Ga naar inhoud
  • 0

Hijack This probleem Retseh


Anoniem2

Vraag

Dag allen!\r\n\r\nVia mijn hotmailadres wordt steeds spam doorgestuurd naar allemaal andere mailadressen, dus daar wil ik graag vanaf! \r\n\r\nNu heb ik net Hijack This gedownload, maar ik krijg nadat ik \'scan\' druk een soort foutmelding: (Zie de bijlage, want ik kon er niet uit kopieren!) Ik snap niet eens waar ik \'start\' kan vinden, dus daar begint het probleem! :)\r\n\r\nAls ik deze melding gewoon negeer krijg ik het volgende als uitkomst:\r\n\r\nLogfile of Trend Micro HijackThis v2.0.2\r\nScan saved at 10:40:18, on 21-12-2009\r\nPlatform: Windows Vista SP1 (WinNT 6.00.1905)\r\nMSIE: Internet Explorer v8.00 (8.00.6001.18865)\r\nBoot mode: Normal\r\n\r\nRunning processes:\r\nC:\\Windows\\system32\\taskeng.exe\r\nC:\\Windows\\system32\\Dwm.exe\r\nC:\\Windows\\Explorer.EXE\r\nC:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe\r\nC:\\Program Files\\NewTech Infosystems\\NTI Backup Now 5\\BkupTray.exe\r\nC:\\Program Files\\Google\\Google Desktop Search\\GoogleDesktop.exe\r\nC:\\Windows\\System32\\igfxtray.exe\r\nC:\\Windows\\System32\\hkcmd.exe\r\nC:\\Windows\\System32\\igfxpers.exe\r\nC:\\Windows\\RtHDVCpl.exe\r\nC:\\Windows\\system32\\igfxsrvc.exe\r\nC:\\Program Files\\Launch Manager\\LManager.exe\r\nC:\\Program Files\\Acer\\Empowering Technology\\eDataSecurity\\x86\\eDSLoader.exe\r\nC:\\Program Files\\Acer\\Empowering Technology\\ePower\\ePower_DMC.exe\r\nC:\\Program Files\\Acer Arcade Deluxe\\Acer Arcade Deluxe\\ArcadeDeluxeAgent.exe\r\nC:\\Program Files\\Acer Arcade Deluxe\\Acer Arcade Deluxe\\Kernel\\CLML\\CLMLSvc.exe\r\nC:\\Program Files\\Acer Arcade Deluxe\\PlayMovie\\PMVService.exe\r\nC:\\Program Files\\Avira\\AntiVir Desktop\\avgnt.exe\r\nC:\\Program Files\\Java\\jre6\\bin\\jusched.exe\r\nC:\\Program Files\\iTunes\\iTunesHelper.exe\r\nC:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe\r\nC:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\r\nC:\\Program Files\\uTorrent\\uTorrent.exe\r\nC:\\Program Files\\Microsoft Office\\Office12\\ONENOTEM.EXE\r\nC:\\Windows\\system32\\igfxext.exe\r\nC:\\Windows\\system32\\igfxsrvc.exe\r\nC:\\Program Files\\Windows Media Player\\wmpnscfg.exe\r\nC:\\Users\\dobby\\AppData\\Local\\Temp\\RtkBtMnt.exe\r\nC:\\Program Files\\Google\\Google Desktop Search\\GoogleDesktop.exe\r\nC:\\Windows\\system32\\wbem\\unsecapp.exe\r\nC:\\Program Files\\Internet Explorer\\iexplore.exe\r\nC:\\Program Files\\Internet Explorer\\iexplore.exe\r\nC:\\Program Files\\Google\\Google Toolbar\\GoogleToolbarUser.exe\r\nC:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10c.exe\r\nC:\\Program Files\\Synaptics\\SynTP\\SynTPHelper.exe\r\nC:\\Windows\\system32\\wuauclt.exe\r\nC:\\Program Files\\Java\\jre6\\bin\\jucheck.exe\r\nC:\\Program Files\\Internet Explorer\\iexplore.exe\r\nC:\\Program Files\\Internet Explorer\\iexplore.exe\r\nC:\\Users\\dobby\\Documents\\documenten hester\\MS Office 2007 Portable (6-in-1)\\Microsoft Office Word 2007.exe\r\nC:\\Program Files\\Adobe\\Reader 9.0\\Reader\\AcroBroker.exe\r\nC:\\Program Files\\Internet Explorer\\iexplore.exe\r\nC:\\Program Files\\Acer\\Empowering Technology\\NotificationCenter\\Framework.NotificationCenter.exe\r\nC:\\Program Files\\Internet Explorer\\iexplore.exe\r\nC:\\Windows\\system32\\SearchFilterHost.exe\r\nC:\\Program Files\\Trend Micro\\HijackThis\\HijackThis.exe\r\n\r\nR1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = [url]http://www.hyves.nl[/url]\r\nR1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url]\r\nR0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = [url]http://www.google.nl/[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url]\r\nR0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = [url]http://homepage.acer.com/rdr.aspx?b=ACAW&l=0413&s=2&o=vp32&d=0309&m=aspire_5735[/url]\r\nR0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,SearchAssistant = \r\nR0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,CustomizeSearch = \r\nR1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Window Title = Windows Internet Explorer wordt aangeboden door Hyves\r\nR1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings,ProxyOverride = *.local\r\nR0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar,LinksFolderName = \r\nO1 - Hosts: ::1 localhost\r\nO2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\\Program Files\\Common Files\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll\r\nO2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)\r\nO2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\\Program Files\\Acer\\Empowering Technology\\eDataSecurity\\x86\\ActiveToolBand.dll\r\nO2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\\Program Files\\Common Files\\Microsoft Shared\\Windows Live\\WindowsLiveLogin.dll\r\nO2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar.dll\r\nO2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\\Program Files\\Google\\GoogleToolbarNotifier\\5.0.926.3450\\swg.dll\r\nO2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\\Program Files\\Google\\Google Toolbar\\Component\\fastsearch_219B3E1547538286.dll\r\nO2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll\r\nO3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\\Program Files\\Acer\\Empowering Technology\\eDataSecurity\\x86\\eDStoolbar.dll\r\nO3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar.dll\r\nO4 - HKLM\\..\\Run: [Windows Defender] %ProgramFiles%\\Windows Defender\\MSASCui.exe -hide\r\nO4 - HKLM\\..\\Run: [SynTPEnh] C:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe\r\nO4 - HKLM\\..\\Run: [BkupTray] \"C:\\Program Files\\NewTech Infosystems\\NTI Backup Now 5\\BkupTray.exe\"\r\nO4 - HKLM\\..\\Run: [Google Desktop Search] \"C:\\Program Files\\Google\\Google Desktop Search\\GoogleDesktop.exe\" /startup\r\nO4 - HKLM\\..\\Run: [IgfxTray] C:\\Windows\\system32\\igfxtray.exe\r\nO4 - HKLM\\..\\Run: [HotKeysCmds] C:\\Windows\\system32\\hkcmd.exe\r\nO4 - HKLM\\..\\Run: [Persistence] C:\\Windows\\system32\\igfxpers.exe\r\nO4 - HKLM\\..\\Run: [RtHDVCpl] RtHDVCpl.exe\r\nO4 - HKLM\\..\\Run: [Skytel] Skytel.exe\r\nO4 - HKLM\\..\\Run: [LManager] C:\\PROGRA~1\\LAUNCH~1\\LManager.exe\r\nO4 - HKLM\\..\\Run: [eDataSecurity Loader] C:\\Program Files\\Acer\\Empowering Technology\\eDataSecurity\\x86\\eDSloader.exe\r\nO4 - HKLM\\..\\Run: [ePower_DMC] C:\\Program Files\\Acer\\Empowering Technology\\ePower\\ePower_DMC.exe\r\nO4 - HKLM\\..\\Run: [ArcadeDeluxeAgent] \"C:\\Program Files\\Acer Arcade Deluxe\\Acer Arcade Deluxe\\ArcadeDeluxeAgent.exe\"\r\nO4 - HKLM\\..\\Run: [CLMLServer] \"C:\\Program Files\\Acer Arcade Deluxe\\Acer Arcade Deluxe\\Kernel\\CLML\\CLMLSvc.exe\"\r\nO4 - HKLM\\..\\Run: [PlayMovie] \"C:\\Program Files\\Acer Arcade Deluxe\\PlayMovie\\PMVService.exe\"\r\nO4 - HKLM\\..\\Run: [avgnt] \"C:\\Program Files\\Avira\\AntiVir Desktop\\avgnt.exe\" /min\r\nO4 - HKLM\\..\\Run: [Adobe Reader Speed Launcher] \"C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\"\r\nO4 - HKLM\\..\\Run: [AppleSyncNotifier] C:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\bin\\AppleSyncNotifier.exe\r\nO4 - HKLM\\..\\Run: [SunJavaUpdateSched] \"C:\\Program Files\\Java\\jre6\\bin\\jusched.exe\"\r\nO4 - HKLM\\..\\Run: [QuickTime Task] \"C:\\Program Files\\QuickTime\\QTTask.exe\" -atboottime\r\nO4 - HKLM\\..\\Run: [iTunesHelper] \"C:\\Program Files\\iTunes\\iTunesHelper.exe\"\r\nO4 - HKCU\\..\\Run: [swg] C:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe\r\nO4 - HKCU\\..\\Run: [msnmsgr] \"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\" /background\r\nO4 - HKCU\\..\\Run: [uTorrent] \"C:\\Program Files\\uTorrent\\uTorrent.exe\"\r\nO4 - HKCU\\..