Ga naar inhoud

TrojanClicker:Win32/Yabector.gen


Aanbevolen berichten

Gast rickyboy21

download dit: [ame=http://download.cnet.com/Ad-Aware-Free-Anti-Malware/3000-8022_4-10045910.html?tag=contentMain;contentAux]Ad-Aware Free Anti-Malware - Free software downloads and software reviews - CNET Download.com[/ame]

of anders spyware doctor via google pack

Link naar reactie
Delen op andere sites

  • Reacties 25
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Combofix was vastgelopen onverwachts, zonder dat ik in het venster had geklikt. Zie vorige post met bijlage. Hierdoor heeft hij dus niet zijn logje kunnen maken en vind ik het nergens.

---------- Post toegevoegd om 12:42 ---------- Vorige post was om 12:38 ----------

via de zoekfunctie heb ik dan toch een logje gevonden van ComboFix. Ik vermoed dat het deze is. De datum staat op gisteren en alle andere eerder.

ComboFix 10-02-25.02 - hendrik 26/02/2010 17:40:18.6.2 - x86

Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.32.1043.18.3069.1612 [GMT 1:00]

Gestart vanuit: C:\Users\hendrik\Desktop\ComboFix.exe

SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

* Aanwezig AV is actief

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

.

((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

.

-------\Service_BsMain

(((((((((((((((((((( Bestanden Gemaakt van 2010-01-26 to 2010-02-26 ))))))))))))))))))))))))))))))

.

2010-02-26 16:50:08 . 2010-02-26 16:53:27 -------- d-----w- C:\Users\hendrik\AppData\Local\temp

2010-02-26 16:50:08 . 2010-02-26 16:50:08 -------- d-----w- C:\Users\Public\AppData\Local\temp

2010-02-26 16:50:08 . 2010-02-26 16:50:08 -------- d-----w- C:\Users\Default\AppData\Local\temp

2010-02-24 12:48:21 . 2010-02-24 12:48:21 0 ----a-w- C:\Windows\system32\SBRC.dat

2010-02-24 11:42:39 . 2010-02-24 11:42:39 -------- d-----w- C:\Users\hendrik\AppData\Roaming\Sunbelt

2010-02-24 11:42:29 . 2010-02-24 11:42:29 -------- d-----w- C:\ProgramData\Sunbelt

2010-02-24 11:38:47 . 2010-02-24 11:38:47 -------- d-----w- C:\Program Files\Sunbelt Software

2010-02-22 15:32:26 . 2010-02-22 15:32:26 -------- d-----w- C:\Program Files\Windows Live SkyDrive

2010-02-22 15:32:08 . 2010-02-22 15:32:38 -------- d-----w- C:\Program Files\Windows Live

2010-02-22 15:21:40 . 2010-02-22 15:21:41 -------- d-----w- C:\Program Files\Windows Installer Clean Up

2010-02-22 12:14:08 . 2010-02-22 15:20:45 -------- d-----w- C:\Program Files\MSECACHE

2010-02-21 16:32:29 . 2010-02-22 14:35:41 -------- d-----w- C:\Users\hendrik\AppData\Local\temp(47)

2010-02-20 16:51:18 . 2010-02-23 15:45:56 -------- d-----w- C:\Program Files\Windows Live Safety Center

2010-02-19 19:31:16 . 2010-02-19 19:31:16 -------- d-----w- C:\Users\hendrik\AppData\Roaming\Zylom

2010-02-19 19:30:40 . 2010-02-21 13:12:43 -------- d-----w- C:\Users\hendrik\AppData\Local\Zylom Games

2010-02-10 12:38:42 . 2010-02-10 12:38:42 -------- d-----w- C:\Program Files\Trend Micro

2010-02-09 20:44:26 . 2010-02-09 20:44:26 -------- d-----w- C:\Program Files\Common Files\Windows Live

2010-02-08 15:52:16 . 2010-02-08 15:52:16 -------- d-----w- C:\Program Files\iPod

