Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Mijn PC is traag


  • This topic is locked This topic is locked
2 replies to this topic

#1 gertjan1966

gertjan1966

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:09:51 AM

Posted 12 February 2010 - 06:17 PM

Hallo allemaal,
Ik heb een zeer trage PC en heb combofix gebruikt, ik heb de volgende log gekregen en weet niet precies wat te doen.
Kan iemand mij helpen?
De log is de volgende:
ComboFix 10-02-12.01 - Compaq_Eigenaar 12-02-2010 23:57:52.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.31.1043.18.447.72 [GMT 1:00]
Gestart vanuit: c:\documents and settings\Compaq_Eigenaar\Mijn documenten\Gert-Jan\ComboFix.exe
AV: Microsoft Security Essentials *On-access scanning enabled* (Updated) {BCF43643-A118-4432-AEDE-D861FCBCFCDF}
.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.

D:\Autorun.inf

.
(((((((((((((((((((( Bestanden Gemaakt van 2010-01-12 to 2010-02-12 ))))))))))))))))))))))))))))))
.

2010-02-12 21:40 . 2010-02-12 21:40 -------- d--h--r- c:\documents and settings\Compaq_Eigenaar\Onlangs geopend
2010-02-12 20:40 . 2009-10-08 12:14 59664 --s---w- c:\windows\system32\drivers\TfSysMon.sys
2010-02-12 20:40 . 2009-10-08 12:14 33552 --s---w- c:\windows\system32\drivers\TfNetMon.sys
2010-02-12 20:40 . 2009-10-08 12:14 51984 --s---w- c:\windows\system32\drivers\TfFsMon.sys
2010-02-12 20:19 . 2010-01-21 23:21 767952 ----a-w- c:\windows\BDTSupport.dll
2010-02-12 20:19 . 2010-01-21 23:21 149456 ----a-w- c:\windows\SGDetectionTool.dll
2010-02-12 20:19 . 2008-11-26 11:08 131 ----a-w- c:\windows\IDB.zip
2010-02-12 20:19 . 2010-01-21 23:21 1152444 ----a-w- c:\windows\UDB.zip
2010-02-12 20:19 . 2010-01-21 23:21 165840 ----a-w- c:\windows\PCTBDRes.dll
2010-02-12 20:19 . 2010-01-21 23:21 1652688 ----a-w- c:\windows\PCTBDCore.dll
2010-02-12 20:12 . 2009-09-24 07:55 229304 ----a-w- c:\windows\system32\drivers\pctgntdi.sys
2010-02-12 20:10 . 2009-09-23 15:10 207280 ----a-w- c:\windows\system32\drivers\PCTCore.sys
2010-02-12 20:10 . 2009-10-06 15:31 87784 ----a-w- c:\windows\system32\drivers\PCTAppEvent.sys
2010-02-12 20:09 . 2009-09-03 08:45 70408 ----a-w- c:\windows\system32\drivers\pctplsg.sys
2010-02-12 20:09 . 2010-02-12 20:41 -------- d-----w- c:\documents and settings\All Users\Application Data\PC Tools
2010-02-12 20:09 . 2010-02-12 20:09 -------- d-----w- c:\documents and settings\Compaq_Eigenaar\Application Data\PC Tools
2010-02-12 20:09 . 2010-02-12 22:51 -------- d-----w- c:\program files\Spyware Doctor
2010-02-12 17:25 . 2010-02-12 17:25 3242400 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\Microsoft Antimalware\LocalCopy\{6F0D35A0-1ACF-A518-1F7F-59AE9305BCBB}-bdinstall.exe
2010-02-12 17:22 . 2010-02-12 17:22 -------- d-----w- c:\documents and settings\Compaq_Eigenaar\Local Settings\Application Data\Threat Expert
2010-02-12 17:04 . 2010-02-12 20:20 -------- d-----w- c:\program files\Common Files\PC Tools
2010-02-12 17:02 . 2010-02-12 22:56 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2010-02-07 15:57 . 2010-02-07 15:57 -------- d-----w- c:\program files\DAEMON Tools
2010-02-07 15:55 . 2010-02-07 15:56 682232 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-01-28 20:12 . 2010-01-28 20:14 -------- d-----w- c:\documents and settings\All Users\Application Data\MyHeritage
2010-01-28 20:12 . 2010-01-28 20:12 -------- d-----w- c:\documents and settings\Compaq_Eigenaar\Application Data\MyHeritage
2010-01-28 20:10 . 2010-01-28 20:28 -------- d-----w- c:\program files\Family Toolbar
2010-01-28 20:08 . 2010-01-28 20:29 -------- d-----w- c:\program files\MyHeritage
2010-01-25 19:14 . 2010-02-12 22:47 -------- d-----w- c:\documents and settings\Compaq_Eigenaar\Local Settings\Application Data\AskToolbar
