Archief - Game slowdowns en 80C bij GPU terwijl ik idle

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 22:20:25, on 19/08/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
C:\Program Files\amBX\ApplicationManager\amBXAppMgr.exe
C:\Program Files\Logitech\G-series Software\LGDCore.exe
C:\Program Files\Logitech\G-series Software\LCDMon.exe
C:\Program Files\AVG\AVG8\avgtray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe
C:\Program Files\CyberLink\Shared files\brs.exe
C:\Program Files\Logitech\Logitech Vid\Vid.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Electronic Arts\EADM\Core.exe
C:\Program Files\Steam\Steam.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\Logitech\G-series Software\Applets\LCDCountdown\LCDCountdown.exe
C:\Program Files\Logitech\G-series Software\Applets\LCDPop3\LCDPOP3.exe
C:\Program Files\Logitech\G-series Software\Applets\LCDClock.exe
C:\Program Files\Logitech\G-series Software\Applets\LCDMedia.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Windows\system32\NOTEPAD.EXE
C:\Windows\system32\SearchFilterHost.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Search
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - *{0BC6E3FA-78EF-4886-842C-5A1258C4455A} - (no file)
R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
R3 - URLSearchHook: ToggleDU Toolbar - {3ad798d0-4642-4c55-bc14-cfe7dd19e0d1} - C:\Program Files\ToggleDU\tbTogg.dll
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: ToggleDU Toolbar - {3ad798d0-4642-4c55-bc14-cfe7dd19e0d1} - C:\Program Files\ToggleDU\tbTogg.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O3 - Toolbar: ToggleDU Toolbar - {3ad798d0-4642-4c55-bc14-cfe7dd19e0d1} - C:\Program Files\ToggleDU\tbTogg.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
O4 - HKLM\..\Run: [amBX System Tray Application] C:\Program Files\amBX\ApplicationManager\amBXAppMgr.exe
O4 - HKLM\..\Run: [Launch LGDCore] "C:\Program Files\Logitech\G-series Software\LGDCore.exe" /SHOWHIDE
O4 - HKLM\..\Run: [Launch LCDMon] "C:\Program Files\Logitech\G-series Software\LCDMon.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [RemoteControl9] "C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe"
O4 - HKLM\..\Run: [PDVD9LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD9\Language\Language.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files\Cyberlink\Shared Files\brs.exe
O4 - HKCU\..\Run: [Logitech Vid] "C:\Program Files\Logitech\Logitech Vid\vid.exe" -bootmode
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent
O4 - HKCU\..\Run: [RGSC] C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe /silent
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O13 - Gopher Prefix:
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/MessengerGamesContent/GameContent/nl/uno1/GAME_UNO1.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: amBX Engine - Philips - C:\Program Files\amBX\System\amBX_Engine.exe
O23 - Service: amBX Service - Philips - C:\Program Files\amBX\System\amBX_Service.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Google Updateservice (gupdate1ca08a3aa5162c1) (gupdate1ca08a3aa5162c1) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--
End of file - 9303 bytes

Klik om te vergroten...

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 18:50:26, on 27/08/2009
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v8.00 (8.00.6001.18813)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe
C:\Program Files\amBX\ApplicationManager\amBXAppMgr.exe
C:\Program Files\Logitech\G-series Software\LGDCore.exe
C:\Program Files\Logitech\G-series Software\LCDMon.exe
C:\Program Files\AVG\AVG8\avgtray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe
C:\Program Files\CyberLink\Shared files\brs.exe
C:\Program Files\Logitech\Logitech Vid\Vid.exe
C:\Program Files\Steam\Steam.exe
C:\Program Files\DAEMON Tools Lite\daemon.exe
C:\Program Files\Logitech\G-series Software\Applets\LCDCountdown\LCDCountdown.exe
C:\Program Files\Logitech\G-series Software\Applets\LCDPop3\LCDPOP3.exe
C:\Program Files\Logitech\G-series Software\Applets\LCDClock.exe
C:\Program Files\Logitech\G-series Software\Applets\LCDMedia.exe
C:\Program Files\Common Files\Logishrd\LQCVFX\COCIManager.exe
C:\Windows\system32\wuauclt.exe
C:\Program Files\Xfire\Xfire.exe
C:\Program Files\Xfire\Xfire.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Search
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
R3 - URLSearchHook: (no name) - *{3ad798d0-4642-4c55-bc14-cfe7dd19e0d1} - (no file)
R3 - URLSearchHook: (no name) - *{46735dee-f862-49d1-876d-6382794dc625} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: ToggleDU Toolbar - {3ad798d0-4642-4c55-bc14-cfe7dd19e0d1} - C:\Program Files\ToggleDU\tbTogg.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: PHPNukeDU Toolbar - {46735dee-f862-49d1-876d-6382794dc625} - C:\Program Files\PHPNukeDU\tbPHPN.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.1.1309.15642\swg.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG8\Toolbar\IEToolbar.dll
O3 - Toolbar: ToggleDU Toolbar - {3ad798d0-4642-4c55-bc14-cfe7dd19e0d1} - C:\Program Files\ToggleDU\tbTogg.dll
O3 - Toolbar: PHPNukeDU Toolbar - {46735dee-f862-49d1-876d-6382794dc625} - C:\Program Files\PHPNukeDU\tbPHPN.dll
O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [LogitechQuickCamRibbon] "C:\Program Files\Logitech\Logitech WebCam Software\LWS.exe" /hide
O4 - HKLM\..\Run: [amBX System Tray Application] C:\Program Files\amBX\ApplicationManager\amBXAppMgr.exe
O4 - HKLM\..\Run: [Launch LGDCore] "C:\Program Files\Logitech\G-series Software\LGDCore.exe" /SHOWHIDE
O4 - HKLM\..\Run: [Launch LCDMon] "C:\Program Files\Logitech\G-series Software\LCDMon.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [RemoteControl9] "C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe"
O4 - HKLM\..\Run: [PDVD9LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD9\Language\Language.exe"
O4 - HKLM\..\Run: [BDRegion] C:\Program Files\Cyberlink\Shared Files\brs.exe
O4 - HKLM\..\Run: [RivaTunerStartupDaemon] "C:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTunerWrapper.exe" /S
O4 - HKCU\..\Run: [Logitech Vid] "C:\Program Files\Logitech\Logitech Vid\vid.exe" -bootmode
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O13 - Gopher Prefix:
O16 - DPF: CabBuilder - http://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zone.msn.com/binary/msgrchkr.cab56986.cab
O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/MessengerGamesContent/GameContent/nl/uno1/GAME_UNO1.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
O16 - DPF: {F5A7706B-B9C0-4C89-A715-7A0C6B05DD48} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary/MineSweeper.cab56986.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - AppInit_DLLs: avgrsstx.dll
O23 - Service: amBX Engine - Philips - C:\Program Files\amBX\System\amBX_Engine.exe
O23 - Service: amBX Service - Philips - C:\Program Files\amBX\System\amBX_Service.exe
O23 - Service: AVG Free8 E-mail Scanner (avg8emc) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgemc.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Google Updateservice (gupdate1ca08a3aa5162c1) (gupdate1ca08a3aa5162c1) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\LVMVFM\LVPrcSrv.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--
End of file - 9348 bytes

Klik om te vergroten...

