Ga naar inhoud

kan adware niet verwijderen.


anatool

Aanbevolen berichten

hmmm lukt niet echt hoor :-(,ik heb het nogmaals geprobeerd en de scan van combofix deed het nu wel,maar de voorbereiding van het logbestand oesje,oesje oesje...totale tijd:130 minuten!!!!(scan heel snel dus,maar die logfile verkrijgen,neen....),nu ben ik een rootkitcontrole aan het doen met mijn antivirus programm g-data hierbij de resultaten:

bestand/ object:combofix exe categorie:virus beschrijving:IRC:malware-gen(engine-B)

fyf/rar.sfx.script categorie : virus beschrijving : IRC:malware-gen ( engine-B)

A0013942.exe categorie:virus beschrijving :IRC:malware- gen (engine-B)

fyf/rar.sfx.script categorie : virus beschrijving : IRC:malware-gen ( engine-B)

beiden heb ga ik nu in quarataine proppen en nu wat slapen :-)

Link naar reactie
Delen op andere sites

  • Reacties 22
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Beste reacties in dit topic

Zit er op deze locatie C:\ComboFix.txt geen logje van je scan met Combofix ?

tjeins toch wel en ik maar hier maar liefst 130 minuten wachten gisteren:D

ziehier het logfile:

ComboFix 11-01-05.01 - Windows XP 05/01/2011 23:36:05.2.1 - x86

Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.503.60 [GMT 1:00]

Gestart vanuit: C:\Documents and Settings\Windows XP\Bureaublad\ComboFix.exe

AV: G Data AntiVirus 2011 *Disabled/Updated* {71310606-6F3B-49F2-9A81-8315AA75FBB3}

FW: AVG Firewall *Disabled* {8decf618-9569-4340-b34a-d78d28969b66}

* Aanwezig AV is actief

.

(((((((((((((((((((( Bestanden Gemaakt van 2010-12-05 to 2011-01-05 ))))))))))))))))))))))))))))))

.

2011-01-05 22:12:23 . 2011-01-05 22:12:23 -------- d--h--r- C:\Documents and Settings\Windows XP\Onlangs geopend

2011-01-05 07:35:48 . 2011-01-05 07:35:48 -------- d-----w- C:\Documents and Settings\Windows XP\Application Data\Malwarebytes

2011-01-05 07:35:40 . 2010-12-20 17:09:00 38224 ----a-w- C:\WINDOWS\system32\drivers\mbamswissarmy.sys

2011-01-05 07:35:38 . 2011-01-05 07:35:38 -------- d-----w- C:\Documents and Settings\All Users\Application Data\Malwarebytes

2011-01-05 07:35:34 . 2010-12-20 17:08:40 20952 ----a-w- C:\WINDOWS\system32\drivers\mbam.sys

2011-01-05 07:35:33 . 2011-01-05 07:35:43 -------- d-----w- C:\Program Files\Malwarebytes' Anti-Malware

2011-01-04 18:32:50 . 2011-01-04 18:32:50 388096 ----a-r- C:\Documents and Settings\Windows XP\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

2011-01-04 18:32:49 . 2011-01-04 18:32:49 -------- d-----w- C:\Program Files\Trend Micro

2011-01-03 19:24:24 . 2011-01-03 19:25:01 -------- d-----w- C:\Program Files\Windows Live Safety Center

2011-01-02 22:33:35 . 2011-01-02 22:33:35 -------- d-----w- C:\Documents and Settings\Windows XP\Application Data\.BitTornado

2011-01-02 22:33:06 . 2011-01-02 22:33:12 -------- d-----w- C:\Program Files\BitTornado

2011-01-02 06:42:34 . 2011-01-02 06:42:34 -------- d-----w- C:\Program Files\NCH Software

2011-01-02 06:37:37 . 2011-01-02 07:04:34 -------- d-----w- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound

2011-01-02 06:37:21 . 2011-01-02 07:04:42 -------- d-----w- C:\Documents and Settings\Windows XP\Application Data\NCH Swift Sound

