Ga naar inhoud

[OPGELOST] problemen

filkill
 Delen

Aanbevolen berichten

kape Grootmeester

kape

Geplaatst:
Geplaatst:

Open een kladblokbestand.

Kopieer en plak daarin de onderstaande vetgedrukte tekst.

File::

C:\WINDOWS\system32\atmtd.dll._

C:\WINDOWS\system32\atmtd.dll

C:\WINDOWS\system32\guvyaxdw.dll

C:\WINDOWS\system32\jrbhugix.dll

C:\WINDOWS\system32\wdqrnhjc.dll

C:\WINDOWS\system32\kyeflojp.dll

C:\WINDOWS\system32\9425.bat

Folder::

C:\WINDOWS\system32\yrt

C:\WINDOWS\system32\rov

C:\WINDOWS\system32\pRI

C:\WINDOWS\system32\modtrux07

C:\WINDOWS\system32\cTMO

C:\temp\syschk3

Sla dit bestand op je bureaublad op als CFScript.txt.

Sleep CFScript.txt in ComboFix.exe

Dit zal ComboFix doen herstarten. Start opnieuw op als dat gevraagd wordt.

Post na herstart de inhoud van de Combofix.txt in je volgende bericht en laat eens weten hoe het nu met de problemen staat ?

Link naar reactie
Delen op andere sites
  • Reacties 58
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Populaire dagen

Beste reacties in dit topic

Populaire dagen

Geplaatste afbeeldingen

filkill Vergevorderde

filkill

Geplaatst:
  • Auteur
Geplaatst:

de combofix log:

ComboFix 08-06-20.4 - Hilde 2008-06-28 13:11:27.10 - NTFSx86

Microsoft Windows XP Professional 5.1.2600.2.1252.31.1043.18.498 [GMT 2:00]

Gestart vanuit: C:\Documents and Settings\Hilde\Bureaublad\ComboFix.exe

Command switches used :: C:\Documents and Settings\Hilde\Bureaublad\CFScript.txt

* Nieuw herstelpunt werd aangemaakt

FILE ::

C:\WINDOWS\system32\9425.bat

C:\WINDOWS\system32\atmtd.dll

C:\WINDOWS\system32\atmtd.dll._

C:\WINDOWS\system32\guvyaxdw.dll

C:\WINDOWS\system32\jrbhugix.dll

C:\WINDOWS\system32\kyeflojp.dll

C:\WINDOWS\system32\wdqrnhjc.dll

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

C:\Documents and Settings\Hilde\Local Settings\Application Data\vnofufme.dat

C:\Documents and Settings\Hilde\Local Settings\Application Data\vnofufme.exe

C:\Documents and Settings\Hilde\Local Settings\Application Data\vnofufme_nav.dat

C:\Documents and Settings\Hilde\Local Settings\Application Data\vnofufme_navps.dat

C:\Documents and Settings\Hilde\Menu Start\Programma's\Opstarten\DW_Start.lnk

C:\temp\syschk3

C:\temp\syschk3\tdirp5.log

C:\WINDOWS\ShellIcon32.dll

C:\WINDOWS\system32\9425.bat

C:\WINDOWS\system32\atmtd.dll

C:\WINDOWS\system32\atmtd.dll._

C:\WINDOWS\system32\cTMO

C:\WINDOWS\system32\cTMO\dvsid140.exe

C:\WINDOWS\system32\guvyaxdw.dll

C:\WINDOWS\system32\jrbhugix.dll

C:\WINDOWS\system32\kyeflojp.dll

C:\WINDOWS\system32\modtrux07

C:\WINDOWS\system32\modtrux07\modtrux071084.exe

C:\WINDOWS\system32\pRI

C:\WINDOWS\system32\pRI\kscomdll3.exe

C:\WINDOWS\system32\rov

C:\WINDOWS\system32\rov\dragGLL1.exe

C:\WINDOWS\system32\wdqrnhjc.dll

C:\WINDOWS\system32\yrt

C:\WINDOWS\system32\yrt\wesamdir.exe

.

(((((((((((((((((((( Bestanden Gemaakt van 2008-05-28 to 2008-06-28 ))))))))))))))))))))))))))))))

.

2009-04-15 05:12 . 2009-04-15 05:12 <DIR> d-------- C:\Documents and Settings\Hilde\Bluetooth Software

2009-04-15 05:06 . 2009-04-15 05:10 <DIR> d-------- C:\Documents and Settings\Hilde\Application Data\Logitech

2009-04-15 05:06 . 2005-10-05 12:00 47,104 --a------ C:\WINDOWS\system32\drivers\vserial.sys

2009-04-15 05:06 . 2006-12-22 16:50 27,536 --a------ C:\WINDOWS\system32\drivers\frmupgr.sys

2009-04-15 05:06 . 2005-10-05 12:00 18,167 --a------ C:\WINDOWS\system32\drivers\vsb.sys

2009-04-15 05:06 . 2009-04-15 05:06 0 --ah----- C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf

2009-04-15 05:06 . 2009-04-15 05:06 0 --ah----- C:\WINDOWS\system32\drivers\Msft_Kernel_LMouFilt_01005.Wdf

2009-04-15 05:05 . 2007-01-23 15:45 1,419,024 --a------ C:\WINDOWS\system32\WdfCoInstaller01005.dll

2009-04-15 05:05 . 2006-12-04 13:32 290,881 --a------ C:\WINDOWS\system32\BtCoreIf.dll

2009-04-15 05:05 . 2007-01-30 01:46 163,840 --a------ C:\WINDOWS\system32\kemutb.dll

2009-04-15 05:05 . 2007-01-30 01:46 135,168 --a------ C:\WINDOWS\system32\KemUtil.dll

2009-04-15 05:05 . 2007-01-30 01:46 110,592 --a------ C:\WINDOWS\system32\KemWnd.dll

2009-04-15 05:05 . 2007-01-23 15:44 101,136 --a------ C:\WINDOWS\KHALMNPR.Exe

2009-04-15 05:05 . 2007-01-30 01:46 69,632 --a------ C:\WINDOWS\system32\KemXML.dll

2009-04-15 05:05 . 2007-01-23 15:45 34,576 --a------ C:\WINDOWS\system32\drivers\LHidFilt.Sys

2009-04-15 05:05 . 2007-01-23 15:45 33,296 --a------ C:\WINDOWS\system32\drivers\LMouFilt.Sys

2009-04-15 05:04 . 2009-04-15 05:07 <DIR> d-------- C:\Program Files\Logitech

2009-04-15 05:04 . 2009-04-15 05:05 <DIR> d-------- C:\Program Files\Common Files\Logitech

2009-04-15 05:04 . 2009-04-15 05:06 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Logitech

2009-04-15 05:03 . 2009-04-15 05:03 <DIR> d-------- C:\Program Files\WIDCOMM

2009-04-15 05:03 . 2006-12-04 23:33 863,402 --a------ C:\WINDOWS\system32\drivers\btkrnl.sys

2009-04-15 05:03 . 2006-12-04 23:33 329,901 --a------ C:\WINDOWS\system32\drivers\btaudio.sys

2009-04-15 05:03 . 2006-12-04 23:33 106,557 --a------ C:\WINDOWS\system32\btw_ci.dll

2009-04-15 05:03 . 2006-12-04 23:33 67,672 --a------ C:\WINDOWS\system32\drivers\btwusb.sys

2009-04-15 05:03 . 2006-12-04 23:33 47,907 --a------ C:\WINDOWS\system32\drivers\btwhid.sys

2009-04-15 05:03 . 2006-12-04 23:33 30,459 --a------ C:\WINDOWS\system32\drivers\btport.sys

2009-04-14 22:30 . 2008-04-04 11:02 <DIR> d-------- C:\Documents and Settings\Hilde\Application Data\Microsoft Games

2009-04-14 22:29 . 2009-04-14 22:29 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Microsoft Games

2009-04-14 22:24 . 2008-04-24 18:50 <DIR> d-------- C:\Program Files\Microsoft Games

2008-06-28 10:34 . 2008-06-28 10:34 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\NFS Underground

2008-06-28 10:33 . 2008-06-28 10:33 <DIR> d-------- C:\Program Files\Common Files\DirectX

2008-06-26 16:09 . 2008-06-26 16:09 <DIR> d-------- C:\Program Files\Malwarebytes' Anti-Malware

2008-06-26 16:09 . 2008-06-19 17:48 34,296 --a------ C:\WINDOWS\system32\drivers\mbamcatchme.sys