Juisterr zei:

Schakel tijdelijk Windows Defender uit
Want deze kan voor stoorzender spelen bij het fixen met HJT (de fix terug ongedaan maken)
* Open Windows Defender > Klik Tools
* Klik "General Settings" of Options
* Scroll naar "Real Time Protection Options"
* Haal het vinkje weg bij "Turn on Real Time Protection (recommended)" > Klik "Save"
* Sluit Windows Defender
(als de problemen over zijn, logje weer schoon verklaard is, kan je 'm weer aanzetten)

Klik met de rechtermuis op het programma Hijackthis en kies voor "Uitvoeren als Administrator"
Kies voor 'Do a system scan only'
Selecteer alleen de items die hieronder zijn genoemd:

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R3 - URLSearchHook: (no name) - *{3ad798d0-4642-4c55-bc14-cfe7dd19e0d1} - (no file)
R3 - URLSearchHook: (no name) - *{46735dee-f862-49d1-876d-6382794dc625} - (no file)

Klik op 'Fix checked' om de items te verwijderen.

Start hijackthis opnieuw en maak een nieuw HijackThis logje, let wel op want
je moet HijackThis als Administrator uitvoeren en dan de nieuwe log posten.
Indien je het niet als administrator uitvoert, wordt de oude log niet overschreven.

Klik om te vergroten...

• Dubbelklik op Combofix.exe om het te starten.
• Indien je Combofix al eerder hebt gebruikt, kan je een waarschuwing krijgen dat een update beschikbaar is. Sta toe dat ComboFix wordt geupdate.
• Klik op OK in het "NirCmd" venstertje.
• Klik na afloop terug op Ja om het scannen op malware te starten.
• Tijdens het runnen van de fix, NIET in het venster klikken, want dit zal je pc doen vasthangen.
• Wanneer de fix voltooid is en na herstart, zal de log Combofix.txt openen.

Juisterr zei:

ze staan er nog in maar ik ben wat vergeten te posten.

Download Combofix naar je Bureaublad en gebruik het volgens deze handleiding.

OPMERKING: indien je, tijdens of na het downloaden van Combofix of tijdens het gebruik van Combofix een melding krijgt van je Antivirus- of een andere realtime scanner, schakel dan deze scanner uit en download Combofix opnieuw.
Sommige scanners zien bepaalde componenten die Combofix gebruikt als verdacht en gaan deze blokkeren of verwijderen!

• Dubbelklik op Combofix.exe om het te starten.
• Indien je Combofix al eerder hebt gebruikt, kan je een waarschuwing krijgen dat een update beschikbaar is. Sta toe dat ComboFix wordt geupdate.
• Klik op OK in het "NirCmd" venstertje.
• Klik na afloop terug op Ja om het scannen op malware te starten.
• Tijdens het runnen van de fix, NIET in het venster klikken, want dit zal je pc doen vasthangen.
• Wanneer de fix voltooid is en na herstart, zal de log Combofix.txt openen.

Post dit logje in je volgende antwoord

Klik om te vergroten...

Juisterr zei:

Geeft mij meer inzicht wat het probleem zou kunnen zijn, tool verwijderd ook gelijk malware.

Klik om te vergroten...

ComboFix 09-08-27.02 - Dirckx 27/08/2009 22:53.1.2 - NTFSx86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.32.1043.18.2046.1305 [GMT 2:00]
Gestart vanuit: c:\users\Dirckx\Desktop\ComboFix.exe
AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
SP: AVG Anti-Virus Free *enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\$recycle.bin\S-1-5-21-2152478756-3922319563-605102323-500
C:\setup.exe
c:\windows\TEMP\logishrd\LVPrcInj01.dll

.
(((((((((((((((((((( Bestanden Gemaakt van 2009-07-27 to 2009-08-27 ))))))))))))))))))))))))))))))
.

