Vraag & Antwoord

Beveiliging & privacy

Backdoor.win32.vb.awr

1 antwoord
  • Ik heb het bovenstaande backdoor gevonden met Spyware Doctor. Ik krijg m helaas niet verwijderd daarmee. Heb CA anti spyware gedraaid en die vind m niet. Heb ook spybot gedraaid zonder vondst. Met malware bytes wordt ie ook niet gevonden. Heb de online scanner van trentmicro gedaan en die heeft m ook niet gevonden. Ik heb deze backdoor ook gegoogled en de meest lijkende oplossing komt van pctools die zegt dat je deze met spyware doctor kan verwijderen, alleen dat gebeurd dus niet. Spyware doctor zegt: backdoor.win32.vb.awr(kaspersky) -127.0.0.1, dl9.avgate.net Bedreiging is gemiddeld. [hjt] Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 19:19:49, on 16-9-2009 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.6000.16876) Boot mode: Normal [b:605d6998cd]Running processes:[/b:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]smss.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]csrss.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]winlogon.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]services.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]lsass.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]ati2evxx.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]svchost.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]svchost.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]svchost.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]svchost.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]svchost.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]svchost.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]spoolsv.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]scardsvr.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]ati2evxx.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\[/color:605d6998cd][color=blue:605d6998cd]explorer.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\program files\ati technologies\ati.ace\[/color:605d6998cd][color=blue:605d6998cd]cli.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\[/color:605d6998cd][color=blue:605d6998cd]rthdcpl.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\program files\eset\[/color:605d6998cd][color=blue:605d6998cd]nod32kui.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\program files\acer\acer emode management\[/color:605d6998cd][color=blue:605d6998cd]aspireservice.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\program files\cyberlink\powerdvd8\[/color:605d6998cd][color=blue:605d6998cd]pdvd8serv.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\program files\ca\ca internet security suite\ca anti-spam\qsp-6.0.1.33\[/color:605d6998cd][color=blue:605d6998cd]qoeloader.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\program files\msn messenger\[/color:605d6998cd][color=blue:605d6998cd]msnmsgr.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\acer\empowering technology\erecovery\[/color:605d6998cd][color=blue:605d6998cd]monitor.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]drvmon.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]ctfmon.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\program files\sitecom\bluetooth software\[/color:605d6998cd][color=blue:605d6998cd]bttray.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\program files\norman\npf\[/color:605d6998cd][color=blue:605d6998cd]npfmsg.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]svchost.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\program files\acer\acer econsole\[/color:605d6998cd][color=blue:605d6998cd]mediaserverservice.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\progra~1\sitecom\blueto~1\[/color:605d6998cd][color=blue:605d6998cd]btstac~1.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\program files\bonjour\[/color:605d6998cd][color=blue:605d6998cd]mdnsresponder.