Ga naar inhoud

patrickvan71

Lid
 Bekijk profiel  Bekijk hun activiteit

  • Items

    155

  • Registratiedatum

  • Laatst bezocht

 Inhoudstype 

Alles dat geplaatst werd door patrickvan71

  1. patrickvan71
    Preview-T-5933793-u got 2 know dj rebel hot new track.mp3C:\Documents and Settings\HP_Eigenaar.UW-4B58D8528225.007\Mijn documenten\Mijn muziek\IncompleteTrojan.WMALoaderGerepareerd.T-5933793-u got 2 know dj rebel hot new track.mp3C:\Documents and Settings\HP_Eigenaar.UW-4B58D8528225.007\Mijn documenten\Mijn muziek\IncompleteTrojan.WMALoaderGerepareerd.FindyKill[1].exe\data014C:\Documents and Settings\HP_Eigenaar.UW-4B58D8528225.010\Local Settings\Temporary Internet Files\Content.IE5\PKLVIL8C\FindyKilTool.ProckillFindyKill[1].exeC:\Documents and Settings\HP_Eigenaar.UW-4B58D8528225.010\Local Settings\Temporary Internet Files\Content.IE5\PKLVIL8CContainer contains infected objectsVerplaatst.KillWind.exeC:\hp\binTool.ProcessKillVerplaatst.hldrrr.exeC:\Program Files\FindyKill\ToolsTool.ProcessKill.7Verplaatst.wintems.exeC:\Program Files\FindyKill\ToolsTool.ProckillVerplaatst.A0028084.exeC:\System Volume Information\_restore{89F3906E-EC2B-460B-AE11-2F9FAB20AC86}\RP239Tool.ProcessKillVerplaatst.
  2. patrickvan71
    heb het program geinstalleerd maar als ik het draai krijg ik een kader met foutmelding Een kader verschijnt met bovenaan in de blauwe balk Windows-Geen schijf in de balk exception Processing Message c 0000013 parameters 75b0bf7c 75b0bf7c 75b0bf7c Onder aan de kader staan 3 vakjes onderaan staan 3 keuzevakjes annuleren, opnieuw en doorgaan geen enkel van de vakjes gaan de foutmelding keert altijd terug
  3. patrickvan71
    heb avg verwijderd gekregen maar maakte geen verschil uit dan maar terug geinstaleerd pc is nu wel iets vlugger maar pagina's openen soms nog steeds moeilijk je hoort pc dan wel knarsen dat hij met iets bezig is maar pagina opend niet direkt
  4. patrickvan71
    hij is een heel pak sneller nu Ik vraag mij af of dat dit misschien komt omdat ik nu avg free antivirus heb Ik heb vroeger altijd norton 360 geinstalleerd gehad Nu kan ik zelfs avg free niet meer verwijderen zou ik misschien niet terug beter terug overschakelen naar norton of heeft dit er niets mee te maken.
  5. patrickvan71
    ComboFix 09-12-07.07 - HP_Eigenaar 08/12/2009 14:17.2.2 - x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.1023.536 [GMT 1:00] Gestart vanuit: c:\documents and settings\HP_Eigenaar.UW-4B58D8528225.010\Bureaublad\ComboFix.exe AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF} . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\documents and settings\HP_Eigenaar.UW-4B58D8528225.010\Application Data\Desktopicon c:\documents and settings\HP_Eigenaar.UW-4B58D8528225.010\Application Data\Desktopicon\eBay.ico c:\documents and settings\HP_Eigenaar.UW-4B58D8528225.010\Application Data\Desktopicon\uninst.exe . (((((((((((((((((((( Bestanden Gemaakt van 2009-11-08 to 2009-12-08 )))))))))))))))))))))))))))))) . 2010-10-17 10:00 . 2010-10-17 10:00 -------- d-----w- C:\9bfe8073ddcad9580456b772 2010-10-17 10:00 . 2010-10-17 10:04 -------- d-----w- C:\963d7796bcda1ddaf65528d43bd98c 2010-01-18 10:28 . 2010-01-18 10:28 -------- d-----w- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225.010\Application Data\HPQ 2010-01-18 10:04 . 2010-01-18 10:04 -------- d-----w- c:\program files\AVG 2010-01-18 09:52 . 2010-10-17 10:10 -------- d-----w- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225.010\Application Data\HpUpdate 2010-01-18 09:52 . 2010-01-18 09:52 -------- d-----w- c:\windows\Hewlett-Packard 2009-12-06 13:25 . 2009-12-06 13:25 4844296 ----a-w- c:\documents and settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\mbam-setup.exe 2009-11-27 13:54 . 2009-11-27 13:54 152576 ----a-w- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225.010\Application Data\Sun\Java\jre1.6.0_17\lzma.dll 2009-11-27 13:53 . 2009-11-27 13:53 79488 ----a-w- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225.010\Application Data\Sun\Java\jre1.6.0_17\gtapi.dll 2009-11-20 11:11 . 2009-11-13 18:57 497944 ----a-w- c:\documents and settings\All Users\Application Data\avg9\update\backup\avgchjwx.dll 2009-11-20 11:11 . 2009-11-13 18:57 3963648 ----a-w- c:\documents and settings\All Users\Application Data\avg9\update\backup\avgcorex.dll 2009-11-20 11:10 . 2009-11-13 18:57 877848 ----a-w- c:\documents and settings\All Users\Application Data\avg9\update\backup\avgupd.exe 2009-11-20 11:10 . 2009-11-13 18:57 1657112 ----a-w- c:\documents and settings\All Users\Application Data\avg9\update\backup\avgupd.dll 2009-11-13 19:00 . 2009-10-16 11:12 1119488 ----a-w- c:\documents and settings\All Users\Application Data\AVG Security Toolbar\IEToolbar.dll 2009-11-13 18:58 . 2009-11-14 10:21 -------- d-----w- C:\$AVG 2009-11-13 18:57 . 2009-11-13 18:57 360584 ----a-w- c:\windows\system32\drivers\avgtdix.sys 2009-11-13 18:57 . 2009-11-13 18:57 12464 ----a-w- c:\windows\system32\avgrsstx.dll 2009-11-13 18:57 . 2009-11-13 18:57 333192 ----a-w- c:\windows\system32\drivers\avgldx86.sys 2009-11-13 18:57 . 2009-11-13 18:57 28424 ----a-w- c:\windows\system32\drivers\avgmfx86.sys 2009-11-13 18:57 . 2009-12-08 13:09 -------- d-----w- c:\windows\system32\drivers\Avg 2009-11-13 18:57 . 2009-11-13 19:00 -------- d-----w- c:\documents and settings\All Users\Application Data\AVG Security Toolbar 2009-11-13 18:57 . 2009-12-08 13:08 -------- d-----w- c:\documents and settings\All Users\Application Data\avg9 2009-11-13 14:25 . 2009-11-13 14:25 -------- d-----w- c:\program files\Unlocker . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-01-18 09:53 . 2005-01-24 15:30 139264 ----a-w- c:\windows\system32\hpzjrd01.dll 2009-12-06 13:26 . 2009-11-01 19:23 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-12-03 15:14 . 2009-11-01 19:23 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-12-03 15:13 . 2009-11-01 19:23 19160 ----a-w- c:\windows\system32\drivers\mbam.sys 2009-11-27 13:55 . 2005-10-11 15:04 -------- d-----w- c:\program files\Java 2009-11-24 15:02 . 2009-07-30 17:57 -------- d-----w- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225.010\Application Data\HP 2009-11-22 10:42 . 2005-10-11 15:36 -------- d-----w- c:\program files\Common Files\Adobe 2009-11-17 11:46 . 2009-04-01 14:22 -------- d-----w- c:\program files\Windows Live 2009-11-07 18:56 . 2009-11-07 18:56 -------- d-----w- c:\program files\WIDCOMM 2009-11-01 20:28 . 2009-11-01 13:19 -------- d-----w- c:\program files\RegistryFix8 2009-11-01 19:23 . 2009-11-01 19:23 -------- d-----w- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225.010\Application Data\Malwarebytes 2009-11-01 19:23 . 2009-11-01 19:23 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2009-11-01 14:26 . 2009-11-01 14:26 -------- d-----w- c:\program files\Trend Micro 2009-11-01 12:57 . 2009-11-01 12:46 -------- d-----w- c:\program files\Ascentive 2009-11-01 11:46 . 2009-08-04 08:37 -------- d-----w- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225.010\Application Data\LimeWire 2009-10-28 06:18 . 2004-12-03 17:15 70546 ----a-w- c:\windows\system32\perfc013.dat 2009-10-28 06:18 . 2004-12-03 17:15 443836 ----a-w- c:\windows\system32\perfh013.dat 2009-10-11 03:17 . 2009-07-30 18:06 411368 ----a-w- c:\windows\system32\deploytk.dll 2009-10-09 14:50 . 2005-10-11 15:50 -------- d-----w- c:\program files\Common Files\Symantec Shared 2009-10-09 14:49 . 2005-10-11 15:49 -------- d-----w- c:\documents and settings\All Users\Application Data\Symantec 2009-10-08 09:31 . 2009-07-30 17:57 27464 ----a-w- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225.010\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2009-09-20 09:53 . 2008-01-29 10:01 26600 ----a-r- c:\windows\system32\drivers\GEARAspiWDM.sys 2009-09-20 09:53 . 2008-01-29 10:02 107368 ----a-r- c:\windows\system32\GEARAspi.dll 2009-09-11 14:20 . 2006-02-01 04:29 136192 ----a-w- c:\windows\system32\msv1_0.dll 2004-08-09 21:30 . 2006-07-05 20:03 40960 ----a-w- c:\program files\Uninstall_CDS.exe 2006-02-01 07:02 . 2006-01-31 23:02 22 -csha-w- c:\windows\SMINST\HPCD.sys . ((((((((((((((((((((((((((((( SnapShot@2009-11-07_21.15.32 ))))))))))))))))))))))))))))))))))))))))) . + 2009-12-08 13:06 . 2009-12-08 13:06 16384 c:\windows\Temp\Perflib_Perfdata_f4.dat - 2009-07-30 18:05 . 2009-07-14 11:03 46080 c:\windows\system32\tzchange.exe + 2009-07-30 18:05 . 2009-10-28 15:07 46080 c:\windows\system32\tzchange.exe - 2009-11-07 12:29 . 2005-03-04 12:10 74496 c:\windows\system32\ReinstallBackups\0005\DriverFiles\Rtlnicxp.sys + 2009-11-08 16:34 . 2005-03-04 12:10 74496 c:\windows\system32\ReinstallBackups\0005\DriverFiles\Rtlnicxp.sys + 2009-11-25 19:00 . 2009-11-25 19:00 32768 c:\windows\Installer\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}\icon.exe + 2009-02-26 20:25 . 2009-11-12 19:02 90112 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\xlicons.exe - 2009-02-26 20:25 . 2009-11-14 06:45 90112 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\xlicons.exe + 2009-02-26 20:25 . 2009-11-12 19:02 45056 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\wordicon.exe - 2009-02-26 20:25 . 2009-11-14 06:45 45056 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\wordicon.exe + 2009-02-26 20:25 . 2009-11-12 19:02 22528 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\unbndico.exe - 2009-02-26 20:25 . 2009-11-14 06:45 22528 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\unbndico.exe + 2009-02-26 20:25 . 2009-11-12 19:02 30720 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\pptico.exe - 2009-02-26 20:25 . 2009-11-14 06:45 30720 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\pptico.exe + 2009-02-26 20:25 . 2009-11-12 19:02 16384 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\PEicons.exe - 2009-02-26 20:25 . 2009-11-14 06:45 16384 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\PEicons.exe - 2009-02-26 20:25 . 2009-11-14 06:45 34304 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\misc.exe + 2009-02-26 20:25 . 2009-11-12 19:02 34304 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\misc.exe + 2009-02-26 20:25 . 2009-11-12 19:02 3584 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\opwicon.exe - 2009-02-26 20:25 . 2009-11-14 06:45 3584 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\opwicon.exe + 2009-02-26 20:25 . 2009-11-12 19:02 8192 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\mspicons.exe - 2009-02-26 20:25 . 2009-11-14 06:45 8192 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\mspicons.exe - 2009-02-26 20:25 . 2009-11-14 06:45 2560 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\cagicon.exe + 2009-02-26 20:25 . 2009-11-12 19:02 2560 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\cagicon.exe - 2008-07-25 10:16 . 2006-12-22 10:28 271360 c:\windows\system32\mscoree.dll + 2006-12-22 10:28 . 2006-12-22 10:28 271360 c:\windows\system32\mscoree.dll - 2009-08-09 21:57 . 2009-07-25 03:23 149280 c:\windows\system32\javaws.exe + 2009-11-27 13:55 . 2009-10-11 03:17 149280 c:\windows\system32\javaws.exe - 2009-08-09 21:57 . 2009-07-25 03:23 145184 c:\windows\system32\javaw.exe + 2009-11-27 13:55 . 2009-10-11 03:17 145184 c:\windows\system32\javaw.exe - 2009-08-09 21:57 . 2009-07-25 03:23 145184 c:\windows\system32\java.exe + 2009-11-27 13:55 . 2009-10-11 03:17 145184 c:\windows\system32\java.exe + 2004-12-03 17:12 . 2009-11-12 19:18 132480 c:\windows\system32\FNTCACHE.DAT - 2004-12-03 17:12 . 2009-08-01 07:52 132480 c:\windows\system32\FNTCACHE.DAT + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\ce18a90.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\ce18a8f.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\ce18a8d.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\bac3c5f.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\bac3c5e.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\bac3c5c.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\a85a3c.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\a85a3b.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\a85a39.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\9c45ae9.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\9c45ae8.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\9c45ae6.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\8fbf007.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\8fbf006.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\8fbf004.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\7bb4f95.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\7bb4f94.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\7bb4f92.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\7bb3084.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\7bb3083.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\7bb3081.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\706c7d3.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\706c7d2.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\706c7d0.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\6de8c91.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\6de8c90.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\6de8c8e.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\5cc8562.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\5cc8561.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\5cc855f.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\4f2080.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\4f207f.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\4f207d.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\4d5b7fd.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\4d5b7fc.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\4d5b7fa.msp + 2009-11-25 19:00 . 2009-11-25 19:00 429568 c:\windows\Installer\4bf17f.msi + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\4b7f1cb.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\4b7f1ca.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\4b7f1c8.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\45fecd0.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\45feccf.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\45feccd.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\295b08c.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\295b08b.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\295b089.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\23cac86.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\23cac85.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\23cac83.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\1e849ec.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\1e849eb.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\1e849e9.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\1d72aa.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\1d72a9.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\1d72a7.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\1c424b86.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\1c424b85.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\1c424b83.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\1b7a25b.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\1b7a25a.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\1b7a258.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\1accd49.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\1accd48.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\1accd46.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\1961dda.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\1961dd9.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\1961dd7.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\17e8f17.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\17e8f16.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\17e8f14.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\165132e3.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\165132e2.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\165132e0.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\1456ec2.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\1456ec1.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\1456ebf.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\12080c96.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\12080c95.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\12080c93.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\11494e6.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\11494e5.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\11494e3.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\10a0ed.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\10a0ec.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\10a0ea.msp + 2008-07-29 16:37 . 2008-07-29 16:37 911360 c:\windows\Installer\1067a0f.msp + 2008-07-29 16:33 . 2008-07-29 16:33 506368 c:\windows\Installer\1067a0e.msp + 2008-07-29 16:35 . 2008-07-29 16:35 553472 c:\windows\Installer\1067a0c.msp - 2009-02-26 20:25 . 2009-11-14 06:45 114688 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\outicon.exe + 2009-02-26 20:25 . 2009-11-12 19:02 114688 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\outicon.exe - 2006-04-26 13:32 . 2009-11-14 06:45 167936 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\accicons.exe + 2006-04-26 13:32 . 2009-11-12 19:02 167936 c:\windows\Installer\{90110413-6000-11D3-8CFE-0050048383C9}\accicons.exe + 2009-07-20 23:03 . 2009-07-20 23:03 1348432 c:\windows\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9876.0_x-ww_a621d1d5\msxml4.dll + 2006-02-01 04:30 . 2009-08-14 15:16 1850752 c:\windows\system32\win32k.sys + 2009-07-31 09:48 . 2009-07-31 09:05 1372672 c:\windows\system32\msxml6.dll + 2009-07-20 23:05 . 2009-07-20 23:05 1348432 c:\windows\system32\msxml4.dll + 2006-02-01 04:29 . 2009-07-31 04:35 1172480 c:\windows\system32\msxml3.dll + 2009-04-19 19:51 . 2009-08-14 15:16 1850752 c:\windows\system32\dllcache\win32k.sys + 2009-07-31 09:48 . 2009-07-31 09:05 1372672 c:\windows\system32\dllcache\msxml6.dll + 2006-02-01 04:29 . 2009-07-31 04:35 1172480 c:\windows\system32\dllcache\msxml3.dll + 2009-11-22 10:43 . 2009-11-22 10:43 3962368 c:\windows\Installer\f61916a.msi + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\ce18a91.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\ce18a8e.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\ce18a8c.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\ce18a8b.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\ce18a8a.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\ce18a89.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\bac3c60.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\bac3c5d.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\bac3c5b.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\bac3c5a.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\bac3c59.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\bac3c58.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\a85a3d.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\a85a3a.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\a85a38.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\a85a37.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\a85a36.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\a85a35.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\9c45aea.