Ga naar inhoud

traag opstarten

danthius

Door danthius
in Archief Windows Algemeen

 Delen

Aanbevolen berichten

danthius Meewerkend lid

danthius

Geplaatst:
Geplaatst:

dag iedereen,

ik heb mijn vista een weekje geleden opnieuw geinstalleerd maar ik vind dat hij echt langzaam opstart ik heb een AMD phenom QuadCore met 2.6Ghz en 5 GB ram zou toch voldoende moeten zijn

hier het logje

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 14:36:12, on 31/07/2009

Platform: Windows Vista SP2 (WinNT 6.00.1906)

MSIE: Internet Explorer v8.00 (8.00.6001.18813)

Boot mode: Normal

Running processes:

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Windows Defender\MSASCui.exe

C:\Program Files\Logitech\G-series Software\LGDCore.exe

C:\Program Files\Logitech\G-series Software\LCDMon.exe

C:\Program Files\AVG\AVG8\avgtray.exe

C:\Program Files\BOINC\boinctray.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\Logitech\G-series Software\Applets\LCDMedia.exe

C:\Program Files\Logitech\G-series Software\Applets\LCDClock.exe

C:\Program Files\Rockstar Games\Rockstar Games Social Club\1_0_0_0\RGSC.exe

C:\Windows\system32\conime.exe

C:\Program Files\Windows Live\Contacts\wlcomm.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\system32\Macromed\Flash\FlashUtil10b.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O1 - Hosts: ::1 localhost

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [Launch LGDCore] "C:\Program Files\Logitech\G-series Software\LGDCore.exe" /SHOWHIDE

O4 - HKLM\..\Run: [Launch LCDMon] "C:\Program Files\Logitech\G-series Software\LCDMon.exe"

O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe

O4 - HKLM\..\Run: [boincmgr] "C:\Program Files\BOINC\boincmgr.exe" /a /s

O4 - HKLM\..\Run: [boinctray] "C:\Program Files\BOINC\boinctray.exe"

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [RGSC] C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O13 - Gopher Prefix:

O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - http://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.5.0.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll

O20 - AppInit_DLLs: avgrsstx.dll

O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe

O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe

O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--

End of file - 5710 bytes

hopenlijk helpt het een beetje :-)

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Voor een clean install ziet dit logje er nog erg clean uit. Deze "schoonheidsfoutjes" mag je verwijderen :

Start Hijackthis op. Ben je gebruiker van Vista kies dan voor “Run as administrator" of "Uitvoeren als administrator". Selecteer “Do a system scan only”. Selecteer alleen de items die hieronder zijn genoemd:

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)

O16 - DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} (DLM Control) - http://dlm.tools.akamai.com/dlmanage...ex-2.2.5.0.cab

Klik op 'Fix checked' om de items te verwijderen.

Verder niets aan de hand in dit log. Voor de traagheid kan je hier wat extra tips vinden.

Link naar reactie
Delen op andere sites
danthius Meewerkend lid

danthius

Geplaatst:
  • Auteur
Geplaatst:

nu ziet het logje er zo uit

Logfile of Trend Micro HijackThis v2.0.2

Scan saved at 15:16:58, on 31/07/2009

Platform: Windows Vista SP2 (WinNT 6.00.1906)

MSIE: Internet Explorer v8.00 (8.00.6001.18813)

Boot mode: Normal

Running processes:

C:\Windows\system32\taskeng.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Program Files\Windows Defender\MSASCui.exe

C:\Program Files\Logitech\G-series Software\LGDCore.exe

C:\Program Files\Logitech\G-series Software\LCDMon.exe

C:\Program Files\AVG\AVG8\avgtray.exe

C:\Program Files\BOINC\boinctray.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\Windows Live\Messenger\msnmsgr.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\Logitech\G-series Software\Applets\LCDMedia.exe

C:\Program Files\Logitech\G-series Software\Applets\LCDClock.exe

C:\Program Files\Rockstar Games\Rockstar Games Social Club\1_0_0_0\RGSC.exe

C:\Windows\system32\conime.exe

C:\Program Files\Windows Live\Contacts\wlcomm.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Windows\system32\Macromed\Flash\FlashUtil10b.exe

