Ga naar inhoud

Programma's sluiten automatisch.

athrun

Door athrun
in Archief Hardware algemeen

 Delen

Aanbevolen berichten

athrun Enthousiasteling

athrun

Geplaatst:
Geplaatst:

Hallo,

De afgelopen 2 dagen heb ik nu dat m'n programma's afsluiten zonder dat ik het zelf afsluiten en daarbij ook dat de .exe bestand verdwijnt, de .exe bestand is dan ook niet te vinden in de prullenbak. Hoe is dit mogelijk?? :S

Volgens mij virus scanner ben ik virus vrij.

Link naar reactie
Delen op andere sites
clarkie Grootmeester

clarkie

Geplaatst:
Geplaatst:

We zullen eerst eens nagaan of malware of virussen de oorzaak zijn van je probleem.

1. Download HijackThis.

Klik op HijackThis.msi en de download start automatisch na 5 seconden.

Bestand HijackThis.msi opslaan. Daarna kiezen voor "uitvoeren".

Als je geen netwerkverbinding meer hebt, kan je de download doen met een andere pc en het bestand met een usb stick overbrengen

Als je enkel nog in veilige modus kan werken, moet je de executable downloaden.

Sla deze op in een nieuwe map op de C schijf (bvb C:\hijackthis) en start hijackthis dan vanaf deze map.

De logjes kan je dan ook in die map terugvinden.

2. Klik op de snelkoppeling om HijackThis te starten (lees eerst de rode tekst!)

Klik ofwel op "Do a systemscan and save a logfile", ofwel eerst op "Scan" en dan op "Savelog".

Er opent een kladblokvenster, hou gelijktijdig de CTRL en A-toets ingedrukt, nu is alles geselecteerd. Hou gelijktijdig de CTRL en C-toets ingedrukt, nu is alles gekopieerd. Plak nu het HJT logje in je bericht door CTRL en V-toets.

Krijg je een melding ""For some reason your system denied writing to the Host file ....", klik dan gewoon door op de OK-toets.

Let op : Windows Vista & 7 gebruikers dienen HijackThis als “administrator” uit te voeren via rechtermuisknop “als administrator uitvoeren". Indien dit via de snelkoppeling niet lukt voer je HijackThis als administrator uit in de volgende map : C:\Program Files\Trend Micro\HiJackThis of C:\Program Files (x86)\Trend Micro\HiJackThis. (Bekijk hier de afbeelding ---> Bijlage 12634)

Wil je in woord en beeld weten hoe je een logje met HijackThis maakt en plaatst op het forum, klik dan HIER.

3. Na het plaatsen van je logje wordt dit door een expert (Kape of Kweezie Wabbit) nagekeken en begeleidt hij jou verder door het ganse proces.

Link naar reactie
Delen op andere sites
athrun Enthousiasteling

athrun

Geplaatst:
  • Auteur
Geplaatst: 

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:33:27, on 15-11-2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16450)
Boot mode: Normal


Running processes:
C:\Program Files (x86)\Windows Sidebar\sidebar.exe
C:\Program Files (x86)\BitTorrent\BitTorrent.exe
C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe
C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\AVG\AVG2013\avgui.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe
C:\Users\Marco\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Marco\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Marco\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Marco\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Marco\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Marco\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Marco\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Marco\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Marco\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Marco\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Marco\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Marco\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Marco\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe


R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = 
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = 
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [PowerDVD12DMREngine] "C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe"
O4 - HKLM\..\Run: [PowerDVD12Agent] "C:\Program Files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe"
O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY
O4 - HKCU\..\Run: [Google Update] "C:\Users\Marco\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [sidebar] C:\Program Files (x86)\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [bitTorrent] "C:\Program Files (x86)\BitTorrent\BitTorrent.exe"  /MINIMIZED
O4 - HKCU\..\Run: [Xvid] C:\Program Files (x86)\Xvid\CheckUpdate.exe
O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Logitech . Productregistratie.lnk = C:\Program Files\Logitech Gaming Software\EReg\eReg.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: AVG Firewall (avgfws) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgfws.exe
O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe
O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe
O23 - Service: CLHNServiceForPowerDVD12 - CyberLink Corp. - C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Monitor Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe
O23 - Service: CyberLink PowerDVD 12 Media Server Service - CyberLink - C:\Program Files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)


--
End of file - 8651 bytes

Dit is m'n logje

Ook heb ik Malwarebytes late scannen en die heeft een backdoor agent gevonden en verwijdert, is dat het probleem waarom mijn exe bestanden verwijdert worden na dat ze afgesloten werden?

