Ga naar inhoud

Uncle

Lid
  • Items

    12
  • Registratiedatum

  • Laatst bezocht

Uncle's prestaties

  1. ComboFix 10-03-17.07 - Giorgio Egbertzen 18-02-2010 14:04:10.1.1 - x86 Microsoft Windows XP Home Edition 5.1.2600.2.1252.31.1043.18.767.491 [GMT 1:00] Gestart vanuit: c:\documents and settings\Giorgio Egbertzen\Bureaublad\ComboFix.exe . (((((((((((((((((((( Bestanden Gemaakt van 2010-01-18 to 2010-02-18 )))))))))))))))))))))))))))))) . 2010-03-15 15:54 . 2010-03-15 15:54 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Apple 2010-03-03 21:34 . 2010-03-03 21:34 73728 ----a-w- c:\documents and settings\Giorgio Egbertzen\Application Data\LimeWire\browser\xulrunner\xulrunner-stub.exe 2010-03-03 21:34 . 2010-03-03 21:34 499712 ----a-w- c:\documents and settings\Giorgio Egbertzen\Application Data\LimeWire\browser\xulrunner\MSVCP71.DLL 2010-03-03 21:34 . 2010-03-03 21:34 348160 ----a-w- c:\documents and settings\Giorgio Egbertzen\Application Data\LimeWire\browser\xulrunner\msvcr71.dll 2010-03-03 21:34 . 2010-03-03 21:34 102400 ----a-w- c:\documents and settings\Giorgio Egbertzen\Application Data\LimeWire\browser\xulrunner\xulrunner.exe 2010-03-03 21:32 . 2010-02-18 12:49 -------- d-----w- c:\documents and settings\Giorgio Egbertzen\Application Data\LimeWire 2010-03-03 21:30 . 2010-03-03 21:31 -------- d-----w- c:\documents and settings\Giorgio Egbertzen\Application Data\Apple Computer 2010-03-03 21:30 . 2009-05-18 13:17 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys 2010-03-03 21:30 . 2008-04-17 12:12 107368 ----a-w- c:\windows\system32\GEARAspi.dll 2010-03-03 21:18 . 2010-03-03 21:31 -------- d-----w- c:\documents and settings\Giorgio Egbertzen\Local Settings\Application Data\Apple Computer 2010-03-03 21:13 . 2010-03-03 21:13 411368 ----a-w- c:\windows\system32\deploytk.dll 2010-03-03 21:13 . 2010-03-03 21:13 -------- d-----w- c:\program files\Java 2010-03-03 21:11 . 2010-03-03 21:11 152576 ----a-w- c:\documents and settings\Giorgio Egbertzen\Application Data\Sun\Java\jre1.6.0_16\lzma.dll 2010-03-03 21:11 . 2010-03-03 21:16 -------- d-----w- c:\program files\LimeWire 2010-03-03 10:28 . 2010-03-03 10:28 -------- d-----w- c:\documents and settings\Giorgio Egbertzen\Application Data\Malwarebytes 2010-03-03 10:28 . 2010-01-07 15:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-03-03 10:28 . 2010-03-03 10:28 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-03-03 10:28 . 2010-03-03 10:28 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2010-03-03 10:28 . 2010-01-07 15:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-03-02 19:44 . 2010-03-02 19:44 388096 ----a-r- c:\documents and settings\Giorgio Egbertzen\Application Data\Microsoft\Installer\{0761C9A8-8F3A-4216-B4A7-B7AFBF24A24A}\HiJackThis.exe 2010-03-02 19:43 . 2010-03-02 19:43 -------- d-----w- c:\program files\TrendMicro 2010-02-28 14:47 . 2010-02-28 14:47 -------- d-----w- c:\documents and settings\Giorgio Egbertzen\Local Settings\Application Data\ATI 2010-02-28 14:47 . 2010-02-28 14:47 -------- d-----w- c:\documents and settings\Giorgio Egbertzen\Application Data\ATI 2010-02-28 14:47 . 2010-02-28 14:47 -------- d-----w- c:\documents and settings\All Users\Application Data\ATI 2010-02-28 14:45 . 