2009-08-27 20:58 . 2009-08-27 21:01 -------- d-----w- c:\users\Dirckx\AppData\Local\temp
2009-08-26 18:07 . 2009-08-26 18:07 -------- d-----w- c:\program files\CCleaner
2009-08-26 17:18 . 2009-08-26 17:18 -------- d-----w- c:\users\Dirckx\AppData\Roaming\Blitware
2009-08-26 17:18 . 2009-08-26 17:18 -------- d-----w- c:\program files\Driver Robot
2009-08-26 16:54 . 2009-06-22 10:22 2048 ----a-w- c:\windows\system32\tzres.dll
2009-08-26 16:54 . 2009-06-15 18:20 439896 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2009-08-26 16:54 . 2009-06-15 15:24 175104 ----a-w- c:\windows\system32\wdigest.dll
2009-08-26 16:54 . 2009-06-15 15:24 72704 ----a-w- c:\windows\system32\secur32.dll
2009-08-26 16:54 . 2009-06-15 15:24 270848 ----a-w- c:\windows\system32\schannel.dll
2009-08-26 16:54 . 2009-06-15 15:23 1256448 ----a-w- c:\windows\system32\lsasrv.dll
2009-08-26 16:54 . 2009-06-15 15:22 213504 ----a-w- c:\windows\system32\msv1_0.dll
2009-08-26 16:54 . 2009-06-15 15:21 499712 ----a-w- c:\windows\system32\kerberos.dll
2009-08-26 16:54 . 2009-06-15 12:57 9728 ----a-w- c:\windows\system32\lsass.exe
2009-08-26 15:44 . 2004-05-11 07:56 423784 ----a-w- c:\windows\system32\XceedBkp.dll
2009-08-26 15:44 . 2003-11-19 11:59 512688 ----a-w- c:\windows\system32\XceedCry.dll
2009-08-26 15:44 . 2000-07-14 21:00 118784 ----a-w- c:\windows\system32\msstdfmt.dll
2009-08-26 13:38 . 2009-08-16 22:57 7569920 ----a-w- c:\windows\system32\nvd3dum.dll
2009-08-26 13:38 . 2009-06-10 16:33 151552 ----a-w- c:\windows\system32\nvcod155.dll
2009-08-26 13:38 . 2009-06-10 16:33 795104 ----a-w- c:\windows\system32\dpinst.exe
2009-08-25 19:54 . 2009-08-25 20:13 -------- d-----w- c:\users\Dirckx\AppData\Roaming\mIRC
2009-08-25 19:54 . 2009-08-25 19:54 -------- d-----w- c:\program files\mIRC
2009-08-23 21:58 . 2009-08-23 21:58 -------- d-----w- C:\AV_LOGS
2009-08-23 21:57 . 2009-08-23 21:58 -------- d-----w- c:\program files\AV Vcs 7.0 DIAMOND
2009-08-23 21:53 . 2009-08-23 21:53 -------- d-----w- c:\program files\AnalogX
2009-08-21 21:28 . 2009-08-21 21:28 -------- d-----w- c:\program files\PHPNukeDU
2009-08-21 21:25 . 2009-08-21 21:25 -------- d-----w- C:\NVIDIA
2009-08-21 20:00 . 2009-08-21 20:00 -------- d-----w- c:\users\Dirckx\AppData\Roaming\The Creative Assembly
2009-08-20 21:25 . 2009-08-20 21:25 -------- d-----w- c:\program files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition
2009-08-19 20:16 . 2009-08-19 20:16 -------- d-----w- c:\program files\Trend Micro
2009-08-19 17:07 . 2009-08-19 17:07 -------- d-----w- c:\program files\Driver Cleaner Pro
2009-08-19 15:52 . 2009-08-19 15:52 -------- d-----w- c:\program files\SpeedFan
2009-08-18 19:17 . 2009-08-18 19:17 -------- d-----w- c:\program files\Ubisoft
2009-08-17 11:43 . 2005-08-24 05:46 3006464 ------w- c:\windows\UNNeroShowTime.exe
2009-08-17 11:43 . 2009-08-17 11:43 -------- d-----w- c:\program files\Ahead
2009-08-17 11:41 . 2009-08-17 11:41 -------- d-----w- c:\program files\Conduit
2009-08-17 11:41 . 2009-08-17 11:41 -------- d-----w- c:\program files\ToggleDU
2009-08-17 10:55 . 2009-08-17 10:56 -------- d-----w- c:\users\Dirckx\AppData\Roaming\Media Player Classic
2009-08-16 23:14 . 2009-08-16 23:18 -------- d-----w- c:\users\Dirckx\AppData\Local\Cyberlink
2009-08-16 23:12 . 2009-08-16 23:12 -------- d-----w- c:\users\Public\CyberLink
2009-08-16 23:12 . 2009-08-16 23:14 -------- d-----w- c:\users\Dirckx\AppData\Roaming\CyberLink
2009-08-16 23:11 . 2009-08-16 23:14 -------- d-----w- c:\programdata\CyberLink
2009-08-16 23:11 . 2009-08-16 23:11 -------- d-----w- c:\program files\Common Files\CyberLink
2009-08-16 23:09 . 2009-08-16 23:11 -------- d-----w- c:\program files\CyberLink
2009-08-16 23:09 . 2009-08-16 23:08 29480 ----a-w- c:\windows\system32\msxml3a.dll
2009-08-16 23:09 . 2009-08-16 23:08 53319 ----a-w- c:\programdata\Temp\{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}\PostBuild.exe
2009-08-16 22:57 . 2009-08-16 22:57 9545152 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2009-08-16 22:57 . 2009-08-16 22:57 485920 ----a-w- c:\windows\system32\nvudisp.exe
