Mededeling

Collapse
No announcement yet.

zeer traag

Collapse
X
  •  
  • Filter
  • Tijd
  • Show
Clear All
new posts

  • zeer traag

    me oude pctje loopt de laatste tijd wel heeel erg traag,duur gewoon een minuut of 10 en krijg af en toe rare meldingen?

    hier me log


    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 15:19:00, on 18-12-2007
    Platform: Windows XP (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 (6.00.2600.0000)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
    C:\WINDOWS\System32\HPZipm12.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    C:\WINDOWS\System32\ctfmon.exe
    C:\WINDOWS\System32\devldr32.exe
    C:\WINDOWS\System32\wuauclt.exe
    C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
    C:\Program Files\Sitecom\Common\WLANUtil.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.hardcorehooligan.nl/index2.php
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
    O2 - BHO: Trellian BHO Impl - {24180B00-2EB6-11d7-BD6F-004854603DCE} - C:\Program Files\TRELLIAN\Toolbar\toolbar.dll
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O2 - BHO: - {848f9a7c-c3b8-4d50-9da6-9b110063f352} - (no file)
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
    O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
    O3 - Toolbar: ToolbarBrowser - {71AAABE5-1F0F-11d7-BD6F-004854603DCE} - C:\Program Files\TRELLIAN\Toolbar\toolbar.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    O4 - HKLM\..\Run: [dflnl.exe] C:\WINDOWS\System32\dflnl.exe
    O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe"
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Lokale service')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Netwerkservice')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
    O4 - Global Startup: Adobe Reader Snelle start.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: Sitecom Wireless Utility.lnk = C:\Program Files\Sitecom\Common\WLANUtil.exe
    O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
    O9 - Extra button: Web Anti-Virus statistics - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\scieplugin.dll
    O9 - Extra button: (no name) - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - (no file)
    O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
    O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
    O12 - Plugin for .spop: C:\Program Files\Internet Explorer\Plugins\NPDocBox.dll
    O16 - DPF: {11111111-1111-1111-1111-666666666666} - ms-its:mhtml:file://d:\foo.mht!http://www.aivelina.com//x.chm::/open.exe
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by109fd.bay109.hotmail.msn.com/resources/MsnPUpld.cab
    O16 - DPF: {85D1F3B2-2A21-11D7-97B9-0010DC2A6243} (SecureLogin class) - http://secure2.comned.com/signuptemplates/securelogin-devel.cab
    O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/MsnMessengerSetupDownloader.cab
    O16 - DPF: {F58E1CEF-A068-4C15-BA5E-587CAF3EE8C6} (MSN Chat Control 4.5) - http://chat.msn.com/controls/msnchat45.cab
    O16 - DPF: {FDE6B956-B80A-4578-9A10-4C24609412F1} - http://64.156.31.143/output/100440/nl/fullgames/fullgames.exe
    O17 - HKLM\System\CCS\Services\Tcpip\..\{0553834B-FB7F-4C7B-B73C-18B706582344}: NameServer = 85.255.115.38,85.255.112.103
    O17 - HKLM\System\CCS\Services\Tcpip\..\{848E5D3A-C73B-4811-A7D4-3AE06B872337}: NameServer = 85.255.115.38,85.255.112.103
    O17 - HKLM\System\CCS\Services\Tcpip\..\{D6A9CACE-ED4B-4F4A-8B07-B49CA353BF4C}: NameServer = 85.255.115.38,85.255.112.103
    O17 - HKLM\System\CS1\Services\Tcpip\..\{0553834B-FB7F-4C7B-B73C-18B706582344}: NameServer = 85.255.115.38,85.255.112.103
    O17 - HKLM\System\CS2\Services\Tcpip\..\{0553834B-FB7F-4C7B-B73C-18B706582344}: NameServer = 85.255.115.38,85.255.112.103
    O23 - Service: Kaspersky Anti-Virus 6.0 (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe
    O23 - Service: BlueSoleil Hid Service - Unknown owner - C:\Program Files\IVT Corporation\BlueSoleil\BTNtService.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\System32\HPZipm12.exe

    --
    End of file - 5840 bytes



    alvast bedankt

  • #2
    ComboFix

    ComboFix 07-12-19.2 - seend 2007-12-19 18:38:41.1 - NTFSx86
    Microsoft Windows XP Professional 5.1.2600.0.1252.1.1043.18.33 [GMT 1:00]Gestart vanuit: C:\Documents and Settings\seend\Bureaublad\ComboFix.exe
    * Nieuw herstelpunt werd aangemaakt
    .