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\9c45ae7.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\9c45ae5.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\9c45ae4.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\9c45ae3.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\9c45ae2.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\8fbf008.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\8fbf005.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\8fbf003.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\8fbf002.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\8fbf001.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\8fbf000.msp + 2009-09-30 14:11 . 2009-09-30 14:11 8409088 c:\windows\Installer\7d8a74.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\7bb4f96.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\7bb4f93.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\7bb4f91.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\7bb4f90.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\7bb4f8f.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\7bb4f8e.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\7bb3085.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\7bb3082.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\7bb3080.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\7bb307f.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\7bb307e.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\7bb307d.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\706c7d4.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\706c7d1.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\706c7cf.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\706c7ce.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\706c7cd.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\706c7cc.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\6de8c92.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\6de8c8f.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\6de8c8d.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\6de8c8c.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\6de8c8b.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\6de8c8a.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\5cc8563.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\5cc8560.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\5cc855e.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\5cc855d.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\5cc855c.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\5cc855b.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\4f2081.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\4f207e.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\4f207c.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\4f207b.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\4f207a.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\4f2079.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\4d5b7fe.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\4d5b7fb.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\4d5b7f9.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\4d5b7f8.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\4d5b7f7.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\4d5b7f6.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\4b7f1cc.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\4b7f1c9.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\4b7f1c7.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\4b7f1c6.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\4b7f1c5.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\4b7f1c4.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\45fecd1.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\45fecce.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\45feccc.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\45feccb.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\45fecca.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\45fecc9.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\295b08d.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\295b08a.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\295b088.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\295b087.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\295b086.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\295b085.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\23cac87.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\23cac84.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\23cac82.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\23cac81.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\23cac80.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\23cac7f.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\1e849ed.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\1e849ea.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\1e849e8.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\1e849e7.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\1e849e6.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\1e849e5.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\1d72ab.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\1d72a8.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\1d72a6.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\1d72a5.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\1d72a4.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\1d72a3.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\1c424b87.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\1c424b84.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\1c424b82.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\1c424b81.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\1c424b80.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\1c424b7f.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\1b7a25c.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\1b7a259.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\1b7a257.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\1b7a256.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\1b7a255.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\1b7a254.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\1accd4a.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\1accd47.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\1accd45.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\1accd44.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\1accd43.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\1accd42.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\1961ddb.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\1961dd8.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\1961dd6.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\1961dd5.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\1961dd4.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\1961dd3.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\17e8f18.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\17e8f15.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\17e8f13.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\17e8f12.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\17e8f11.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\17e8f10.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\165132e4.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\165132e1.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\165132df.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\165132de.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\165132dd.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\165132dc.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\1456ec3.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\1456ec0.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\1456ebe.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\1456ebd.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\1456ebc.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\1456ebb.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\12080c97.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\12080c94.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\12080c92.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\12080c91.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\12080c90.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\12080c8f.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\11494e7.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\11494e4.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\11494e2.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\11494e1.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\11494e0.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\11494df.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\10a0ee.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\10a0eb.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\10a0e9.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\10a0e8.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\10a0e7.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\10a0e6.msp + 2008-07-29 16:31 . 2008-07-29 16:31 6083072 c:\windows\Installer\1067a10.msp + 2008-07-29 16:43 . 2008-07-29 16:43 1013248 c:\windows\Installer\1067a0d.msp + 2008-07-29 16:39 . 2008-07-29 16:39 3403264 c:\windows\Installer\1067a0b.msp + 2008-07-29 16:41 . 2008-07-29 16:41 6487040 c:\windows\Installer\1067a0a.msp + 2008-07-29 16:29 . 2008-07-29 16:29 2926080 c:\windows\Installer\1067a09.msp + 2008-07-29 16:45 . 2008-07-29 16:45 2543616 c:\windows\Installer\1067a08.msp + 2009-07-30 19:13 . 2009-11-05 17:36 26768832 c:\windows\system32\MRT.exe + 2009-10-08 17:04 . 2009-10-08 17:04 17510400 c:\windows\Installer\7d8a60.msp . -- Snapshot teruggezet naar huidige datum -- . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] "{A3BC75A2-1F87-4686-AA43-5347D756017C}"= "c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll" [2009-10-16 1119488] [HKEY_CLASSES_ROOT\clsid\{a3bc75a2-1f87-4686-aa43-5347d756017c}] [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}] 2009-10-16 11:12 1119488 ----a-w- c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll" [2009-10-16 1119488] [HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2006-05-09 94208] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 52736] "Snelkoppeling naar eigenschappenvenster voor High Definition Audio"="HDAShCut.exe" [2005-01-07 61952] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2005-08-02 7110656] "nwiz"="nwiz.exe" [2005-08-02 1519616] "RemoteControl"="c:\program files\ASUS\ASUS Remote\RemoteControlAppl.exe" [2009-11-07 61440] "HPHUPD08"="c:\program files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe" [2005-06-02 49152] "Home Theater SchSvr"="c:\program files\Common Files\InterVideo\SchSvr\SchSvr.exe" [2005-07-18 106496] "WINREMOTE"="c:\program files\InterVideo\Common\Bin\WinRemote.exe" [2005-07-18 262144] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2005-05-04 278528] "Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2004-04-14 233472] "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576] "QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2005-10-11 98304] "NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648] "KBD"="c:\hp\KBD\KBD.EXE" [2005-02-02 61440] "SoundMan"="SOUNDMAN.EXE" [2005-05-04 90112] "AlcWzrd"="ALCWZRD.EXE" [2005-05-04 2805248] "UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2009-10-26 15872] "AVG9_TRAY"="c:\progra~1\AVG\AVG9\avgtray.exe" [2009-11-13 2020120] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-03 35696] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-09-04 935288] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-10-11 149280] c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\ BTTray.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-2-27 561213] HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2005-5-12 282624] Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter] 2009-11-13 18:57 12464 ----a-w- c:\windows\system32\avgrsstx.dll [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\LimeWire\\LimeWire.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Program Files\\AVG\\AVG9\\avgupd.exe"= "c:\\Program Files\\AVG\\AVG9\\avgnsx.exe"= R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [13/11/2009 19:57 333192] R1 AvgTdiX;AVG Free Network Redirector;c:\windows\system32\drivers\avgtdix.sys [13/11/2009 19:57 360584] R2 avg9wd;AVG Free WatchDog;c:\program files\AVG\AVG9\avgwdsvc.exe [13/11/2009 19:57 285392] R3 3xHybrid;3xHybrid service;c:\windows\system32\drivers\3xHybrid.sys [11/10/2005 16:14 2786176] . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/ uInternet Connection Wizard,ShellNext = iexplore IE: &Google Search - c:\program files\Google\GoogleToolbar1.dll/cmsearch.html IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~3\Office10\EXCEL.EXE/3000 IE: Gelijkwaardige pagina's - c:\program files\Google\GoogleToolbar1.dll/cmsimilar.html IE: Koppelingspagina's - c:\program files\Google\GoogleToolbar1.dll/cmbacklinks.html IE: Opgeslagen momentopname van de pagina - c:\program files\Google\GoogleToolbar1.dll/cmcache.html IE: Verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm . - - - - ORPHANS VERWIJDERD - - - - AddRemove-eBay Icon - c:\documents and settings\HP_Eigenaar.UW-4B58D8528225.010\Application Data\Desktopicon\uninst.exe AddRemove-Microsoft Interactive Training - c:\windows\IsUn0413.exe -fc:\windows\orun32.isu AddRemove-{1A91D1FA-B9B3-4556-9878-5C61059A19B2} - c:\program files\InstallShield Installation Information\{1A91D1FA-B9B3-4556-9878-5C61059A19B2}\setup.exe AddRemove-{91810AFC-A4F8-4EBA-A5AA-B198BBC81144} - c:\program files\InstallShield Installation Information\{91810AFC-A4F8-4EBA-A5AA-B198BBC81144}\setup.exe ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2009-12-08 14:40 Windows 5.1.2600 Service Pack 3 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . Voltooingstijd: 2009-12-08 14:44 ComboFix-quarantined-files.txt 2009-12-08 13:44 ComboFix2.txt 2009-11-07 21:18 Pre-Run: 93.035.290.624 bytes beschikbaar Post-Run: 93.910.716.416 bytes beschikbaar - - End Of File - - 46484DDE1F1BF55BAFD40A51AA1CD20B
  6. patrickvan71
    Kon avg free niet uitschakelen voor combifix en wilde avg free verwijderen van pc maar krijg dan een foutmelding Lokale computer: installatie mislukt Installatie: Fout: Actie is mislukt voor registersleutel HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows: registersleutel maken…. Toegang geweigerd. Zal proberen om combifix zo te draaien
  7. patrickvan71
    Scan volgens hijack Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 16:03:34, on 6/12/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\Program Files\AVG\AVG9\avgchsvx.exe C:\Program Files\AVG\AVG9\avgrsx.exe C:\Program Files\AVG\AVG9\avgcsrvx.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\windows\system\hpsysdrv.exe C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe C:\Program Files\Common Files\InterVideo\SchSvr\SchSvr.exe C:\WINDOWS\system32\rundll32.exe C:\Program Files\InterVideo\Common\Bin\WinRemote.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\Program Files\QuickTime\qttask.exe C:\HP\KBD\KBD.EXE C:\WINDOWS\SOUNDMAN.EXE C:\WINDOWS\ALCWZRD.EXE C:\Program Files\AVG\AVG9\avgwdsvc.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Unlocker\UnlockerAssistant.exe C:\PROGRA~1\AVG\AVG9\avgtray.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\AVG\AVG9\avgnsx.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\iPod\bin\iPodService.exe c:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Windows Live\Contacts\wlcomm.exe C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE C:\Program Files\internet explorer\iexplore.exe C:\Program Files\internet explorer\iexplore.exe C:\Program Files\Windows Live\Toolbar\wltuser.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file) O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe O4 - HKLM\..\Run: [snelkoppeling naar eigenschappenvenster voor High Definition Audio] HDAShCut.exe O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /installquiet /keeploaded /nodetect O4 - HKLM\..\Run: [RemoteControl] C:\Program Files\ASUS\ASUS Remote\RemoteControlAppl.exe O4 - HKLM\..\Run: [HPHUPD08] c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe O4 - HKLM\..\Run: [Home Theater SchSvr] "C:\Program Files\Common Files\InterVideo\SchSvr\SchSvr.exe" O4 - HKLM\..\Run: [WINREMOTE] "C:\Program Files\InterVideo\Common\Bin\WinRemote.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE O4 - HKLM\..\Run: [soundMan] SOUNDMAN.EXE O4 - HKLM\..\Run: [AlcWzrd] ALCWZRD.EXE O4 - HKLM\..\Run: [unlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe" O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe" O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [bgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - Global Startup: BTTray.lnk = ? O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office10\EXCEL.EXE/3000 O8 - Extra context menu item: Gelijkwaardige pagina's - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html O8 - Extra context menu item: Koppelingspagina's - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html O8 - Extra context menu item: Opgeslagen momentopname van de pagina - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html O8 - Extra context menu item: Verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm O9 - Extra button: Verbindingshelp - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm O9 - Extra 'Tools' menuitem: Verbindingshelp - {E2D4D26B-0180-43a4-B05F-462D6D54C789} - C:\WINDOWS\PCHEALTH\HELPCTR\Vendors\CN=Hewlett-Packard,L=Cupertino,S=Ca,C=US\IEButton\support.htm O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1248979845531 O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} (get_atlcom Class) - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll O20 - Winlogon Notify: avgrsstarter - C:\WINDOWS\SYSTEM32\avgrsstx.dll O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: getPlus® Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe O23 - Service: iPod-service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\HPZIPM12.EXE -- End of file - 10497 bytes en malware Malwarebytes' Anti-Malware 1.42 Database versie: 3303 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 6/12/2009 15:57:16 mbam-log-2009-12-06 (15-57-16).txt Scan type: Volledige Scan (C:\|D:\|) Objecten gescand: 377943 Verstreken tijd: 1 hour(s), 28 minute(s), 16 second(s) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 0 Registerwaarden geïnfecteerd: 0 Registerdata bestanden geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 0 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige items gevonden) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige items gevonden) Registersleutels geïnfecteerd: (Geen kwaadaardige items gevonden) Registerwaarden geïnfecteerd: (Geen kwaadaardige items gevonden) Registerdata bestanden geïnfecteerd: (Geen kwaadaardige items gevonden) Mappen geïnfecteerd: (Geen kwaadaardige items gevonden) Bestanden geïnfecteerd: (Geen kwaadaardige items gevonden) Moet ik hier iets mee doen?