2010-02-28 14:45 0 ----a-w- c:\windows\ativpsrm.bin 2010-02-28 14:30 . 2010-02-28 14:30 -------- d-----w- c:\documents and settings\Giorgio Egbertzen\Local Settings\Application Data\DNA 2010-02-28 14:30 . 2010-02-18 13:19 -------- d-----w- c:\documents and settings\Giorgio Egbertzen\Application Data\DNA 2010-02-28 14:30 . 2010-02-18 12:49 -------- d-----w- c:\program files\DNA 2010-02-28 13:20 . 2010-02-28 13:20 -------- d-----w- c:\program files\iXi Tools 2010-02-28 12:47 . 2008-07-31 09:41 238088 ----a-w- c:\windows\system32\xactengine3_2.dll 2010-02-28 12:46 . 2005-05-26 14:34 2297552 ----a-w- c:\windows\system32\d3dx9_26.dll 2010-02-28 12:42 . 2010-02-28 12:42 -------- d-----w- c:\windows\Logs 2010-02-28 12:30 . 2006-08-01 14:02 49152 ----a-w- c:\windows\system32\ChCfg.exe 2010-02-28 12:30 . 2004-08-03 22:07 6400 -c--a-w- c:\windows\system32\dllcache\splitter.sys 2010-02-28 12:30 . 2004-08-03 22:07 6400 ----a-w- c:\windows\system32\drivers\splitter.sys 2010-02-28 12:30 . 2004-08-03 22:15 82944 -c--a-w- c:\windows\system32\dllcache\wdmaud.sys 2010-02-28 12:30 . 2004-08-03 22:15 82944 ----a-w- c:\windows\system32\drivers\wdmaud.sys 2010-02-28 12:30 . 2004-08-03 22:07 52864 -c--a-w- c:\windows\system32\dllcache\dmusic.sys 2010-02-28 12:30 . 2004-08-03 22:07 52864 ----a-w- c:\windows\system32\drivers\DMusic.sys 2010-02-28 12:28 . 2008-09-24 09:40 4122368 ----a-r- c:\windows\system32\drivers\alcxwdm.sys 2010-02-28 12:28 . 2004-08-04 00:03 4096 -c--a-w- c:\windows\system32\dllcache\ksuser.dll 2010-02-28 12:28 . 2004-08-04 00:03 4096 ----a-w- c:\windows\system32\ksuser.dll 2010-02-28 12:28 . 2004-08-03 22:08 60288 -c--a-w- c:\windows\system32\dllcache\drmk.sys 2010-02-28 12:28 . 2004-08-03 22:08 60288 ----a-w- c:\windows\system32\drivers\drmk.sys 2010-02-28 12:28 . 2010-02-28 12:28 -------- d-----w- c:\program files\Realtek AC97 2010-02-28 12:28 . 2006-12-08 14:20 10528768 ----a-w- c:\windows\system32\RTLCPL.exe 2010-02-28 12:28 . 2007-04-16 14:28 577536 ----a-w- c:\windows\soundman.exe 2010-02-28 12:28 . 2006-10-18 01:53 147456 ----a-w- c:\windows\system32\RtlCPAPI.dll 2010-02-28 12:28 . 2006-07-31 10:27 217088 ----a-w- c:\windows\Alcrmv.exe 2010-02-28 12:28 . 2006-07-31 10:19 315392 ----a-w- c:\windows\alcupd.exe 2010-02-28 12:24 . 2010-02-28 12:24 -------- d-----w- c:\program files\Lavalys 2010-02-28 12:03 . 2010-02-28 12:03 -------- d-----w- c:\program files\Realtek 2010-02-28 12:02 . 2010-02-12 18:02 1247776 ----a-w- c:\windows\RtlExUpd.dll 2010-02-28 11:02 . 2010-02-28 11:02 -------- d-----w- c:\program files\My Company Name 2010-02-28 11:01 . 2005-05-13 13:16 23040 ----a-w- c:\windows\system32\drivers\atkkbnt.sys 2010-02-28 10:59 . 2005-06-14 03:09 11264 ----a-r- c:\windows\system32\drivers\EIO.sys 2010-02-19 16:35 . 2010-02-19 16:35 664 ----a-w- c:\windows\system32\d3d9caps.dat 2010-02-19 16:35 . 2010-02-19 16:35 -------- d-----w- c:\program files\SIW 2010-02-18 16:57 . 2010-02-18 16:58 -------- d-----w- c:\documents and settings\Giorgio Egbertzen\Local Settings\Application Data\Adobe 2010-02-18 16:56 . 2010-02-18 16:56 -------- d-----w- c:\program files\Common Files\Adobe 2010-02-15 20:01 . 2010-02-15 20:22 -------- d-----w- c:\documents and settings\Giorgio Egbertzen\Application Data\Belastingdienst 2010-02-15 19:58 . 