C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

O1 - Hosts: ::1 localhost

O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll

O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide

O4 - HKLM\..\Run: [Launch LGDCore] "C:\Program Files\Logitech\G-series Software\LGDCore.exe" /SHOWHIDE

O4 - HKLM\..\Run: [Launch LCDMon] "C:\Program Files\Logitech\G-series Software\LCDMon.exe"

O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe

O4 - HKLM\..\Run: [boincmgr] "C:\Program Files\BOINC\boincmgr.exe" /a /s

O4 - HKLM\..\Run: [boinctray] "C:\Program Files\BOINC\boinctray.exe"

O4 - HKCU\..\Run: [sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun

O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

O4 - HKCU\..\Run: [RGSC] C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent

O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')

O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')

O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll

O13 - Gopher Prefix:

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll

O20 - AppInit_DLLs: avgrsstx.dll

O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe

O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe

O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe

O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\Windows\system32\IoctlSvc.exe

O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--

End of file - 5371 bytes

het is echt wat traagjes als de pc mijn sidebar en windows live messenger wilt openen

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Logje is prima ... gaan we nog even verder kijken (al wijst hier niets echt op malware). Maar je weet maar nooit :

Download Combofix naar je Bureaublad.

Lees hier meer over correct gebruik van Combofix.

OPMERKING: indien je, tijdens of na het downloaden van Combofix of tijdens het gebruik van Combofix een melding krijgt van je Antivirus- of een andere realtime scanner, schakel dan deze scanner uit en download Combofix opnieuw.

Sommige scanners zien bepaalde componenten die Combofix gebruikt als verdacht en gaan deze blokkeren of verwijderen!

  • Dubbelklik op Combofix.exe om het te starten.
    Indien je Combofix al eerder hebt gebruikt, kan je een waarschuwing krijgen dat een update beschikbaar is. Sta toe dat ComboFix wordt geupdate.
    Volg de instructies, aanvaard de disclaimer door op Ja te klikken.
    Indien de Recovery Console niet geïnstalleerd is, wordt je gevraagd om dit alsnog te doen door op JA te klikken in het "Query - Recovery Console" venster (enkel voor XP, niet voor VISTA).
    Klik op OK en Ja om automatisch de Recovery Console te laten installeren.
    Klik na afloop terug op Ja om het scannen op malware te starten.
    Tijdens het runnen van de fix, NIET in het venster klikken, want dit zal je pc doen vasthangen.

Wanneer de fix voltooid is en na herstart, zal de log Combofix.txt openen.

Post dit logje in je volgende antwoord.

Link naar reactie
Delen op andere sites
danthius Meewerkend lid

danthius

Geplaatst:
  • Auteur
Geplaatst:

ik heb het laten doen

dit is het logje

ComboFix 09-07-31.01 - Van de Voorde Daniel 31/07/2009 20:31.1.4 - NTFSx86

Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.32.1043.18.3070.2227 [GMT 2:00]

Gestart vanuit: F:\ComboFix.exe

AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}

SP: AVG Anti-Virus Free *enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}

SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}

.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))

.

c:\$recycle.bin\S-1-5-21-2152478756-3922319563-605102323-500

c:\users\Van de Voorde Daniel\AppData\Local\Temp\catchme.dll

c:\users\VANDEV~1\AppData\Local\Temp\catchme.dll

.

(((((((((((((((((((( Bestanden Gemaakt van 2009-06-28 to 2009-07-31 ))))))))))))))))))))))))))))))

.

