Home > General > Perflib_Perfdata_174


Completion time: 2011-09-01 01:11:58 - machine was rebooted ComboFix-quarantined-files.txt 2011-08-31 17:11 ComboFix2.txt 2011-08-31 14:30 ComboFix3.txt 2011-08-30 14:04 ComboFix4.txt 2011-08-27 06:10 . Ga naar inhoud Archief Windows Algemeen Dit Topic Alle inhoud Dit Topic Dit Forum Geavanceerd zoeken Forum Forums Forumregels Online gebruikers Meer Info Forumregels Welkomgids voor nieuwe leden Steun PC Helpforum My help is always free, however, if you would like to make a donation to me for the help I have provided please click here Back to top #3 twistah twistah PUPs do not "infect" systems. have a peek here

Started by twistah , Jul 19 2008 02:24 AM This topic is locked 12 replies to this topic #1 twistah twistah Members 6 posts OFFLINE Local time:12:49 AM Posted 19 C:\DOCUME~1\Paal\LOCALS~1\Temp\jkos-Paal\binaries\ScanningProcess.exe scheduled to be deleted on reboot.File delete failed. File not found{9030D464-4C02-4ABF-8ECC-5164760863C6} (HKLM) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation){BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} (HKLM) -- C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation){FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} (HKLM) -- C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Bestaande gebruiker?

R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2/23/2011 11:39 PM 442200] R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [8/14/2010 5:28 PM 320856] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [8/14/2010 5:28 PM 20568] S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [8/20/2010 4:38 PM 136176] S3 ADM8511;ADMtek ADM8511/AN986 Join our site today to ask your question. C:\DOCUME~1\Paal\LOCALS~1\Temp\jkos-Paal\binaries\ichk2.ppl scheduled to be deleted on reboot.File delete failed. C:\DOCUME~1\Paal\LOCALS~1\Temp\jkos-Paal\binaries\L_llio.ppl scheduled to be deleted on reboot.File delete failed.

Inc) ========== (O3) Toolbars ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar]"{BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0}" (HKLM) -- C:\Program Files\Windows Live Toolbar\msntb.dll (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar]"{EF99BD32-C1FB-11D2-892F-0090271D4F88}" (HKLM) -- C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! You had an MBR rootkit which I told you before and also some other pieces of malware. Yes, my password is: Forgot your password? Back to top #18 robertlasiter77 robertlasiter77 Topic Starter Members 77 posts OFFLINE Local time:01:49 AM Posted 04 February 2009 - 06:47 PM Stealth MBR rootkit detector 0.2.4 by Gmer, http://www.gmer.netdevice:

Inc.){92780B25-18CC-41C8-B9BE-3C9C571A8263}: Button: Research -- %ProgramFiles%\Microsoft Office\Office12\REFIEBAR.DLL [2006/10/26 20:12:22 | 00,040,424 | ---- | M] (Microsoft Corporation){FB5F1910-F110-11d2-BB9E-00C04F795683}: Button: Messenger -- %ProgramFiles%\Messenger\msmsgs.exe [2008/04/13 17:12:28 | 01,695,232 | ---- | M] (Microsoft Corporation){FB5F1910-F110-11d2-BB9E-00C04F795683}: Menu: Using the site is easy and fun. First let's get a more detailed log so we can determine the best plan of attack for you.Please download OTViewIt by OldTimer to your desktop.Double click on the OTViewIt.exe icon on see here catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2011-09-01 04:23 Windows 5.1.2600 Service Pack 2 NTFS .