  8. patrickvan71
    Ik zit bij telenet en heb nog meer als voldoende
  9. patrickvan71
    Hallo, ik heb een dikke maand terug hier ook opgestaan en ben toen heel goed geholpen Maar nu is mijn internet terug traag en duurd het weer terug lang eer de pagina's openen Wat zou dit toch kunnen zijn Ik heb de programma's combofix, hijachthis en malwarebytes nog geinstalleerd staan van vorige keer Moet ik deze programma's op een bepaalde tijd eens uitvoeren?
  10. patrickvan71
    de snelheid is nu normaal denk hij opend de pagina's met draadloos internet thuis vlug iets minder met vodofoon maar zal aan de snelheid liggen van de stick maar toch enorm bedankt om ook dit op te lossen
  11. patrickvan71
    ComboFix 09-11-15.01 - Patrick 15/11/2009 12:06..2 - FAT32x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.1012.652 [GMT 1:00] Gestart vanuit: c:\documents and settings\Patrick\Bureaublad\ComboFix.exe gebruikte Opdracht switches :: c:\documents and settings\Patrick\Bureaublad\CFScript.txt..txt FILE :: "c:\documents and settings\All Users\Application Data\Partner\partner.exe" . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\documents and settings\All Users\Application Data\Partner c:\documents and settings\All Users\Application Data\Partner\partner.exe . ((((((((((((((((((((((((((((((((((((((( Drivers/Services ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_PARTNER_SERVICE -------\Service_Partner Service (((((((((((((((((((( Bestanden Gemaakt van 2009-10-15 to 2009-11-15 )))))))))))))))))))))))))))))) . 2009-11-14 10:08 . 2009-11-14 10:08 -------- d-----w- c:\windows\system32\XPSViewer 2009-11-14 10:08 . 2009-11-14 10:08 -------- d-----w- c:\program files\MSBuild 2009-11-14 10:08 . 2009-11-14 10:08 -------- d-----w- c:\program files\Reference Assemblies 2009-11-14 10:07 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll 2009-11-14 10:07 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll 2009-11-14 10:07 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll 2009-11-14 10:07 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll 2009-11-14 10:07 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe 2009-11-14 10:07 . 2009-11-14 10:08 -------- d-----w- C:\8edf6edbff74a5779b00aa6d3874b9 2009-11-14 10:07 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll 2009-11-14 10:07 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll 2009-11-14 08:51 . 2009-11-14 08:51 -------- d-----w- c:\documents and settings\Patrick\Application Data\Malwarebytes 2009-11-14 08:51 . 2009-09-10 13:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-11-14 08:51 . 2009-11-14 08:51 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-11-14 08:51 . 2009-11-14 08:51 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2009-11-14 08:51 . 2009-09-10 13:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys 2009-11-13 18:35 . 2009-11-13 18:35 -------- d-----w- c:\program files\Trend Micro 2009-11-13 09:45 . 2009-08-04 17:29 2149888 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe 2009-11-13 09:45 . 2009-08-04 17:29 2070400 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe 2009-11-13 09:45 . 2009-08-04 17:29 2028544 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe 2009-11-13 09:29 . 2009-11-13 09:29 -------- d-----w- c:\program files\MSXML 4.0 2009-11-10 00:00 . 2009-11-10 00:00 -------- d---a-w- c:\windows\AcerStore 2009-11-09 17:20 . 2008-03-17 10:03 101376 ----a-r- c:\windows\system32\drivers\ewusbmdm.sys 2009-11-09 17:20 . 2008-04-15 21:00 32128 -c--a-w- c:\windows\system32\dllcache\usbccgp.sys 2009-11-09 17:20 . 2008-04-15 21:00 32128 ----a-w- c:\windows\system32\drivers\usbccgp.sys 2009-11-09 17:19 . 2009-11-09 17:19 -------- d-----w- c:\documents and settings\Patrick\Application Data\Vodafone 2009-11-09 17:19 . 2009-11-09 17:19 -------- d-----w- c:\documents and settings\All Users\Application Data\InstallShield 2009-11-09 17:19 . 2009-11-09 17:19 -------- d-----w- c:\documents and settings\LocalService\Application Data\Vodafone 2009-11-09 17:18 . 2009-11-09 17:18 -------- d-----w- c:\documents and settings\All Users\Application Data\Vodafone 2009-11-09 17:18 . 2009-11-09 17:18 -------- d-----w- c:\program files\Vodafone 2009-11-09 17:18 . 2009-11-09 17:18 -------- d-----w- c:\documents and settings\Patrick\Local Settings\Application Data\{D53238E8-3427-491E-A57E-097FA966AAC1} 2009-11-09 17:11 . 2009-11-09 17:14 -------- d-----w- c:\documents and settings\Patrick\Local Settings\Application Data\Identities 2009-11-09 16:21 . 2009-11-09 16:21 -------- d-----w- c:\documents and settings\Patrick\Bluetooth Software 2009-11-09 16:19 . 2006-10-15 17:59 30285 ----a-w- c:\windows\system32\drivers\btwmodem.sys 2009-11-09 16:10 . 2008-04-14 21:32 21504 -c--a-w- c:\windows\system32\dllcache\hidserv.dll 2009-11-09 16:10 . 2008-04-14 21:32 21504 ----a-w- c:\windows\system32\hidserv.dll 2009-11-09 16:09 . 2001-09-06 18:04 12288 -c--a-w- c:\windows\system32\dllcache\mouhid.sys 2009-11-09 16:09 . 2001-09-06 18:04 12288 ----a-w- c:\windows\system32\drivers\mouhid.sys 2009-11-09 16:06 . 2007-01-24 19:27 67960 ----a-w- c:\windows\system32\drivers\btwusb.sys 2009-11-09 16:06 . 2007-02-27 19:02 868042 ----a-w- c:\windows\system32\drivers\btkrnl.sys 2009-11-09 16:06 . 2006-11-28 16:48 47907 ----a-w- c:\windows\system32\drivers\btwhid.sys 2009-11-09 16:06 . 2006-10-15 18:04 106557 ----a-w- c:\windows\system32\btw_ci.dll 2009-11-09 16:06 . 2006-10-15 18:01 149123 ----a-w- c:\windows\system32\drivers\btwdndis.sys 2009-11-09 16:06 . 2006-10-10 02:00 30459 ----a-w- c:\windows\system32\drivers\btport.sys 2009-11-09 16:06 . 2007-01-24 19:33 530861 ----a-w- c:\windows\system32\drivers\btaudio.sys 2009-11-09 16:06 . 2009-11-09 16:06 -------- d-----w- c:\program files\WIDCOMM 2009-11-09 16:04 . 2009-11-09 16:04 -------- d-----w- c:\documents and settings\Patrick\Local Settings\Application Data\Adobe 2009-11-09 16:02 . 2008-10-24 11:21 455296 -c----w- c:\windows\system32\dllcache\mrxsmb.sys 2009-11-09 15:56 . 2007-04-13 10:51 321024 ----a-w- c:\windows\system32\ERUpdateHidden.EXE 2009-11-09 15:56 . 2006-03-30 12:06 258048 ----a-w- c:\windows\system32\CheckD2DSystem.exe 2009-11-09 15:56 . 2006-03-23 11:02 258048 ----a-w- c:\windows\system32\Uninstall_eRecovery.exe 2009-11-09 15:56 . 2005-12-09 08:12 16384 ----a-w- c:\windows\system32\ClearEvent.exe 2009-11-09 15:56 . 2004-11-03 08:06 159744 ----a-w- c:\windows\system32\CloseProcessWindow.dll 2009-11-09 15:55 . 2009-11-09 15:55 125 ----a-w- c:\windows\xUninstall.bat 2009-11-09 15:55 . 2008-07-08 01:16 96856 ----a-w- c:\windows\system32\drivers\jmcr.sys 2009-11-09 15:55 . 2009-11-09 15:55 -------- d-----w- c:\windows\JMCR_DIR 2009-11-09 15:55 . 2008-05-14 10:53 110080 ----a-w- c:\windows\system32\JmCrIcon.dll 2009-11-09 15:54 . 2009-11-14 10:19 60592 ----a-w- c:\documents and settings\Patrick\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2009-11-09 15:23 . 2009-11-15 11:14 -------- d-----w- c:\documents and settings\Patrick\Local Settings\Application Data\ApplicationHistory 2009-11-09 15:22 . 2008-04-13 23:09 5504 ----a-w- c:\windows\system32\drivers\MSTEE.sys 2009-11-09 15:22 . 2008-04-15 21:00 15232 ----a-w- c:\windows\system32\drivers\StreamIP.sys 2009-11-09 15:22 . 2008-04-15 21:00 11136 ----a-w- c:\windows\system32\drivers\SLIP.sys 2009-11-09 15:22 . 2008-04-13 23:16 19200 ----a-w- c:\windows\system32\drivers\WSTCODEC.SYS 2009-11-09 15:22 . 2008-04-13 23:16 85248 ----a-w- c:\windows\system32\drivers\NABTSFEC.sys 2009-11-09 15:22 . 2008-04-13 23:16 17024 ----a-w- c:\windows\system32\drivers\CCDECODE.sys 2009-11-09 15:09 . 2009-11-09 15:09 -------- d-----w- c:\windows\WebCam 2009-11-09 15:09 . 2008-04-14 21:32 54272 ----a-w- c:\windows\vfwwdm32.dll . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-11-15 10:51 . 2008-08-22 08:38 91950 ----a-w- c:\windows\system32\perfc013.dat 2009-11-15 10:51 . 2008-08-22 08:38 510980 ----a-w- c:\windows\system32\perfh013.dat 2009-11-14 10:51 . 2009-11-14 10:51 103018 ----a-w- c:\windows\pchealth\helpctr\Config\Cache\Personal_32_1043.dat 2009-11-14 10:51 . 2008-08-21 19:57 76487 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat 2009-11-10 00:00 . 2004-09-21 21:28 3 ----a-w- c:\windows\HotFix.bat 2009-11-10 00:00 . 2004-06-26 00:13 139 ----a-w- c:\windows\HotFix2.bat 2009-11-09 23:56 . 2008-08-21 20:20 -------- d-----w- c:\program files\Realtek 2009-11-09 23:56 . 2008-08-21 20:39 -------- d-----w- c:\program files\Microsoft Works 2009-11-09 23:56 . 2008-08-21 20:36 -------- d-----w- c:\program files\Microsoft.NET 2009-11-09 23:56 . 2008-08-21 20:39 -------- d-----w- c:\program files\Microsoft Office Suite Activation Assistant 2009-11-09 23:56 . 2008-08-21 19:58 -------- d-----w- c:\program files\microsoft frontpage 2009-11-09 23:56 . 2008-08-21 20:33 -------- d-----w- c:\program files\InterVideo 2009-11-09 23:56 . 2008-08-21 20:01 -------- d-----w- c:\program files\Intel 2009-11-09 23:55 . 2008-08-21 20:32 -------- d-----w- c:\program files\Common Files\InterVideo 2009-11-09 23:55 . 2008-08-21 20:24 -------- d-----w- c:\program files\Common Files\Adobe AIR 2009-11-09 23:55 . 2008-08-21 20:23 -------- d-----w- c:\program files\Common Files\Adobe 2009-11-09 23:55 . 2008-08-21 20:21 -------- d-----w- c:\program files\Atheros 2009-11-09 23:54 . 2009-11-09 15:23 -------- d-----w- c:\documents and settings\Patrick\Application Data\InstallShield 2009-11-09 23:54 . 2008-08-21 20:43 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help 2009-11-09 23:54 . 2008-08-21 20:21 -------- d-----w- c:\documents and settings\All Users\Application Data\Atheros 2009-11-09 17:18 . 2008-08-21 20:19 -------- d-----w- c:\program files\Common Files\InstallShield 2009-11-09 16:55 . 2009-11-09 15:27 -------- d-----w- c:\program files\Google 2009-11-09 16:22 . 2008-08-21 20:32 -------- d-----w- c:\documents and settings\All Users\Application Data\McAfee 2009-11-09 16:22 . 2008-08-21 20:30 -------- d-----w- c:\program files\McAfee 2009-11-09 15:55 . 2008-08-21 20:33 -------- d--h--w- c:\program files\InstallShield Installation Information 2009-11-09 15:54 . 2009-11-09 15:23 130 ----a-w- c:\documents and settings\Patrick\Local Settings\Application Data\fusioncache.dat 2009-11-09 15:53 . 2009-11-09 15:53 -------- d-----w- c:\program files\Common Files\CrystalEye 2009-11-09 15:52 . 2009-11-09 15:52 -------- d-----w- c:\program files\Acer Incorporated 2009-11-09 15:36 . 2009-11-09 15:36 -------- d-----w- c:\documents and settings\LocalService\Application Data\SACore 2009-11-09 15:27 . 2008-08-21 20:31 -------- d-----w- c:\documents and settings\All Users\Application Data\SiteAdvisor 2009-11-09 15:26 . 2009-11-09 15:25 -------- d-----w- c:\program files\Launch Manager 2009-09-11 14:20 . 2008-04-15 21:00 136192 ----a-w- c:\windows\system32\msv1_0.dll 2009-09-04 21:05 . 2008-04-15 21:00 58880 ----a-w- c:\windows\system32\msasn1.dll 2009-08-29 07:32 . 2007-08-13 16:54 832512 ------w- c:\windows\system32\wininet.dll 2009-08-29 07:32 . 2008-04-15 21:00 78336 ----a-w- c:\windows\system32\ieencode.dll 2009-08-29 07:32 . 2008-04-15 21:00 17408 ----a-w- c:\windows\system32\corpol.dll 2009-08-26 08:02 . 2008-04-15 21:00 247326 ----a-w- c:\windows\system32\strmdll.dll . ((((((((((((((((((((((((((((( SnapShot@2009-11-14_16.16.38 ))))))))))))))))))))))))))))))))))))))))) . + 2007-11-30 12:39 . 2007-11-30 11:19 18808 c:\windows\system32\spmsg.dll - 2008-08-22 08:38 . 2009-11-14 16:03 72066 c:\windows\system32\perfc009.dat + 2008-08-22 08:38 . 2009-11-15 10:51 72066 c:\windows\system32\perfc009.dat + 2009-11-15 10:48 . 2009-11-15 10:48 60928 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationProvider\b4a9e413d5cd6d6ec2d50aa05381e293\UIAutomationProvider.ni.dll + 2009-11-15 10:44 . 2009-11-15 10:44 47104 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFontCac#\3dd0f86c966c75755d62eab8ddf0634c\PresentationFontCache.ni.exe + 2009-11-15 10:43 . 2009-11-15 10:43 39424 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCFFRast#\034d081fe294bab1ee1ecc98c1181424\PresentationCFFRasterizer.ni.dll + 2009-11-15 10:57 . 2009-11-15 10:57 74752 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Fra#\c5d504724d7f351b1d034615dbb72a2a\Microsoft.Build.Framework.ni.dll + 2009-11-15 10:57 . 2009-11-15 10:57 14336 c:\windows\assembly\NativeImages_v2.0.50727_32\dfsvc\a664ccab020f93f1d533919f57131190\dfsvc.ni.exe + 2009-11-15 10:56 . 2009-11-15 10:56 25600 c:\windows\assembly\NativeImages_v2.0.50727_32\Accessibility\e63d6d26b8a664cfdfbd4ad75e03c14d\Accessibility.ni.dll - 2009-11-14 10:14 . 2009-11-14 10:14 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll + 2009-11-15 10:41 . 2009-11-15 10:41 77824 c:\windows\assembly\GAC_MSIL\System.Web.RegularExpressions\2.0.0.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll + 2009-11-15 10:42 . 2009-11-15 10:42 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll - 2009-11-14 10:14 . 