Anoniem2 Geplaatst: 26 december 2012 Delen Geplaatst: 26 december 2012 Hallo allemaal,\r\n\r\nMijn computer is de laatste tijd stuk trager geworden. ik ben bang dat hij iets onder de leden heeft.\r\n\r\nalvast bedankt\r\n\r\n[QUOTE]Logfile of Trend Micro HijackThis v2.0.4\r\nScan saved at 21:23:42, on 26-12-2012\r\nPlatform: Windows XP SP3 (WinNT 5.01.2600)\r\nMSIE: Internet Explorer v8.00 (8.00.6001.18702)\r\nBoot mode: Normal\r\n\r\nRunning processes:\r\nC:\\WINDOWS\\System32\\smss.exe\r\nC:\\PROGRA~1\\AVG\\AVG2012\\avgrsx.exe\r\nC:\\Program Files\\AVG\\AVG2012\\avgcsrvx.exe\r\nC:\\WINDOWS\\system32\\winlogon.exe\r\nC:\\WINDOWS\\system32\\services.exe\r\nC:\\WINDOWS\\system32\\lsass.exe\r\nC:\\WINDOWS\\system32\\svchost.exe\r\nC:\\WINDOWS\\System32\\svchost.exe\r\nC:\\WINDOWS\\system32\\spoolsv.exe\r\nC:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\AppleMobileDeviceService.exe\r\nC:\\Program Files\\AVG\\AVG2012\\avgwdsvc.exe\r\nC:\\Program Files\\Bonjour\\mDNSResponder.exe\r\nC:\\Program Files\\CyberLink\\PowerDVD11\\Kernel\\DMP\\CLHNServiceForPowerDVD.exe\r\nC:\\Program Files\\CyberLink\\PowerDVD11\\Common\\MediaServer\\CLMSMonitorService.exe\r\nC:\\Program Files\\CyberLink\\PowerDVD11\\Common\\MediaServer\\CLMSServerForPDVD11.exe\r\nC:\\Program Files\\Oracle\\JavaFX 2.1 Runtime\\bin\\jqs.exe\r\nC:\\Program Files\\Nitro PDF\\Professional\\NitroPDFDriverService.exe\r\nC:\\WINDOWS\\system32\\NLSSRV32.EXE\r\nC:\\Program Files\\SoftwareForMe Inc\\PhoneMyPC\\PhoneMyPC_Helper.exe\r\nC:\\Program Files\\AVG\\AVG2012\\avgnsx.exe\r\nC:\\Program Files\\AVG\\AVG2012\\avgemcx.exe\r\nC:\\WINDOWS\\Explorer.EXE\r\nC:\\Program Files\\SoftwareForMe Inc\\PhoneMyPC\\PhoneMyPC.exe\r\nC:\\Program Files\\Linksys Wireless-G PCI Wireless Network Monitor\\WLService.exe\r\nC:\\Program Files\\Linksys Wireless-G PCI Wireless Network Monitor\\WMP54Gv4.exe\r\nC:\\WINDOWS\\system32\\SearchIndexer.exe\r\nC:\\Program Files\\AVG\\AVG2012\\AVGIDSAgent.exe\r\nC:\\Program Files\\AVG\\AVG2012\\avgtray.exe\r\nC:\\WINDOWS\\system32\\igfxtray.exe\r\nC:\\WINDOWS\\system32\\hkcmd.exe\r\nC:\\WINDOWS\\system32\\igfxpers.exe\r\nC:\\WINDOWS\\RTHDCPL.EXE\r\nC:\\WINDOWS\\system32\\igfxsrvc.exe\r\nC:\\Program Files\\CyberLink\\PowerDVD11\\PDVD11Serv.exe\r\nC:\\Documents and Settings\\All Users\\Application Data\\LGMOBILEAX\\B2C_Client\\B2CNotiAgent.exe\r\nC:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\r\nC:\\Program Files\\Microsoft IntelliType Pro\\itype.exe\r\nC:\\Program Files\\Microsoft IntelliPoint\\ipoint.exe\r\nC:\\Program Files\\iTunes\\iTunesHelper.exe\r\nC:\\WINDOWS\\system32\\ctfmon.exe\r\nC:\\Documents and Settings\\Eigenaar\\Application Data\\Spotify\\Data\\SpotifyWebHelper.exe\r\nC:\\Program Files\\iPod\\bin\\iPodService.exe\r\nC:\\Documents and Settings\\Eigenaar\\Application Data\\Dropbox\\bin\\Dropbox.exe\r\nC:\\Documents and Settings\\Eigenaar\\Application Data\\TorrentStream\\updater\\tsupdate.exe\r\nC:\\Documents and Settings\\Eigenaar\\Application Data\\Spotify\\spotify.exe\r\nC:\\Program Files\\iTunes\\iTunes.exe\r\nC:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\AppleMobileDeviceHelper.exe\r\nC:\\Program Files\\Common Files\\Apple\\Apple Application Support\\distnoted.exe\r\nC:\\Program Files\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\r\nC:\\PROGRA~1\\MICROS~3\\Office14\\OUTLOOK.EXE\r\nC:\\Program Files\\AVG\\AVG2012\\avgcsrvx.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Program Files\\AVG\\AVG2012\\avgui.