2010-01-25 19:14 . 2010-01-25 19:15 -------- d-----w- c:\program files\Ask.com
2010-01-25 19:14 . 2010-01-25 19:14 -------- d-----w- c:\program files\uTorrent
2010-01-25 19:13 . 2010-02-12 22:10 -------- d-----w- c:\documents and settings\Compaq_Eigenaar\Application Data\uTorrent
2010-01-23 18:11 . 2010-01-23 18:12 -------- d-----w- c:\program files\Common Files\DVDVideoSoft
2010-01-23 18:11 . 2010-01-23 18:11 -------- d-----w- c:\program files\DVDVideoSoft
2010-01-21 19:15 . 2008-03-28 09:07 20992 ----a-w- c:\documents and settings\Compaq_Eigenaar\Application Data\Convivea\Bit_Che\languages\compare.exe
2010-01-21 19:15 . 2008-03-28 09:02 60928 ----a-w- c:\documents and settings\Compaq_Eigenaar\Application Data\Convivea\Bit_Che\scripts\update.exe
2010-01-21 19:15 . 2007-07-11 18:43 24557 ----a-w- c:\documents and settings\Compaq_Eigenaar\Application Data\Convivea\Bit_Che\scripts\special.exe
2010-01-21 19:15 . 2010-01-21 19:15 -------- d-----w- c:\documents and settings\Compaq_Eigenaar\Application Data\Convivea
2010-01-21 19:15 . 2009-04-10 17:40 118784 ----a-w- c:\documents and settings\Compaq_Eigenaar\Application Data\Convivea\Bit_Che\scripts\x.exe
2010-01-21 19:15 . 2003-08-19 04:06 80896 ----a-w- c:\documents and settings\Compaq_Eigenaar\Application Data\Convivea\Bit_Che\scripts\x.dll
2010-01-21 19:15 . 2010-01-21 19:15 -------- d-----w- c:\program files\Bit Che
2010-01-18 20:21 . 2010-01-18 20:21 -------- d-----w- c:\program files\Common Files\PCSuite
2010-01-18 20:21 . 2010-01-18 20:21 -------- d-----w- c:\program files\Common Files\Nokia
2010-01-18 20:17 . 2008-08-26 08:26 18816 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys
2010-01-18 20:16 . 2010-01-18 20:16 -------- d-----w- c:\program files\PC Connectivity Solution
2010-01-18 20:14 . 2010-01-18 20:21 -------- d-----w- c:\program files\Nokia
2010-01-18 20:11 . 2010-01-18 20:10 34507392 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Nokia_PC_Suite_7_1_40_1_dut.exe
2010-01-18 20:10 . 2010-01-18 20:10 95232 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\pcswpcsi.exe
2010-01-18 20:10 . 2010-01-18 20:10 8192 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\UninstCCD.exe
2010-01-18 20:10 . 2010-01-18 20:10 61440 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2010-01-18 20:10 . 2010-01-18 20:10 10240 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{9249D7E7-33E7-4CC8-BB0B-3DF3C3CB2568}\Installer\CommonCustomActions\UninstPCS.exe
2010-01-17 10:54 . 2010-01-17 10:54 -------- d-----w- c:\program files\Unitronics
2010-01-17 10:54 . 2010-01-17 10:54 -------- d-----w- c:\program files\Common Files\Unitronics
2010-01-17 10:54 . 2006-10-18 15:29 102400 ----a-w- c:\windows\system32\wdapi811.dll
2010-01-17 10:54 . 2000-10-02 12:27 125712 ----a-w- c:\windows\system32\VB6DE.DLL
2010-01-17 10:54 . 2000-10-02 12:24 102160 ----a-w- c:\windows\system32\VB6JP.DLL
2010-01-17 10:54 . 2008-11-21 02:30 587456 ----a-w- c:\windows\system32\XceedZip.dll
2010-01-17 10:54 . 1998-06-18 00:00 89360 ----a-w- c:\windows\system32\VB5DB.DLL
2010-01-17 10:54 . 1998-04-24 00:00 24848 ----a-w- c:\windows\system32\MSJTER35.DLL
2010-01-17 10:54 . 1998-04-24 00:00 123664 ----a-w- c:\windows\system32\MSJINT35.DLL
2010-01-17 10:54 . 2004-11-04 09:54 471040 ----a-w- c:\windows\system32\HHActiveX.dll
2010-01-17 10:54 . 2003-01-08 16:37 393216 ----a-w- c:\windows\system32\ExFileVw.dll
2010-01-17 10:53 . 1998-04-24 00:00 1045776 ----a-w- c:\windows\system32\MSJET35.DLL
2010-01-17 10:53 . 2007-05-01 15:22 91632 ----a-w- c:\windows\system32\dsofile.dll
2010-01-17 10:53 . 1998-04-27 00:00 570128 ----a-w- c:\windows\system32\DAO350.DLL