2010-02-15 19:58 -------- d-----w- c:\program files\Belastingdienst 2010-02-15 17:41 . 2010-02-15 17:41 72488 ----a-w- c:\documents and settings\All Users\Application Data\Apple Computer\Installer Cache\iTunes 9.0.3.15\SetupAdmin.exe 2010-02-11 23:31 . 2010-02-18 12:49 -------- d-----w- c:\documents and settings\Giorgio Egbertzen\Tracing 2010-02-11 23:29 . 2010-02-11 23:29 -------- d-----w- c:\program files\Microsoft 2010-02-11 23:29 . 2010-02-11 23:29 -------- d-----w- c:\program files\Windows Live SkyDrive 2010-02-11 23:28 . 2010-02-11 23:30 -------- d-----w- c:\program files\Windows Live 2010-02-11 23:25 . 2010-02-11 23:25 -------- d-----w- c:\program files\Common Files\Windows Live 2010-02-11 23:18 . 2005-02-25 03:35 22752 ----a-w- c:\windows\system32\spupdsvc.exe 2010-02-11 23:18 . 2010-02-11 23:18 -------- d--h--w- c:\windows\$hf_mig$ 2010-02-11 23:05 . 2009-08-06 18:24 44768 ----a-w- c:\windows\system32\wups2.dll 2010-02-11 10:33 . 2010-02-11 10:33 -------- d-----w- c:\documents and settings\Giorgio Egbertzen\Local Settings\Application Data\Opera 2010-02-11 10:30 . 2010-02-11 10:30 -------- d-----w- c:\program files\Opera 2010-02-10 23:41 . 2001-08-17 21:59 3072 ----a-w- c:\windows\system32\drivers\audstub.sys 2010-02-10 23:40 . 2004-08-04 00:54 57856 ----a-w- c:\windows\system32\drivers\redbook.sys 2010-02-10 23:38 . 2004-08-03 22:31 20992 ----a-w- c:\windows\system32\drivers\RTL8139.sys 2010-02-10 23:38 . 2004-08-04 00:56 5632 ----a-w- c:\windows\system32\drivers\intelide.sys 2010-02-10 23:37 . 2004-08-04 01:03 76288 ----a-w- c:\windows\system32\usbui.dll 2010-02-10 23:37 . 2004-08-03 23:07 42368 ----a-w- c:\windows\system32\drivers\AGP440.SYS 2010-02-10 23:32 . 2010-02-18 13:03 -------- d-----w- c:\windows\system32\CatRoot2 2010-02-10 23:32 . 2010-02-10 23:32 -------- d-----w- c:\windows\system32\CatRoot 2010-02-10 23:31 . 2010-02-10 23:11 -------- d-----w- C:\Documents and Settings 2010-02-10 23:31 . 2010-02-10 23:11 -------- d--h--w- c:\documents and settings\Default User 2010-02-10 23:31 . 2010-02-10 22:53 -------- d-----w- c:\documents and settings\All Users 2010-02-10 23:26 . 2010-02-11 23:31 12912 ----a-w- c:\documents and settings\Giorgio Egbertzen\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2010-02-10 23:25 . 2010-02-10 23:25 -------- d-s---w- c:\documents and settings\Giorgio Egbertzen\UserData 2010-02-10 23:09 . 2010-02-10 23:09 -------- d-s---w- c:\windows\system32\Microsoft 2010-02-10 23:09 . 2010-02-10 23:09 -------- d-sh--w- c:\documents and settings\LocalService 2010-02-10 23:09 . 2010-02-10 23:09 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\Microsoft 2010-02-10 23:08 . 2010-02-10 23:08 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\Microsoft 2010-02-10 23:08 . 2010-02-10 23:08 -------- d-sh--w- c:\documents and settings\NetworkService 2010-02-10 23:04 . 2004-08-04 12:00 31488 -c--a-w- c:\windows\system32\dllcache\weitekp9.sys 2010-02-10 23:03 . 2004-08-04 12:00 5632 -c--a-w- c:\windows\system32\dllcache\smierrsy.dll 2010-02-10 23:02 . 2001-09-06 20:27 38912 -c--a-w- c:\windows\system32\dllcache\EXCH_ntfsdrv.dll 2010-02-10 23:02 . 