2009-08-16 22:57 . 2009-08-16 22:57 3298304 ----a-w- c:\windows\system32\nvwgf2um.dll
2009-08-16 22:57 . 2009-08-16 22:57 2169376 ----a-w- c:\windows\system32\nvcuvid.dll
2009-08-16 22:57 . 2009-08-16 22:57 1985536 ----a-w- c:\windows\system32\nvcuda.dll
2009-08-16 22:57 . 2009-08-16 22:57 1706528 ----a-w- c:\windows\system32\nvcuvenc.dll
2009-08-16 22:57 . 2009-08-16 22:57 155648 ----a-w- c:\windows\system32\nvcod162.dll
2009-08-16 22:57 . 2009-08-16 22:57 155648 ----a-w- c:\windows\system32\nvcod.dll
2009-08-16 22:57 . 2009-08-16 22:57 10858496 ----a-w- c:\windows\system32\nvoglv32.dll
2009-08-14 11:36 . 2009-08-14 11:36 70936 ----a-w- c:\windows\system32\PhysXLoader.dll
2009-08-13 19:53 . 2009-08-13 19:53 41872 ----a-w- c:\windows\system32\xfcodec.dll
2009-08-12 08:47 . 2009-07-17 14:35 71680 ----a-w- c:\windows\system32\atl.dll
2009-08-12 08:47 . 2009-06-10 12:12 160256 ----a-w- c:\windows\system32\wkssvc.dll
2009-08-12 08:46 . 2009-06-04 12:34 2066432 ----a-w- c:\windows\system32\mstscax.dll
2009-08-12 08:46 . 2009-06-10 12:07 91136 ----a-w- c:\windows\system32\avifil32.dll
2009-08-12 08:46 . 2009-07-14 13:00 313344 ----a-w- c:\windows\system32\wmpdxm.dll
2009-08-12 08:46 . 2009-07-14 12:58 7680 ----a-w- c:\windows\system32\spwmp.dll
2009-08-12 08:46 . 2009-07-14 12:59 4096 ----a-w- c:\windows\system32\dxmasf.dll
2009-08-12 08:46 . 2009-07-14 10:59 8147456 ----a-w- c:\windows\system32\wmploc.DLL
2009-08-10 15:38 . 2009-08-10 15:38 -------- d-----w- c:\program files\Microsoft Silverlight
2009-08-08 22:26 . 2009-08-26 14:08 -------- d-----w- c:\program files\SystemRequirementsLab
2009-08-08 22:26 . 2009-08-08 22:26 -------- d-----w- c:\users\Dirckx\AppData\Roaming\SystemRequirementsLab
2009-08-08 22:26 . 2009-08-08 22:26 207872 ----a-w- c:\users\Dirckx\AppData\Roaming\SystemRequirementsLab\SRLProxy_srl_4.dll
2009-08-08 22:26 . 2009-08-08 22:26 207872 ----a-w- c:\users\Dirckx\AppData\Roaming\SystemRequirementsLab\SRLProxy_srl_3.dll
2009-08-08 22:26 . 2009-08-08 22:26 207872 ----a-w- c:\users\Dirckx\AppData\Roaming\SystemRequirementsLab\SRLProxy_srl_2.dll
2009-08-08 22:26 . 2009-08-08 22:26 207872 ----a-w- c:\users\Dirckx\AppData\Roaming\SystemRequirementsLab\SRLProxy_srl_1.dll
2009-08-08 19:24 . 2009-08-08 19:24 -------- d-----w- c:\programdata\Media Center Programs
2009-08-08 19:23 . 2009-08-08 19:23 -------- d-----w- c:\program files\Common Files\BioWare
2009-08-08 19:10 . 2009-08-08 19:48 -------- d-----w- c:\program files\Mass Effect
2009-08-08 18:14 . 2009-08-08 18:14 -------- d-----w- c:\programdata\DAEMON Tools Lite
2009-08-08 18:14 . 2009-08-08 18:14 -------- d-----w- c:\program files\DAEMON Tools Toolbar
2009-08-08 18:14 . 2009-08-08 18:14 -------- d-----w- c:\program files\DAEMON Tools Lite
2009-08-08 17:55 . 2009-08-08 17:55 -------- d-----w- c:\program files\PowerISO
2009-08-08 17:53 . 2009-08-08 17:53 721904 ----a-w- c:\windows\system32\drivers\sptd.sys
2009-08-08 17:53 . 2009-08-08 18:19 -------- d-----w- c:\users\Dirckx\AppData\Roaming\DAEMON Tools Lite
2009-08-07 15:56 . 2009-08-07 15:56 -------- d-----w- c:\program files\Eidos
2009-08-05 10:39 . 2009-08-05 10:39 -------- d--h--w- c:\windows\PIF
2009-08-04 22:38 . 2009-08-04 22:38 -------- d-----w- c:\users\Dirckx\AppData\Roaming\Wargaming.Net
2009-08-02 22:21 . 2009-08-02 22:21 23320 ----a-w- c:\windows\system32\PhysXDevice.dll
2009-08-01 13:03 . 2009-08-01 13:03 -------- d-----w- c:\program files\uTorrent
2009-07-31 19:53 . 2009-07-31 19:53 339968 ----a-w- c:\windows\system32\pythoncom25.dll
2009-07-31 19:53 . 2009-07-31 19:53 2117632 ----a-w- c:\windows\system32\python25.dll
2009-07-31 19:53 . 2009-07-31 19:53 114688 ----a-w- c:\windows\system32\pywintypes25.dll
2009-07-31 19:53 . 2008-09-16 16:26 1332197 ----a-w- c:\windows\system32\pythondll.zip
2009-07-31 13:40 . 2009-07-31 13:40 -------- d-----w- c:\users\Dirckx\AppData\Roaming\Stardock
2009-07-31 13:40 . 2009-07-31 13:40 -------- d-----w- c:\programdata\Stardock
2009-07-31 13:39 . 2009-07-31 13:39 -------- d-----w- c:\users\Dirckx\AppData\Local\PackageAware