.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-02-12 22:55 . 2009-12-02 20:27 12 ----a-w- c:\windows\bthservsdp.dat
2010-02-10 10:32 . 2009-11-09 21:09 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2010-01-31 16:20 . 2010-01-31 16:20 0 ----a-w- c:\documents and settings\Compaq_Eigenaar\Application Data\wklnhst.dat
2010-01-21 20:28 . 2009-12-24 16:40 -------- d-----w- c:\documents and settings\Compaq_Eigenaar\Application Data\LimeWire
2010-01-18 20:10 . 2009-12-01 17:36 -------- d-----w- c:\documents and settings\All Users\Application Data\Installations
2010-01-17 10:53 . 2006-06-28 22:49 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-01-14 10:12 . 2009-11-25 21:02 181120 ------w- c:\windows\system32\MpSigStub.exe
2010-01-09 21:01 . 2010-01-09 21:00 -------- d-----w- c:\program files\K-Lite Codec Pack
2010-01-09 20:29 . 2010-01-09 20:29 -------- d-----w- c:\program files\Windows Media Connect 2
2009-12-31 16:50 . 2004-08-04 04:00 353792 ----a-w- c:\windows\system32\drivers\srv.sys
2009-12-21 19:10 . 2004-08-04 04:00 916480 ----a-w- c:\windows\system32\wininet.dll
2009-12-17 07:42 . 2004-08-04 04:00 345600 ----a-w- c:\windows\system32\mspaint.exe
2009-12-15 20:28 . 2009-12-15 20:28 -------- d-----w- c:\program files\Common Files\Deterministic Networks
2009-12-14 07:10 . 2004-08-04 04:00 33280 ----a-w- c:\windows\system32\csrsrv.dll
2009-12-12 14:15 . 2010-01-09 21:00 178176 ----a-w- c:\windows\system32\unrar.dll
2009-12-09 10:11 . 2004-08-04 11:00 2070400 ----a-w- c:\windows\system32\ntkrnlpa.exe
2009-12-09 10:11 . 2004-08-04 04:00 2193536 ----a-w- c:\windows\system32\ntoskrnl.exe
2009-12-08 19:37 . 2004-12-03 10:15 446792 ----a-w- c:\windows\system32\perfh013.dat
2009-12-08 19:37 . 2004-12-03 10:15 71592 ----a-w- c:\windows\system32\perfc013.dat
2009-12-04 18:22 . 2004-08-04 04:00 455424 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2009-12-01 17:56 . 2009-12-01 17:56 95232 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\pcswpcsi.exe
2009-12-01 17:56 . 2009-12-01 17:56 8192 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\UninstCCD.exe
2009-12-01 17:56 . 2009-12-01 17:56 61440 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2009-12-01 17:56 . 2009-12-01 17:56 10240 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Installer\CommonCustomActions\UninstPCS.exe
2009-12-01 17:50 . 2009-12-01 17:56 33700216 ----a-w- c:\documents and settings\All Users\Application Data\Installations\{3D39E775-DDDA-4327-B747-0BDC5F191331}\Nokia_PC_Suite_7_1_30_9_dut.exe
2009-11-27 17:14 . 2004-08-04 04:00 1295872 ----a-w- c:\windows\system32\quartz.dll
2009-11-27 17:14 . 2004-08-04 11:00 17920 ----a-w- c:\windows\system32\msyuv.dll
2009-11-27 16:10 . 2004-08-04 11:00 8704 ----a-w- c:\windows\system32\tsbyuv.dll
2009-11-27 16:10 . 2004-08-04 11:00 48128 ----a-w- c:\windows\system32\iyuv_32.dll
2009-11-27 16:10 . 2004-08-04 04:00 85504 ----a-w- c:\windows\system32\avifil32.dll
2009-11-27 16:10 . 2004-08-04 04:00 28672 ----a-w- c:\windows\system32\msvidc32.dll
2009-11-27 16:10 . 2004-08-04 04:00 11264 ----a-w- c:\windows\system32\msrle32.dll
2009-11-25 21:00 . 2009-11-10 20:48 84896 ----a-w- c:\documents and settings\Compaq_Eigenaar\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2009-11-21 16:03 . 2004-08-04 04:00 471552 ----a-w- c:\windows\AppPatch\aclayers.dll
.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2009-09-02 13:56 1175944 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2009-09-02 1175944]