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]svchost.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\program files\sitecom\bluetooth software\bin\[/color:605d6998cd][color=blue:605d6998cd]btwdins.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]cisvc.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\program files\ca\sharedcomponents\pprt\bin\[/color:605d6998cd][color=blue:605d6998cd]itmrtsvc.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\program files\common files\lightscribe\[/color:605d6998cd][color=blue:605d6998cd]lssrvc.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\program files\common files\microsoft shared\vs7debug\[/color:605d6998cd][color=blue:605d6998cd]mdm.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\program files\eset\[/color:605d6998cd][color=blue:605d6998cd]nod32krn.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\program files\norman\npf\[/color:605d6998cd][color=blue:605d6998cd]npfsvice.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]tcpsvcs.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]snmp.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]svchost.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\program files\western digital\wd drive manager\[/color:605d6998cd][color=blue:605d6998cd]wdbtnmgrsvc.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]alg.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\program files\ati technologies\ati.ace\[/color:605d6998cd][color=blue:605d6998cd]cli.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]cidaemon.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\program files\ca\ca internet security suite\[/color:605d6998cd][color=blue:605d6998cd]ccprovsp.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\program files\ca\ca internet security suite\ca anti-spyware\[/color:605d6998cd][color=blue:605d6998cd]ppctlpriv.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\program files\trend micro\hijackthis\[/color:605d6998cd][color=blue:605d6998cd]hijackthis.exe[/color:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\wbem\[/color:605d6998cd][color=blue:605d6998cd]wmiprvse.exe[/color:605d6998cd] [color=silver:605d6998cd]r0 -[/color:605d6998cd] [color=brown:605d6998cd]hkcu\software\microsoft\internet explorer\main[/color:605d6998cd],start page = [u:605d6998cd][noparse]http://www.marktplaats.nl/[/noparse][/u:605d6998cd] [color=silver:605d6998cd]r1 -[/color:605d6998cd] [color=brown:605d6998cd]hklm\software\microsoft\internet explorer\main[/color:605d6998cd],default_page_url = [u:605d6998cd][noparse]http://go.microsoft.com/fwlink/?linkid=69157[/noparse][/u:605d6998cd] [color=silver:605d6998cd]r1 -[/color:605d6998cd] [color=brown:605d6998cd]hklm\software\microsoft\internet explorer\main[/color:605d6998cd],default_search_url = [u:605d6998cd][noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse][/u:605d6998cd] [color=silver:605d6998cd]r1 -[/color:605d6998cd] [color=brown:605d6998cd]hklm\software\microsoft\internet explorer\main[/color:605d6998cd],search page = [u:605d6998cd][noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse][/u:605d6998cd] [color=silver:605d6998cd]r0 -[/color:605d6998cd] [color=brown:605d6998cd]hklm\software\microsoft\internet explorer\main[/color:605d6998cd],start page = [u:605d6998cd][noparse]http://go.microsoft.com/fwlink/?linkid=69157[/noparse][/u:605d6998cd] [color=silver:605d6998cd]r1 -[/color:605d6998cd] [color=brown:605d6998cd]hkcu\software\microsoft\windows\currentversion\internet settings[/color:605d6998cd],proxyoverride = 127.0.0.1;*.local [color=silver:605d6998cd]r0 -[/color:605d6998cd] [color=brown:605d6998cd]hkcu\software\microsoft\internet explorer\toolbar[/color:605d6998cd],linksfoldername = koppelingen [color=silver:605d6998cd]f3 -[/color:605d6998cd] [color=brown:605d6998cd]reg[/color:605d6998cd]:win.ini: run=, [color=silver:605d6998cd]o2 -[/color:605d6998cd] [color=brown:605d6998cd]bho[/color:605d6998cd]: adobe pdf reader link helper - [color=orange:605d6998cd]{06849e9f-c8d7-4d59-b87d-784b7d6be0b3}[/color:605d6998cd] - [color=teal:605d6998cd]c:\program files\adobe\acrobat 7.0\activex\[/color:605d6998cd][color=blue:605d6998cd]acroiehelper.dll[/color:605d6998cd] [color=silver:605d6998cd]o2 -[/color:605d6998cd] [color=brown:605d6998cd]bho[/color:605d6998cd]: spybot-s&d ie protection - [color=orange:605d6998cd]{53707962-6f74-2d53-2644-206d7942484f}[/color:605d6998cd] - [color=teal:605d6998cd]c:\progra~1\spybot~1\[/color:605d6998cd][color=blue:605d6998cd]sdhelper.dll[/color:605d6998cd] [color=red:605d6998cd](file missing)[/color:605d6998cd] [color=silver:605d6998cd]o2 -[/color:605d6998cd] [color=brown:605d6998cd]bho[/color:605d6998cd]: ipswitch.wsftpbrowserhelper - [color=orange:605d6998cd]{601ed020-fb6c-11d3-87d8-0050da59922b}[/color:605d6998cd] - [color=teal:605d6998cd]c:\program files\ws_ftp pro\[/color:605d6998cd][color=blue:605d6998cd]wsbho2k0.dll[/color:605d6998cd] [color=silver:605d6998cd]o2 -[/color:605d6998cd] [color=brown:605d6998cd]bho[/color:605d6998cd]: ssvhelper class - [color=orange:605d6998cd]{761497bb-d6f0-462c-b6eb-d4daf1d92d43}[/color:605d6998cd] - [color=teal:605d6998cd]c:\program files\java\jre1.5.0_09\bin\[/color:605d6998cd][color=blue:605d6998cd]ssv.dll[/color:605d6998cd] [color=silver:605d6998cd]o2 -[/color:605d6998cd] [color=brown:605d6998cd]bho[/color:605d6998cd]: (no name) - [color=orange:605d6998cd]{7e853d72-626a-48ec-a868-ba8d5e23e045}[/color:605d6998cd] - (no file) [color=silver:605d6998cd]o2 -[/color:605d6998cd] [color=brown:605d6998cd]bho[/color:605d6998cd]: windows live sign-in helper - [color=orange:605d6998cd]{9030d464-4c02-4abf-8ecc-5164760863c6}[/color:605d6998cd] - [color=teal:605d6998cd]c:\program files\common files\microsoft shared\windows live\[/color:605d6998cd][color=blue:605d6998cd]windowslivelogin.dll[/color:605d6998cd] [color=silver:605d6998cd]o2 -[/color:605d6998cd] [color=brown:605d6998cd]bho[/color:605d6998cd]: epsontoolbandkicker class - [color=orange:605d6998cd]{e99421fb-68dd-40f0-b4ac-b7027cae2f1a}[/color:605d6998cd] - (no file) [color=silver:605d6998cd]o3 -[/color:605d6998cd] [color=brown:605d6998cd]toolbar[/color:605d6998cd]: epson web-to-page - [color=orange:605d6998cd]{ee5d279f-081b-4404-994d-c6b60aaeba6d}[/color:605d6998cd] - (no file) [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]hklm\..\run[/color:605d6998cd]: [b:605d6998cd][launchapp][/b:605d6998cd] alaunch [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]hklm\..\run[/color:605d6998cd]: [b:605d6998cd][phime2002async][/b:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\ime\tintlgnt\[/color:605d6998cd][color=blue:605d6998cd]tintsetp.exe[/color:605d6998cd] /sync [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]hklm\..\run[/color:605d6998cd]: [b:605d6998cd][phime2002a][/b:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\ime\tintlgnt\[/color:605d6998cd][color=blue:605d6998cd]tintsetp.exe[/color:605d6998cd] /imename [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]hklm\..\run[/color:605d6998cd]: [b:605d6998cd][aticcc][/b:605d6998cd] [color=teal:605d6998cd]c:\program files\ati technologies\ati.ace\[/color:605d6998cd][color=blue:605d6998cd]cli.exe[/color:605d6998cd] runtime [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]hklm\..\run[/color:605d6998cd]: [b:605d6998cd][windows defender][/b:605d6998cd] [color=teal:605d6998cd]c:\program files\windows defender\[/color:605d6998cd][color=blue:605d6998cd]msascui.exe[/color:605d6998cd] -hide [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]hklm\..\run[/color:605d6998cd]: [b:605d6998cd][rthdcpl][/b:605d6998cd] rthdcpl.exe [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]hklm\..\run[/color:605d6998cd]: [b:605d6998cd][alcmtr][/b:605d6998cd] alcmtr.exe [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]hklm\..