2010-12-31 08:40:32 . 2010-12-31 10:24:13 -------- d-----w- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy

2010-12-31 08:40:32 . 2010-12-31 08:40:55 -------- d-----w- C:\Program Files\Spybot - Search & Destroy

2010-12-31 08:27:40 . 2010-12-31 08:27:40 -------- d-----w- C:\Program Files\ToniArts

2010-12-31 08:27:07 . 2004-07-15 23:18:42 172032 ----a-w- C:\Program Files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iuser.dll

2010-12-31 08:27:07 . 2004-07-15 23:16:24 32768 ----a-w- C:\Program Files\Common Files\InstallShield\Professional\RunTime\Objectps.dll

2010-12-31 08:27:06 . 2004-07-15 23:20:44 733184 ----a-w- C:\Program Files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iKernel.dll

2010-12-31 08:27:06 . 2004-07-15 23:20:08 69715 ----a-w- C:\Program Files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\ctor.dll

2010-12-31 08:27:06 . 2004-07-15 23:19:18 266240 ----a-w- C:\Program Files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iscript.dll

2010-12-31 08:27:06 . 2004-07-15 23:18:24 5632 ----a-w- C:\Program Files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\DotNetInstaller.exe

2010-12-31 08:27:01 . 2010-12-31 08:27:01 180356 ----a-w- C:\Program Files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iGdi.dll

2010-12-31 08:26:59 . 2010-12-31 08:26:59 303236 ----a-w- C:\Program Files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\setup.dll

2010-12-28 15:23:38 . 2010-12-28 19:03:14 -------- d-----w- C:\Documents and Settings\Windows XP\Local Settings\Application Data\FVD Suite

2010-12-28 15:23:09 . 2010-12-28 15:23:09 -------- d-----w- C:\Documents and Settings\Windows XP\Application Data\FVDToolbar

2010-12-28 15:22:56 . 2010-12-28 15:23:04 -------- d-----w- C:\Program Files\FVD Suite

2010-12-24 11:22:45 . 2010-12-24 11:22:45 -------- d-----w- C:\Program Files\Microsoft CAPICOM 2.1.0.2

2010-12-24 11:18:28 . 2009-08-06 18:23:46 274288 ----a-w- C:\WINDOWS\system32\mucltui.dll

2010-12-24 11:05:26 . 2010-12-28 19:02:16 -------- d-----w- C:\Documents and Settings\Windows XP\Local Settings\Application Data\Ahead

2010-12-24 06:19:20 . 2008-04-15 12:00:00 26624 ----a-w- C:\Documents and Settings\LocalService\Application Data\Microsoft\UPnP Device Host\upnphost\udhisapi.dll

2010-12-24 06:18:16 . 2010-12-24 06:18:21 -------- d-----w- C:\Program Files\Windows Media Connect 2

2010-12-24 06:11:57 . 2010-12-24 06:15:23 -------- d-----w- C:\WINDOWS\system32\drivers\UMDF

2010-12-24 06:11:57 . 2010-12-24 06:11:57 -------- d-----w- C:\WINDOWS\system32\LogFiles

2010-12-24 06:05:24 . 2010-12-24 06:05:24 -------- d-----w- C:\Documents and Settings\Windows XP\Application Data\Ahead

2010-12-24 06:01:20 . 2010-12-24 06:01:21 -------- d-----w- C:\Program Files\Common Files\Ahead

2010-12-24 06:01:20 . 2010-12-24 06:01:20 -------- d-----w- C:\Program Files\Nero

2010-12-24 05:51:58 . 2008-04-14 21:33:22 43008 ----a-w- C:\WINDOWS\system32\ksxbar.ax

2010-12-24 05:51:03 . 2010-12-24 05:51:03 -------- d-----w- C:\Program Files\Hercules

2010-12-24 05:51:03 . 2004-08-05 09:35:24 19200 ----a-w- C:\WINDOWS\system32\drivers\emFilter.sys