.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-08-27 21:00 . 2009-07-05 14:31 -------- d-----w- c:\programdata\NVIDIA
2009-08-27 17:12 . 2009-07-05 15:48 -------- d-----w- c:\users\Dirckx\AppData\Roaming\Xfire
2009-08-27 13:18 . 2009-07-24 11:41 -------- d-----w- c:\program files\Steam
2009-08-26 14:31 . 2009-07-05 14:27 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-08-26 14:30 . 2009-07-05 14:27 -------- d-----w- c:\program files\AGEIA Technologies
2009-08-26 13:42 . 2009-07-28 14:22 -------- d-----w- c:\program files\NVIDIA Corporation
2009-08-26 12:37 . 2009-07-05 13:13 1356 ----a-w- c:\users\Dirckx\AppData\Local\d3d9caps.dat
2009-08-24 15:02 . 2009-07-20 10:50 -------- d-----w- c:\users\Dirckx\AppData\Roaming\LimeWire
2009-08-24 13:09 . 2006-11-02 16:11 667114 ----a-w- c:\windows\system32\perfh013.dat
2009-08-24 13:09 . 2006-11-02 16:11 126648 ----a-w- c:\windows\system32\perfc013.dat
2009-08-20 14:08 . 2009-07-06 12:17 -------- d-----w- c:\program files\QuickTime
2009-08-20 13:45 . 2009-07-15 21:23 -------- d-----w- c:\users\Dirckx\AppData\Roaming\uTorrent
2009-08-19 11:30 . 2009-07-05 15:48 -------- d-----w- c:\programdata\Xfire
2009-08-19 07:43 . 2009-07-05 15:48 -------- d-----w- c:\program files\Xfire
2009-08-18 19:26 . 2009-07-05 13:37 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-08-17 11:43 . 2009-07-05 15:37 -------- d-----w- c:\program files\Common Files\Ahead
2009-08-16 22:57 . 2009-08-16 22:57 4224 ----a-w- c:\windows\system32\drivers\nvBridge.kmd
2009-08-16 22:57 . 2007-09-16 17:07 1044992 ----a-w- c:\windows\system32\nvapi.dll
2009-08-16 09:00 . 2009-07-05 18:15 11952 ----a-w- c:\windows\system32\avgrsstx.dll
2009-08-16 09:00 . 2009-07-05 18:15 335240 ----a-w- c:\windows\system32\drivers\avgldx86.sys
2009-08-16 09:00 . 2009-07-05 18:15 27784 ----a-w- c:\windows\system32\drivers\avgmfx86.sys
2009-08-13 09:00 . 2009-07-24 11:41 -------- d-----w- c:\program files\Common Files\Steam
2009-08-13 08:36 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2009-08-11 10:35 . 2009-07-05 14:11 485920 ----a-w- c:\windows\system32\nvuninst.exe
2009-08-08 08:31 . 2009-07-06 15:00 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2009-08-01 13:07 . 2009-07-15 21:43 -------- d-----w- c:\program files\AskBarDis
2009-07-27 14:03 . 2009-07-27 14:03 -------- d-----w- c:\program files\Konami
2009-07-27 02:43 . 2009-07-27 02:43 58908 ----a-w- c:\windows\system32\drivers\scdemu.sys
2009-07-25 09:06 . 2009-07-05 18:15 -------- d-----w- c:\programdata\AVG Security Toolbar
2009-07-24 11:46 . 2009-07-23 12:27 -------- d-----w- c:\program files\Guild Wars
2009-07-23 09:19 . 2009-07-23 09:17 -------- d-----w- c:\programdata\Vivendi Universal Games
2009-07-23 09:17 . 2009-07-23 09:17 -------- d-----w- c:\program files\Barbie(TM)
2009-07-23 09:17 . 2009-07-05 13:37 -------- d-----w- c:\program files\Common Files\InstallShield
2009-07-21 21:52 . 2009-07-29 07:27 915456 ----a-w- c:\windows\system32\wininet.dll
2009-07-21 21:47 . 2009-07-29 07:27 109056 ----a-w- c:\windows\system32\iesysprep.dll
2009-07-21 21:47 . 2009-07-29 07:27 71680 ----a-w- c:\windows\system32\iesetup.dll
2009-07-21 20:13 . 2009-07-29 07:27 133632 ----a-w- c:\windows\system32\ieUnatt.exe
2009-07-20 10:50 . 2009-07-20 10:49 -------- d-----w- c:\program files\LimeWire
2009-07-20 10:49 . 2009-07-20 10:50 410984 ----a-w- c:\windows\system32\deploytk.dll
2009-07-20 10:49 . 2009-07-20 10:49 -------- d-----w- c:\program files\Java
2009-07-19 19:05 . 2009-07-07 20:42 -------- d-----w- c:\programdata\Google Updater
2009-07-19 19:02 . 2009-07-07 20:42 -------- d-----w- c:\program files\Google
2009-07-14 18:54 . 2009-07-28 14:18 151552 ----a-w- c:\windows\system32\nvcod157.dll
2009-07-14 15:17 . 2009-07-14 15:17 15308440 ----a-w- c:\windows\system32\xlive.dll
2009-07-14 15:17 . 2009-07-14 15:17 13642888 ----a-w- c:\windows\system32\xlivefnt.dll
2009-07-14 11:29 . 2009-07-14 11:29 2173472 ----a-w- c:\windows\system32\nvcplui.exe
2009-07-14 11:29 . 2009-07-14 11:29 1346080 ----a-w- c:\windows\system32\nvsvs.dll
2009-07-14 11:29 . 2009-07-14 11:29 215584 ----a-w- c:\windows\system32\nvvsvc.exe
2009-07-14 11:29 . 2009-07-14 11:29 143360 ----a-w- c:\windows\system32\nvshext.dll
2009-07-07 12:49 . 2009-07-07 12:49 -------- d-----w- c:\program files\MemTurbo 4
2009-07-06 15:46 . 2009-07-06 15:46 -------- d--h--r- c:\users\Dirckx\AppData\Roaming\SecuROM
2009-07-06 15:05 . 2009-07-06 15:05 107888 ----a-w- c:\windows\system32\CmdLineExt.dll
2009-07-06 14:35 . 2009-07-06 14:31 -------- d-----w- c:\program files\Rockstar Games
2009-07-06 14:06 . 2009-07-06 14:06 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_00_00.Wdf
2009-07-06 12:17 . 2009-07-06 12:17 -------- d-----w- c:\programdata\Apple Computer
2009-07-06 12:15 . 2009-07-06 12:15 -------- d-----w- c:\program files\Apple Software Update
2009-07-06 12:15 . 2009-07-06 12:15 -------- d-----w- c:\programdata\Apple
2009-07-06 11:14 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Sidebar
2009-07-06 11:14 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Calendar
2009-07-06 11:14 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Collaboration
2009-07-06 11:14 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Journal
2009-07-06 11:14 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Photo Gallery
2009-07-06 11:14 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Defender
2009-07-06 11:09 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat
2009-07-06 11:02 . 2006-11-02 10:32 101888 ----a-w- c:\windows\system32\ifxcardm.dll
2009-07-06 11:02 . 2006-11-02 10:32 82432 ----a-w- c:\windows\system32\axaltocm.dll
2009-07-06 10:23 . 2009-07-06 10:52 47560 ----a-w- c:\windows\system32\SPReview.exe
2009-07-06 10:23 . 2009-07-06 10:52 152576 ----a-w- c:\windows\system32\SPWizUI.dll
2009-07-05 18:45 . 2009-07-05 18:45 -------- d-----w- c:\programdata\Electronic Arts
2009-07-05 18:44 . 2009-07-05 18:30 -------- d-----w- c:\program files\Electronic Arts
2009-07-05 18:44 . 2009-07-05 18:44 10134 ----a-r- c:\users\Dirckx\AppData\Roaming\Microsoft\Installer\{E3E71D07-CD27-46CB-8448-16D4FB29AA13}\ARPPRODUCTICON.exe
2009-07-05 18:44 . 2009-07-05 18:44 -------- d-----w- c:\program files\Microsoft WSE
2009-07-05 18:20 . 2009-07-05 18:20 269312 ----a-w- c:\windows\system32\es.dll
2009-07-05 18:19 . 2009-07-05 18:19 -------- d-----w- c:\program files\Microsoft CAPICOM 2.1.0.2
2009-07-05 18:15 . 2009-07-05 18:15 108552 ----a-w- c:\windows\system32\drivers\avgtdix.sys
2009-07-05 18:15 . 2009-07-05 18:15 -------- d-----w- c:\programdata\avg8
2009-07-05 18:15 . 2009-07-05 18:15 -------- d-----w- c:\program files\AVG
2009-07-05 17:50 . 2009-07-05 17:50 -------- d-----w- c:\programdata\Logitech
2009-07-05 17:50 . 2009-07-05 16:44 -------- d-----w- c:\program files\Logitech
2009-07-05 17:44 . 2009-07-05 16:44 -------- d-----w- c:\programdata\LogiShrd
2009-07-05 17:34 . 2009-07-05 17:34 -------- d-----w- c:\program files\Microsoft
2009-07-05 17:34 . 2009-07-05 17:34 -------- d-----w- c:\program files\Windows Live
2009-07-05 17:34 . 2009-07-05 17:34 -------- d-----w- c:\program files\Windows Live SkyDrive
2009-07-05 17:29 . 2009-07-05 17:29 -------- d-----w- c:\program files\Common Files\Windows Live
2009-07-05 17:28 . 2009-07-05 13:13 48600 ----a-w- c:\users\Dirckx\AppData\Local\GDIPFONTCACHEV1.DAT
2009-07-05 17:27 . 2009-07-05 17:17 -------- d-----w- c:\program files\amBX
2009-07-05 17:06 . 2009-07-05 15:45 -------- d-----w- c:\programdata\NOS
2009-07-05 17:06 . 2009-07-05 15:45 -------- d-----w- c:\program files\NOS
2009-07-05 16:50 . 2009-07-05 16:50 28672 ----a-w- c:\windows\system32\FwRemoteSvr.dll
2009-07-05 16:50 . 2009-07-05 16:50 61440 ----a-w- c:\windows\system32\winipsec.dll
2009-07-05 16:50 . 2009-07-05 16:50 361984 ----a-w- c:\windows\system32\IPSECSVC.DLL
2009-07-05 16:50 . 2009-07-05 16:50 272896 ----a-w- c:\windows\system32\polstore.dll
2009-07-05 16:49 . 2009-07-05 16:49 94720 ----a-w- c:\windows\system32\PortableDeviceClassExtension.dll
2009-07-05 16:49 . 2009-07-05 16:49 241152 ----a-w- c:\windows\system32\PortableDeviceApi.dll
2009-07-05 16:49 . 2009-07-05 16:49 160768 ----a-w- c:\windows\system32\PortableDeviceTypes.dll
2009-07-05 16:48 . 2009-07-05 16:48 428544 ----a-w- c:\windows\system32\EncDec.dll
2009-07-05 16:48 . 2009-07-05 16:48 293376 ----a-w- c:\windows\system32\psisdecd.dll
2009-07-05 16:46 . 2009-07-05 16:46 2033152 ----a-w- c:\windows\system32\win32k.sys
2009-07-05 16:44 . 2009-07-05 15:34 -------- d-----w- c:\program files\Common Files\logishrd
2009-07-05 16:43 . 2009-07-05 16:43 376832 ----a-w- c:\windows\system32\winhttp.dll