C:\DOCUME~1\Paal\LOCALS~1\Temp\jkos-Paal\binaries\Avp1.ppl scheduled to be deleted on reboot.File delete failed. Using the site is easy and fun. Deel dit bericht Link naar bericht Delen op andere sites sers    1 Lid Topicstarter Lid 1 297 berichten Geplaatst: 30 september 2011 heel duiidelijk! They are nothing to worry about.

scanning hidden files ... . . ************************************************************************** . [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\GarenaPEngine] "ImagePath"="\??\c:\docume~1\ASPIRE\LOCALS~1\Temp\CPVA5.tmp" . [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\npggsvc] "ImagePath"="c:\windows\system32\GameMon.des -service" . http://www.pc-helpforum.be/topic/27733-perflib_perfdata_174-en-220/ Perflib_Perfdata_174 Discussion in 'Windows XP' started by Jbab, Oct 22, 2006. Back to top BC AdBot (Login to Remove) BleepingComputer.com Register to remove ads #17 extremeboy extremeboy Malware Response Team 12,975 posts OFFLINE Gender:Male Local time:12:49 AM Posted 04 February Er opent een kladblokvenster, hou gelijktijdig de CTRL en A-toets ingedrukt, nu is alles geselecteerd.

Tech Support Guy is completely free -- paid for by advertisers and donations. navigate here c:\documents and settings\All Users\Start Menu\Programs\Startup\ Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2007-11-1 576104] . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys] @="Driver" . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] 2009-02-27 09:10 35696 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe . [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] Back to top #4 kahdah kahdah Security Colleague 11,138 posts OFFLINE Gender:Male Location:Florida Local time:12:49 AM Posted 19 July 2008 - 02:46 PM No problem.Do this first :Please download ATF dtu100>2008-05-23 00:19:46 81920 --a------ C:\WINDOWS\system32\dpl100.dll

Click here to join today! Download ComboFix van één van deze locaties: Link 1 Link 2 * BELANGRIJK !!! Jase1000 replied Feb 22, 2017 at 12:35 AM Buy a budget laptop or turn... http://nuvisiongraphx.com/general/perflib-perfdata-bc8-dat.html Yes, my password is: Forgot your password?

See https://vil.nai.com/vil/DATReadme.aspx for a list of program detections added to the DATs. R3 enecir;ENE CIR Receiver;c:\windows\system32\drivers\enecir.sys [5/30/2009 2:56 PM 54784] R3 enecirhid;ENE CIR HID Receiver;c:\windows\system32\drivers\enecirhid.sys [5/30/2009 2:30 PM 11264] R3 enecirhidma;ENE CIR HIDmini Filter;c:\windows\system32\drivers\enecirhidma.sys [5/30/2009 2:30 PM 5632] R3 JMCR;JMCR;c:\windows\system32\drivers\jmcr.sys [5/30/2009 2:30 PM File not found [HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\MenuExt\]Add to Windows &Live Favorites: Reg Error: Key does not exist or could not be opened.

Sluit hierna CCleaner terug af.

Pre-Run: 57,141,256,192 bytes free Post-Run: 57,114,947,584 bytes free . - - End Of File - - 259362F5535AF53000165CDC22200BC4 access still denied.. Inhoud van de 'Gedeelde Taken' map . 2011-10-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-08-20 14:38] . 2011-10-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2010-08-20 14:38] . . ------- Bijkomende Scan ------- . C:\DOCUME~1\Paal\LOCALS~1\Temp\jkos-Paal\binaries\kosglue- scheduled to be deleted on reboot.File delete failed. Great freeware program for those hard to delete files.

C:\DOCUME~1\Paal\LOCALS~1\Temp\jkos-Paal\binaries\AvpMgr.ppl scheduled to be deleted on reboot.File delete failed. They are spread manually, often under the premise that they are beneficial or wanted. Style Default Style Contact Us Help Home Top RSS Terms and Rules Copyright © TechGuy, Inc. this contact form Current Boot Mode: NormalScan Mode: All usersWhitelist: OnFile Age = 30 Days ========== Processes ========== [2006/10/11 10:37:24 | 00,430,080 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe[2006/10/11 10:37:24 | 00,430,080

Wil je dit uitgebreid in beeld bekijken, klik dan hier voor de handleiding.