2009-07-31 18:47 . 2009-07-31 18:47 -------- d-----w- c:\users\Van de Voorde Daniel\AppData\Local\temp

2009-07-31 12:35 . 2009-07-31 12:35 -------- d-----w- c:\program files\Trend Micro

2009-07-31 12:23 . 2009-07-31 12:23 88 ----a-w- c:\programdata\BOINC\slots\0\libfftw3f-3-1-1a_upx.dll

2009-07-31 12:23 . 2009-07-31 12:23 74 ----a-w- c:\programdata\BOINC\slots\0\cudart.dll

2009-07-31 12:23 . 2009-07-31 12:23 73 ----a-w- c:\programdata\BOINC\slots\0\cufft.dll

2009-07-31 12:23 . 2009-07-31 12:23 106 ----a-w- c:\programdata\BOINC\slots\0\setiathome_6.08_windows_intelx86__cuda.exe

2009-07-30 19:23 . 2009-07-30 19:23 -------- d-----w- c:\windows\system32\Macromed

2009-07-29 13:49 . 2009-07-29 13:49 389120 ----a-w- c:\programdata\BOINC\projects\www.gpugrid.net\cufft.dll

2009-07-29 13:49 . 2009-07-29 13:49 192512 ----a-w- c:\programdata\BOINC\projects\www.gpugrid.net\cudart.dll

2009-07-29 13:49 . 2009-07-29 13:49 999424 ----a-w- c:\programdata\BOINC\projects\www.gpugrid.net\acemd_6.64_windows_intelx86__cuda.exe

2009-07-29 13:49 . 2009-07-29 13:49 819200 ----a-w- c:\programdata\BOINC\projects\www.gpugrid.net\tcl85.dll

2009-07-29 13:36 . 2009-07-29 13:36 88 ----a-w- c:\programdata\BOINC\slots\2\libfftw3f-3-1-1a_upx.dll

2009-07-29 13:36 . 2009-07-29 13:36 100 ----a-w- c:\programdata\BOINC\slots\2\setiathome_6.03_windows_intelx86.exe

2009-07-29 13:36 . 2009-07-29 13:36 406016 ----a-w- c:\programdata\BOINC\projects\setiathome.berkeley.edu\setiathome_6.03_windows_intelx86.exe

2009-07-29 13:36 . 2009-07-29 13:36 267776 ----a-w- c:\programdata\BOINC\projects\setiathome.berkeley.edu\setigraphics_6.03_windows_intelx86.exe

2009-07-29 13:36 . 2009-07-29 13:36 448600 ----a-w- c:\programdata\BOINC\projects\setiathome.berkeley.edu\libfftw3f-3-1-1a_upx.dll

2009-07-29 13:35 . 2009-07-29 13:36 389120 ----a-w- c:\programdata\BOINC\projects\setiathome.berkeley.edu\cufft.dll

2009-07-29 13:35 . 2009-07-29 13:36 1445888 ----a-w- c:\programdata\BOINC\projects\setiathome.berkeley.edu\setiathome_6.08_windows_intelx86__cuda.exe

2009-07-29 13:35 . 2009-07-29 13:35 192512 ----a-w- c:\programdata\BOINC\projects\setiathome.berkeley.edu\cudart.dll

2009-07-29 13:27 . 2009-07-31 12:31 -------- d-----w- c:\programdata\BOINC

2009-07-29 13:27 . 2009-07-29 13:29 -------- d-----w- c:\program files\BOINC

2009-07-29 13:25 . 2009-07-29 13:25 -------- d-----w- c:\windows\Downloaded Installations

2009-07-29 13:23 . 2009-07-29 13:24 -------- d-----w- c:\users\Van de Voorde Daniel\AppData\Roaming\Download Manager

2009-07-27 21:17 . 2009-07-27 21:17 -------- d--h--r- c:\users\Van de Voorde Daniel\AppData\Roaming\SecuROM

2009-07-27 21:16 . 2009-07-27 21:18 -------- d-----w- c:\users\Van de Voorde Daniel\AppData\Local\Rockstar Games

2009-07-27 21:12 . 2009-07-27 21:12 107888 ----a-w- c:\windows\system32\CmdLineExt.dll

2009-07-27 21:11 . 2009-07-27 21:11 -------- d-----w- c:\windows\system32\xlive

2009-07-27 21:11 . 2009-07-27 21:11 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE

2009-07-27 13:49 . 2009-07-27 13:50 -------- d-----w- c:\program files\Common Files\Ahead

