Tweet
Wat is cmd.exe .
Dit start er op . Maar wat zijn de zelf rode en de oranje geselecteerden?
Ik zie daar cmd.exe. Is dat wel goed ?
--- Spybot - Search & Destroy version: 1.3 .1TX (build: 20040801) ---
2004-05-12 blindman.exe (1.0.0.0)
2004-08-30 SpybotSD.exe (1.3.0.12)
2004-05-12 TeaTimer.exe (1.3.0.12)
2004-06-15 unins000.exe (51.15.0.0)
2004-05-12 Update.exe (1.3.0.0)
2004-05-12 advcheck.dll (1.0.1.0)
2004-05-12 borlndmm.dll (7.0.4.453)
2004-05-12 delphimm.dll (7.0.4.453)
2004-05-12 SDHelper.dll (1.3.0.12)
2004-05-12 Tools.dll (2.0.0.0)
2004-05-12 UnzDll.dll (1.73.1.1)
2004-05-12 ZipDll.dll (1.73.2.0)
2004-08-11 Includes\Cookies.sbi
2004-10-26 Includes\Dialer.sbi
2004-10-26 Includes\Hijackers.sbi
2004-10-07 Includes\Keyloggers.sbi
2004-05-12 Includes\LSP.sbi
2004-10-26 Includes\Malware.sbi
2004-10-05 Includes\Revision.sbi
2004-10-25 Includes\Security.sbi
2004-10-26 Includes\Spybots.sbi
2004-10-21 Includes\Tracks.uti
2004-10-26 Includes\Trojans.sbi
Located: HK_LM:Run, AWMON
command: "C:\PROGRA~1\Lavasoft\AD-AWA~2\Ad-Watch.exe"
file: C:\PROGRA~1\Lavasoft\AD-AWA~2\Ad-Watch.exe
size: 538112
MD5: ed7f4140bc9f05781355c2a36d0ad37c
Located: HK_LM:Run, ccApp
command: "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
Located: HK_LM:Run, CnxDslTaskBar
command: C:\Program Files\E-Tech\ADSL\CnxDslTb.exe
file: C:\Program Files\E-Tech\ADSL\CnxDslTb.exe
size: 397312
MD5: d8b67e150c4b1952e1de30e1e2ae653f
Located: HK_LM:Run, CookiePatrol
command: C:\PROGRA~1\PESTPA~1\CookiePatrol.exe
file: C:\PROGRA~1\PESTPA~1\CookiePatrol.exe
size: 69632
MD5: bd0110a00ed856ad4601c20f82def09c
Located: HK_LM:Run, DAEMON Tools-1033
command: "C:\Program Files\D-Tools\daemon.exe" -lang 1033
file: C:\Program Files\D-Tools\daemon.exe
size: 81920
MD5: d11f7e3f44a3f69dfa035e4e856284d4
Located: HK_LM:Run, NeroFilterCheck
command: C:\WINDOWS\system32\NeroCheck.exe
file: C:\WINDOWS\system32\NeroCheck.exe
size: 155648
MD5: 3e4c03cefad8de135263236b61a49c90
Located: HK_LM:Run, PestPatrol Control Center
command: c:\PROGRA~1\PESTPA~1\PPControl.exe
file: c:\PROGRA~1\PESTPA~1\PPControl.exe
size: 53248
MD5: e2362c0cb43d5911007775e2ef99b2ba
Located: HK_LM:Run, PestPatrolCL
command:
Located: HK_LM:Run, PPMemCheck
command: C:\PROGRA~1\PESTPA~1\PPMemCheck.exe
file: C:\PROGRA~1\PESTPA~1\PPMemCheck.exe
size: 148480
MD5: 8783db0b018082051fb4ba3b9e0237cd
Located: HK_LM:Run, SSC_UserPrompt
command: C:\Program Files\Common Files\Symantec Shared\Security Center\UsrPrmpt.exe
file: C:\Program Files\Common Files\Symantec Shared\Security Center\UsrPrmpt.exe
size: 218240
MD5: 8714d6cea7ed210603f9ef7dbde4b3f5
Located: HK_LM:Run, SunJavaUpdateSched
command: C:\Program Files\Java\j2re1.4.2_05\bin\jusched.exe
file: C:\Program Files\Java\j2re1.4.2_05\bin\jusched.exe
size: 32881
MD5: bed6eddbf28db980aa8d3a42d4a05586
Located: HK_LM:Run, Symantec NetDriver Monitor
command: C:\PROGRA~1\SYMNET~1\SNDMon.exe
file: C:\PROGRA~1\SYMNET~1\SNDMon.exe
size: 95456
MD5: 46462b246bcb76450178a7260617cebd
Located: HK_LM:Run, Tau Monitor