Link naar reactie
Delen op andere sites
athrun Enthousiasteling

athrun

Geplaatst:
  • Auteur
Geplaatst: 

Malwarebytes Anti-Malware 1.65.1.1000
www.malwarebytes.org


Databaseversie: v2012.11.20.03


Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Marco :: MARCO-PC [administrator]


20-11-2012 18:39:46
mbam-log-2012-11-20 (18-39-46).txt


Scantype: Volledige scan (C:\|D:\|)
Ingeschakelde scanopties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
Uitgeschakelde scanopties: P2P
Objecten gescand: 433477
Verstreken tijd: 53 minuut/minuten, 57 seconde(n)


Geheugenprocessen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)


Geheugenmodulen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)


Registersleutels gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)


Registerwaarden gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)


Registerdata gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)


Mappen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)


Bestanden gedetecteerd: 2
D:\Supreme Commander 2\Trainer.exe (HackTool.GamesCheat) -> Geen actie ondernomen.
C:\Users\Marco\Documents\Windows\winsvcs.exe (Backdoor.Agent) -> Succesvol in quarantaine geplaatst en verwijderd.


(einde)

dit is die van Malwarebytes

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Download ComboFix van één van deze locaties:

Link 1

Link 2

* BELANGRIJK !!! Sla ComboFix.exe op je Bureaublad op

1. Schakel alle antivirus- en antispywareprogramma's uit, want anders kunnen ze misschien conflicteren met ComboFix. Hier is een handleiding over hoe je ze kan uitschakelen:

Klik hier

2. Het kan voorkomen dat de computer meerdere malen opnieuw gestart moet worden, dit is normaal.

3. Dubbelklik op "Combofix.exe" om de tool te starten.

4. Klik niet in het scherm van Combofix als deze actief is, hierdoor kan de 'tool' vastlopen.

Noot !!! Als er een error wordt getoond met de melding "Illegal operation attempted on a registery key that has been marked for deletion", herstart dan de computer.

5. Wanneer ComboFix klaar is, zal het het een logbestand voor je maken. Post de inhoud van dit logbestand (te vinden als C:\ComboFix.txt) in je volgende bericht.

Link naar reactie
Delen op andere sites
athrun Enthousiasteling

athrun

Geplaatst:
  • Auteur
Geplaatst: 