2009-07-27 13:49 . 2009-07-27 13:49 -------- d-----w- c:\programdata\Nero

2009-07-27 13:23 . 2009-07-27 13:51 -------- d-----w- c:\users\Van de Voorde Daniel\AppData\Roaming\Ahead

2009-07-27 11:03 . 2009-07-27 11:03 -------- d-----w- c:\program files\Rockstar Games

2009-07-27 10:48 . 2009-07-27 10:48 161233 ----a-w- c:\windows\Expstudio Audio Editor FREE Uninstaller.exe

2009-07-27 10:48 . 2009-07-27 10:48 -------- d-----w- c:\windows\system32\EXP

2009-07-27 10:48 . 2009-07-27 10:48 -------- d-----w- c:\program files\Expstudio

2009-07-27 10:41 . 2009-07-27 10:41 -------- d-----w- c:\users\Van de Voorde Daniel\AppData\Roaming\Free Sound Recorder

2009-07-27 10:40 . 2005-05-18 09:52 1212416 ----a-w- c:\windows\system32\NCTAudioInformation2.dll

2009-07-27 10:40 . 2005-05-17 10:37 1986560 ----a-w- c:\windows\system32\NCTAudioFile2.dll

2009-07-27 10:40 . 2005-04-25 11:01 458752 ----a-w- c:\windows\system32\NCTAudioRecord2.dll

2009-07-27 10:40 . 2005-04-25 11:01 458752 ----a-w- c:\windows\system32\NCTAudioPlayer2.dll

2009-07-27 10:40 . 2005-04-15 10:08 880640 ----a-w- c:\windows\system32\NCTAudioEditor2.dll

2009-07-27 10:40 . 2005-04-04 15:21 602112 ----a-w- c:\windows\system32\NCTAudioTransform2.dll

2009-07-27 10:40 . 2005-03-28 13:54 479232 ----a-w- c:\windows\system32\NCTAudioVisualization2.dll

2009-07-27 10:40 . 2005-03-28 13:52 417792 ----a-w- c:\windows\system32\NCTTextToAudio2.dll

2009-07-27 10:40 . 2005-02-24 09:51 348160 ----a-w- c:\windows\system32\NCTWMAFile2.dll

2009-07-27 10:40 . 2004-11-04 11:31 835584 ----a-w- c:\windows\system32\NCTAudioCDGrabber2.dll

2009-07-27 10:40 . 2002-01-05 14:37 344064 ----a-w- c:\windows\system32\msvcr70.dll

2009-07-27 10:33 . 2009-07-27 10:33 -------- d-----w- c:\program files\Common Files\PX Storage Engine

2009-07-27 10:33 . 2009-07-27 10:33 -------- d-----w- c:\program files\Common Files\DivX Shared

2009-07-27 10:33 . 2009-07-27 10:33 -------- d-----w- c:\program files\DivX

2009-07-27 09:24 . 2009-07-31 12:15 -------- d-----w- c:\program files\Microsoft Silverlight

2009-07-27 09:23 . 2009-07-27 09:23 -------- d-----w- c:\program files\MSXML 4.0

2009-07-27 00:02 . 2009-07-27 13:23 -------- d-----w- c:\users\Van de Voorde Daniel\AppData\Local\Ahead

2009-07-26 23:59 . 2009-07-26 23:59 -------- d-----w- c:\programdata\Ahead

2009-07-26 23:57 . 2009-07-26 23:57 -------- d-----w- c:\program files\Nero

2009-07-26 23:41 . 2009-07-27 11:04 -------- d--h--w- c:\program files\InstallShield Installation Information

2009-07-26 23:41 . 2009-07-26 23:41 -------- d-----w- c:\program files\The Game Creators

2009-07-26 23:41 . 2008-03-13 15:05 390432 ------w- c:\windows\system32\NxCooking.dll

2009-07-26 23:41 . 2008-03-13 15:05 124192 ------w- c:\windows\system32\NxCharacter.dll

