Weergegeven resultaten: 1 t/m 7 van 7
  1. #1
    Gevorderd   Spike's schermafbeelding
    Geregistreerd
    11 May 2005
    Locatie
    limburg
    Berichten
    157
    Bedankjes
    20
    Bedankt
    7 keer in 6 posts

    laptop start heel traag op

    Hoi,
    ik zit hier met een laptop (Celeron 2.7Ghz, 240RAM, win XP) die onnoemelijk traag is in het opstarten (7 minuten voordat ik zelf een program kan opendoen).

    De harde schijf stond bijna volledig vol, dus ben ik begonnen met software te deleten. Er stonden verschillende virusscanners en anti-spyware progs op, waarvan de helft demo's die al niet meer werkten.

    verder heb ik schijfopruiming, defrag, schijfcontrole en registeropruiming met easycleaner gedaan.
    De windows updates waren nog nooit uitgevoerd, en daar heb ik er 60 van geinstalleerd.
    Kunnen jullie misschien eens zien of er nog wat mis zit waardoor er zo traagt wordt opgestart, of gaat het hier gewoon om een te oude laptop?
    ps: moet ik eerst updaten tot SP2 of wachten tot de laptop terug beter werkt?

    Alvast bedankt voor de moeite,
    Tim


    Logfile of HijackThis v1.99.1
    Scan saved at 19:04:12, on 18/06/2007
    Platform: Windows XP SP1 (WinNT 5.01.2600)
    MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)
    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
    C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
    C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
    C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    C:\MATLABR11\webserver\bin\matlabserver.exe
    C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
    C:\Program Files\NewDotNet\nnrun.exe
    C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    C:\WINDOWS\Explorer.EXE
    C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
    C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
    C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
    C:\WINDOWS\System32\ctfmon.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    C:\Program Files\NewDotNet\nnrun.exe
    C:\WINDOWS\System32\WgaTray.exe
    C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
    C:\Documents and Settings\Administrator\Bureaublad\hijackthis\Hijac kThis.exe
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyServer = ftp=proxy.pandora.be:8080;gopher=proxy.pandora.be: 8080;http=proxy.pandora.be:8080;https=proxy.pandor a.be:8080
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - Default URLSearchHook is missing
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
    O2 - BHO: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL
    O2 - BHO: Class - {77CD9B7C-6604-FD84-83FE-47AE9E1477C2} - (no file)
    O2 - BHO: Class - {DE181EF0-ABE1-2541-3A0D-3A3940709D47} - (no file)
    O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
    O3 - Toolbar: MSN - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.4000.1001\nl\msntb.dll (file missing)
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll (file missing)
    O3 - Toolbar: Megaupload Toolbar - {4E7BD74F-2B8D-469E-CCB0-B130EEDBE97C} - C:\PROGRA~1\MEGAUP~1\MEGAUP~1.DLL
    O3 - Toolbar: Protection Bar - {84938242-5C5B-4A55-B6B9-A1507543B418} - C:\Program Files\Video ActiveX Object\iesplugin.dll (file missing)
    O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
    O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"
    O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb0 9.exe
    O4 - HKLM\..\Run: [DeviceDiscovery] C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\System32\ctfmon.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - Global Startup: AutoCAD Startup Accelerator.lnk = C:\Program Files\Common Files\Autodesk Shared\acstart16.exe
    O4 - Global Startup: hpoddt01.exe.lnk = ?
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
    O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
    O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
    O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
    O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
    O8 - Extra context menu item: Translate into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans.html
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
    O9 - Extra button: EmpirePoker - {77E68763-4284-41d6-B7E7-B6E1F053A9E7} - C:\Program Files\EmpirePokerMaster\EmpirePoker\RunEPoker.exe (file missing)
    O9 - Extra 'Tools' menuitem: EmpirePoker - {77E68763-4284-41d6-B7E7-B6E1F053A9E7} - C:\Program Files\EmpirePokerMaster\EmpirePoker\RunEPoker.exe (file missing)
    O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\WINDOWS\System32\shdocvw.dll
    O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
    O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
    O9 - Extra button: Microsoft AntiSpyware helper - {5866CEA5-42A0-439B-B281-52739FE21BE0} - (no file) (HKCU)
    O9 - Extra 'Tools' menuitem: Microsoft AntiSpyware helper - {5866CEA5-42A0-439B-B281-52739FE21BE0} - (no file) (HKCU)
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
    O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} (NsvPlayX Control) - http://www.cartoon-fridge.com/nsvplayx_vp3_mp3.cab
    O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O21 - SSODL: hirtellous - {fa19bd7e-50bc-4203-80ac-c4edc81ca9a3} - (no file)
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Autodesk Licensing Service - Autodesk, Inc. - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
    O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
    O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
    O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
    O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    O23 - Service: MATLAB Server (matlabserver) - Unknown owner - C:\MATLABR11\webserver\bin\matlabserver.exe
    O23 - Service: NNServ - Unknown owner - C:\Program Files\NewDotNet\nnrun.exe" "C:\Program Files\NewDotNet\nncore.dll" ServiceStart (file missing)
    O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    O23 - Service: Visual Studio Analyzer RPC bridge - Unknown owner - C:\Program Files\Microsoft Visual Studio\Common\Tools\VS-Ent98\Vanalyzr\varpc.exe (file missing)

  2. #2
    Gevorderd   NiekR's schermafbeelding
    Geregistreerd
    22 April 2007
    Locatie
    Gelderland
    Berichten
    415
    Bedankjes
    48
    Bedankt
    53 keer in 51 posts
    Hoi Spike,
    Ik ga even naar je logje kijken en post zsm. een fix.
    Nog even geduld aub.


  3. #3
    Gevorderd   Spike's schermafbeelding
    Geregistreerd
    11 May 2005
    Locatie
    limburg
    Berichten
    157
    Bedankjes
    20
    Bedankt
    7 keer in 6 posts
    hey,

    ik heb ondertussen al wel SP2 geinstalleerd, k zal dan ook een nieuwe logje plaatsen misschien? alvast bedankt voor de hulp

    Logfile of HijackThis v1.99.1
    Scan saved at 17:58:24, on 20/06/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16473)
    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
    C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
    C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
    C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    C:\MATLABR11\webserver\bin\matlabserver.exe
    C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
    C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\WINDOWS\Explorer.EXE
    C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
    C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    C:\Documents and Settings\Administrator\Bureaublad\hijackthis\Hijac kThis.exe
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyServer = ftp=proxy.pandora.be:8080;gopher=proxy.pandora.be: 8080;http=proxy.pandora.be:8080;https=proxy.pandor a.be:8080
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
    O2 - BHO: Class - {77CD9B7C-6604-FD84-83FE-47AE9E1477C2} - (no file)
    O2 - BHO: Class - {DE181EF0-ABE1-2541-3A0D-3A3940709D47} - (no file)
    O3 - Toolbar: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - (no file)
    O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)
    O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
    O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
    O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
    O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
    O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
    O8 - Extra context menu item: Translate into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans.html
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
    O9 - Extra button: EmpirePoker - {77E68763-4284-41d6-B7E7-B6E1F053A9E7} - C:\Program Files\EmpirePokerMaster\EmpirePoker\RunEPoker.exe (file missing)
    O9 - Extra 'Tools' menuitem: EmpirePoker - {77E68763-4284-41d6-B7E7-B6E1F053A9E7} - C:\Program Files\EmpirePokerMaster\EmpirePoker\RunEPoker.exe (file missing)
    O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\WINDOWS\System32\shdocvw.dll
    O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
    O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra button: Microsoft AntiSpyware helper - {5866CEA5-42A0-439B-B281-52739FE21BE0} - (no file) (HKCU)
    O9 - Extra 'Tools' menuitem: Microsoft AntiSpyware helper - {5866CEA5-42A0-439B-B281-52739FE21BE0} - (no file) (HKCU)
    O11 - Options group: [INTERNATIONAL] International*
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/wind...?1182202816859
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
    O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} (NsvPlayX Control) - http://www.cartoon-fridge.com/nsvplayx_vp3_mp3.cab
    O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O21 - SSODL: hirtellous - {fa19bd7e-50bc-4203-80ac-c4edc81ca9a3} - (no file)
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Autodesk Licensing Service - Autodesk, Inc. - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
    O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
    O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
    O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
    O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    O23 - Service: MATLAB Server (matlabserver) - Unknown owner - C:\MATLABR11\webserver\bin\matlabserver.exe
    O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    O23 - Service: Visual Studio Analyzer RPC bridge - Unknown owner - C:\Program Files\Microsoft Visual Studio\Common\Tools\VS-Ent98\Vanalyzr\varpc.exe (file missing)
    Laatst gewijzigd door Spike; 20 June 2007 om 17:59

  4. #4
    Gevorderd   Spike's schermafbeelding
    Geregistreerd
    11 May 2005
    Locatie
    limburg
    Berichten
    157
    Bedankjes
    20
    Bedankt
    7 keer in 6 posts
    hoi,
    ik ben onverwacht afwezig voor een tijdje. ik laat weten wanneer ik terug ben, dus je hebt tijd voor het logje te bezien.

    groeten, tim

  5. #5
    Gevorderd   NiekR's schermafbeelding
    Geregistreerd
    22 April 2007
    Locatie
    Gelderland
    Berichten
    415
    Bedankjes
    48
    Bedankt
    53 keer in 51 posts
    Hoi Spike,
    Nadat je SP2 hebt geïnstalleerd, zie ik dat er al een hoop malware weg is.

