Anoniem2 Geplaatst: 23 oktober 2009 Delen Geplaatst: 23 oktober 2009 hoi ik heb sinds een tijdje last van cid popups\r\nik heb wat rond gekeken op de site en hierbij geef ik een log van Lopsd en hijackthis:\r\n\r\n\r\nLOPSD:\r\n\r\n\r\n --------------------\\\\ Lop S&D 4.2.5-0 XP/Vista\r\n\r\n Microsoft Windows XP Home Edition ( v5.1.2600 ) Service Pack 3\r\n X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 Duo CPU E6750 @ 2.66GHz )\r\n BIOS : Award Modular BIOS v6.00PG\r\n USER : Mike ( Administrator )\r\n BOOT : Normal boot\r\n Antivirus : AVG Anti-Virus Free 8.5 (Activated)\r\n C:\\ (Local Disk) - NTFS - Total:244 Go (Free:135 Go)\r\n D:\\ (Local Disk) - NTFS - Total:221 Go (Free:213 Go)\r\n E:\\ (CD or DVD)\r\n F:\\ (USB)\r\n G:\\ (USB)\r\n H:\\ (USB)\r\n I:\\ (USB)\r\n J:\\ (USB)\r\n\r\n \"C:\\Lop SD\" ( MAJ : 19-12-2008|23:40 )\r\n Option : [2] ( vr 23-10-2009|10:56 )\r\n\r\n\r\n \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ HERSTEL\r\n\r\n Verwijderd ! - C:\\WINDOWS\\Tasks\\AB0328519184DD41.job\r\n Verwijderd ! - C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\Axis Readme Second Bat\\idle once.dat\r\n Verwijderd ! - C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\Axis Readme Second Bat\\idle once.exe\r\n Verwijderd ! - C:\\DOCUME~1\\Mike\\Cookies\\mike@www.adserver5[1].txt\r\n Verwijderd ! - C:\\DOCUME~1\\Mike\\Cookies\\mike@adultfriendfinder[1].txt\r\n Verwijderd ! - C:\\DOCUME~1\\Mike\\Cookies\\mike@advertising.marketnetwork[1].txt\r\n Verwijderd ! - C:\\DOCUME~1\\Mike\\Cookies\\mike@bigpoint[1].txt\r\n Verwijderd ! - C:\\DOCUME~1\\Mike\\Cookies\\mike@partypoker[1].txt\r\n Verwijderd ! - C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\Axis Readme Second Bat\r\n Verwijderd ! - C:\\Program Files\\plusfast\r\n \r\n \\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ \r\n\r\n \r\n --------------------\\\\ Beschrijving van mappen in APPLIC~1\r\n\r\n [15-09-2009|16:55] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\{755AC846-7372-4AC8-8550-C52491DAA8BD}\r\n [08-08-2009|14:37] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}\r\n [09-06-2009|16:57] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\Adobe\r\n [08-08-2009|14:36] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\Apple\r\n [08-08-2009|14:37] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\Apple Computer\r\n [19-09-2009|22:19] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\avg8\r\n [10-03-2009|18:49] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\AVS4YOU\r\n [15-04-2009|19:28] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\Blizzard\r\n [13-09-2009|14:25] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\Disk Cleaner\r\n [15-05-2009|19:29] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\Google\r\n [09-05-2009|07:40] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\Hitman Pro\r\n [09-05-2009|07:41] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\Hitman Pro 3\r\n [09-05-2009|09:00] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\Lavasoft\r\n [12-09-2009|11:58] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\Malwarebytes\r\n [27-09-2009|09:51] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\Microsoft\r\n [04-02-2009|15:46] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\MSScanAppDataDir\r\n [20-02-2009|15:07] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\NOS\r\n [13-09-2009|18:22] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\PC Drivers