2010-02-01 17:42:58 . 2010-02-11 15:30:33 122744 ----a-w- C:\Windows\system32\BdInstHk.dll

2010-02-01 11:01:52 . 2010-02-22 14:43:52 148816 ----a-w- C:\Windows\system32\BGLsp.dll

2010-01-30 15:20:51 . 2009-10-07 11:36:36 243712 ----a-w- C:\Windows\system32\rastls.dll

2010-01-30 15:20:43 . 2009-08-14 13:27:17 2036736 ----a-w- C:\Windows\system32\win32k.sys

2010-01-27 17:11:03 . 2010-01-27 17:11:03 -------- d-----w- C:\ProgramData\BVRP Software

2010-01-27 17:01:17 . 2008-10-21 08:22:48 86824 ----a-w- C:\Windows\system32\drivers\s0017bus.sys

2010-01-27 17:01:17 . 2008-10-21 08:22:48 26024 ----a-w- C:\Windows\system32\drivers\s0017nd5.sys

2010-01-27 17:01:17 . 2008-10-21 08:22:48 15016 ----a-w- C:\Windows\system32\drivers\s0017mdfl.sys

2010-01-27 17:01:17 . 2008-10-21 08:22:48 12200 ----a-w- C:\Windows\system32\drivers\s0017whnt.sys

2010-01-27 17:01:17 . 2008-10-21 08:22:48 12200 ----a-w- C:\Windows\system32\drivers\s0017wh.sys

2010-01-27 17:01:17 . 2008-10-21 08:22:48 12200 ----a-w- C:\Windows\system32\drivers\s0017cmnt.sys

2010-01-27 17:01:17 . 2008-10-21 08:22:48 12200 ----a-w- C:\Windows\system32\drivers\s0017cm.sys

2010-01-27 17:01:17 . 2008-10-21 08:22:48 114600 ----a-w- C:\Windows\system32\drivers\s0017mdm.sys

2010-01-27 17:01:17 . 2008-10-21 08:22:48 109736 ----a-w- C:\Windows\system32\drivers\s0017unic.sys

2010-01-27 17:01:17 . 2008-10-21 08:22:48 108328 ----a-w- C:\Windows\system32\drivers\s0017mgmt.sys

2010-01-27 17:01:17 . 2008-10-21 08:22:48 10792 ----a-w- C:\Windows\system32\drivers\s0017cr.sys

2010-01-27 17:01:17 . 2008-10-21 08:22:48 104616 ----a-w- C:\Windows\system32\drivers\s0017obex.sys

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-02-26 16:35:00 . 2008-06-27 17:00:02 -------- d-----w- C:\ProgramData\BullGuard

2010-02-25 15:51:50 . 2010-02-11 15:31:17 49488 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\BsBrowser.dll

2010-02-25 15:51:49 . 2010-02-11 15:30:26 1062224 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\plugins\BpAntivirus.dll

2010-02-25 15:51:47 . 2010-02-11 15:30:19 240976 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\BsFileScan.dll

2010-02-25 15:51:45 . 2010-02-11 15:29:58 159056 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\Login.dll

2010-02-25 15:51:45 . 2010-02-11 15:29:56 2064720 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\BullGuard.exe

2010-02-25 15:51:43 . 2010-02-11 15:29:48 147792 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\BsMain.dll

2010-02-25 15:48:40 . 2010-02-11 15:27:30 336208 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\BullGuardUpdate.exe

2010-02-25 15:48:40 . 2010-02-11 15:27:30 336208 ----a-w- C:\ProgramData\BullGuard\Update\Bin\BullGuardUpdate.exe

2010-02-25 15:45:47 . 2008-06-27 16:37:11 27525 ----a-w- C:\Users\hendrik\AppData\Roaming\nvModes.dat

2010-02-24 19:00:40 . 2008-08-07 17:35:27 680 ----a-w- C:\Users\hendrik\AppData\Local\d3d9caps.dat

2010-02-24 11:43:24 . 2008-06-27 16:26:53 107736 ----a-w- C:\Users\hendrik\AppData\Local\GDIPFONTCACHEV1.DAT