2004-08-04 12:00 229439 -c--a-w- c:\windows\system32\dllcache\multibox.dll 2010-02-10 23:02 . 2004-08-04 12:00 111104 -c--a-w- c:\windows\system32\dllcache\mtstocom.exe 2010-02-10 23:02 . 2004-08-04 12:00 40960 -c--a-w- c:\windows\system32\dllcache\msiregmv.exe 2010-02-10 23:02 . 2004-08-04 12:00 98304 -c--a-w- c:\windows\system32\dllcache\msir3jp.dll 2010-02-10 23:02 . 2004-08-04 12:00 7680 -c--a-w- c:\windows\system32\dllcache\migregdb.exe 2010-02-10 23:02 . 2004-08-04 12:00 92416 -c--a-w- c:\windows\system32\dllcache\mga.sys 2010-02-10 23:02 . 2004-08-04 12:00 92032 -c--a-w- c:\windows\system32\dllcache\mga.dll 2010-02-10 23:02 . 2001-09-06 20:26 65536 -c--a-w- c:\windows\system32\dllcache\EXCH_mailmsg.dll 2010-02-10 23:02 . 2004-08-04 12:00 19456 -c--a-w- c:\windows\system32\dllcache\lprmon.dll 2010-02-10 23:02 . 2004-08-04 12:00 23040 -c--a-w- c:\windows\system32\dllcache\lpdsvc.dll 2010-02-10 23:02 . 2004-08-04 12:00 33792 -c--a-w- c:\windows\system32\dllcache\lmmib2.dll 2010-02-10 23:00 . 2004-08-04 12:00 10129408 -c--a-w- c:\windows\system32\dllcache\hwxkor.dll 2010-02-10 23:00 . 2004-08-04 12:00 13463552 -c--a-w- c:\windows\system32\dllcache\hwxjpn.dll 2010-02-10 23:00 . 2004-08-04 12:00 10096640 -c--a-w- c:\windows\system32\dllcache\hwxcht.dll 2010-02-10 23:00 . 2004-08-04 12:00 39936 -c--a-w- c:\windows\system32\dllcache\hostmib.dll 2010-02-10 23:00 . 2004-08-04 12:00 36864 -c--a-w- c:\windows\system32\dllcache\hanjadic.dll 2010-02-10 23:00 . 2004-08-04 12:00 400896 -c--a-w- c:\windows\system32\dllcache\fxsxp32.dll 2010-02-10 23:00 . 2004-08-04 12:00 194560 -c--a-w- c:\windows\system32\dllcache\fxswzrd.dll 2010-02-10 23:00 . 2004-08-04 12:00 155648 -c--a-w- c:\windows\system32\dllcache\fxsui.dll 2010-02-10 23:00 . 2004-08-04 12:00 397312 -c--a-w- c:\windows\system32\dllcache\fxstiff.dll . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-03-03 21:34 . 2010-03-03 21:33 8462336 ----a-w- c:\documents and settings\Giorgio Egbertzen\Application Data\LimeWire\browser\xulrunner\xul.dll 2010-03-03 21:30 . 2010-03-03 21:27 -------- d-----w- c:\program files\iTunes 2010-03-03 21:30 . 2010-03-03 21:27 -------- d-----w- c:\documents and settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD} 2010-03-03 21:27 . 2010-03-03 21:27 -------- d-----w- c:\program files\iPod 2010-03-03 21:27 . 2010-03-03 21:19 -------- d-----w- c:\program files\Common Files\Apple 2010-03-03 21:26 . 2010-03-03 21:26 -------- d-----w- c:\program files\Bonjour 2010-03-03 21:25 . 2010-03-03 21:23 -------- d-----w- c:\program files\QuickTime 2010-03-03 21:23 . 2010-03-03 21:23 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple Computer 2010-03-03 21:22 . 2010-03-03 21:22 -------- d-----w- c:\program files\Apple Software Update 2010-03-03 21:19 . 2010-03-03 21:19 -------- d-----w- c:\documents and settings\All Users\Application Data\Apple 2010-02-28 14:42 . 2010-02-28 11:00 -------- d-----w- c:\program files\ATI Technologies 2010-02-28 14:38 . 2010-02-28 11:00 -------- d--h--w- c:\program files\InstallShield Installation Information 2010-02-28 13:20 . 2004-08-04 12:00 76816 ----a-w- c:\windows\system32\perfc013.dat 2010-02-28 13:20 . 2004-08-04 12:00 455928 ----a-w- c:\windows\system32\perfh013.dat 2010-02-28 11:01 . 