Ga naar inhoud

[OPGELOST] Help! Hijacklog+ Malwarebytes Logfile


Aanbevolen berichten

Hallo,

M'n PC zit vol met infecties!

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 8:52:11 PM, on 10/6/2009

Platform: Unknown Windows (WinNT 6.01.3004)

MSIE: Unable to get Internet Explorer version!

Boot mode: Normal

Running processes:

E:\Program files\Firefox Preloader\FirefoxPreloader\FirefoxPreloader.exe

C:\Windows\SysWOW64\rundll32.exe

E:\Program files\MSN Pictures Displayer\MSN Pictures Displayer\MSN Pictures Displayer.exe

E:\Program files\HiYo\Bin\HiYo.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Users\Athenatius\Desktop\Firefox Ultimate Optimizer.exe

C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe

C:\Users\Athenatius\AppData\Roaming\m\flec006.exe

C:\Program Files (x86)\Windows Live\Mail\wlmail.exe

C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe

D:\Firefox\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Search

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: MyKai Toolbar - {abba5619-7774-4cbc-b0bd-bbb69708dd9c} - C:\Program Files (x86)\MyKai\tbMyKa.dll

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - E:\Program files\Spybot\Spybot - Search & Destroy\SDHelper.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: MyKai Toolbar - {abba5619-7774-4cbc-b0bd-bbb69708dd9c} - C:\Program Files (x86)\MyKai\tbMyKa.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program files\Java Runtime Environment\bin\jp2ssv.dll

O3 - Toolbar: MyKai Toolbar - {abba5619-7774-4cbc-b0bd-bbb69708dd9c} - C:\Program Files (x86)\MyKai\tbMyKa.dll

O4 - HKLM\..\Run: [P17RunE] RunDll32 P17RunE.dll,RunDLLEntry

O4 - HKLM\..\Run: [Hiyo] E:\Program files\HiYo\bin\HiYo.exe /RunFromStartup

O4 - HKLM\..\Run: [googletalk] C:\Program Files (x86)\Google\Google Talk\googletalk.exe /autostart

O4 - HKLM\..\Run: [sunJavaUpdateSched] "E:\Program files\Java Runtime Environment\bin\jusched.exe"

O4 - HKLM\..\Run: [iTunesHelper] "E:\Program files\Itunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [FirefoxUltimateOptimizer] C:\Users\Athenatius\Desktop\Firefox Ultimate Optimizer.exe

O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "E:\Program files\Adobe Reader\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe

O4 - HKCU\..\Run: [uTorrent] "E:\Program files\Utorrent 1.8.3\uTorrent.exe"

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [drvsyskit] C:\Users\Athenatius\AppData\Roaming\drivers\winupgro.exe

O4 - HKCU\..\Run: [mule_st_key] C:\Users\Athenatius\AppData\Roaming\m\flec006.exe

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - Startup: MSN Pictures Displayer.lnk = E:\Program files\MSN Pictures Displayer\MSN Pictures Displayer\MSN Pictures Displayer.exe

O4 - Global Startup: Firefox Preloader.lnk = E:\Program files\Firefox Preloader\FirefoxPreloader\FirefoxPreloader.exe

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://E:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - E:\Program files\Spybot\Spybot - Search & Destroy\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - E:\Program files\Spybot\Spybot - Search & Destroy\SDHelper.dll

O13 - Gopher Prefix:

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - E:\Program files\Eset NOD32 antivirus\EHttpSrv.exe

O23 - Service: ESET Service (ekrn) - ESET - E:\Program files\Eset NOD32 antivirus\x86\ekrn.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files (x86)\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - E:\Program files\Spybot\Spybot - Search & Destroy\SDWinSec.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: Print Spooler (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--

End of file - 8261 bytes

Malwarebytes lukte niet in de veilige modus( Run-time error '481' Invalid picture??)maar wel in de normale..