2010-02-24 08:16:06 . 2009-10-03 15:25:03 181632 ------w- C:\Windows\system32\MpSigStub.exe

2010-02-23 21:40:01 . 2008-04-14 11:39:45 -------- d-----w- C:\ProgramData\Microsoft Help

2010-02-23 18:35:01 . 2006-11-02 16:11:51 667352 ----a-w- C:\Windows\system32\perfh013.dat

2010-02-23 18:35:01 . 2006-11-02 16:11:51 126854 ----a-w- C:\Windows\system32\perfc013.dat

2010-02-23 14:37:07 . 2009-04-13 15:30:13 -------- d-----w- C:\Program Files\NCH Software

2010-02-22 15:21:49 . 2008-06-27 17:00:02 -------- d-----w- C:\Users\hendrik\AppData\Roaming\BullGuard

2010-02-22 15:21:42 . 2010-02-22 15:21:42 3584 ----a-r- C:\Users\hendrik\AppData\Roaming\Microsoft\Installer\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}\Icon386ED4E3.exe

2010-02-20 13:23:38 . 2006-11-02 11:18:33 -------- d-----w- C:\Program Files\Windows Mail

2010-02-16 10:42:19 . 2010-02-11 15:31:03 352080 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\BackupShellTransfer.exe

2010-02-16 10:42:19 . 2010-02-11 15:31:02 1114448 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\BackupRun.exe

2010-02-16 10:42:12 . 2010-02-11 15:30:18 320848 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\BgSecErase.exe

2010-02-16 10:42:11 . 2010-02-11 15:30:03 288080 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\ManualUpdate.exe

2010-02-11 15:30:33 . 2010-02-11 15:30:33 122744 ----a-w- C:\ProgramData\BullGuard\Update\Download\SYSDIR\BdInstHk.dll

2010-02-11 15:30:32 . 2010-02-11 15:30:32 589136 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\res\nl\BpAntivirusRes.dll

2010-02-11 15:30:31 . 2010-02-11 15:30:31 10576 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\res\nl\BgSecEraseRes.dll

2010-02-11 15:30:31 . 2010-02-11 15:30:31 10064 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\res\nl\BgShellExtRes.dll

2010-02-11 15:30:29 . 2010-02-11 15:30:29 245584 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\res\nl\BgLogViewerRes.dll

2010-02-11 15:30:17 . 2010-02-11 15:30:17 878928 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\BgScan.exe

2010-02-11 15:30:08 . 2010-02-11 15:30:08 509264 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\BgLogViewer.exe

2010-02-11 15:30:04 . 2010-02-11 15:30:04 25424 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\res\nl\ManualUpdateRes.dll

2010-02-11 15:30:02 . 2010-02-11 15:30:02 183744 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\Uninst.exe

2010-02-11 15:30:01 . 2010-02-11 15:30:01 353616 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\res\nl\BullGuardRes.dll

2010-02-11 15:30:00 . 2010-02-11 15:30:00 456528 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\plugins\BpMain.dll

2010-02-11 15:30:00 . 2010-02-11 15:30:00 17232 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\res\nl\BpMainRes.dll

2010-02-11 15:30:00 . 2010-02-11 15:30:00 10064 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\res\nl\bgcrsRes.dll

2010-02-11 15:29:45 . 2010-02-11 15:29:45 199504 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\BgLauncher.exe

2010-02-11 15:29:39 . 2010-02-11 15:29:39 85328 ----a-w- C:\ProgramData\BullGuard\Update\Download\APPDIR\BgInstallAssist.dll

2010-02-08 15:52:14 . 2008-07-13 09:43:57 -------- d-----w- C:\Program Files\Common Files\Apple

2010-02-08 15:45:01 . 2010-02-08 15:45:01 72488 ----a-w- C:\ProgramData\Apple Computer\Installer Cache\iTunes 9.0.3.15\SetupAdmin.exe