2009-11-14 10:14 81920 c:\windows\assembly\GAC_MSIL\System.Drawing.Design\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.Design.dll - 2009-11-14 10:14 . 2009-11-14 10:14 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll + 2009-11-15 10:42 . 2009-11-15 10:42 81920 c:\windows\assembly\GAC_MSIL\System.Configuration.Install\2.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll - 2009-11-14 10:14 . 2009-11-14 10:14 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll + 2009-11-15 10:42 . 2009-11-15 10:42 32768 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll + 2009-11-15 10:42 . 2009-11-15 10:42 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll - 2009-11-14 10:14 . 2009-11-14 10:14 12800 c:\windows\assembly\GAC_MSIL\Microsoft.Vsa.Vb.CodeDOMProcessor\8.0.0.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll + 2009-11-15 10:42 . 2009-11-15 10:42 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll - 2009-11-14 10:14 . 2009-11-14 10:14 28672 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Vsa\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll + 2009-11-15 10:42 . 2009-11-15 10:42 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll - 2009-11-14 10:14 . 2009-11-14 10:14 77824 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Utilities\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Utilities.dll + 2009-11-15 10:42 . 2009-11-15 10:42 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll - 2009-11-14 10:14 . 2009-11-14 10:14 36864 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Framework\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Framework.dll - 2009-11-14 10:14 . 2009-11-14 10:14 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll + 2009-11-15 10:42 . 2009-11-15 10:42 77824 c:\windows\assembly\GAC_MSIL\IEHost\2.0.0.0__b03f5f7f11d50a3a\IEHost.dll - 2009-11-14 10:14 . 2009-11-14 10:14 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll + 2009-11-15 10:42 . 2009-11-15 10:42 13312 c:\windows\assembly\GAC_MSIL\cscompmgd\8.0.0.0__b03f5f7f11d50a3a\cscompmgd.dll - 2009-11-14 10:14 . 2009-11-14 10:14 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll + 2009-11-15 10:42 . 2009-11-15 10:42 10752 c:\windows\assembly\GAC_MSIL\Accessibility\2.0.0.0__b03f5f7f11d50a3a\Accessibility.dll + 2009-11-15 10:42 . 2009-11-15 10:42 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll - 2009-11-14 10:14 . 2009-11-14 10:14 72192 c:\windows\assembly\GAC_32\ISymWrapper\2.0.0.0__b03f5f7f11d50a3a\ISymWrapper.dll - 2009-11-14 10:14 . 2009-11-14 10:14 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll + 2009-11-15 10:42 . 2009-11-15 10:42 69120 c:\windows\assembly\GAC_32\CustomMarshalers\2.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll - 2009-11-14 10:14 . 2009-11-14 10:14 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll + 2009-11-15 10:42 . 2009-11-15 10:42 8192 c:\windows\WinSxS\MSIL_IEExecRemote_b03f5f7f11d50a3a_2.0.0.0_x-ww_6e57c34e\IEExecRemote.dll + 2009-11-15 10:42 . 2009-11-15 10:42 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll - 2009-11-14 10:14 . 2009-11-14 10:14 7168 c:\windows\assembly\GAC_MSIL\Microsoft_VsaVb\8.0.0.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll - 2009-11-14 10:14 . 2009-11-14 10:14 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll + 2009-11-15 10:42 . 2009-11-15 10:42 5632 c:\windows\assembly\GAC_MSIL\Microsoft.VisualC\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualC.Dll - 2009-11-14 10:14 . 2009-11-14 10:14 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll + 2009-11-15 10:42 . 2009-11-15 10:42 6656 c:\windows\assembly\GAC_MSIL\IIEHost\2.0.0.0__b03f5f7f11d50a3a\IIEHost.dll - 2009-11-14 10:14 . 2009-11-14 10:14 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll + 2009-11-15 10:42 . 2009-11-15 10:42 8192 c:\windows\assembly\GAC_MSIL\IEExecRemote\2.0.0.0__b03f5f7f11d50a3a\IEExecRemote.dll + 2009-11-15 10:42 . 2009-11-15 10:42 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll - 2009-11-14 10:14 . 2009-11-14 10:14 113664 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.Wrapper.dll - 2009-11-14 10:14 . 2009-11-14 10:14 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll + 2009-11-15 10:42 . 2009-11-15 10:42 258048 c:\windows\WinSxS\x86_System.EnterpriseServices_b03f5f7f11d50a3a_2.0.0.0_x-ww_7d5f3790\System.EnterpriseServices.dll - 2008-08-22 08:38 . 2009-11-14 16:03 442800 c:\windows\system32\perfh009.dat + 2008-08-22 08:38 . 2009-11-15 10:51 442800 c:\windows\system32\perfh009.dat + 2009-08-07 22:51 . 2009-08-07 22:51 989016 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscordacwks.dll + 2009-03-20 10:48 . 2009-03-20 10:48 183808 c:\windows\Installer\161692.msp + 2009-11-14 10:14 . 2009-11-14 10:14 303104 c:\windows\assembly\temp\WAMX8KV6IT\System.Runtime.Remoting.dll + 2009-11-14 10:14 . 2009-11-14 10:14 261632 c:\windows\assembly\temp\FT5HS3FQ2D\System.Transactions.dll + 2009-11-15 10:57 . 2009-11-15 10:57 321536 c:\windows\assembly\NativeImages_v2.0.50727_32\WsatConfig\e2098e43d115155d6ba91ba3a7e577cf\WsatConfig.ni.exe + 2009-11-15 10:48 . 2009-11-15 10:48 240128 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsFormsIntegra#\bf92bc207f927cbbd6dfc9dc0c3eae68\WindowsFormsIntegration.ni.dll + 2009-11-15 10:48 . 2009-11-15 10:48 187904 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationTypes\6f488b7644dc50a083868e91a4014466\UIAutomationTypes.ni.dll + 2009-11-15 10:48 . 2009-11-15 10:48 447488 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClient\c2fbf25609b704061a93500efa6f241d\UIAutomationClient.ni.dll + 2009-11-15 10:56 . 2009-11-15 10:56 381440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IO.Log\6c273eb9d1ee8b66b5ecb073de4b785d\System.IO.Log.ni.dll + 2009-11-15 10:56 . 2009-11-15 10:56 212992 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityMode#\7222db518afb4eaaa138824278249bc7\System.IdentityModel.Selectors.ni.dll + 2009-11-15 10:48 . 2009-11-15 10:48 208384 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing.Desi#\ca6d7208c0fb72ff97429f2636ced321\System.Drawing.Design.ni.dll + 2009-11-15 10:57 . 2009-11-15 10:57 366080 c:\windows\assembly\NativeImages_v2.0.50727_32\SMSvcHost\6af32fe5cbec0aa54e2efa6910c73651\SMSvcHost.ni.exe + 2009-11-15 10:57 . 2009-11-15 10:57 256000 c:\windows\assembly\NativeImages_v2.0.50727_32\SMDiagnostics\7602d7687fb9bd21cd9ae60d2b187c99\SMDiagnostics.ni.dll + 2009-11-15 10:57 . 2009-11-15 10:57 320512 c:\windows\assembly\NativeImages_v2.0.50727_32\ServiceModelReg\a23dc25782df04533a13e348203e4dc5\ServiceModelReg.ni.exe + 2009-11-15 10:45 . 2009-11-15 10:45 258048 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\96f74da5fc40b92f09069230bc0df4f0\PresentationFramework.Royale.ni.dll + 2009-11-15 10:45 . 2009-11-15 10:45 539648 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\3bb4d16b042b72c2c85a0f8ac9d48f28\PresentationFramework.Luna.ni.dll + 2009-11-15 10:45 . 2009-11-15 10:45 368128 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\30c5c2682d3c5bdaa83bb9a36ee48afa\PresentationFramework.Aero.ni.dll + 2009-11-15 10:45 . 2009-11-15 10:45 224768 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\07e952efd70f5608e221a008e6231ace\PresentationFramework.Classic.ni.dll + 2009-11-15 10:57 . 2009-11-15 10:57 133632 c:\windows\assembly\NativeImages_v2.0.50727_32\MSBuild\eade8c1c9c1e8e5ffb50e6c9b9af0f6a\MSBuild.ni.exe + 2009-11-15 10:57 . 2009-11-15 10:57 386560 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\fc4d66e0a92b3767006a84f2519d2457\Microsoft.Transactions.Bridge.Dtc.ni.dll + 2009-11-15 10:57 . 2009-11-15 10:57 410112 c:\windows\assembly\NativeImages_v2.0.50727_32\ComSvcConfig\a17c65f0cffaa4f792dd38d50df9d526\ComSvcConfig.ni.exe + 2009-11-15 10:56 . 2009-11-15 10:56 842240 c:\windows\assembly\NativeImages_v2.0.50727_32\AspNetMMCExt\85d7c111956b478766d90625b35d963f\AspNetMMCExt.ni.dll - 2009-11-14 10:14 . 2009-11-14 10:14 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll + 2009-11-15 10:41 . 2009-11-15 10:41 839680 c:\windows\assembly\GAC_MSIL\System.Web.Services\2.0.0.0__b03f5f7f11d50a3a\System.Web.Services.dll - 2009-11-14 10:14 . 2009-11-14 10:14 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll + 2009-11-15 10:41 . 2009-11-15 10:41 835584 c:\windows\assembly\GAC_MSIL\System.Web.Mobile\2.0.0.0__b03f5f7f11d50a3a\System.Web.Mobile.dll - 2009-11-14 10:14 . 2009-11-14 10:14 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll + 2009-11-15 10:42 . 2009-11-15 10:42 114688 c:\windows\assembly\GAC_MSIL\System.ServiceProcess\2.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll + 2009-11-15 10:42 . 2009-11-15 10:42 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll - 2009-11-14 10:14 . 2009-11-14 10:14 258048 c:\windows\assembly\GAC_MSIL\System.Security\2.0.0.0__b03f5f7f11d50a3a\System.Security.dll + 2009-11-15 10:42 . 2009-11-15 10:42 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll - 2009-11-14 10:14 . 2009-11-14 10:14 131072 c:\windows\assembly\GAC_MSIL\System.Runtime.Serialization.Formatters.Soap\2.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll + 2009-11-15 10:42 . 2009-11-15 10:42 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll - 2009-11-14 10:14 . 2009-11-14 10:14 303104 c:\windows\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll - 2009-11-14 10:14 . 2009-11-14 10:14 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll + 2009-11-15 10:42 . 2009-11-15 10:42 258048 c:\windows\assembly\GAC_MSIL\System.Messaging\2.0.0.0__b03f5f7f11d50a3a\System.Messaging.dll - 2009-11-14 10:14 . 2009-11-14 10:14 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll + 2009-11-15 10:42 . 2009-11-15 10:42 372736 c:\windows\assembly\GAC_MSIL\System.Management\2.0.0.0__b03f5f7f11d50a3a\System.Management.dll + 2009-11-15 10:42 . 2009-11-15 10:42 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll - 2009-11-14 10:14 . 2009-11-14 10:14 626688 c:\windows\assembly\GAC_MSIL\System.Drawing\2.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll - 2009-11-14 10:14 . 2009-11-14 10:14 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll + 2009-11-15 10:42 . 2009-11-15 10:42 401408 c:\windows\assembly\GAC_MSIL\System.DirectoryServices\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.dll - 2009-11-14 10:14 . 2009-11-14 10:14 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll + 2009-11-15 10:42 . 2009-11-15 10:42 188416 c:\windows\assembly\GAC_MSIL\System.DirectoryServices.Protocols\2.0.0.0__b03f5f7f11d50a3a\System.DirectoryServices.Protocols.dll - 2009-11-14 10:14 . 2009-11-14 10:14 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll + 2009-11-15 10:42 . 2009-11-15 10:42 970752 c:\windows\assembly\GAC_MSIL\System.Deployment\2.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll - 2009-11-14 10:14 . 2009-11-14 10:14 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll + 2009-11-15 10:42 . 2009-11-15 10:42 745472 c:\windows\assembly\GAC_MSIL\System.Data.SqlXml\2.0.0.0__b77a5c561934e089\System.Data.SqlXml.dll - 2009-11-14 10:14 . 2009-11-14 10:14 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll + 2009-11-15 10:42 . 2009-11-15 10:42 425984 c:\windows\assembly\GAC_MSIL\System.Configuration\2.0.0.0__b03f5f7f11d50a3a\System.configuration.dll - 2009-11-14 10:14 . 2009-11-14 10:14 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll + 2009-11-15 10:42 . 2009-11-15 10:42 110592 c:\windows\assembly\GAC_MSIL\sysglobl\2.0.0.0__b03f5f7f11d50a3a\sysglobl.dll - 2009-11-14 10:14 . 2009-11-14 10:14 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll + 2009-11-15 10:42 . 2009-11-15 10:42 659456 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll - 2009-11-14 10:14 . 2009-11-14 10:14 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll + 2009-11-15 10:42 . 2009-11-15 10:42 372736 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.dll + 2009-11-15 10:42 . 2009-11-15 10:42 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll - 2009-11-14 10:14 . 2009-11-14 10:14 110592 c:\windows\assembly\GAC_MSIL\Microsoft.VisualBasic.Compatibility.Data\8.0.0.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Compatibility.Data.dll + 2009-11-15 10:42 . 2009-11-15 10:42 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll - 2009-11-14 10:14 . 2009-11-14 10:14 749568 c:\windows\assembly\GAC_MSIL\Microsoft.JScript\8.0.0.0__b03f5f7f11d50a3a\Microsoft.JScript.dll + 2009-11-15 10:42 . 2009-11-15 10:42 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll - 2009-11-14 10:14 . 2009-11-14 10:14 655360 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Tasks\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Tasks.dll - 2009-11-14 10:14 . 2009-11-14 10:14 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll + 2009-11-15 10:42 . 