2009-07-26 23:41 . 2008-03-13 15:05 118784 ------w- c:\windows\system32\NxExtensions.dll

2009-07-26 23:39 . 2009-07-26 23:39 139264 ----a-r- c:\users\Van de Voorde Daniel\AppData\Roaming\Microsoft\Installer\{8A0696EB-C0F9-4B36-B0BC-71CC704FA768}\NewShortcut31_8A0696EBC0F94B36B0BC71CC704FA768.exe

2009-07-26 23:39 . 2009-07-26 23:39 139264 ----a-r- c:\users\Van de Voorde Daniel\AppData\Roaming\Microsoft\Installer\{8A0696EB-C0F9-4B36-B0BC-71CC704FA768}\NewShortcut111_8A0696EBC0F94B36B0BC71CC704FA768.exe

2009-07-26 23:39 . 2009-07-26 23:39 10134 ----a-r- c:\users\Van de Voorde Daniel\AppData\Roaming\Microsoft\Installer\{8A0696EB-C0F9-4B36-B0BC-71CC704FA768}\ARPPRODUCTICON.exe

2009-07-26 23:38 . 2009-07-26 23:38 -------- d-----w- c:\program files\Crazy Machines II + Demo

2009-07-26 23:29 . 2009-07-26 23:29 413696 ----a-w- c:\windows\system32\wrap_oal.dll

2009-07-26 23:29 . 2009-07-26 23:29 110592 ----a-w- c:\windows\system32\OpenAL32.dll

2009-07-26 23:29 . 2009-07-26 23:29 -------- d-----w- c:\program files\OpenAL

2009-07-26 23:29 . 2009-07-26 23:29 -------- d-----w- c:\windows\D56B0E274A3E46C9B5C1D93D580C099C.TMP

2009-07-26 23:28 . 2009-07-26 23:41 -------- d-----w- c:\program files\Common Files\InstallShield

2009-07-26 23:21 . 2009-07-26 23:01 10520 ----a-w- c:\programdata\avg8\update\backup\avgrsstx.dll

2009-07-26 23:21 . 2009-07-26 23:01 69128 ----a-w- c:\programdata\avg8\update\backup\avgwfpx.sys

2009-07-26 23:21 . 2009-07-26 23:01 97928 ----a-w- c:\programdata\avg8\update\backup\avgldx86.sys

2009-07-26 23:21 . 2009-07-26 23:01 287000 ----a-w- c:\programdata\avg8\update\backup\avgrsx.exe

2009-07-26 23:21 . 2009-07-26 23:01 26824 ----a-w- c:\programdata\avg8\update\backup\avgmfx86.sys

2009-07-26 23:21 . 2009-07-26 23:21 108552 ----a-w- c:\windows\system32\drivers\avgtdix.sys

2009-07-26 23:19 . 2009-07-31 12:18 -------- d-----w- c:\users\Van de Voorde Daniel\Tracing

2009-07-26 23:18 . 2009-07-26 23:01 641304 ----a-w- c:\programdata\avg8\update\backup\avgupd.exe

2009-07-26 23:18 . 2009-07-26 23:01 443672 ----a-w- c:\programdata\avg8\update\backup\avgiproxy.exe

2009-07-26 23:18 . 2009-07-26 23:01 1082624 ----a-w- c:\programdata\avg8\update\backup\avgupd.dll

2009-07-26 23:18 . 2009-07-26 23:01 583960 ----a-w- c:\programdata\avg8\update\backup\avginet.dll

2009-07-26 23:16 . 2006-11-29 11:06 3426072 ----a-w- c:\windows\system32\d3dx9_32.dll

2009-07-26 23:16 . 2009-07-26 23:16 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition

2009-07-26 23:16 . 2009-07-26 23:16 -------- d-----w- c:\program files\Microsoft

2009-07-26 23:16 . 2009-07-26 23:16 -------- d-----w- c:\program files\Windows Live SkyDrive

2009-07-26 23:15 . 2009-07-26 23:17 -------- d-----w- c:\program files\Windows Live