HeadQuarters\r\n [21-02-2009|16:50] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\Sony\r\n [28-03-2009|18:29] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\Sony Ericsson\r\n [23-10-2009|10:44] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\Spybot - Search & Destroy\r\n [18-08-2009|09:51] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\SugarGames\r\n [06-08-2009|08:46] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\SwiftKit\r\n [28-03-2009|18:29] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\Teleca\r\n [12-09-2009|19:01] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\TEMP\r\n [17-10-2009|15:47] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\TrackMania\r\n [25-03-2009|15:51] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\Windows Genuine Advantage\r\n [03-05-2009|19:45] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\Winferno\r\n [18-08-2009|09:50] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\Zylom\r\n [0|bestand(en)] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\bytes\r\n [31|map(pen)] C:\\DOCUME~1\\ALLUSE~1\\APPLIC~1\\bytes beschikbaar\r\n\r\n [03-02-2009|10:42] C:\\DOCUME~1\\DEFAUL~1\\APPLIC~1\\Microsoft\r\n [0|bestand(en)] C:\\DOCUME~1\\DEFAUL~1\\APPLIC~1\\bytes\r\n [3|map(pen)] C:\\DOCUME~1\\DEFAUL~1\\APPLIC~1\\bytes beschikbaar\r\n\r\n\r\n [13-09-2009|11:24] C:\\DOCUME~1\\Leo\\APPLIC~1\\Adobe\r\n [04-02-2009|23:32] C:\\DOCUME~1\\Leo\\APPLIC~1\\Google\r\n [04-02-2009|23:32] C:\\DOCUME~1\\Leo\\APPLIC~1\\Identities\r\n [04-02-2009|23:33] C:\\DOCUME~1\\Leo\\APPLIC~1\\Macromedia\r\n [17-10-2009|23:39] C:\\DOCUME~1\\Leo\\APPLIC~1\\Microsoft\r\n [29-03-2009|22:41] C:\\DOCUME~1\\Leo\\APPLIC~1\\Sony Ericsson\r\n [06-06-2009|20:28] C:\\DOCUME~1\\Leo\\APPLIC~1\\Sun\r\n [29-03-2009|22:41] C:\\DOCUME~1\\Leo\\APPLIC~1\\Teleca\r\n [0|bestand(en)] C:\\DOCUME~1\\Leo\\APPLIC~1\\bytes\r\n [10|map(pen)] C:\\DOCUME~1\\Leo\\APPLIC~1\\bytes beschikbaar\r\n\r\n [12-09-2009|12:23] C:\\DOCUME~1\\LOCALS~1\\APPLIC~1\\Microsoft\r\n [05-02-2009|17:00] C:\\DOCUME~1\\LOCALS~1\\APPLIC~1\\Xfire\r\n [0|bestand(en)] C:\\DOCUME~1\\LOCALS~1\\APPLIC~1\\bytes\r\n [4|map(pen)] C:\\DOCUME~1\\LOCALS~1\\APPLIC~1\\bytes beschikbaar\r\n\r\n [07-04-2009|21:14] C:\\DOCUME~1\\Mike\\APPLIC~1\\Adobe\r\n [04-10-2009|17:10] C:\\DOCUME~1\\Mike\\APPLIC~1\\Apple Computer\r\n [04-02-2009|15:57] C:\\DOCUME~1\\Mike\\APPLIC~1\\Brother\r\n [04-02-2009|16:35] C:\\DOCUME~1\\Mike\\APPLIC~1\\Google\r\n [03-02-2009|21:56] C:\\DOCUME~1\\Mike\\APPLIC~1\\Identities\r\n [07-04-2009|21:14] C:\\DOCUME~1\\Mike\\APPLIC~1\\Leadertech\r\n [17-10-2009|19:01] C:\\DOCUME~1\\Mike\\APPLIC~1\\LimeWire\r\n [17-08-2009|21:13] C:\\DOCUME~1\\Mike\\APPLIC~1\\LimeWirePlus\r\n [03-02-2009|21:57] C:\\DOCUME~1\\Mike\\APPLIC~1\\Macromedia\r\n [12-09-2009|11:58] C:\\DOCUME~1\\Mike\\APPLIC~1\\Malwarebytes\r\n [13-09-2009|13:37] C:\\DOCUME~1\\Mike\\APPLIC~1\\Microsoft\r\n [05-02-2009|15:11] C:\\DOCUME~1\\Mike\\APPLIC~1\\Mozilla\r\n [21-02-2009|17:19] C:\\DOCUME~1\\Mike\\APPLIC~1\\Publish Providers\r\n [21-02-2009|17:18] C:\\DOCUME~1\\Mike\\APPLIC~1\\Sony\r\n [28-03-2009|21:02] C:\\DOCUME~1\\Mike\\APPLIC~1\\Sony Ericsson\r\n [21-02-2009|16:41] C:\\DOCUME~1\\Mike\\APPLIC~1\\Sony Setup\r\n [03-02-2009|22:16] C:\\DOCUME~1\\Mike\\APPLIC~1\\Sun\r\n [01-08-2009|16:23] C:\\DOCUME~1\\Mike\\APPLIC~1\\Teleca\r\n [19-07-2009|15:30] C:\\DOCUME~1\\Mike\\APPLIC~1\\uTorrent\r\n [22-10-2009|21:14] C:\\DOCUME~1\\Mike\\APPLIC~1\\Xfire\r\n [0|bestand(en)] C:\\DOCUME~1\\Mike\\APPLIC~1\\bytes\r\n [22|map(pen)] C:\\DOCUME~1\\Mike\\APPLIC~1\\bytes beschikbaar\r\n\r\n [07-05-2009|16:39] C:\\DOCUME~1\\NETWOR~1\\APPLIC~1\\Microsoft\r\n [05-02-2009|16:47] C:\\DOCUME~1\\NETWOR~1\\APPLIC~1\\Xfire\r\n [0|bestand(en)] C:\\DOCUME~1\\NETWOR~1\\APPLIC~1\\bytes\r\n [4|map(pen)] C:\\DOCUME~1\\NETWOR~1\\APPLIC~1\\bytes beschikbaar\r\n\r\n \r\n --------------------\\\\ Geplande Taken gelocaliseerd in C:\\WINDOWS\\Tasks\r\n\r\n [23-10-2009 10:13][--a------] C:\\WINDOWS\\tasks\\GoogleUpdateTaskMachineUA.job\r\n [23-10-2009 10:46][--a------] C:\\WINDOWS\\tasks\\GoogleUpdateTaskMachineCore.job\r\n [20-10-2009 16:37][--a------] C:\\WINDOWS\\tasks\\AppleSoftwareUpdate.job\r\n [23-10-2009 10:56][--ah-----] C:\\WINDOWS\\tasks\\User_Feed_Synchronization-{47540984-4A93-45B6-A361-4AF43FC8677C}.job\r\n [23-10-2009 10:55][--ah-----] C:\\WINDOWS\\tasks\\User_Feed_Synchronization-{DC78E571-7E28-45CA-871C-F0A564E9763B}.job\r\n [05-10-2009 07:57][--a------] C:\\WINDOWS\\tasks\\Ad-Aware Update (Weekly).job\r\n [23-10-2009 10:46][--a------] C:\\WINDOWS\\tasks\\PCConfidential.job\r\n [23-10-2009 10:45][--ah-----] C:\\WINDOWS\\tasks\\SA.DAT\r\n [04-08-2004 14:00][-r-h-----] C:\\WINDOWS\\tasks\\desktop.ini\r\n\r\n --------------------\\\\ Beschrijving van mappen in C:\\Program Files\r\n\r\n [14-03-2009|15:52] C:\\Program Files\\AccountView\r\n [19-06-2009|15:37] C:\\Program Files\\Activision\r\n [09-06-2009|16:57] C:\\Program Files\\Adobe\r\n [03-02-2009|11:53] C:\\Program Files\\AGEIA Technologies\r\n [07-05-2009|17:21] C:\\Program Files\\Alwil Software\r\n [08-08-2009|14:36] C:\\Program Files\\Apple Software Update\r\n [08-05-2009|08:57] C:\\Program Files\\AVG\r\n [18-08-2009|13:01] C:\\Program Files\\AVIConverter\r\n [10-03-2009|18:49] C:\\Program Files\\AVS4YOU\r\n [15-08-2009|10:53] C:\\Program Files\\BitComet\r\n [08-08-2009|14:37] C:\\Program Files\\Bonjour\r\n [03-07-2009|20:27] C:\\Program Files\\CCleaner\r\n [13-05-2009|13:08] C:\\Program Files\\Circe Developement\r\n [13-09-2009|13:37] C:\\Program Files\\Common Files\r\n [03-02-2009|10:40] C:\\Program Files\\ComPlus Applications\r\n [05-02-2009|20:53] C:\\Program Files\\Conduit\r\n [04-02-2009|16:42] C:\\Program Files\\Cool Timer\r\n [28-03-2009|20:05] C:\\Program Files\\Disc2Phone\r\n [13-09-2009|22:10] C:\\Program Files\\Disk Cleaner\r\n [06-02-2009|20:26] C:\\Program Files\\Dyyno\r\n [12-09-2009|11:35] C:\\Program Files\\Free Offers from Freeze.com\r\n [12-09-2009|13:51] C:\\Program Files\\Globe Fotoservice\r\n [18-08-2009|09:50] C:\\Program Files\\Google\r\n [04-02-2009|20:56] C:\\Program Files\\Harmony_Hollow_Software\r\n [18-02-2009|19:48] C:\\Program Files\\HKO\r\n [19-09-2009|20:07] C:\\Program Files\\HyCam2\r\n [11-08-2009|11:15] C:\\Program Files\\Hyves Desktop\r\n [16-07-2009|18:19] C:\\Program Files\\HyvesToolbar\r\n [31-07-2009|23:19] C:\\Program Files\\Imikimi\r\n [06-08-2009|19:08] C:\\Program Files\\InstallShield Installation Information\r\n [03-02-2009|11:46] C:\\Program Files\\Intel\r\n [14-10-2009|22:07] C:\\Program Files\\Internet Explorer\r\n [15-09-2009|16:56] C:\\Program Files\\iPhone-configuratieprogramma\r\n [28-09-2009|13:10] C:\\Program Files\\iPod\r\n [28-09-2009|13:11] C:\\Program Files\\iTunes\r\n [05-08-2009|15:32] C:\\Program Files\\Java\r\n [09-05-2009|09:00] C:\\Program Files\\Lavasoft\r\n [16-02-2009|20:10] C:\\Program Files\\LeetClient+\r\n [06-08-2009|19:02] C:\\Program Files\\LG Electronics\r\n [21-10-2009|16:33] C:\\Program Files\\LG PC