2010-12-24 05:51:03 . 2004-05-04 21:10:32 20224 ----a-w- C:\WINDOWS\system32\drivers\emAudio.sys

2010-12-24 05:51:03 . 2004-03-23 15:18:44 100925 ----a-w- C:\WINDOWS\system32\drivers\emDevice.sys

2010-12-24 05:51:03 . 2004-03-23 15:18:38 24269 ----a-w- C:\WINDOWS\system32\drivers\emStream.sys

2010-12-24 05:51:03 . 2004-03-23 15:18:32 4493 ----a-w- C:\WINDOWS\system32\drivers\emScan.sys

2010-12-24 05:51:03 . 2004-03-23 15:13:08 32768 ----a-w- C:\WINDOWS\system32\emProp.ax

2010-12-24 05:42:16 . 2010-12-24 05:42:23 -------- d-----w- C:\Program Files\CCleaner

2010-12-24 05:29:35 . 2011-01-05 08:03:19 -------- d-----w- C:\Program Files\DC++

2010-12-24 05:27:27 . 2011-01-05 22:07:58 -------- d-----w- C:\Documents and Settings\Windows XP\Tracing

2010-12-24 05:20:25 . 2010-12-24 05:20:25 -------- d-----w- C:\Program Files\Microsoft

2010-12-24 05:19:57 . 2010-12-24 05:19:57 -------- d-----w- C:\Program Files\Windows Live SkyDrive

2010-12-24 05:19:11 . 2010-12-24 05:21:50 -------- d-----w- C:\Program Files\Windows Live

2010-12-24 05:14:53 . 2010-12-24 05:14:53 -------- d-----w- C:\Program Files\Common Files\Windows Live

2010-12-24 05:14:20 . 2010-12-24 11:12:14 -------- d-----w- C:\WINDOWS\Downloaded Program Files

2010-12-24 05:07:54 . 2010-12-24 05:07:54 -------- d-----w- C:\Documents and Settings\Windows XP\Local Settings\Application Data\Identities

2010-12-24 03:40:09 . 2010-12-24 03:40:09 68976 ----a-w- C:\WINDOWS\system32\drivers\GRD.sys

2010-12-24 03:35:34 . 2010-12-24 04:22:35 51400 ----a-w- C:\WINDOWS\system32\drivers\GDTdiIcpt.sys

2010-12-24 03:35:31 . 2010-12-24 04:22:31 38600 ----a-w- C:\WINDOWS\system32\drivers\HookCentre.sys

2010-12-24 03:35:09 . 2010-12-24 04:22:31 62024 ----a-w- C:\WINDOWS\system32\drivers\MiniIcpt.sys

2010-12-24 03:35:08 . 2010-12-24 04:22:30 33480 ----a-w- C:\WINDOWS\system32\drivers\GDBehave.sys

2010-12-24 03:34:24 . 2010-12-24 03:47:08 -------- d-----w- C:\Documents and Settings\All Users\Application Data\G DATA

2010-12-24 03:34:23 . 2010-12-24 03:34:26 -------- d-----w- C:\Program Files\Common Files\G Data

2010-12-24 03:34:23 . 2010-12-24 03:34:23 -------- d-----w- C:\Program Files\G Data

2010-12-24 03:09:49 . 2010-12-24 03:15:07 -------- d-----w- C:\WINDOWS\SxsCaPendDel

2010-12-24 02:59:14 . 2010-12-24 02:59:14 -------- d-----w- C:\Documents and Settings\Windows XP\Local Settings\Application Data\Downloaded Installations

2010-12-24 02:27:36 . 2010-12-24 02:27:36 -------- d-----w- C:\Documents and Settings\Windows XP\Local Settings\Application Data\PCHealth

2010-12-24 02:09:02 . 2010-12-24 02:09:02 -------- d-----w- C:\Documents and Settings\Windows XP\Application Data\SUPERAntiSpyware.com

2010-12-24 02:09:02 . 2010-12-24 02:09:02 -------- d-----w- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com