2010-02-02 21:50:57 . 2008-12-12 17:13:11 -------- d-----w- C:\ProgramData\Avanquest Bluetooth SDK

2010-01-27 17:00:37 . 2008-04-14 10:24:28 -------- d--h--w- C:\Program Files\InstallShield Installation Information

2010-01-27 16:53:31 . 2010-01-27 16:53:31 0 ---ha-w- C:\Windows\system32\drivers\Msft_Kernel_ggsemc_01007.Wdf

2010-01-27 16:42:27 . 2010-01-27 16:42:27 25512 ----a-w- C:\Windows\system32\drivers\ggsemc.sys

2010-01-27 16:42:27 . 2010-01-27 16:42:27 13224 ----a-w- C:\Windows\system32\drivers\ggflt.sys

2010-01-27 16:42:27 . 2010-01-27 16:42:27 1112288 ----a-w- C:\Windows\system32\WdfCoInstaller01007.dll

2010-01-26 18:04:59 . 2009-11-28 11:28:54 -------- d-----w- C:\Users\hendrik\AppData\Roaming\uTorrent

2010-01-21 17:06:52 . 2008-04-14 11:14:12 -------- d-----w- C:\Program Files\Common Files\Adobe

2010-01-16 16:12:01 . 2010-01-16 16:12:01 -------- d-----w- C:\Program Files\Common Files\Java

2010-01-16 16:11:01 . 2008-12-03 13:49:28 411368 ----a-w- C:\Windows\system32\deploytk.dll

2010-01-11 09:30:42 . 2010-01-11 09:30:42 98128 ----a-w- C:\Windows\system32\BgGamingMonitor.dll

2010-01-09 09:05:11 . 2009-01-31 18:23:11 -------- d-----w- C:\Program Files\Malwarebytes' Anti-Malware

2010-01-08 19:00:54 . 2009-03-29 15:55:45 5115824 ----a-w- C:\ProgramData\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe

2010-01-07 15:07:14 . 2009-01-31 18:23:12 38224 ----a-w- C:\Windows\system32\drivers\mbamswissarmy.sys

2010-01-07 15:07:04 . 2009-01-31 18:23:14 19160 ----a-w- C:\Windows\system32\drivers\mbam.sys

2010-01-02 06:38:20 . 2010-01-30 15:18:31 916480 ----a-w- C:\Windows\system32\wininet.dll

2010-01-02 06:32:33 . 2010-01-30 15:18:28 109056 ----a-w- C:\Windows\system32\iesysprep.dll

2010-01-02 06:32:33 . 2010-01-30 15:18:27 71680 ----a-w- C:\Windows\system32\iesetup.dll

2010-01-02 04:57:00 . 2010-01-30 15:18:29 133632 ----a-w- C:\Windows\system32\ieUnatt.exe

2009-12-25 18:59:36 . 2009-12-25 18:59:35 658696 ----a-w- C:\ProgramData\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll

2009-12-14 19:07:28 . 2006-11-02 10:25:05 665600 ----a-w- C:\Windows\inf\drvindex.dat

2009-12-14 14:20:40 . 2006-11-02 10:32:57 101888 ----a-w- C:\Windows\system32\ifxcardm.dll

2009-12-14 14:19:41 . 2006-11-02 10:32:57 82432 ----a-w- C:\Windows\system32\axaltocm.dll

2009-12-12 14:13:16 . 2009-06-16 11:39:01 737280 ----a-w- C:\Windows\iun6002.exe

2009-12-12 11:57:35 . 2009-12-12 11:57:35 2208 ----a-w- C:\Windows\system32\drivers\nxsIO32.sys

2009-12-10 20:58:43 . 2009-12-10 15:44:10 294 ---ha-w- C:\Windows\sysreg.dat

2009-12-04 10:00:14 . 2009-12-04 10:00:14 318488 ----a-w- C:\Windows\system32\drivers\afwcore.sys

2009-12-04 10:00:14 . 2009-12-04 10:00:14 29208 ----a-w- C:\Windows\system32\drivers\afw.sys

