Ga naar inhoud
  • 0

Hijackthis Hoppeta


Anoniem2

Vraag

Hallo allemaal,\r\n\r\nMijn computer is de laatste tijd stuk trager geworden. ik ben bang dat hij iets onder de leden heeft.\r\n\r\nalvast bedankt\r\n\r\n[QUOTE]Logfile of Trend Micro HijackThis v2.0.4\r\nScan saved at 21:23:42, on 26-12-2012\r\nPlatform: Windows XP SP3 (WinNT 5.01.2600)\r\nMSIE: Internet Explorer v8.00 (8.00.6001.18702)\r\nBoot mode: Normal\r\n\r\nRunning processes:\r\nC:\\WINDOWS\\System32\\smss.exe\r\nC:\\PROGRA~1\\AVG\\AVG2012\\avgrsx.exe\r\nC:\\Program Files\\AVG\\AVG2012\\avgcsrvx.exe\r\nC:\\WINDOWS\\system32\\winlogon.exe\r\nC:\\WINDOWS\\system32\\services.exe\r\nC:\\WINDOWS\\system32\\lsass.exe\r\nC:\\WINDOWS\\system32\\svchost.exe\r\nC:\\WINDOWS\\System32\\svchost.exe\r\nC:\\WINDOWS\\system32\\spoolsv.exe\r\nC:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\AppleMobileDeviceService.exe\r\nC:\\Program Files\\AVG\\AVG2012\\avgwdsvc.exe\r\nC:\\Program Files\\Bonjour\\mDNSResponder.exe\r\nC:\\Program Files\\CyberLink\\PowerDVD11\\Kernel\\DMP\\CLHNServiceForPowerDVD.exe\r\nC:\\Program Files\\CyberLink\\PowerDVD11\\Common\\MediaServer\\CLMSMonitorService.exe\r\nC:\\Program Files\\CyberLink\\PowerDVD11\\Common\\MediaServer\\CLMSServerForPDVD11.exe\r\nC:\\Program Files\\Oracle\\JavaFX 2.1 Runtime\\bin\\jqs.exe\r\nC:\\Program Files\\Nitro PDF\\Professional\\NitroPDFDriverService.exe\r\nC:\\WINDOWS\\system32\\NLSSRV32.EXE\r\nC:\\Program Files\\SoftwareForMe Inc\\PhoneMyPC\\PhoneMyPC_Helper.exe\r\nC:\\Program Files\\AVG\\AVG2012\\avgnsx.exe\r\nC:\\Program Files\\AVG\\AVG2012\\avgemcx.exe\r\nC:\\WINDOWS\\Explorer.EXE\r\nC:\\Program Files\\SoftwareForMe Inc\\PhoneMyPC\\PhoneMyPC.exe\r\nC:\\Program Files\\Linksys Wireless-G PCI Wireless Network Monitor\\WLService.exe\r\nC:\\Program Files\\Linksys Wireless-G PCI Wireless Network Monitor\\WMP54Gv4.exe\r\nC:\\WINDOWS\\system32\\SearchIndexer.exe\r\nC:\\Program Files\\AVG\\AVG2012\\AVGIDSAgent.exe\r\nC:\\Program Files\\AVG\\AVG2012\\avgtray.exe\r\nC:\\WINDOWS\\system32\\igfxtray.exe\r\nC:\\WINDOWS\\system32\\hkcmd.exe\r\nC:\\WINDOWS\\system32\\igfxpers.exe\r\nC:\\WINDOWS\\RTHDCPL.EXE\r\nC:\\WINDOWS\\system32\\igfxsrvc.exe\r\nC:\\Program Files\\CyberLink\\PowerDVD11\\PDVD11Serv.exe\r\nC:\\Documents and Settings\\All Users\\Application Data\\LGMOBILEAX\\B2C_Client\\B2CNotiAgent.exe\r\nC:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\r\nC:\\Program Files\\Microsoft IntelliType Pro\\itype.exe\r\nC:\\Program Files\\Microsoft IntelliPoint\\ipoint.exe\r\nC:\\Program Files\\iTunes\\iTunesHelper.exe\r\nC:\\WINDOWS\\system32\\ctfmon.exe\r\nC:\\Documents and Settings\\Eigenaar\\Application Data\\Spotify\\Data\\SpotifyWebHelper.exe\r\nC:\\Program Files\\iPod\\bin\\iPodService.exe\r\nC:\\Documents and Settings\\Eigenaar\\Application Data\\Dropbox\\bin\\Dropbox.exe\r\nC:\\Documents and Settings\\Eigenaar\\Application Data\\TorrentStream\\updater\\tsupdate.exe\r\nC:\\Documents and Settings\\Eigenaar\\Application Data\\Spotify\\spotify.exe\r\nC:\\Program Files\\iTunes\\iTunes.exe\r\nC:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\AppleMobileDeviceHelper.exe\r\nC:\\Program Files\\Common Files\\Apple\\Apple Application Support\\distnoted.exe\r\nC:\\Program Files\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\r\nC:\\PROGRA~1\\MICROS~3\\Office14\\OUTLOOK.EXE\r\nC:\\Program Files\\AVG\\AVG2012\\avgcsrvx.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Program Files\\AVG\\AVG2012\\avgui.