Rock\system\WarRock.exe Verwijderd Packed.Win32.Themida.AMN!A2 C:\Program Files\GamersFirst\War Rock\system\WarRock.exe Verwijderd Packed.Win32.Themida.AMN!A2 Verwijderd Bestanden: 37 Sporen: 21 Cookies: 0 -
PC opeens traag (3)
thaonlyone reageerde op thaonlyone's topic in Archief Bestrijding malware & virussen
ja ik zit nu pas op 15 procent en het is nu een uur later -
je kan ook naar configuratiescherm gaan daar naar software gaan en dan kan je de programma's waarvan je weet dat je ze kunt verwijderen (zoals games en dergelijke) dan heb je wat meer ruimte en kun je met bv smartfrag 2 of met windows zelf de harde schijf defragmenteren.
-
PC opeens traag (3)
thaonlyone reageerde op thaonlyone's topic in Archief Bestrijding malware & virussen
pfff hij is al anderhalf uur aan het scannen en pas op 14% -
PC opeens traag (3)
thaonlyone reageerde op thaonlyone's topic in Archief Bestrijding malware & virussen
heeft u trouwens ook een aanbeveling over welk antivirusprogramma goed is -
PC opeens traag (3)
thaonlyone reageerde op thaonlyone's topic in Archief Bestrijding malware & virussen
jah zover ik weet wel -
en als je zus op internet gaat kan je stiefvader dan ook op internet?
-
PC opeens traag (3)
thaonlyone reageerde op thaonlyone's topic in Archief Bestrijding malware & virussen
ComboFix 12-04-20.03 - Administrator 20-04-2012 15:45:18.2.2 - x86 Microsoft Windows XP Professional 5.1.2600.3.1252.31.1043.18.2046.1467 [GMT 2:00] Gestart vanuit: c:\documents and settings\Administrator\Mijn documenten\Downloads\ComboFix.exe . . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\documents and settings\Administrator\Bureaublad\Internet Explorer.lnk c:\documents and settings\All Users\Application Data\TEMP c:\documents and settings\All Users\Application Data\TEMP\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\PostBuild.exe c:\documents and settings\All Users\Documenten\Server\admin.txt c:\documents and settings\All Users\Documenten\Server\server.dat c:\program files\DTLite4402-0131.exe c:\windows\system32\313482188 c:\windows\system32\win32app.txt c:\windows\system32\winlogon.txt . . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Service_xcpip . . (((((((((((((((((((( Bestanden Gemaakt van 2012-03-20 to 2012-04-20 )))))))))))))))))))))))))))))) . . 2012-04-19 18:46 . 2012-04-19 18:46 -------- d-----w- c:\documents and settings\Administrator\Application Data\Malwarebytes 2012-04-19 18:46 . 2012-04-19 18:46 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2012-04-19 18:46 . 2012-04-19 18:46 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2012-04-19 18:46 . 2012-04-04 13:56 22344 ----a-w- c:\windows\system32\drivers\mbam.sys 2012-04-12 05:28 . 2012-04-19 18:58 -------- d-----w- c:\documents and settings\Administrator\Tracing 2012-04-05 13:40 . 2010-08-05 06:46 37336 ----a-w- c:\windows\system32\CleanMFT32.exe 2012-04-05 13:40 . 2008-04-02 13:54 1101824 ----a-w- c:\windows\system32\UniBox210.ocx 2012-04-05 13:40 . 2008-04-02 13:53 212992 ----a-w- c:\windows\system32\UniBoxVB12.ocx 2012-04-05 13:40 . 2008-09-17 19:17 658432 ----a-w- c:\windows\system32\MSCOMCT2.OCX 2012-04-05 13:40 . 2008-04-02 13:53 880640 ----a-w- c:\windows\system32\UniBox10.ocx 2012-04-04 19:54 . 2012-04-04 19:54 -------- d-----w- c:\documents and settings\Administrator\Application Data\Office Genuine Advantage 2012-04-04 18:13 . 