Klik om te vergroten...

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{A3BC75A2-1F87-4686-AA43-5347D756017C}"= "c:\program files\AVG\AVG8\Toolbar\IEToolbar.dll" [2009-07-24 1090816]

[HKEY_CLASSES_ROOT\clsid\{a3bc75a2-1f87-4686-aa43-5347d756017c}]

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{3ad798d0-4642-4c55-bc14-cfe7dd19e0d1}]
2009-07-02 08:18 2215960 ----a-w- c:\program files\ToggleDU\tbTogg.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{46735dee-f862-49d1-876d-6382794dc625}]
2009-07-02 08:18 2215960 ----a-w- c:\program files\PHPNukeDU\tbPHPN.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
2009-07-24 07:55 1090816 ----a-w- c:\program files\AVG\AVG8\Toolbar\IEToolbar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG8\Toolbar\IEToolbar.dll" [2009-07-24 1090816]
"{3ad798d0-4642-4c55-bc14-cfe7dd19e0d1}"= "c:\program files\ToggleDU\tbTogg.dll" [2009-07-02 2215960]
"{46735dee-f862-49d1-876d-6382794dc625}"= "c:\program files\PHPNukeDU\tbPHPN.dll" [2009-07-02 2215960]

[HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]

[HKEY_CLASSES_ROOT\clsid\{3ad798d0-4642-4c55-bc14-cfe7dd19e0d1}]

[HKEY_CLASSES_ROOT\clsid\{46735dee-f862-49d1-876d-6382794dc625}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG8\Toolbar\IEToolbar.dll" [2009-07-24 1090816]
"{3AD798D0-4642-4C55-BC14-CFE7DD19E0D1}"= "c:\program files\ToggleDU\tbTogg.dll" [2009-07-02 2215960]
"{46735DEE-F862-49D1-876D-6382794DC625}"= "c:\program files\PHPNukeDU\tbPHPN.dll" [2009-07-02 2215960]

[HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]

[HKEY_CLASSES_ROOT\clsid\{3ad798d0-4642-4c55-bc14-cfe7dd19e0d1}]