2009-12-04 09:59:56 . 2009-12-04 09:59:56 53840 ----a-w- C:\Windows\system32\drivers\BdSpy.sys

2009-12-02 15:27:08 . 2009-08-23 14:23:56 138280 ----a-w- C:\Windows\system32\drivers\PnkBstrK.sys

2009-12-02 15:26:56 . 2009-08-23 14:23:50 111928 ----a-w- C:\Windows\system32\PnkBstrB.exe

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe" [2009-04-10 22:28:04 1233920]

"ehTray.exe"="C:\Windows\ehome\ehTray.exe" [2008-01-18 22:33:10 125952]

"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 15:44:30 3883856]

"RocketDock"="D:\Program Files\RocketDock\RocketDock.exe" [2007-09-02 11:58:52 495616]

"WMPNSCFG"="C:\Program Files\Windows Media Player\WMPNSCFG.exe" [2008-01-18 22:33:40 202240]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RtHDVCpl"="RtHDVCpl.exe" [2007-11-08 07:03:09 4702208]

"MGSysCtrl"="C:\Program Files\System Control Manager\MGSysCtrl.exe" [2008-03-14 12:14:26 561152]

"BrMfcWnd"="C:\Program Files\Brother\Brmfcmon\BrMfcWnd.exe" [2006-11-24 18:20:36 622592]

"ControlCenter3"="C:\Program Files\Brother\ControlCenter3\brctrcen.exe" [2006-07-19 12:51:54 65536]

"Skytel"="Skytel.exe" [2007-11-08 07:03:09 1826816]

"NvSvc"="C:\Windows\system32\nvsvc.dll" [2007-11-08 07:03:09 86016]

"NvCplDaemon"="C:\Windows\system32\NvCpl.dll" [2007-11-08 07:03:09 8462336]

"NvMediaCenter"="C:\Windows\system32\NvMcTray.dll" [2007-11-08 07:03:09 81920]

"Malwarebytes' Anti-Malware"="C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" [2010-01-07 15:07:10 429392]

"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" [2010-01-11 14:21:52 246504]

"Adobe Reader Speed Launcher"="D:\Program Files\Adobe\Reader\Reader_sl.exe" [2009-12-22 00:57:28 35760]

"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-12-11 14:57:56 948672]

"QuickTime Task"="D:\Program Files\QuickTime\QTTask.exe" [2009-11-10 22:08:18 417792]

"iTunesHelper"="D:\Program Files\iTunes\iTunesHelper.exe" [2010-01-22 18:16:42 141608]

"BullGuard"="D:\Program Files\BullGuard\BullGuard.exe" [2010-02-25 15:51:45 2064720]

C:\Users\hendrik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\

OneNote 2007 Schermopname en Snel starten.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE [2008-10-25 98696]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\

aveosti.exe.lnk - C:\Program Files\AVEO\AVEO UVC Filter Driver Kit\AveoSTI.exe [2008-4-14 28672]

Bluetooth Manager.lnk - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2007-2-27 2756608]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]

"AppInit_DLLs"=C:\Windows\System32\BgGamingMonitor.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"aux"=wdmaud.drv

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]

"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]

"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]

"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]

"VistaSp2"=hex(B):89,ec,59,ca,db,7c,ca,01

R0 Si3531;SiI-3531 SATA Controller;C:\Windows\System32\drivers\Si3531.sys [5/02/2009 18:38:24 212520]

R1 afw;Agnitum Firewall Driver;C:\Windows\System32\drivers\afw.sys [4/12/2009 11:00:14 29208]

R1 BdSpy;BdSpy;C:\Windows\System32\drivers\BdSpy.sys [4/12/2009 10:59:56 53840]

R1 ntiomin;ntiomin;C:\Windows\System32\drivers\ntiomin.sys [12/04/2008 16:40:28 11392]

R2 BsBrowser;BullGuard antiphishing service;C:\Windows\System32\SvcHost.exe -k BullGuard_LowPriv [14/12/2009 14:26:56 21504]