    1) Ik zie dat je 2 virusscanner tegelijkertijd hebt draaien. Dit is niet aan te raden, omdat deze tegen elkaar in kunnen gaan werken.
    Verwijder via Start > Configuratiescherm > Software (indien aanwezig) één van de volgende programma's:
    • Avast4
    • AVG Free (van Grisoft)
    Verwijder daarnaast ook de volgende programma's, omdat deze malware-veroorzakend (kunnen) zijn :
    • EmpirePokerMaster
    • PartyGaming
    2) Start HijackThis en kies voor 'Do a system scan only'.
    Als de scan compleet is vink dan alleen de onderstaande regels in HijackThis aan:

    • O2 - BHO: Class - {77CD9B7C-6604-FD84-83FE-47AE9E1477C2} - (no file)
    • O2 - BHO: Class - {DE181EF0-ABE1-2541-3A0D-3A3940709D47} - (no file)
    • O3 - Toolbar: (no name) - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - (no file)
    • O3 - Toolbar: (no name) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - (no file)
    • O9 - Extra button: EmpirePoker - {77E68763-4284-41d6-B7E7-B6E1F053A9E7} - C:\Program Files\EmpirePokerMaster\EmpirePoker\RunEPoker.exe (file missing)
    • O9 - Extra 'Tools' menuitem: EmpirePoker - {77E68763-4284-41d6-B7E7-B6E1F053A9E7} - C:\Program Files\EmpirePokerMaster\EmpirePoker\RunEPoker.exe (file missing)
    • O9 - Extra button: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
    • O9 - Extra 'Tools' menuitem: PartyPoker.com - {B7FE5D70-9AA2-40F1-9C6B-12A255F085E1} - C:\Program Files\PartyGaming\PartyPoker\RunApp.exe (file missing)
    • O21 - SSODL: hirtellous - {fa19bd7e-50bc-4203-80ac-c4edc81ca9a3} - (no file)
    Sluit nu alle vensters behalve HijackThis zelf en klik op 'Fix checked'.
    Er zal een vraag komen over backups. Antwoord hierop met 'Ja', en sluit hierna HijackThis.

    3) Download: RemoveVideoActiveXObject.exe
    Sla het bestand op je bureaublad op, daarna mag je het dubbelklikken.

    Er zal een schermpje openen, daarin zullen snel enkele regels voorbijkomen, daarna zal dit scherm vanzelf sluiten, dit is normaal.
    Mogelijk start er ook een uninstaller van een rogue scanner op, sluit deze niet af maar volg eventuele aanwijzingen en laat deze zijn werk doen.

    Daarna de PC herstarten en nogmaals RemoveVideoActiveXObject.exe dubbelklikken.
    Zoek daarna even het volgende bestand op C:\RVAXO-results.log
    Dubbelklik dit bestand, het zal als een logje openen, post de inhoud in je volgende bericht tesamen met een logje van HijackThis.

    4) Download Combofix naar je Bureaublad.
    • Dubbelklik op Combofix.exe
      Volg de instructies, aanvaard de disclaimer door 1 (continue) te typen.
      Tijdens het runnen van de fix, NIET in het venster klikken, want dit zal je pc doen vasthangen.
    Wanneer de fix voltooid is en na herstart, zal de log combofix.txt openen.
    Plaats deze log in je volgende post samen met een nieuw HijackThis log.

    NOTA: Indien je virusscanner reageert met een melding van een scriptuitvoering, mag je dit negeren.

    5) Herstart je computer! Post daarna een nieuw HijackThis logje, samen met het logje van RemoveActiveX en Combofix. Vermeld daarbij ook welke stappen je wel/niet gelukt zijn.

    Succes


  6. #6
    Gevorderd   Spike's schermafbeelding
    Geregistreerd
    11 May 2005
    Locatie
    limburg
    Berichten
    157
    Bedankjes
    20
    Bedankt
    7 keer in 6 posts
    Hoi,

    - Het uninstallen van Avast wilt me niet lukken. In de software lijst staat ie er niet meer tussen, en als ik de map rechtstreeks wil verwijderen krijg ik de melding dat aswCmnB.dll in gebruik is. Een uninstall bestand vind ik ook niet in de map.


    - Empirepokermaster en partygaming kan ik ook nergens meer terugvinden…


    - Voor de rest zijn al je stappen uitgevoerd zoals je zei.

    Bedankt voor de hulp, tim

    Hijackthis
    Logfile of HijackThis v1.99.1
    Scan saved at 17:04:22, on 25/06/2007
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16473)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
    C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
    C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
    C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    C:\MATLABR11\webserver\bin\matlabserver.exe
    C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
    C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    C:\WINDOWS\Explorer.EXE
    C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
    C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\MSN Messenger\msnmsgr.exe
    C:\WINDOWS\system32\wuauclt.exe
    C:\Documents and Settings\Administrator\Bureaublad\hijackthis\Hijac kThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.be/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyServer = ftp=proxy.pandora.be:8080;gopher=proxy.pandora.be: 8080;http=proxy.pandora.be:8080;https=proxy.pandor a.be:8080
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll
    O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
    O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\MSN Messenger\msnmsgr.exe" /background
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE
    O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
    O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
    O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
    O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
    O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
    O8 - Extra context menu item: Translate into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans.html
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
    O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\WINDOWS\System32\shdocvw.dll
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe (file missing)
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra button: Microsoft AntiSpyware helper - {5866CEA5-42A0-439B-B281-52739FE21BE0} - (no file) (HKCU)
    O9 - Extra 'Tools' menuitem: Microsoft AntiSpyware helper - {5866CEA5-42A0-439B-B281-52739FE21BE0} - (no file) (HKCU)
    O11 - Options group: [INTERNATIONAL] International*
    O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab
    O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/wind...?1182202816859
    O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
    O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697514} (NsvPlayX Control) - http://www.cartoon-fridge.com/nsvplayx_vp3_mp3.cab
    O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
    O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
    O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - Unknown owner - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
    O23 - Service: Autodesk Licensing Service - Autodesk, Inc. - C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe
    O23 - Service: avast! Antivirus - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashServ.exe
    O23 - Service: avast! Mail Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service (file missing)
    O23 - Service: avast! Web Scanner - Unknown owner - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service (file missing)
    O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
    O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
    O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
    O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    O23 - Service: MATLAB Server (matlabserver) - Unknown owner - C:\MATLABR11\webserver\bin\matlabserver.exe
    O23 - Service: SoundMAX Agent Service (SoundMAX Agent Service (default)) - Analog Devices, Inc. - C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    O23 - Service: Visual Studio Analyzer RPC bridge - Unknown owner - C:\Program Files\Microsoft Visual Studio\Common\Tools\VS-Ent98\Vanalyzr\varpc.exe (file missing)



    RVAXO-results
    ----------------RemoveVideoActiveXObject.exe first run-------------

    Files found:

    C:\WINDOWS\system32\javaav32.dll
    C:\WINDOWS\system32\javaia32.dll
    C:\WINDOWS\system32\javaso32.dll

    Uninstallers Rogue scanners:


    Folders Found:


    --------------RemoveVideoActiveXObject.exe last run---------------

    Files found:


    Uninstallers Rogue scanners:


    Folders Found:


    combofix"Administrator" - 2007-06-25 16:51:14 - ComboFix 07-06-23.5 - Service Pack 2 NTFS

    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))

    C:\WINDOWS\NDNuninstall6_98.exe
    C:\WINDOWS\NDNuninstall7_14.exe
    C:\WINDOWS\NDNuninstall7_48.exe

    ((((((((((((((((((((((((( Files Created from 2007-05-25 to 2007-06-25 )))))))))))))))))))))))))))))))