2009-07-26 23:15 . 2009-07-26 23:15 -------- d-----w- c:\windows\PCHEALTH

2009-07-26 23:13 . 2008-09-16 19:23 168448 ----a-w- c:\windows\system32\unrar.dll

2009-07-26 23:13 . 2009-05-29 21:37 205824 ----a-w- c:\windows\system32\xvidvfw.dll

2009-07-26 23:13 . 2009-05-29 21:31 881664 ----a-w- c:\windows\system32\xvidcore.dll

2009-07-26 23:13 . 2004-01-25 16:18 217088 ----a-w- c:\windows\system32\yv12vfw.dll

2009-07-26 23:13 . 2009-05-01 21:02 90112 ----a-w- c:\windows\system32\dpl100.dll

2009-07-26 23:13 . 2008-11-06 16:37 3596288 ----a-w- c:\windows\system32\qt-dx331.dll

2009-07-26 23:13 . 2009-06-02 16:11 85504 ----a-w- c:\windows\system32\ff_vfw.dll

2009-07-26 23:13 . 2009-07-26 23:17 -------- d-----w- c:\program files\K-Lite Codec Pack

2009-07-26 23:13 . 2004-01-11 22:00 348160 ----a-w- c:\windows\system32\msvcr71.dll

2009-07-26 23:08 . 2009-07-26 23:08 -------- d-----w- c:\program files\Common Files\Windows Live

2009-07-26 23:04 . 2009-07-26 23:06 -------- d-----w- c:\program files\QuickTime

2009-07-26 23:04 . 2009-07-26 23:04 -------- d-----w- c:\programdata\Apple Computer

2009-07-26 23:04 . 2009-07-26 23:04 -------- d-----w- c:\users\Van de Voorde Daniel\AppData\Local\Apple

2009-07-26 23:03 . 2009-07-26 23:03 -------- d-----w- c:\program files\Apple Software Update

2009-07-26 23:03 . 2009-07-26 23:03 -------- d-----w- c:\programdata\Apple

2009-07-26 23:01 . 2009-07-26 23:21 11952 ----a-w- c:\windows\system32\avgrsstx.dll

2009-07-26 23:01 . 2009-07-26 23:21 335752 ----a-w- c:\windows\system32\drivers\avgldx86.sys

2009-07-26 23:01 . 2009-07-26 23:21 27784 ----a-w- c:\windows\system32\drivers\avgmfx86.sys

2009-07-26 23:01 . 2009-07-31 12:17 -------- d-----w- c:\windows\system32\drivers\Avg

2009-07-26 23:01 . 2009-07-26 23:01 -------- d-----w- c:\program files\AVG

2009-07-26 23:01 . 2009-07-26 23:21 -------- d-----w- c:\programdata\avg8

2009-07-26 22:59 . 2009-07-26 22:59 -------- d-----w- c:\users\Van de Voorde Daniel\AppData\Local\Logitech

2009-07-26 22:59 . 2009-07-26 22:59 -------- d-----w- c:\programdata\Logitech

2009-07-26 22:59 . 2009-07-26 22:59 -------- d-----w- c:\program files\Logitech

2009-07-26 22:47 . 2009-07-26 22:47 -------- d-----w- c:\windows\system32\ca-ES

2009-07-26 22:47 . 2009-07-26 22:47 -------- d-----w- c:\windows\system32\eu-ES

2009-07-26 22:47 . 2009-07-26 22:47 -------- d-----w- c:\windows\system32\vi-VN

2009-07-26 22:41 . 2009-07-26 22:41 -------- d-----w- c:\windows\system32\EventProviders

2009-07-26 22:40 . 2009-04-11 05:03 12240896 ----a-w- c:\windows\system32\NlsLexicons0007.dll

2009-07-26 22:40 . 2009-04-11 06:28 1081344 ----a-w- c:\windows\system32\SLCExt.dll

2009-07-26 22:40 . 2009-04-11 06:27 3408896 ----a-w- c:\windows\system32\SLsvc.exe

2009-07-26 22:40 . 2009-04-11 06:28 2134528 ----a-w- c:\windows\system32\FunctionDiscoveryFolder.dll