[HKEY_CLASSES_ROOT\clsid\{46735dee-f862-49d1-876d-6382794dc625}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Logitech Vid"="c:\program files\Logitech\Logitech Vid\vid.exe" [2009-06-02 5451536]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-02-06 3885408]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-07-19 39408]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\daemon.exe" [2009-04-23 691656]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Windows Defender"="c:\program files\Windows Defender\MSASCui.exe" [2008-01-18 1008184]
"JMB36X IDE Setup"="c:\windows\RaidTool\xInsIDE.exe" [2007-03-20 36864]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-02-27 35696]
"LogitechQuickCamRibbon"="c:\program files\Logitech\Logitech WebCam Software\LWS.exe" [2009-05-08 2780432]
"amBX System Tray Application"="c:\program files\amBX\ApplicationManager\amBXAppMgr.exe" [2006-09-29 126976]
"Launch LGDCore"="c:\program files\Logitech\G-series Software\LGDCore.exe" [2006-03-06 1122304]
"Launch LCDMon"="c:\program files\Logitech\G-series Software\LCDMon.exe" [2006-03-06 497152]
"AVG8_TRAY"="c:\progra~1\AVG\AVG8\avgtray.exe" [2009-08-16 2007832]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2009-05-26 413696]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2009-07-20 136600]
"PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2009-07-27 180224]
"RemoteControl9"="c:\program files\CyberLink\PowerDVD9\PDVD9Serv.exe" [2009-04-27 87336]
"PDVD9LanguageShortcut"="c:\program files\CyberLink\PowerDVD9\Language\Language.exe" [2009-04-27 50472]
"BDRegion"="c:\program files\Cyberlink\Shared Files\brs.exe" [2009-05-07 75048]
"RivaTunerStartupDaemon"="c:\program files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTunerWrapper.exe" [2009-08-17 24576]
"RtHDVCpl"="RtHDVCpl.exe" - c:\windows\RtHDVCpl.exe [2007-03-23 4423680]
"Skytel"="Skytel.exe" - c:\windows\SkyTel.exe [2007-03-16 1822720]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\avgrsstx.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\FirewallRules]
"TCP Query User{6E809C1D-8CEC-42D6-BEDA-37823B0EBA57}c:\\program files\\xfire\\xfire.exe"= UDP:c:\program files\xfire\xfire.exe:Xfire
"UDP Query User{44972427-8EE5-4F43-B429-A2B58093E6BE}c:\\program files\\xfire\\xfire.exe"= TCP:c:\program files\xfire\xfire.exe:Xfire
"{24622142-8B90-49FD-9115-04669970FEC1}"= c:\program files\AVG\AVG8\avgemc.exe:avgemc.exe
"{A2AB7342-82F9-4DED-BFC0-6EC5C4A65BE9}"= c:\program files\AVG\AVG8\avgupd.exe:avgupd.exe
"{F8B49B4A-FFB8-469E-845E-331812F6762F}"= c:\program files\AVG\AVG8\avgnsx.exe:avgnsx.exe
"TCP Query User{36C1991A-A1DF-491A-8EAB-CED16C64B691}c:\\program files\\electronic arts\\eadm\\core.exe"= UDP:c:\program files\electronic arts\eadm\core.exe:EA Download Manager
"UDP Query User{735815FE-8661-4FCA-81DE-7558D9659BDA}c:\\program files\\electronic arts\\eadm\\core.exe"= TCP:c:\program files\electronic arts\eadm\core.exe:EA Download Manager
"{2A6621B4-B2E8-4BF9-9CF5-2CAE71E9F314}"= UDP:c:\program files\Logitech\Logitech Vid\Vid.exe:Logitech Vid
"{FB4DD842-8756-41F0-BEEA-A9E05D5AB912}"= TCP:c:\program files\Logitech\Logitech Vid\Vid.exe:Logitech Vid
"{B85B0D57-3B1D-4952-8E6A-91CFB916EF94}"= UDP:c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:Rockstar Games Social Club
"{F0D8FD9A-9F0A-4673-833D-B0EC9A31490B}"= TCP:c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:Rockstar Games Social Club
"{B5449847-E9E7-45D0-9B73-C15C3B195959}"= UDP:c:\program files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe:Grand Theft Auto IV
"{2AAE0C25-D4AF-4281-B63D-07F7BD111317}"= TCP:c:\program files\Rockstar Games\Grand Theft Auto IV\LaunchGTAIV.exe:Grand Theft Auto IV
"TCP Query User{A6029BB8-E87C-4D82-9117-65F0813446CC}c:\\program files\\rockstar games\\grand theft auto iv\\gtaiv.exe"= UDP:c:\program files\rockstar games\grand theft auto iv\gtaiv.exe:Grand Theft Auto IV
"UDP Query User{9E511C75-BB44-47F6-8F6A-CC163FC283E3}c:\\program files\\rockstar games\\grand theft auto iv\\gtaiv.exe"= TCP:c:\program files\rockstar games\grand theft auto iv\gtaiv.exe:Grand Theft Auto IV
"TCP Query User{A0F05E27-9A66-4BA3-BB01-94E6F9AC49E5}c:\\program files\\mozilla firefox\\firefox.exe"= UDP:c:\program files\mozilla firefox\firefox.exe:Firefox
"UDP Query User{72EA1ED0-317A-4D81-8D6C-C541C279EE67}c:\\program files\\mozilla firefox\\firefox.exe"= TCP:c:\program files\mozilla firefox\firefox.exe:Firefox
"{11832D61-B016-4803-9181-E7127755C893}"= UDP:c:\program files\Stardock Games\Demigod Demo\bin\Demigod.exeemigod
"{2C0868DE-C60E-4E9D-905D-1F5E544522AE}"= TCP:c:\program files\Stardock Games\Demigod Demo\bin\Demigod.exeemigod
"{6B810E4A-2927-4A4B-963D-ECB09F33564A}"= UDP:c:\program files\uTorrent\uTorrent.exe:µTorrent (TCP-In)
"{F857D1CC-E64F-4996-8CF2-3F63CFBDF50F}"= TCP:c:\program files\uTorrent\uTorrent.exe:µTorrent (UDP-In)
"{CEF2899A-8221-440E-88C0-6245B6C3701E}"= UDP:c:\program files\Steam\steamapps\common\order of war - demo\oow_final.exe:Order of War - Demo
"{380CEBD5-2708-4B4A-9605-E8107E7BA432}"= TCP:c:\program files\Steam\steamapps\common\order of war - demo\oow_final.exe:Order of War - Demo
"TCP Query User{637FF14B-7C40-4988-8D19-BAF93BB5E382}c:\\program files\\steam\\steamapps\\common\\order of war - demo\\oow_final.bin"= UDP:c:\program files\steam\steamapps\common\order of war - demo\oow_final.bin:Thu Jul 23 06:02 2009
"UDP Query User{CBFC908D-4AA2-47E0-BF21-3CFBDB786CBC}c:\\program files\\steam\\steamapps\\common\\order of war - demo\\oow_final.bin"= TCP:c:\program files\steam\steamapps\common\order of war - demo\oow_final.bin:Thu Jul 23 06:02 2009
"{E3D0BBE2-10CA-4788-8823-3035A52BD9D2}"= UDP:c:\program files\Mass Effect\Binaries\MassEffect.exe:Mass Effect Game
"{453B8DF1-8245-42A4-BD4E-81D0252DFA1B}"= TCP:c:\program files\Mass Effect\Binaries\MassEffect.exe:Mass Effect Game
"{F2556F3D-B005-4FE2-B3B8-C90BDE72942F}"= UDP:c:\program files\Mass Effect\MassEffectLauncher.exe:Mass Effect Launcher
"{2DE8EFDF-62C4-440D-BCA4-1C839B0E7337}"= TCP:c:\program files\Mass Effect\MassEffectLauncher.exe:Mass Effect Launcher
"TCP Query User{68A3E9C0-FEBE-4A10-9560-7F1915C87F84}c:\\program files\\steam\\steamapps\\yunastie1\\team fortress 2\\hl2.exe"= UDP:c:\program files\steam\steamapps\yunastie1\team fortress 2\hl2.exe:hl2
"UDP Query User{90F3664D-7F45-44BC-A78A-E6466ACE06DE}c:\\program files\\steam\\steamapps\\yunastie1\\team fortress 2\\hl2.exe"= TCP:c:\program files\steam\steamapps\yunastie1\team fortress 2\hl2.exe:hl2
"{853A0AD3-0A49-48E8-9068-42EE101EB55D}"= UDP:c:\program files\Ubisoft\Techland\Call of Juarez - Bound in Blood\CoJBiBGame_x86.exe:Call of Juarez - Bound in Blood
"{6776949F-3BDF-4410-BEE8-82F0731CCF0B}"= TCP:c:\program files\Ubisoft\Techland\Call of Juarez - Bound in Blood\CoJBiBGame_x86.exe:Call of Juarez - Bound in Blood
"{0B0BFABE-2688-4F4A-BD58-56F544DBBD17}"= UDP:c:\program files\Steam\steamapps\common\empire total war\Empire.exe:Empire: Total War
"{86F4D181-CBFC-46BC-AF76-53CF85EB2E47}"= TCP:c:\program files\Steam\steamapps\common\empire total war\Empire.exe:Empire: Total War
"TCP Query User{3E5015CA-A098-4CFB-A324-715657F343F9}c:\\program files\\mirc\\mirc.exe"= UDP:c:\program files\mirc\mirc.exe:mIRC
"UDP Query User{83F332B1-730A-435E-A755-9C29B4D9BEFB}c:\\program files\\mirc\\mirc.exe"= TCP:c:\program files\mirc\mirc.exe:mIRC