2010-12-24 02:08:35 . 2010-12-24 02:09:24 -------- d-----w- C:\Program Files\SUPERAntiSpyware

2010-12-24 01:20:34 . 2010-12-24 01:20:34 -------- d-----w- C:\Documents and Settings\Windows XP\Local Settings\Application Data\Mozilla

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

nota: ik zie avg firewall,ja ik rijg steeds een heel korte melding telkens van avg firewall ,maar avg heb ik verwijderd (met avg remover)en nu test ik eens g-data antivirus...waarom ik steeds dat korte vermelding krijd dat mijn avg firewall niet ingeschakeld is,is mij onduidelijk.

dank u bij voorbaat !!!!!!

Link naar reactie
Delen op andere sites

Verwijder dan eens de huidige versie van Combofix via Combofix /Uninstall. Download daarna opnieuw Combofix zoals eerder aangegeven en laat de boel scannen in "veilige modus". En dan uitkijken of er nu wel een volledig log verschijnt dat je hier kan posten ?

Link naar reactie
Delen op andere sites

ahaaaa in veilige modus,ging het heel wat beter,er werd tenminste nu vlug een soort van melding gegeven " logfile werd opgeslaan" :-)

hierbij de logfile...ben benieuwdddddd :-)

ComboFix 11-01-06.03 - Windows XP 07/01/2011 7:56:12.3.1 - x86 MINIMAL

Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.503.381 [GMT 1:00]

Gestart vanuit: C:\Documents and Settings\Windows XP\Mijn documenten\Downloads\ComboFix.exe

AV: G Data AntiVirus 2011 *Enabled/Updated* {71310606-6F3B-49F2-9A81-8315AA75FBB3}

FW: AVG Firewall *Disabled* {8decf618-9569-4340-b34a-d78d28969b66}

.

(((((((((((((((((((( Bestanden Gemaakt van 2010-12-07 to 2011-01-07 ))))))))))))))))))))))))))))))

.

2011-01-07 06:25:03 . 2011-01-07 06:25:03 -------- d--h--r- C:\Documents and Settings\Windows XP\Onlangs geopend

2011-01-05 07:35:48 . 2011-01-05 07:35:48 -------- d-----w- C:\Documents and Settings\Windows XP\Application Data\Malwarebytes

2011-01-05 07:35:40 . 2010-12-20 17:09:00 38224 ----a-w- C:\WINDOWS\system32\drivers\mbamswissarmy.sys

2011-01-05 07:35:38 . 2011-01-05 07:35:38 -------- d-----w- C:\Documents and Settings\All Users\Application Data\Malwarebytes

2011-01-05 07:35:34 . 2010-12-20 17:08:40 20952 ----a-w- C:\WINDOWS\system32\drivers\mbam.sys

2011-01-05 07:35:33 . 2011-01-05 07:35:43 -------- d-----w- C:\Program Files\Malwarebytes' Anti-Malware

2011-01-04 18:32:50 . 2011-01-04 18:32:50 388096 ----a-r- C:\Documents and Settings\Windows XP\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

2011-01-04 18:32:49 . 2011-01-04 18:32:49 -------- d-----w- C:\Program Files\Trend Micro

2011-01-03 19:24:24 . 2011-01-03 19:25:01 -------- d-----w- C:\Program Files\Windows Live Safety Center

2011-01-02 22:33:35 . 2011-01-02 22:33:35 -------- d-----w- C:\Documents and Settings\Windows XP\Application Data\.BitTornado

2011-01-02 22:33:06 . 2011-01-02 22:33:12 -------- d-----w- C:\Program Files\BitTornado

2011-01-02 06:42:34 . 2011-01-02 06:42:34 -------- d-----w- C:\Program Files\NCH Software

2011-01-02 06:37:37 . 2011-01-02 07:04:34 -------- d-----w- C:\Documents and Settings\All Users\Application Data\NCH Swift Sound

2011-01-02 06:37:21 . 2011-01-02 07:04:42 -------- d-----w- C:\Documents and Settings\Windows XP\Application Data\NCH Swift Sound