ComboFix 12-11-21.01 - Marco 21-11-2012  16:29:06.1.4 - x64
Microsoft Windows 7 Ultimate   6.1.7601.1.1252.31.1043.18.8175.6462 [GMT 1:00]
Gestart vanuit: c:\users\Marco\Desktop\ComboFix.exe
AV: AVG Internet Security 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
FW: AVG Internet Security 2013 *Disabled* {36AFA1E1-4CDC-7EF8-11EE-C77C3581ABA2}
SP: AVG Internet Security 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Nieuw herstelpunt werd aangemaakt
.
.
((((((((((((((((((((((((((((((((((   Andere Verwijderingen   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\INSTALL.LOG
c:\users\Marco\AppData\Roaming\Identities\{E7927442-8v23-436B-8409-951D004DCD3B}\winsvchost.exe
c:\users\Marco\Documents\Windows\winsvcs.exe
.
.
((((((((((((((((((((   Bestanden Gemaakt van 2012-10-21 to 2012-11-21  ))))))))))))))))))))))))))))))
.
.
2012-11-21 15:33 . 2012-11-21 15:33	--------	d-----w-	c:\users\MarcoV\AppData\Local\temp
2012-11-21 15:33 . 2012-11-21 15:33	--------	d-----w-	c:\users\Default\AppData\Local\temp
2012-11-20 17:18 . 2012-11-20 17:18	--------	d-----w-	c:\users\Marco\AppData\Roaming\Malwarebytes
2012-11-20 17:17 . 2012-11-20 17:17	--------	d-----w-	c:\program files (x86)\Malwarebytes' Anti-Malware
2012-11-20 17:17 . 2012-11-20 17:17	--------	d-----w-	c:\programdata\Malwarebytes
2012-11-20 17:17 . 2012-09-29 18:54	25928	----a-w-	c:\windows\system32\drivers\mbam.sys
2012-11-20 15:57 . 2012-11-20 15:57	--------	d-----w-	c:\users\Marco\AppData\Roaming\Theta
2012-11-20 15:21 . 2012-11-20 16:10	--------	d-sh--w-	c:\users\Marco\Drivers
2012-11-19 20:48 . 2012-11-20 16:19	--------	d-----w-	c:\users\Marco\AppData\Local\Ubisoft Game Launcher
2012-11-16 23:10 . 2012-07-26 07:49	2560	----a-w-	c:\windows\system32\drivers\nl-NL\wdf01000.sys.mui
2012-11-16 23:10 . 2012-07-26 04:55	785512	----a-w-	c:\windows\system32\drivers\Wdf01000.sys
2012-11-16 23:10 . 2012-07-26 04:55	54376	----a-w-	c:\windows\system32\drivers\WdfLdr.sys
2012-11-16 23:10 . 2012-07-26 02:36	9728	----a-w-	c:\windows\system32\Wdfres.dll
2012-11-16 23:06 . 2012-07-26 02:26	87040	----a-w-	c:\windows\system32\drivers\WUDFPf.sys
2012-11-16 23:06 . 2012-07-26 02:26	198656	----a-w-	c:\windows\system32\drivers\WUDFRd.sys
2012-11-16 23:06 . 2012-07-26 03:08	84992	----a-w-	c:\windows\system32\WUDFSvc.dll
2012-11-16 23:06 . 2012-07-26 03:08	194048	----a-w-	c:\windows\system32\WUDFPlatform.dll
2012-11-16 23:06 . 2012-07-26 03:08	229888	----a-w-	c:\windows\system32\WUDFHost.exe
2012-11-16 23:06 . 2012-07-26 03:08	744448	----a-w-	c:\windows\system32\WUDFx.dll
2012-11-16 23:06 . 2012-07-26 03:08	45056	----a-w-	c:\windows\system32\WUDFCoinstaller.dll
2012-11-15 10:32 . 2012-11-15 10:32	388096	----a-r-	c:\users\Marco\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-11-15 10:32 . 2012-11-15 10:32	--------	d-----w-	c:\program files (x86)\Trend Micro
2012-11-13 12:44 . 2012-11-13 12:44	--------	d-----w-	c:\users\Marco\AppData\Roaming\AVG2013
2012-11-13 12:44 . 2012-11-13 12:44	--------	d-----w-	c:\users\Marco\AppData\Roaming\TuneUp Software
2012-11-13 12:43 . 2012-11-13 12:43	--------	d-----w-	C:\$AVG
2012-11-13 12:39 . 2012-11-13 12:39	--------	d-----w-	c:\program files (x86)\AVG
2012-11-13 12:35 . 2012-11-13 12:44	--------	d-----w-	c:\programdata\AVG2013
2012-11-13 12:26 . 2012-10-12 07:19	9291768	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{F564004B-4F84-4A70-A79A-E941B4AB2872}\mpengine.dll
2012-11-13 12:24 . 2012-11-20 19:04	--------	d-----w-	c:\programdata\MFAData
2012-11-13 12:24 . 2012-11-13 12:46	--------	d-----w-	c:\users\Marco\AppData\Local\Avg2013
2012-11-13 12:24 . 2012-11-13 12:24	--------	d--h--w-	c:\programdata\Common Files
2012-11-13 12:24 . 2012-11-13 12:24	--------	d-----w-	c:\users\Marco\AppData\Local\MFAData
2012-11-13 10:25 . 2012-11-13 10:25	--------	d-----w-	c:\users\Marco\AppData\Roaming\Stardock
2012-11-13 10:24 . 2012-11-13 10:24	--------	dc-h--w-	c:\programdata\{1EB63B4B-5639-4477-8E24-05C31B5F8019}