    (((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
    .

    C:\Documents and Settings\seend rulezz\Application Data\install.dat
    C:\Program Files\winupdates
    C:\Program Files\winupdates\a.zip
    C:\WINDOWS\system32\atmtd.dll.tmp
    C:\WINDOWS\system32\bszip.dll
    C:\WINDOWS\system32\cmd.com
    C:\WINDOWS\system32\ping.com
    C:\WINDOWS\system32\regedit.com
    C:\WINDOWS\system32\tasklist.com
    C:\WINDOWS\system32\taskngr.exe
    C:\WINDOWS\system32\tracert.com

    .
    ((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))

    .
    -------\LEGACY_CMDSERVICE


    (((((((((((((((((((( Bestanden Gemaakt van 2007-11-19 to 2007-12-19 ))))))))))))))))))))))))))))))
    .

    2007-12-18 18:52 . 2007-03-12 10:07 507,264 --a------ C:\WINDOWS\system32\drivers\rt2860.sys
    2007-12-18 18:51 . 2007-12-18 18:51 21,419 --a------ C:\WINDOWS\system32\drivers\AegisP.sys
    2007-12-18 15:18 . 2007-12-18 15:18 <DIR> d-------- C:\Program Files\Trend Micro
    2007-12-15 15:22 . 2007-12-15 18:33 90,980 --a------ C:\WINDOWS\system32\drivers\klin.dat
    2007-12-15 15:22 . 2007-12-15 18:33 85,860 --a------ C:\WINDOWS\system32\drivers\klick.dat
    2007-12-15 15:21 . 2007-12-15 15:21 <DIR> d-------- C:\Program Files\Kaspersky Lab
    2007-12-15 15:21 . 2007-12-19 19:11 <DIR> d-------- C:\Documents and Settings\All Users.WINDOWS\Application Data\Kaspersky Lab
    2007-12-15 15:21 . 2007-12-19 19:10 1,973,024 --ahs---- C:\WINDOWS\system32\drivers\fidbox.dat
    2007-12-15 15:21 . 2007-12-19 19:08 27,476 --ahs---- C:\WINDOWS\system32\drivers\fidbox.idx
    2007-12-15 15:21 . 2007-12-19 19:10 23,840 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.dat
    2007-12-15 15:21 . 2007-12-19 19:08 3,284 --ahs---- C:\WINDOWS\system32\drivers\fidbox2.idx
    2007-12-15 12:24 . 2007-12-15 12:24 <DIR> d-------- C:\KAV
    2007-12-04 17:31 . 2004-02-05 23:14 727,040 --a--c--- C:\WINDOWS\system32\dllcache\helpctr.exe
    2007-12-04 17:29 . 2007-12-04 17:29 127 --a------ C:\WINDOWS\system32\MRT.INI
    2007-12-04 17:26 . 2003-02-28 16:34 313,856 --a------ C:\WINDOWS\system32\dx3j.dll
    2007-12-04 17:26 . 2003-02-28 18:26 171,280 --a------ C:\WINDOWS\system32\jit.dll
    2007-12-04 17:26 . 2003-02-28 18:26 139,536 --a------ C:\WINDOWS\system32\javaee.dll
    2007-12-04 17:26 . 2003-02-28 18:26 46,352 --a------ C:\WINDOWS\setdebug.exe
    2007-12-04 17:26 . 2003-02-28 16:54 7,315 --a------ C:\WINDOWS\system32\javasup.vxd
    2007-12-04 17:26 . 2003-02-28 16:35 6,550 --a------ C:\WINDOWS\jautoexp.dat
    2007-12-04 17:26 . 2003-02-28 16:38 113 --a------ C:\WINDOWS\system32\zonedon.reg
    2007-12-04 17:26 . 2003-02-28 16:38 113 --a------ C:\WINDOWS\system32\zonedoff.reg
    2007-11-28 01:21 . 2007-12-18 15:36 <DIR> dr-h----- C:\Documents and Settings\seend\Onlangs geopend
    2007-11-27 18:10 . 2007-12-04 17:35 1,374 --a------ C:\WINDOWS\imsins.BAK
    2007-11-23 14:43 . 2007-11-28 01:21 <DIR> d-------- C:\Program Files\CCleaner
    2007-11-21 22:19 . 2002-11-14 20:43 220,672 --a------ C:\WINDOWS\system32\srrstr.dll
    2007-11-21 22:19 . 2002-11-14 20:43 220,672 --a--c--- C:\WINDOWS\system32\dllcache\srrstr.dll
    2007-11-21 22:16 . 2007-11-21 22:16 109,440 --a------ C:\WINDOWS\system32\drivers\KbdCap.sys
    2007-11-21 22:13 . 2007-12-16 21:07 <DIR> d--h-c--- C:\WINDOWS\$xpsp1hfm$
    2007-11-21 22:13 . 2004-01-10 06:11 26,112 --a------ C:\WINDOWS\system32\xpsp1hfm.exe
    2007-11-21 22:09 . 2002-05-23 09:34 310,272 --a------ C:\WINDOWS\system32\winhttp(2).dll
    2007-11-21 20:49 . 2007-11-21 20:50 <DIR> d-------- C:\WINDOWS\system32\bits
    2007-11-21 20:47 . 2004-07-01 23:10 360,448 --a--c--- C:\WINDOWS\system32\dllcache\qmgr.dll
    2007-11-21 20:47 . 2004-07-01 23:10 331,776 --a------ C:\WINDOWS\system32\winhttp.dll
    2007-11-21 20:47 . 2004-06-30 17:00 192,512 --------- C:\WINDOWS\system32\xpob2res.dll
    2007-11-21 20:47 . 2004-07-01 23:10 17,408 --a------ C:\WINDOWS\system32\qmgrprxy.dll
    2007-11-21 20:47 . 2004-07-01 23:10 17,408 --a--c--- C:\WINDOWS\system32\dllcache\qmgrprxy.dll
    2007-11-21 20:47 . 2004-07-01 23:10 7,680 -----c--- C:\WINDOWS\system32\dllcache\bitsprx2.dll
    2007-11-21 20:47 . 2004-07-01 23:10 7,680 --------- C:\WINDOWS\system32\bitsprx2.dll
    2007-11-21 20:47 . 2004-07-01 23:10 7,168 -----c--- C:\WINDOWS\system32\dllcache\bitsprx3.dll
    2007-11-21 20:47 . 2004-07-01 23:10 7,168 --------- C:\WINDOWS\system32\bitsprx3.dll
    2007-11-21 20:43 . 2007-12-18 18:52 <DIR> d----c--- C:\WINDOWS\system32\DRVSTORE
    2007-11-21 20:39 . 2007-11-21 20:39 <DIR> d-------- C:\Documents and Settings\seend\Application Data\InstallShield
    2007-11-21 19:49 . 2007-11-21 19:49 <DIR> d-------- C:\Program Files\Microsoft FrontPage Express
    2007-11-21 19:49 . 2007-11-21 19:49 <DIR> d-------- C:\Program Files\frontpage express
    2007-11-21 17:06 . 2007-11-21 17:06 <DIR> d-------- C:\Program Files\Sitecom