R2 BsFileScan;BullGuard on-access service;C:\Windows\System32\SvcHost.exe -k BullGuard [14/12/2009 14:26:56 21504]

R2 BsFire;BullGuard firewall service;C:\Windows\System32\SvcHost.exe -k BullGuard [14/12/2009 14:26:56 21504]

R2 BsMailProxy;BullGuard e-mail monitoring service;C:\Windows\System32\SvcHost.exe -k BullGuard [14/12/2009 14:26:56 21504]

R2 BsUpdate;BullGuard update service;D:\Program Files\BullGuard\BullGuardUpdate.exe [25/02/2010 16:48:40 336208]

R2 MBAMService;MBAMService;C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [4/12/2009 20:01:02 236368]

R2 NishService;SCM Driver Daemon;C:\Program Files\System Control Manager\edd.exe [14/04/2008 13:05:59 61440]

R2 nxsIO32;NextSensor Kernel I/O Driver;C:\Windows\System32\drivers\nxsIO32.sys [12/12/2009 12:57:35 2208]

R2 OMSI download service;Sony Ericsson OMSI download service;D:\Program Files\Sony Ericsson\SupServ.exe [27/01/2010 18:00:43 90112]

R3 afwcore;afwcore;C:\Windows\System32\drivers\afwcore.sys [4/12/2009 11:00:14 318488]

R3 enecir;ENE CIR Receiver;C:\Windows\System32\drivers\enecir.sys [14/04/2008 11:34:50 32256]

R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [31/01/2009 19:23:14 19160]

R3 MGHwCtrl;MGHwCtrl;C:\Windows\System32\drivers\MGHwCtrl.sys [14/04/2008 13:05:57 19456]

R3 NETw5v32;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;C:\Windows\System32\drivers\NETw5v32.sys [18/11/2009 0:51:36 4247552]

S3 ACSSCR;ACR38 Smart Card Reader;C:\Windows\System32\drivers\a38usbxp.sys [30/04/2004 12:35:00 24832]

S3 BgRaSvc;BgRaSvc;D:\Program Files\BullGuard\Support\BgRaSvc.exe [22/12/2009 16:56:48 117584]

S3 BsScanner;BullGuard scanning service;D:\Program Files\BullGuard\BullGuardScanner.exe [22/01/2010 10:36:36 294224]

S3 ggflt;SEMC USB Flash Driver Filter;C:\Windows\System32\drivers\ggflt.sys [27/01/2010 17:42:27 13224]

S3 s0017bus;Sony Ericsson Device 0017 driver (WDM);C:\Windows\System32\drivers\s0017bus.sys [27/01/2010 18:01:17 86824]

S3 s0017mdfl;Sony Ericsson Device 0017 USB WMC Modem Filter;C:\Windows\System32\drivers\s0017mdfl.sys [27/01/2010 18:01:17 15016]

S3 s0017mdm;Sony Ericsson Device 0017 USB WMC Modem Driver;C:\Windows\System32\drivers\s0017mdm.sys [27/01/2010 18:01:17 114600]

S3 s0017mgmt;Sony Ericsson Device 0017 USB WMC Device Management Drivers (WDM);C:\Windows\System32\drivers\s0017mgmt.sys [27/01/2010 18:01:17 108328]

S3 s0017nd5;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (NDIS);C:\Windows\System32\drivers\s0017nd5.sys [27/01/2010 18:01:17 26024]

S3 s0017obex;Sony Ericsson Device 0017 USB WMC OBEX Interface;C:\Windows\System32\drivers\s0017obex.sys [27/01/2010 18:01:17 104616]

S3 s0017unic;Sony Ericsson Device 0017 USB Ethernet Emulation SEMC0017 (WDM);C:\Windows\System32\drivers\s0017unic.sys [27/01/2010 18:01:17 109736]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache

BullGuard_Main REG_MULTI_SZ BsMain

BullGuard REG_MULTI_SZ BsFileScan BsMailProxy BsFire

BullGuard_LowPriv REG_MULTI_SZ BsBrowser

.