2010-12-31 08:40:32 . 2010-12-31 10:24:13 -------- d-----w- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy

2010-12-31 08:40:32 . 2010-12-31 08:40:55 -------- d-----w- C:\Program Files\Spybot - Search & Destroy

2010-12-31 08:27:40 . 2010-12-31 08:27:40 -------- d-----w- C:\Program Files\ToniArts

2010-12-31 08:27:07 . 2004-07-15 23:18:42 172032 ----a-w- C:\Program Files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iuser.dll

2010-12-31 08:27:07 . 2004-07-15 23:16:24 32768 ----a-w- C:\Program Files\Common Files\InstallShield\Professional\RunTime\Objectps.dll

2010-12-31 08:27:06 . 2004-07-15 23:20:44 733184 ----a-w- C:\Program Files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iKernel.dll

2010-12-31 08:27:06 . 2004-07-15 23:20:08 69715 ----a-w- C:\Program Files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\ctor.dll

2010-12-31 08:27:06 . 2004-07-15 23:19:18 266240 ----a-w- C:\Program Files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iscript.dll

2010-12-31 08:27:06 . 2004-07-15 23:18:24 5632 ----a-w- C:\Program Files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\DotNetInstaller.exe

2010-12-31 08:27:01 . 2010-12-31 08:27:01 180356 ----a-w- C:\Program Files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\iGdi.dll

2010-12-31 08:26:59 . 2010-12-31 08:26:59 303236 ----a-w- C:\Program Files\Common Files\InstallShield\Professional\RunTime\10\01\Intel32\setup.dll

2010-12-28 15:23:38 . 2010-12-28 19:03:14 -------- d-----w- C:\Documents and Settings\Windows XP\Local Settings\Application Data\FVD Suite

2010-12-28 15:23:09 . 2010-12-28 15:23:09 -------- d-----w- C:\Documents and Settings\Windows XP\Application Data\FVDToolbar

2010-12-28 15:22:56 . 2010-12-28 15:23:04 -------- d-----w- C:\Program Files\FVD Suite

2010-12-24 11:22:45 . 2010-12-24 11:22:45 -------- d-----w- C:\Program Files\Microsoft CAPICOM 2.1.0.2

2010-12-24 11:18:28 . 2009-08-06 18:23:46 274288 ----a-w- C:\WINDOWS\system32\mucltui.dll

2010-12-24 11:05:26 . 2010-12-28 19:02:16 -------- d-----w- C:\Documents and Settings\Windows XP\Local Settings\Application Data\Ahead

2010-12-24 06:19:20 . 2008-04-15 12:00:00 26624 ----a-w- C:\Documents and Settings\LocalService\Application Data\Microsoft\UPnP Device Host\upnphost\udhisapi.dll

2010-12-24 06:18:16 . 2010-12-24 06:18:21 -------- d-----w- C:\Program Files\Windows Media Connect 2

2010-12-24 06:11:57 . 2010-12-24 06:15:23 -------- d-----w- C:\WINDOWS\system32\drivers\UMDF

2010-12-24 06:11:57 . 2010-12-24 06:11:57 -------- d-----w- C:\WINDOWS\system32\LogFiles

2010-12-24 06:05:24 . 2010-12-24 06:05:24 -------- d-----w- C:\Documents and Settings\Windows XP\Application Data\Ahead

2010-12-24 06:01:20 . 2010-12-24 06:01:21 -------- d-----w- C:\Program Files\Common Files\Ahead

2010-12-24 06:01:20 . 2010-12-24 06:01:20 -------- d-----w- C:\Program Files\Nero

2010-12-24 05:51:58 . 2008-04-14 21:33:22 43008 ----a-w- C:\WINDOWS\system32\ksxbar.ax

2010-12-24 05:51:03 . 2010-12-24 05:51:03 -------- d-----w- C:\Program Files\Hercules

2010-12-24 05:51:03 . 2004-08-05 09:35:24 19200 ----a-w- C:\WINDOWS\system32\drivers\emFilter.sys