2009-07-26 22:40 . 2009-04-11 06:27 65536 ----a-w- c:\windows\system32\DevicePairingWizard.exe

2009-07-26 22:40 . 2009-04-11 05:03 2644480 ----a-w- c:\windows\system32\NlsLexicons0009.dll

2009-07-26 22:40 . 2009-04-11 06:28 1480704 ----a-w- c:\windows\system32\mssrch.dll

2009-07-26 22:40 . 2009-04-11 02:52 684032 ----a-w- c:\windows\system32\drivers\spsys.sys

2009-07-26 22:38 . 2009-04-11 06:28 657408 ----a-w- c:\windows\system32\WMVXENCD.DLL

2009-07-26 22:19 . 2008-05-27 04:59 18904 ----a-w- c:\windows\system32\StructuredQuerySchemaTrivial.bin

2009-07-26 22:04 . 2009-07-26 22:04 -------- d-----w- C:\PerfLogs

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2009-07-31 12:22 . 2006-11-02 16:11 667114 ----a-w- c:\windows\system32\perfh013.dat

2009-07-31 12:22 . 2006-11-02 16:11 126648 ----a-w- c:\windows\system32\perfc013.dat

2009-07-26 23:25 . 2009-07-26 23:25 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_00_00.Wdf

2009-07-26 22:47 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Calendar

2009-07-26 22:47 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Sidebar

2009-07-26 22:47 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Photo Gallery

2009-07-26 22:47 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Journal

2009-07-26 22:47 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Defender

2009-07-26 22:47 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Collaboration

2009-07-26 22:47 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail

2009-07-26 22:47 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat

2009-07-26 22:43 . 2006-11-02 12:37 37665 ----a-w- c:\windows\Fonts\GlobalUserInterface.CompositeFont

2009-07-26 21:56 . 2006-11-02 10:32 101888 ----a-w- c:\windows\system32\ifxcardm.dll

2009-07-26 21:56 . 2006-11-02 10:32 82432 ----a-w- c:\windows\system32\axaltocm.dll

2009-07-26 17:38 . 2009-07-26 17:38 680 ----a-w- c:\users\Van de Voorde Daniel\AppData\Local\d3d9caps.dat

2009-07-26 17:38 . 2009-07-26 17:38 48600 ----a-w- c:\users\Van de Voorde Daniel\AppData\Local\GDIPFONTCACHEV1.DAT

2009-07-21 21:52 . 2009-07-29 10:10 915456 ----a-w- c:\windows\system32\wininet.dll

2009-07-21 21:47 . 2009-07-29 10:10 109056 ----a-w- c:\windows\system32\iesysprep.dll

2009-07-21 21:47 . 2009-07-29 10:10 71680 ----a-w- c:\windows\system32\iesetup.dll

2009-07-21 20:13 . 2009-07-29 10:10 133632 ----a-w- c:\windows\system32\ieUnatt.exe

2009-07-14 18:54 . 2009-07-26 17:40 4224 ----a-w- c:\windows\system32\drivers\nvBridge.kmd

2009-05-05 13:15 . 2009-05-05 13:15 828160 ----a-w- c:\windows\boinc.scr

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]

"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-02-06 3885408]

"RGSC"="c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" [2008-11-14 305064]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-19 1008184]

"Launch LGDCore"="c:\program files\Logitech\G-series Software\LGDCore.exe" [2006-03-06 1122304]

"Launch LCDMon"="c:\program files\Logitech\G-series Software\LCDMon.exe" [2006-03-06 497152]

"AVG8_TRAY"="c:\progra~1\AVG\AVG8\avgtray.exe" [2009-07-26 1948440]

"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-05-26 413696]

"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2008-05-28 570664]

"boincmgr"="c:\program files\BOINC\boincmgr.exe" [2009-05-05 4178688]

"boinctray"="c:\program files\BOINC\boinctray.exe" [2009-05-05 58112]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]

"AppInit_DLLs"=c:\windows\System32\avgrsstx.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"mixer1"=wdmaud.drv