\run[/color:605d6998cd]: [b:605d6998cd][nod32kui][/b:605d6998cd] [color=teal:605d6998cd]c:\program files\eset\[/color:605d6998cd][color=blue:605d6998cd]nod32kui.exe[/color:605d6998cd] /waitservice [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]hklm\..\run[/color:605d6998cd]: [b:605d6998cd][aspireservice][/b:605d6998cd] [color=teal:605d6998cd]c:\program files\acer\acer emode management\[/color:605d6998cd][color=blue:605d6998cd]aspireservice.exe[/color:605d6998cd] [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]hklm\..\run[/color:605d6998cd]: [b:605d6998cd][remotecontrol8][/b:605d6998cd] [color=teal:605d6998cd]c:\program files\cyberlink\powerdvd8\[/color:605d6998cd][color=blue:605d6998cd]pdvd8serv.exe[/color:605d6998cd] [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]hklm\..\run[/color:605d6998cd]: [b:605d6998cd][pdvd8languageshortcut][/b:605d6998cd] [color=teal:605d6998cd]c:\program files\cyberlink\powerdvd8\language\[/color:605d6998cd][color=blue:605d6998cd]language.exe[/color:605d6998cd] [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]hklm\..\run[/color:605d6998cd]: [b:605d6998cd][quicktime task][/b:605d6998cd] [color=teal:605d6998cd]c:\program files\quicktime\[/color:605d6998cd][color=blue:605d6998cd]qttask.exe[/color:605d6998cd] -atboottime [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]hklm\..\run[/color:605d6998cd]: [b:605d6998cd][qoeloader][/b:605d6998cd] [color=teal:605d6998cd]c:\program files\ca\ca internet security suite\ca anti-spam\qsp-6.0.1.33\[/color:605d6998cd][color=blue:605d6998cd]qoeloader.exe[/color:605d6998cd] [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]hklm\..\run[/color:605d6998cd]: [b:605d6998cd][malwarebytes anti-malware (reboot)][/b:605d6998cd] [color=teal:605d6998cd]c:\program files\malwarebytes' anti-malware\[/color:605d6998cd][color=blue:605d6998cd]mbam.exe[/color:605d6998cd] /runcleanupscript [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]hkcu\..\run[/color:605d6998cd]: [b:605d6998cd][msnmsgr][/b:605d6998cd] [color=teal:605d6998cd]c:\program files\msn messenger\[/color:605d6998cd][color=blue:605d6998cd]msnmsgr.exe[/color:605d6998cd] /background [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]hkcu\..\run[/color:605d6998cd]: [b:605d6998cd][drvmon.exe][/b:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]drvmon.exe[/color:605d6998cd] [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]hkcu\..\run[/color:605d6998cd]: [b:605d6998cd][ctfmon.exe][/b:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]ctfmon.exe[/color:605d6998cd] [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]hkus\s-1-5-19\..\run[/color:605d6998cd]: [b:605d6998cd][ctfmon.exe][/b:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]ctfmon.exe[/color:605d6998cd] (user 'lokale service') [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]hkus\s-1-5-20\..\run[/color:605d6998cd]: [b:605d6998cd][ctfmon.exe][/b:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]ctfmon.exe[/color:605d6998cd] (user 'netwerkservice') [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]hkus\s-1-5-18\..\run[/color:605d6998cd]: [b:605d6998cd][ctfmon.exe][/b:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]ctfmon.exe[/color:605d6998cd] (user 'system') [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]hkus\.default\..