Suite II\r\n [05-10-2009|21:13] C:\\Program Files\\LimeWire\r\n [04-02-2009|14:10] C:\\Program Files\\Messenger\r\n [13-09-2009|21:36] C:\\Program Files\\Messenger Plus! Live\r\n [03-02-2009|18:54] C:\\Program Files\\Microsoft\r\n [04-05-2009|08:18] C:\\Program Files\\Microsoft CAPICOM 2.1.0.2\r\n [03-02-2009|10:42] C:\\Program Files\\microsoft frontpage\r\n [03-02-2009|12:33] C:\\Program Files\\Microsoft Office\r\n [13-09-2009|14:22] C:\\Program Files\\Microsoft Office Outlook Connector\r\n [13-09-2009|14:21] C:\\Program Files\\Microsoft SQL Server Compact Edition\r\n [03-02-2009|12:32] C:\\Program Files\\Microsoft Visual Studio\r\n [03-02-2009|12:33] C:\\Program Files\\Microsoft Works\r\n [03-02-2009|12:33] C:\\Program Files\\Microsoft.NET\r\n [03-02-2009|11:00] C:\\Program Files\\Movie Maker\r\n [23-10-2009|10:17] C:\\Program Files\\Mozilla Firefox\r\n [21-02-2009|16:49] C:\\Program Files\\MSBuild\r\n [03-02-2009|10:40] C:\\Program Files\\MSN Gaming Zone\r\n [10-07-2009|21:27] C:\\Program Files\\MSN Messenger\r\n [21-02-2009|19:50] C:\\Program Files\\MSXML 4.0\r\n [03-02-2009|12:35] C:\\Program Files\\Nero\r\n [03-02-2009|10:59] C:\\Program Files\\NetMeeting\r\n [20-02-2009|15:22] C:\\Program Files\\NOS\r\n [03-02-2009|10:41] C:\\Program Files\\Online Services\r\n [13-08-2009|23:11] C:\\Program Files\\Outlook Express\r\n [29-04-2009|11:59] C:\\Program Files\\PartyGaming\r\n [07-05-2009|16:34] C:\\Program Files\\PAV\r\n [13-09-2009|18:22] C:\\Program Files\\PC Drivers HeadQuarters\r\n [03-09-2009|10:45] C:\\Program Files\\PhotoScape\r\n [15-09-2009|16:54] C:\\Program Files\\QuickTime\r\n [03-02-2009|12:02] C:\\Program Files\\Realtek\r\n [21-02-2009|16:47] C:\\Program Files\\Reference Assemblies\r\n [08-08-2009|12:17] C:\\Program Files\\Sony\r\n [28-03-2009|18:28] C:\\Program Files\\Sony Ericsson\r\n [21-02-2009|16:40] C:\\Program Files\\Sony Setup\r\n [23-10-2009|10:42] C:\\Program Files\\Spybot - Search & Destroy\r\n [29-04-2009|14:28] C:\\Program Files\\Steam\r\n [17-10-2009|16:53] C:\\Program Files\\SwiftKit\r\n [11-08-2009|21:17] C:\\Program Files\\TmNationsForever\r\n [13-09-2009|22:22] C:\\Program Files\\Trend Micro\r\n [03-02-2009|10:46] C:\\Program Files\\Uninstall Information\r\n [21-02-2009|17:19] C:\\Program Files\\VSTplugins\r\n [13-09-2009|14:22] C:\\Program Files\\Windows Live\r\n [13-09-2009|14:20] C:\\Program Files\\Windows Live SkyDrive\r\n [25-03-2009|15:46] C:\\Program Files\\Windows Media Connect 2\r\n [25-03-2009|15:46] C:\\Program Files\\Windows Media Player\r\n [03-02-2009|10:59] C:\\Program Files\\Windows NT\r\n [03-02-2009|10:42] C:\\Program Files\\WindowsUpdate\r\n [06-05-2009|19:28] C:\\Program Files\\Winferno\r\n [03-02-2009|10:42] C:\\Program Files\\xerox\r\n [22-10-2009|22:58] C:\\Program Files\\Xfire\r\n [13-09-2009|14:33] C:\\Program Files\\Zards software\r\n [0|bestand(en)] C:\\Program Files\\bytes\r\n [92|map(pen)] C:\\Program Files\\bytes beschikbaar\r\n\r\n --------------------\\\\ Beschrijving van mappen in C:\\Program Files\\Common Files\r\n\r\n [09-06-2009|16:57] C:\\Program Files\\Common Files\\Adobe\r\n [03-02-2009|12:35] C:\\Program Files\\Common Files\\Ahead\r\n [28-09-2009|13:10] C:\\Program Files\\Common Files\\Apple\r\n [10-03-2009|18:49] C:\\Program Files\\Common Files\\AVSMedia\r\n [09-08-2009|10:24] C:\\Program Files\\Common Files\\Blizzard Entertainment\r\n [03-02-2009|12:33] C:\\Program Files\\Common Files\\DESIGNER\r\n [31-07-2009|22:25] C:\\Program Files\\Common Files\\InstallShield\r\n [13-09-2009|14:20] C:\\Program Files\\Common Files\\Microsoft Shared\r\n [03-02-2009|10:41] C:\\Program Files\\Common Files\\MSSoap\r\n [03-02-2009|11:34] C:\\Program Files\\Common Files\\ODBC\r\n [03-02-2009|10:41] C:\\Program Files\\Common Files\\Services\r\n [28-03-2009|18:29] C:\\Program Files\\Common Files\\Sony Ericsson Shared\r\n [03-02-2009|11:34] C:\\Program Files\\Common Files\\SpeechEngines\r\n [13-09-2009|14:22] C:\\Program Files\\Common Files\\System\r\n [28-03-2009|18:29] C:\\Program Files\\Common Files\\Teleca Shared\r\n [06-05-2009|18:55] C:\\Program Files\\Common Files\\Uninstall\r\n [03-02-2009|16:30] C:\\Program Files\\Common Files\\Windows Live\r\n [03-02-2009|11:52] C:\\Program Files\\Common Files\\Wise Installation Wizard\r\n [0|bestand(en)] C:\\Program Files\\Common Files\\bytes\r\n [20|map(pen)] C:\\Program Files\\Common Files\\bytes beschikbaar\r\n\r\n --------------------\\\\ Process\r\n\r\n ( 57 Processes )\r\n\r\n ... OK !\r\n\r\n --------------------\\\\ Zoeken met S_Lop\r\n\r\n Geen Lop mappen gevonden !\r\n \r\n --------------------\\\\ Zoeken naar Lop Bestanden - Mappen\r\n\r\n Geen Lop mappen gevonden ! \r\n \r\n --------------------\\\\ Zoeken doorheen het Register\r\n\r\n [HKEY_CURRENT_USER\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run] \r\n\r\n [HKEY_LOCAL_MACHINE\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run]\r\n \r\n ..... OK !\r\n\r\n --------------------\\\\ Nazicht van het Hosts bestand\r\n\r\n Hosts bestand IN ORDE\r\n\r\n\r\n --------------------\\\\ Zoeken naar verborgen bestanden met Catchme\r\n \r\n catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, [url]http://www.gmer.net[/url]\r\n Rootkit scan 2009-10-23 10:57:16\r\n Windows 5.1.2600 Service Pack 3 NTFS\r\n scanning hidden processes ...\r\n scanning hidden files ...\r\n scan completed successfully\r\n hidden processes: 0\r\n hidden files: 0\r\n \r\n --------------------\\\\ Zoeken naar andere infecties\r\n\r\n --------------------\\\\ Cracks & Keygens ..\r\n\r\n C:\\DOCUME~1\\Mike\\Mijn documenten\\LimeWire\\Incomplete\\T-6372990-Eminem Ft. Dr. Dre & 50 Cent - Crack A Bottle (Remix) - HotNewHipHop.com.mp3\r\n C:\\DOCUME~1\\Mike\\Mijn documenten\\Mijn muziek\\Eminem Feat Dr. Dre & 50 Cent - Crack A Bottle.mp3\r\n C:\\DOCUME~1\\Mike\\Mijn documenten\\TrackMania\\Tracks\\Replays\\Autosaves\\Mike_$fffCrack the loops! $000(RC).Replay.gbx\r\n\r\n\r\n [F:365][D:44]-> C:\\DOCUME~1\\Mike\\LOCALS~1\\Temp\r\n [F:480][D:0]-> C:\\DOCUME~1\\Mike\\Cookies\r\n [F:18072][D:24]-> C:\\DOCUME~1\\Mike\\LOCALS~1\\TEMPOR~1\\content.IE5\r\n\r\n 1 - \"C:\\Lop SD\\LopR_1.txt\" - ma 14-09-2009|18:44 - Option : [2]\r\n 2 - \"C:\\Lop SD\\LopR_2.txt\" - vr 23-10-2009|10:59 - Option : [2]\r\n\r\n --------------------\\\\ Scan voltooid om 10:59:11\r\n\r\n\r\n\r\n\r\n[COLOR=\"Magenta\"][SIZE=\"5\"]Hijackthis[/SIZE][/COLOR] Quote Link naar reactie
0 Anoniem2 Geplaatst: 23 oktober 2009 Auteur Delen Geplaatst: 23 oktober 2009 Logfile of Trend Micro HijackThis v2.0.2\r\nScan saved at 11:02:01, on 23-10-2009\r\nPlatform: Windows XP SP3 (WinNT 5.01.2600)\r\nMSIE: Internet Explorer v8.00 (8.00.6001.18702)\r\nBoot mode: Normal\r\n\r\nRunning processes:\r\nC:\\WINDOWS\\System32\\smss.exe\r\nC:\\WINDOWS\\system32\\winlogon.exe\r\nC:\\WINDOWS\\system32\\services.exe\r\nC:\\WINDOWS\\system32\\lsass.exe\r\nC:\\WINDOWS\\system32\\svchost.exe\r\nC:\\WINDOWS\\System32\\svchost.exe\r\nC:\\WINDOWS\\system32\\svchost.exe\r\nC:\\WINDOWS\\system32\\brsvc01a.exe\r\nC:\\WINDOWS\\system32\\spoolsv.exe\r\nC:\\WINDOWS\\system32\\brss01a.exe\r\nC:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\bin\\AppleMobileDeviceService.exe\r\nC:\\PROGRA~1\\AVG\\AVG8\\avgwdsvc.exe\r\nC:\\Program