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]

@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]

"VistaSp2"=hex(B):cb,a7,f9,b4,43,0e,ca,01

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]

"{9DFD0D4F-337C-47A7-9126-1C1F164E681D}"= c:\program files\AVG\AVG8\avgemc.exe:avgemc.exe

"{F440EB77-E7A8-47C1-9330-F934C9D4AFB0}"= c:\program files\AVG\AVG8\avgupd.exe:avgupd.exe

"{57218690-B6C4-4257-AC42-2BC6493C1A4E}"= c:\program files\Windows Live\Sync\WindowsLiveSync.exe:Windows Live Sync

"{49D6218A-ABA0-47AA-8FBC-190B28FA8E79}"= UDP:c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:Rockstar Games Social Club

"{4D3297CF-346E-4D51-987D-C563D70771CF}"= TCP:c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:Rockstar Games Social Club

"{BB1B2BE8-811E-4CCF-BB5A-9CDC9545E7CC}"= UDP:d:\gta4\Grand Theft Auto IV\LaunchGTAIV.exe:Grand Theft Auto IV

"{9B9731DF-B387-4F96-BF5D-AB3840ED2E1A}"= TCP:d:\gta4\Grand Theft Auto IV\LaunchGTAIV.exe:Grand Theft Auto IV

"TCP Query User{252F2CA3-508A-4653-8ECD-5F14C38C13D1}d:\\gta4\\grand theft auto iv\\gtaiv.exe"= UDP:d:\gta4\grand theft auto iv\gtaiv.exe:Grand Theft Auto IV

"UDP Query User{C102DE57-01D5-42CE-AD0A-23A7B78A1D9D}d:\\gta4\\grand theft auto iv\\gtaiv.exe"= TCP:d:\gta4\grand theft auto iv\gtaiv.exe:Grand Theft Auto IV

R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\System32\drivers\avgldx86.sys [27/07/2009 1:01 335752]

R1 AvgTdiX;AVG8 Network Redirector;c:\windows\System32\drivers\avgtdix.sys [27/07/2009 1:21 108552]

R2 avg8emc;AVG Free8 E-mail Scanner;c:\progra~1\AVG\AVG8\avgemc.exe [27/07/2009 1:21 907032]

R2 avg8wd;AVG Free8 WatchDog;c:\progra~1\AVG\AVG8\avgwdsvc.exe [27/07/2009 1:21 298776]

R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [14/07/2009 12:28 239648]

R3 Ph3xIB32;Philips 713x Inbox PCI TV Card;c:\windows\System32\drivers\Ph3xIB32.sys [3/04/2007 10:43 1131136]

R3 SMCWGU(SMC);SMCWUSB-G 802.11g Wireless USB 2.0 Adapter(SMC);c:\windows\System32\drivers\SMCWGU.sys [26/07/2009 19:41 408064]

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]

"c:\windows\System32\rundll32.exe" "c:\windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP

.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover

Rootkit scan 2009-07-31 20:47

Windows 6.0.6002 Service Pack 2 NTFS

scannen van verborgen processen ...

scannen van verborgen autostart items ...

scannen van verborgen bestanden ...

Scan succesvol afgerond

verborgen bestanden: 0

**************************************************************************

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

[HKEY_USERS\S-1-5-21-2220337262-2446619327-1206446518-1000\Software\SecuROM\License information*]

"datasecu"=hex:24,2e,d2,92,71,6d,0b,52,4e,3c,83,59,05,44,a8,b0,92,e1,c4,d4,a8,

8b,71,a5,cc,8b,25,de,d4,0b,d1,ba,39,1a,3c,c4,f8,fc,b5,0b,d2,c8,29,eb,3a,67,\

"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98

.

Voltooingstijd: 2009-07-31 20:49

ComboFix-quarantined-files.txt 2009-07-31 18:49

Pre-Run: 45.777.448.960 bytes beschikbaar

Post-Run: 45.950.652.416 bytes beschikbaar

235 --- E O F --- 2009-07-31 17:59

Link naar reactie
Delen op andere sites
 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.