command: C:\PROGRA~1\Agnitum\TAUSCA~1.6\taumon.exe
file: C:\PROGRA~1\Agnitum\TAUSCA~1.6\taumon.exe
size: 90112
MD5: c4572d27f9aebdd8602908f2fed12bab
Located: HK_LM:Run, WinampAgent
command: C:\Program Files\Winamp\winampa.exe
file: C:\Program Files\Winamp\winampa.exe
size: 33792
MD5: 11aa6662a1be30375afd1a8407811e7e
Located: HK_LM:RunOnce, isDeleteMe
command: "C:\WINDOWS\System32\cmd.exe" /c "C:\DOCUME~1\mijnnaam\LOCALS~1\Temp\isDel.bat"
file: C:\WINDOWS\System32\cmd.exe
size: 386560
MD5: 540b352f95fc998799baad60b9e25a5f
Located: HK_LM:RunOnce, wextract_cleanup0
command: rundll32.exe C:\WINDOWS\System32\advpack.dll,DelNodeRunDLL32 "C:\DOCUME~1\Mijnnaam\LOCALS~1\Temp\IXP000.TMP\"
file: C:\WINDOWS\system32\rundll32.exe
size: 32256
MD5: cc1ea61f70ba631c0801aa152559182f
Located: HK_CU:Run, CTFMON.EXE
command: C:\WINDOWS\System32\ctfmon.exe
file: C:\WINDOWS\System32\ctfmon.exe
size: 13312
MD5: bc69feecc644021e56745c2e10c49ef2
Located: Startup (disabled), WinZip Quick Pick (DISABLED)
command: C:\PROGRA~1\WinZip\WZQKPICK.EXE
file: C:\PROGRA~1\WinZip\WZQKPICK.EXE
size: 118784
MD5: 67b2e7b6ae3b400d832f0456068ea83d
Located: WinLogon, crypt32chain
command: crypt32.dll
Located: WinLogon, cryptnet
command: cryptnet.dll
Located: WinLogon, cscdll
command: cscdll.dll
Located: WinLogon, ScCertProp
command: wlnotify.dll
Located: WinLogon, Schedule
command: wlnotify.dll
Located: WinLogon, sclgntfy
command: sclgntfy.dll
Located: WinLogon, SensLogn
command: WlNotify.dll
Located: WinLogon, termsrv
command: wlnotify.dll
Located: WinLogon, wlballoon
command: wlnotify.dll
Ik zie daar cmd.exe. Is dat wel goed ?
--- Spybot - Search & Destroy version: 1.3 .1TX (build: 20040801) ---
2004-05-12 blindman.exe (1.0.0.0)
2004-08-30 SpybotSD.exe (1.3.0.12)
2004-05-12 TeaTimer.exe (1.3.0.12)
2004-06-15 unins000.exe (51.15.0.0)
2004-05-12 Update.exe (1.3.0.0)
2004-05-12 advcheck.dll (1.0.1.0)
2004-05-12 borlndmm.dll (7.0.4.453)
2004-05-12 delphimm.dll (7.0.4.453)
2004-05-12 SDHelper.dll (1.3.0.12)
2004-05-12 Tools.dll (2.0.0.0)
2004-05-12 UnzDll.dll (1.73.1.1)
2004-05-12 ZipDll.dll (1.73.2.0)
2004-08-11 Includes\Cookies.sbi
2004-10-26 Includes\Dialer.sbi
2004-10-26 Includes\Hijackers.sbi
2004-10-07 Includes\Keyloggers.sbi
2004-05-12 Includes\LSP.sbi
2004-10-26 Includes\Malware.sbi
2004-10-05 Includes\Revision.sbi
2004-10-25 Includes\Security.sbi
2004-10-26 Includes\Spybots.sbi
2004-10-21 Includes\Tracks.uti
2004-10-26 Includes\Trojans.sbi
Located: HK_LM:Run, AWMON
command: "C:\PROGRA~1\Lavasoft\AD-AWA~2\Ad-Watch.exe"
file: C:\PROGRA~1\Lavasoft\AD-AWA~2\Ad-Watch.exe
size: 538112
MD5: ed7f4140bc9f05781355c2a36d0ad37c
Located: HK_LM:Run, ccApp
command: "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
Located: HK_LM:Run, CnxDslTaskBar
command: C:\Program Files\E-Tech\ADSL\CnxDslTb.exe
file: C:\Program Files\E-Tech\ADSL\CnxDslTb.exe
size: 397312
MD5: d8b67e150c4b1952e1de30e1e2ae653f
Located: HK_LM:Run, CookiePatrol
command: C:\PROGRA~1\PESTPA~1\CookiePatrol.exe
file: C:\PROGRA~1\PESTPA~1\CookiePatrol.exe
size: 69632