2010-02-28 10:59 -------- d-----w- c:\program files\Common Files\InstallShield 2010-02-11 10:46 . 2010-02-10 22:54 76487 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat 2010-02-10 22:57 . 2010-02-10 22:57 -------- d-----w- c:\program files\microsoft frontpage 2010-02-10 22:49 . 2010-02-10 22:49 21748 ----a-w- c:\windows\system32\emptyregdb.dat 2010-02-04 09:01 . 2010-02-28 12:48 74072 ----a-w- c:\windows\system32\XAPOFX1_4.dll 2010-02-04 09:01 . 2010-02-28 12:48 528216 ----a-w- c:\windows\system32\XAudio2_6.dll 2010-02-04 09:01 . 2010-02-28 12:48 238936 ----a-w- c:\windows\system32\xactengine3_6.dll 2010-02-04 09:01 . 2010-02-28 12:48 22360 ----a-w- c:\windows\system32\X3DAudio1_7.dll . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856] "BitTorrent DNA"="c:\program files\DNA\btdna.exe" [2010-02-28 323392] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-12-22 35760] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-12-11 948672] "ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-05-24 344064] "SoundMan"="SOUNDMAN.EXE" [2007-04-16 577536] "StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2009-03-03 61440] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2010-03-03 149280] "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-11-10 417792] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2010-02-15 141608] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-04 15360] c:\documents and settings\Giorgio Egbertzen\Menu Start\Programma's\Opstarten\ LimeWire On Startup.lnk - c:\program files\LimeWire\LimeWire.exe [2010-2-19 503808] [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Opera\\opera.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\DNA\\btdna.exe"= "c:\\Program Files\\Bonjour\\mDNSResponder.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= "c:\\Program Files\\LimeWire\\LimeWire.exe"= . Inhoud van de 'Gedeelde Taken' map 2010-03-15 c:\windows\Tasks\AppleSoftwareUpdate.job - c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34] . . ------- Bijkomende Scan ------- . uInternet Settings,ProxyOverride = *.local . - - - - ORPHANS VERWIJDERD - - - - HKCU-Run-DriverUpdaterPro - c:\program files\iXi Tools\Driver Updater Pro\DriverUpdaterPro.exe ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2010-02-18 14:21 Windows 5.1.2600 Service Pack 2 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . --------------------- DLLs Geladen Onder Lopende Processen --------------------- - - - - - - - > 'winlogon.exe'(504) c:\windows\system32\Ati2evxx.dll - - - - - - - > 'explorer.exe'(3348) c:\windows\system32\msi.dll . Voltooingstijd: 2010-02-18 14:28:20 ComboFix-quarantined-files.txt 2010-02-18 13:28 Pre-Run: 76.686.422.016 bytes beschikbaar Post-Run: 76.794.650.624 bytes beschikbaar WindowsXP-KB310994-SP2-Home-BootDisk-NLD.exe [boot loader] timeout=2 default=signature(6f71851f)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons signature(6f71851f)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect - - End Of File - - 4766F4D6D858846D21AD038E378B03D9
  2. Heb het uitgevoerd. Met een lichte verbetering. In de 1e 5 seconden gaat het gewoon zoals het hoort, maar erna gaat het weer haperen. Wel minder als eerst, maar het is nog steeds onvoldoende.