    2007-06-25 16:50 49,152 --a------ C:\WINDOWS\nircmd.exe
    2007-06-25 16:48 34,979 --a------ C:\WINDOWS\system32\RemoveVideoActiveXObject.reg
    2007-06-25 16:48 <DIR> d-------- C:\WINDOWS\system32\RVAXO
    2007-06-19 22:39 40,418 --a------ C:\WINDOWS\system32\uninstall.exe
    2007-06-19 22:39 <DIR> d-------- C:\Program Files\CoreCodec
    2007-06-19 22:23 5,504 --------- C:\WINDOWS\system32\drivers\imagedrv.sys
    2007-06-19 22:23 125,184 --------- C:\WINDOWS\system32\drivers\imagesrv.sys
    2007-06-19 22:22 155,648 --a------ C:\WINDOWS\system32\NeroCheck.exe
    2007-06-19 22:22 106,496 --a------ C:\WINDOWS\system32\TwnLib20.dll
    2007-06-19 22:22 <DIR> d-------- C:\Program Files\Nero
    2007-06-19 18:02 <DIR> dr-h----- C:\DOCUME~1\ADMINI~1\Onlangs geopend
    2007-06-19 18:00 <DIR> d-------- C:\Program Files\CCleaner
    2007-06-19 11:26 <DIR> d-------- C:\WINDOWS\system32\nl-nl
    2007-06-19 11:19 <DIR> d-------- C:\WINDOWS\network diagnostic
    2007-06-19 09:05 <DIR> d-------- C:\Program Files\MSXML 4.0
    2007-06-19 08:53 <DIR> d-------- C:\DOCUME~1\LOCALS~1\Menu Start
    2007-06-19 08:49 <DIR> d-------- C:\WINDOWS\Prefetch
    2007-06-19 00:41 <DIR> d-------- C:\Program Files\messenger
    2007-06-19 00:40 <DIR> d-------- C:\WINDOWS\provisioning
    2007-06-19 00:40 <DIR> d-------- C:\WINDOWS\peernet
    2007-06-19 00:34 <DIR> d-------- C:\WINDOWS\ServicePackFiles
    2007-06-19 00:21 <DIR> d-------- C:\WINDOWS\EHome
    2007-06-19 00:07 4,569 --------- C:\WINDOWS\system32\secupd.dat
    2007-06-19 00:07 11,776 --------- C:\WINDOWS\system32\spnpinst.exe
    2007-06-18 22:05 <DIR> d-------- C:\DOCUME~1\ADMINI~1\APPLIC~1\Hewlett-Packard
    2007-06-18 21:42 <DIR> d-------- C:\Program Files\Lavasoft
    2007-06-18 08:47 19,728 --a------ C:\WINDOWS\system32\pgdfgsvc.exe
    2007-06-17 17:10 614,912 --a------ C:\WINDOWS\system32\h323msp.dll
    2007-06-17 17:10 332,288 --a------ C:\WINDOWS\system32\ipnathlp.dll
    2007-06-17 16:41 6,550 --a------ C:\WINDOWS\jautoexp.dat
    2007-06-17 16:41 46,352 --a------ C:\WINDOWS\setdebug.exe
    2007-06-17 16:41 313,856 --a------ C:\WINDOWS\system32\dx3j.dll
    2007-06-17 16:41 171,280 --a------ C:\WINDOWS\system32\jit.dll
    2007-06-17 16:41 139,536 --a------ C:\WINDOWS\system32\javaee.dll
    2007-06-17 16:40 947,472 --a------ C:\WINDOWS\system32\msjava.dll
    2007-06-17 16:40 63,248 --a------ C:\WINDOWS\system32\javaprxy.dll
    2007-06-17 16:40 49,424 --a------ C:\WINDOWS\system32\clspack.exe
    2007-06-17 16:40 404,752 --a------ C:\WINDOWS\system32\javart.dll
    2007-06-17 16:40 286,992 --a------ C:\WINDOWS\system32\vmhelper.dll
    2007-06-17 16:40 21,264 --a------ C:\WINDOWS\system32\msjdbc10.dll
    2007-06-17 16:40 187,152 --a------ C:\WINDOWS\system32\javacypt.dll
    2007-06-17 16:40 172,304 --a------ C:\WINDOWS\system32\jview.exe
    2007-06-17 16:40 171,792 --a------ C:\WINDOWS\system32\wjview.exe
    2007-06-17 16:40 154,384 --a------ C:\WINDOWS\system32\msawt.dll
    2007-06-17 16:40 15,120 --a------ C:\WINDOWS\system32\jdbgmgr.exe
    2007-06-17 16:40 113 --a------ C:\WINDOWS\system32\zonedon.reg
    2007-06-17 16:40 113 --a------ C:\WINDOWS\system32\zonedoff.reg
    2007-06-17 16:21 <DIR> d-------- C:\DOCUME~1\ALLUSE~1\APPLIC~1\Windows Genuine Advantage
    2007-06-17 15:35 <DIR> d-------- C:\Program Files\EasyCleaner
    2007-06-17 15:35 <DIR> d-------- C:\Program Files\Common Files\InstallShield
    2007-06-11 16:26 <DIR> d-------- C:\DOCUME~1\ADMINI~1\APPLIC~1\Google
    2007-06-11 00:43 102,312 --a------ C:\DOCUME~1\ADMINI~1\APPLIC~1\GDIPFONTCACHEV1.DAT

    (((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))) ))
    2007-06-19 20:22:34 -------- d-----w C:\Program Files\Common Files\Ahead
    2007-06-19 09:11:46 69,578 ----a-w C:\WINDOWS\system32\perfc013.dat
    2007-06-19 09:11:46 442,242 ----a-w C:\WINDOWS\system32\perfh013.dat
    2007-06-19 06:55:59 -------- d-----w C:\Program Files\MSN Messenger
    2007-06-18 22:40:27 -------- d-----w C:\Program Files\Movie Maker
    2007-06-18 22:34:03 -------- d-----w C:\Program Files\Windows NT
    2007-06-18 20:27:22 -------- d-----w C:\DOCUME~1\ADMINI~1\APPLIC~1\Lavasoft
    2007-06-18 19:48:47 -------- d-----w C:\Program Files\Hewlett-Packard
    2007-06-18 19:45:45 -------- d-----w C:\DOCUME~1\ADMINI~1\APPLIC~1\BSplayer
    2007-06-17 13:36:13 -------- d--h--w C:\Program Files\InstallShield Installation Information
    2007-05-30 15:46:27 -------- d-----w C:\DOCUME~1\ADMINI~1\APPLIC~1\AdobeUM
    2007-05-24 11:22:35 -------- d-----w C:\Program Files\Autodesk
    2007-05-24 11:22:20 -------- d-----w C:\Program Files\Common Files\Autodesk Shared
    2007-05-24 11:21:24 -------- d-----w C:\Program Files\AutoCAD 2005
    2007-05-24 11:18:44 -------- d-----w C:\Program Files\AnswerWorks 4.0
    2007-05-24 11:12:50 -------- d-----w C:\DOCUME~1\ADMINI~1\APPLIC~1\Autodesk
    2007-05-16 15:19:43 683,520 ----a-w C:\WINDOWS\system32\inetcomm.dll
    2007-05-15 15:08:53 -------- d-----w C:\Program Files\Common Files\ODBC
    2007-05-14 18:44:17 -------- d-----w C:\Program Files\Snapshot Viewer
    2007-05-14 18:43:20 -------- d-----w C:\DOCUME~1\ADMINI~1\APPLIC~1\Microsoft Web Folders
    2007-05-14 18:42:34 -------- d-----w C:\Program Files\microsoft frontpage
    2007-05-10 03:27:51 -------- d-----w C:\Program Files\VirtualDJ
    2007-04-25 14:22:52 144,896 ----a-w C:\WINDOWS\system32\schannel.dll
    2007-04-18 16:15:26 2,854,400 ----a-w C:\WINDOWS\system32\msi.dll
    2007-04-17 17:17:09 10,458,312 ----a-w C:\XLVIEWER.EXE
    2007-04-17 16:13:58 191,488 ----a-w C:\WINDOWS\system32\hlvdd.dll
    2007-04-16 20:47:36 33,624 ----a-w C:\WINDOWS\system32\wups.dll
    2007-04-16 20:45:54 1,710,936 ----a-w C:\WINDOWS\system32\wuaueng.dll
    2007-04-16 20:45:48 549,720 -c--a-w C:\WINDOWS\system32\wuapi.dll
    2007-04-16 20:45:42 325,976 ----a-w C:\WINDOWS\system32\wucltui.dll
    2007-04-16 20:45:28 92,504 ----a-w C:\WINDOWS\system32\cdm.dll
    2007-04-16 20:45:20 53,080 ----a-w C:\WINDOWS\system32\wuauclt.exe
    2007-04-16 20:45:20 43,352 ----a-w C:\WINDOWS\system32\wups2.dll
    2007-04-16 20:43:44 203,096 ----a-w C:\WINDOWS\system32\wuweb.dll
    2005-03-16 18:06:37 56 -csh--r C:\WINDOWS\system32\33EA570240.sys

