Ga naar inhoud

Hijackthis loggie


Anoniem2

Aanbevolen berichten

Logfile of HijackThis v1.99.1\r\nScan saved at 7:00:07 PM, on 2/19/2007\r\nPlatform: Windows XP SP2 (WinNT 5.01.2600)\r\nMSIE: Internet Explorer v7.00 (7.00.5730.0011)\r\n\r\nRunning processes:\r\nC:\\WINDOWS\\System32\\smss.exe\r\nC:\\WINDOWS\\system32\\winlogon.exe\r\nC:\\WINDOWS\\system32\\services.exe\r\nC:\\WINDOWS\\system32\\lsass.exe\r\nC:\\WINDOWS\\system32\\Ati2evxx.exe\r\nC:\\WINDOWS\\system32\\svchost.exe\r\nC:\\WINDOWS\\system32\\Ati2evxx.exe\r\nC:\\WINDOWS\\system32\\spoolsv.exe\r\nC:\\WINDOWS\\Explorer.EXE\r\nC:\\WINDOWS\\system32\\LVCOMSX.EXE\r\nC:\\Program Files\\Logitech\\Video\\LogiTray.exe\r\nC:\\WINDOWS\\SOUNDMAN.EXE\r\nC:\\Program Files\\Trend Micro\\Internet Security 2007\\pccguide.exe\r\nC:\\Program Files\\Java\\jre1.5.0_08\\bin\\jusched.exe\r\nC:\\Program Files\\QuickTime\\qttask.exe\r\nC:\\Program Files\\iTunes\\iTunesHelper.exe\r\nC:\\Program Files\\DAP\\DAP.EXE\r\nC:\\PROGRA~1\\TRENDM~1\\INTERN~1\\PcCtlCom.exe\r\nC:\\Program Files\\Trend Micro\\Internet Security 2007\\TMAS_OE\\TMAS_OEMon.exe\r\nC:\\WINDOWS\\system32\\ctfmon.exe\r\nC:\\Program Files\\Steam\\Steam.exe\r\nC:\\Program Files\\Messenger\\msmsgs.exe\r\nC:\\Program Files\\Alcohol Soft\\Alcohol 120\\StarWind\\StarWindService.exe\r\nC:\\Program Files\\ZyDAS Technology Corporation\\ZyDAS_802.11g_Utility\\ZDWlan.exe\r\nC:\\WINDOWS\\system32\\svchost.exe\r\nC:\\Program Files\\OpenOffice.org 2.1\\program\\soffice.exe\r\nC:\\Program Files\\OpenOffice.org 2.1\\program\\soffice.BIN\r\nC:\\PROGRA~1\\TRENDM~1\\INTERN~1\\Tmntsrv.exe\r\nC:\\PROGRA~1\\TRENDM~1\\INTERN~1\\TmPfw.exe\r\nC:\\Program Files\\Logitech\\Video\\FxSvr2.exe\r\nC:\\Program Files\\MSN Messenger\\MsnMsgr.Exe\r\nC:\\Program Files\\iPod\\bin\\iPodService.exe\r\nC:\\Program Files\\ZyDAS Technology Corporation\\ZyDAS_802.11g_Utility\\W32BRG55.EXE\r\nC:\\WINDOWS\\System32\\svchost.exe\r\nC:\\WINDOWS\\System32\\svchost.exe\r\nC:\\Program Files\\MSN Messenger\\usnsvc.exe\r\nC:\\Program Files\\Java\\jre1.5.0_08\\bin\\jucheck.exe\r\nC:\\Program Files\\BitSpirit\\BitSpirit.exe\r\nc:\\program files\\steam\\steamapps\\timmehhandchimera\\counter-strike source\\hl2.exe\r\nC:\\PROGRA~1\\TRENDM~1\\INTERN~1\\tmproxy.exe\r\nC:\\Program Files\\Mozilla Firefox\\firefox.exe\r\nC:\\WINDOWS\\system32\\wuauclt.exe\r\nC:\\Program Files\\Hijack This\\hijackthis.exe\r\n\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = [url]http://go.microsoft.com/fwlink/?LinkId=69157[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url]\r\nR0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = [url]http://go.microsoft.com/fwlink/?LinkId=69157[/url]\r\nO2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\\PROGRA~1\\SPYBOT~1\\SDHelper.dll\r\nO2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\\Program Files\\Java\\jre1.5.0_08\\bin\\ssv.dll\r\nO2 - BHO: (no name) - {7E853D72-626A-48EC-A868-BA8D5E23E045} - (no file)\r\nO4 - HKLM\\..