2010-12-24 05:51:03 . 2004-05-04 21:10:32 20224 ----a-w- C:\WINDOWS\system32\drivers\emAudio.sys

2010-12-24 05:51:03 . 2004-03-23 15:18:44 100925 ----a-w- C:\WINDOWS\system32\drivers\emDevice.sys

2010-12-24 05:51:03 . 2004-03-23 15:18:38 24269 ----a-w- C:\WINDOWS\system32\drivers\emStream.sys

2010-12-24 05:51:03 . 2004-03-23 15:18:32 4493 ----a-w- C:\WINDOWS\system32\drivers\emScan.sys

2010-12-24 05:51:03 . 2004-03-23 15:13:08 32768 ----a-w- C:\WINDOWS\system32\emProp.ax

2010-12-24 05:42:16 . 2010-12-24 05:42:23 -------- d-----w- C:\Program Files\CCleaner

2010-12-24 05:29:35 . 2011-01-07 06:25:06 -------- d-----w- C:\Program Files\DC++

2010-12-24 05:27:27 . 2011-01-07 06:25:07 -------- d-----w- C:\Documents and Settings\Windows XP\Tracing

2010-12-24 05:20:25 . 2010-12-24 05:20:25 -------- d-----w- C:\Program Files\Microsoft

2010-12-24 05:19:57 . 2010-12-24 05:19:57 -------- d-----w- C:\Program Files\Windows Live SkyDrive

2010-12-24 05:19:11 . 2010-12-24 05:21:50 -------- d-----w- C:\Program Files\Windows Live

2010-12-24 05:14:53 . 2010-12-24 05:14:53 -------- d-----w- C:\Program Files\Common Files\Windows Live

2010-12-24 05:14:20 . 2010-12-24 11:12:14 -------- d-----w- C:\WINDOWS\Downloaded Program Files

2010-12-24 05:07:54 . 2010-12-24 05:07:54 -------- d-----w- C:\Documents and Settings\Windows XP\Local Settings\Application Data\Identities

2010-12-24 03:40:09 . 2010-12-24 03:40:09 68976 ----a-w- C:\WINDOWS\system32\drivers\GRD.sys

2010-12-24 03:35:34 . 2010-12-24 04:22:35 51400 ----a-w- C:\WINDOWS\system32\drivers\GDTdiIcpt.sys

2010-12-24 03:35:31 . 2010-12-24 04:22:31 38600 ----a-w- C:\WINDOWS\system32\drivers\HookCentre.sys

2010-12-24 03:35:09 . 2010-12-24 04:22:31 62024 ----a-w- C:\WINDOWS\system32\drivers\MiniIcpt.sys

2010-12-24 03:35:08 . 2010-12-24 04:22:30 33480 ----a-w- C:\WINDOWS\system32\drivers\GDBehave.sys

2010-12-24 03:34:24 . 2010-12-24 03:47:08 -------- d-----w- C:\Documents and Settings\All Users\Application Data\G DATA

2010-12-24 03:34:23 . 2010-12-24 03:34:26 -------- d-----w- C:\Program Files\Common Files\G Data

2010-12-24 03:34:23 . 2010-12-24 03:34:23 -------- d-----w- C:\Program Files\G Data

2010-12-24 03:09:49 . 2010-12-24 03:15:07 -------- d-----w- C:\WINDOWS\SxsCaPendDel

2010-12-24 02:59:14 . 2010-12-24 02:59:14 -------- d-----w- C:\Documents and Settings\Windows XP\Local Settings\Application Data\Downloaded Installations

2010-12-24 02:27:36 . 2010-12-24 02:27:36 -------- d-----w- C:\Documents and Settings\Windows XP\Local Settings\Application Data\PCHealth

2010-12-24 02:09:02 . 2010-12-24 02:09:02 -------- d-----w- C:\Documents and Settings\Windows XP\Application Data\SUPERAntiSpyware.com

2010-12-24 02:09:02 . 2010-12-24 02:09:02 -------- d-----w- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com