2008-06-26 16:09 . 2008-06-19 17:47 17,144 --a------ C:\WINDOWS\system32\drivers\mbam.sys

2008-06-26 14:48 . 2008-06-28 13:02 <DIR> dr-h----- C:\Documents and Settings\Hilde\Onlangs geopend

2008-06-26 11:26 . 2008-06-26 11:26 147,456 --a------ C:\WINDOWS\system32\vbzip10.dll

2008-06-25 14:58 . 2008-06-25 14:58 <DIR> d-------- C:\Program Files\Bullfrog

2008-06-25 13:20 . 2008-06-25 13:20 <DIR> d-------- C:\Program Files\Winamp Remote

2008-06-25 13:20 . 2008-06-26 09:20 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Winamp Toolbar

2008-06-25 13:20 . 2008-06-25 13:20 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\OrbNetworks

2008-06-25 13:20 . 2007-03-08 01:51 129,784 --------- C:\WINDOWS\system32\pxafs.dll

2008-06-25 13:20 . 2007-03-08 01:51 9,464 --------- C:\WINDOWS\system32\drivers\cdralw2k.sys

2008-06-25 13:20 . 2007-03-08 01:51 9,336 --------- C:\WINDOWS\system32\drivers\cdr4_xp.sys

2008-06-25 13:19 . 2008-06-25 13:21 <DIR> d-------- C:\Program Files\Winamp

2008-06-25 13:19 . 2008-06-25 13:27 <DIR> d-------- C:\Documents and Settings\Hilde\Application Data\Winamp

2008-06-25 13:05 . 2008-06-25 13:11 <DIR> d-------- C:\Program Files\SHOUTcast

2008-06-24 12:41 . 2008-06-24 14:25 <DIR> d-------- C:\Program Files\Dvd-to-mpeg

2008-06-24 12:34 . 2008-06-24 12:39 <DIR> d-------- C:\Program Files\Okoker DVD to iPod Converter

2008-06-24 12:34 . 2008-06-24 12:39 <DIR> d-------- C:\Okoker DVD to iPod Converter

2008-06-24 12:34 . 2006-08-10 15:16 2,435,613 --a------ C:\WINDOWS\system32\DvdRipper.ax

2008-06-24 12:34 . 2005-09-09 16:51 54,193 --a------ C:\WINDOWS\system32\pthreadGC2.dll

2008-06-24 12:34 . 2005-01-19 18:23 25,600 --a------ C:\WINDOWS\system32\AVSredirect.dll

2008-06-24 12:23 . 2008-06-24 12:23 <DIR> d-------- C:\Program Files\Common Files\Download Manager

2008-06-24 12:23 . 2008-06-24 12:23 <DIR> d-------- C:\Program Files\Avex

2008-06-24 12:20 . 2008-06-24 12:20 <DIR> d-------- C:\Program Files\Total Video Converter

2008-06-24 12:20 . 2000-05-22 22:58 608,448 --a------ C:\WINDOWS\system32\comctl32.ocx

2008-06-22 17:52 . 2008-06-22 17:52 <DIR> d-------- C:\Program Files\DVD Shrink

2008-06-22 17:52 . 2008-06-22 17:55 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\DVD Shrink

2008-06-22 14:09 . 2008-06-22 14:11 <DIR> d-------- C:\Program Files\Telemeter 3.0

2008-06-19 16:07 . 2008-06-22 14:12 <DIR> d-------- C:\Program Files\Anyplace Control 4

2008-06-19 16:07 . 2008-06-19 16:07 <DIR> d-------- C:\Documents and Settings\All Users\Anyplace Control 4

2008-06-17 19:14 . 2008-06-17 19:14 <DIR> d-------- C:\Documents and Settings\Hilde\Application Data\Uniblue

2008-06-17 19:04 . 2008-06-17 19:04 <DIR> d-------- C:\Program Files\Hamachi

2008-06-17 19:04 . 2008-06-22 12:19 <DIR> d-------- C:\Documents and Settings\Hilde\Application Data\Hamachi

2008-06-17 19:04 . 2008-06-17 19:04 25,280 --a------ C:\WINDOWS\system32\drivers\hamachi.sys

2008-06-17 18:37 . 2008-06-17 18:37 <DIR> d-------- C:\Program Files\MegaSpoof

2008-06-17 18:37 . 2003-07-08 10:13 28,672 --a------ C:\WINDOWS\system32\sizelimit.ocx

2008-06-17 12:40 . 2008-06-17 12:40 <DIR> d-------- C:\Program Files\Apple Software Update

2008-06-17 12:26 . 2008-06-17 12:26 6,902 --a------ C:\WINDOWS\system32\ealregsnapshot1.reg

2008-06-15 09:32 . 2008-06-15 09:32 23,392 --a------ C:\WINDOWS\system32\nscompat.tlb

2008-06-15 09:32 . 2008-06-15 09:32 16,832 --a------ C:\WINDOWS\system32\amcompat.tlb

2008-06-14 19:42 . 2008-06-14 19:42 <DIR> d-------- C:\Program Files\Virgin Interactive Entertainment

2008-06-13 13:08 . 2008-06-13 13:08 <DIR> d-------- C:\Program Files\Opera

2008-06-07 18:52 . 2008-06-14 16:51 <DIR> d-------- C:\Program Files\Windows Media Connect 2

2008-06-07 18:51 . 2008-06-19 19:29 <DIR> d-------- C:\WINDOWS\system32\LogFiles

2008-06-07 18:51 . 2008-06-07 18:52 <DIR> d-------- C:\WINDOWS\system32\drivers\UMDF

2008-06-07 18:51 . 2008-06-07 18:52 <DIR> d-------- C:\484ec0d4b7f6e3203b

2008-06-07 18:50 . 2008-06-07 18:51 <DIR> d-------- C:\4bc826e18c0df54766f299ab

2008-06-05 19:18 . 2008-06-05 19:18 <DIR> d-------- C:\Documents and Settings\Hilde\Application Data\Jasc

2008-06-05 19:17 . 2008-06-05 19:17 <DIR> d-------- C:\Program Files\Jasc Software Inc

2008-06-04 20:39 . 2008-06-04 20:39 <DIR> d-------- C:\Program Files\VSO

2008-06-04 20:39 . 2008-06-04 20:53 <DIR> d-------- C:\Documents and Settings\Hilde\Application Data\Vso

2008-06-04 20:39 . 2004-05-04 12:53 1,645,320 --a------ C:\WINDOWS\gdiplus.dll

2008-06-04 20:39 . 2006-05-11 20:21 626,688 --a------ C:\WINDOWS\system32\vp7vfw.dll

2008-06-04 20:39 . 2006-09-29 13:24 217,127 --a------ C:\WINDOWS\system32\drv43260.dll

2008-06-04 20:39 . 2006-09-29 13:25 208,935 --a------ C:\WINDOWS\system32\drv33260.dll

2008-06-04 20:39 . 2006-09-29 13:26 176,165 --a------ C:\WINDOWS\system32\drv23260.dll

2008-06-04 20:39 . 2007-03-18 21:37 65,602 --a------ C:\WINDOWS\system32\cook3260.dll

2008-06-04 20:39 . 2008-06-04 20:39 47,360 --a------ C:\WINDOWS\system32\drivers\pcouffin.sys

2008-06-04 20:39 . 2008-06-04 20:39 47,360 --a------ C:\Documents and Settings\Hilde\Application Data\pcouffin.sys

2008-06-04 16:44 . 2008-06-04 16:44 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes

2008-05-31 19:18 . 2008-05-31 19:18 <DIR> d-------- C:\Documents and Settings\Hilde\Application Data\Creative

2008-05-31 19:16 . 1999-10-11 03:00 41,984 --------- C:\WINDOWS\Ctregrun.exe

2008-05-31 19:16 . 2004-08-03 22:58 5,504 --a------ C:\WINDOWS\system32\drivers\MSTEE.sys

2008-05-31 19:16 . 2004-08-03 22:58 5,504 --a--c--- C:\WINDOWS\system32\dllcache\mstee.sys

2008-05-31 19:14 . 2008-05-31 19:16 <DIR> d-------- C:\Program Files\Creative

2008-05-31 19:14 . 1998-11-13 13:08 308,224 --a------ C:\WINDOWS\IsUn0413.exe

2008-05-31 13:09 . 2008-05-31 13:10 <DIR> d-------- C:\Program Files\SubSync

2008-05-31 12:59 . 2008-05-31 12:59 <DIR> d-------- C:\Program Files\uTorrent

2008-05-31 12:59 . 2008-06-26 14:34 <DIR> d-------- C:\Documents and Settings\Hilde\Application Data\uTorrent