    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))


    *Note* empty entries & legit default entries are not shown
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects]
    {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}=C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll [2003-05-15 01:47]
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
    "AVG7_CC"="C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc. exe" [2007-04-24 09:58]
    "SunJavaUpdateSched"="C:\Program Files\Java\jre1.5.0_05\bin\jusched.exe" [2005-08-26 19:14]
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Run]
    "CTFMON.EXE"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 10:03]
    "msnmsgr"="C:\Program Files\MSN Messenger\msnmsgr.exe" [2005-04-27 20:04]
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Menu Start^Programma's^Opstarten^Microsoft Office OneNote 2003 Snel Starten.lnk]
    path=C:\Documents and Settings\All Users\Menu Start\Programma's\Opstarten\Microsoft Office OneNote 2003 Snel Starten.lnk
    backup=C:\WINDOWS\pss\Microsoft Office OneNote 2003 Snel Starten.lnkCommon Startup
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\000StTHK]
    000StTHK.exe
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\00THotkey]
    C:\WINDOWS\System32\00THotkey.exe
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Apoint]
    C:\Program Files\Apoint2K\Apoint.exe
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
    C:\WINDOWS\System32\hkcmd.exe
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
    C:\WINDOWS\System32\igfxtray.exe
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LTSMMSG]
    LTSMMSG.exe
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mfczj.exe]
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
    "C:\Program Files\MSN Messenger\MsnMsgr.Exe" /background
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PadTouch]
    "C:\Program Files\TOSHIBA\PadTouch\PadExe.exe
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
    "C:\Program Files\QuickTime\qttask.exe" -atboottime
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Security iGuard]
    C:\Program Files\Security iGuard\Security iGuard.exe
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spyware Doctor]
    "C:\Program Files\Spyware Doctor\swdoctor.exe" /Q
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TFncKy]
    TFncKy.exe
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TFNF5]
    TFNF5.exe
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TOSCDSPD]
    C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TouchED]
    C:\Program Files\TOSHIBA\TouchED\TouchED.Exe
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TPSMain]
    TPSMain.exe
    [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
    C:\Program Files\Winamp\winampa.exe