2009-11-15 10:42 348160 c:\windows\assembly\GAC_MSIL\Microsoft.Build.Engine\2.0.0.0__b03f5f7f11d50a3a\Microsoft.Build.Engine.dll + 2009-11-15 10:41 . 2009-11-15 10:41 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll - 2009-11-14 10:14 . 2009-11-14 10:14 507904 c:\windows\assembly\GAC_MSIL\AspNetMMCExt\2.0.0.0__b03f5f7f11d50a3a\AspNetMMCExt.dll + 2009-11-15 10:42 . 2009-11-15 10:42 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll - 2009-11-14 10:14 . 2009-11-14 10:14 261632 c:\windows\assembly\GAC_32\System.Transactions\2.0.0.0__b77a5c561934e089\System.Transactions.dll - 2009-11-14 10:14 . 2009-11-14 10:14 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll + 2009-11-15 10:42 . 2009-11-15 10:42 113664 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll + 2009-11-15 10:42 . 2009-11-15 10:42 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll - 2009-11-14 10:14 . 2009-11-14 10:14 258048 c:\windows\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll + 2009-11-15 10:42 . 2009-11-15 10:42 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll - 2009-11-14 10:14 . 2009-11-14 10:14 486400 c:\windows\assembly\GAC_32\System.Data.OracleClient\2.0.0.0__b77a5c561934e089\System.Data.OracleClient.dll + 2009-08-07 22:51 . 2009-08-07 22:51 5812560 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll + 2009-08-07 22:51 . 2009-08-07 22:51 4546560 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll - 2008-11-25 03:59 . 2008-11-25 03:59 4546560 c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorlib.dll + 2009-11-14 10:14 . 2009-11-14 10:14 2933248 c:\windows\assembly\temp\R2BLU3CLU3\System.Data.dll + 2009-11-15 10:43 . 2009-11-15 10:43 3313664 c:\windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\204d6e5b335134f23ca37638b9227ecf\WindowsBase.ni.dll + 2009-11-15 10:48 . 2009-11-15 10:48 1049600 c:\windows\assembly\NativeImages_v2.0.50727_32\UIAutomationClients#\0f2ed6a204eb13841e99b77025464afc\UIAutomationClientsideProviders.ni.dll + 2009-11-15 10:43 . 2009-11-15 10:43 7868416 c:\windows\assembly\NativeImages_v2.0.50727_32\System\3de5bd01124463d7862bd173af90bc83\System.ni.dll + 2009-11-15 10:48 . 2009-11-15 10:48 5450752 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Xml\5913d3f81e77194ec833991b1047a532\System.Xml.ni.dll + 2009-11-15 10:48 . 2009-11-15 10:48 1917440 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Speech\99594bae1d022502925f5b9dfcdaae9a\System.Speech.ni.dll + 2009-11-15 10:56 . 2009-11-15 10:56 2338304 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Seri#\67ad55827f2542552b576170f0a7dc56\System.Runtime.Serialization.ni.dll + 2009-11-15 10:48 . 2009-11-15 10:48 1035264 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Printing\e5313735a40c0800f116e27fba4754db\System.Printing.ni.dll + 2009-11-15 10:56 . 2009-11-15 10:56 1056768 c:\windows\assembly\NativeImages_v2.0.50727_32\System.IdentityModel\c3b18fef5c6dc3bcdbe5df699fd21a55\System.IdentityModel.ni.dll + 2009-11-15 10:47 . 2009-11-15 10:47 1587200 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\abb2ac7e08bee026f857d8fa36f9fe6f\System.Drawing.ni.dll + 2009-11-15 10:47 . 2009-11-15 10:47 6616576 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data\694c07365e0fd6bba0bc304d4d2404a7\System.Data.ni.dll + 2009-11-15 10:47 . 2009-11-15 10:47 2516480 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Data.Linq\32788c58ff9f8324460604cf1fe7681b\System.Data.Linq.ni.dll + 2009-11-15 10:45 . 2009-11-15 10:45 2295296 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Core\c0a42d2ad8a4078040b334f6770ea11f\System.Core.ni.dll + 2009-11-15 10:45 . 2009-11-15 10:45 2128896 c:\windows\assembly\NativeImages_v2.0.50727_32\ReachFramework\954685c29689d2a6126ceca1fd55e904\ReachFramework.ni.dll + 2009-11-15 10:45 . 2009-11-15 10:45 1657856 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationUI\a3a6f52ce1d09a7bdccc8e7fc664792d\PresentationUI.ni.dll + 2009-11-15 10:43 . 2009-11-15 10:43 1451008 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationBuildTa#\f906701365083c1473db31519147e263\PresentationBuildTasks.ni.dll + 2009-11-15 10:57 . 2009-11-15 10:57 1093120 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Transacti#\f19e9b439636d0744597fff1331cad04\Microsoft.Transactions.Bridge.ni.dll + 2009-11-15 10:57 . 2009-11-15 10:57 1888768 c:\windows\assembly\NativeImages_v2.0.50727_32\Microsoft.Build.Eng#\5dd4f58999eed37c12aee7ea9f9863ac\Microsoft.Build.Engine.ni.dll - 2009-11-14 10:14 . 2009-11-14 10:14 3149824 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll + 2009-11-15 10:42 . 2009-11-15 10:42 3149824 c:\windows\assembly\GAC_MSIL\System\2.0.0.0__b77a5c561934e089\System.dll - 2009-11-14 10:14 . 2009-11-14 10:14 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll + 2009-11-15 10:42 . 2009-11-15 10:42 2048000 c:\windows\assembly\GAC_MSIL\System.Xml\2.0.0.0__b77a5c561934e089\System.XML.dll - 2009-11-14 10:14 . 2009-11-14 10:14 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll + 2009-11-15 10:42 . 2009-11-15 10:42 5025792 c:\windows\assembly\GAC_MSIL\System.Windows.Forms\2.0.0.0__b77a5c561934e089\System.Windows.Forms.dll - 2009-11-14 10:14 . 2009-11-14 10:14 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll + 2009-11-15 10:41 . 2009-11-15 10:41 5062656 c:\windows\assembly\GAC_MSIL\System.Design\2.0.0.0__b03f5f7f11d50a3a\System.Design.dll - 2009-11-14 10:14 . 2009-11-14 10:14 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll + 2009-11-15 10:41 . 2009-11-15 10:41 5242880 c:\windows\assembly\GAC_32\System.Web\2.0.0.0__b03f5f7f11d50a3a\System.Web.dll - 2009-11-14 10:14 . 2009-11-14 10:14 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll + 2009-11-15 10:42 . 2009-11-15 10:42 2933248 c:\windows\assembly\GAC_32\System.Data\2.0.0.0__b77a5c561934e089\System.Data.dll - 2009-11-14 10:14 . 2009-11-14 10:14 4546560 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll + 2009-11-15 10:42 . 2009-11-15 10:42 4546560 c:\windows\assembly\GAC_32\mscorlib\2.0.0.0__b77a5c561934e089\mscorlib.dll + 2009-08-14 19:32 . 2009-08-14 19:32 11110912 c:\windows\Installer\16169b.msp + 2009-11-15 10:48 . 2009-11-15 10:48 12430848 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\d2ea8d76f015817db1607075812b555f\System.Windows.Forms.ni.dll + 2009-11-15 10:57 . 2009-11-15 10:57 17317888 c:\windows\assembly\NativeImages_v2.0.50727_32\System.ServiceModel\06d6eab93282d2b136a377bd50b7c5a9\System.ServiceModel.ni.dll + 2009-11-15 10:47 . 2009-11-15 10:47 10683392 c:\windows\assembly\NativeImages_v2.0.50727_32\System.Design\8b82e08c008924d51833cb0884bcbfc5\System.Design.ni.dll + 2009-11-15 10:45 . 2009-11-15 10:45 14327808 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\58c7ac6b6054038dc9346d7ec8e32b4c\PresentationFramework.ni.dll + 2009-11-15 10:44 . 2009-11-15 10:44 12216320 c:\windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\94badbd64df59de7da249f71da38b1c2\PresentationCore.ni.dll + 2009-11-15 10:43 . 2009-11-15 10:43 11486720 c:\windows\assembly\NativeImages_v2.0.50727_32\mscorlib\7124a40b9998f7b63c86bd1a2125ce26\mscorlib.ni.dll . -- Snapshot teruggezet naar huidige datum -- . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2008-04-14 1695232] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-11-09 68856] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "LaunchApp"="Alaunch" [X] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-02-28 141848] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-02-28 166424] "Persistence"="c:\windows\system32\igfxpers.exe" [2008-02-28 137752] "AzMixerSel"="c:\program files\Realtek\Audio\InstallShield\AzMixerSel.exe" [2006-07-17 53248] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-04-25 1044480] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672] "IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2008-04-15 208952] "MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2008-04-15 59392] "PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-15 455168] "PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-15 455168] "LManager"="c:\progra~1\LAUNCH~1\QtZgAcer.EXE" [2008-05-14 821768] "Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2009-11-09 24064] "WarReg_PopUp"="c:\acer\WR_PopUp\WarReg_PopUp.exe" [2007-02-20 61440] "eRecoveryService"="c:\acer\Empowering Technology\eRecovery\eRAgent.exe" [2008-05-22 425984] "MobileConnect"="c:\program files\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe" [2008-07-04 2072576] "Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080] "RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.exe [2008-05-16 16862720] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-15 15360] c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\ BTTray.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-2-27 561213] InterVideo WinCinema Manager.lnk - c:\program files\InterVideo\Common\Bin\WinCinemaMgr.exe [2008-6-4 114688] [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"= "c:\\Program Files\\Messenger\\msmsgs.exe"= R2 VMCService;Vodafone Mobile Connect Service;c:\program files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [4/07/2008 12:52 14336] R3 M3000Srv;Acer Crystal Eye webcam Driver;c:\windows\system32\drivers\M3000KNT.sys [5/05/2008 17:01 254976] S3 GoogleDesktopManager-080708-050100;Google Desktop Manager 5.7.808.7150;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [9/11/2009 16:27 24064] S3 JMCR;JMCR;c:\windows\system32\drivers\jmcr.sys [9/11/2009 16:55 96856] --- Andere Services/Drivers In Geheugen --- *Deregistered* - mbr . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.com/ mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0413&s=0&o=xph&d=1109&m=aoa150 IE: Verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm . ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover Rootkit scan 2009-11-15 12:14 Windows 5.1.2600 Service Pack 3 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . --------------------- DLLs Geladen Onder Lopende Processen --------------------- - - - - - - - > 'explorer.exe'(1992) c:\windows\system32\btmmhook.dll . ------------------------ Andere Aktieve Processen ------------------------ . c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe c:\program files\Common Files\InterVideo\RegMgr\iviRegMgr.exe c:\windows\system32\wscntfy.exe c:\windows\system32\igfxsrvc.exe c:\progra~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE c:\windows\system32\igfxext.exe . ************************************************************************** . Voltooingstijd: 2009-11-15 12:17 - machine werd herstart ComboFix-quarantined-files.txt 2009-11-15 11:17 ComboFix2.txt 2009-11-14 16:19 Pre-Run: 104.136.273.920 bytes beschikbaar Post-Run: 104.114.995.200 bytes beschikbaar - - End Of File - - 7F7254DC3806CD9494BADA0A85A986F5 Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 12:20:04, on 15/11/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16915) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\system32\igfxsrvc.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\WINDOWS\system32\igfxext.exe C:\WINDOWS\explorer.exe C:\WINDOWS\system32\notepad.exe C:\Program Files\Internet Explorer\IEXPLORE.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = iGoogle Redirect R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [LaunchApp] Alaunch O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\Audio\InstallShield\AzMixerSel.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [iMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe /idle O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe O4 - HKLM\..\Run: [MobileConnect] %programfiles%\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe /silent O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: BTTray.lnk = ? O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe O8 - Extra context menu item: Verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: Google Desktop Manager 5.7.808.7150 (GoogleDesktopManager-080708-050100) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe O23 - Service: Vodafone Mobile Connect Service (VMCService) - Vodafone - C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe -- End of file - 6790 bytes
  12. patrickvan71