\\Run: [WMPNSCFG] C:\\Program Files\\Windows Media Player\\WMPNSCFG.exe\r\nO4 - HKUS\\S-1-5-19\\..\\Run: [Sidebar] %ProgramFiles%\\Windows Sidebar\\Sidebar.exe /detectMem (User \'LOCAL SERVICE\')\r\nO4 - HKUS\\S-1-5-19\\..\\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User \'LOCAL SERVICE\')\r\nO4 - HKUS\\S-1-5-20\\..\\Run: [Sidebar] %ProgramFiles%\\Windows Sidebar\\Sidebar.exe /detectMem (User \'NETWORK SERVICE\')\r\nO4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\\Program Files\\Microsoft Office\\Office12\\ONENOTEM.EXE\r\nO4 - Global Startup: hpoddt01.exe.lnk = ?\r\nO8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\\PROGRA~1\\MI1933~1\\Office12\\EXCEL.EXE/3000\r\nO9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\\Program Files\\Windows Live\\Writer\\WriterBrowserExtension.dll\r\nO9 - Extra \'Tools\' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\\Program Files\\Windows Live\\Writer\\WriterBrowserExtension.dll\r\nO9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\PROGRA~1\\MI1933~1\\Office12\\ONBttnIE.dll\r\nO9 - Extra \'Tools\' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\PROGRA~1\\MI1933~1\\Office12\\ONBttnIE.dll\r\nO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\\PROGRA~1\\MI1933~1\\Office12\\REFIEBAR.DLL\r\nO13 - Gopher Prefix: \r\nO16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - [url]http://express.foto.com/ImageUploader5.cab[/url]\r\nO20 - AppInit_DLLs: C:\\PROGRA~1\\Google\\GOOGLE~1\\GOEC62~1.DLL\r\nO23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\\Windows\\system32\\agrsmsvc.exe\r\nO23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\\Program Files\\Avira\\AntiVir Desktop\\sched.exe\r\nO23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\\Program Files\\Avira\\AntiVir Desktop\\avguard.exe\r\nO23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\bin\\AppleMobileDeviceService.exe\r\nO23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\\Program Files\\Bonjour\\mDNSResponder.exe\r\nO23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\\Program Files\\NewTech Infosystems\\NTI Backup Now 5\\Client\\Agentsvc.exe\r\nO23 - Service: CLHNService - Unknown owner - C:\\Program Files\\Acer Arcade Deluxe\\HomeMedia\\Kernel\\DMP\\CLHNService.exe\r\nO23 - Service: eDataSecurity Service - Egis Incorporated - C:\\Program Files\\Acer\\Empowering Technology\\eDataSecurity\\x86\\eDSService.exe\r\nO23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\\Program Files\\Acer\\Empowering Technology\\Service\\ETService.exe\r\nO23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\\Program Files\\MAGIX\\Common\\Database\\bin\\fbserver.exe\r\nO23 - Service: Google Desktop Manager 5.7.808.7150 (GoogleDesktopManager-080708-050100) - Google - C:\\Program Files\\Google\\Google Desktop Search\\GoogleDesktop.exe\r\nO23 - Service: Google Updater Service (gusvc) - Unknown owner - C:\\Program Files\\Google\\Common\\Google Updater\\GoogleUpdaterService.exe (file missing)\r\nO23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\\Program Files\\iPod\\bin\\iPodService.exe\r\nO23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\\Program Files\\Common Files\\LightScribe\\LSSrvc.exe\r\nO23 - Service: MobilityService - Unknown owner - C:\\Acer\\Mobility Center\\MobilityService.exe\r\nO23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\\Program Files\\NewTech Infosystems\\NTI Backup Now 5\\BackupSvc.exe\r\nO23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\\Program Files\\NewTech Infosystems\\NTI Backup Now 5\\SchedulerSvc.exe\r\nO23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - c:\\Program Files\\Cyberlink\\Shared files\\RichVideo.exe\r\n\r\n--\r\nEnd of file - 11345 bytes\r\n\r\n\r\nIk hoop dat iemand mij kan helpen! Bedankt alvast in ieder geval, \r\n\r\nMet vriendelijke groet, \r\n\r\nHester.
Link naar reactie