    ************************************************** ************************
    catchme 0.3.721 W2K/XP/Vista - userland rootkit detector by Gmer, http://www.gmer.net
    Rootkit scan 2007-06-25 16:55:05
    Windows 5.1.2600 Service Pack 2 NTFS
    scanning hidden processes ...
    scanning hidden autostart entries ...
    scanning hidden files ...
    C:\WINDOWS\_default.pif:fwnqnz 11801 bytes executable
    C:\WINDOWS\_default.pif:lwsee 84262 bytes executable
    C:\WINDOWS\_default.pif:moocn 84262 bytes executable
    C:\WINDOWS\_default.pif:tirqfb 11801 bytes executable
    C:\WINDOWS\_default.Vpif:acymmj 12406 bytes executable
    C:\WINDOWS\_default.Vpif:aggamv 34937 bytes executable
    C:\WINDOWS\_default.Vpif:agjtik 34937 bytes executable
    C:\WINDOWS\_default.Vpif:agyfb 34937 bytes executable
    C:\WINDOWS\_default.Vpif:ahnixh 11385 bytes executable
    C:\WINDOWS\_default.Vpif:aivaer 66560 bytes executable
    C:\WINDOWS\_default.Vpif:aiwync 66560 bytes executable
    C:\WINDOWS\_default.Vpif:ajwzy 34937 bytes executable
    C:\WINDOWS\_default.Vpif:amifam 66560 bytes executable
    C:\WINDOWS\_default.Vpif:annxww 66560 bytes executable
    C:\WINDOWS\_default.Vpif:aowhf 125478 bytes executable
    C:\WINDOWS\_default.Vpif:aquomx 34937 bytes executable
    C:\WINDOWS\_default.Vpif:asqdju 11385 bytes executable
    C:\WINDOWS\_default.Vpif:aszokg 34937 bytes executable
    C:\WINDOWS\_default.Vpif:atmpbq 34937 bytes executable
    C:\WINDOWS\_default.Vpif:avapkq 11385 bytes executable
    C:\WINDOWS\_default.Vpif:avshgl 34937 bytes executable
    C:\WINDOWS\_default.Vpif:axfoxr 11385 bytes executable
    C:\WINDOWS\_default.Vpif:axfyhn 34937 bytes executable
    C:\WINDOWS\_default.Vpif:bagggn 11385 bytes executable
    C:\WINDOWS\_default.Vpif:ballwr 34937 bytes executable
    C:\WINDOWS\_default.Vpif:bejkxe 34937 bytes executable
    C:\WINDOWS\_default.Vpif:bgszcx 11385 bytes executable
    C:\WINDOWS\_default.Vpif:bgwvxo 11385 bytes executable
    C:\WINDOWS\_default.Vpif:bhrsls 11385 bytes executable
    C:\WINDOWS\_default.Vpif:bjhtit 34937 bytes executable
    C:\WINDOWS\_default.Vpif:bjyyri 11385 bytes executable
    C:\WINDOWS\_default.Vpif:bjziaz 34937 bytes executable
    C:\WINDOWS\_default.Vpif:bnxyyt 11385 bytes executable
    C:\WINDOWS\_default.Vpif:bphqav 66560 bytes executable
    C:\WINDOWS\_default.Vpif:bqhvtl 66560 bytes executable
    C:\WINDOWS\_default.Vpif:bqrbin 34937 bytes executable
    C:\WINDOWS\_default.Vpif:bsabri 34937 bytes executable
    C:\WINDOWS\_default.Vpif:bspisk 12406 bytes executable
    C:\WINDOWS\_default.Vpif:bspkkk 34937 bytes executable
    C:\WINDOWS\_default.Vpif:buaxoa 66560 bytes executable
    C:\WINDOWS\_default.Vpif:bwbrlw 34937 bytes executable
    C:\WINDOWS\_default.Vpif:bzryvo 34937 bytes executable
    C:\WINDOWS\_default.Vpif:camqku 11385 bytes executable
    C:\WINDOWS\_default.Vpif:cckmou 34937 bytes executable
    C:\WINDOWS\_default.Vpif:cdlrgq 34937 bytes executable
    C:\WINDOWS\_default.Vpif:cdtkzi 11385 bytes executable
    C:\WINDOWS\_default.Vpif:cfezqs 66560 bytes executable
    C:\WINDOWS\_default.Vpif:cjwhyw 11385 bytes executable
    C:\WINDOWS\_default.Vpif:cmswbm 66560 bytes executable
    C:\WINDOWS\_default.Vpif:cncftk 66560 bytes executable
    C:\WINDOWS\_default.Vpif:cootub 11385 bytes executable
    C:\WINDOWS\_default.Vpif:crggle 34937 bytes executable
    C:\WINDOWS\_default.Vpif:crurxi 34937 bytes executable
    C:\WINDOWS\_default.Vpif:csfmdd 34937 bytes executable
    C:\WINDOWS\_default.Vpif:csquta 11385 bytes executable
    C:\WINDOWS\_default.Vpif:ctifox 11385 bytes executable
    C:\WINDOWS\_default.Vpif:ctsxdm 34937 bytes executable
    C:\WINDOWS\_default.Vpif:cviahe 11385 bytes executable
    C:\WINDOWS\_default.Vpif:cvypuz 34937 bytes executable
    C:\WINDOWS\_default.Vpif:cwpkdw 34937 bytes executable
    C:\WINDOWS\_default.Vpif:ddbqaw 12406 bytes executable
    C:\WINDOWS\_default.Vpif:deboum 34937 bytes executable
    C:\WINDOWS\_default.Vpif:debrca 34937 bytes executable
    C:\WINDOWS\_default.Vpif:dgohkw 11385 bytes executable
    C:\WINDOWS\_default.Vpif:dlbcdb 11385 bytes executable
    C:\WINDOWS\_default.Vpif:dlgud 34937 bytes executable
    C:\WINDOWS\_default.Vpif:dmgqfl 66560 bytes executable
    C:\WINDOWS\_default.Vpif:dnbcnw 11385 bytes executable
    C:\WINDOWS\_default.Vpif:drccxc 12406 bytes executable
    C:\WINDOWS\_default.Vpif:droocg 12406 bytes executable
    C:\WINDOWS\_default.Vpif:dtcfdq 11385 bytes executable
    C:\WINDOWS\_default.Vpif:duwhmm 34937 bytes executable
    C:\WINDOWS\_default.Vpif:dvxyuj 11385 bytes executable
    C:\WINDOWS\_default.Vpif:dwzrmi 12406 bytes executable
    C:\WINDOWS\_default.Vpif:dyydar 11385 bytes executable
    C:\WINDOWS\_default.Vpif:eakfxh 12406 bytes executable
    C:\WINDOWS\_default.Vpif:eboefw 11385 bytes executable
    C:\WINDOWS\_default.Vpif:eehwiv 11385 bytes executable
    C:\WINDOWS\_default.Vpif:eeivre 34937 bytes executable
    C:\WINDOWS\_default.Vpif:eekoms 34937 bytes executable
    C:\WINDOWS\_default.Vpif:efnqcy 11385 bytes executable
    C:\WINDOWS\_default.Vpif:egwkrt 34937 bytes executable
    C:\WINDOWS\_default.Vpif:eimvwv 34937 bytes executable
    C:\WINDOWS\_default.Vpif:eiulq 34937 bytes executable
    C:\WINDOWS\_default.Vpif:emnkre 66560 bytes executable
    C:\WINDOWS\_default.Vpif:emqegs 34937 bytes executable
    C:\WINDOWS\_default.Vpif:eocccd 34937 bytes executable
    C:\WINDOWS\_default.Vpif:epcpfk 34937 bytes executable
    C:\WINDOWS\_default.Vpif:eqbatx 11385 bytes executable
    C:\WINDOWS\_default.Vpif:eqsfw 34937 bytes executable
    C:\WINDOWS\_default.Vpif:etotho 34937 bytes executable
    C:\WINDOWS\_default.Vpif:eydvvv 66560 bytes executable
    C:\WINDOWS\_default.Vpif:eyrcvt 34937 bytes executable
    C:\WINDOWS\_default.Vpif:eywfne 11385 bytes executable
    C:\WINDOWS\_default.Vpif:ffxjrv 11385 bytes executable
    C:\WINDOWS\_default.Vpif:fgvzmy 34937 bytes executable
    C:\WINDOWS\_default.Vpif:fjtqup 34937 bytes executable
    C:\WINDOWS\_default.Vpif:fksqii 66560 bytes executable
    C:\WINDOWS\_default.Vpif:fmlzwy 11385 bytes executable
    C:\WINDOWS\_default.Vpif:fntkye 66560 bytes executable
    C:\WINDOWS\_default.Vpif:fpshbs 11385 bytes executable
    C:\WINDOWS\_default.Vpif:fptyvu 34937 bytes executable
    C:\WINDOWS\_default.Vpif:fsmvrn 34937 bytes executable
    C:\WINDOWS\_default.Vpif:fspbrk 34937 bytes executable
    C:\WINDOWS\_default.Vpif:ftuzsz 12406 bytes executable
    C:\WINDOWS\_default.Vpif:fxbvwj 11385 bytes executable
    C:\WINDOWS\_default.Vpif:fxudi 84016 bytes executable
    C:\WINDOWS\_default.Vpif:gbiyko 12406 bytes executable
    C:\WINDOWS\_default.Vpif:gdkfrt 11385 bytes executable
    C:\WINDOWS\_default.Vpif:gfexdw 11385 bytes executable
    C:\WINDOWS\_default.Vpif:gimusf 34937 bytes executable
    C:\WINDOWS\_default.Vpif:gjpvpw 11385 bytes executable
    C:\WINDOWS\_default.Vpif:gjsdfc 34937 bytes executable
    C:\WINDOWS\_default.Vpif:gkasco 34937 bytes executable
    C:\WINDOWS\_default.Vpif:gkpoyp 66560 bytes executable
    C:\WINDOWS\_default.Vpif:gnagnv 66560 bytes executable
    C:\WINDOWS\_default.Vpif:goblzt 12406 bytes executable