Ik heb dit programma verscheidene keren gedraaid, de infecties blijven terugkomen.:

Malwarebytes' Anti-Malware 1.41

Database versie: 2916

Windows 6.1.7100

10/6/2009 9:02:14 PM

mbam-log-2009-10-06 (21-02-10).txt

Scan type: Snelle Scan

Objecten gescand: 81099

Verstreken tijd: 2 minute(s), 55 second(s)

Geheugenprocessen geïnfecteerd: 2

Geheugenmodulen geïnfecteerd: 0

Registersleutels geïnfecteerd: 2

Registerwaarden geïnfecteerd: 2

Registerdata bestanden geïnfecteerd: 0

Mappen geïnfecteerd: 3

Bestanden geïnfecteerd: 262

Geheugenprocessen geïnfecteerd:

C:\Users\Athenatius\AppData\Roaming\m\flec006.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\winupgro.exe (Trojan.Agent) -> No action taken.

Geheugenmodulen geïnfecteerd:

(Geen kwaadaardige items gevonden)

Registersleutels geïnfecteerd:

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\sK9Ou0s (Worm.Bagle) -> No action taken.

HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\srosa (Worm.Bagle) -> No action taken.

Registerwaarden geïnfecteerd:

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\mule_st_key (Worm.Bagle) -> No action taken.

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\drvsyskit (Trojan.Agent) -> No action taken.

Registerdata bestanden geïnfecteerd:

(Geen kwaadaardige items gevonden)

Mappen geïnfecteerd:

C:\Users\Athenatius\AppData\Roaming\drivers\downld (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared (Trojan.Agent) -> No action taken.

Bestanden geïnfecteerd:

C:\Users\Athenatius\AppData\Roaming\m\flec006.exe (Worm.Bagle) -> No action taken.

C:\Windows\System32\mdelk.exe (Worm.Bagle) -> No action taken.