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2009-09-02 1175944]

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IncrediMail"="c:\program files\IncrediMail\bin\IncMail.exe" [2009-09-07 251336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2006-03-08 16010240]
"Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2005-07-22 237568]
"HPBootOp"="c:\program files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" [2006-02-15 249856]
"Reminder"="c:\windows\Creator\Remind_XP.exe" [2004-12-14 663552]
"HP Software Update"="c:\program files\HP\HP Software Update\HPwuSchd2.exe" [2005-02-17 49152]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-11-10 149280]
"MSSE"="c:\program files\Microsoft Security Essentials\msseces.exe" [2009-09-13 1048392]
"BluetoothAuthenticationAgent"="bthprops.cpl" [2008-04-14 110592]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^VPN Client.lnk]
path=c:\documents and settings\All Users\Menu Start\Programma's\Opstarten\VPN Client.lnk
backup=c:\windows\pss\VPN Client.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
2007-04-03 22:29 165784 ----a-w- c:\program files\DAEMON Tools\daemon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
2009-11-11 09:57 1451520 ----a-w- c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\uTorrent]
2010-01-25 19:14 289584 ----a-w- c:\program files\uTorrent\uTorrent.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\IncrediMail\\bin\\ImApp.exe"=
"c:\\Program Files\\IncrediMail\\bin\\IncMail.exe"=
"c:\\Program Files\\IncrediMail\\bin\\ImpCnt.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\TeamViewer\\Version4\\TeamViewer.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=