    C:\WINDOWS\_default.Vpif:gqjipz 11385 bytes executable
    C:\WINDOWS\_default.Vpif:gtmpew 34937 bytes executable
    C:\WINDOWS\_default.Vpif:gulufn 34937 bytes executable
    C:\WINDOWS\_default.Vpif:guqsul 34937 bytes executable
    C:\WINDOWS\_default.Vpif:gwvdek 34937 bytes executable
    C:\WINDOWS\_default.Vpif:gxqlrk 11385 bytes executable
    C:\WINDOWS\_default.Vpif:gxvaer 12406 bytes executable
    C:\WINDOWS\_default.Vpif:hdasmv 34937 bytes executable
    C:\WINDOWS\_default.Vpif:heqpgt 34937 bytes executable
    C:\WINDOWS\_default.Vpif:hfycmw 34937 bytes executable
    C:\WINDOWS\_default.Vpif:hgronz 12406 bytes executable
    C:\WINDOWS\_default.Vpif:hgyvg 125478 bytes executable
    C:\WINDOWS\_default.Vpif:hhnwfv 11385 bytes executable
    C:\WINDOWS\_default.Vpif:hkfidz 12406 bytes executable
    C:\WINDOWS\_default.Vpif:hletzn 34937 bytes executable
    C:\WINDOWS\_default.Vpif:hpbjkm 11385 bytes executable
    C:\WINDOWS\_default.Vpif:hqmwoh 34937 bytes executable
    C:\WINDOWS\_default.Vpif:hrxuju 34937 bytes executable
    C:\WINDOWS\_default.Vpif:hsbkhn 12406 bytes executable
    C:\WINDOWS\_default.Vpif:htyjdz 11385 bytes executable
    C:\WINDOWS\_default.Vpif:htyvuw 34937 bytes executable
    C:\WINDOWS\_default.Vpif:hupkqg 11385 bytes executable
    C:\WINDOWS\_default.Vpif:huwjaz 12406 bytes executable
    C:\WINDOWS\_default.Vpif:huzbmb 11385 bytes executable
    C:\WINDOWS\_default.Vpif:hvwtbz 11385 bytes executable
    C:\WINDOWS\_default.Vpif:hwfjmo 11385 bytes executable
    C:\WINDOWS\_default.Vpif:hxvtfd 12406 bytes executable
    C:\WINDOWS\_default.Vpif:iahaiv 66560 bytes executable
    C:\WINDOWS\_default.Vpif:idgill 11385 bytes executable
    C:\WINDOWS\_default.Vpif:idtuar 66560 bytes executable
    C:\WINDOWS\_default.Vpif:iewetj 11385 bytes executable
    C:\WINDOWS\_default.Vpif:ifwvsk 11385 bytes executable
    C:\WINDOWS\_default.Vpif:ioapgl 66560 bytes executable
    C:\WINDOWS\_default.Vpif:ioosgo 11385 bytes executable
    C:\WINDOWS\_default.Vpif:irfxhi 11385 bytes executable
    C:\WINDOWS\_default.Vpif:irfyhj 11385 bytes executable
    C:\WINDOWS\_default.Vpif:iwdmga 66560 bytes executable
    C:\WINDOWS\_default.Vpif:iwrjow 66560 bytes executable
    C:\WINDOWS\_default.Vpif:iyfgse 34937 bytes executable
    C:\WINDOWS\_default.Vpif:izqtz 34937 bytes executable
    C:\WINDOWS\_default.Vpif:jamqrf 11385 bytes executable
    C:\WINDOWS\_default.Vpif:jbrhmr 11385 bytes executable
    C:\WINDOWS\_default.Vpif:jcmxth 12406 bytes executable
    C:\WINDOWS\_default.Vpif:jdrxdu 11385 bytes executable
    C:\WINDOWS\_default.Vpif:jgyoaq 11385 bytes executable
    C:\WINDOWS\_default.Vpif:jhhqrj 34937 bytes executable
    C:\WINDOWS\_default.Vpif:jhsixu 34937 bytes executable
    C:\WINDOWS\_default.Vpif:jihcgx 11385 bytes executable
    C:\WINDOWS\_default.Vpif:jjegap 34937 bytes executable
    C:\WINDOWS\_default.Vpif:jjfnkx 11385 bytes executable
    C:\WINDOWS\_default.Vpif:jjpnoj 11385 bytes executable
    C:\WINDOWS\_default.Vpif:jnbbzu 11385 bytes executable
    C:\WINDOWS\_default.Vpif:jpzvoc 12406 bytes executable
    C:\WINDOWS\_default.Vpif:jrayzw 34937 bytes executable
    C:\WINDOWS\_default.Vpif:jrqoxg 11385 bytes executable
    C:\WINDOWS\_default.Vpif:jvjmrl 12406 bytes executable
    C:\WINDOWS\_default.Vpif:jvocap 11385 bytes executable
    C:\WINDOWS\_default.Vpif:jwiryw 34937 bytes executable
    C:\WINDOWS\_default.Vpif:jybjes 34937 bytes executable
    C:\WINDOWS\_default.Vpif:jyzkbe 12406 bytes executable
    C:\WINDOWS\_default.Vpif:karhbi 34937 bytes executable
    C:\WINDOWS\_default.Vpif:kartoa 66560 bytes executable
    C:\WINDOWS\_default.Vpif:kctmfh 34937 bytes executable
    C:\WINDOWS\_default.Vpif:kdiisb 11385 bytes executable
    C:\WINDOWS\_default.Vpif:kinxvo 34937 bytes executable
    C:\WINDOWS\_default.Vpif:kiohfl 34937 bytes executable
    C:\WINDOWS\_default.Vpif:kkaeeg 12406 bytes executable
    C:\WINDOWS\_default.Vpif:kkbtuw 12406 bytes executable
    C:\WINDOWS\_default.Vpif:kkhjbx 34937 bytes executable
    C:\WINDOWS\_default.Vpif:kkmbyd 34937 bytes executable
    C:\WINDOWS\_default.Vpif:kljcqw 11385 bytes executable
    C:\WINDOWS\_default.Vpif:klkerf 66560 bytes executable
    C:\WINDOWS\_default.Vpif:kpkgqy 11385 bytes executable
    C:\WINDOWS\_default.Vpif:kqhdyc 11385 bytes executable
    C:\WINDOWS\_default.Vpif:kqvbru 11385 bytes executable
    C:\WINDOWS\_default.Vpif:kqxbyq 34937 bytes executable
    C:\WINDOWS\_default.Vpif:ksmiqa 34937 bytes executable
    C:\WINDOWS\_default.Vpif:ktcpsq 34937 bytes executable
    C:\WINDOWS\_default.Vpif:kuglcd 34937 bytes executable
    C:\WINDOWS\_default.Vpif:kuiyqw 66560 bytes executable
    C:\WINDOWS\_default.Vpif:kvewil 12406 bytes executable
    C:\WINDOWS\_default.Vpif:kvtqew 34937 bytes executable
    C:\WINDOWS\_default.Vpif:kzgape 34937 bytes executable
    C:\WINDOWS\_default.Vpif:kzhwrm 11385 bytes executable
    C:\WINDOWS\_default.Vpif:ldjmip 11385 bytes executable
    C:\WINDOWS\_default.Vpif:lhtqck 12406 bytes executable
    C:\WINDOWS\_default.Vpif:lkkoyo 34937 bytes executable
    C:\WINDOWS\_default.Vpif:lnfyop 66560 bytes executable
    C:\WINDOWS\_default.Vpif:loggnj 34937 bytes executable
    C:\WINDOWS\_default.Vpif:lorccz 11385 bytes executable
    C:\WINDOWS\_default.Vpif:loykez 11385 bytes executable
    C:\WINDOWS\_default.Vpif:lssaoj 34937 bytes executable
    C:\WINDOWS\_default.Vpif:ltebsb 11385 bytes executable
    C:\WINDOWS\_default.Vpif:lwbtmc 34937 bytes executable
    C:\WINDOWS\_default.Vpif:lxqoir 34937 bytes executable
    C:\WINDOWS\_default.Vpif:mbbueq 11385 bytes executable
    C:\WINDOWS\_default.Vpif:mchzuj 34937 bytes executable
    C:\WINDOWS\_default.Vpif:mcxsyz 34937 bytes executable
    C:\WINDOWS\_default.Vpif:mdrkeh 34937 bytes executable
    C:\WINDOWS\_default.Vpif:mdsbsi 11385 bytes executable
    C:\WINDOWS\_default.Vpif:mdwqol 11385 bytes executable
    C:\WINDOWS\_default.Vpif:mepqpb 12406 bytes executable
    C:\WINDOWS\_default.Vpif:mlsmbw 11385 bytes executable
    C:\WINDOWS\_default.Vpif:mnsoit 11385 bytes executable
    C:\WINDOWS\_default.Vpif:mpkssp 34937 bytes executable
    C:\WINDOWS\_default.Vpif:mqxmvg 34937 bytes executable
    C:\WINDOWS\_default.Vpif:mrtiok 11385 bytes executable
    C:\WINDOWS\_default.Vpif:mstsa 34937 bytes executable
    C:\WINDOWS\_default.Vpif:mxzxb 125478 bytes executable
    C:\WINDOWS\_default.Vpif:ncszpj 11385 bytes executable
    C:\WINDOWS\_default.Vpif:nfdtro 11385 bytes executable
    C:\WINDOWS\_default.Vpif:nfharg 66560 bytes executable
    C:\WINDOWS\_default.Vpif:nhbgpv 11385 bytes executable
    C:\WINDOWS\_default.Vpif:niilaf 34937 bytes executable
    C:\WINDOWS\_default.Vpif:nizxlr 11385 bytes executable
    C:\WINDOWS\_default.Vpif:njpmim 11385 bytes executable
    C:\WINDOWS\_default.Vpif:npttcd 34937 bytes executable
    C:\WINDOWS\_default.Vpif:nqoczv 11385 bytes executable
    C:\WINDOWS\_default.Vpif:nqzeqo 34937 bytes executable
    C:\WINDOWS\_default.Vpif:nrwwlb 34937 bytes executable
    C:\WINDOWS\_default.Vpif:nswvxa 11385 bytes executable
    C:\WINDOWS\_default.Vpif:ntbpdl 11385 bytes executable