\run[/color:605d6998cd]: [b:605d6998cd][ctfmon.exe][/b:605d6998cd] [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]ctfmon.exe[/color:605d6998cd] (user 'default user') [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]global startup[/color:605d6998cd]: bttray.lnk = ? [color=silver:605d6998cd]o4 -[/color:605d6998cd] [color=brown:605d6998cd]global startup[/color:605d6998cd]: npf messenger.lnk = ? [color=silver:605d6998cd]o8 -[/color:605d6998cd] [color=brown:605d6998cd]extra context menu item[/color:605d6998cd]: add to amv converter... - [color=teal:605d6998cd]c:\program files\mp3 player utilities 4.19\amvconverter\[/color:605d6998cd][color=blue:605d6998cd]grab.html[/color:605d6998cd] [color=silver:605d6998cd]o8 -[/color:605d6998cd] [color=brown:605d6998cd]extra context menu item[/color:605d6998cd]: e&xport to microsoft excel - res://[color=teal:605d6998cd]d:\progra~1\micros~1\office11\[/color:605d6998cd][color=blue:605d6998cd]excel.exe[/color:605d6998cd]/3000 [color=silver:605d6998cd]o8 -[/color:605d6998cd] [color=brown:605d6998cd]extra context menu item[/color:605d6998cd]: verzenden naar &bluetooth - [color=teal:605d6998cd]c:\program files\sitecom\bluetooth software\[/color:605d6998cd][color=blue:605d6998cd]btsendto_ie_ctx.htm[/color:605d6998cd] [color=silver:605d6998cd]o9 -[/color:605d6998cd] [color=brown:605d6998cd]extra button[/color:605d6998cd]: (no name) - [color=orange:605d6998cd]{08b0e5c0-4fcb-11cf-aaa5-00401c608501}[/color:605d6998cd] - [color=teal:605d6998cd]c:\program files\java\jre1.5.0_09\bin\[/color:605d6998cd][color=blue:605d6998cd]ssv.dll[/color:605d6998cd] [color=silver:605d6998cd]o9 -[/color:605d6998cd] [color=brown:605d6998cd]extra 'tools' menuitem[/color:605d6998cd]: sun java console - [color=orange:605d6998cd]{08b0e5c0-4fcb-11cf-aaa5-00401c608501}[/color:605d6998cd] - [color=teal:605d6998cd]c:\program files\java\jre1.5.0_09\bin\[/color:605d6998cd][color=blue:605d6998cd]ssv.dll[/color:605d6998cd] [color=silver:605d6998cd]o9 -[/color:605d6998cd] [color=brown:605d6998cd]extra button[/color:605d6998cd]: (no name) - [color=orange:605d6998cd]{2d663d1a-8670-49d9-a1a5-4c56b4e14e84}[/color:605d6998cd] - (no file) [color=silver:605d6998cd]o9 -[/color:605d6998cd] [color=brown:605d6998cd]extra button[/color:605d6998cd]: onderzoek - [color=orange:605d6998cd]{92780b25-18cc-41c8-b9be-3c9c571a8263}[/color:605d6998cd] - [color=teal:605d6998cd]c:\progra~1\micros~2\office11\[/color:605d6998cd][color=blue:605d6998cd]refiebar.dll[/color:605d6998cd] [color=silver:605d6998cd]o9 -[/color:605d6998cd] [color=brown:605d6998cd]extra button[/color:605d6998cd]: partypoker.com - [color=orange:605d6998cd]{b7fe5d70-9aa2-40f1-9c6b-12a255f085e1}[/color:605d6998cd] - [color=teal:605d6998cd]c:\program files\partygaming\partypoker\[/color:605d6998cd][color=blue:605d6998cd]runapp.exe[/color:605d6998cd] [color=red:605d6998cd](file missing)[/color:605d6998cd] [color=silver:605d6998cd]o9 -[/color:605d6998cd] [color=brown:605d6998cd]extra 'tools' menuitem[/color:605d6998cd]: partypoker.com - [color=orange:605d6998cd]{b7fe5d70-9aa2-40f1-9c6b-12a255f085e1}[/color:605d6998cd] - [color=teal:605d6998cd]c:\program files\partygaming\partypoker\[/color:605d6998cd][color=blue:605d6998cd]runapp.exe[/color:605d6998cd] [color=red:605d6998cd](file missing)[/color:605d6998cd] [color=silver:605d6998cd]o9 -[/color:605d6998cd] [color=brown:605d6998cd]extra button[/color:605d6998cd]: @btrez.dll,-4015 - [color=orange:605d6998cd]{cca281ca-c863-46ef-9331-5c8d4460577f}[/color:605d6998cd] - [color=teal:605d6998cd]c:\program files\sitecom\bluetooth software\[/color:605d6998cd][color=blue:605d6998cd]btsendto_ie.htm[/color:605d6998cd] [color=silver:605d6998cd]o9 -[/color:605d6998cd] [color=brown:605d6998cd]extra 'tools' menuitem[/color:605d6998cd]: @btrez.dll,-4017 - [color=orange:605d6998cd]{cca281ca-c863-46ef-9331-5c8d4460577f}[/color:605d6998cd] - [color=teal:605d6998cd]c:\program files\sitecom\bluetooth software\[/color:605d6998cd][color=blue:605d6998cd]btsendto_ie.htm[/color:605d6998cd] [color=silver:605d6998cd]o9 -[/color:605d6998cd] [color=brown:605d6998cd]extra button[/color:605d6998cd]: (no name) - [color=orange:605d6998cd]{dfb852a3-47f8-48c4-a200-58cab36fd2a2}[/color:605d6998cd] - [color=teal:605d6998cd]c:\progra~1\spybot~1\[/color:605d6998cd][color=blue:605d6998cd]sdhelper.dll[/color:605d6998cd] [color=red:605d6998cd](file