R0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [12-2-2010 21:10 207280]
R0 TfFsMon;TfFsMon;c:\windows\system32\drivers\TfFsMon.sys [12-2-2010 21:40 51984]
R0 TfSysMon;TfSysMon;c:\windows\system32\drivers\TfSysMon.sys [12-2-2010 21:40 59664]
R2 Browser Defender Update Service;Browser Defender Update Service;c:\program files\Spyware Doctor\BDT\BDTUpdateService.exe [12-2-2010 21:19 112592]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [7-2-2010 16:55 682232]
S2 gupdate1ca68979f48731a;Google Updateservice (gupdate1ca68979f48731a);c:\program files\Google\Update\GoogleUpdate.exe [18-11-2009 22:39 133104]
S3 sdAuxService;PC Tools Auxiliary Service;c:\program files\Spyware Doctor\pctsAuxs.exe [12-2-2010 21:09 358600]
S3 TfNetMon;TfNetMon;c:\windows\system32\drivers\TfNetMon.sys [12-2-2010 21:40 33552]
S4 pctgntdi;pctgntdi;c:\windows\system32\drivers\pctgntdi.sys [12-2-2010 21:12 229304]
S4 pctplsg;pctplsg;c:\windows\system32\drivers\pctplsg.sys [12-2-2010 21:09 70408]
.
Inhoud van de 'Gedeelde Taken' map

2010-02-12 c:\windows\Tasks\MP Scheduled Scan.job
- c:\program files\Microsoft Security Essentials\MpCmdRun.exe [2009-07-02 16:36]

2010-02-12 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files\Ask.com\UpdateTask.exe [2009-09-02 13:56]
.
.
------- Bijkomende Scan -------
.
uStart Page = hxxp://www.startpagina.nl/
uDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=NL_NL&c=63&bd=PRESARIO&pf=desktop
mStart Page = hxxp://search.myheritage.com
mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=NL_NL&c=63&bd=PRESARIO&pf=desktop
IE: &Google Zoeken - c:\program files\Google\GoogleToolbar1.dll/cmsearch.html
IE: &Woord vertalen in het Nederlands - c:\program files\Google\GoogleToolbar1.dll/cmwordtrans.html
IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
IE: Gelijkwaardige pagina's - c:\program files\Google\GoogleToolbar1.dll/cmsimilar.html
IE: Koppelingspagina's - c:\program files\Google\GoogleToolbar1.dll/cmbacklinks.html
IE: Opgeslagen momentopname van de pagina - c:\program files\Google\GoogleToolbar1.dll/cmcache.html
.
- - - - ORPHANS VERWIJDERD - - - -

WebBrowser-{FD2FD708-1F6F-4B68-B141-C5778F0C19BB} - (no file)
HKLM-Run-PCDrProfiler - (no file)



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-02-13 00:03
Windows 5.1.2600 Service Pack 3 NTFS

scannen van verborgen processen ...

scannen van verborgen autostart items ...

scannen van verborgen bestanden ...

Scan succesvol afgerond
verborgen bestanden: 0

**************************************************************************
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\|.|w*]
"3140110900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL"
.
--------------------- DLLs Geladen Onder Lopende Processen ---------------------

- - - - - - - > 'winlogon.exe'(816)
c:\windows\system32\Ati2evxx.dll
.
Voltooingstijd: 2010-02-13 00:06:42
ComboFix-quarantined-files.txt 2010-02-12 23:06

Pre-Run: 127.816.032.256 bytes beschikbaar
Post-Run: 128.091.983.872 bytes beschikbaar

- - End Of File - - F78FC17370ADC2CCC3A8043BCDCA55F3


BC AdBot (Login to Remove)

 


#2 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 60,831 posts
  • ONLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:05:51 PM

Posted 13 February 2010 - 04:10 AM

Hallo,

Dit is een engelstalig forum. Het wordt op prijs gesteld om de engelse taal te gebruiken. Laat me weten of dit mogelijk is.
Als dit een probleem voor je is, zal ik een paar links naar Nederlandstalige forums geven. Omdat alle instructies in het engels zijn, is het erg moeilijk om je hier nederlandstalige instructies te geven (dat zou betekenen dat ik al mijn instructies eerst moet vertalen).

Laat me weten of je hier verder wilt gaan of liever een Nederlandstalig forum gebruikt.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#3 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 60,831 posts
  • ONLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:05:51 PM

Posted 19 February 2010 - 10:18 AM

Due to lack of feedback, this topic is now closed.

If you are the original topic starter and you need this topic reopened, please send me a PM.

Everyone else, please start a new topic.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users