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\WINDOWS\\system32\\SearchProtocolHost.exe\r\nC:\\Program Files\\hij\\Trend Micro\\HiJackThis\\HiJackThis.exe\r\n\r\nR0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = [url]http://search.conduit.com?SearchSource=10&ctid=CT1060933[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = [url]http://go.microsoft.com/fwlink/?LinkId=69157[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url]\r\nR0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = [url]http://go.microsoft.com/fwlink/?LinkId=69157[/url]\r\nR1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings,ProxyOverride = *.local\r\nR0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar,LinksFolderName = Koppelingen\r\nO2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\\Program Files\\Common Files\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll\r\nO2 - BHO: AVG Do Not Track - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\\Program Files\\AVG\\AVG2012\\avgdtiex.dll\r\nO2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\\Program Files\\AVG\\AVG2012\\avgssie.dll\r\nO2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)\r\nO2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\\PROGRA~1\\MICROS~3\\Office14\\GROOVEEX.DLL\r\nO2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\\Program Files\\Oracle\\JavaFX 2.1 Runtime\\bin\\ssv.dll\r\nO2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\\Program Files\\Common Files\\Microsoft Shared\\Windows Live\\WindowsLiveLogin.dll\r\nO2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\\PROGRA~1\\MICROS~3\\Office14\\URLREDIR.DLL\r\nO2 - BHO: Help the General-Search Project - {CA4520F3-AE13-4FB1-A513-58E23991C86D} - C:\\DOCUME~1\\Eigenaar~1\\APPLIC~1\\MEDIAF~1\\EXTENS~1\\GENCRA~1.DLL\r\nO2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\\Program Files\\Oracle\\JavaFX 2.1 Runtime\\bin\\jp2ssv.dll\r\nO2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\\Program Files\\Yontoo\\YontooIEClient.dll\r\nO4 - HKLM\\..\\Run: [AVG_TRAY] \"C:\\Program Files\\AVG\\AVG2012\\avgtray.exe\"\r\nO4 - HKLM\\..\\Run: [IgfxTray] C:\\WINDOWS\\system32\\igfxtray.exe\r\nO4 - HKLM\\..\\Run: [HotKeysCmds] C:\\WINDOWS\\system32\\hkcmd.exe\r\nO4 - HKLM\\..\\Run: [Persistence] C:\\WINDOWS\\system32\\igfxpers.exe\r\nO4 - HKLM\\..\\Run: [RTHDCPL] RTHDCPL.EXE\r\nO4 - HKLM\\..\\Run: [SkyTel] SkyTel.EXE\r\nO4 - HKLM\\..\\Run: [Alcmtr] ALCMTR.EXE\r\nO4 - HKLM\\..\\Run: [RemoteControl11] C:\\Program Files\\CyberLink\\PowerDVD11\\PDVD11Serv.exe\r\nO4 - HKLM\\..\\Run: [AdobeAAMUpdater-1.0] \"C:\\Program Files\\Common Files\\Adobe\\OOBE\\PDApp\\UWA\\UpdaterStartupUtility.exe\"\r\nO4 - HKLM\\..\\Run: [SwitchBoard] C:\\Program Files\\Common Files\\Adobe\\SwitchBoard\\SwitchBoard.exe\r\nO4 - HKLM\\..\\Run: [AdobeCS5.5ServiceManager] \"C:\\Program Files\\Common Files\\Adobe\\CS5.5ServiceManager\\CS5.5ServiceManager.exe\" -launchedbylogin\r\nO4 - HKLM\\..\\Run: [LogMeIn GUI] \"C:\\Program Files\\LogMeIn\\x86\\LogMeInSystray.exe\"\r\nO4 - HKLM\\..\\Run: [B2C_AGENT] C:\\Documents and Settings\\All Users\\Application Data\\LGMOBILEAX\\B2C_Client\\B2CNotiAgent.exe\r\nO4 - HKLM\\..\\Run: [APSDaemon] \"C:\\Program Files\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\"\r\nO4 - HKLM\\..\\Run: [Adobe ARM] \"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"\r\nO4 - HKLM\\..\\Run: [UserFaultCheck] %systemroot%\\system32\\dumprep 0 -u\r\nO4 - HKLM\\..