2012-11-13 10:24 . 2012-11-13 10:24	--------	d-----w-	c:\program files (x86)\Stardock
2012-11-13 10:23 . 2012-11-13 10:23	--------	d-----w-	c:\users\Marco\AppData\Local\Stardock
2012-11-10 23:24 . 2012-11-13 10:24	--------	d-----w-	c:\programdata\Stardock
2012-11-10 23:24 . 2012-11-10 23:24	--------	dc-h--w-	c:\programdata\{0F58F7E9-C7F6-445C-A83F-2BD3F1AD3023}
2012-11-10 23:20 . 2008-07-10 10:00	3851784	----a-w-	c:\windows\SysWow64\D3DX9_39.dll
2012-11-10 23:19 . 2006-03-31 11:41	3927248	----a-w-	c:\windows\system32\d3dx9_30.dll
2012-11-10 23:19 . 2006-02-03 07:43	3830992	----a-w-	c:\windows\system32\d3dx9_29.dll
2012-11-10 23:19 . 2006-02-03 07:42	355536	----a-w-	c:\windows\system32\xactengine2_0.dll
2012-11-10 23:19 . 2006-02-03 07:41	16592	----a-w-	c:\windows\system32\x3daudio1_0.dll
2012-11-10 23:19 . 2005-12-05 17:09	3815120	----a-w-	c:\windows\system32\d3dx9_28.dll
2012-11-10 23:19 . 2005-07-22 18:59	3807440	----a-w-	c:\windows\system32\d3dx9_27.dll
2012-11-10 23:19 . 2005-05-26 14:34	3767504	----a-w-	c:\windows\system32\d3dx9_26.dll
2012-11-10 23:19 . 2005-03-18 16:19	3823312	----a-w-	c:\windows\system32\d3dx9_25.dll
2012-11-10 23:19 . 2005-02-05 18:45	3544272	----a-w-	c:\windows\system32\d3dx9_24.dll
2012-11-10 23:18 . 2012-11-10 23:18	--------	d-----w-	c:\users\Marco\AppData\Local\PackageAware
2012-11-09 20:20 . 2009-12-20 18:40	--------	d-----w-	C:\moo
2012-11-09 20:19 . 2012-11-09 20:19	--------	d-----w-	C:\MOO2
2012-11-06 19:50 . 2012-11-06 19:50	--------	d-----w-	c:\program files\Speccy
2012-11-03 22:39 . 2012-11-04 09:22	--------	d-----w-	c:\program files\TeamSpeak 3 Client
2012-11-03 15:39 . 2012-11-03 15:39	--------	d-----w-	c:\users\Marco\AppData\Local\DOSBox
2012-11-03 15:39 . 2012-11-09 20:48	--------	d-----w-	c:\program files (x86)\DOSBox-0.74
2012-11-03 12:36 . 2012-11-08 18:58	--------	d-----w-	c:\program files (x86)\Common Files\Blizzard Entertainment
2012-11-02 17:35 . 2012-11-02 17:35	--------	d-----w-	c:\users\Marco\AppData\Local\Logitech
2012-11-02 17:35 . 2012-11-02 17:35	--------	d-----w-	c:\users\Marco\AppData\Roaming\Leadertech
2012-11-02 17:35 . 2012-11-02 17:35	--------	d-----w-	c:\programdata\LogiShrd
2012-11-02 17:35 . 2012-11-02 17:35	--------	d-----w-	c:\program files\Logitech Gaming Software
2012-11-02 17:33 . 2012-11-02 17:33	--------	d-----w-	c:\users\Marco\AppData\Roaming\Logitech
2012-11-02 17:33 . 2012-11-02 17:33	--------	d-----w-	c:\users\Marco\AppData\Roaming\Logishrd
2012-11-01 18:32 . 2012-11-01 18:32	--------	d-----w-	c:\users\Marco\AppData\Local\Focus Home Interactive
2012-11-01 15:35 . 2012-11-01 15:35	40960	----a-r-	c:\users\Marco\AppData\Roaming\Microsoft\Installer\{797D1DB3-BA0F-4A2D-9F99-5D2C09D0A7FE}\_7D65E701E2A0_4D18_86F7_E1CB6AA922DD.exe
2012-11-01 15:34 . 2012-11-01 15:34	598016	----a-w-	c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\ikernel.exe
2012-11-01 15:34 . 2012-11-01 15:34	53248	----a-w-	c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\msihook.dll
2012-11-01 15:34 . 2012-11-01 15:34	32768	----a-w-	c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\objectps.dll
2012-11-01 15:34 . 2012-11-01 15:34	221184	----a-w-	c:\program files (x86)\Common Files\InstallShield\IScript\iscript.dll
2012-11-01 15:34 . 2012-11-01 15:34	217088	----a-w-	c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\iuser.dll
2012-11-01 15:34 . 2012-11-01 15:34	126976	----a-w-	c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\knlwrap.exe
2012-11-01 15:34 . 2012-11-01 15:34	114688	----a-w-	c:\program files (x86)\Common Files\InstallShield\engine\6\Intel 32\scpthdlr.dll
2012-10-31 15:40 . 2012-10-31 15:40	--------	d-----w-	c:\users\Marco\AppData\Roaming\Carbon
2012-10-29 15:59 . 2012-10-29 16:41	--------	d-----w-	c:\programdata\Automation
2012-10-24 14:21 . 2012-10-24 14:21	--------	d-----w-	c:\programdata\ATI
2012-10-24 14:21 . 2012-10-24 14:21	--------	d-----w-	c:\program files (x86)\AMD AVT