Files\\Bonjour\\mDNSResponder.exe\r\nC:\\Program Files\\Java\\jre6\\bin\\jqs.exe\r\nC:\\Program Files\\Common Files\\Microsoft Shared\\VS7DEBUG\\MDM.EXE\r\nC:\\WINDOWS\\system32\\nvsvc32.exe\r\nC:\\WINDOWS\\system32\\PnkBstrA.exe\r\nC:\\WINDOWS\\system32\\PnkBstrB.exe\r\nC:\\Program Files\\Microsoft\\Search Enhancement Pack\\SeaPort\\SeaPort.exe\r\nC:\\PROGRA~1\\AVG\\AVG8\\avgrsx.exe\r\nC:\\PROGRA~1\\AVG\\AVG8\\avgnsx.exe\r\nC:\\WINDOWS\\system32\\svchost.exe\r\nC:\\WINDOWS\\Explorer.EXE\r\nC:\\WINDOWS\\system32\\RUNDLL32.EXE\r\nC:\\WINDOWS\\RTHDCPL.EXE\r\nC:\\Program Files\\Sony Ericsson\\Mobile2\\Application Launcher\\Application Launcher.exe\r\nC:\\PROGRA~1\\AVG\\AVG8\\avgtray.exe\r\nC:\\Program Files\\Adobe\\Photoshop Album Starter Edition\\3.2\\Apps\\apdproxy.exe\r\nC:\\WINDOWS\\UMStor\\Res.EXE\r\nC:\\Program Files\\Java\\jre6\\bin\\jusched.exe\r\nC:\\Program Files\\iTunes\\iTunesHelper.exe\r\nC:\\WINDOWS\\system32\\ctfmon.exe\r\nC:\\Program Files\\Common Files\\Teleca Shared\\CapabilityManager.exe\r\nC:\\Program Files\\Common Files\\Ahead\\lib\\NMBgMonitor.exe\r\nC:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\r\nC:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe\r\nC:\\Program Files\\Spybot - Search & Destroy\\TeaTimer.exe\r\nC:\\Program Files\\Xfire\\Xfire.exe\r\nC:\\Program Files\\iPod\\bin\\iPodService.exe\r\nC:\\Program Files\\Common Files\\Ahead\\lib\\NMIndexStoreSvr.exe\r\nC:\\Program Files\\Common Files\\Teleca Shared\\Generic.exe\r\nC:\\Program Files\\Sony Ericsson\\Mobile2\\Mobile Phone Monitor\\epmworker.exe\r\nC:\\WINDOWS\\system32\\wuauclt.exe\r\nC:\\Program Files\\Windows Live\\Contacts\\wlcomm.exe\r\nC:\\Program Files\\Internet Explorer\\iexplore.exe\r\nC:\\Program Files\\Internet Explorer\\iexplore.exe\r\nC:\\Program Files\\Internet Explorer\\iexplore.exe\r\nC:\\Program Files\\Trend Micro\\HijackThis\\HijackThis.exe\r\n\r\nR1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = [url]http://www.hyves.nl[/url]\r\nR0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = [url]http://www.runescape.com/[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = [url]http://go.microsoft.com/fwlink/?LinkId=69157[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url]\r\nR0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = [url]http://go.microsoft.com/fwlink/?LinkId=69157[/url]\r\nR0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,SearchAssistant = \r\nR1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Window Title = Windows Internet Explorer wordt aangeboden door Hyves\r\nR1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings,ProxyOverride = *.local\r\nR0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar,LinksFolderName = Koppelingen\r\nO2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\\Program Files\\Common Files\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll\r\nO2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\\Program Files\\AVG\\AVG8\\avgssie.dll\r\nO2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\\Program Files\\Spybot - Search & Destroy\\SDHelper.dll\r\nO2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\\Program Files\\Microsoft\\Search Enhancement Pack\\Search