\\Run: [Freecorder FLV Service] \"C:\\Program Files\\Freecorder\\FLVSrvc.exe\" /run\r\nO4 - HKLM\\..\\Run: [SunJavaUpdateSched] \"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\"\r\nO4 - HKLM\\..\\Run: [itype] \"C:\\Program Files\\Microsoft IntelliType Pro\\itype.exe\"\r\nO4 - HKLM\\..\\Run: [IntelliPoint] \"C:\\Program Files\\Microsoft IntelliPoint\\ipoint.exe\"\r\nO4 - HKLM\\..\\Run: [iTunesHelper] \"C:\\Program Files\\iTunes\\iTunesHelper.exe\"\r\nO4 - HKCU\\..\\Run: [AlcoholAutomount] \"C:\\Program Files\\Alcohol Soft\\Alcohol 120\\AxAutoMntSrv.exe\" -automount\r\nO4 - HKCU\\..\\Run: [ctfmon.exe] C:\\WINDOWS\\system32\\ctfmon.exe\r\nO4 - HKCU\\..\\Run: [Google Update] \"C:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Update\\GoogleUpdate.exe\" /c\r\nO4 - HKCU\\..\\Run: [Spotify Web Helper] \"C:\\Documents and Settings\\Eigenaar\\Application Data\\Spotify\\Data\\SpotifyWebHelper.exe\"\r\nO4 - HKCU\\..\\Run: [Media Finder] \"C:\\Program Files\\Media Finder\\Media Finder.exe\" /opentotray\r\nO4 - HKCU\\..\\Run: [TorrentStream] C:\\Documents and Settings\\Eigenaar\\Application Data\\TorrentStream\\engine\\tsengine.exe\r\nO4 - HKCU\\..\\Run: [Spotify] \"C:\\Documents and Settings\\Eigenaar\\Application Data\\Spotify\\Spotify.exe\" /uri spotify:autostart\r\nO4 - HKUS\\S-1-5-19\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'Lokale service\')\r\nO4 - HKUS\\S-1-5-20\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'Netwerkservice\')\r\nO4 - HKUS\\S-1-5-21-1935655697-1647877149-839522115-1006\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'postgres\')\r\nO4 - HKUS\\S-1-5-18\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'SYSTEM\')\r\nO4 - HKUS\\.DEFAULT\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'Default user\')\r\nO4 - Startup: Dropbox.lnk = C:\\Documents and Settings\\Eigenaar\\Application Data\\Dropbox\\bin\\Dropbox.exe\r\nO4 - Startup: OUTLOOK.lnk = C:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE\r\nO8 - Extra context menu item: Download with &Media Finder - C:\\Program Files\\Media Finder\\hook.html\r\nO8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\\PROGRA~1\\MICROS~3\\Office14\\EXCEL.EXE/3000\r\nO8 - Extra context menu item: Se&nd to OneNote - res://C:\\PROGRA~1\\MICROS~3\\Office14\\ONBttnIE.dll/105\r\nO9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\Program Files\\Microsoft Office\\Office14\\ONBttnIE.dll\r\nO9 - Extra \'Tools\' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\Program Files\\Microsoft Office\\Office14\\ONBttnIE.dll\r\nO9 - Extra button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\\Program Files\\AVG\\AVG2012\\avgdtiex.dll\r\nO9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\\Program Files\\Microsoft Office\\Office14\\ONBttnIELinkedNotes.dll\r\nO9 - Extra \'Tools\' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\\Program Files\\Microsoft Office\\Office14\\ONBttnIELinkedNotes.dll\r\nO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe\r\nO9 - Extra \'Tools\' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe\r\nO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe\r\nO9 - Extra \'Tools\' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe\r\nO16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - [url]http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1342354108099[/url]\r\nO18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\\Program Files\\AVG\\AVG2012\\avgpp.dll\r\nO18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\\Program Files\\Common