3 antwoorden op deze vraag

Aanbevolen berichten

  • 0
Ben ik weer! Probleem van de foutmelding is opgelost! (Ik wist natuurlijk niet eens dat ik Vista had haha, dus vandaar!)\r\n\r\nBij deze mijn nieuwe, zonder problemen verkregen uitkomst:\r\n\r\nLogfile of Trend Micro HijackThis v2.0.2\r\nScan saved at 11:16:00, on 21-12-2009\r\nPlatform: Windows Vista SP1 (WinNT 6.00.1905)\r\nMSIE: Internet Explorer v8.00 (8.00.6001.18865)\r\nBoot mode: Normal\r\n\r\nRunning processes:\r\nC:\\Windows\\system32\\taskeng.exe\r\nC:\\Windows\\system32\\Dwm.exe\r\nC:\\Windows\\Explorer.EXE\r\nC:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe\r\nC:\\Program Files\\NewTech Infosystems\\NTI Backup Now 5\\BkupTray.exe\r\nC:\\Program Files\\Google\\Google Desktop Search\\GoogleDesktop.exe\r\nC:\\Windows\\System32\\igfxtray.exe\r\nC:\\Windows\\System32\\hkcmd.exe\r\nC:\\Windows\\System32\\igfxpers.exe\r\nC:\\Windows\\RtHDVCpl.exe\r\nC:\\Windows\\system32\\igfxsrvc.exe\r\nC:\\Program Files\\Launch Manager\\LManager.exe\r\nC:\\Program Files\\Acer\\Empowering Technology\\eDataSecurity\\x86\\eDSLoader.exe\r\nC:\\Program Files\\Acer\\Empowering Technology\\ePower\\ePower_DMC.exe\r\nC:\\Program Files\\Acer Arcade Deluxe\\Acer Arcade Deluxe\\ArcadeDeluxeAgent.exe\r\nC:\\Program Files\\Acer Arcade Deluxe\\Acer Arcade Deluxe\\Kernel\\CLML\\CLMLSvc.exe\r\nC:\\Program Files\\Acer Arcade Deluxe\\PlayMovie\\PMVService.exe\r\nC:\\Program Files\\Avira\\AntiVir Desktop\\avgnt.exe\r\nC:\\Program Files\\Java\\jre6\\bin\\jusched.exe\r\nC:\\Program Files\\iTunes\\iTunesHelper.exe\r\nC:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe\r\nC:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\r\nC:\\Program Files\\uTorrent\\uTorrent.exe\r\nC:\\Program Files\\Microsoft Office\\Office12\\ONENOTEM.EXE\r\nC:\\Windows\\system32\\igfxext.exe\r\nC:\\Windows\\system32\\igfxsrvc.exe\r\nC:\\Program Files\\Windows Media Player\\wmpnscfg.exe\r\nC:\\Users\\dobby\\AppData\\Local\\Temp\\RtkBtMnt.exe\r\nC:\\Program Files\\Google\\Google Desktop Search\\GoogleDesktop.exe\r\nC:\\Windows\\system32\\wbem\\unsecapp.exe\r\nC:\\Program Files\\Internet Explorer\\iexplore.exe\r\nC:\\Program Files\\Internet Explorer\\iexplore.exe\r\nC:\\Program Files\\Google\\Google Toolbar\\GoogleToolbarUser.exe\r\nC:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10c.exe\r\nC:\\Program Files\\Synaptics\\SynTP\\SynTPHelper.exe\r\nC:\\Windows\\system32\\wuauclt.exe\r\nC:\\Program Files\\Java\\jre6\\bin\\jucheck.exe\r\nC:\\Program Files\\Internet Explorer\\iexplore.exe\r\nC:\\Program Files\\Internet Explorer\\iexplore.exe\r\nC:\\Users\\dobby\\Documents\\documenten hester\\MS Office 2007 Portable (6-in-1)\\Microsoft Office Word 2007.exe\r\nC:\\Program Files\\Adobe\\Reader 9.0\\Reader\\AcroBroker.exe\r\nC:\\Program Files\\Internet Explorer\\iexplore.exe\r\nC:\\Program Files\\Acer\\Empowering Technology\\NotificationCenter\\Framework.NotificationCenter.exe\r\nC:\\Program Files\\Internet Explorer\\iexplore.exe\r\nC:\\Program Files\\Trend Micro\\HijackThis\\HijackThis.exe\r\n\r\nR1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = [url]http://www.hyves.nl[/url]\r\nR1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url]\r\nR0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = [url]http://www.google.nl/[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url]\r\nR0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = [url]http://homepage.acer.com/rdr.aspx?b=ACAW&l=0413&s=2&o=vp32&d=0309&m=aspire_5735[/url]\r\nR0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,SearchAssistant = \r\nR0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Search,CustomizeSearch = \r\nR1 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Window Title = Windows Internet Explorer wordt aangeboden door Hyves\r\nR1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings,ProxyOverride = *.local\r\nR0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar,LinksFolderName = \r\nO1 - Hosts: ::1 localhost\r\nO2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\\Program Files\\Common Files\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll\r\nO2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)\r\nO2 - BHO: ShowBarObj Class - {83A2F9B1-01A2-4AA5-87D1-45B6B8505E96} - C:\\Program Files\\Acer\\Empowering Technology\\eDataSecurity\\x86\\ActiveToolBand.dll\r\nO2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\\Program Files\\Common Files\\Microsoft Shared\\Windows Live\\WindowsLiveLogin.dll\r\nO2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar.dll\r\nO2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\\Program Files\\Google\\GoogleToolbarNotifier\\5.0.926.3450\\swg.dll\r\nO2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\\Program Files\\Google\\Google Toolbar\\Component\\fastsearch_219B3E1547538286.dll\r\nO2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll\r\nO3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\\Program Files\\Acer\\Empowering Technology\\eDataSecurity\\x86\\eDStoolbar.dll\r\nO3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar.dll\r\nO4 - HKLM\\..\\Run: [Windows Defender] %ProgramFiles%\\Windows Defender\\MSASCui.exe -hide\r\nO4 - HKLM\\..\\Run: [SynTPEnh] C:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe\r\nO4 - HKLM\\..\\Run: [BkupTray] \"C:\\Program Files\\NewTech Infosystems\\NTI Backup Now 5\\BkupTray.exe\"\r\nO4 - HKLM\\..\\Run: [Google Desktop Search] \"C:\\Program Files\\Google\\Google Desktop Search\\GoogleDesktop.exe\" /startup\r\nO4 - HKLM\\..\\Run: [IgfxTray] C:\\Windows\\system32\\igfxtray.exe\r\nO4 - HKLM\\..\\Run: [HotKeysCmds] C:\\Windows\\system32\\hkcmd.exe\r\nO4 - HKLM\\..\\Run: [Persistence] C:\\Windows\\system32\\igfxpers.exe\r\nO4 - HKLM\\..\\Run: [RtHDVCpl] RtHDVCpl.exe\r\nO4 - HKLM\\..\\Run: [Skytel] Skytel.exe\r\nO4 - HKLM\\..\\Run: [LManager] C:\\PROGRA~1\\LAUNCH~1\\LManager.exe\r\nO4 - HKLM\\..\\Run: [eDataSecurity Loader] C:\\Program Files\\Acer\\Empowering Technology\\eDataSecurity\\x86\\eDSloader.exe\r\nO4 - HKLM\\..\\Run: [ePower_DMC] C:\\Program Files\\Acer\\Empowering Technology\\ePower\\ePower_DMC.exe\r\nO4 - HKLM\\..\\Run: [ArcadeDeluxeAgent] \"C:\\Program Files\\Acer Arcade Deluxe\\Acer Arcade Deluxe\\ArcadeDeluxeAgent.exe\"\r\nO4 - HKLM\\..\\Run: [CLMLServer] \"C:\\Program Files\\Acer Arcade Deluxe\\Acer Arcade Deluxe\\Kernel\\CLML\\CLMLSvc.exe\"\r\nO4 - HKLM\\..\\Run: [PlayMovie] \"C:\\Program Files\\Acer Arcade Deluxe\\PlayMovie\\PMVService.exe\"\r\nO4 - HKLM\\..\\Run: [avgnt] \"C:\\Program Files\\Avira\\AntiVir Desktop\\avgnt.exe\" /min\r\nO4 - HKLM\\..\\Run: [Adobe Reader Speed Launcher] \"C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe\"\r\nO4 - HKLM\\..\\Run: [AppleSyncNotifier] C:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\bin\\AppleSyncNotifier.exe\r\nO4 - HKLM\\..