2012-10-24 14:21 . 2012-10-24 14:21	--------	d-----w-	c:\program files (x86)\AMD APP
2012-10-23 17:27 . 2012-10-23 17:27	--------	d-----w-	c:\users\Marco\jagexcache
2012-10-23 17:27 . 2012-10-23 17:27	--------	d-----w-	c:\program files (x86)\Common Files\Java
2012-10-23 17:27 . 2012-10-23 17:27	821736	----a-w-	c:\windows\SysWow64\npDeployJava1.dll
2012-10-23 17:27 . 2012-10-23 17:27	746984	----a-w-	c:\windows\SysWow64\deployJava1.dll
2012-10-23 17:27 . 2012-10-23 17:27	95208	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-10-22 19:57 . 2012-10-22 19:57	--------	d-----w-	c:\program files (x86)\MSXML 4.0
.
.
.
(((((((((((((((((((((((((((((((((((((((   Find3M Rapport   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-22 12:02 . 2012-10-22 12:02	154464	----a-w-	c:\windows\system32\drivers\avgidsdrivera.sys
2012-10-18 18:28 . 2012-10-18 18:28	414368	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-10-15 02:48 . 2012-10-15 02:48	63328	----a-w-	c:\windows\system32\drivers\avgidsha.sys
2012-10-09 06:35 . 2012-10-09 06:35	411368	----a-w-	c:\windows\SysWow64\deploytk.dll
2012-10-05 02:32 . 2012-10-05 02:32	111456	----a-w-	c:\windows\system32\drivers\avgmfx64.sys
2012-10-02 02:30 . 2012-10-02 02:30	185696	----a-w-	c:\windows\system32\drivers\avgldx64.sys
2012-09-28 13:37 . 2012-09-28 13:37	221696	----a-w-	c:\windows\system32\clinfo.exe
2012-09-28 13:36 . 2012-09-28 13:36	75776	----a-w-	c:\windows\system32\OpenVideo64.dll
2012-09-28 13:36 . 2012-09-28 13:36	65536	----a-w-	c:\windows\SysWow64\OpenVideo.dll
2012-09-28 13:36 . 2012-09-28 13:36	63488	----a-w-	c:\windows\system32\OVDecode64.dll
2012-09-28 13:36 . 2012-09-28 13:36	56320	----a-w-	c:\windows\SysWow64\OVDecode.dll
2012-09-28 13:36 . 2012-09-28 13:36	32635904	----a-w-	c:\windows\system32\amdocl64.dll
2012-09-28 13:32 . 2012-09-28 13:32	27341824	----a-w-	c:\windows\SysWow64\amdocl.dll
2012-09-28 02:23 . 2012-07-28 04:09	5557928	----a-w-	c:\windows\SysWow64\atiumdag.dll
2012-09-28 02:21 . 2012-09-28 02:21	10697216	----a-w-	c:\windows\system32\drivers\atikmdag.sys
2012-09-28 02:05 . 2012-09-28 02:05	70144	----a-w-	c:\windows\system32\coinst_9.002.dll
2012-09-28 02:03 . 2012-09-28 02:03	163840	----a-w-	c:\windows\system32\atiapfxx.exe
2012-09-28 02:02 . 2012-09-28 02:02	51200	----a-w-	c:\windows\system32\aticalrt64.dll
2012-09-28 02:02 . 2012-09-28 02:02	46080	----a-w-	c:\windows\SysWow64\aticalrt.dll
2012-09-28 02:02 . 2012-09-28 02:02	44544	----a-w-	c:\windows\system32\aticalcl64.dll
2012-09-28 02:02 . 2012-09-28 02:02	44032	----a-w-	c:\windows\SysWow64\aticalcl.dll
2012-09-28 02:02 . 2012-09-28 02:02	16082432	----a-w-	c:\windows\system32\aticaldd64.dll
2012-09-28 01:59 . 2012-09-28 01:59	23825920	----a-w-	c:\windows\system32\atio6axx.dll
2012-09-28 01:57 . 2012-09-28 01:57	13703168	----a-w-	c:\windows\SysWow64\aticaldd.dll
2012-09-28 01:43 . 2012-07-28 02:15	935424	----a-w-	c:\windows\SysWow64\aticfx32.dll
2012-09-28 01:41 . 2012-07-28 02:13	1120768	----a-w-	c:\windows\system32\aticfx64.dll
2012-09-28 01:41 . 2012-09-28 01:41	19624960	----a-w-	c:\windows\SysWow64\atioglxx.dll
2012-09-28 01:39 . 2012-09-28 01:39	6536192	----a-w-	c:\windows\SysWow64\atidxx32.dll
2012-09-28 01:39 . 2012-09-28 01:39	442368	----a-w-	c:\windows\system32\atidemgy.dll
2012-09-28 01:39 . 2012-09-28 01:39	538112	----a-w-	c:\windows\system32\atieclxx.exe
2012-09-28 01:38 . 2012-09-28 01:38	239616	----a-w-	c:\windows\system32\atiesrxx.exe
2012-09-28 01:36 . 2012-09-28 01:36	120320	----a-w-	c:\windows\system32\atitmm64.dll
2012-09-28 01:36 . 2012-09-28 01:36	21504	----a-w-	c:\windows\system32\atimuixx.dll
2012-09-28 01:36 . 2012-09-28 01:36	59392	----a-w-	c:\windows\system32\atiedu64.dll
2012-09-28 01:36 . 2012-09-28 01:36	43520	----a-w-	c:\windows\SysWow64\ati2edxx.dll
2012-09-28 01:31 . 2012-09-28 01:31	3127296	----a-w-	c:\windows\system32\atiumd6a.dll
2012-09-28 01:25 . 2012-09-28 01:25	6704640	----a-w-	c:\windows\system32\atiumd64.dll