2008-05-31 09:46 . 2008-05-31 09:46 <DIR> d-------- C:\WINDOWS\system32\Adobe

2008-05-31 09:46 . 2008-06-04 18:00 <DIR> d-------- C:\Program Files\Norton Security Scan

2008-05-30 16:42 . 2008-05-30 16:43 <DIR> d-------- C:\WINDOWS\ERUNT

2008-05-30 10:16 . 2008-05-30 10:27 <DIR> d-------- C:\hilde

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2009-04-15 03:07 --------- d-----w C:\Documents and Settings\LocalService\Application Data\Logitech

2009-04-14 07:25 512 ----a-w C:\ScanSectorLog.dat

2008-06-28 11:12 --------- d-----w C:\Documents and Settings\Hilde\Application Data\DNA

2008-06-28 11:02 --------- d-----w C:\Documents and Settings\Hilde\Application Data\Skype

2008-06-28 08:40 --------- d-----w C:\Documents and Settings\Hilde\Application Data\skypePM

2008-06-28 08:24 --------- d-----w C:\Program Files\EA Games

2008-06-26 12:41 --------- d-----w C:\Documents and Settings\Hilde\Application Data\LimeWire

2008-06-26 12:34 --------- d-----w C:\Program Files\ArtMoney

2008-06-26 11:45 --------- d-----w C:\Program Files\Cheat Engine

2008-06-24 15:38 --------- d-----w C:\Documents and Settings\Hilde\Application Data\BitTorrent

2008-06-24 10:12 --------- d-----w C:\Program Files\Handbrake

2008-06-23 14:47 0 ----a-w C:\Program Files\temp01

2008-06-23 06:42 --------- d-----w C:\Program Files\DeskPins

2008-06-22 15:41 --------- d-----w C:\Program Files\Tetris Unlimited

2008-06-22 12:47 --------- d-----w C:\Program Files\FDRLab

2008-06-17 10:41 --------- d-----w C:\Documents and Settings\Hilde\Application Data\Apple Computer

2008-06-14 17:42 --------- d--h--w C:\Program Files\InstallShield Installation Information

2008-06-14 14:51 --------- d-----w C:\Program Files\WinXMedia

2008-06-07 16:35 --------- d-----w C:\Program Files\WinAVI Video Converter

2008-06-07 08:57 --------- d-----w C:\Program Files\Google

2008-06-06 15:08 --------- d-----w C:\Program Files\GoogleMon

2008-06-06 15:08 --------- d-----w C:\Program Files\GamesBar

2008-06-06 15:08 --------- d-----w C:\Program Files\Gamenext

2008-06-06 15:05 --------- d-----w C:\Program Files\Ice Cream Tycoon

2008-06-05 18:09 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard

2008-06-05 18:09 --------- d-----w C:\Documents and Settings\All Users\Application Data\Lavasoft

2008-06-02 17:13 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy

2008-06-02 15:51 --------- d-----w C:\Program Files\Spybot - Search & Destroy

2008-05-31 11:09 73,216 ----a-w C:\WINDOWS\ST6UNST.EXE

2008-05-31 11:09 249,856 ------w C:\WINDOWS\Setup1.exe

2008-05-26 17:31 --------- d-----w C:\Documents and Settings\Hilde\Application Data\CDBurnerXP_Soft

2008-05-26 17:30 --------- d-----w C:\Program Files\CDBurnerXP

2008-05-24 15:55 --------- d-----w C:\Program Files\LimeWire

2008-05-24 13:08 --------- d-----w C:\Program Files\AV Music Morpher Gold

2008-05-24 13:01 --------- d-----w C:\Program Files\AV Vcs 6.0

2008-05-22 17:48 --------- d-----w C:\Documents and Settings\Hilde\Application Data\FrostWire

2008-05-21 11:12 481,532 --sha-w C:\WINDOWS\system32\drivers\fidbox.idx

2008-05-21 11:12 35,874,080 --sha-w C:\WINDOWS\system32\drivers\fidbox.dat

2008-05-21 11:12 212,444 --sha-w C:\WINDOWS\system32\drivers\fidbox2.idx

2008-05-21 11:12 2,254,624 --sha-w C:\WINDOWS\system32\drivers\fidbox2.dat

2008-05-16 17:04 --------- d-----w C:\Documents and Settings\All Users\Application Data\Microsoft Help

2008-05-15 15:23 --------- d-----w C:\Documents and Settings\Hilde\Application Data\dvdcss

2008-05-14 17:10 --------- d-----w C:\Program Files\FLV Player

2008-05-14 17:06 --------- d-----w C:\Program Files\My Video Downloader

2008-05-13 19:06 --------- d-----w C:\Program Files\Common Files\DVDVideoSoft

2008-05-13 19:04 --------- d-----w C:\Program Files\DVDVideoSoft

2008-05-13 19:02 --------- d-----w C:\Program Files\Xilisoft

2008-05-13 18:39 --------- d-----w C:\Program Files\Jocsoft

2008-05-09 15:27 --------- d-----w C:\Program Files\PhotoZoom Pro 2

2008-05-09 04:38 --------- d-----w C:\Program Files\Common Files\Adobe

2008-05-08 18:37 --------- d-----w C:\Documents and Settings\Hilde\Application Data\Malwarebytes

2008-05-08 15:10 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP

2008-05-07 15:33 --------- d-----w C:\Program Files\3D Flash Animator 4.9.8.4

2008-05-07 15:15 --------- d-----w C:\Documents and Settings\Hilde\Application Data\3DFA

2008-03-31 10:08 98,304 ----a-w C:\WINDOWS\system32\CmdLineExt.dll

2007-12-07 20:52 32 ----a-w C:\Documents and Settings\All Users\Application Data\ezsid.dat

.

Files Infected - Win32.Agent.zb

C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe

C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

C:\HP\KBD\KBD.EXE

C:\WINDOWS\system32\dla\tfswctrl.exe

C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe

C:\Program Files\QuickTime\qttask.exe

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

REGEDIT4

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 02:03 15360]

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-05-16 10:27 153136]

"Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2008-02-01 18:22 21898024]

"EA Core"="C:\Program Files\Electronic Arts\EADM\Core.exe" [2008-06-13 18:27 2752512]

"BitTorrent DNA"="C:\Program Files\DNA\btdna.exe" [2008-05-08 12:10 289088]

"Orb"="C:\Program Files\Winamp Remote\bin\OrbTray.exe" [2008-04-01 03:54 507904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [2008-03-14 14:05 153136]

"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [2008-03-14 14:05 49152]

"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 04:25 144784]

"AGRSMMSG"="AGRSMMSG.exe" [2004-06-29 10:06 88363 C:\WINDOWS\AGRSMMSG.exe]

"KBD"="C:\HP\KBD\KBD.EXE" [2008-03-14 14:05 61440]

"High Definition Audio Property Page Shortcut"="HDAShCut.exe" [2005-01-07 18:07 61952 C:\WINDOWS\system32\HdAShCut.exe]

"SoundMan"="SOUNDMAN.EXE" [2006-07-21 17:14 86016 C:\WINDOWS\SoundMan.exe]

"dla"="C:\WINDOWS\system32\dla\tfswctrl.exe" [2008-03-14 14:05 118837]

"UpdateManager"="C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" [2008-03-14 14:05 110592]

"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [2008-03-14 14:05 385024]

"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2007-01-23 15:44 101136 C:\WINDOWS\KHALMNPR.Exe]

"Logitech BT Wizard"="LBTWiz.exe" []

"Easy Synchronization"="C:\Program Files\Logitech\Easy Synchronization\LogitechEasySync.exe" [2005-10-05 12:00 53248]

"encryptdrop"="C:\Program Files\EncryptDrop Free Edition\EncryptDrop.exe" [2005-10-17 02:51 150016]

"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 22:16 39792]

"Creative WebCam Tray"="C:\Program Files\Creative\Shared Files\CAMTRAY.EXE" [2004-07-30 11:04 245760]

"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2008-04-01 20:49 36352]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 02:03 15360]

C:\Documents and Settings\Hilde\Menu Start\Programma's\Opstarten\

Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2007-12-14 17:55:34 113664]

C:\Documents and Settings\All Users\Menu Start\Programma's\Opstarten\

Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2007-12-14 17:55:34 113664]

HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2004-11-04 20:28:24 258048]