2012-04-04 18:13 -------- d-----w- c:\documents and settings\NetworkService\Application Data\Apple Computer 2012-04-04 17:35 . 2012-04-05 13:52 -------- d-----w- c:\documents and settings\Administrator\Application Data\Registry Mechanic 2012-04-04 17:19 . 2012-04-05 13:40 -------- d-----w- c:\program files\Common Files\PC Tools 2012-04-04 17:17 . 2012-04-04 17:17 -------- d-----w- c:\documents and settings\Administrator\Local Settings\Application Data\Secunia PSI 2012-04-04 17:17 . 2012-04-04 17:17 -------- d-----w- c:\documents and settings\All Users\Application Data\PC Tools 2012-04-04 17:13 . 2012-04-04 17:13 -------- d-----w- c:\program files\Secunia 2012-04-04 17:05 . 2012-04-04 17:05 -------- d-----w- c:\documents and settings\Administrator\Application Data\IObit 2012-04-04 17:05 . 2011-12-16 15:21 29016 ----a-w- c:\windows\system32\SmartDefragBootTime.exe 2012-04-04 17:05 . 2010-11-26 16:02 14776 ----a-w- c:\windows\system32\drivers\SmartDefragDriver.sys 2012-04-04 17:04 . 2012-04-04 17:05 -------- d-----w- c:\program files\IObit 2012-04-04 17:04 . 2012-04-04 17:04 -------- d-----w- c:\documents and settings\All Users\Application Data\IObit 2012-04-04 05:53 . 2012-04-04 05:53 182160 ----a-w- c:\program files\Internet Explorer\PLUGINS\nppdf32.dll 2012-04-01 14:36 . 2012-04-04 15:05 -------- d-----w- c:\program files\Cacheman 2012-03-30 17:17 . 2011-04-21 13:37 105472 ------w- c:\windows\system32\dllcache\mup.sys . . . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2012-02-15 10:01 . 2010-09-16 14:08 4547944 ----a-w- c:\windows\system32\usbaaplrc.dll 2012-02-15 10:01 . 2010-09-16 14:08 43520 ----a-w- c:\windows\system32\drivers\usbaapl.sys 2012-02-03 09:57 . 2008-04-15 00:05 1860224 ----a-w- c:\windows\system32\win32k.sys 2010-10-17 16:15 203776 --sh--w- c:\windows\system32\unrar.exe . . ------- Sigcheck ------- Note: Unsigned files aren't necessarily malware. . [-] 2008-05-11 . D529680501329A3853D2BEE64F8E082B . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "BitTorrent"="c:\program files\BitTorrent\BitTorrent.exe" [2012-02-23 650104] "Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-10-11 14940040] "Steam"="c:\program files\Steam\Steam.exe" [2011-08-25 1242448] "InstallIQUpdater"="c:\program files\W3i\InstallIQUpdater\InstallIQUpdater.exe" [2011-08-09 1176064] "AlcoholAutomount"="c:\program files\Alcohol Soft\Alcohol 120\axcmd.exe" [2009-09-18 205976] "RIMDeviceManager"="c:\program files\Common Files\Research In Motion\RIMDeviceManager\RIMDeviceManager.exe" [2011-06-27 1988944] "H/PC Connection Agent"="c:\program files\Microsoft ActiveSync\wcescomm.exe" [2006-11-13 1289000] "CachemanTray"="c:\program files\Cacheman\CachemanTray.exe" [2012-01-07 392544] "ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2008-04-15 15360] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RTHDCPL"="RTHDCPL.EXE" [2006-04-01 14820864] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712] "RIMBBLaunchAgent.exe"="c:\program files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe" [2011-02-18 79192] alleen nu zegt mijn computer dat deze versie van windows niet echt is ofzo ik ben mogenlijk de dupe geworden van software vervalsing???? -
lijkt me idd best wel een irritant probleem jah heeft zij ook problemen als jij op internet gaat, of dat dan weer niet?
OVER ONS
PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!