\\Run: [SunJavaUpdateSched] \"C:\\Program Files\\Java\\jre6\\bin\\jusched.exe\"\r\nO4 - HKLM\\..\\Run: [QuickTime Task] \"C:\\Program Files\\QuickTime\\QTTask.exe\" -atboottime\r\nO4 - HKLM\\..\\Run: [iTunesHelper] \"C:\\Program Files\\iTunes\\iTunesHelper.exe\"\r\nO4 - HKCU\\..\\Run: [swg] C:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe\r\nO4 - HKCU\\..\\Run: [msnmsgr] \"C:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe\" /background\r\nO4 - HKCU\\..\\Run: [uTorrent] \"C:\\Program Files\\uTorrent\\uTorrent.exe\"\r\nO4 - HKCU\\..\\Run: [WMPNSCFG] C:\\Program Files\\Windows Media Player\\WMPNSCFG.exe\r\nO4 - HKUS\\S-1-5-19\\..\\Run: [Sidebar] %ProgramFiles%\\Windows Sidebar\\Sidebar.exe /detectMem (User \'LOCAL SERVICE\')\r\nO4 - HKUS\\S-1-5-19\\..\\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User \'LOCAL SERVICE\')\r\nO4 - HKUS\\S-1-5-20\\..\\Run: [Sidebar] %ProgramFiles%\\Windows Sidebar\\Sidebar.exe /detectMem (User \'NETWORK SERVICE\')\r\nO4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\\Program Files\\Microsoft Office\\Office12\\ONENOTEM.EXE\r\nO4 - Global Startup: hpoddt01.exe.lnk = ?\r\nO8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\\PROGRA~1\\MI1933~1\\Office12\\EXCEL.EXE/3000\r\nO9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\\Program Files\\Windows Live\\Writer\\WriterBrowserExtension.dll\r\nO9 - Extra \'Tools\' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\\Program Files\\Windows Live\\Writer\\WriterBrowserExtension.dll\r\nO9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\PROGRA~1\\MI1933~1\\Office12\\ONBttnIE.dll\r\nO9 - Extra \'Tools\' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\PROGRA~1\\MI1933~1\\Office12\\ONBttnIE.dll\r\nO9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\\PROGRA~1\\MI1933~1\\Office12\\REFIEBAR.DLL\r\nO13 - Gopher Prefix: \r\nO16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} (Image Uploader Control) - [url]http://express.foto.com/ImageUploader5.cab[/url]\r\nO20 - AppInit_DLLs: C:\\PROGRA~1\\Google\\GOOGLE~1\\GOEC62~1.DLL\r\nO23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\\Windows\\system32\\agrsmsvc.exe\r\nO23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\\Program Files\\Avira\\AntiVir Desktop\\sched.exe\r\nO23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\\Program Files\\Avira\\AntiVir Desktop\\avguard.exe\r\nO23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\bin\\AppleMobileDeviceService.exe\r\nO23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\\Program Files\\Bonjour\\mDNSResponder.exe\r\nO23 - Service: NTI Backup Now 5 Agent Service (BUNAgentSvc) - NewTech Infosystems, Inc. - C:\\Program Files\\NewTech Infosystems\\NTI Backup Now 5\\Client\\Agentsvc.exe\r\nO23 - Service: CLHNService - Unknown owner - C:\\Program Files\\Acer Arcade Deluxe\\HomeMedia\\Kernel\\DMP\\CLHNService.exe\r\nO23 - Service: eDataSecurity Service - Egis Incorporated - C:\\Program Files\\Acer\\Empowering Technology\\eDataSecurity\\x86\\eDSService.exe\r\nO23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\\Program Files\\Acer\\Empowering Technology\\Service\\ETService.exe\r\nO23 - Service: Firebird Server - MAGIX Instance (FirebirdServerMAGIXInstance) - MAGIX® - C:\\Program Files\\MAGIX\\Common\\Database\\bin\\fbserver.exe\r\nO23 - Service: Google Desktop Manager 