    .
    ((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2007-11-24 17:35 --------- d-----w C:\Program Files\AutoMacroRecorder
    2007-11-23 13:55 --------- d-----w C:\Documents and Settings\All Users.WINDOWS\Application Data\Spybot - Search & Destroy
    2007-11-21 20:06 --------- d-----w C:\Program Files\Google
    2007-11-21 16:06 --------- d--h--w C:\Program Files\InstallShield Installation Information
    2006-04-10 12:57 89 ----a-w C:\Documents and Settings\seend\Application Data\ftpfile.dat
    2005-11-09 19:55 70 ----a-w C:\Documents and Settings\remco\Application Data\ftpfile.dat
    2005-10-06 10:36 74 ----a-w C:\Documents and Settings\seend rulezz\Application Data\ftpfile.dat
    2005-10-05 21:46 17,720 ----a-w C:\Documents and Settings\seend rulezz\Application Data\GDIPFONTCACHEV1.DAT
    2005-07-29 15:24 472 --sha-r C:\WINDOWS\c2VlbmQ\wZp5vAk.vbs
    .

    ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    REGEDIT4
    *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="C:\WINDOWS\System32\ctfmon.exe" [2001-09-07 13:00]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "SunJavaUpdateSched"="C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe" [2005-11-10 13:03]
    "dflnl.exe"="C:\WINDOWS\System32\dflnl.exe"
    "AVP"="C:\Program Files\Kaspersky Lab\Kaspersky Anti-Virus 6.0\avp.exe" [2007-01-29 23:02]

    [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
    "CTFMON.EXE"="C:\WINDOWS\System32\CTFMON.EXE" [2001-09-07 13:00]