Internet Explorer.lnk - C:\Program Files\Internet Explorer\IEXPLORE.EXE [2007-12-07 18:45:52 93184]

Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe [2009-04-15 05:05:03 688128]

Snelstart HP Image Zone.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe [2004-11-04 20:50:52 53248]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]

c:\program files\common files\logitech\bluetooth\LBTWlgn.dll 2007-01-30 02:15 65536 c:\Program Files\Common Files\Logitech\Bluetooth\LBTWlgn.DLL

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"vidc.iv41"= C:\WINDOWS\system32\Ir41_32.ax

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]

@=""

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Google Updater.lnk]

path=C:\Documents and Settings\All Users\Menu Start\Programma's\Opstarten\Google Updater.lnk

backup=C:\WINDOWS\pss\Google Updater.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ares]

C:\Program Files\Ares\Ares.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]

--a------ 2008-03-14 14:05 267048 C:\Program Files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]

"TabletService"=2 (0x2)

"gusvc"=2 (0x2)

"Ati HotKey Poller"=2 (0x2)

"Apple Mobile Device"=2 (0x2)

"aawservice"=2 (0x2)

[HKEY_LOCAL_MACHINE\software\microsoft\security center]

"AntiVirusDisableNotify"=dword:00000001

"UpdatesDisableNotify"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=

"C:\\Program Files\\Messenger\\msmsgs.exe"=

"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=

"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=

"C:\\Program Files\\Electronic Arts\\Battlefield 2142\\BF2142.exe"=

"C:\\Program Files\\iTunes\\iTunes.exe"=

"C:\\Program Files\\DNA\\btdna.exe"=

"C:\\Program Files\\BitTorrent\\bittorrent.exe"=

"C:\\Program Files\\FrostWire\\FrostWire.exe"=

"C:\\Program Files\\LimeWire\\LimeWire.exe"=

"C:\\Program Files\\uTorrent\\uTorrent.exe"=

"C:\\Documents and Settings\\Hilde\\Bureaublad\\uTorrent.exe"=

"C:\\Program Files\\MAIET\\Gunz\\GunzLauncher.exe"=

"C:\\Program Files\\Counter-Strike 1.6\\hl.exe"=

"C:\\Program Files\\Electronic Arts\\EADM\\Core.exe"=

"C:\\Program Files\\Internet Explorer\\IEXPLORE.EXE"=

"C:\\Program Files\\SHOUTcast\\sc_serv.exe"=

"C:\\Program Files\\Winamp Remote\\bin\\Orb.exe"=

"C:\\Program Files\\Winamp Remote\\bin\\OrbTray.exe"=

"C:\\Program Files\\Winamp Remote\\bin\\OrbStreamerClient.exe"=

"C:\\Program Files\\EA Games\\Battlefield 1942\\BF1942.exe"=

"C:\\Program Files\\Skype\\Phone\\Skype.exe"=

R2 NMSAccessU;NMSAccessU;C:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-03-09 11:20]

R3 ACSSCR;ACR38 Smart Card Reader;C:\WINDOWS\system32\DRIVERS\a38usb.sys [2006-03-24 20:14]

S3 P0630VID;Creative WebCam Live!;C:\WINDOWS\system32\DRIVERS\P0630Vid.sys [2004-07-30 03:55]

S3 XDva032;XDva032;C:\WINDOWS\system32\XDva032.sys []

S4 Anyplace Control Security;Anyplace Control Security;C:\WINDOWS\svcadmin.exe []

.

Inhoud van de 'Gedeelde Taken' map

"2008-06-17 10:40:31 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"

- C:\Program Files\Apple Software Update\SoftwareUpdate.exe

"2008-06-04 16:06:26 C:\WINDOWS\Tasks\Norton Security Scan.job"

- C:\Program Files\Norton Security Scan\Nss.exe

.

**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2008-06-28 13:12:32

Windows 5.1.2600 Service Pack 2 NTFS

scannen van verborgen processen ...

scannen van verborgen autostart items ...

scannen van verborgen bestanden ...

Scan succesvol afgerond

verborgen bestanden: 0

**************************************************************************

.

Voltooingstijd: 2008-06-28 13:13:46

ComboFix-quarantined-files.txt 2008-06-28 11:13:03

ComboFix2.txt 2008-06-28 09:08:35

ComboFix3.txt 2008-06-02 17:29:37

Pre-Run: 153,324,175,360 bytes beschikbaar

Post-Run: 153,326,489,600 bytes beschikbaar

335 --- E O F --- 2007-12-28 14:27:14

Link naar reactie
Delen op andere sites
filkill Vergevorderde

filkill

Geplaatst:
  • Auteur
Geplaatst:

Hier het mbam logje:

Malwarebytes' Anti-Malware 1.18

Database versie: 893

20:29:09 28/06/2008

mbam-log-6-28-2008 (20-29-09).txt

Scan type: Snelle Scan

Objecten gescand: 43916

Verstreken tijd: 5 minute(s), 38 second(s)

Geheugenprocessen geïnfecteerd: 0

Geheugenmodulen geïnfecteerd: 0

Registersleutels geïnfecteerd: 1

Registerwaarden geïnfecteerd: 0

Registerdata bestanden geïnfecteerd: 0

Mappen geïnfecteerd: 0

Bestanden geïnfecteerd: 0

Geheugenprocessen geïnfecteerd:

(Geen kwaadaardige items gevonden)

Geheugenmodulen geïnfecteerd:

(Geen kwaadaardige items gevonden)

Registersleutels geïnfecteerd:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MS Juan (Malware.Trace) -> Quarantined and deleted successfully.

Registerwaarden geïnfecteerd:

(Geen kwaadaardige items gevonden)

Registerdata bestanden geïnfecteerd:

(Geen kwaadaardige items gevonden)

Mappen geïnfecteerd:

(Geen kwaadaardige items gevonden)

Bestanden geïnfecteerd:

(Geen kwaadaardige items gevonden)

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Open een kladblokbestand.

Kopieer en plak daarin de onderstaande vetgedrukte tekst.

File::

C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe

C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

C:\HP\KBD\KBD.EXE

C:\WINDOWS\system32\dla\tfswctrl.exe

C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe

C:\Program Files\QuickTime\qttask.exe

Sla dit bestand op je bureaublad op als CFScript.txt.

Sleep CFScript.txt in ComboFix.exe

Dit zal ComboFix doen herstarten. Start opnieuw op als dat gevraagd wordt.

Post na herstart de inhoud van de Combofix.txt in je volgende bericht samen met een nieuw logje van HijackThis. En dan hoor ik graag weer of de pop-ups nu wel verdwenen zijn ?

Link naar reactie
Delen op andere sites
filkill Vergevorderde

filkill

Geplaatst:
  • Auteur
Geplaatst:

Ik krijg geen popups meer en reclame pagina's voorlopig

ComboFix 08-06-20.4 - Hilde 2008-06-28 22:05:30.11 - NTFSx86

Microsoft Windows XP Professional 5.1.2600.2.1252.31.1043.18.496 [GMT 2:00]

Gestart vanuit: C:\Documents and Settings\Hilde\Bureaublad\ComboFix.exe

Command switches used :: C:\Documents and Settings\Hilde\Bureaublad\CFScript.txt

* Nieuw herstelpunt werd aangemaakt

FILE ::

C:\HP\KBD\kbd.exe

C:\HP\KBD\KBD.EXE

C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe

C:\Program Files\Common Files\Ahead\Lib\nerocheck.exe

C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe

C:\Program Files\HP\HP Software Update\hpwuschd2.exe

C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

C:\Program Files\QuickTime\qttask.exe

C:\WINDOWS\system32\dla\tfswctrl.exe

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

C:\HP\KBD\kbd.exe

C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe

C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe

C:\Program Files\HP\HP Software Update\hpwuschd2.exe

C:\Program Files\QuickTime\qttask.exe

C:\WINDOWS\system32\dla\tfswctrl.exe

C:\WINDOWS\system32\tmp85.tmp

.

(((((((((((((((((((( Bestanden Gemaakt van 2008-05-28 to 2008-06-28 ))))))))))))))))))))))))))))))

.