2010-12-24 02:08:35 . 2010-12-24 02:09:24 -------- d-----w- C:\Program Files\SUPERAntiSpyware

2010-12-24 01:20:34 . 2010-12-24 01:20:34 -------- d-----w- C:\Documents and Settings\Windows XP\Local Settings\Application Data\Mozilla

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2010-11-18 18:15:46 . 2010-11-23 13:37:05 86016 ----a-w- C:\WINDOWS\system32\isign32.dll

2010-11-06 00:23:41 . 2008-04-15 12:00:00 916480 ----a-w- C:\WINDOWS\system32\wininet.dll

2010-11-06 00:23:39 . 2008-04-15 12:00:00 43520 ------w- C:\WINDOWS\system32\licmgr10.dll

2010-11-06 00:23:39 . 2008-04-15 12:00:00 1469440 ------w- C:\WINDOWS\system32\inetcpl.cpl

2010-11-03 12:27:25 . 2008-04-15 12:00:00 385024 ----a-w- C:\WINDOWS\system32\html.iec

2010-11-02 15:17:02 . 2008-04-15 12:00:00 40960 ----a-w- C:\WINDOWS\system32\drivers\ndproxy.sys

2010-10-28 13:09:50 . 2008-04-15 12:00:00 290048 ----a-w- C:\WINDOWS\system32\atmfd.dll

2010-10-26 14:00:02 . 2008-04-15 12:00:00 1853440 ----a-w- C:\WINDOWS\system32\win32k.sys

.

------- Sigcheck -------

[-] 2010-03-25 15:55:46 . 497BEF5C5FAD126CA16437C1682F64EA . 1571840 . . [5.1.2600.5512 (xpsp.080413-2111)] . . C:\WINDOWS\system32\sfcfiles.dll

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2010-12-14 20:02:18 2424560]

"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [2010-04-16 21:12:58 3872080]

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe" [2005-09-03 14:18:30 94208]

"FVDSuite"="C:\Program Files\FVD Suite\fvdbox.exe" [2010-02-18 20:48:36 43520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"IgfxTray"="C:\WINDOWS\system32\igfxtray.exe" [2007-01-13 08:47:04 131072]

"HotKeysCmds"="C:\WINDOWS\system32\hkcmd.exe" [2007-01-13 08:47:04 163840]

"Persistence"="C:\WINDOWS\system32\igfxpers.exe" [2007-01-13 08:46:36 135168]

"SoundMan"="SOUNDMAN.EXE" [2006-04-01 20:33:14 77824]

"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-03 03:08:38 35696]

"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-09-04 11:08:30 935288]

"G Data AntiVirus Tray Application"="C:\Program Files\G Data\AntiVirus\AVKTray\AVKTray.exe" [2010-09-10 10:04:23 997960]

"Agent"="C:\Program Files\CyberLink\PowerVCRII\Agent.exe" [2002-10-01 14:57:46 94208]

"Remote_Agent"="C:\Program Files\CyberLink\PowerVCRII\RemoteAgent.exe" [2004-07-26 15:52:54 40960]

"NeroFilterCheck"="C:\WINDOWS\system32\NeroCheck.exe" [2001-07-09 10:50:42 155648]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-15 12:00:00 15360]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]

"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "C:\Program Files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 17:13:36 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]

2009-09-03 22:21:41 548352 ----a-w- C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"%windir%\\system32\\sessmgr.exe"=

"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=

"C:\\Program Files\\G Data\\AntiVirus\\GUI\\GDSC.exe"=

"C:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=

"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=

"C:\\Program Files\\DC++\\DCPlusPlus.exe"=

"C:\\Program Files\\BitTornado\\btdownloadgui.exe"=

R0 GDBehave;GDBehave;C:\WINDOWS\system32\drivers\GDBehave.sys [24/12/2010 4:35:08 33480]

S1 GDMnIcpt;GDMnIcpt;C:\WINDOWS\system32\drivers\MiniIcpt.sys [24/12/2010 4:35:09 62024]