2012-09-28 01:22 . 2012-07-28 01:51	7167488	----a-w-	c:\windows\system32\atidxx64.dll
2012-09-28 01:22 . 2012-07-28 01:32	2691584	----a-w-	c:\windows\SysWow64\atiumdva.dll
2012-09-28 01:13 . 2012-09-28 01:13	595456	----a-w-	c:\windows\system32\atiadlxx.dll
2012-09-28 01:13 . 2012-09-28 01:13	405504	----a-w-	c:\windows\SysWow64\atiadlxy.dll
2012-09-28 01:13 . 2012-09-28 01:13	17920	----a-w-	c:\windows\system32\atig6pxx.dll
2012-09-28 01:13 . 2012-09-28 01:13	14848	----a-w-	c:\windows\SysWow64\atiglpxx.dll
2012-09-28 01:13 . 2012-09-28 01:13	14848	----a-w-	c:\windows\system32\atiglpxx.dll
2012-09-28 01:13 . 2012-09-28 01:13	41984	----a-w-	c:\windows\system32\atig6txx.dll
2012-09-28 01:13 . 2012-09-28 01:13	33280	----a-w-	c:\windows\SysWow64\atigktxx.dll
2012-09-28 01:12 . 2012-09-28 01:12	56320	----a-w-	c:\windows\system32\atimpc64.dll
2012-09-28 01:12 . 2012-09-28 01:12	56320	----a-w-	c:\windows\system32\amdpcom64.dll
2012-09-28 01:12 . 2012-09-28 01:12	460288	----a-w-	c:\windows\system32\drivers\atikmpag.sys
2012-09-28 01:12 . 2012-09-28 01:12	56832	----a-w-	c:\windows\SysWow64\atimpc32.dll
2012-09-28 01:12 . 2012-09-28 01:12	56832	----a-w-	c:\windows\SysWow64\amdpcom32.dll
2012-09-28 01:11 . 2012-07-28 01:13	129536	----a-w-	c:\windows\system32\atiuxp64.dll
2012-09-28 01:11 . 2012-09-28 01:11	109568	----a-w-	c:\windows\SysWow64\atiuxpag.dll
2012-09-28 01:11 . 2012-09-28 01:11	103424	----a-w-	c:\windows\system32\atiu9p64.dll
2012-09-28 01:10 . 2012-07-28 01:13	82944	----a-w-	c:\windows\SysWow64\atiu9pag.dll
2012-09-28 01:09 . 2012-09-28 01:09	53248	----a-w-	c:\windows\system32\drivers\ati2erec.dll
2012-09-21 02:46 . 2012-09-21 02:46	200032	----a-w-	c:\windows\system32\drivers\avgtdia.sys
2012-09-21 02:46 . 2012-09-21 02:46	225120	----a-w-	c:\windows\system32\drivers\avgloga.sys
2012-09-14 19:19 . 2012-10-10 13:30	2048	----a-w-	c:\windows\system32\tzres.dll
2012-09-14 18:45 . 2010-11-21 03:24	14848	----a-w-	c:\windows\system32\slwga.dll
2012-09-14 18:45 . 2010-11-21 03:24	419840	----a-w-	c:\windows\system32\systemcpl.dll
2012-09-14 18:45 . 2010-11-21 03:23	13824	----a-w-	c:\windows\SysWow64\slwga.dll
2012-09-14 18:45 . 2010-11-21 03:24	833024	----a-w-	c:\windows\SysWow64\user32.dll
2012-09-14 18:45 . 2010-11-21 03:24	1008640	----a-w-	c:\windows\system32\user32.dll
2012-09-14 18:28 . 2012-10-10 13:30	2048	----a-w-	c:\windows\SysWow64\tzres.dll
2012-09-14 02:05 . 2012-09-14 02:05	40800	----a-w-	c:\windows\system32\drivers\avgrkx64.sys
2012-09-04 09:39 . 2012-09-04 09:39	50296	----a-w-	c:\windows\system32\drivers\avgfwd6a.sys
2012-09-02 10:58 . 2012-09-02 10:45	283200	----a-w-	c:\windows\system32\drivers\dtsoftbus01.sys
2012-08-31 18:19 . 2012-10-10 13:30	1659760	----a-w-	c:\windows\system32\drivers\ntfs.sys
2012-08-30 20:24 . 2012-08-30 20:24	91648	----a-w-	c:\windows\system32\SetIEInstalledDate.exe
2012-08-30 20:24 . 2012-08-30 20:24	89088	----a-w-	c:\windows\system32\RegisterIEPKEYs.exe
2012-08-30 20:24 . 2012-08-30 20:24	89088	----a-w-	c:\windows\system32\ie4uinit.exe
2012-08-30 20:24 . 2012-08-30 20:24	86528	----a-w-	c:\windows\SysWow64\iesysprep.dll
2012-08-30 20:24 . 2012-08-30 20:24	85504	----a-w-	c:\windows\system32\iesetup.dll
2012-08-30 20:24 . 2012-08-30 20:24	82432	----a-w-	c:\windows\system32\icardie.dll
2012-08-30 20:24 . 2012-08-30 20:24	76800	----a-w-	c:\windows\SysWow64\SetIEInstalledDate.exe
2012-08-30 20:24 . 2012-08-30 20:24	76800	----a-w-	c:\windows\system32\tdc.ocx
2012-08-30 20:24 . 2012-08-30 20:24	74752	----a-w-	c:\windows\SysWow64\RegisterIEPKEYs.exe
2012-08-30 20:24 . 2012-08-30 20:24	74752	----a-w-	c:\windows\SysWow64\iesetup.dll
2012-08-30 20:24 . 2012-08-30 20:24	65024	----a-w-	c:\windows\system32\pngfilt.dll
2012-08-30 20:24 . 2012-08-30 20:24	63488	----a-w-	c:\windows\SysWow64\tdc.ocx
2012-08-30 20:24 . 2012-08-30 20:24	55296	----a-w-	c:\windows\system32\msfeedsbs.dll
2012-08-30 20:24 . 2012-08-30 20:24	534528	----a-w-	c:\windows\system32\ieapfltr.dll