Helper\\SEPsearchhelperie.dll\r\nO2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\\Program Files\\Common Files\\Microsoft Shared\\Windows Live\\WindowsLiveLogin.dll\r\nO2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll\r\nO2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\\Program Files\\Google\\GoogleToolbarNotifier\\5.3.4501.1418\\swg.dll\r\nO2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\\Program Files\\Google\\Google Toolbar\\Component\\fastsearch_B7C5AC242193BB3E.dll\r\nO2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll\r\nO2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\\Program Files\\Java\\jre6\\lib\\deploy\\jqs\\ie\\jqs_plugin.dll\r\nO3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll\r\nO4 - HKLM\\..\\Run: [NvCplDaemon] RUNDLL32.EXE C:\\WINDOWS\\system32\\NvCpl.dll,NvStartup\r\nO4 - HKLM\\..\\Run: [nwiz] nwiz.exe /install\r\nO4 - HKLM\\..\\Run: [NvMediaCenter] RUNDLL32.EXE C:\\WINDOWS\\system32\\NvMcTray.dll,NvTaskbarInit\r\nO4 - HKLM\\..\\Run: [RTHDCPL] RTHDCPL.EXE\r\nO4 - HKLM\\..\\Run: [Alcmtr] ALCMTR.EXE\r\nO4 - HKLM\\..\\Run: [NeroFilterCheck] C:\\WINDOWS\\system32\\NeroCheck.exe\r\nO4 - HKLM\\..\\Run: [Adobe Reader Speed Launcher] \"C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\"\r\nO4 - HKLM\\..\\Run: [Sony Ericsson PC Suite] \"C:\\Program Files\\Sony Ericsson\\Mobile2\\Application Launcher\\Application Launcher.exe\" /startoptions\r\nO4 - HKLM\\..\\Run: [AVG8_TRAY] C:\\PROGRA~1\\AVG\\AVG8\\avgtray.exe\r\nO4 - HKLM\\..\\Run: [Google Quick Search Box] \"C:\\Program Files\\Google\\Quick Search Box\\GoogleQuickSearchBox.exe\" /autorun\r\nO4 - HKLM\\..\\Run: [Adobe Photo Downloader] \"C:\\Program Files\\Adobe\\Photoshop Album Starter Edition\\3.2\\Apps\\apdproxy.exe\"\r\nO4 - HKLM\\..\\Run: [USB Storage Toolbox] C:\\WINDOWS\\UMStor\\Res.EXE\r\nO4 - HKLM\\..\\Run: [SunJavaUpdateSched] \"C:\\Program Files\\Java\\jre6\\bin\\jusched.exe\"\r\nO4 - HKLM\\..\\Run: [QuickTime Task] \"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime\r\nO4 - HKLM\\..\\Run: [iTunesHelper] \"C:\\Program Files\\iTunes\\iTunesHelper.exe\"\r\nO4 - HKCU\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\ctfmon.exe\r\nO4 - HKCU\\..\\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] \"C:\\Program Files\\Common Files\\Ahead\\lib\\NMBgMonitor.exe\"\r\nO4 - HKCU\\..\\Run: [msnmsgr] \"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\" /background\r\nO4 - HKCU\\..\\Run: [swg] \"C:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe\"\r\nO4 - HKCU\\..\\Run: [SpybotSD TeaTimer] C:\\Program Files\\Spybot - Search & Destroy\\TeaTimer.exe\r\nO4 - HKUS\\S-1-5-19\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'Lokale service\')\r\nO4 - HKUS\\S-1-5-20\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'Netwerkservice\')\r\nO4 - HKUS\\S-1-5-18\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'SYSTEM\')\r\nO4 - HKUS\\.DEFAULT\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'Default user\')\r\nO4 - Startup: Xfire.lnk = C:\\Program Files\\Xfire\\Xfire.exe\r\nO8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\\WINDOWS\\system32\\GPhotos.scr/200\r\nO9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\\Program Files\\Windows Live\\Writer\\WriterBrowserExtension.dll\r\nO9 - Extra \'Tools\' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\\Program Files\\Windows Live\\Writer\\WriterBrowserExtension.dll\r\nO9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\\PROGRA~1\\MICROS~2\\OFFICE11\\REFIEBAR.DLL\r\nO9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\\Program