C:\Windows\System32\wintems.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\102773.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\103257.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\103693.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\107110.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\108249.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\108389.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\113287.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\113896.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\114426.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\118545.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\119262.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\119418.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\131836.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\132600.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\133490.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\134332.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\134909.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\135440.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\139277.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\139464.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\139932.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\140322.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\140463.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\140541.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\145782.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\146406.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\146578.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\158965.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\159167.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\159199.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\159448.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\159620.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\178839.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\179089.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\179120.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\181585.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\182287.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\182692.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\189634.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\190602.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\190758.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\210070.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\210258.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\210289.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\210538.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\210741.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\221006.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\221240.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\221287.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\221599.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\221817.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\221864.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\222067.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\222098.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\226887.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\228213.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\228307.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\228619.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\228822.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\228853.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\239945.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\240147.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\240179.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\243891.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\244281.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\244313.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\257885.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\258478.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\258602.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\259070.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\259507.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\259523.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\278524.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\279304.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\279319.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\287229.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\288258.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\288757.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\327633.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\328772.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\329255.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\358802.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\360112.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\360627.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\370751.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\372296.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\372779.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\392451.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\393652.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\394120.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\47018.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\50934.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\518172.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\520668.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\520980.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\52697.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\54194.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\54319.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\558779.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\560059.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\560339.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\56285.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\579434.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\58001.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\580744.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\581056.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\58703.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\58859.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\60949.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\61854.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\62556.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\63024.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\64522.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\64927.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\66347.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\68765.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\68921.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\70590.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\74989.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\77470.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\77626.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\82150.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\82337.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\88670.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\89107.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\89419.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\89653.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\97469.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\downld\97641.exe (Worm.Bagle) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\data.oct (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\list.oct (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\srvlist.oct (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\3D Cars Show ScreenSaver 1.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\50-686 - Novell Foundations of Novell Networking Practice Test Questions 1.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\602LAN SUITE Content Filter 2004.0.07.0305 [Crack].zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\60_Love_Sayings_1.0_[Key].zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Able Submitter 2.3.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\ACT Key 8.0 build 2514 With Crack.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\AdBolish_Popup_Blocker_Ad_Stopper_4.3.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\ALSee_4.12_beta_1.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Altdo_Video_to_MOV_Converter_1.1_Crack.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Alternate Calculator 2.706.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Amplify_5.5.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\AOL Video Gadget 1.0 Beta.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Art Toys Icons Vol.2.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Aspose_Excel_Web_1.4.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\AutoShutter 1.1.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\AVCHDMe 2.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Bayden PopupPopper 2.2.1.21.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\BearFlix 1.2.2.504.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Bells & Whistles for Outlook 3.01.62.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Best Cashbook 4.03.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Big Ben 2.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\biz-e 2.5.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Business Letters and Forms Collection by 4hb.com 3.00.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Catbowl_2006_1.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Columbus_Toolbar_1.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Compulator 1.9.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Computerize_Your_Assets_2.3.0.930.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Convert Mysql to Access 4.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\ConvertVid 1.0.0.18.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\CPT-Master_2.0_[KeyGen].zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\CRACK.CD-McAfee VirusScan Home Edition v7.00.5000.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Cricket_Scoring_and_Analysis_6.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Disk Control 1.1 Build 1.1.0.112.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Dogs_Photo_Screensaver_1.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\DVD RipperX 2.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\DVDFab_Express_2.9.8.3.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Easy_Video_to_PSP_Converter_1.4.8.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Ecto_2.3.1.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\FaaRClock 2.0.7.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\FirstStop_WebSearch_Business_Edition_5.0.3.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\FORLDAB 0.1 Alpha.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Fractal_Wallpaper_1.1.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Free_Christmas_Dreams_Screensaver_1.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Free_Sticky_Notes_2.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Function_generator_1.0b.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Game Jackal Pro 2.9.18.570 Crack.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Greenfish Relief Map Generator 1.1.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\GS Scheduler 1.38.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Half-Life Science and Industry full install 1.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Hockey Scoreboard Standard 1.0 [Key+Serial].zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Hooked On Booze.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\HTAccessible 1.0.0.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Hungry Ducks Screensaver 2.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\iBattery_1.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Icon pack - Music.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\ID Executable Password 1.2.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\ImTOO WMA MP3 Converter 2.1.69.0509.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\IngenMoney_Pro_3.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\InstantCharts_Market_Browser_for_Traders_1.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\KarPocket_3.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\KORE PLAYER 2.0.4.003.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\LCD Banner 1.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\LockMyText 1.1.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Magic Swf2Gif 1.35.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\MagicMedia_3.31_[serial].zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Mandala Painter 1.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\MB Free Indonesian Astrology 1.50.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\MCoords 1.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Media Studio Lite 1.4.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Mid_East_Crisis_-_CNC_Generals_Zero_Hour_Mod_1.2.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Moon_Bandits_1.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Morphon_XML_Editor_3.1.4.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Morse Tone Encoder 1.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\MoveMetrics Full Edition 1.4.1.3.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\MS_Access_Split_Fields_Software_7.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\MyKeyDb 1.0.0.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Naruto Digital Clock 1.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\New_Year_Wallpaper_5.07.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Norton.Antivirus.2006.en.français.+.crack.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Panda Internet Sécurity 2007 (FR).zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Paris_Hilton_Sex-E_Screensaver_3.1.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Paymastr Payroll 2.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\PDF2XL_3.6.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Point_It!_1.0_BETA.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Polar_Lotus_Screensaver_1.3_[With_Crack].zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\PowerRestrictor_0.2.0.3.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Process_Tamer_2.0.17.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Quake_4_SPstyle_mod.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Quick Ice 1.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\QuizzerX_20.5.4.15.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\RapidBATCH 5.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\RegTweakage.NET_0.2_Beta.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Repeat Dialer 3.52.2.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\RONIN_--_Rulings_Online_Networked_Information_Node_1.1.1817.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\s n a p i t 1.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Secret_Photos_1.04_[Crack].zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\SignOut 5.9.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\SIM ICQ 0.9.4.3.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Simplicated Cursors 1.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\SpaceMaker_1.1.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\SSW_SQL_Deploy_11.72.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\StorKod 1.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Symantec_Client_Security_3.1.394简体ä¸*文版.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\The_Cat's_Cradle_Screensaver_1.0_[Cracked].zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Time_Calculator_1.1.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\TSOfficePool_-_March_Insanity_6.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Typing 1.0.0.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\uCertify_-_OCP_Practice_Test_for_Exam_1Z0-033_-_280+_Questions_8.00.05.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Unreal Tournament 2004 ONS Dreamus map.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Vehicle_Fleet_Manager_2.1.0.26_Patch.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Victory_At_Hebron_1.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Virtual_Edit_1.25.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Visual_Defrag_2007_1.0.0_[serial].zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Wallix_Pro_1.3.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\WildCrypt_1.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Windows Standard Serial Communications Library for FoxPro 3.2.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\WinSnap 2.0.8.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\WinTricks 5.0r.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\WordCollector 1.0.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\World_of_Warcraft_Gatherer_mod_1.9.12.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\WorshipCenter_Pro_4.1.0.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\XML Viewer 2.3.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\YaHP Converter 1.2.12.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\YASA VOB to MPEG Converter 3.2.36c.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\m\shared\Zunemytube Beta.zip (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\srosa2.sys (Trojan.Agent) -> No action taken.

