Ga naar inhoud
  • 0

HJT Vetzi


Anoniem2

Vraag

Kan iemand even naar deze logfile kijken? PC is namelijk erg traag aan het worden.\r\n\r\nAlvast bedankt.\r\n\r\nLogfile of Trend Micro HijackThis v2.0.2\r\nScan saved at 16:19:30, on 11-8-2009\r\nPlatform: Windows XP SP3 (WinNT 5.01.2600)\r\nMSIE: Internet Explorer v7.00 (7.00.6000.16876)\r\nBoot mode: Normal\r\n\r\nRunning processes:\r\nC:\\WINDOWS\\System32\\smss.exe\r\nC:\\WINDOWS\\system32\\winlogon.exe\r\nC:\\WINDOWS\\system32\\services.exe\r\nC:\\WINDOWS\\system32\\lsass.exe\r\nC:\\WINDOWS\\system32\\svchost.exe\r\nC:\\WINDOWS\\System32\\svchost.exe\r\nC:\\WINDOWS\\system32\\spoolsv.exe\r\nC:\\WINDOWS\\Explorer.EXE\r\nC:\\WINDOWS\\SOUNDMAN.EXE\r\nC:\\WINDOWS\\system32\\VTTimer.exe\r\nC:\\WINDOWS\\system32\\VTtrayp.exe\r\nC:\\Program Files\\VIA\\RAID\\raid_tool.exe\r\nC:\\Program Files\\iTunes\\iTunesHelper.exe\r\nC:\\Program Files\\QuickTime\\qttask.exe\r\nC:\\Program Files\\PC Veilig\\Common\\FSM32.EXE\r\nC:\\WINDOWS\\system32\\ctfmon.exe\r\nC:\\Program Files\\PC Veilig\\Anti-Virus\\fsgk32st.exe\r\nC:\\Program Files\\PC Veilig\\Common\\FSMA32.EXE\r\nC:\\Program Files\\PC Veilig\\Anti-Virus\\FSGK32.EXE\r\nC:\\Program Files\\PC Veilig\\Common\\FSMB32.EXE\r\nC:\\Program Files\\Common Files\\LightScribe\\LSSrvc.exe\r\nC:\\Program Files\\Samsung\\Digimax Viewer 2.1\\STImgBrowser.exe\r\nC:\\Program Files\\Common Files\\Microsoft Shared\\VS7DEBUG\\MDM.EXE\r\nC:\\Program Files\\Symantec\\LiveUpdate\\ALUSchedulerSvc.exe\r\nC:\\Program Files\\PC Veilig\\Common\\FCH32.EXE\r\nC:\\Program Files\\PC Veilig\\Common\\FAMEH32.EXE\r\nC:\\Program Files\\PC Veilig\\Anti-Virus\\fsqh.exe\r\nC:\\Program Files\\iPod\\bin\\iPodService.exe\r\nC:\\Program Files\\PC Veilig\\Anti-Virus\\fssm32.exe\r\nC:\\Program Files\\PC Veilig\\FSAUA\\program\\fsaua.exe\r\nC:\\Program Files\\PC Veilig\\FSGUI\\fsguidll.exe\r\nC:\\Program Files\\PC Veilig\\FWES\\Program\\fsdfwd.exe\r\nC:\\Program Files\\PC Veilig\\FSAUA\\program\\fsus.exe\r\nC:\\Program Files\\PC Veilig\\Anti-Virus\\fsav32.exe\r\nC:\\WINDOWS\\system32\\wuauclt.exe\r\nC:\\Program Files\\PC Veilig\\FSGUI\\scanwizard.exe\r\nC:\\WINDOWS\\system32\\wuauclt.exe\r\nC:\\WINDOWS\\SoftwareDistribution\\Download\\Install\\IE8-WindowsXP-x86-NLD.exe\r\nC:\\WINDOWS\\system32\\msiexec.exe\r\nc:\\83a9541895c991b1a271c9cf\\update\\iesetup.exe\r\nC:\\Program Files\\Java\\jre6\\bin\\jqs.exe\r\nC:\\Program Files\\Internet Explorer\\iexplore.exe\r\nc:\\83a9541895c991b1a271c9cf\\update\\update.exe\r\nC:\\Program Files\\Trend Micro\\HijackThis\\HijackThis.exe\r\n\r\nR1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Search Bar = [url]http://www.google.nl[/url]\r\nR0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = [url]http://www.compuclub.nl/[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = [url]http://go.microsoft.com/fwlink/?LinkId=69157[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url]\r\nR0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = [url]http://go.microsoft.com/fwlink/?LinkId=69157[/url]\r\nR1 - HKCU\\Software\\Microsoft\\Internet Connection Wizard,ShellNext = [url]http://www.qmotion.nl/[/url]\r\nR0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar,LinksFolderName = Koppelingen\r\nO2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\\Program Files\\Common Files\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll\r\nO2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll\r\nO2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\\Program Files\\Java\\jre6\\lib\\deploy\\jqs\\ie\\jqs_plugin.dll\r\nO4 - HKLM\\..\\Run: [SoundMan] SOUNDMAN.EXE\r\nO4 - HKLM\\..\\Run: [VTTimer] VTTimer.exe\r\nO4 - HKLM\\..\\Run: [VTTrayp] VTtrayp.exe\r\nO4 - HKLM\\..\\Run: [RaidTool] C:\\Program Files\\VIA\\RAID\\raid_tool.exe\r\nO4 - HKLM\\..