    C:\WINDOWS\_default.Vpif:ntmthz 11385 bytes executable
    C:\WINDOWS\_default.Vpif:ntynrj 11385 bytes executable
    C:\WINDOWS\_default.Vpif:nwglgv 12406 bytes executable
    C:\WINDOWS\_default.Vpif:nwwkai 34937 bytes executable
    C:\WINDOWS\_default.Vpif:nzvvkh 34937 bytes executable
    C:\WINDOWS\_default.Vpif:ocinsk 11385 bytes executable
    C:\WINDOWS\_default.Vpif:ocsidc 34937 bytes executable
    C:\WINDOWS\_default.Vpif:octzjf 34937 bytes executable
    C:\WINDOWS\_default.Vpif:odncas 34937 bytes executable
    C:\WINDOWS\_default.Vpif:ofkegq 11385 bytes executable
    C:\WINDOWS\_default.Vpif:ohnqbo 12406 bytes executable
    C:\WINDOWS\_default.Vpif:okvwya 34937 bytes executable
    C:\WINDOWS\_default.Vpif:olcevf 34937 bytes executable
    C:\WINDOWS\_default.Vpif:olypsv 11385 bytes executable
    C:\WINDOWS\_default.Vpif:ondkac 34937 bytes executable
    C:\WINDOWS\_default.Vpif:onnmzn 34937 bytes executable
    C:\WINDOWS\_default.Vpif:ornzfe 11385 bytes executable
    C:\WINDOWS\_default.Vpif:osubav 66560 bytes executable
    C:\WINDOWS\_default.Vpif:osyhrw 11385 bytes executable
    C:\WINDOWS\_default.Vpif:otgprl 11385 bytes executable
    C:\WINDOWS\_default.Vpif:ouawlf 34937 bytes executable
    C:\WINDOWS\_default.Vpif:owcyci 11385 bytes executable
    C:\WINDOWS\_default.Vpif:oynud 34937 bytes executable
    C:\WINDOWS\_default.Vpif:ozjqdc 34937 bytes executable
    C:\WINDOWS\_default.Vpifcrwtr 34937 bytes executable
    C:\WINDOWS\_default.Vpifegwsl 11385 bytes executable
    C:\WINDOWS\_default.Vpifeyber 11385 bytes executable
    C:\WINDOWS\_default.Vpifithb 125478 bytes executable
    C:\WINDOWS\_default.Vpiflngmy 34937 bytes executable
    C:\WINDOWS\_default.Vpifluoxc 11385 bytes executable
    C:\WINDOWS\_default.Vpifpbftq 34937 bytes executable
    C:\WINDOWS\_default.Vpifpurmx 11385 bytes executable
    C:\WINDOWS\_default.Vpifqehpk 11385 bytes executable
    C:\WINDOWS\_default.Vpifrwmxv 66560 bytes executable
    C:\WINDOWS\_default.Vpifsjnc 79007 bytes executable
    C:\WINDOWS\_default.Vpifwcfla 12406 bytes executable
    C:\WINDOWS\_default.Vpifxfatw 66560 bytes executable
    C:\WINDOWS\_default.Vpifykpx 34937 bytes executable
    C:\WINDOWS\_default.Vpifzojiv 11385 bytes executable
    C:\WINDOWS\_default.Vpif:qbneec 11385 bytes executable
    C:\WINDOWS\_default.Vpif:qedhqa 11385 bytes executable
    C:\WINDOWS\_default.Vpif:qevslv 34937 bytes executable
    C:\WINDOWS\_default.Vpif:qfvmn 125478 bytes executable
    C:\WINDOWS\_default.Vpif:qgwbzs 66560 bytes executable
    C:\WINDOWS\_default.Vpif:qgwcxh 11385 bytes executable
    C:\WINDOWS\_default.Vpif:qhtjkq 34937 bytes executable
    C:\WINDOWS\_default.Vpif:qjrsde 34937 bytes executable
    C:\WINDOWS\_default.Vpif:qkcxjr 66560 bytes executable
    C:\WINDOWS\_default.Vpif:qlgrfk 66560 bytes executable
    C:\WINDOWS\_default.Vpif:qmujho 34937 bytes executable
    C:\WINDOWS\_default.Vpif:qooila 34937 bytes executable
    C:\WINDOWS\_default.Vpif:qqxidv 11385 bytes executable
    C:\WINDOWS\_default.Vpif:qtnltj 11385 bytes executable
    C:\WINDOWS\_default.Vpif:quonhy 34937 bytes executable
    C:\WINDOWS\_default.Vpif:qvpmeu 11385 bytes executable
    C:\WINDOWS\_default.Vpif:qygfzt 34937 bytes executable
    C:\WINDOWS\_default.Vpif:qyjqlv 34937 bytes executable
    C:\WINDOWS\_default.Vpif:qzisze 11385 bytes executable
    C:\WINDOWS\_default.Vpif:rcahdf 11385 bytes executable
    C:\WINDOWS\_default.Vpif:rdilbu 11385 bytes executable
    C:\WINDOWS\_default.Vpif:rekmdu 34937 bytes executable
    C:\WINDOWS\_default.Vpif:rfhbdc 34937 bytes executable
    C:\WINDOWS\_default.Vpif:rhussd 11385 bytes executable
    C:\WINDOWS\_default.Vpif:rjjosl 34937 bytes executable
    C:\WINDOWS\_default.Vpif:rjqjxt 34937 bytes executable
    C:\WINDOWS\_default.Vpif:rktvet 11385 bytes executable
    C:\WINDOWS\_default.Vpif:rlnqif 34937 bytes executable
    C:\WINDOWS\_default.Vpif:rlsglj 34937 bytes executable
    C:\WINDOWS\_default.Vpif:rlupjc 12406 bytes executable
    C:\WINDOWS\_default.Vpif:rlxnxk 34937 bytes executable
    C:\WINDOWS\_default.Vpif:rnmzir 34937 bytes executable
    C:\WINDOWS\_default.Vpif:rpfwvg 12406 bytes executable
    C:\WINDOWS\_default.Vpif:rqcmvx 11385 bytes executable
    C:\WINDOWS\_default.Vpif:rqhlem 11385 bytes executable
    C:\WINDOWS\_default.Vpif:rrtdwq 11385 bytes executable
    C:\WINDOWS\_default.Vpif:rscmqa 34937 bytes executable
    C:\WINDOWS\_default.Vpif:rsmtlm 34937 bytes executable
    C:\WINDOWS\_default.Vpif:rvlrgb 34937 bytes executable
    C:\WINDOWS\_default.Vpif:rwelji 34937 bytes executable
    C:\WINDOWS\_default.Vpif:scyvyz 11385 bytes executable
    C:\WINDOWS\_default.Vpif:sdqsgl 34937 bytes executable
    C:\WINDOWS\_default.Vpif:sfdtiu 11385 bytes executable
    C:\WINDOWS\_default.Vpif:sfkqy 34937 bytes executable
    C:\WINDOWS\_default.Vpif:sfpjvu 34937 bytes executable
    C:\WINDOWS\_default.Vpif:sgenir 11385 bytes executable
    C:\WINDOWS\_default.Vpif:shnnnb 11385 bytes executable
    C:\WINDOWS\_default.Vpif:shwbdb 11385 bytes executable
    C:\WINDOWS\_default.Vpif:siforj 34937 bytes executable
    C:\WINDOWS\_default.Vpif:skrwbq 11385 bytes executable
    C:\WINDOWS\_default.Vpif:sktxbl 34937 bytes executable
    C:\WINDOWS\_default.Vpif:snnbkg 11385 bytes executable
    C:\WINDOWS\_default.Vpif:srdjrj 11385 bytes executable
    C:\WINDOWS\_default.Vpif:srijir 66560 bytes executable
    C:\WINDOWS\_default.Vpif:ssjcqg 11385 bytes executable
    C:\WINDOWS\_default.Vpif:svjnka 12406 bytes executable
    C:\WINDOWS\_default.Vpif:swsvmb 34937 bytes executable
    C:\WINDOWS\_default.Vpif:swxjgp 11385 bytes executable
    C:\WINDOWS\_default.Vpif:swzuwu 34937 bytes executable
    C:\WINDOWS\_default.Vpif:sytwgb 34937 bytes executable
    C:\WINDOWS\_default.Vpif:tbylix 34937 bytes executable
    C:\WINDOWS\_default.Vpif:tcffwo 11385 bytes executable
    C:\WINDOWS\_default.Vpif:tgcewh 34937 bytes executable
    C:\WINDOWS\_default.Vpif:tggipb 66560 bytes executable
    C:\WINDOWS\_default.Vpif:tgrtc 79922 bytes executable
    C:\WINDOWS\_default.Vpif:tgzfox 34937 bytes executable
    C:\WINDOWS\_default.Vpif:tikods 11385 bytes executable
    C:\WINDOWS\_default.Vpif:tlyzep 11385 bytes executable
    C:\WINDOWS\_default.Vpif:travmy 11385 bytes executable
    C:\WINDOWS\_default.Vpif:tscatu 11385 bytes executable
    C:\WINDOWS\_default.Vpif:tsehsi 66560 bytes executable
    C:\WINDOWS\_default.Vpif:tsiqdw 34937 bytes executable
    C:\WINDOWS\_default.Vpif:ttiomu 34937 bytes executable
    C:\WINDOWS\_default.Vpif:tunubr 12406 bytes executable
    C:\WINDOWS\_default.Vpif:tvqdpw 34937 bytes executable
    C:\WINDOWS\_default.Vpif:txxuru 34937 bytes executable
    C:\WINDOWS\_default.Vpif:ucyxkx 11385 bytes executable
    C:\WINDOWS\_default.Vpif:udkzmv 66560 bytes executable
    C:\WINDOWS\_default.Vpif:uempbt 34937 bytes executable
    C:\WINDOWS\_default.Vpif:uhhdka 66560 bytes executable
    C:\WINDOWS\_default.Vpif:uhoazz 34937 bytes executable
    C:\WINDOWS\_default.Vpif:uibxnu 34937 bytes executable
    C:\WINDOWS\_default.Vpif:ujomah 11385 bytes executable
    C:\WINDOWS\_default.Vpif:ujqelk 34937 bytes executable