missing)[/color:605d6998cd] [color=silver:605d6998cd]o9 -[/color:605d6998cd] [color=brown:605d6998cd]extra 'tools' menuitem[/color:605d6998cd]: spybot - search & destroy configuration - [color=orange:605d6998cd]{dfb852a3-47f8-48c4-a200-58cab36fd2a2}[/color:605d6998cd] - [color=teal:605d6998cd]c:\progra~1\spybot~1\[/color:605d6998cd][color=blue:605d6998cd]sdhelper.dll[/color:605d6998cd] [color=red:605d6998cd](file missing)[/color:605d6998cd] [color=silver:605d6998cd]o9 -[/color:605d6998cd] [color=brown:605d6998cd]extra button[/color:605d6998cd]: (no name) - [color=orange:605d6998cd]{e2e2dd38-d088-4134-82b7-f2ba38496583}[/color:605d6998cd] - [color=teal:605d6998cd]c:\windows\network diagnostic\[/color:605d6998cd][color=blue:605d6998cd]xpnetdiag.exe[/color:605d6998cd] [color=silver:605d6998cd]o9 -[/color:605d6998cd] [color=brown:605d6998cd]extra 'tools' menuitem[/color:605d6998cd]: @xpsp3res.dll,-20001 - [color=orange:605d6998cd]{e2e2dd38-d088-4134-82b7-f2ba38496583}[/color:605d6998cd] - [color=teal:605d6998cd]c:\windows\network diagnostic\[/color:605d6998cd][color=blue:605d6998cd]xpnetdiag.exe[/color:605d6998cd] [color=silver:605d6998cd]o9 -[/color:605d6998cd] [color=brown:605d6998cd]extra button[/color:605d6998cd]: messenger - [color=orange:605d6998cd]{fb5f1910-f110-11d2-bb9e-00c04f795683}[/color:605d6998cd] - [color=teal:605d6998cd]c:\program files\messenger\[/color:605d6998cd][color=blue:605d6998cd]msmsgs.exe[/color:605d6998cd] [color=silver:605d6998cd]o9 -[/color:605d6998cd] [color=brown:605d6998cd]extra 'tools' menuitem[/color:605d6998cd]: windows messenger - [color=orange:605d6998cd]{fb5f1910-f110-11d2-bb9e-00c04f795683}[/color:605d6998cd] - [color=teal:605d6998cd]c:\program files\messenger\[/color:605d6998cd][color=blue:605d6998cd]msmsgs.exe[/color:605d6998cd] [color=silver:605d6998cd]o10 -[/color:605d6998cd] [color=brown:605d6998cd]unknown file in winsock lsp[/color:605d6998cd]: [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]nwprovau.dll[/color:605d6998cd] [color=silver:605d6998cd]o16 -[/color:605d6998cd] [color=brown:605d6998cd]dpf[/color:605d6998cd]: [color=orange:605d6998cd]{d27cdb6e-ae6d-11cf-96b8-444553540000}[/color:605d6998cd] (shockwave flash object) - [u:605d6998cd][noparse]http://www.ntius.com/flash/swflash.cab[/noparse][/u:605d6998cd] [color=silver:605d6998cd]o23 -[/color:605d6998cd] [color=brown:605d6998cd]service[/color:605d6998cd]: acer media server - acer inc. - [color=teal:605d6998cd]c:\program files\acer\acer econsole\[/color:605d6998cd][color=blue:605d6998cd]mediaserverservice.exe[/color:605d6998cd] [color=silver:605d6998cd]o23 -[/color:605d6998cd] [color=brown:605d6998cd]service[/color:605d6998cd]: ati hotkey poller - ati technologies inc. - [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]ati2evxx.exe[/color:605d6998cd] [color=silver:605d6998cd]o23 -[/color:605d6998cd] [color=brown:605d6998cd]service[/color:605d6998cd]: ati smart - unknown owner - [color=teal:605d6998cd]c:\windows\system32\[/color:605d6998cd][color=blue:605d6998cd]ati2sgag.exe[/color:605d6998cd] [color=silver:605d6998cd]o23 -[/color:605d6998cd] [color=brown:605d6998cd]service[/color:605d6998cd]: ##id_string1.6844f930_1628_4223_b5cc_5bb94b879762## (bonjour service) - apple computer, inc. - [color=teal:605d6998cd]c:\program files\bonjour\[/color:605d6998cd][color=blue:605d6998cd]mdnsresponder.exe[/color:605d6998cd] [color=silver:605d6998cd]o23 -[/color:605d6998cd] [color=brown:605d6998cd]service[/color:605d6998cd]: bluetooth service (btwdins) - widcomm, inc. - [color=teal:605d6998cd]c:\program files\sitecom\bluetooth software\bin\[/color:605d6998cd][color=blue:605d6998cd]btwdins.exe[/color:605d6998cd] [color=silver:605d6998cd]o23 -[/color:605d6998cd] [color=brown:605d6998cd]service[/color:605d6998cd]: caccprovsp - ca, inc. - [color=teal:605d6998cd]c:\program files\ca\ca internet security