2012-08-30 20:24 . 2012-08-30 20:24	49664	----a-w-	c:\windows\system32\imgutil.dll
2012-08-30 20:24 . 2012-08-30 20:24	48640	----a-w-	c:\windows\SysWow64\mshtmler.dll
2012-08-30 20:24 . 2012-08-30 20:24	48640	----a-w-	c:\windows\system32\mshtmler.dll
2012-08-30 20:24 . 2012-08-30 20:24	452608	----a-w-	c:\windows\system32\dxtmsft.dll
2012-08-30 20:24 . 2012-08-30 20:24	448512	----a-w-	c:\windows\system32\html.iec
2012-08-30 20:24 . 2012-08-30 20:24	403248	----a-w-	c:\windows\system32\iedkcs32.dll
2012-08-30 20:24 . 2012-08-30 20:24	39936	----a-w-	c:\windows\system32\iernonce.dll
2012-08-30 20:24 . 2012-08-30 20:24	3695416	----a-w-	c:\windows\system32\ieapfltr.dat
2012-08-30 20:24 . 2012-08-30 20:24	367104	----a-w-	c:\windows\SysWow64\html.iec
2012-08-30 20:24 . 2012-08-30 20:24	35840	----a-w-	c:\windows\SysWow64\imgutil.dll
2012-08-30 20:24 . 2012-08-30 20:24	30720	----a-w-	c:\windows\system32\licmgr10.dll
2012-08-30 20:24 . 2012-08-30 20:24	282112	----a-w-	c:\windows\system32\dxtrans.dll
2012-08-30 20:24 . 2012-08-30 20:24	267776	----a-w-	c:\windows\system32\ieaksie.dll
2012-08-30 20:24 . 2012-08-30 20:24	249344	----a-w-	c:\windows\system32\webcheck.dll
2012-08-30 20:24 . 2012-08-30 20:24	23552	----a-w-	c:\windows\SysWow64\licmgr10.dll
2012-08-30 20:24 . 2012-08-30 20:24	222208	----a-w-	c:\windows\system32\msls31.dll
2012-08-30 20:24 . 2012-08-30 20:24	197120	----a-w-	c:\windows\system32\msrating.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[7] 2010-11-21 . FE70103391A64039A921DBFFF9C7AB1B . 1008128 . . [6.1.7601.17514] .. c:\windows\winsxs\amd64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_2b5e71b083fc0973\user32.dll
[-] 2012-09-14 . 2C353B6CE0C8D03225CAA2AF33B68D79 . 1008640 . . [6.1.7601.17514] .. c:\windows\system32\user32.dll
.
[-] 2012-09-14 . 861C4346F9281DC0380DE72C8D55D6BE . 833024 . . [6.1.7601.17514] .. c:\windows\SysWOW64\user32.dll
[7] 2010-11-21 . 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 . 833024 . . [6.1.7601.17514] .. c:\windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_35b31c02b85ccb6e\user32.dll
.
(((((((((((((((((((((((((((((((((((((   Reg Opstartpunten   )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-08-28 3671904]
"Sidebar"="c:\program files (x86)\Windows Sidebar\sidebar.exe" [2010-11-21 1174016]
"BitTorrent"="c:\program files (x86)\BitTorrent\BitTorrent.exe" [2012-09-15 1397144]
"Xvid"="c:\program files (x86)\Xvid\CheckUpdate.exe" [2011-01-17 8192]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"PowerDVD12DMREngine"="c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMR\PowerDVD12DMREngine.exe" [2012-07-25 505872]
"PowerDVD12Agent"="c:\program files (x86)\CyberLink\PowerDVD12\PowerDVD12Agent.exe" [2012-07-25 374560]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-09-28 642728]
"AVG_UI"="c:\program files (x86)\AVG\AVG2013\avgui.exe" [2012-11-06 3143800]
.
c:\users\Marco\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Logitech . Productregistratie.lnk - c:\program files\Logitech Gaming Software\EReg\eReg.exe [2012-11-2 517384]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 avgfws;AVG Firewall;c:\program files (x86)\AVG\AVG2013\avgfws.exe [2012-11-01 1340976]
R2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\AVG2013\avgidsagent.exe [2012-11-06 5814392]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys [2011-05-13 36328]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-21 71168]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-21 20992]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys [2011-05-13 157672]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys [2011-05-13 16872]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys [2011-05-13 177640]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys [2011-05-13 146920]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [2010-11-21 88960]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys [2010-11-21 34816]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-21 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-21 31232]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [2010-11-21 117248]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2012-08-30 1255736]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys [2012-10-15 63328]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys [2012-09-21 225120]
