P
pimmiekris
Gast
Hallo Zou iemand eens naar mijn hijack logje willen kijken. Ik heb veel last van pop ups, trage internet, about blank, pagina's die niet open willen gaan. Ik heb Norton 360 draaien maar die vindt niet veel. spysweeper geprobeerd maar weinig op gelost. Dus bij deze een logje van hijackthis.
bvd Pimmiekris
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:12:13, on 28-10-2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\alg.exe
C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O3 - Toolbar: Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\CoIEPlg.dll
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton 360\osCheck.exe"
O4 - HKLM\..\Run: [SoundMan] "C:\WINDOWS\SOUNDMAN.EXE"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] "C:\WINDOWS\system32\rundll32.exe" bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [C:\WINDOWS\system32\kdxcd.exe] C:\WINDOWS\system32\kdxcd.exe
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKLM\..\RunOnce: [Spybot - Search & Destroy] "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe" /autocheck
O4 - HKLM\..\RunOnce: [SpybotDeletingA3301] command /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingC1023] cmd /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingA6678] command /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKLM\..\RunOnce: [SpybotDeletingC9035] cmd /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKLM\..\RunOnce: [SpybotDeletingA5128] command /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingC7437] cmd /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingA1507] command /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKLM\..\RunOnce: [SpybotDeletingC2610] cmd /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKLM\..\RunOnce: [SpybotDeletingA9225] command /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingC2673] cmd /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingA8766] command /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKLM\..\RunOnce: [SpybotDeletingC9523] cmd /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKLM\..\RunOnce: [SpybotDeletingA3523] command /c del "C:\Documents and Settings\All Users\Bureaublad\SpyHunter.lnk"
O4 - HKLM\..\RunOnce: [SpybotDeletingC1166] cmd /c del "C:\Documents and Settings\All Users\Bureaublad\SpyHunter.lnk"
O4 - HKLM\..\RunOnce: [SpybotDeletingA2909] command /c del "C:\Documents and Settings\All Users\Menu Start\SpyHunter.lnk"
O4 - HKLM\..\RunOnce: [SpybotDeletingC2208] cmd /c del "C:\Documents and Settings\All Users\Menu Start\SpyHunter.lnk"
O4 - HKLM\..\RunOnce: [SpybotDeletingA3961] command /c del "C:\Documents and Settings\All Users\Menu Start\Programma's\SpyHunter\SpyHunter.lnk"
O4 - HKLM\..\RunOnce: [SpybotDeletingC369] cmd /c del "C:\Documents and Settings\All Users\Menu Start\Programma's\SpyHunter\SpyHunter.lnk"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\RunOnce: [SpybotDeletingB5714] command /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingD797] cmd /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingB7755] command /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKCU\..\RunOnce: [SpybotDeletingD2554] cmd /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKCU\..\RunOnce: [SpybotDeletingB9517] command /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingD7701] cmd /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingB4862] command /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKCU\..\RunOnce: [SpybotDeletingD4289] cmd /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKCU\..\RunOnce: [SpybotDeletingB9716] command /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingD965] cmd /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingB566] command /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKCU\..\RunOnce: [SpybotDeletingD7607] cmd /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKCU\..\RunOnce: [SpybotDeletingB4775] command /c del "C:\Documents and Settings\All Users\Bureaublad\SpyHunter.lnk"
O4 - HKCU\..\RunOnce: [SpybotDeletingD6156] cmd /c del "C:\Documents and Settings\All Users\Bureaublad\SpyHunter.lnk"
O4 - HKCU\..\RunOnce: [SpybotDeletingB2762] command /c del "C:\Documents and Settings\All Users\Menu Start\SpyHunter.lnk"
O4 - HKCU\..\RunOnce: [SpybotDeletingD1035] cmd /c del "C:\Documents and Settings\All Users\Menu Start\SpyHunter.lnk"
O4 - HKCU\..\RunOnce: [SpybotDeletingB8884] command /c del "C:\Documents and Settings\All Users\Menu Start\Programma's\SpyHunter\SpyHunter.lnk"
O4 - HKCU\..\RunOnce: [SpybotDeletingD841] cmd /c del "C:\Documents and Settings\All Users\Menu Start\Programma's\SpyHunter\SpyHunter.lnk"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{F1DBF705-73D7-48DB-9942-54734043857D}: NameServer = 85.255.112.104;85.255.112.144
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
--
End of file - 10157 bytes
bvd Pimmiekris
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 23:12:13, on 28-10-2008
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16735)