2009-04-15 05:12 . 2009-04-15 05:12 <DIR> d-------- C:\Documents and Settings\Hilde\Bluetooth Software

2009-04-15 05:06 . 2009-04-15 05:10 <DIR> d-------- C:\Documents and Settings\Hilde\Application Data\Logitech

2009-04-15 05:06 . 2005-10-05 12:00 47,104 --a------ C:\WINDOWS\system32\drivers\vserial.sys

2009-04-15 05:06 . 2006-12-22 16:50 27,536 --a------ C:\WINDOWS\system32\drivers\frmupgr.sys

2009-04-15 05:06 . 2005-10-05 12:00 18,167 --a------ C:\WINDOWS\system32\drivers\vsb.sys

2009-04-15 05:06 . 2009-04-15 05:06 0 --ah----- C:\WINDOWS\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf

2009-04-15 05:06 . 2009-04-15 05:06 0 --ah----- C:\WINDOWS\system32\drivers\Msft_Kernel_LMouFilt_01005.Wdf

2009-04-15 05:05 . 2007-01-23 15:45 1,419,024 --a------ C:\WINDOWS\system32\WdfCoInstaller01005.dll

2009-04-15 05:05 . 2006-12-04 13:32 290,881 --a------ C:\WINDOWS\system32\BtCoreIf.dll

2009-04-15 05:05 . 2007-01-30 01:46 163,840 --a------ C:\WINDOWS\system32\kemutb.dll

2009-04-15 05:05 . 2007-01-30 01:46 135,168 --a------ C:\WINDOWS\system32\KemUtil.dll

2009-04-15 05:05 . 2007-01-30 01:46 110,592 --a------ C:\WINDOWS\system32\KemWnd.dll

2009-04-15 05:05 . 2007-01-23 15:44 101,136 --a------ C:\WINDOWS\KHALMNPR.Exe

2009-04-15 05:05 . 2007-01-30 01:46 69,632 --a------ C:\WINDOWS\system32\KemXML.dll

2009-04-15 05:05 . 2007-01-23 15:45 34,576 --a------ C:\WINDOWS\system32\drivers\LHidFilt.Sys

2009-04-15 05:05 . 2007-01-23 15:45 33,296 --a------ C:\WINDOWS\system32\drivers\LMouFilt.Sys

2009-04-15 05:04 . 2009-04-15 05:07 <DIR> d-------- C:\Program Files\Logitech

2009-04-15 05:04 . 2009-04-15 05:05 <DIR> d-------- C:\Program Files\Common Files\Logitech

2009-04-15 05:04 . 2009-04-15 05:06 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Logitech

2009-04-15 05:03 . 2009-04-15 05:03 <DIR> d-------- C:\Program Files\WIDCOMM

2009-04-15 05:03 . 2006-12-04 23:33 863,402 --a------ C:\WINDOWS\system32\drivers\btkrnl.sys

2009-04-15 05:03 . 2006-12-04 23:33 329,901 --a------ C:\WINDOWS\system32\drivers\btaudio.sys

2009-04-15 05:03 . 2006-12-04 23:33 106,557 --a------ C:\WINDOWS\system32\btw_ci.dll

2009-04-15 05:03 . 2006-12-04 23:33 67,672 --a------ C:\WINDOWS\system32\drivers\btwusb.sys

2009-04-15 05:03 . 2006-12-04 23:33 47,907 --a------ C:\WINDOWS\system32\drivers\btwhid.sys

2009-04-15 05:03 . 2006-12-04 23:33 30,459 --a------ C:\WINDOWS\system32\drivers\btport.sys

2009-04-14 22:30 . 2008-04-04 11:02 <DIR> d-------- C:\Documents and Settings\Hilde\Application Data\Microsoft Games

2009-04-14 22:29 . 2009-04-14 22:29 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Microsoft Games

2009-04-14 22:24 . 2008-04-24 18:50 <DIR> d-------- C:\Program Files\Microsoft Games

2008-06-28 17:35 . 2008-06-28 17:35 <DIR> d-------- C:\WINDOWS\LastGood.Tmp

2008-06-28 17:35 . 2006-09-28 16:05 2,414,360 --a------ C:\WINDOWS\system32\d3dx9_31.dll

2008-06-28 17:35 . 2006-09-28 16:05 237,848 --a------ C:\WINDOWS\system32\xactengine2_4.dll

2008-06-28 17:35 . 2006-07-28 09:30 236,824 --a------ C:\WINDOWS\system32\xactengine2_3.dll

2008-06-28 17:35 . 2006-09-28 16:04 68,888 --a------ C:\WINDOWS\system32\xinput1_3.dll

2008-06-28 17:35 . 2006-07-28 09:30 62,744 --a------ C:\WINDOWS\system32\xinput1_2.dll

2008-06-28 17:35 . 2006-09-28 16:03 15,128 --a------ C:\WINDOWS\system32\x3daudio1_1.dll

2008-06-28 17:32 . 2008-06-28 17:32 <DIR> d-------- C:\Program Files\RTL-Playtainment

2008-06-28 17:32 . 2008-06-28 17:32 <DIR> d-------- C:\Program Files\OpenAL

2008-06-28 17:32 . 2008-06-28 17:32 413,696 --a------ C:\WINDOWS\system32\wrap_oal.dll

2008-06-28 17:32 . 2008-06-28 17:32 86,016 --a------ C:\WINDOWS\system32\OpenAL32.dll

2008-06-28 16:28 . 2008-06-28 16:28 <DIR> d-------- C:\Program Files\Cryo

2008-06-28 10:34 . 2008-06-28 10:34 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\NFS Underground

2008-06-28 10:33 . 2008-06-28 10:33 <DIR> d-------- C:\Program Files\Common Files\DirectX

2008-06-26 16:09 . 2008-06-26 16:09 <DIR> d-------- C:\Program Files\Malwarebytes' Anti-Malware

2008-06-26 16:09 . 2008-06-19 17:48 34,296 --a------ C:\WINDOWS\system32\drivers\mbamcatchme.sys

2008-06-26 16:09 . 2008-06-19 17:47 17,144 --a------ C:\WINDOWS\system32\drivers\mbam.sys

2008-06-26 14:48 . 2008-06-28 22:04 <DIR> dr-h----- C:\Documents and Settings\Hilde\Onlangs geopend

2008-06-26 11:26 . 2008-06-26 11:26 147,456 --a------ C:\WINDOWS\system32\vbzip10.dll

2008-06-25 14:58 . 2008-06-25 14:58 <DIR> d-------- C:\Program Files\Bullfrog

2008-06-25 13:20 . 2008-06-25 13:20 <DIR> d-------- C:\Program Files\Winamp Remote

2008-06-25 13:20 . 2008-06-26 09:20 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Winamp Toolbar

2008-06-25 13:20 . 2008-06-25 13:20 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\OrbNetworks

2008-06-25 13:20 . 2007-03-08 01:51 129,784 --------- C:\WINDOWS\system32\pxafs.dll

2008-06-25 13:20 . 2007-03-08 01:51 9,464 --------- C:\WINDOWS\system32\drivers\cdralw2k.sys

2008-06-25 13:20 . 2007-03-08 01:51 9,336 --------- C:\WINDOWS\system32\drivers\cdr4_xp.sys

2008-06-25 13:19 . 2008-06-25 13:21 <DIR> d-------- C:\Program Files\Winamp

2008-06-25 13:19 . 2008-06-25 13:27 <DIR> d-------- C:\Documents and Settings\Hilde\Application Data\Winamp

2008-06-25 13:05 . 2008-06-25 13:11 <DIR> d-------- C:\Program Files\SHOUTcast

2008-06-24 12:41 . 2008-06-24 14:25 <DIR> d-------- C:\Program Files\Dvd-to-mpeg

2008-06-24 12:34 . 2008-06-24 12:39 <DIR> d-------- C:\Program Files\Okoker DVD to iPod Converter

2008-06-24 12:34 . 2008-06-24 12:39 <DIR> d-------- C:\Okoker DVD to iPod Converter

2008-06-24 12:34 . 2006-08-10 15:16 2,435,613 --a------ C:\WINDOWS\system32\DvdRipper.ax

2008-06-24 12:34 . 2005-09-09 16:51 54,193 --a------ C:\WINDOWS\system32\pthreadGC2.dll

2008-06-24 12:34 . 2005-01-19 18:23 25,600 --a------ C:\WINDOWS\system32\AVSredirect.dll

2008-06-24 12:23 . 2008-06-24 12:23 <DIR> d-------- C:\Program Files\Common Files\Download Manager

2008-06-24 12:23 . 2008-06-24 12:23 <DIR> d-------- C:\Program Files\Avex

2008-06-24 12:20 . 2008-06-24 12:20 <DIR> d-------- C:\Program Files\Total Video Converter

2008-06-24 12:20 . 2000-05-22 22:58 608,448 --a------ C:\WINDOWS\system32\comctl32.ocx