    ComboFix 09-11-14.03 - Patrick 14/11/2009 17:07..2 - FAT32x86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.1012.599 [GMT 1:00] Gestart vanuit: c:\documents and settings\Patrick\Bureaublad\ComboFix.exe . (((((((((((((((((((( Bestanden Gemaakt van 2009-10-14 to 2009-11-14 )))))))))))))))))))))))))))))) . 2009-11-14 10:08 . 2009-11-14 10:08 -------- d-----w- c:\windows\system32\XPSViewer 2009-11-14 10:08 . 2009-11-14 10:08 -------- d-----w- c:\program files\MSBuild 2009-11-14 10:08 . 2009-11-14 10:08 -------- d-----w- c:\program files\Reference Assemblies 2009-11-14 10:07 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll 2009-11-14 10:07 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll 2009-11-14 10:07 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll 2009-11-14 10:07 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll 2009-11-14 10:07 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe 2009-11-14 10:07 . 2009-11-14 10:08 -------- d-----w- C:\8edf6edbff74a5779b00aa6d3874b9 2009-11-14 10:07 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll 2009-11-14 10:07 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll 2009-11-14 08:51 . 2009-11-14 08:51 -------- d-----w- c:\documents and settings\Patrick\Application Data\Malwarebytes 2009-11-14 08:51 . 2009-09-10 13:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-11-14 08:51 . 2009-11-14 08:51 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-11-14 08:51 . 2009-11-14 08:51 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2009-11-14 08:51 . 2009-09-10 13:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys 2009-11-13 18:35 . 2009-11-13 18:35 -------- d-----w- c:\program files\Trend Micro 2009-11-13 09:45 . 2009-08-04 17:29 2149888 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe 2009-11-13 09:45 . 2009-08-04 17:29 2070400 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe 2009-11-13 09:45 . 2009-08-04 17:29 2028544 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe 2009-11-13 09:29 . 2009-11-13 09:29 -------- d-----w- c:\program files\MSXML 4.0 2009-11-10 00:00 . 2009-11-10 00:00 -------- d---a-w- c:\windows\AcerStore 2009-11-09 17:20 . 2008-03-17 10:03 101376 ----a-r- c:\windows\system32\drivers\ewusbmdm.sys 2009-11-09 17:20 . 2008-04-15 21:00 32128 -c--a-w- c:\windows\system32\dllcache\usbccgp.sys 2009-11-09 17:20 . 2008-04-15 21:00 32128 ----a-w- c:\windows\system32\drivers\usbccgp.sys 2009-11-09 17:19 . 2009-11-09 17:19 -------- d-----w- c:\documents and settings\Patrick\Application Data\Vodafone 2009-11-09 17:19 . 2009-11-09 17:19 -------- d-----w- c:\documents and settings\All Users\Application Data\InstallShield 2009-11-09 17:19 . 2009-11-09 17:19 -------- d-----w- c:\documents and settings\LocalService\Application Data\Vodafone 2009-11-09 17:18 . 2009-11-09 17:18 -------- d-----w- c:\documents and settings\All Users\Application Data\Vodafone 2009-11-09 17:18 . 2009-11-09 17:18 -------- d-----w- c:\program files\Vodafone 2009-11-09 17:18 . 2009-11-09 17:18 -------- d-----w- c:\documents and settings\Patrick\Local Settings\Application Data\{D53238E8-3427-491E-A57E-097FA966AAC1} 2009-11-09 17:11 . 2009-11-09 17:14 -------- d-----w- c:\documents and settings\Patrick\Local Settings\Application Data\Identities 2009-11-09 16:21 . 2009-11-09 16:21 -------- d-----w- c:\documents and settings\Patrick\Bluetooth Software 2009-11-09 16:19 . 2006-10-15 17:59 30285 ----a-w- c:\windows\system32\drivers\btwmodem.sys 2009-11-09 16:10 . 2008-04-14 21:32 21504 -c--a-w- c:\windows\system32\dllcache\hidserv.dll 2009-11-09 16:10 . 2008-04-14 21:32 21504 ----a-w- c:\windows\system32\hidserv.dll 2009-11-09 16:09 . 2001-09-06 18:04 12288 -c--a-w- c:\windows\system32\dllcache\mouhid.sys 2009-11-09 16:09 . 2001-09-06 18:04 12288 ----a-w- c:\windows\system32\drivers\mouhid.sys 2009-11-09 16:06 . 2007-01-24 19:27 67960 ----a-w- c:\windows\system32\drivers\btwusb.sys 2009-11-09 16:06 . 2007-02-27 19:02 868042 ----a-w- c:\windows\system32\drivers\btkrnl.sys 2009-11-09 16:06 . 2006-11-28 16:48 47907 ----a-w- c:\windows\system32\drivers\btwhid.sys 2009-11-09 16:06 . 2006-10-15 18:04 106557 ----a-w- c:\windows\system32\btw_ci.dll 2009-11-09 16:06 . 2006-10-15 18:01 149123 ----a-w- c:\windows\system32\drivers\btwdndis.sys 2009-11-09 16:06 . 2006-10-10 02:00 30459 ----a-w- c:\windows\system32\drivers\btport.sys 2009-11-09 16:06 . 2007-01-24 19:33 530861 ----a-w- c:\windows\system32\drivers\btaudio.sys 2009-11-09 16:06 . 2009-11-09 16:06 -------- d-----w- c:\program files\WIDCOMM 2009-11-09 16:04 . 2009-11-09 16:04 -------- d-----w- c:\documents and settings\Patrick\Local Settings\Application Data\Adobe 2009-11-09 16:02 . 2008-10-24 11:21 455296 -c----w- c:\windows\system32\dllcache\mrxsmb.sys 2009-11-09 15:56 . 2007-04-13 10:51 321024 ----a-w- c:\windows\system32\ERUpdateHidden.EXE 2009-11-09 15:56 . 2006-03-30 12:06 258048 ----a-w- c:\windows\system32\CheckD2DSystem.exe 2009-11-09 15:56 . 2006-03-23 11:02 258048 ----a-w- c:\windows\system32\Uninstall_eRecovery.exe 2009-11-09 15:56 . 2005-12-09 08:12 16384 ----a-w- c:\windows\system32\ClearEvent.exe 2009-11-09 15:56 . 2004-11-03 08:06 159744 ----a-w- c:\windows\system32\CloseProcessWindow.dll 2009-11-09 15:55 . 2009-11-09 15:55 125 ----a-w- c:\windows\xUninstall.bat 2009-11-09 15:55 . 2008-07-08 01:16 96856 ----a-w- c:\windows\system32\drivers\jmcr.sys 2009-11-09 15:55 . 2009-11-09 15:55 -------- d-----w- c:\windows\JMCR_DIR 2009-11-09 15:55 . 2008-05-14 10:53 110080 ----a-w- c:\windows\system32\JmCrIcon.dll 2009-11-09 15:54 . 2009-11-14 10:19 60592 ----a-w- c:\documents and settings\Patrick\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2009-11-09 15:54 . 2008-04-13 23:16 10880 -c--a-w- c:\windows\system32\dllcache\ndisip.sys 2009-11-09 15:54 . 2008-04-13 23:16 10880 ----a-w- c:\windows\system32\drivers\NdisIP.sys 2009-11-09 15:53 . 2009-11-09 15:53 -------- d-----w- c:\program files\Common Files\CrystalEye 2009-11-09 15:52 . 2008-06-13 16:43 4342912 ----a-w- c:\windows\system32\acer.exe 2009-11-09 15:52 . 2007-04-19 12:41 83554304 ----a-w- c:\windows\system32\acer.scr 2009-11-09 15:52 . 2009-11-09 15:52 -------- d-----w- c:\program files\Acer Incorporated 2009-11-09 15:52 . 2009-11-09 15:52 -------- d-----w- c:\windows\ACER 2009-11-09 15:49 . 2009-11-09 16:49 -------- d-----w- c:\documents and settings\Patrick\Local Settings\Application Data\Google 2009-11-09 15:36 . 2009-11-09 15:36 -------- d-----w- c:\documents and settings\LocalService\Application Data\SACore 2009-11-09 15:28 . 2009-11-14 09:04 -------- d-----w- c:\documents and settings\All Users\Application Data\Partner 2009-11-09 15:28 . 2009-11-09 15:50 110576 ----a-w- c:\documents and settings\All Users\Application Data\Partner\partner.exe 2009-11-09 15:27 . 2009-11-09 16:55 -------- d-----w- c:\program files\Google 2009-11-09 15:25 . 2009-11-09 15:26 -------- d-----w- c:\program files\Launch Manager 2009-11-09 15:22 . 2008-04-13 23:09 5504 ----a-w- c:\windows\system32\drivers\MSTEE.sys 2009-11-09 15:22 . 2008-04-15 21:00 15232 ----a-w- c:\windows\system32\drivers\StreamIP.sys 2009-11-09 15:22 . 2008-04-15 21:00 11136 ----a-w- c:\windows\system32\drivers\SLIP.sys 2009-11-09 15:22 . 2008-04-13 23:16 19200 ----a-w- c:\windows\system32\drivers\WSTCODEC.SYS 2009-11-09 15:22 . 2008-04-13 23:16 85248 ----a-w- c:\windows\system32\drivers\NABTSFEC.sys 2009-11-09 15:22 . 2008-04-13 23:16 17024 ----a-w- c:\windows\system32\drivers\CCDECODE.sys 2009-11-09 15:09 . 2009-11-09 15:09 -------- d-----w- c:\windows\WebCam 2009-11-09 15:09 . 2008-04-14 21:32 54272 ----a-w- c:\windows\vfwwdm32.dll . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2009-11-14 16:03 . 2008-08-22 08:38 510980 ----a-w- c:\windows\system32\perfh013.dat 2009-11-14 16:03 . 2008-08-22 08:38 91950 ----a-w- c:\windows\system32\perfc013.dat 2009-11-14 10:51 . 2009-11-14 10:51 103018 ----a-w- c:\windows\pchealth\helpctr\Config\Cache\Personal_32_1043.dat 2009-11-14 10:51 . 2008-08-21 19:57 76487 ----a-w- c:\windows\pchealth\helpctr\OfflineCache\index.dat 2009-11-10 00:00 . 2004-09-21 21:28 3 ----a-w- c:\windows\HotFix.bat 2009-11-10 00:00 . 2004-06-26 00:13 139 ----a-w- c:\windows\HotFix2.bat 2009-11-09 23:56 . 2008-08-21 20:20 -------- d-----w- c:\program files\Realtek 2009-11-09 23:56 . 2008-08-21 20:39 -------- d-----w- c:\program files\Microsoft Works 2009-11-09 23:56 . 2008-08-21 20:36 -------- d-----w- c:\program files\Microsoft.NET 2009-11-09 23:56 . 2008-08-21 20:39 -------- d-----w- c:\program files\Microsoft Office Suite Activation Assistant 2009-11-09 23:56 . 2008-08-21 19:58 -------- d-----w- c:\program files\microsoft frontpage 2009-11-09 23:56 . 2008-08-21 20:33 -------- d-----w- c:\program files\InterVideo 2009-11-09 23:56 . 2008-08-21 20:01 -------- d-----w- c:\program files\Intel 2009-11-09 23:55 . 2008-08-21 20:32 -------- d-----w- c:\program files\Common Files\InterVideo 2009-11-09 23:55 . 2008-08-21 20:24 -------- d-----w- c:\program files\Common Files\Adobe AIR 2009-11-09 23:55 . 2008-08-21 20:23 -------- d-----w- c:\program files\Common Files\Adobe 2009-11-09 23:55 . 2008-08-21 20:21 -------- d-----w- c:\program files\Atheros 2009-11-09 23:54 . 2009-11-09 15:23 -------- d-----w- c:\documents and settings\Patrick\Application Data\InstallShield 2009-11-09 23:54 . 2008-08-21 20:43 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help 2009-11-09 23:54 . 2008-08-21 20:21 -------- d-----w- c:\documents and settings\All Users\Application Data\Atheros 2009-11-09 17:18 . 2008-08-21 20:19 -------- d-----w- c:\program files\Common Files\InstallShield 2009-11-09 16:22 . 2008-08-21 20:32 -------- d-----w- c:\documents and settings\All Users\Application Data\McAfee 2009-11-09 16:22 . 2008-08-21 20:30 -------- d-----w- c:\program files\McAfee 2009-11-09 15:55 . 2008-08-21 20:33 -------- d--h--w- c:\program files\InstallShield Installation Information 2009-11-09 15:54 . 2009-11-09 15:23 130 ----a-w- c:\documents and settings\Patrick\Local Settings\Application Data\fusioncache.dat 2009-11-09 15:27 . 2008-08-21 20:31 -------- d-----w- c:\documents and settings\All Users\Application Data\SiteAdvisor 2009-09-11 14:20 . 2008-04-15 21:00 136192 ----a-w- c:\windows\system32\msv1_0.dll 2009-09-04 21:05 . 2008-04-15 21:00 58880 ----a-w- c:\windows\system32\msasn1.dll 2009-08-29 07:32 . 2007-08-13 16:54 832512 ----a-w- c:\windows\system32\wininet.dll 2009-08-29 07:32 . 2008-04-15 21:00 78336 ----a-w- c:\windows\system32\ieencode.dll 2009-08-29 07:32 . 2008-04-15 21:00 17408 ----a-w- c:\windows\system32\corpol.dll 2009-08-26 08:02 . 2008-04-15 21:00 247326 ----a-w- c:\windows\system32\strmdll.dll . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2008-04-14 1695232] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-11-09 68856] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "LaunchApp"="Alaunch" [X] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2008-02-28 141848] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2008-02-28 166424] "Persistence"="c:\windows\system32\igfxpers.exe" [2008-02-28 137752] "AzMixerSel"="c:\program files\Realtek\Audio\InstallShield\AzMixerSel.exe" [2006-07-17 53248] "SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-04-25 1044480] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2008-06-12 34672] "IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2008-04-15 208952] "MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2008-04-15 59392] "PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-15 455168] "PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2008-04-15 455168] "LManager"="c:\progra~1\LAUNCH~1\QtZgAcer.EXE" [2008-05-14 821768] "Google Desktop Search"="c:\program files\Google\Google Desktop Search\GoogleDesktop.exe" [2009-11-09 24064] "WarReg_PopUp"="c:\acer\WR_PopUp\WarReg_PopUp.exe" [2007-02-20 61440] "eRecoveryService"="c:\acer\Empowering Technology\eRecovery\eRAgent.exe" [2008-05-22 425984] "MobileConnect"="c:\program files\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe" [2008-07-04 2072576] "Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080] "RTHDCPL"="RTHDCPL.EXE" - c:\windows\RTHDCPL.exe [2008-05-16 16862720] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-15 15360] c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\ BTTray.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-2-27 561213] InterVideo WinCinema Manager.lnk - c:\program files\InterVideo\Common\Bin\WinCinemaMgr.exe [2008-6-4 114688] [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"= "c:\\Program Files\\Messenger\\msmsgs.exe"= R2 VMCService;Vodafone Mobile Connect Service;c:\program files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe [4/07/2008 12:52 14336] R3 M3000Srv;Acer Crystal Eye webcam Driver;c:\windows\system32\drivers\M3000KNT.sys [5/05/2008 17:01 254976] S3 GoogleDesktopManager-080708-050100;Google Desktop Manager 5.7.808.7150;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [9/11/2009 16:27 24064] S3 JMCR;JMCR;c:\windows\system32\drivers\jmcr.sys [9/11/2009 16:55 96856] S3 Partner Service;Partner Service;c:\documents and settings\All Users\Application Data\Partner\partner.exe [9/11/2009 16:28 110576] --- Andere Services/Drivers In Geheugen --- *NewlyCreated* - MBR *Deregistered* - mbr . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.com/ mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=0413&s=0&o=xph&d=1109&m=aoa150 IE: Verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm . - - - - ORPHANS VERWIJDERD - - - - HKLM-Run-M3000Mnt - M3000Rmv.dll ************************************************************************** scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: ************************************************************************** . --------------------- DLLs Geladen Onder Lopende Processen --------------------- - - - - - - - > 'explorer.exe'(3380) c:\windows\system32\btmmhook.dll . ------------------------ Andere Aktieve Processen ------------------------ . c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe c:\program files\Common Files\InterVideo\RegMgr\iviRegMgr.exe c:\windows\system32\wscntfy.exe c:\windows\system32\igfxsrvc.exe c:\progra~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE c:\windows\system32\igfxext.exe . ************************************************************************** . Voltooingstijd: 2009-11-14 17:19 - machine werd herstart ComboFix-quarantined-files.txt 2009-11-14 16:18 Pre-Run: 104.358.010.880 bytes beschikbaar Post-Run: 104.402.972.672 bytes beschikbaar WindowsXP-KB310994-SP2-Home-BootDisk-NLD.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect - - End Of File - - B777C875DB6076812156E418B8E6121D