S1 GRD;G Data Rootkit Detector Driver;C:\WINDOWS\system32\drivers\GRD.sys [24/12/2010 4:40:09 68976]

S1 HookCentre;HookCentre;C:\WINDOWS\system32\drivers\HookCentre.sys [24/12/2010 4:35:31 38600]

S1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv.sys [17/02/2010 19:25:48 12872]

S1 SAS***IL;SAS***IL;C:\Program Files\SUPERAntiSpyware\SAS***IL.SYS [10/05/2010 19:41:30 67656]

S2 AVKProxy;G Data AntiVirus Proxy;C:\Program Files\Common Files\G Data\AVKProxy\AVKProxy.exe [17/05/2010 16:03:48 1098312]

S2 AVKService;G Data Scheduler;C:\Program Files\G Data\AntiVirus\AVK\AVKService.exe [4/05/2010 17:06:54 410696]

S2 AVKWCtl;G Data Bestandssysteembewaker;C:\Program Files\G Data\AntiVirus\AVK\AVKWCtl.exe [15/03/2010 11:24:00 1330792]

S2 GDTdiInterceptor;GDTdiInterceptor;C:\WINDOWS\system32\drivers\GDTdiIcpt.sys [24/12/2010 4:35:34 51400]

S3 GDScan;G Data Scanner;C:\Program Files\Common Files\G Data\GDScan\GDScan.exe [22/04/2010 13:59:36 340552]

.

.

------- Bijkomende Scan -------

.

uStart Page = hxxp://www.google.com/

IE: E&xporteren naar Microsoft Excel - C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000

IE: FVDToolbar Add Page - C:\Program Files\FVD Suite\addons\IE\FVDToolbar.dll/IECONTEXT.DLL.HTM

FF - ProfilePath - C:\Documents and Settings\Windows XP\Application Data\Mozilla\Firefox\Profiles\6ivl7ir4.default\

FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

FF - Ext: FVD Suite Toolbar: {fa46cb24-1d5b-4048-911a-2857a0944395} - C:\Program Files\FVD Suite\addons\Firefox

FF - Ext: WOT: {a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} - %profile%\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}

FF - Ext: 1-Click Videos Downloader: {F609665F-00F9-4656-867C-801ADA40844B} - %profile%\extensions\{F609665F-00F9-4656-867C-801ADA40844B}

FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}

FF - Ext: Flash Video Downloader - Youtube Downloader: artur.dubovoy@gmail.com - %profile%\extensions\artur.dubovoy@gmail.com

FF - Ext: BetterPrivacy: {d40f5e7b-d2cf-4856-b441-cc613eeffbe3} - %profile%\extensions\{d40f5e7b-d2cf-4856-b441-cc613eeffbe3}

.

- - - - ORPHANS VERWIJDERD - - - -

HKLM-Run-NWEReboot - (no file)

---------- Post toegevoegd om 08:17 ---------- Vorige post was om 08:16 ----------

artur.dubovoy@gmail.com ???? mijne emailadres allezins niet????

Link naar reactie
Delen op andere sites

antivirus heeft niks gevonden :-)

dus als superantispyware dus deze adware steeds vermeld,kan het geen kwaad?indien neen,is dus mijn probleem opgelost?

ik vind het wel vreemd dat mijn pc traag reageert of als ik een bladzijde afsluiten...dan zie je de bladzijde langzaam van boven naar onder tergend langzaam zakken(is dit normaal?),nu soit het is voor mij niet erg hoor er zijn ergere dingen in het leven...en beetje geduldheid kan gen kwaad:-)

ik zit nog met een ander probleem,namelijk met mijn webcam(tje)...het probleem doet zich voort met de poorten ofzoiets...in welk forum mag ik dit probleem plaatsen? nogmaals,er is nooit haast bij mij gevraagd,ik ben al blij dat je op deze forum gratis advies of hulp kunt krijgen...chapeau dus !!!!!! dank u bij voorbaat!!!!!!

Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.