MD5: bd0110a00ed856ad4601c20f82def09c
Located: HK_LM:Run, DAEMON Tools-1033
command: "C:\Program Files\D-Tools\daemon.exe" -lang 1033
file: C:\Program Files\D-Tools\daemon.exe
size: 81920
MD5: d11f7e3f44a3f69dfa035e4e856284d4
Located: HK_LM:Run, NeroFilterCheck
command: C:\WINDOWS\system32\NeroCheck.exe
file: C:\WINDOWS\system32\NeroCheck.exe
size: 155648
MD5: 3e4c03cefad8de135263236b61a49c90
Located: HK_LM:Run, PestPatrol Control Center
command: c:\PROGRA~1\PESTPA~1\PPControl.exe
file: c:\PROGRA~1\PESTPA~1\PPControl.exe
size: 53248
MD5: e2362c0cb43d5911007775e2ef99b2ba
Located: HK_LM:Run, PestPatrolCL
command:
Located: HK_LM:Run, PPMemCheck
command: C:\PROGRA~1\PESTPA~1\PPMemCheck.exe
file: C:\PROGRA~1\PESTPA~1\PPMemCheck.exe
size: 148480
MD5: 8783db0b018082051fb4ba3b9e0237cd
Located: HK_LM:Run, SSC_UserPrompt
command: C:\Program Files\Common Files\Symantec Shared\Security Center\UsrPrmpt.exe
file: C:\Program Files\Common Files\Symantec Shared\Security Center\UsrPrmpt.exe
size: 218240
MD5: 8714d6cea7ed210603f9ef7dbde4b3f5
Located: HK_LM:Run, SunJavaUpdateSched
command: C:\Program Files\Java\j2re1.4.2_05\bin\jusched.exe
file: C:\Program Files\Java\j2re1.4.2_05\bin\jusched.exe
size: 32881
MD5: bed6eddbf28db980aa8d3a42d4a05586
Located: HK_LM:Run, Symantec NetDriver Monitor
command: C:\PROGRA~1\SYMNET~1\SNDMon.exe
file: C:\PROGRA~1\SYMNET~1\SNDMon.exe
size: 95456
MD5: 46462b246bcb76450178a7260617cebd
Located: HK_LM:Run, Tau Monitor
command: C:\PROGRA~1\Agnitum\TAUSCA~1.6\taumon.exe
file: C:\PROGRA~1\Agnitum\TAUSCA~1.6\taumon.exe
size: 90112
MD5: c4572d27f9aebdd8602908f2fed12bab
Located: HK_LM:Run, WinampAgent
command: C:\Program Files\Winamp\winampa.exe
file: C:\Program Files\Winamp\winampa.exe
size: 33792
MD5: 11aa6662a1be30375afd1a8407811e7e
Located: HK_LM:RunOnce, isDeleteMe
command: "C:\WINDOWS\System32\cmd.exe" /c "C:\DOCUME~1\mijnnaam\LOCALS~1\Temp\isDel.bat"
file: C:\WINDOWS\System32\cmd.exe
size: 386560
MD5: 540b352f95fc998799baad60b9e25a5f
Located: HK_LM:RunOnce, wextract_cleanup0
command: rundll32.exe C:\WINDOWS\System32\advpack.dll,DelNodeRunDLL32 "C:\DOCUME~1\Mijnnaam\LOCALS~1\Temp\IXP000.TMP\"
file: C:\WINDOWS\system32\rundll32.exe
size: 32256
MD5: cc1ea61f70ba631c0801aa152559182f
Located: HK_CU:Run, CTFMON.EXE
command: C:\WINDOWS\System32\ctfmon.exe
file: C:\WINDOWS\System32\ctfmon.exe
size: 13312
MD5: bc69feecc644021e56745c2e10c49ef2
Located: Startup (disabled), WinZip Quick Pick (DISABLED)
command: C:\PROGRA~1\WinZip\WZQKPICK.EXE
file: C:\PROGRA~1\WinZip\WZQKPICK.EXE
size: 118784
MD5: 67b2e7b6ae3b400d832f0456068ea83d
Located: WinLogon, crypt32chain
command: crypt32.dll
Located: WinLogon, cryptnet
command: cryptnet.dll
Located: WinLogon, cscdll
command: cscdll.dll
Located: WinLogon, ScCertProp
command: wlnotify.dll
Located: WinLogon, Schedule
command: wlnotify.dll
Located: WinLogon, sclgntfy
command: sclgntfy.dll
Located: WinLogon, SensLogn
command: WlNotify.dll
Located: WinLogon, termsrv
command: wlnotify.dll
Located: WinLogon, wlballoon
command: wlnotify.dll
toppie
Comment