2008-06-22 17:52 . 2008-06-22 17:52 <DIR> d-------- C:\Program Files\DVD Shrink

2008-06-22 17:52 . 2008-06-22 17:55 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\DVD Shrink

2008-06-22 14:09 . 2008-06-22 14:11 <DIR> d-------- C:\Program Files\Telemeter 3.0

2008-06-19 16:07 . 2008-06-22 14:12 <DIR> d-------- C:\Program Files\Anyplace Control 4

2008-06-19 16:07 . 2008-06-19 16:07 <DIR> d-------- C:\Documents and Settings\All Users\Anyplace Control 4

2008-06-17 19:14 . 2008-06-17 19:14 <DIR> d-------- C:\Documents and Settings\Hilde\Application Data\Uniblue

2008-06-17 19:04 . 2008-06-17 19:04 <DIR> d-------- C:\Program Files\Hamachi

2008-06-17 19:04 . 2008-06-22 12:19 <DIR> d-------- C:\Documents and Settings\Hilde\Application Data\Hamachi

2008-06-17 19:04 . 2008-06-17 19:04 25,280 --a------ C:\WINDOWS\system32\drivers\hamachi.sys

2008-06-17 18:37 . 2008-06-17 18:37 <DIR> d-------- C:\Program Files\MegaSpoof

2008-06-17 18:37 . 2003-07-08 10:13 28,672 --a------ C:\WINDOWS\system32\sizelimit.ocx

2008-06-17 12:40 . 2008-06-17 12:40 <DIR> d-------- C:\Program Files\Apple Software Update

2008-06-17 12:26 . 2008-06-17 12:26 6,902 --a------ C:\WINDOWS\system32\ealregsnapshot1.reg

2008-06-15 09:32 . 2008-06-15 09:32 23,392 --a------ C:\WINDOWS\system32\nscompat.tlb

2008-06-15 09:32 . 2008-06-15 09:32 16,832 --a------ C:\WINDOWS\system32\amcompat.tlb

2008-06-14 19:42 . 2008-06-14 19:42 <DIR> d-------- C:\Program Files\Virgin Interactive Entertainment

2008-06-13 13:08 . 2008-06-13 13:08 <DIR> d-------- C:\Program Files\Opera

2008-06-07 18:52 . 2008-06-14 16:51 <DIR> d-------- C:\Program Files\Windows Media Connect 2

2008-06-07 18:51 . 2008-06-19 19:29 <DIR> d-------- C:\WINDOWS\system32\LogFiles

2008-06-07 18:51 . 2008-06-07 18:52 <DIR> d-------- C:\WINDOWS\system32\drivers\UMDF

2008-06-07 18:51 . 2008-06-07 18:52 <DIR> d-------- C:\484ec0d4b7f6e3203b

2008-06-07 18:50 . 2008-06-07 18:51 <DIR> d-------- C:\4bc826e18c0df54766f299ab

2008-06-05 19:18 . 2008-06-05 19:18 <DIR> d-------- C:\Documents and Settings\Hilde\Application Data\Jasc

2008-06-05 19:17 . 2008-06-05 19:17 <DIR> d-------- C:\Program Files\Jasc Software Inc

2008-06-04 20:39 . 2008-06-04 20:39 <DIR> d-------- C:\Program Files\VSO

2008-06-04 20:39 . 2008-06-04 20:53 <DIR> d-------- C:\Documents and Settings\Hilde\Application Data\Vso

2008-06-04 20:39 . 2004-05-04 12:53 1,645,320 --a------ C:\WINDOWS\gdiplus.dll

2008-06-04 20:39 . 2006-05-11 20:21 626,688 --a------ C:\WINDOWS\system32\vp7vfw.dll

2008-06-04 20:39 . 2006-09-29 13:24 217,127 --a------ C:\WINDOWS\system32\drv43260.dll

2008-06-04 20:39 . 2006-09-29 13:25 208,935 --a------ C:\WINDOWS\system32\drv33260.dll

2008-06-04 20:39 . 2006-09-29 13:26 176,165 --a------ C:\WINDOWS\system32\drv23260.dll

2008-06-04 20:39 . 2007-03-18 21:37 65,602 --a------ C:\WINDOWS\system32\cook3260.dll

2008-06-04 20:39 . 2008-06-04 20:39 47,360 --a------ C:\WINDOWS\system32\drivers\pcouffin.sys

2008-06-04 20:39 . 2008-06-04 20:39 47,360 --a------ C:\Documents and Settings\Hilde\Application Data\pcouffin.sys

2008-06-04 16:44 . 2008-06-04 16:44 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes

2008-05-31 19:18 . 2008-05-31 19:18 <DIR> d-------- C:\Documents and Settings\Hilde\Application Data\Creative

2008-05-31 19:16 . 1999-10-11 03:00 41,984 --------- C:\WINDOWS\Ctregrun.exe

2008-05-31 19:16 . 2004-08-03 22:58 5,504 --a------ C:\WINDOWS\system32\drivers\MSTEE.sys

2008-05-31 19:16 . 2004-08-03 22:58 5,504 --a--c--- C:\WINDOWS\system32\dllcache\mstee.sys

2008-05-31 19:14 . 2008-05-31 19:16 <DIR> d-------- C:\Program Files\Creative

2008-05-31 19:14 . 1998-11-13 13:08 308,224 --a------ C:\WINDOWS\IsUn0413.exe

2008-05-31 13:09 . 2008-05-31 13:10 <DIR> d-------- C:\Program Files\SubSync

2008-05-31 12:59 . 2008-05-31 12:59 <DIR> d-------- C:\Program Files\uTorrent

2008-05-31 12:59 . 2008-06-28 22:09 <DIR> d-------- C:\Documents and Settings\Hilde\Application Data\uTorrent

2008-05-31 09:46 . 2008-05-31 09:46 <DIR> d-------- C:\WINDOWS\system32\Adobe

2008-05-31 09:46 . 2008-06-04 18:00 <DIR> d-------- C:\Program Files\Norton Security Scan

2008-05-30 16:42 . 2008-05-30 16:43 <DIR> d-------- C:\WINDOWS\ERUNT

2008-05-30 10:16 . 2008-05-30 10:27 <DIR> d-------- C:\hilde

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2009-04-15 03:07 --------- d-----w C:\Documents and Settings\LocalService\Application Data\Logitech

2009-04-14 07:25 512 ----a-w C:\ScanSectorLog.dat

2008-06-28 20:09 --------- d-----w C:\Documents and Settings\Hilde\Application Data\DNA

2008-06-28 20:05 --------- d-----w C:\Program Files\QuickTime

2008-06-28 20:02 --------- d-----w C:\Documents and Settings\Hilde\Application Data\Skype

2008-06-28 15:09 --------- d--h--w C:\Program Files\InstallShield Installation Information

2008-06-28 14:52 --------- d-----w C:\Program Files\EA Games

2008-06-28 14:03 --------- d-----w C:\Documents and Settings\Hilde\Application Data\skypePM

2008-06-26 12:41 --------- d-----w C:\Documents and Settings\Hilde\Application Data\LimeWire

2008-06-26 12:34 --------- d-----w C:\Program Files\ArtMoney

2008-06-26 11:45 --------- d-----w C:\Program Files\Cheat Engine

2008-06-24 15:38 --------- d-----w C:\Documents and Settings\Hilde\Application Data\BitTorrent

2008-06-24 10:12 --------- d-----w C:\Program Files\Handbrake

2008-06-23 14:47 0 ----a-w C:\Program Files\temp01

2008-06-23 06:42 --------- d-----w C:\Program Files\DeskPins

2008-06-22 15:41 --------- d-----w C:\Program Files\Tetris Unlimited

2008-06-22 12:47 --------- d-----w C:\Program Files\FDRLab

2008-06-17 10:41 --------- d-----w C:\Documents and Settings\Hilde\Application Data\Apple Computer

2008-06-14 14:51 --------- d-----w C:\Program Files\WinXMedia

2008-06-07 16:35 --------- d-----w C:\Program Files\WinAVI Video Converter

2008-06-07 08:57 --------- d-----w C:\Program Files\Google

2008-06-06 15:08 --------- d-----w C:\Program Files\GoogleMon

2008-06-06 15:08 --------- d-----w C:\Program Files\GamesBar

2008-06-06 15:08 --------- d-----w C:\Program Files\Gamenext

2008-06-06 15:05 --------- d-----w C:\Program Files\Ice Cream Tycoon

2008-06-05 18:09 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard

2008-06-05 18:09 --------- d-----w C:\Documents and Settings\All Users\Application Data\Lavasoft