Files\\Spybot - Search & Destroy\\SDHelper.dll\r\nO9 - Extra \'Tools\' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\\Program Files\\Spybot - Search & Destroy\\SDHelper.dll\r\nO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe\r\nO9 - Extra \'Tools\' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe\r\nO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe\r\nO9 - Extra \'Tools\' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe\r\nO16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - [url]http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab[/url]\r\nO16 - DPF: {4A85DBE0-BFB2-4119-8401-186A7C6EB653} - [url]http://messenger.zone.msn.com/MessengerGamesContent/GameContent/nl/mjss/MJSS.cab109791.cab[/url]\r\nO16 - DPF: {4E218431-2F07-40BD-A9D3-035324C1F13F} (DyynoX Class) - [url]http://webserver.dyyno.com/tng/dyyno-client/DyynoCAB.CAB[/url]\r\nO16 - DPF: {5C051655-FCD5-4969-9182-770EA5AA5565} (Solitaire Showdown Class) - [url]http://messenger.zone.msn.com/binary/SolitaireShowdown.cab56986.cab[/url]\r\nO16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - [url]http://messenger.zone.msn.com/NL-NL/a-UNO1/GAME_UNO1.cab[/url]\r\nO16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - [url]http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab[/url]\r\nO16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - [url]http://cache.hyves-static.net/statics/Aurigma/ImageUploader4.cab[/url]\r\nO16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - [url]http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab[/url]\r\nO18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\\Program Files\\AVG\\AVG8\\avgpp.dll\r\nO20 - Winlogon Notify: avgrsstarter - C:\\WINDOWS\\SYSTEM32\\avgrsstx.dll\r\nO23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\bin\\AppleMobileDeviceService.exe\r\nO23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\\PROGRA~1\\AVG\\AVG8\\avgwdsvc.exe\r\nO23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\\Program Files\\Bonjour\\mDNSResponder.exe\r\nO23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\\WINDOWS\\system32\\brsvc01a.exe\r\nO23 - Service: Google Updateservice (gupdate1ca1fd894d5a2ca) (gupdate1ca1fd894d5a2ca) - Google Inc. - C:\\Program Files\\Google\\Update\\GoogleUpdate.exe\r\nO23 - Service: Google Software Updater (gusvc) - Google - C:\\Program Files\\Google\\Common\\Google Updater\\GoogleUpdaterService.exe\r\nO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\\Program Files\\Common Files\\InstallShield\\Driver\\1150\\Intel 32\\IDriverT.exe\r\nO23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\\Program Files\\iPod\\bin\\iPodService.exe\r\nO23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\\Program Files\\Java\\jre6\\bin\\jqs.exe\r\nO23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\\WINDOWS\\system32\\nvsvc32.exe\r\nO23 - Service: PnkBstrA - Unknown owner - C:\\WINDOWS\\system32\\PnkBstrA.exe\r\nO23 - Service: PnkBstrB - Unknown owner - C:\\WINDOWS\\system32\\PnkBstrB.exe\r\n\r\n--\r\nEnd of file - 11247 bytes Quote Link naar reactie
0 Anoniem2 Geplaatst: 23 oktober 2009 Auteur Delen Geplaatst: 23 oktober 2009 Ziet er goed uit\nEr is van AVG een nieuwe uitgave no 9 \n[URL]http://free.avg.com/us-en/download?prd=afg[/URL] Quote Link naar reactie
Vraag
Anoniem2
Link naar reactie
2 antwoorden op deze vraag
Aanbevolen berichten
Om een reactie te plaatsen, moet je eerst inloggen