suite\[/color:605d6998cd][color=blue:605d6998cd]ccprovsp.exe[/color:605d6998cd] [color=silver:605d6998cd]o23 -[/color:605d6998cd] [color=brown:605d6998cd]service[/color:605d6998cd]: norman elogger service 6 (eloggersvc6) - unknown owner - [color=teal:605d6998cd]c:\norman\npm\bin\[/color:605d6998cd][color=blue:605d6998cd]elogsvc.exe[/color:605d6998cd] [color=red:605d6998cd](file missing)[/color:605d6998cd] [color=silver:605d6998cd]o23 -[/color:605d6998cd] [color=brown:605d6998cd]service[/color:605d6998cd]: flexnet licensing service - macrovision europe ltd. - [color=teal:605d6998cd]c:\program files\common files\macrovision shared\flexnet publisher\[/color:605d6998cd][color=blue:605d6998cd]fnplicensingservice.exe[/color:605d6998cd] [color=silver:605d6998cd]o23 -[/color:605d6998cd] [color=brown:605d6998cd]service[/color:605d6998cd]: installdriver table manager (idrivert) - macrovision corporation - [color=teal:605d6998cd]c:\program files\common files\installshield\driver\11\intel 32\[/color:605d6998cd][color=blue:605d6998cd]idrivert.exe[/color:605d6998cd] [color=silver:605d6998cd]o23 -[/color:605d6998cd] [color=brown:605d6998cd]service[/color:605d6998cd]: ca pest patrol realtime protection service (itmrtsvc) - ca, inc. - [color=teal:605d6998cd]c:\program files\ca\sharedcomponents\pprt\bin\[/color:605d6998cd][color=blue:605d6998cd]itmrtsvc.exe[/color:605d6998cd] [color=silver:605d6998cd]o23 -[/color:605d6998cd] [color=brown:605d6998cd]service[/color:605d6998cd]: lightscribeservice direct disc labeling service (lightscribeservice) - hewlett-packard company - [color=teal:605d6998cd]c:\program files\common files\lightscribe\[/color:605d6998cd][color=blue:605d6998cd]lssrvc.exe[/color:605d6998cd] [color=silver:605d6998cd]o23 -[/color:605d6998cd] [color=brown:605d6998cd]service[/color:605d6998cd]: nmindexingservice - unknown owner - [color=teal:605d6998cd]c:\program files\common files\ahead\lib\[/color:605d6998cd][color=blue:605d6998cd]nmindexingservice.exe[/color:605d6998cd] [color=red:605d6998cd](file missing)[/color:605d6998cd] [color=silver:605d6998cd]o23 -[/color:605d6998cd] [color=brown:605d6998cd]service[/color:605d6998cd]: nod32 kernel service (nod32krn) - eset - [color=teal:605d6998cd]c:\program files\eset\[/color:605d6998cd][color=blue:605d6998cd]nod32krn.exe[/color:605d6998cd] [color=silver:605d6998cd]o23 -[/color:605d6998cd] [color=brown:605d6998cd]service[/color:605d6998cd]: norman type-r - unknown owner - [color=teal:605d6998cd]c:\program files\norman\npf\[/color:605d6998cd][color=blue:605d6998cd]npfsvice.exe[/color:605d6998cd] [color=silver:605d6998cd]o23 -[/color:605d6998cd] [color=brown:605d6998cd]service[/color:605d6998cd]: ppctlpriv - ca, inc. - [color=teal:605d6998cd]c:\program files\ca\ca internet security suite\ca anti-spyware\[/color:605d6998cd][color=blue:605d6998cd]ppctlpriv.exe[/color:605d6998cd] [color=silver:605d6998cd]o23 -[/color:605d6998cd] [color=brown:605d6998cd]service[/color:605d6998cd]: pc tools auxiliary service (sdauxservice) - pc tools - [color=teal:605d6998cd]c:\program files\spyware doctor\[/color:605d6998cd][color=blue:605d6998cd]pctsauxs.exe[/color:605d6998cd] [color=silver:605d6998cd]o23 -[/color:605d6998cd] [color=brown:605d6998cd]service[/color:605d6998cd]: pc tools security service (sdcoreservice) - pc tools - [color=teal:605d6998cd]c:\program files\spyware doctor\[/color:605d6998cd][color=blue:605d6998cd]pctssvc.exe[/color:605d6998cd] [color=silver:605d6998cd]o23 -[/color:605d6998cd] [color=brown:605d6998cd]service[/color:605d6998cd]: wd drive manager service (wdbtnmgrsvc.exe) - wdc - [color=teal:605d6998cd]c:\program files\western digital\wd drive manager\[/color:605d6998cd][color=blue:605d6998cd]wdbtnmgrsvc.exe[/color:605d6998cd] -- end of file - 10508 bytes [/hjt]

Beantwoord deze vraag

Weet jij het antwoord op deze vraag? Registreer of meld je aan met je account

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.