2008-06-02 17:13 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy

2008-06-02 15:51 --------- d-----w C:\Program Files\Spybot - Search & Destroy

2008-05-31 11:09 73,216 ----a-w C:\WINDOWS\ST6UNST.EXE

2008-05-31 11:09 249,856 ------w C:\WINDOWS\Setup1.exe

2008-05-26 17:31 --------- d-----w C:\Documents and Settings\Hilde\Application Data\CDBurnerXP_Soft

2008-05-26 17:30 --------- d-----w C:\Program Files\CDBurnerXP

2008-05-24 15:55 --------- d-----w C:\Program Files\LimeWire

2008-05-24 13:08 --------- d-----w C:\Program Files\AV Music Morpher Gold

2008-05-24 13:01 --------- d-----w C:\Program Files\AV Vcs 6.0

2008-05-22 17:48 --------- d-----w C:\Documents and Settings\Hilde\Application Data\FrostWire

2008-05-21 11:12 481,532 --sha-w C:\WINDOWS\system32\drivers\fidbox.idx

2008-05-21 11:12 35,874,080 --sha-w C:\WINDOWS\system32\drivers\fidbox.dat

2008-05-21 11:12 212,444 --sha-w C:\WINDOWS\system32\drivers\fidbox2.idx

2008-05-21 11:12 2,254,624 --sha-w C:\WINDOWS\system32\drivers\fidbox2.dat

2008-05-16 17:04 --------- d-----w C:\Documents and Settings\All Users\Application Data\Microsoft Help

2008-05-15 15:23 --------- d-----w C:\Documents and Settings\Hilde\Application Data\dvdcss

2008-05-14 17:10 --------- d-----w C:\Program Files\FLV Player

2008-05-14 17:06 --------- d-----w C:\Program Files\My Video Downloader

2008-05-13 19:06 --------- d-----w C:\Program Files\Common Files\DVDVideoSoft

2008-05-13 19:04 --------- d-----w C:\Program Files\DVDVideoSoft

2008-05-13 19:02 --------- d-----w C:\Program Files\Xilisoft

2008-05-13 18:39 --------- d-----w C:\Program Files\Jocsoft

2008-05-09 15:27 --------- d-----w C:\Program Files\PhotoZoom Pro 2

2008-05-09 04:38 --------- d-----w C:\Program Files\Common Files\Adobe

2008-05-08 18:37 --------- d-----w C:\Documents and Settings\Hilde\Application Data\Malwarebytes

2008-05-08 15:10 --------- d---a-w C:\Documents and Settings\All Users\Application Data\TEMP

2008-05-07 15:33 --------- d-----w C:\Program Files\3D Flash Animator 4.9.8.4

2008-05-07 15:15 --------- d-----w C:\Documents and Settings\Hilde\Application Data\3DFA

2008-03-31 10:08 98,304 ----a-w C:\WINDOWS\system32\CmdLineExt.dll

2007-12-07 20:52 32 ----a-w C:\Documents and Settings\All Users\Application Data\ezsid.dat

.

((((((((((((((((((((((((((((( snapshot@2008-06-28_11.08.21.70 )))))))))))))))))))))))))))))))))))))))))

.

- 2008-01-23 15:54:57 53,248 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll

+ 2008-06-28 15:35:33 53,248 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll

- 2008-01-23 15:54:58 12,800 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll

+ 2008-06-28 15:35:33 12,800 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll

- 2008-01-23 15:54:58 473,600 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll

+ 2008-06-28 15:35:34 473,600 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll

- 2008-01-23 15:54:53 2,676,224 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

+ 2008-06-28 15:35:29 2,676,224 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

- 2008-01-23 15:54:54 2,846,720 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

+ 2008-06-28 15:35:30 2,846,720 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

- 2008-01-23 15:54:55 563,712 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

+ 2008-06-28 15:35:30 563,712 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

- 2008-01-23 15:54:55 567,296 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

+ 2008-06-28 15:35:30 567,296 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

- 2008-01-23 15:54:55 576,000 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

+ 2008-06-28 15:35:31 576,000 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

- 2008-01-23 15:54:56 577,024 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

+ 2008-06-28 15:35:31 577,024 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

- 2008-01-23 15:54:56 577,536 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

+ 2008-06-28 15:35:31 577,536 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

- 2008-01-23 15:54:56 577,536 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

+ 2008-06-28 15:35:32 577,536 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

- 2008-01-23 15:54:58 578,560 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

+ 2008-06-28 15:35:32 578,560 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

+ 2008-06-28 15:35:34 578,560 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll

- 2008-01-23 15:54:58 145,920 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll

+ 2008-06-28 15:35:34 145,920 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll

- 2008-01-23 15:54:58 159,232 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll

+ 2008-06-28 15:35:35 159,232 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll

- 2008-01-23 15:54:59 364,544 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll

+ 2008-06-28 15:35:35 364,544 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll

- 2008-01-23 15:54:59 178,176 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll

+ 2008-06-28 15:35:35 178,176 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll

- 2008-01-23 15:54:57 223,232 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll

+ 2008-06-28 15:35:33 223,232 ----a-w C:\WINDOWS\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll

- 2008-06-28 09:01:42 2,048 --s-a-w C:\WINDOWS\bootstat.dat

+ 2008-06-28 20:10:38 2,048 --s-a-w C:\WINDOWS\bootstat.dat

+ 2005-02-05 18:45:26 2,222,800 ----a-w C:\WINDOWS\LastGood.Tmp\system32\d3dx9_24.dll

+ 2005-03-18 16:19:58 2,337,488 ----a-w C:\WINDOWS\LastGood.Tmp\system32\d3dx9_25.dll

+ 2005-05-26 14:34:52 2,297,552 ----a-w C:\WINDOWS\LastGood.Tmp\system32\d3dx9_26.dll

+ 2005-07-22 18:59:04 2,319,568 ----a-w C:\WINDOWS\LastGood.Tmp\system32\d3dx9_27.dll

+ 2005-12-05 17:09:18 2,323,664 ----a-w C:\WINDOWS\LastGood.Tmp\system32\d3dx9_28.dll

+ 2006-02-03 07:43:16 2,332,368 ----a-w C:\WINDOWS\LastGood.Tmp\system32\d3dx9_29.dll

+ 2006-03-31 11:40:58 2,388,176 ----a-w C:\WINDOWS\LastGood.Tmp\system32\d3dx9_30.dll

+ 2006-02-03 07:41:26 14,032 ----a-w C:\WINDOWS\LastGood.Tmp\system32\x3daudio1_0.dll

+ 2006-02-03 07:42:06 230,096 ----a-w C:\WINDOWS\LastGood.Tmp\system32\xactengine2_0.dll

+ 2005-12-05 17:07:30 61,136 ----a-w C:\WINDOWS\LastGood.Tmp\system32\xinput9_1_0.dll

+ 2006-03-31 09:27:50 578,560 ----a-w C:\WINDOWS\Microsoft.NET\DirectX for Managed Code\1.0.2911.0\Microsoft.DirectX.Direct3DX.dll

- 2008-06-25 08:04:16 387,200 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT

+ 2008-06-28 20:10:35 388,000 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT

+ 2006-03-31 10:39:48 229,584 ----a-w C:\WINDOWS\system32\xactengine2_1.dll

+ 2006-05-31 05:24:16 230,168 ----a-w C:\WINDOWS\system32\xactengine2_2.dll

+ 2006-03-31 10:39:24 62,672 ----a-w C:\WINDOWS\system32\xinput1_1.dll

.