R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\System32\drivers\avgldx86.sys [5/07/2009 20:15 335240]
R1 AvgTdiX;AVG Free8 Network Redirector;c:\windows\System32\drivers\avgtdix.sys [5/07/2009 20:15 108552]
R2 amBX Service;amBX Service;c:\program files\amBX\System\amBX_Service.exe [22/12/2006 11:35 66048]
R2 avg8emc;AVG Free8 E-mail Scanner;c:\progra~1\AVG\AVG8\avgemc.exe [5/07/2009 20:15 908056]
R2 avg8wd;AVG Free8 WatchDog;c:\progra~1\AVG\AVG8\avgwdsvc.exe [5/07/2009 20:15 297752]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [17/08/2009 1:32 239648]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller;c:\windows\System32\drivers\atl01v32.sys [5/07/2009 15:41 48128]
S2 gupdate1ca08a3aa5162c1;Google Updateservice (gupdate1ca08a3aa5162c1);c:\program files\Google\Update\GoogleUpdate.exe [19/07/2009 21:03 133104]
S3 amBX Engine;amBX Engine;c:\program files\amBX\System\amBX_Engine.exe [22/12/2006 11:37 427008]

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}]
"c:\windows\System32\rundll32.exe" "c:\windows\System32\iedkcs32.dll",BrandIEActiveSetup SIGNUP

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{346019B4-D6E2-4CB6-99E9-DD8A26CF0C77}]
msiexec /norestart /faum {346019B4-D6E2-4CB6-99E9-DD8A26CF0C77}
.
Inhoud van de 'Gedeelde Taken' map

2009-08-27 c:\windows\Tasks\Driver Robot.job
- c:\program files\Driver Robot\1.0.9.13\DriverRobot.exe [2009-08-26 07:20]

2009-08-27 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-07-19 19:02]

2009-08-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-07-19 19:03]

2009-08-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-07-19 19:03]

2009-08-27 c:\windows\Tasks\User_Feed_Synchronization-{182DEE70-6689-43ED-8194-805EE8A1B9EA}.job
- c:\windows\system32\msfeedssync.exe [2009-07-29 20:13]
.
- - - - ORPHANS VERWIJDERD - - - -

URLSearchHooks-*{3ad798d0-4642-4c55-bc14-cfe7dd19e0d1} - (no file)
URLSearchHooks-*{46735dee-f862-49d1-876d-6382794dc625} - (no file)
HKCU-Run-BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} - c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe


.
------- Bijkomende Scan -------
.
uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2102399
DPF: CabBuilder - hxxp://kiw.imgag.com/imgag/kiw/toolbar/download/InstallerControl.cab
DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} - hxxp://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover
Rootkit scan 2009-08-27 23:01
Windows 6.0.6001 Service Pack 1 NTFS

scannen van verborgen processen ...

scannen van verborgen autostart items ...

scannen van verborgen bestanden ...

Scan succesvol afgerond
verborgen bestanden: 0

**************************************************************************
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

[HKEY_USERS\S-1-5-21-2913492154-1074099752-1602342567-1000\Software\SecuROM\License information*]
"datasecu"=hex:17,99,b8,95,c5,42,b7,cc,72,97,81,94,7d,f2,1c,15,9a,a9,3e,0a,f0,
09,0f,93,97,6e,ec,62,82,39,28,3b,41,de,5f,8b,19,0d,4f,a5,18,4c,42,94,76,79,\
"rkeysecu"=hex:2f,0f,d5,3e,02,2b,06,63,b1,0b,dd,b6,71,e2,54,98
.
------------------------ Andere Aktieve Processen ------------------------
.
c:\windows\System32\nvvsvc.exe
c:\windows\System32\audiodg.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Google\Update\1.2.183.7\GoogleCrashHandler.exe
c:\progra~1\AVG\AVG8\avgrsx.exe
c:\progra~1\AVG\AVG8\avgnsx.exe
c:\program files\AVG\AVG8\avgcsrvx.exe
c:\windows\System32\nvvsvc.exe
c:\program files\AVG\AVG8\avgtray.exe
c:\program files\Common Files\logishrd\LQCVFX\COCIManager.exe
c:\windows\servicing\TrustedInstaller.exe
c:\windows\System32\dllhost.exe
.
**************************************************************************
.
Voltooingstijd: 2009-08-27 23:05 - machine werd herstart
ComboFix-quarantined-files.txt 2009-08-27 21:05

Pre-Run: 119.256.420.352 bytes beschikbaar
Post-Run: 119.234.482.176 bytes beschikbaar

381 --- E O F --- 2009-08-26 16:55

Klik om te vergroten...

• Update MalwareBytes' Anti-Malware
• Start MalwareBytes' Anti-Malware

• Zodra het programma gestart is, ga dan naar het tabblad "Instellingen".
• Vink hier aan: "Sluit Internet Explorer tijdens verwijdering van malware".
• Ga daarna naar het tabblad "Scanner", kies hier voor "Snelle Scan".
• Druk vervolgens op "Scannen" om de scan te starten.
• Het scannen kan een tijdje duren, dus wees geduldig.
  
• Wanneer de scan voltooid is, klik op OK, daarna "Bekijk Resultaten" om de resultaten te zien.
• Zorg ervoor dat daar alles aangevinkt is, daarna klik op: "Verwijder geselecteerde".
• Na het verwijderen zal een log openen en zal er gevraagd worden om de computer opnieuw op te starten.

Juisterr zei:

Klik op Start -> (Settings) -> Configuratiescherm -> Software en verwijder het volgende programma:
My Web Search
My Web Speedbar
WebSearch Tools
Search Assistant - My Way

Klik om te vergroten...