  13. patrickvan71
    had ik al gedaan maar kreeg toen heel even een zwart scherm te zien en verdween direkt nu krijg ik bij delete *** Unrecognized Command *** DESCRIPTION: SC is a command line program used for communicating with the NT Service Controller and services. USAGE: sc <server> [command] [service name] <option1> <option2>... The option <server> has the form "\\ServerName" Further help on commands can be obtained by typing: "sc [command]" Commands: query-----------Queries the status for a service, or enumerates the status for types of services. queryex---------Queries the extended status for a service, or enumerates the status for types of services. start-----------Starts a service. pause-----------Sends a PAUSE control request to a service. interrogate-----Sends an INTERROGATE control request to a service. continue--------Sends a CONTINUE control request to a service. stop------------Sends a STOP request to a service. config----------Changes the configuration of a service (persistant). description-----Changes the description of a service. failure---------Changes the actions taken by a service upon failure. sidtype---------Changes the service SID type of a service. qc--------------Queries the configuration information for a service. qdescription----Queries the description for a service. qfailure--------Queries the actions taken by a service upon failure. qsidtype--------Queries the service SID type of a service. delete----------Deletes a service (from the registry). create----------Creates a service. (adds it to the registry). control---------Sends a control to a service. sdshow----------Displays a service's security descriptor. sdset-----------Sets a service's security descriptor. showsid---------Displays the service SID string corresponding to an ar bitrary name. GetDisplayName--Gets the DisplayName for a service. GetKeyName------Gets the ServiceKeyName for a service. EnumDepend------Enumerates Service Dependencies. The following commands don't require a service name: sc <server> <command> <option> boot------------(ok | bad) Indicates whether the last boot should be saved as the last-known-good boot configuration Lock------------Locks the Service Database QueryLock-------Queries the LockStatus for the SCManager Database EXAMPLE: sc start MyService Would you like to see help for the QUERY and QUERYEX commands? [ y | n ]: en bij stop *** Unrecognized Command *** DESCRIPTION: SC is a command line program used for communicating with the NT Service Controller and services. USAGE: sc <server> [command] [service name] <option1> <option2>... The option <server> has the form "\\ServerName" Further help on commands can be obtained by typing: "sc [command]" Commands: query-----------Queries the status for a service, or enumerates the status for types of services. queryex---------Queries the extended status for a service, or enumerates the status for types of services. start-----------Starts a service. pause-----------Sends a PAUSE control request to a service. interrogate-----Sends an INTERROGATE control request to a service. continue--------Sends a CONTINUE control request to a service. stop------------Sends a STOP request to a service. config----------Changes the configuration of a service (persistant). description-----Changes the description of a service. failure---------Changes the actions taken by a service upon failure. sidtype---------Changes the service SID type of a service. qc--------------Queries the configuration information for a service. qdescription----Queries the description for a service. qfailure--------Queries the actions taken by a service upon failure. qsidtype--------Queries the service SID type of a service. delete----------Deletes a service (from the registry). create----------Creates a service. (adds it to the registry). control---------Sends a control to a service. sdshow----------Displays a service's security descriptor. sdset-----------Sets a service's security descriptor. showsid---------Displays the service SID string corresponding to an ar bitrary name. GetDisplayName--Gets the DisplayName for a service. GetKeyName------Gets the ServiceKeyName for a service. EnumDepend------Enumerates Service Dependencies. The following commands don't require a service name: sc <server> <command> <option> boot------------(ok | bad) Indicates whether the last boot should be saved as the last-known-good boot configuration Lock------------Locks the Service Database QueryLock-------Queries the LockStatus for the SCManager Database EXAMPLE: sc start MyService Would you like to see help for the QUERY and QUERYEX commands? [ y | n ]:
  14. patrickvan71
    Malwarebytes' Anti-Malware 1.41 Database versie: 3168 Windows 5.1.2600 Service Pack 3 14/11/2009 10:01:50 mbam-log-2009-11-14 (10-01-50).txt Scan type: Snelle Scan Objecten gescand: 102885 Verstreken tijd: 5 minute(s), 53 second(s) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 1 Registersleutels geïnfecteerd: 2 Registerwaarden geïnfecteerd: 0 Registerdata bestanden geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 1 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige items gevonden) Geheugenmodulen geïnfecteerd: C:\Documents and Settings\All Users\Application Data\Partner\partner.dll (Trojan.BHO) -> Delete on reboot. Registersleutels geïnfecteerd: HKEY_CLASSES_ROOT\TypeLib\{86676e13-d6d8-4652-9fcf-f2047f1fb000} (Trojan.BHO) -> Quarantined and deleted successfully. HKEY_CLASSES_ROOT\kt_bho.KettleBho (Trojan.BHO) -> Quarantined and deleted successfully. Registerwaarden geïnfecteerd: (Geen kwaadaardige items gevonden) Registerdata bestanden geïnfecteerd: (Geen kwaadaardige items gevonden) Mappen geïnfecteerd: (Geen kwaadaardige items gevonden) Bestanden geïnfecteerd: C:\Documents and Settings\All Users\Application Data\Partner\partner.dll (Trojan.BHO) -> Delete on reboot. Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 10:09:18, on 14/11/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16915) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\Acer\Empowering Technology\eRecovery\eRAgent.exe C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe C:\WINDOWS\system32\igfxsrvc.exe C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\WINDOWS\system32\igfxext.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe C:\WINDOWS\system32\wuauclt.exe C:\DOCUME~1\Patrick\LOCALS~1\Temp\RtkBtMnt.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Home R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = iGoogle Redirect R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [LaunchApp] Alaunch O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\Audio\InstallShield\AzMixerSel.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [iMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe /idle O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe O4 - HKLM\..\Run: [MobileConnect] %programfiles%\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe /silent O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: BTTray.lnk = ? O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe O8 - Extra context menu item: Verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: Google Desktop Manager 5.7.808.7150 (GoogleDesktopManager-080708-050100) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe O23 - Service: Partner Service - Google Inc. - C:\Documents and Settings\All Users\Application Data\Partner\partner.exe O23 - Service: Vodafone Mobile Connect Service (VMCService) - Vodafone - C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe -- End of file - 7289 bytes
  15. patrickvan71
    Ik heb een acer one 150 serie met windows XP internet via proximus vodofoonstick de ontvangst ervan is heel goed Maar een pagina openen duurd soms wel 1 minuut Logje Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 19:35:43, on 13/11/2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0013) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe C:\WINDOWS\system32\wuauclt.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\igfxtray.exe C:\WINDOWS\system32\hkcmd.exe C:\WINDOWS\system32\igfxpers.exe C:\WINDOWS\RTHDCPL.EXE C:\WINDOWS\system32\igfxsrvc.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Acer\Empowering Technology\eRecovery\eRAgent.exe C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\Messenger\msmsgs.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe C:\WINDOWS\system32\igfxext.exe C:\PROGRA~1\WIDCOMM\BLUETO~1\BTSTAC~1.EXE C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe C:\Program Files\Internet Explorer\iexplore.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Trend Micro\HijackThis\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Home R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = iGoogle Redirect R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\Documents and Settings\All Users\Application Data\Partner\partner.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.3.4501.1418\swg.dll O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [LaunchApp] Alaunch O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE O4 - HKLM\..\Run: [AzMixerSel] C:\Program Files\Realtek\Audio\InstallShield\AzMixerSel.exe O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [iMJPMIG8.1] "C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32 O4 - HKLM\..\Run: [MSPY2002] C:\WINDOWS\system32\IME\PINTLGNT\ImScInst.exe /SYNC O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName O4 - HKLM\..\Run: [M3000Mnt] Rundll32.exe M3000Rmv.dll ,WinMainRmv /StartStillMnt O4 - HKLM\..\Run: [LManager] C:\PROGRA~1\LAUNCH~1\QtZgAcer.EXE O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup O4 - HKLM\..\Run: [WarReg_PopUp] C:\Acer\WR_PopUp\WarReg_PopUp.exe /idle O4 - HKLM\..\Run: [eRecoveryService] C:\Acer\Empowering Technology\eRecovery\eRAgent.exe O4 - HKLM\..\Run: [MobileConnect] %programfiles%\Vodafone\Vodafone Mobile Connect\Bin\MobileConnect.exe /silent O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Global Startup: BTTray.lnk = ? O4 - Global Startup: InterVideo WinCinema Manager.lnk = C:\Program Files\InterVideo\Common\Bin\WinCinemaMgr.exe O8 - Extra context menu item: Verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe O23 - Service: Google Desktop Manager 5.7.808.7150 (GoogleDesktopManager-080708-050100) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: IviRegMgr - InterVideo - C:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe O23 - Service: Partner Service - Google Inc. - C:\Documents and Settings\All Users\Application Data\Partner\partner.exe O23 - Service: Vodafone Mobile Connect Service (VMCService) - Vodafone - C:\Program Files\Vodafone\Vodafone Mobile Connect\Bin\VMCService.exe -- End of file - 7371 bytes
  16. patrickvan71
    heb de map kunnen verwijderen en pc werkt nu veel beter ik heb ook nog problemen met mijn mini laptop pc acer daar gaat internet heel traag op heb internet via vodofoon stick van proximus deze geeft aan dat de ontvangst uitstekend is maar ik moet soms zelfs 1 minuut wachten eer ik een pagina open krijg er staat windows xp op heb jij hier ervaring mee alvast bedankt voor de alles
  17. patrickvan71
    ik heb een minipc acer en een proximusabbonement 2 gb de ineternet werkt heel traag moet altijd bijna 1 minuut wachten eer een pagina word geopend mijn verbinding is zeer goed wat kan dit zijn
  18. patrickvan71
    Er staan 4 bestanden in 1ste is-08J9I.tmp 672 kb 2de is-934TR.tmp 672 kb 3 de is-MHD17.tmp 672 kb 4 de is-TMF9E.tmp 672 kb dan nog een map : jfikcdg Helper module helper en dan nog 2 videobestanden unins000 videocdfil 0 kb unins001 videocdfil 0kb Krijg hier niets van open en kan ook niets verwijderen
  19. patrickvan71