Files\\Microsoft Shared\\OFFICE14\\MSOXMLMF.DLL\r\nO20 - AppInit_DLLs: c:\\docume~1\\alluse~1\\applic~1\\browse~1\\23796~1.11\\{16cdf~1\\browse~1.dll\r\nO22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\\WINDOWS\\system32\\browseui.dll\r\nO22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\\WINDOWS\\system32\\browseui.dll\r\nO23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\\WINDOWS\\system32\\Macromed\\Flash\\FlashPlayerUpdateService.exe\r\nO23 - Service: Apple Mobile Device - Apple Inc. - C:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\AppleMobileDeviceService.exe\r\nO23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\\Program Files\\AVG\\AVG2012\\AVGIDSAgent.exe\r\nO23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\\Program Files\\AVG\\AVG2012\\avgwdsvc.exe\r\nO23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\\Program Files\\Bonjour\\mDNSResponder.exe\r\nO23 - Service: CLHNServiceForPowerDVD - Unknown owner - C:\\Program Files\\CyberLink\\PowerDVD11\\Kernel\\DMP\\CLHNServiceForPowerDVD.exe\r\nO23 - Service: CyberLink PowerDVD 11.0 Monitor Service - CyberLink - C:\\Program Files\\CyberLink\\PowerDVD11\\Common\\MediaServer\\CLMSMonitorService.exe\r\nO23 - Service: CyberLink PowerDVD 11.0 Service - CyberLink - C:\\Program Files\\CyberLink\\PowerDVD11\\Common\\MediaServer\\CLMSServerForPDVD11.exe\r\nO23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\\Program Files\\Common Files\\Macrovision Shared\\FLEXnet Publisher\\FNPLicensingService.exe\r\nO23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\\Program Files\\iPod\\bin\\iPodService.exe\r\nO23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\\Program Files\\Oracle\\JavaFX 2.1 Runtime\\bin\\jqs.exe\r\nO23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\\Program Files\\Mozilla Maintenance Service\\maintenanceservice.exe\r\nO23 - Service: NitroPDFDriverCreatorReadSpool (NitroDriverReadSpool) - Nitro PDF Software - C:\\Program Files\\Nitro PDF\\Professional\\NitroPDFDriverService.exe\r\nO23 - Service: NLS Service (nlsX86cc) - Nalpeiron Ltd. - C:\\WINDOWS\\system32\\NLSSRV32.EXE\r\nO23 - Service: PhoneMyPC_Helper - SoftwareForMe Inc - C:\\Program Files\\SoftwareForMe Inc\\PhoneMyPC\\PhoneMyPC_Helper.exe\r\nO23 - Service: PostgreSQL Server 8.4 (postgresql-8.4) - PostgreSQL Global Development Group - C:/Program Files/PostgreSQL/8.4/bin/pg_ctl.exe\r\nO23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\\Program Files\\Alcohol Soft\\Alcohol 120\\StarWind\\StarWindServiceAE.exe\r\nO23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\\Program Files\\Common Files\\Adobe\\SwitchBoard\\SwitchBoard.exe\r\nO23 - Service: WMP54Gv4SVC - GEMTEKS - C:\\Program Files\\Linksys Wireless-G PCI Wireless Network Monitor\\WLService.exe\r\n\r\n--\r\nEnd of file - 15166 bytes\r\n\r\n[/QUOTE] Quote Link naar reactie
0 Anoniem2 Geplaatst: 26 december 2012 Auteur Delen Geplaatst: 26 december 2012 Hallo Hoppeta.\n\ndeze hjt log entries mag je zeker weghalen :\n\nR0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = [url]http://search.conduit.com?SearchSour...ctid=CT1060933[/url]\n\nR1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Int ernet Settings,ProxyOverride = *.local\n\nO2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)\n\nO2 - BHO: Help the General-Search Project - {CA4520F3-AE13-4FB1-A513-58E23991C86D} - C:\\DOCUME~1\\Eigenaar~1\\APPLIC~1\\MEDIAF~1\\EXTENS~1\\ GENCRA~1.DLL\n\nverder zou ik je adviseren , om malwarebytes antimalware te downloaden en te installeren en te updaten en daarna een volledige systeemscan met dit programma te doen.\n\nlaat mij even weten , of het iets heeft verbeterd. Quote Link naar reactie