C:\Users\Athenatius\AppData\Roaming\drivers\winupgro.exe (Trojan.Agent) -> No action taken.

Wat kan ik doen??

Houd er rekening mee dat ik bijna geen programma's meer kan openen of installeren...

Combofix is trouwens niet compatible met deze Windows 7

Groet,

Athenatius

Link naar reactie
Delen op andere sites

Start Hijackthis op. Ben je gebruiker van Vista kies dan voor “Run as administrator" of "Uitvoeren als administrator". Selecteer “Do a system scan only”. Selecteer alleen de items die hieronder zijn genoemd:

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

R3 - URLSearchHook: MyKai Toolbar - {abba5619-7774-4cbc-b0bd-bbb69708dd9c} - C:\Program Files (x86)\MyKai\tbMyKa.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: MyKai Toolbar - {abba5619-7774-4cbc-b0bd-bbb69708dd9c} - C:\Program Files (x86)\MyKai\tbMyKa.dll

O3 - Toolbar: MyKai Toolbar - {abba5619-7774-4cbc-b0bd-bbb69708dd9c} - C:\Program Files (x86)\MyKai\tbMyKa.dll

O4 - HKCU\..\Run: [drvsyskit] C:\Users\Athenatius\AppData\Roaming\drivers\winupgro.exe

O4 - HKCU\..\Run: [mule_st_key] C:\Users\Athenatius\AppData\Roaming\m\flec006.exe

Klik op 'Fix checked' om de items te verwijderen. En hang dan een nieuw logje in je volgende bericht.

Bij Malwarebytes heb je blijkbaar de aangeduide items niet verwijderd. "No action taken" wijst alvast in die richting. Wil je dan Malwarebytes nog eens laten scannen en nu wel kiezen voor "verwijderen".

Plak de inhoud van het nieuwe logje in je volgende bericht, samen met een nieuw HijackThis log.

En het is je 64-bits die problemen oplevert met Combofix.

Link naar reactie
Delen op andere sites

Ziet er schoon uit volgens mij..

Malwarebytes' Anti-Malware 1.41

Database versie: 2916

Windows 6.1.7100

10/6/2009 10:07:20 PM

mbam-log-2009-10-06 (22-07-20).txt

Scan type: Snelle Scan

Objecten gescand: 80718

Verstreken tijd: 2 minute(s), 51 second(s)

Geheugenprocessen geïnfecteerd: 0

Geheugenmodulen geïnfecteerd: 0

Registersleutels geïnfecteerd: 0

Registerwaarden geïnfecteerd: 0

Registerdata bestanden geïnfecteerd: 0

Mappen geïnfecteerd: 0

Bestanden geïnfecteerd: 0

Geheugenprocessen geïnfecteerd:

(Geen kwaadaardige items gevonden)

Geheugenmodulen geïnfecteerd:

(Geen kwaadaardige items gevonden)

Registersleutels geïnfecteerd:

(Geen kwaadaardige items gevonden)

Registerwaarden geïnfecteerd:

(Geen kwaadaardige items gevonden)

Registerdata bestanden geïnfecteerd:

(Geen kwaadaardige items gevonden)

Mappen geïnfecteerd:

(Geen kwaadaardige items gevonden)

Bestanden geïnfecteerd:

(Geen kwaadaardige items gevonden)

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 10:07:43 PM, on 10/6/2009

Platform: Unknown Windows (WinNT 6.01.3004)

MSIE: Unable to get Internet Explorer version!