    heb nu ook het probleem dat ik internet niet meer open kreeg als ik mijn internetnetwerkkaart terug herinstalleer krijg ik terug verbinding de grootte van de map is 233 MB
  20. patrickvan71
    ik kan de map niet verwijderen geeft foutmelding dat de toegang is geweigerd en de map is ook lichter van kleur dan de andere mappen
  21. patrickvan71
    ComboFix 09-11-07.02 - HP_Eigenaar 07/11/2009 21:52.1.2 - NTFSx86 Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.1023.522 [GMT 1:00] Gestart vanuit: c:\documents and settings\HP_Eigenaar.UW-4B58D8528225.010\Bureaublad\ComboFix.exe . (((((((((((((((((((((((((((((((((( Andere Verwijderingen ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\recycler\S-1-5-21-1140059765-3212615011-822765628-1008 c:\recycler\S-1-5-21-1392782204-2910411137-595659944-1008 c:\recycler\S-1-5-21-1454471165-1563985344-839522115-1003 c:\recycler\S-1-5-21-2384306107-4065644019-3614054829-1008 c:\recycler\S-1-5-21-2530479321-3168111918-3959915577-1008 c:\recycler\S-1-5-21-2980974957-2362691395-331201074-1008 c:\recycler\S-1-5-21-3166004126-2216532080-1896957157-1008 c:\recycler\S-1-5-21-3642696174-2907673024-2473785870-1008 c:\recycler\S-1-5-21-3683876973-1205261196-2008707247-1008 c:\recycler\S-1-5-21-3878273479-2044403101-3050102289-1008 c:\recycler\S-1-5-21-3997871322-2706188379-2952022579-1008 c:\recycler\S-1-5-21-4021697195-1971132130-2829512805-1008 c:\recycler\S-1-5-21-547962957-2864047727-1318818443-1008 c:\recycler\S-1-5-21-998554297-875414112-1731722802-1008 c:\windows\inst.exe c:\windows\system32\ps2.bat D:\Autorun.inf . (((((((((((((((((((( Bestanden Gemaakt van 2009-10-07 to 2009-11-07 )))))))))))))))))))))))))))))) . 2010-10-17 10:00 . 2010-10-17 10:00 -------- d-----w- C:\9bfe8073ddcad9580456b772 2010-10-17 10:00 . 2010-10-17 10:04 -------- d-----w- C:\963d7796bcda1ddaf65528d43bd98c 2010-01-18 10:28 . 2010-01-18 10:28 -------- d-----w- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225.010\Application Data\HPQ 2010-01-18 10:04 . 2010-01-18 10:04 -------- d-----w- c:\program files\AVG 2010-01-18 09:52 . 2010-10-17 10:10 -------- d-----w- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225.010\Application Data\HpUpdate 2010-01-18 09:52 . 2010-01-18 09:52 -------- d-----w- c:\windows\Hewlett-Packard 2009-11-07 19:00 . 2009-11-07 19:03 -------- d-----w- C:\42934a881a667762828721 2009-11-07 18:59 . 2009-11-07 18:59 -------- d-----w- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225.010\Bluetooth Software 2009-11-07 18:56 . 2009-11-07 18:57 -------- d-----w- c:\windows\LastGood 2009-11-07 18:56 . 2007-01-24 18:27 67960 ----a-w- c:\windows\system32\drivers\btwusb.sys 2009-11-07 18:56 . 2006-11-28 15:48 47907 ----a-w- c:\windows\system32\drivers\btwhid.sys 2009-11-07 18:56 . 2006-10-15 17:01 149123 ----a-w- c:\windows\system32\drivers\btwdndis.sys 2009-11-07 18:56 . 2006-10-15 17:04 106557 ----a-w- c:\windows\system32\btw_ci.dll 2009-11-07 18:56 . 2006-10-10 01:00 30459 ----a-w- c:\windows\system32\drivers\btport.sys 2009-11-07 18:56 . 2007-02-27 18:02 868042 ----a-w- c:\windows\system32\drivers\btkrnl.sys 2009-11-07 18:56 . 2007-01-24 18:33 530861 ----a-w- c:\windows\system32\drivers\btaudio.sys 2009-11-07 18:56 . 2009-11-07 18:56 -------- d-----w- c:\program files\WIDCOMM 2009-11-07 13:31 . 2009-11-07 13:34 -------- d-----w- C:\7406d1e6bce465431fb8bcc090 2009-11-07 12:32 . 2009-11-07 12:35 -------- d-----w- C:\0a806387b73cb67d670720 2009-11-06 23:45 . 2009-11-06 23:46 -------- d-----w- C:\950625e830b77dcf18e40ab1532e 2009-11-01 19:23 . 2009-11-01 19:23 -------- d-----w- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225.010\Application Data\Malwarebytes 2009-11-01 19:23 . 2009-09-10 13:54 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-11-01 19:23 . 2009-11-01 19:23 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-11-01 19:23 . 2009-11-01 19:23 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes 2009-11-01 19:23 . 2009-09-10 13:53 19160 ----a-w- c:\windows\system32\drivers\mbam.sys 2009-11-01 14:26 . 2009-11-01 14:26 -------- d-----w- c:\program files\Trend Micro 2009-11-01 13:19 . 2009-11-01 20:28 -------- d-----w- c:\program files\RegistryFix8 2009-11-01 12:46 . 2009-11-01 12:57 -------- d-----w- c:\program files\Ascentive 2009-10-21 18:02 . 2009-10-21 18:02 -------- d-----w- C:\a72fb6d0744dc8e0a963b6f3f52ce133 2009-10-21 18:02 . 2009-10-21 18:02 -------- d-----w- C:\ac518c255530150714c4d3504e . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-01-18 09:53 . 2005-01-24 15:30 139264 ----a-w- c:\windows\system32\hpzjrd01.dll 2009-11-17 11:46 . 2009-04-01 14:22 -------- d-----w- c:\program files\Windows Live 2009-11-01 12:47 . 2005-10-11 15:15 -------- d--h--w- c:\program files\InstallShield Installation Information 2009-11-01 11:46 . 2009-08-04 08:37 -------- d-----w- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225.010\Application Data\LimeWire 2009-10-28 06:18 . 2004-12-03 17:15 70546 ----a-w- c:\windows\system32\perfc013.dat 2009-10-28 06:18 . 2004-12-03 17:15 443836 ----a-w- c:\windows\system32\perfh013.dat 2009-10-10 10:05 . 2008-08-15 15:08 -------- d--h--w- c:\program files\Ruwopseqlujbw 2009-10-09 14:50 . 2005-10-11 15:50 -------- d-----w- c:\program files\Common Files\Symantec Shared 2009-10-09 14:49 . 2005-10-11 15:49 -------- d-----w- c:\documents and settings\All Users\Application Data\Symantec 2009-10-08 09:31 . 2009-07-30 17:57 27464 ----a-w- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225.010\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2009-09-27 19:35 . 2009-09-27 19:34 -------- d-----w- c:\program files\InterActual 2009-09-23 10:00 . 2009-09-23 10:00 -------- d-----r- c:\program files\Norton Support 2009-09-20 09:53 . 2008-01-29 10:01 26600 ----a-r- c:\windows\system32\drivers\GEARAspiWDM.sys 2009-09-20 09:53 . 2008-01-29 10:02 107368 ----a-r- c:\windows\system32\GEARAspi.dll 2009-09-11 14:20 . 2006-02-01 04:29 136192 ----a-w- c:\windows\system32\msv1_0.dll 2009-09-11 12:35 . 2009-07-31 09:19 -------- d-----w- c:\documents and settings\All Users\Application Data\{7B6BA59A-FB0E-4499-8536-A7420338BF3B} 2009-09-04 21:05 . 2006-02-01 04:29 58880 ----a-w- c:\windows\system32\msasn1.dll 2009-08-29 08:00 . 2004-08-04 11:00 916480 ----a-w- c:\windows\system32\wininet.dll 2009-08-26 08:02 . 2006-02-01 04:29 247326 ----a-w- c:\windows\system32\strmdll.dll 2009-08-20 14:09 . 2009-08-20 14:09 1193832 ----a-w- c:\windows\system32\FM20.DLL 2009-08-09 21:55 . 2009-08-09 21:55 152576 ----a-w- c:\documents and settings\HP_Eigenaar.UW-4B58D8528225.010\Application Data\Sun\Java\jre1.6.0_15\lzma.dll 2004-08-09 21:30 . 2006-07-05 20:03 40960 ----a-w- c:\program files\Uninstall_CDS.exe 2006-02-01 07:02 . 2006-01-31 23:02 22 -csha-w- c:\windows\SMINST\HPCD.sys . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856] "BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2006-05-09 94208] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 52736] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2005-08-02 7110656] "RemoteControl"="c:\program files\ASUS\ASUS Remote\RemoteControlAppl.exe" [2009-11-07 61440] "HPHUPD08"="c:\program files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe" [2005-06-02 49152] "Home Theater SchSvr"="c:\program files\Common Files\InterVideo\SchSvr\SchSvr.exe" [2005-07-18 106496] "WINREMOTE"="c:\program files\InterVideo\Common\Bin\WinRemote.exe" [2005-07-18 262144] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2005-05-04 278528] "Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2004-04-14 233472] "HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2008-12-08 54576] "QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2005-10-11 98304] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696] "NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648] "SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-07-25 149280] "Malwarebytes Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2009-09-10 1312080] "KBD"="c:\hp\KBD\KBD.EXE" [2005-02-02 61440] "Snelkoppeling naar eigenschappenvenster voor High Definition Audio"="HDAShCut.exe" - c:\windows\system32\HdAShCut.exe [2005-01-07 61952] "nwiz"="nwiz.exe" - c:\windows\system32\nwiz.exe [2005-08-02 1519616] "SoundMan"="SOUNDMAN.EXE" - c:\windows\SOUNDMAN.EXE [2005-05-04 90112] "AlcWzrd"="ALCWZRD.EXE" - c:\windows\ALCWZRD.EXE [2005-05-04 2805248] c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\ BTTray.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-2-27 561213] HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2005-5-12 282624] Microsoft Office.lnk - c:\program files\Microsoft Office\Office10\OSA.EXE [2001-2-13 83360] [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus] "DisableMonitoring"=dword:00000001 [HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall] "DisableMonitoring"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpofxm08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposfx08.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hposid01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqscnvw.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqkygrp.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpqCopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpfccopy.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpzwiz01.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqPhUnl.exe"= "c:\\Program Files\\HP\\Digital Imaging\\Unload\\HpqDIA.exe"= "c:\\Program Files\\HP\\Digital Imaging\\bin\\hpoews01.exe"= "c:\\Program Files\\iTunes\\iTunes.exe"= "c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\LimeWire\\LimeWire.exe"= "c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"= R3 3xHybrid;3xHybrid service;c:\windows\system32\drivers\3xHybrid.sys [11/10/2005 16:14 2786176] --- Andere Services/Drivers In Geheugen --- *NewlyCreated* - BTWDINS *NewlyCreated* - MBR *NewlyCreated* - PROCEXP113 *Deregistered* - mbr *Deregistered* - PROCEXP113 . Inhoud van de 'Gedeelde Taken' map 2009-11-06 c:\windows\Tasks\Norton Security Scan for HP_Eigenaar.job - c:\program files\Norton Security Scan\Nss.exe [2009-03-13 03:53] 2009-11-07 c:\windows\Tasks\User_Feed_Synchronization-{4602B838-EAFE-414F-BBB5-BB70560C1395}.job - c:\windows\system32\msfeedssync.exe [2009-03-08 02:31] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.be/ uInternet Connection Wizard,ShellNext = iexplore IE: &Google Search - c:\program files\Google\GoogleToolbar1.dll/cmsearch.html IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~3\Office10\EXCEL.EXE/3000 IE: Gelijkwaardige pagina's - c:\program files\Google\GoogleToolbar1.dll/cmsimilar.html IE: Koppelingspagina's - c:\program files\Google\GoogleToolbar1.dll/cmbacklinks.html IE: Opgeslagen momentopname van de pagina - c:\program files\Google\GoogleToolbar1.dll/cmcache.html IE: Verzenden naar &Bluetooth-apparaat... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm . - - - - ORPHANS VERWIJDERD - - - - Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file) WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file) HKCU-Run-Performance Center - c:\program files\Ascentive\Performance Center\APCMain.exe HKLM-Run-PCDrProfiler - (no file) HKLM-Run-NWEReboot - (no file) ************************************************************************** scannen van verborgen processen ... scannen van verborgen autostart items ... scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: ************************************************************************** . Voltooingstijd: 2009-11-07 22:18 ComboFix-quarantined-files.txt 2009-11-07 21:17 Pre-Run: 90.764.656.640 bytes beschikbaar Post-Run: 95.670.718.464 bytes beschikbaar - - End Of File - - F916D4EF998027613C044A6757381787
  22. patrickvan71
    ik heb al mijn drivers terug hergeinstaleerd met programma dat er op staat mijn pc is een hp Pavilion intel® Pentium ® 4 CPU 3.20 GHz Kloksnelheid 3.20 GHz 1,00 gb werkgeheugen Maar hij doet het nog steeds Heb ook mijn draadloze muis van mijn laptop eens verbonden met een bleutooth stick om te kijken of het niet aan mijn muis lag Maar daar heeft hij hetzelfde probleem mee Als ik met de muis naar beneden scrol blijft de pc hangen je scrold dan automatisch verder en, het scherm beweegt niet dan gaat het scherm ineens een heel pak verder dan moet ik terug scrollen omdat hij te ver is en dat is enorm storend
  23. patrickvan71
    Als ik het programma probeer krijg ik volgende foutmelding U kunt combofix niet herbenoemen als combofix 1 Gelieve een andere naam te gebruiken
  24. patrickvan71
    Hallo, Heb al verschillende malen geprobeerd maar ik heb avg free intivirus en krijg deze niet uitgeschakeld. Het programme word altijd geblokkeerd
  25. patrickvan71
    Het is al gebeterd maar internet werkt nog traag pagina's worden trager geopend dan normaal muis werkt beter maar heeft nog haar kuren
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.