-- Snapshot reset to current date --

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

REGEDIT4

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 02:03 15360]

"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-05-16 10:27 153136]

"Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2008-02-01 18:22 21898024]

"EA Core"="C:\Program Files\Electronic Arts\EADM\Core.exe" [2008-06-13 18:27 2752512]

"BitTorrent DNA"="C:\Program Files\DNA\btdna.exe" [2008-05-08 12:10 289088]

"Orb"="C:\Program Files\Winamp Remote\bin\OrbTray.exe" [2008-04-01 03:54 507904]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"NeroFilterCheck"="C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe" [ ]

"HP Software Update"="C:\Program Files\HP\HP Software Update\HPWuSchd2.exe" [ ]

"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 04:25 144784]

"AGRSMMSG"="AGRSMMSG.exe" [2004-06-29 10:06 88363 C:\WINDOWS\AGRSMMSG.exe]

"KBD"="C:\HP\KBD\KBD.EXE" [ ]

"High Definition Audio Property Page Shortcut"="HDAShCut.exe" [2005-01-07 18:07 61952 C:\WINDOWS\system32\HdAShCut.exe]

"SoundMan"="SOUNDMAN.EXE" [2006-07-21 17:14 86016 C:\WINDOWS\SoundMan.exe]

"dla"="C:\WINDOWS\system32\dla\tfswctrl.exe" [ ]

"UpdateManager"="C:\Program Files\Common Files\Sonic\Update Manager\sgtray.exe" [ ]

"QuickTime Task"="C:\Program Files\QuickTime\qttask.exe" [ ]

"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2007-01-23 15:44 101136 C:\WINDOWS\KHALMNPR.Exe]

"Logitech BT Wizard"="LBTWiz.exe" []

"Easy Synchronization"="C:\Program Files\Logitech\Easy Synchronization\LogitechEasySync.exe" [2005-10-05 12:00 53248]

"encryptdrop"="C:\Program Files\EncryptDrop Free Edition\EncryptDrop.exe" [2005-10-17 02:51 150016]

"Adobe Reader Speed Launcher"="C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-01-11 22:16 39792]

"Creative WebCam Tray"="C:\Program Files\Creative\Shared Files\CAMTRAY.EXE" [2004-07-30 11:04 245760]

"WinampAgent"="C:\Program Files\Winamp\winampa.exe" [2008-04-01 20:49 36352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

"Easy Synchronization"="C:\Program Files\Logitech\Easy Synchronization\LogitechEasySync.exe" [2005-10-05 12:00 53248]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2004-08-04 02:03 15360]

C:\Documents and Settings\Hilde\Menu Start\Programma's\Opstarten\

Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2007-12-14 17:55:34 113664]

C:\Documents and Settings\All Users\Menu Start\Programma's\Opstarten\

Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2007-12-14 17:55:34 113664]

HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [2004-11-04 20:28:24 258048]

Internet Explorer.lnk - C:\Program Files\Internet Explorer\IEXPLORE.EXE [2007-12-07 18:45:52 93184]

Logitech SetPoint.lnk - C:\Program Files\Logitech\SetPoint\SetPoint.exe [2009-04-15 05:05:03 688128]

Snelstart HP Image Zone.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe [2004-11-04 20:50:52 53248]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]

c:\program files\common files\logitech\bluetooth\LBTWlgn.dll 2007-01-30 02:15 65536 c:\Program Files\Common Files\Logitech\Bluetooth\LBTWlgn.DLL

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"vidc.iv41"= C:\WINDOWS\system32\Ir41_32.ax

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]

@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]

@=""

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Google Updater.lnk]

path=C:\Documents and Settings\All Users\Menu Start\Programma's\Opstarten\Google Updater.lnk

backup=C:\WINDOWS\pss\Google Updater.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ares]

C:\Program Files\Ares\Ares.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]

--a------ 2008-03-14 14:05 267048 C:\Program Files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]

"TabletService"=2 (0x2)

"gusvc"=2 (0x2)

"Ati HotKey Poller"=2 (0x2)

"Apple Mobile Device"=2 (0x2)

"aawservice"=2 (0x2)

[HKEY_LOCAL_MACHINE\software\microsoft\security center]

"AntiVirusDisableNotify"=dword:00000001

"UpdatesDisableNotify"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"C:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=

"C:\\Program Files\\Messenger\\msmsgs.exe"=

"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=

"C:\\Program Files\\Windows Live\\Messenger\\livecall.exe"=

"C:\\Program Files\\Electronic Arts\\Battlefield 2142\\BF2142.exe"=

"C:\\Program Files\\iTunes\\iTunes.exe"=

"C:\\Program Files\\DNA\\btdna.exe"=

"C:\\Program Files\\BitTorrent\\bittorrent.exe"=

"C:\\Program Files\\FrostWire\\FrostWire.exe"=

"C:\\Program Files\\LimeWire\\LimeWire.exe"=

"C:\\Program Files\\uTorrent\\uTorrent.exe"=

"C:\\Documents and Settings\\Hilde\\Bureaublad\\uTorrent.exe"=

"C:\\Program Files\\MAIET\\Gunz\\GunzLauncher.exe"=

"C:\\Program Files\\Counter-Strike 1.6\\hl.exe"=

"C:\\Program Files\\Electronic Arts\\EADM\\Core.exe"=

"C:\\Program Files\\Internet Explorer\\IEXPLORE.EXE"=

"C:\\Program Files\\SHOUTcast\\sc_serv.exe"=

"C:\\Program Files\\Winamp Remote\\bin\\Orb.exe"=

"C:\\Program Files\\Winamp Remote\\bin\\OrbTray.exe"=

"C:\\Program Files\\Winamp Remote\\bin\\OrbStreamerClient.exe"=

"C:\\Program Files\\EA Games\\Battlefield 1942\\BF1942.exe"=

"C:\\Program Files\\Skype\\Phone\\Skype.exe"=

R2 NMSAccessU;NMSAccessU;C:\Program Files\CDBurnerXP\NMSAccessU.exe [2008-03-09 11:20]

R3 ACSSCR;ACR38 Smart Card Reader;C:\WINDOWS\system32\DRIVERS\a38usb.sys [2006-03-24 20:14]

S3 P0630VID;Creative WebCam Live!;C:\WINDOWS\system32\DRIVERS\P0630Vid.sys [2004-07-30 03:55]

S3 XDva032;XDva032;C:\WINDOWS\system32\XDva032.sys []

S4 Anyplace Control Security;Anyplace Control Security;C:\WINDOWS\svcadmin.exe []

.

Inhoud van de 'Gedeelde Taken' map

"2008-06-17 10:40:31 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job"

- C:\Program Files\Apple Software Update\SoftwareUpdate.exe

"2008-06-04 16:06:26 C:\WINDOWS\Tasks\Norton Security Scan.job"

- C:\Program Files\Norton Security Scan\Nss.exe

.

**************************************************************************

catchme 0.3.1361 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2008-06-28 22:10:57

Windows 5.1.2600 Service Pack 2 NTFS

scannen van verborgen processen ...

scannen van verborgen autostart items ...

scannen van verborgen bestanden ...

C:\Documents and Settings\Hilde\Application Data\skypePM\2008-06-26-2.ezlog 19008 bytes

Scan succesvol afgerond

verborgen bestanden: 1

**************************************************************************

.

------------------------ Other Running Processes ------------------------

.

C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe

C:\Program Files\Common Files\Logitech\Bluetooth\LBTSERV.EXE

C:\WINDOWS\system32\scardsvr.exe

C:\Program Files\Logitech\Easy Synchronization\servicestub.exe

C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe

C:\WINDOWS\system32\HPZipm12.exe

C:\WINDOWS\system32\WgaTray.exe

C:\Program Files\Logitech\SetPoint\LBTWiz.exe

C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe

C:\Program Files\Common Files\Logitech\khalshared\KHALMNPR.exe

C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe

C:\Program Files\Skype\Plugin Manager\skypePM.exe

C:\WINDOWS\system32\msiexec.exe

.

**************************************************************************

.

Voltooingstijd: 2008-06-28 22:16:36 - machine was rebooted

ComboFix-quarantined-files.txt 2008-06-28 20:16:33

ComboFix2.txt 2008-06-28 11:13:47

ComboFix3.txt 2008-06-28 09:08:35

ComboFix4.txt 2008-06-02 17:29:37

Pre-Run: 148,462,436,352 bytes beschikbaar

Post-Run: 150,860,087,296 bytes beschikbaar

404 --- E O F --- 2007-12-28 14:27:14

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

OK, bekijk het nog even hoe het de volgende dagen loopt ... en geef dan daarna terug een seintje. Want er moeten nog wat opruimingen gebeuren van gebruikte programma's, e.d. Maar daar beginnen we pas aan als alles OK is.

Link naar reactie
Delen op andere sites
filkill Vergevorderde

filkill

Geplaatst:
  • Auteur
Geplaatst:

Ik heb nog een vraag na deze stappen gedaan te hebben krijg ik bij het opstarten dit bericht en als ik op kruisje of cancel druk komt er een fout melding en begint een balkje te lopen en als dat gedaan is komt het terug bij dat vorige scherm uit.

post-1991-1417703753,5997_thumb.png

Link naar reactie
Delen op andere sites
Gast
Dit topic is nu gesloten voor nieuwe reacties.
 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.