\\Run: [LVCOMSX] C:\\WINDOWS\\system32\\LVCOMSX.EXE\r\nO4 - HKLM\\..\\Run: [LogitechVideoRepair] \"C:\\Program Files\\Logitech\\Video\\ISStart.exe\" \r\nO4 - HKLM\\..\\Run: [LogitechVideoTray] \"C:\\Program Files\\Logitech\\Video\\LogiTray.exe\"\r\nO4 - HKLM\\..\\Run: [SoundMan] SOUNDMAN.EXE\r\nO4 - HKLM\\..\\Run: [pccguide.exe] \"C:\\Program Files\\Trend Micro\\Internet Security 2007\\pccguide.exe\"\r\nO4 - HKLM\\..\\Run: [SunJavaUpdateSched] \"C:\\Program Files\\Java\\jre1.5.0_08\\bin\\jusched.exe\"\r\nO4 - HKLM\\..\\Run: [QuickTime Task] \"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime\r\nO4 - HKLM\\..\\Run: [iTunesHelper] \"C:\\Program Files\\iTunes\\iTunesHelper.exe\"\r\nO4 - HKLM\\..\\Run: [DownloadAccelerator] \"C:\\Program Files\\DAP\\DAP.EXE\" /STARTUP\r\nO4 - HKCU\\..\\Run: [MessengerPlus3] \"C:\\Program Files\\MessengerPlus! 3\\MsgPlus.exe\" /WinStart\r\nO4 - HKCU\\..\\Run: [LogitechSoftwareUpdate] \"C:\\Program Files\\Logitech\\Video\\ManifestEngine.exe\" boot\r\nO4 - HKCU\\..\\Run: [msnmsgr] \"C:\\Program Files\\MSN Messenger\\MsnMsgr.Exe\" /background\r\nO4 - HKCU\\..\\Run: [OE] \"C:\\Program Files\\Trend Micro\\Internet Security 2007\\TMAS_OE\\TMAS_OEMon.exe\"\r\nO4 - HKCU\\..\\Run: [ctfmon.exe] C:\\WINDOWS\\system32\\ctfmon.exe\r\nO4 - HKCU\\..\\Run: [Steam] \"C:\\Program Files\\Steam\\Steam.exe\" -silent\r\nO4 - HKCU\\..\\Run: [MSMSGS] \"C:\\Program Files\\Messenger\\msmsgs.exe\" /background\r\nO4 - Startup: OpenOffice.org 2.1 .lnk = C:\\Program Files\\OpenOffice.org 2.1\\program\\quickstart.exe\r\nO4 - Global Startup: ZDWLan Utility.lnk = C:\\Program Files\\ZyDAS Technology Corporation\\ZyDAS_802.11g_Utility\\ZDWlan.exe\r\nO8 - Extra context menu item: &Clean Traces - C:\\Program Files\\DAP\\Privacy Package\\dapcleanerie.htm\r\nO8 - Extra context menu item: &Download with &DAP - C:\\Program Files\\DAP\\dapextie.htm\r\nO8 - Extra context menu item: Download &all with DAP - C:\\Program Files\\DAP\\dapextie2.htm\r\nO8 - Extra context menu item: Download Using &BitSpirit - C:\\Program Files\\BitSpirit\\bsurl.htm\r\nO8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\\PROGRA~1\\MICROS~2\\OFFICE11\\EXCEL.EXE/3000\r\nO9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\\PROGRA~1\\SPYWAR~2\\tools\\iesdpb.dll\r\nO9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\\PROGRA~1\\MICROS~2\\OFFICE11\\REFIEBAR.DLL\r\nO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\\Network Diagnostic\\xpnetdiag.exe (file missing)\r\nO9 - Extra \'Tools\' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\\Network Diagnostic\\xpnetdiag.exe (file missing)\r\nO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe\r\nO9 - Extra \'Tools\' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe\r\nO11 - Options group: [INTERNATIONAL] International*\r\nO16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - [url]http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1169267313000[/url]\r\nO16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - [url]http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab[/url]\r\nO18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\\PROGRA~1\\MSNMES~1\\MSGRAP~1.DLL\r\nO18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\\PROGRA~1\\MSNMES~1\\MSGRAP~1.DLL\r\nO20 - Winlogon Notify: WRNotifier - C:\\WINDOWS\\SYSTEM32\\WRLogonNTF.dll\r\nO21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\\WINDOWS\\system32\\WPDShServiceObj.dll\r\nO23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\\WINDOWS\\system32\\Ati2evxx.exe\r\nO23 - Service: ATI Smart - Unknown owner - C:\\WINDOWS\\system32\\ati2sgag.exe\r\nO23 - Service: iPod Service - Apple Computer, Inc. - C:\\Program Files\\iPod\\bin\\iPodService.exe\r\nO23 - Service: Trend Micro Central Control Component (PcCtlCom) - Trend Micro Inc. - C:\\PROGRA~1\\TRENDM~1\\INTERN~1\\PcCtlCom.exe\r\nO23 - Service: Trend Micro Beveiliging tegen spyware (PcScnSrv) - Trend Micro Inc. - C:\\PROGRA~1\\TRENDM~1\\INTERN~1\\PcScnSrv.exe\r\nO23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\\Program Files\\Spyware Doctor\\sdhelp.exe\r\nO23 - Service: StarWind iSCSI Service (StarWindService) - Rocket Division Software - C:\\Program Files\\Alcohol Soft\\Alcohol 120\\StarWind\\StarWindService.exe\r\nO23 - Service: Trend Micro Real-time Service (Tmntsrv) - Trend Micro Inc. - C:\\PROGRA~1\\TRENDM~1\\INTERN~1\\Tmntsrv.exe\r\nO23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\\PROGRA~1\\TRENDM~1\\INTERN~1\\TmPfw.exe\r\nO23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\\PROGRA~1\\TRENDM~1\\INTERN~1\\tmproxy.exe\r\n\r\nZou iemand kunnen kijken hiernaar mn comp begint aardig sloom te worden nadat hij sinds 3 weken opnieuw is geinstalled
Link naar reactie
  • 1 maand later...
Hoi,\r\n\r\nIk zag dat je Trend Micro Internet Security 2007 en Bitspirit had draaien.\r\n\r\nIk heb Trend Micro Internet Security 2006 en als ik Bitspirit opstart, gaat de cpu als een gek te keer. Als ik in taakbeheer kijk, zie ik dat het proces TmPfw.exe bijna continue 100% cpu vraagt. Dit is dus de Trend Micro Pc-Cillin Firewall.\r\n\r\nIk heb nog niet echt een optie gevonden (behalve dan het process TmPfw.exe beëindigen, maar dat wil je eigenlijk ook niet).\r\nIk heb in de Trend Micro Pc-Cillin Firewall settings TCP poortnummer van BitSpirit opgenomen, maar dit lijkt ook niet te helpen.\r\n\r\nAls iemand een oplossing weet, dan hoor ik het graag.\r\n\r\nMvgr,\r\nWin-Man
Link naar reactie

Om een reactie te plaatsen, moet je eerst inloggen

Gast
Reageer op dit topic

×   Geplakt als verrijkte tekst.   Herstel opmaak

  Er zijn maximaal 75 emoji toegestaan.

×   Je link werd automatisch ingevoegd.   Tonen als normale link

×   Je vorige inhoud werd hersteld.   Leeg de tekstverwerker

×   Je kunt afbeeldingen niet direct plakken. Upload of voeg afbeeldingen vanaf een URL in

×
×
  • Nieuwe aanmaken...