S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys [2012-10-05 111456]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys [2012-09-14 40800]
S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6a.sys [2012-09-04 50296]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys [2012-10-22 154464]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys [2012-10-02 185696]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys [2012-09-21 200032]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-09-02 283200]
S2 {73526619-C24F-470B-9BED-53D455FBB5C6};Power Control [2012/09/11 18:43];c:\program files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl [2012-08-10 08:04 147704]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-09-28 239616]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-09-28 361984]
S2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-04-09 57472]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\AVG2013\avgwdsvc.exe [2012-10-22 196664]
S2 CLHNServiceForPowerDVD12;CLHNServiceForPowerDVD12;c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\CLHNServiceForPowerDVD12.exe [2012-07-25 90640]
S2 CyberLink PowerDVD 12 Media Server Monitor Service;CyberLink PowerDVD 12 Media Server Monitor Service;c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSMonitorServicePDVD12.exe [2012-07-25 78352]
S2 CyberLink PowerDVD 12 Media Server Service;CyberLink PowerDVD 12 Media Server Service;c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMS\CLMSServerPDVD12.exe [2012-07-25 295440]
S2 ntk_PowerDVD12;ntk_PowerDVD12;c:\program files (x86)\CyberLink\PowerDVD12\Kernel\DMP\CLHNServer\ntk_PowerDVD12_64.sys [2012-06-20 83704]
S2 regi;regi;c:\windows\system32\drivers\regi.sys [2010-11-15 15672]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys [2010-02-18 46136]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2012-05-14 96896]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys [2009-11-24 22408]
S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys [2009-11-24 16008]
S3 RTL8167;Realtek 8167 NT-stuurprogramma;c:\windows\system32\DRIVERS\Rt64win7.sys [2009-06-10 187392]
.
.
Inhoud van de 'Gedeelde Taken' map
.
2012-11-19 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3414838339-704017493-489103590-1000Core.job
- c:\users\Marco\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-29 15:34]
.
2012-11-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3414838339-704017493-489103590-1000UA.job
- c:\users\Marco\AppData\Local\Google\Update\GoogleUpdate.exe [2012-08-29 15:34]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2012-07-24 6900024]
.
------- Bijkomende Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 213.46.228.196 62.179.104.196
.
- - - - ORPHANS VERWIJDERD - - - -
.
Wow6432Node-HKCU-Run-winsvchost - c:\users\Marco\AppData\Roaming\Identities\{E7927442-8v23-436B-8409-951D004DCD3B}\winsvchost.exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\{73526619-C24F-470B-9BED-53D455FBB5C6}]
"ImagePath"="\??\c:\program files (x86)\CyberLink\PowerDVD12\Common\NavFilter\000.fcl"
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Voltooingstijd: 2012-11-21  16:35:19
ComboFix-quarantined-files.txt  2012-11-21 15:35
.
Pre-Run: 20.356.931.584 bytes beschikbaar
Post-Run: 20.254.978.048 bytes beschikbaar
.
- - End Of File - - 2428AB2B5699B5878121F7D388298BE9

Zo goed? wat heeft ie gedaan als ik vragen mag

Link naar reactie
Delen op andere sites
 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.