Inhoud van de 'Gedeelde Taken' map

2010-02-25 C:\Windows\Tasks\Malwarebytes' Scheduled Update for hendrik.job

- C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2009-01-31 18:23:12 . 2010-01-07 15:07:10]

.

.

------- Bijkomende Scan -------

.

uStart Page = hxxp://www.hln.be/

uInternet Settings,ProxyOverride = *.local

IE: E&xporteren naar Microsoft Excel - C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

LSP: C:\Windows\system32\BGLsp.dll

FF - ProfilePath - C:\Users\hendrik\AppData\Roaming\Mozilla\Firefox\Profiles\prr7ovz6.default\

FF - component: D:\Program Files\BullGuard\Antiphishing\FF\antiphishing@bullguard\components\BGFFComponent.dll

FF - plugin: C:\Program Files\Microsoft\Office Live\npOLW.dll

FF - plugin: C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll

FF - plugin: C:\Program Files\Mozilla Firefox\plugins\NPDFusionWebFirefox.dll

FF - plugin: C:\Program Files\Total Immersion\DFusionHomeWebPlugIn\NPDFusionWebFirefox.dll

FF - plugin: D:\Program Files\Adobe\Reader\browser\nppdf32.dll

FF - plugin: D:\Program Files\iTunes\Mozilla Plugins\npitunes.dll

FF - plugin: D:\Program Files\QuickTime\Plugins\npqtplugin.dll

FF - plugin: D:\Program Files\QuickTime\Plugins\npqtplugin2.dll

FF - plugin: D:\Program Files\QuickTime\Plugins\npqtplugin3.dll

FF - plugin: D:\Program Files\QuickTime\Plugins\npqtplugin4.dll

FF - plugin: D:\Program Files\QuickTime\Plugins\npqtplugin5.dll

FF - plugin: D:\Program Files\QuickTime\Plugins\npqtplugin6.dll

FF - plugin: D:\Program Files\QuickTime\Plugins\npqtplugin7.dll

FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- FIREFOX POLICIES ----

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug", false);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);

C:\Program Files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);

C:\Program Files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);

C:\Program Files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "Firefox web browser | Faster, more secure, & customizable");

C:\Program Files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);

C:\Program Files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);

.

Link naar reactie
Delen op andere sites

Het probleem met het verwijderen van het essentieel onderdeel van Bullguard is ter discussie gesteld. Wacht even op reactie van de collega's.

Ondertussen kan je nog eens dit proberen :

Download Dr.Web CureIt en sla het op je bureaublad op.

  • Dubbelklik drweb-cureit.exe en sta het toe om te express scan te starten.
    Indien er een popup verschijnt met het voorstel tot kopen/50% korting mag je deze sluiten.
  • De express scan zal de bestanden scannen die momenteel in het geheugen geladen zijn. Wanneer er iets gevonden wordt klik op 'alles selecteren' kies nu voor 'repareren' en uit het kleine menutje dat verschijnt kies je 'verplaatsen'.
  • Kies bovenaan in het menu voor Language/Taal en wijzig deze naar Dutch (Nederlands) indien deze bij jou anders staat ingesteld.
  • Druk op F9, kies daarna voor het tabblad Acties en stel daar het volgende in onder Malware:

    • Adware: Verplaats
    • Dialers: Verplaats
    • Jokes: Rapportage
    • Riskware: Rapportage
    • Hacktools: Verplaats
    • Haal dan het vinkje weg bij 'Prompt bij actie'.

    [*]Kies daarna voor het tabblad Scan en verwijder het vinkje bij Heuristische analyse.

    Druk vervolgens op Toepassen gevolgd door OK.

    [*]Eenmaal als de korte scan is beëindigd vink je aan: Volledige scan.

    Druk daarna op het groene pijltje (start knop) om de scan te starten.