  3. Het programma zegt dat er niks kwaadaardig gedetecteerd zijn. Malwarebytes' Anti-Malware 1.44 Database versie: 3817 Windows 5.1.2600 Service Pack 2 Internet Explorer 6.0.2900.2180 9-3-2010 20:53:21 mbam-log-2010-03-09 (20-53-21).txt Scan type: Snelle Scan Objecten gescand: 107099 Verstreken tijd: 14 minute(s), 59 second(s) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 0 Registerwaarden geïnfecteerd: 0 Registerdata bestanden geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 0 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige items gevonden) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige items gevonden) Registersleutels geïnfecteerd: (Geen kwaadaardige items gevonden) Registerwaarden geïnfecteerd: (Geen kwaadaardige items gevonden) Registerdata bestanden geïnfecteerd: (Geen kwaadaardige items gevonden) Mappen geïnfecteerd: (Geen kwaadaardige items gevonden) Bestanden geïnfecteerd: (Geen kwaadaardige items gevonden) Logfile of Trend Micro HijackThis v2.0.3 (BETA) Scan saved at 21:07:30, on 9-3-2010 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\SOUNDMAN.EXE C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files\iTunes\iTunesHelper.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\DNA\btdna.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\WINDOWS\ATKKBService.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe C:\Program Files\iPod\bin\iPodService.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\Program Files\Java\jre6\bin\jucheck.exe C:\Program Files\Opera\opera.exe C:\Program Files\TrendMicro\HiJackThis\HiJackThis.exe R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [DriverUpdaterPro] C:\Program Files\iXi Tools\Driver Updater Pro\DriverUpdaterPro.exe -t O4 - HKCU\..\Run: [bitTorrent DNA] "C:\Program Files\DNA\btdna.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: LimeWire On Startup.lnk = C:\Program Files\LimeWire\LimeWire.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1265929501093 O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe -- End of file - 5354 bytes
  4. Ik heb gescand maar ik kan nergens de resultaten bekijken...
  5. Logfile of Trend Micro HijackThis v2.0.3 (BETA) Scan saved at 20:44:38, on 2-3-2010 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\DNA\btdna.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe C:\WINDOWS\ATKKBService.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Opera\opera.exe C:\WINDOWS\system32\msiexec.exe C:\Program Files\TrendMicro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [DriverUpdaterPro] C:\Program Files\iXi Tools\Driver Updater Pro\DriverUpdaterPro.exe -t O4 - HKCU\..\Run: [bitTorrent DNA] "C:\Program Files\DNA\btdna.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1265929501093 O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe -- End of file - 3922 bytes
  6. Logfile of Trend Micro HijackThis v2.0.3 (BETA) Scan saved at 20:44:38, on 2-3-2010 Platform: Windows XP SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\DNA\btdna.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe C:\WINDOWS\ATKKBService.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Opera\opera.exe C:\WINDOWS\system32\msiexec.exe C:\Program Files\TrendMicro\HiJackThis\HiJackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [ATIPTA] "C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe" O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [startCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [DriverUpdaterPro] C:\Program Files\iXi Tools\Driver Updater Pro\DriverUpdaterPro.exe -t O4 - HKCU\..\Run: [bitTorrent DNA] "C:\Program Files\DNA\btdna.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1265929501093 O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe O23 - Service: ATK Keyboard Service (ATKKeyboardService) - ASUSTeK COMPUTER INC. - C:\WINDOWS\ATKKBService.exe -- End of file - 3922 bytes
  7. Heb ik geprobeerd, maar nog steeds hetzelfde probleem.
  8. Dit heb ik gedaan: Graphic Card ATI series A9550 series Operating system: WinXP Ik krijg als resultaat: VGA (4) Utilities (73) Manual (45) Ik heb bij VGA de meest recente geïnstalleerd. Ik snap alleen niet wat je bedoelt met 2 updates.
  9. Ik heb een 32bit xp systeem en ik heb de meest recente update geïnstalleerd, maar nog steeds hetzelfde probleem.
  10. Ik heb 1 update geprobeer, maar steeds hetzelfde probleem. Misschien heb ik de verkeerde update geïnstalleerd. Er staan veel updates en ik heb eigenlijk geen idee welke ik moet installeren.
  11. Hallo, als ik bv. een youtube filmpje afspeel, dan hapert het beeld enorm. Het geluid gaat wel gewoon mee. Ik denk zelf dat het aan me videokaart ligt. Type: ASUS A9550 series (256 mb) ASUS A9550 series Secondary (256 mb) Ik hoop dat iemand dit probleem voor mij kan oplossen.
×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.