    C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programma's\Opstarten\
    Adobe Reader Snelle start.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-09-23 22:05:26]
    Sitecom Wireless Utility.lnk - C:\Program Files\Sitecom\Common\WLANUtil.exe [2007-11-21 20:40:25]

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Start^Programma's^Opstarten^Adobe Gamma Loader.lnk]
    path=C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programma's\Opstarten\Adobe Gamma Loader.lnk
    backup=C:\WINDOWS\pss\Adobe Gamma Loader.lnkCommon Startup

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Start^Programma's^Opstarten^Adobe Reader Snelle start.lnk]
    path=C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programma's\Opstarten\Adobe Reader Snelle start.lnk
    backup=C:\WINDOWS\pss\Adobe Reader Snelle start.lnkCommon Startup

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Start^Programma's^Opstarten^BlueSoleil.lnk]
    path=C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programma's\Opstarten\BlueSoleil.lnk
    backup=C:\WINDOWS\pss\BlueSoleil.lnkCommon Startup

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Start^Programma's^Opstarten^HP Digital Imaging Monitor.lnk]
    path=C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programma's\Opstarten\HP Digital Imaging Monitor.lnk
    backup=C:\WINDOWS\pss\HP Digital Imaging Monitor.lnkCommon Startup

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Start^Programma's^Opstarten^Microsoft Office.lnk]
    path=C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programma's\Opstarten\Microsoft Office.lnk
    backup=C:\WINDOWS\pss\Microsoft Office.lnkCommon Startup

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users.WINDOWS^Menu Start^Programma's^Opstarten^RSI-Shield.lnk]
    path=C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programma's\Opstarten\RSI-Shield.lnk
    backup=C:\WINDOWS\pss\RSI-Shield.lnkCommon Startup

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools-1033]
    C:\Program Files\D-Tools\daemon.exe -lang 1033

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
    2005-05-11 23:12 49152 --a------ C:\Program Files\HP\HP Software Update\HPWuSchd2.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
    C:\WINDOWS\system32\dumprep 0 -k

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
    C:\Program Files\Messenger\msmsgs.exe /background

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroCheck]
    2001-07-09 18:50 155648 --a------ C:\WINDOWS\System32\NeroCheck.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Realtime Audio Engine]
    mmrtkrnl.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Tronan RSI-Shield BootMark]
    2005-08-04 13:50 65596 --------- C:\Program Files\Tronan\RSI-Shield\BootMark.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr]
    C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_0

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
    2006-02-23 20:10 35328 --a------ C:\Program Files\Winamp\winampa.exe

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\winupdates]
    C:\Program Files\winupdates\winupdates.exe /auto

    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\yaemu.exe]
    C:\WINDOWS\System32\yaemu.exe

    R0 stwlfbus;stwlfbus;C:\WINDOWS\System32\DRIVERS\stwlfbus.sys [2003-04-27 12:39]
    R2 MarxDev1;MarxDev1;C:\WINDOWS\System32\drivers\MarxDev1.sys [2001-05-28 16:30]
    R2 MarxDev2;MarxDev2;C:\WINDOWS\System32\drivers\MarxDev2.sys [2001-05-28 16:30]
    R2 MarxDev3;MarxDev3;C:\WINDOWS\System32\drivers\MarxDev3.sys [2001-05-28 16:30]
    R3 kbdcap;kbdcap;C:\WINDOWS\System32\drivers\kbdcap.sys [2007-11-21 22:16]
    R3 RT80x86;Ralink 802.11n Wireless Driver;C:\WINDOWS\System32\DRIVERS\RT2860.sys [2007-03-12 10:07]
    R3 st3wolf;st3wolf;C:\WINDOWS\System32\DRIVERS\st3wolf.sys [2003-04-27 11:43]


    [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{E4066320-E4AE-11CF-B1B0-00AA00BBAD66}]
    rundll32.exe advpack.dll,LaunchINFSection %SystemRoot%\INF\fpxpress.inf,PerUserstub
    .
    **************************************************************************

    catchme 0.3.1333 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2007-12-19 19:11:15
    Windows 5.1.2600 NTFS

    scannen van verborgen processen ...

    scannen van verborgen autostart items ...

    scannen van verborgen bestanden ...

    **************************************************************************
    .
    Voltooingstijd: 2007-12-19 19:13:50 - machine was rebooted
    .
    2007-12-16 20:07:47 --- E O F ---

    Comment


    • #3
      Is er een reden waarom je systeem niet geupdate is, zelfs geen XP1

      Windows 10 opstarten in Veilige Modus

      Comment

      Sorry, you are not authorized to view this page
      Working...
      X