0 Anoniem2 Geplaatst: 26 december 2012 Auteur Delen Geplaatst: 26 december 2012 en daarna: in ccleaner/gereedschap/opstarten cq in msconfig mag je alles uitzetten behalve je virusbeschermer. moet je eens zien hoe snel die dan wordt.\r\nwel ook nog: deínstalleer avg 2012, want die vertraagt xp tegenwoordig, en installeer avg 2013, en pas ervoor op dat je geen searchj- en security- toolbar meeïnstalleert. Quote Link naar reactie
0 Anoniem2 Geplaatst: 27 december 2012 Auteur Delen Geplaatst: 27 december 2012 Kijk even in msconfig wat er allemaal mee start met Windows. Ik heb het vermoeden dat dit een hele lijst is...\nVerder kan je [URL=\"http://hijackthis.de/en\"]hier[/URL] je lijst zelf ook even checken. Quote Link naar reactie
0 Anoniem2 Geplaatst: 27 december 2012 Auteur Delen Geplaatst: 27 december 2012 [QUOTE]deze hjt log entries mag je zeker weghalen :\n\nR0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = [url]http://search.conduit.com?SearchSour...ctid=CT1060933[/url]\n\nR1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Int ernet Settings,ProxyOverride = *.local\n\nO2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)\n\nO2 - BHO: Help the General-Search Project - {CA4520F3-AE13-4FB1-A513-58E23991C86D} - C:\\DOCUME~1\\Eigenaar~1\\APPLIC~1\\MEDIAF~1\\EXTENS~1\\ GENCRA~1.DLL[/QUOTE]\n\nEven voor de zekerheid dit doe je door in het programma HijackThis de genoemde onderdelen te selecteren en op fix checked te klikken Quote Link naar reactie
0 Anoniem2 Geplaatst: 27 december 2012 Auteur Delen Geplaatst: 27 december 2012 [QUOTE=hoppeta;629436]Even voor de zekerheid dit doe je door in het programma HijackThis de genoemde onderdelen te selecteren en op fix checked te klikken[/QUOTE]\r\n\r\nJa, simpel als dat. Quote Link naar reactie
0 Anoniem2 Geplaatst: 27 december 2012 Auteur Delen Geplaatst: 27 december 2012 [QUOTE]en daarna: in ccleaner/gereedschap/opstarten cq in msconfig mag je alles uitzetten behalve je virusbeschermer. moet je eens zien hoe snel die dan wordt.[/QUOTE]\n\nKan ik echt ALLES uitzetten (behalve de virusbeschermer). ook dit soort dingen, waar ik geen idee heb wat het is?\n\nctfmon.exe C:\\WINDOWS\\system32\\ctfmon.exe\nIgfxTray C:\\WINDOWS\\system32\\igfxtray.exe\nHotKeysCmds C:\\WINDOWS\\system32\\hkcmd.exe\nPersistence C:\\WINDOWS\\system32\\igfxpers.exe\nRTHDCPL RTHDCPL.EXE\nSkyTel SkyTel.EXE\nAlcmtr ALCMTR.EXE\nUserFaultCheck %systemroot%\\system32\\dumprep 0 -u Quote Link naar reactie
0 Anoniem2 Geplaatst: 28 december 2012 Auteur Delen Geplaatst: 28 december 2012 Het is ten hoogste aan te raden , om system32 files gewoon aan te laten staan , dit ten behoeve van een stabiel funcitionerend systeem .\n\nALCMTR.EXE , SKYTEL.EXE en RTHDCPL.EXE , zij afkomstig van je realtek audio programma , deze proxessesen kun je eventueel uitzetten , maar houdt er rekening mee, dat je zo je geluidskaart niet kunt aansturen , om voor speciale geluidseffecten te kiezen , ik zet deze persoonlijk wel altijd uit.\nUserFaultCheck %systemroot%\\system32\\dumprep 0 -u , deze kan je ook van je opstartlijst verwijderen. heb je trouwens nog een systeemscan gedaan mat malwarebytes anti malware??? Quote Link naar reactie
Vraag
Anoniem2
Link naar reactie
7 antwoorden op deze vraag
Aanbevolen berichten
Om een reactie te plaatsen, moet je eerst inloggen