Boot mode: Normal

Running processes:

E:\Program files\Firefox Preloader\FirefoxPreloader\FirefoxPreloader.exe

E:\Program files\MSN Pictures Displayer\MSN Pictures Displayer\MSN Pictures Displayer.exe

C:\Windows\SysWOW64\rundll32.exe

E:\Program files\HiYo\Bin\HiYo.exe

E:\Program files\Java Runtime Environment\bin\jusched.exe

E:\Program files\Itunes\iTunesHelper.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Users\Athenatius\Desktop\Firefox Ultimate Optimizer.exe

E:\Program files\Adobe Reader\Reader\reader_sl.exe

C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe

C:\Windows\SysWOW64\NOTEPAD.EXE

D:\Firefox\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Search

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - E:\Program files\Spybot\Spybot - Search & Destroy\SDHelper.dll

O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program files\Java Runtime Environment\bin\jp2ssv.dll

O4 - HKLM\..\Run: [P17RunE] RunDll32 P17RunE.dll,RunDLLEntry

O4 - HKLM\..\Run: [Hiyo] E:\Program files\HiYo\bin\HiYo.exe /RunFromStartup

O4 - HKLM\..\Run: [googletalk] C:\Program Files (x86)\Google\Google Talk\googletalk.exe /autostart

O4 - HKLM\..\Run: [sunJavaUpdateSched] "E:\Program files\Java Runtime Environment\bin\jusched.exe"

O4 - HKLM\..\Run: [iTunesHelper] "E:\Program files\Itunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [FirefoxUltimateOptimizer] C:\Users\Athenatius\Desktop\Firefox Ultimate Optimizer.exe

O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "E:\Program files\Adobe Reader\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Ad-Watch] C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWTray.exe

O4 - HKCU\..\Run: [uTorrent] "E:\Program files\Utorrent 1.8.3\uTorrent.exe"

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')

O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')

O4 - Startup: MSN Pictures Displayer.lnk = E:\Program files\MSN Pictures Displayer\MSN Pictures Displayer\MSN Pictures Displayer.exe

O4 - Global Startup: Firefox Preloader.lnk = E:\Program files\Firefox Preloader\FirefoxPreloader\FirefoxPreloader.exe

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://E:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000

O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - E:\Program files\Spybot\Spybot - Search & Destroy\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - E:\Program files\Spybot\Spybot - Search & Destroy\SDHelper.dll

O13 - Gopher Prefix:

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe

O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - E:\Program files\Eset NOD32 antivirus\EHttpSrv.exe

O23 - Service: ESET Service (ekrn) - ESET - E:\Program files\Eset NOD32 antivirus\x86\ekrn.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files (x86)\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Lavasoft Ad-Aware Service - Lavasoft - C:\Program Files (x86)\Lavasoft\Ad-Aware\AAWService.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NMIndexingService - Nero AG - C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - E:\Program files\Spybot\Spybot - Search & Destroy\SDWinSec.exe

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: Print Spooler (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files (x86)\Common Files\SureThing Shared\stllssvr.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--

End of file - 7622 bytes

Link naar reactie
Delen op andere sites

Logjes zien er prima uit :-)

Download CCleaner. Klik op deze pagina op één van de mirrorsites van MajorGeeks en dan start de download van CCleaner automatisch en gratis op.

Installeer het en start CCleaner op. Klik in de linkse kolom op “Cleaner”. Klik achtereenvolgens op ‘Analyseren’ en 'Schoonmaken'. Soms is 1 analyse niet voldoende. Deze procedure mag je herhalen tot de analyse geen fouten meer aangeeft. Klik vervolgens in de linkse kolom op “Register” en klik op ‘Scan naar problemen”. Als er fouten gevonden worden klik je op ”Herstel geselecteerde problemen” en ”OK”. Dan krijg je de vraag om een back-up te maken. Klik op “JA”. Kies dan “Herstel alle geselecteerde fouten”. Sluit hierna CCleaner terug af.

Het is aangewezen om de bestaande herstelpunten te verwijderen (daar zitten besmette herstelpunten tussen die je eventueel zou kunnen terugzetten) door systeemherstel tijdelijk uit te schakelen. Doe di t via Configuratiescherm -> Systeem en Onderhoud -> Systeem -> tabblad "Systeembeveiliging" -> vinkje weghalen bij de schijf waarvan je de herstelpunten wil verwijderen -> klikken op "toepassen". Dan krijg je de schermmelding “Weet u zeker dat u systeemherstel wil uitschakelen”. Klik hier op “Systeemherstel uitschakelen”. Dan zijn alle herstelpunten verwijderd op de aangeduide schijf.

Zet daarna opnieuw een vinkje bij de harde schijf. Maak meteen ook een nieuw herstelpunt, zodat je niet hoeft te wachten op een automatisch herstelpunt van het systeem.

That's it !

Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.
×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.