Boot mode: Normal
Running processes:
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\TortoiseSVN\bin\TSVNCache.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\alg.exe
C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.msn.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: NCO 2.0 IE BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\PROGRA~1\COMMON~1\SYMANT~1\IDS\IPSBHO.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O3 - Toolbar: Show Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\2.6\CoIEPlg.dll
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton 360\osCheck.exe"
O4 - HKLM\..\Run: [SoundMan] "C:\WINDOWS\SOUNDMAN.EXE"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [BluetoothAuthenticationAgent] "C:\WINDOWS\system32\rundll32.exe" bthprops.cpl,,BluetoothAuthenticationAgent
O4 - HKLM\..\Run: [C:\WINDOWS\system32\kdxcd.exe] C:\WINDOWS\system32\kdxcd.exe
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKLM\..\RunOnce: [Spybot - Search & Destroy] "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe" /autocheck
O4 - HKLM\..\RunOnce: [SpybotDeletingA3301] command /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingC1023] cmd /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingA6678] command /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKLM\..\RunOnce: [SpybotDeletingC9035] cmd /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKLM\..\RunOnce: [SpybotDeletingA5128] command /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingC7437] cmd /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingA1507] command /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKLM\..\RunOnce: [SpybotDeletingC2610] cmd /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKLM\..\RunOnce: [SpybotDeletingA9225] command /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingC2673] cmd /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKLM\..\RunOnce: [SpybotDeletingA8766] command /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKLM\..\RunOnce: [SpybotDeletingC9523] cmd /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKLM\..\RunOnce: [SpybotDeletingA3523] command /c del "C:\Documents and Settings\All Users\Bureaublad\SpyHunter.lnk"
O4 - HKLM\..\RunOnce: [SpybotDeletingC1166] cmd /c del "C:\Documents and Settings\All Users\Bureaublad\SpyHunter.lnk"
O4 - HKLM\..\RunOnce: [SpybotDeletingA2909] command /c del "C:\Documents and Settings\All Users\Menu Start\SpyHunter.lnk"
O4 - HKLM\..\RunOnce: [SpybotDeletingC2208] cmd /c del "C:\Documents and Settings\All Users\Menu Start\SpyHunter.lnk"
O4 - HKLM\..\RunOnce: [SpybotDeletingA3961] command /c del "C:\Documents and Settings\All Users\Menu Start\Programma's\SpyHunter\SpyHunter.lnk"
O4 - HKLM\..\RunOnce: [SpybotDeletingC369] cmd /c del "C:\Documents and Settings\All Users\Menu Start\Programma's\SpyHunter\SpyHunter.lnk"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKCU\..\RunOnce: [SpybotDeletingB5714] command /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingD797] cmd /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingB7755] command /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKCU\..\RunOnce: [SpybotDeletingD2554] cmd /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKCU\..\RunOnce: [SpybotDeletingB9517] command /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingD7701] cmd /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingB4862] command /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKCU\..\RunOnce: [SpybotDeletingD4289] cmd /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKCU\..\RunOnce: [SpybotDeletingB9716] command /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingD965] cmd /c del "C:\WINDOWS\system32\kdxcd.exe"
O4 - HKCU\..\RunOnce: [SpybotDeletingB566] command /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKCU\..\RunOnce: [SpybotDeletingD7607] cmd /c del "C:\Documents and Settings\klazien\Favorieten\Antivirus Scan.url"
O4 - HKCU\..\RunOnce: [SpybotDeletingB4775] command /c del "C:\Documents and Settings\All Users\Bureaublad\SpyHunter.lnk"
O4 - HKCU\..\RunOnce: [SpybotDeletingD6156] cmd /c del "C:\Documents and Settings\All Users\Bureaublad\SpyHunter.lnk"
O4 - HKCU\..\RunOnce: [SpybotDeletingB2762] command /c del "C:\Documents and Settings\All Users\Menu Start\SpyHunter.lnk"
O4 - HKCU\..\RunOnce: [SpybotDeletingD1035] cmd /c del "C:\Documents and Settings\All Users\Menu Start\SpyHunter.lnk"
O4 - HKCU\..\RunOnce: [SpybotDeletingB8884] command /c del "C:\Documents and Settings\All Users\Menu Start\Programma's\SpyHunter\SpyHunter.lnk"
O4 - HKCU\..\RunOnce: [SpybotDeletingD841] cmd /c del "C:\Documents and Settings\All Users\Menu Start\Programma's\SpyHunter\SpyHunter.lnk"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - C:\WINDOWS\bdoscandel.exe
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{F1DBF705-73D7-48DB-9942-54734043857D}: NameServer = 85.255.112.104;85.255.112.144
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
--
End of file - 10157 bytes