5.7.808.7150 (GoogleDesktopManager-080708-050100) - Google - C:\\Program Files\\Google\\Google Desktop Search\\GoogleDesktop.exe\r\nO23 - Service: Google Updater Service (gusvc) - Unknown owner - C:\\Program Files\\Google\\Common\\Google Updater\\GoogleUpdaterService.exe (file missing)\r\nO23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\\Program Files\\iPod\\bin\\iPodService.exe\r\nO23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\\Program Files\\Common Files\\LightScribe\\LSSrvc.exe\r\nO23 - Service: MobilityService - Unknown owner - C:\\Acer\\Mobility Center\\MobilityService.exe\r\nO23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\\Program Files\\NewTech Infosystems\\NTI Backup Now 5\\BackupSvc.exe\r\nO23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - Unknown owner - C:\\Program Files\\NewTech Infosystems\\NTI Backup Now 5\\SchedulerSvc.exe\r\nO23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - c:\\Program Files\\Cyberlink\\Shared files\\RichVideo.exe\r\n\r\n--\r\nEnd of file - 11303 bytes
Link naar reactie
  • 0
Het lijkt er op dat het hier om gewone SPAM gaat en niet om een besmetting op je PC. Professionele SPAMmers zullen ergens je Hotmailadres opgepikt hebben en gebruiken dit vermoedelijk om berichten te versturen.\r\n\r\nDit mag je nog wel eens uitvoeren :\r\n\r\nDownload [b][url=http://www.besttechie.net/tools/mbam-setup.exe]MBAM (Malwarebytes\' Anti-Malware).[/url][/b]\r\n\r\nDubbelklik op mbam-setup.exe om het programma te installeren.\r\n\r\nZorg ervoor dat er een vinkje geplaatst is voor Update Malwarebytes\' Anti-Malware en Start Malwarebytes\' Anti-Malware, Klik daarna op \"Voltooien\".\r\nIndien een update gevonden werd, zal die gedownload en geïnstalleerd worden.\r\nWanneer het programma volledig up to date is, selecteer dan in het tabblad Scanner : \"Snelle Scan\", daarna klik op Scan.\r\nHet scannen kan een tijdje duren, dus wees geduldig.\r\nWanneer de scan voltooid is, klik op OK, daarna \"Bekijk Resultaten\" om de resultaten te zien.\r\nZorg ervoor dat daar alles aangevinkt is, daarna klik op: Verwijder geselecteerde.\r\nNa het verwijderen zal een log openen en zal er gevraagd worden om de computer opnieuw op te starten. (Zie verder). \r\n\r\nIndien er de rootkit (TDSS) aanwezig is, zal MBAM vragen te herstarten. Doe dit dan ook.\r\nMBAM zal na de herstart opnieuw scannen en de rootkit verwijderen.\r\n\r\nHet log wordt automatisch bewaard door MBAM en kan je terugvinden door op de \"Logs\" tab te klikken in het programma.\r\n\r\nIndien MBAM moeilijkheden heeft met het verwijderen van bepaalde bestanden zal het enkele meldingen geven waar je OK moet klikken. Daarna zal het vragen om de computer opnieuw op te starten... dus sta toe dat MBAM de computer opnieuw opstart.\r\n\r\nPlak de inhoud van het logje in je volgende bericht.
Link naar reactie

Om een reactie te plaatsen, moet je eerst inloggen

Gast
Antwoord op deze vraag...

×   Geplakt als verrijkte tekst.   Herstel opmaak

  Er zijn maximaal 75 emoji toegestaan.

×   Je link werd automatisch ingevoegd.   Tonen als normale link

×   Je vorige inhoud werd hersteld.   Leeg de tekstverwerker

×   Je kunt afbeeldingen niet direct plakken. Upload of voeg afbeeldingen vanaf een URL in

  • Populaire leden

    Er is nog niemand die deze week reputatie heeft ontvangen.

  • Leden

    Geen leden om te tonen

×
×
  • Nieuwe aanmaken...