    C:\WINDOWS\_default.Vpif:ukuhoy 34937 bytes executable
    C:\WINDOWS\_default.Vpif:umzjgq 11385 bytes executable
    C:\WINDOWS\_default.Vpif:unefr 84016 bytes executable
    C:\WINDOWS\_default.Vpif:uohdav 34937 bytes executable
    C:\WINDOWS\_default.Vpif:upbght 12406 bytes executable
    C:\WINDOWS\_default.Vpif:upqxyc 11385 bytes executable
    C:\WINDOWS\_default.Vpif:uprnyf 11385 bytes executable
    C:\WINDOWS\_default.Vpif:uqpjge 66560 bytes executable
    C:\WINDOWS\_default.Vpif:urdivq 11385 bytes executable
    C:\WINDOWS\_default.Vpif:utjkwn 34937 bytes executable
    C:\WINDOWS\_default.Vpif:uvaekw 11385 bytes executable
    C:\WINDOWS\_default.Vpif:uwdfxy 11385 bytes executable
    C:\WINDOWS\_default.Vpif:uwruwc 34937 bytes executable
    C:\WINDOWS\_default.Vpif:uwsobp 34937 bytes executable
    C:\WINDOWS\_default.Vpif:uxmzlt 11385 bytes executable
    C:\WINDOWS\_default.Vpif:vbjmpv 11385 bytes executable
    C:\WINDOWS\_default.Vpif:vblpfz 34937 bytes executable
    C:\WINDOWS\_default.Vpif:vbzdia 12406 bytes executable
    C:\WINDOWS\_default.Vpif:vcvxgh 11385 bytes executable
    C:\WINDOWS\_default.Vpif:vdagxg 66560 bytes executable
    C:\WINDOWS\_default.Vpif:vetwug 34937 bytes executable
    C:\WINDOWS\_default.Vpif:vggmeg 34937 bytes executable
    C:\WINDOWS\_default.Vpif:vihsjp 11385 bytes executable
    C:\WINDOWS\_default.Vpif:vjvirm 34937 bytes executable
    C:\WINDOWS\_default.Vpif:vmakqz 34937 bytes executable
    C:\WINDOWS\_default.Vpif:vmgbwy 11385 bytes executable
    C:\WINDOWS\_default.Vpif:vmpbbz 66560 bytes executable
    C:\WINDOWS\_default.Vpif:vmuhxl 11385 bytes executable
    C:\WINDOWS\_default.Vpif:vrcmod 34937 bytes executable
    C:\WINDOWS\_default.Vpif:vrejrr 11385 bytes executable
    C:\WINDOWS\_default.Vpif:vshbwr 34937 bytes executable
    C:\WINDOWS\_default.Vpif:vsijib 11385 bytes executable
    C:\WINDOWS\_default.Vpif:vtbzol 34937 bytes executable
    C:\WINDOWS\_default.Vpif:vvkfgs 12406 bytes executable
    C:\WINDOWS\_default.Vpif:vvvydr 11385 bytes executable
    C:\WINDOWS\_default.Vpif:vzlipx 11385 bytes executable
    C:\WINDOWS\_default.Vpif:wackzs 34937 bytes executable
    C:\WINDOWS\_default.Vpif:wancxj 11385 bytes executable
    C:\WINDOWS\_default.Vpif:wcvped 66560 bytes executable
    C:\WINDOWS\_default.Vpif:wezbky 34937 bytes executable
    C:\WINDOWS\_default.Vpif:wfzqen 11385 bytes executable
    C:\WINDOWS\_default.Vpif:wgbzqw 66560 bytes executable
    C:\WINDOWS\_default.Vpif:wjdjeq 11385 bytes executable
    C:\WINDOWS\_default.Vpif:wjyjm 34937 bytes executable
    C:\WINDOWS\_default.Vpif:wkmzi 125478 bytes executable
    C:\WINDOWS\_default.Vpif:wknjpt 11385 bytes executable
    C:\WINDOWS\_default.Vpif:wkuasw 11385 bytes executable
    C:\WINDOWS\_default.Vpif:wljzbv 11385 bytes executable
    C:\WINDOWS\_default.Vpif:wnuhhg 34937 bytes executable
    C:\WINDOWS\_default.Vpif:wpbmcx 66560 bytes executable
    C:\WINDOWS\_default.Vpif:wpfxxj 66560 bytes executable
    C:\WINDOWS\_default.Vpif:wqbaus 11385 bytes executable
    C:\WINDOWS\_default.Vpif:wqkuht 11385 bytes executable
    C:\WINDOWS\_default.Vpif:wrugnh 34937 bytes executable
    C:\WINDOWS\_default.Vpif:wstjbu 12406 bytes executable
    C:\WINDOWS\_default.Vpif:wthrrd 11385 bytes executable
    C:\WINDOWS\_default.Vpif:wtvkxb 34937 bytes executable
    C:\WINDOWS\_default.Vpif:wvxykb 11385 bytes executable
    C:\WINDOWS\_default.Vpif:wwpmou 34937 bytes executable
    C:\WINDOWS\_default.Vpif:wxhauu 12406 bytes executable
    C:\WINDOWS\_default.Vpif:xbzrzh 11385 bytes executable
    C:\WINDOWS\_default.Vpif:xggvwi 34937 bytes executable
    C:\WINDOWS\_default.Vpif:xmwfyj 34937 bytes executable
    C:\WINDOWS\_default.Vpif:xqkmed 34937 bytes executable
    C:\WINDOWS\_default.Vpif:xqunln 11385 bytes executable
    C:\WINDOWS\_default.Vpif:xrbuit 11385 bytes executable
    C:\WINDOWS\_default.Vpif:xtmfmk 34937 bytes executable
    C:\WINDOWS\_default.Vpif:xtvifn 11385 bytes executable
    C:\WINDOWS\_default.Vpif:xyweol 11385 bytes executable
    C:\WINDOWS\_default.Vpif:xzpkho 34937 bytes executable
    C:\WINDOWS\_default.Vpif:ygbwqn 11385 bytes executable
    C:\WINDOWS\_default.Vpif:yiywdq 11385 bytes executable
    C:\WINDOWS\_default.Vpif:yludou 11385 bytes executable
    C:\WINDOWS\_default.Vpif:ymrhjj 11385 bytes executable
    C:\WINDOWS\_default.Vpif:ynwdrq 12406 bytes executable
    C:\WINDOWS\_default.Vpif:yqbved 11385 bytes executable
    C:\WINDOWS\_default.Vpif:yqyejc 11385 bytes executable
    C:\WINDOWS\_default.Vpif:yrcwnb 34937 bytes executable
    C:\WINDOWS\_default.Vpif:yrkhvq 11385 bytes executable
    C:\WINDOWS\_default.Vpif:yruojk 11385 bytes executable
    C:\WINDOWS\_default.Vpif:yufhbk 11385 bytes executable
    C:\WINDOWS\_default.Vpif:yxgdqk 35353 bytes executable
    C:\WINDOWS\_default.Vpif:yxjdci 12406 bytes executable
    C:\WINDOWS\_default.Vpif:yxuayu 11385 bytes executable
    C:\WINDOWS\_default.Vpif:yzxzfp 11385 bytes executable
    C:\WINDOWS\_default.Vpif:zbpbiv 11385 bytes executable
    C:\WINDOWS\_default.Vpif:zeovjz 11385 bytes executable
    C:\WINDOWS\_default.Vpif:zetggf 11385 bytes executable
    C:\WINDOWS\_default.Vpif:zgacvs 11385 bytes executable
    C:\WINDOWS\_default.Vpif:zgbfyt 11385 bytes executable
    C:\WINDOWS\_default.Vpif:zhgbzf 11385 bytes executable
    C:\WINDOWS\_default.Vpif:zjasga 11385 bytes executable
    C:\WINDOWS\_default.Vpif:zjernk 11385 bytes executable
    C:\WINDOWS\_default.Vpif:zkharg 11385 bytes executable
    C:\WINDOWS\_default.Vpif:zmixz 34937 bytes executable
    C:\WINDOWS\_default.Vpif:znuugg 11385 bytes executable
    C:\WINDOWS\_default.Vpif:zpuqbd 34937 bytes executable
    C:\WINDOWS\_default.Vpif:zsqsbq 34937 bytes executable
    C:\WINDOWS\_default.Vpif:zwogej 34937 bytes executable
    C:\WINDOWS\_default.Vpif:zyajey 11385 bytes executable
    C:\WINDOWS\_default.Vpif:zzaagi 66560 bytes executable
    ************************************************** ************************
    Completion time: 2007-06-25 16:56:11
    C:\ComboFix-quarantined-files.txt ... 2007-06-25 16:55
    --- E O F ---


  7. #7
    Gevorderd   NiekR's schermafbeelding
    Geregistreerd
    22 April 2007
    Locatie
    Gelderland
    Berichten
    415
    Bedankjes
    48
    Bedankt
    53 keer in 51 posts
    Hoi Spike,
    Installeer Avast over de huidige. Probeer het daarna nogmaals te verwijderen.

    Niek

Discussie informatie

Users Browsing this Thread

Momenteel bekijken 1 gebruikers deze discussie. (0 leden en 1 gasten)

Soortgelijke discussies

  1. Laptop start extreem traag op !!!!
    Door Stijn1991 in forum HijackThis
    Reacties: 7
    Laatste bericht: 14 May 2007, 17:29
  2. IE start héél traag op
    Door mjonckhe in forum HijackThis
    Reacties: 3
    Laatste bericht: 24 October 2006, 21:32
  3. pc start heel traag op
    Door ciriel in forum HijackThis
    Reacties: 1
    Laatste bericht: 9 January 2006, 23:56

Favorieten/bladwijzers

Favorieten/bladwijzers

Regels voor berichten

  • Je mag geen nieuwe discussies starten
  • Je mag niet reageren op berichten
  • Je mag geen bijlagen versturen
  • Je mag niet je berichten bewerken
  •