\\Run: [NeroFilterCheck] C:\\WINDOWS\\system32\\NeroCheck.exe\r\nO4 - HKLM\\..\\Run: [iTunesHelper] \"C:\\Program Files\\iTunes\\iTunesHelper.exe\"\r\nO4 - HKLM\\..\\Run: [QuickTime Task] \"C:\\Program Files\\QuickTime\\qttask.exe\" -atboottime\r\nO4 - HKLM\\..\\Run: [F-Secure Manager] \"C:\\Program Files\\PC Veilig\\Common\\FSM32.EXE\" /splash\r\nO4 - HKLM\\..\\Run: [F-Secure TNB] \"C:\\Program Files\\PC Veilig\\FSGUI\\TNBUtil.exe\" /CHECKALL /WAITFORSW\r\nO4 - HKLM\\..\\Run: [Adobe Reader Speed Launcher] \"C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\"\r\nO4 - HKLM\\..\\Run: [KernelFaultCheck] %systemroot%\\system32\\dumprep 0 -k\r\nO4 - HKLM\\..\\Run: [SunJavaUpdateSched] \"C:\\Program Files\\Java\\jre6\\bin\\jusched.exe\"\r\nO4 - HKCU\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\ctfmon.exe\r\nO4 - HKUS\\S-1-5-19\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'Lokale service\')\r\nO4 - HKUS\\S-1-5-20\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'Netwerkservice\')\r\nO4 - HKUS\\S-1-5-18\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'SYSTEM\')\r\nO4 - HKUS\\.DEFAULT\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'Default user\')\r\nO4 - Global Startup: Digimax Viewer 2.1.lnk = ?\r\nO8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\\PROGRA~1\\MICROS~2\\OFFICE11\\EXCEL.EXE/3000\r\nO9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\\PROGRA~1\\MICROS~2\\OFFICE11\\REFIEBAR.DLL\r\nO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe\r\nO9 - Extra \'Tools\' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe\r\nO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe\r\nO9 - Extra \'Tools\' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe\r\nO14 - IERESET.INF: START_PAGE_URL=http://www.qmotion.nl\r\nO16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - [url]http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1148391524687[/url]\r\nO23 - Service: FSGKHS (F-Secure Gatekeeper Handler Starter) - F-Secure Corporation - C:\\Program Files\\PC Veilig\\Anti-Virus\\fsgk32st.exe\r\nO23 - Service: F-Secure Automatic Update Agent (FSAUA) - F-Secure Corporation - C:\\Program Files\\PC Veilig\\FSAUA\\program\\fsaua.exe\r\nO23 - Service: F-Secure Anti-Virus Firewall Daemon (FSDFWD) - F-Secure Corporation - C:\\Program Files\\PC Veilig\\FWES\\Program\\fsdfwd.exe\r\nO23 - Service: FSMA - F-Secure Corporation - C:\\Program Files\\PC Veilig\\Common\\FSMA32.EXE\r\nO23 - Service: F-Secure ORSP Client (FSORSPClient) - F-Secure Corporation - C:\\Program Files\\PC Veilig\\ORSP Client\\fsorsp.exe\r\nO23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\\Program Files\\Common Files\\InstallShield\\Driver\\11\\Intel 32\\IDriverT.exe\r\nO23 - Service: iPodService - Apple Computer, Inc. - C:\\Program Files\\iPod\\bin\\iPodService.exe\r\nO23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\\Program Files\\Java\\jre6\\bin\\jqs.exe\r\nO23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Unknown owner - C:\\Program Files\\Common Files\\LightScribe\\LSSrvc.exe\r\nO23 - Service: LiveUpdate - Symantec Corporation - C:\\PROGRA~1\\Symantec\\LIVEUP~1\\LUCOMS~1.EXE\r\nO23 - Service: Planner voor Automatische LiveUpdate - Symantec Corporation - C:\\Program Files\\Symantec\\LiveUpdate\\ALUSchedulerSvc.exe\r\n\r\n--\r\nEnd of file - 7118 bytes
Link naar reactie

2 antwoorden op deze vraag

Aanbevolen berichten

Om een reactie te plaatsen, moet je eerst inloggen

Gast
Antwoord op deze vraag...

×   Geplakt als verrijkte tekst.   Herstel opmaak

  Er zijn maximaal 75 emoji toegestaan.

×   Je link werd automatisch ingevoegd.   Tonen als normale link

×   Je vorige inhoud werd hersteld.   Leeg de tekstverwerker

×   Je kunt afbeeldingen niet direct plakken. Upload of voeg afbeeldingen vanaf een URL in

×
×
  • Nieuwe aanmaken...