    [*]Gevonden bestanden worden naar '%USERPROFILE%\DocterWeb\Quarantine' -map verplaatst indien het herstellen niet mogelijk is.

    [*]Nadat de scan gedaan is ga dan naar Bestand en kies Rapportage lijst opslaan.

    Bewaar deze op je bureaublad en sluit daarna Dr.Web CureIt.

    [*]Herstart vervolgens de computer!! Dit is een belangrijke stap want het kan zijn dat Dr.Web CureIt bestanden zal verplaatsen/verwijderen tijdens herstart.

    [*]Na het herstarten, kopieer en plak de inhoud van die log die je eerder hebt bewaard in je volgende post.

Link naar reactie
Delen op andere sites

capicom32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.cdosys32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.CertEnroll32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.chsbrkr32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.ci32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.clb32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.clb32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.client_cc32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.client_cc32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.cmdial3232.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.cmdial3232.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.cmipnpinstall32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.cmipnpinstall32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.cmstplua32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.cofiredm32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.colorui32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.colorui32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.comdlg3232.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.comdlg3232.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.compobj32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.compobj32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.comsnap32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.comsnap32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.connect32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.credssp32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.crypt3232.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.crypt3232.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.cryptext32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.cryptext32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.cryptui32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.cryptui32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.csrsrv32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.C_IS202232.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.C_IS202232.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.d3d10core32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.d3d932.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.d3dramp32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.d3dramp32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.davclnt32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.davclnt32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dbnetlib32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.DDACLSys32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.ddrawex32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.ddrawex32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.deskperf32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dfdts32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dfdts32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dfshim32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dfshim32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dhcpcmonitor32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dhcpcmonitor32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dhcpcmonitor32.dll2.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.DHCPQEC32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.DHCPQEC32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.diagperf32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dinput32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dinput32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dinput32.dll2.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dispex32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dispex32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dispex32.dll2.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dmdlgs32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dmdlgs32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dmdlgs32.dll2.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dmime32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dmime32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dmime32.dll2.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dmocx32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dmocx32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dmusic32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dmusic32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dnsapi32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dnsapi32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dnssd32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dnssd32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dnssd32.dll2.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dot3cfg32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dot3msm32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dot3msm32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dpnathlp32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dpnathlp32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dpnlobby32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dpnlobby32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dpx32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.drprov32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.drprov32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dskquoui32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dskquoui32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dsquery32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dsquery32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dsuiext32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dsuiext32.dll1.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.dxgi32.dll.qC:\Documents and Settings\All Users\Application Data\BullGuard\QuarantineTrojan.DownLoad.28458Verwijderd.externezenders.html\Script.0C:\Documents and Settings\hendrik\AppData\Local\Application Data\Microsoft\Windows Sidebar\Gadgets\MiniTV.gadget\externezendersModificatie van VBS.Generic.45externezenders.htmlC:\Documents and Settings\hendrik\AppData\Local\Application Data\Microsoft\Windows Sidebar\Gadgets\MiniTV.gadgetContainer contains infected objectsVerplaatst.externezenders.html\Script.0C:\Documents and Settings\hendrik\DoctorWeb\Quarantine\externezenders.htmlModificatie van VBS.Generic.45externezenders.htmlC:\Documents and Settings\hendrik\DoctorWeb\QuarantineContainer contains infected objectsVerplaatst.

aangepast door honk
Link naar reactie
Delen op andere sites

Dat weet ik niet, heb hem nog niet opnieuw laten scannen (ik zie tegen de lange tijdsduur in) Ik denk dat "oompje" zich gewoon vergist aangezien deze scan, BullGuard, MBAM en nog een online scanner deze virus niet terug vinden. Ik denk dat deze zich niet op mijn computer bevind.

Link naar reactie
Delen op andere sites

Tja, in mijn bericht 6 van 25.02 heb ik (voorzichtig) deze conclusie ook al getrokken ... maar 100 % zekerheid heb je natuurlijk nooit. Al is het inderdaad wel heel vreemd dat geen enkele andere scanner hier iets weet te vinden :sad

Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.