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe\r\nC:\\WINDOWS\\system32\\SearchProtocolHost.exe\r\nC:\\Program Files\\hij\\Trend Micro\\HiJackThis\\HiJackThis.exe\r\n\r\nR0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = [url]http://search.conduit.com?SearchSource=10&ctid=CT1060933[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = [url]http://go.microsoft.com/fwlink/?LinkId=69157[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Default_Search_URL = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url]\r\nR1 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Search Page = [url]http://go.microsoft.com/fwlink/?LinkId=54896[/url]\r\nR0 - HKLM\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = [url]http://go.microsoft.com/fwlink/?LinkId=69157[/url]\r\nR1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings,ProxyOverride = *.local\r\nR0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Toolbar,LinksFolderName = Koppelingen\r\nO2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\\Program Files\\Common Files\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll\r\nO2 - BHO: AVG Do Not Track - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\\Program Files\\AVG\\AVG2012\\avgdtiex.dll\r\nO2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\\Program Files\\AVG\\AVG2012\\avgssie.dll\r\nO2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)\r\nO2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\\PROGRA~1\\MICROS~3\\Office14\\GROOVEEX.DLL\r\nO2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\\Program Files\\Oracle\\JavaFX 2.1 Runtime\\bin\\ssv.dll\r\nO2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\\Program Files\\Common Files\\Microsoft Shared\\Windows Live\\WindowsLiveLogin.dll\r\nO2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\\PROGRA~1\\MICROS~3\\Office14\\URLREDIR.DLL\r\nO2 - BHO: Help the General-Search Project - {CA4520F3-AE13-4FB1-A513-58E23991C86D} - C:\\DOCUME~1\\Eigenaar~1\\APPLIC~1\\MEDIAF~1\\EXTENS~1\\GENCRA~1.DLL\r\nO2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\\Program Files\\Oracle\\JavaFX 2.1 Runtime\\bin\\jp2ssv.dll\r\nO2 - BHO: Yontoo Layers - {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - C:\\Program Files\\Yontoo\\YontooIEClient.dll\r\nO4 - HKLM\\..\\Run: [AVG_TRAY] \"C:\\Program Files\\AVG\\AVG2012\\avgtray.exe\"\r\nO4 - HKLM\\..\\Run: [IgfxTray] C:\\WINDOWS\\system32\\igfxtray.exe\r\nO4 - HKLM\\..\\Run: [HotKeysCmds] C:\\WINDOWS\\system32\\hkcmd.exe\r\nO4 - HKLM\\..\\Run: [Persistence] C:\\WINDOWS\\system32\\igfxpers.exe\r\nO4 - HKLM\\..\\Run: [RTHDCPL] RTHDCPL.EXE\r\nO4 - HKLM\\..\\Run: [SkyTel] SkyTel.EXE\r\nO4 - HKLM\\..\\Run: [Alcmtr] ALCMTR.EXE\r\nO4 - HKLM\\..\\Run: [RemoteControl11] C:\\Program Files\\CyberLink\\PowerDVD11\\PDVD11Serv.exe\r\nO4 - HKLM\\..\\Run: [AdobeAAMUpdater-1.0] \"C:\\Program Files\\Common Files\\Adobe\\OOBE\\PDApp\\UWA\\UpdaterStartupUtility.exe\"\r\nO4 - HKLM\\..\\Run: [SwitchBoard] C:\\Program Files\\Common Files\\Adobe\\SwitchBoard\\SwitchBoard.exe\r\nO4 - HKLM\\..\\Run: [AdobeCS5.5ServiceManager] \"C:\\Program Files\\Common Files\\Adobe\\CS5.5ServiceManager\\CS5.5ServiceManager.exe\" -launchedbylogin\r\nO4 - HKLM\\..\\Run: [LogMeIn GUI] \"C:\\Program Files\\LogMeIn\\x86\\LogMeInSystray.exe\"\r\nO4 - HKLM\\..\\Run: [B2C_AGENT] C:\\Documents and Settings\\All Users\\Application Data\\LGMOBILEAX\\B2C_Client\\B2CNotiAgent.exe\r\nO4 - HKLM\\..\\Run: [APSDaemon] \"C:\\Program Files\\Common Files\\Apple\\Apple Application Support\\APSDaemon.exe\"\r\nO4 - HKLM\\..\\Run: [Adobe ARM] \"C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\"\r\nO4 - HKLM\\..\\Run: [UserFaultCheck] %systemroot%\\system32\\dumprep 0 -u\r\nO4 - HKLM\\..\\Run: [Freecorder FLV Service] \"C:\\Program Files\\Freecorder\\FLVSrvc.exe\" /run\r\nO4 - HKLM\\..\\Run: [SunJavaUpdateSched] \"C:\\Program Files\\Common Files\\Java\\Java Update\\jusched.exe\"\r\nO4 - HKLM\\..\\Run: [itype] \"C:\\Program Files\\Microsoft IntelliType Pro\\itype.exe\"\r\nO4 - HKLM\\..\\Run: [IntelliPoint] \"C:\\Program Files\\Microsoft IntelliPoint\\ipoint.exe\"\r\nO4 - HKLM\\..\\Run: [iTunesHelper] \"C:\\Program Files\\iTunes\\iTunesHelper.exe\"\r\nO4 - HKCU\\..\\Run: [AlcoholAutomount] \"C:\\Program Files\\Alcohol Soft\\Alcohol 120\\AxAutoMntSrv.exe\" -automount\r\nO4 - HKCU\\..\\Run: [ctfmon.exe] C:\\WINDOWS\\system32\\ctfmon.exe\r\nO4 - HKCU\\..\\Run: [Google Update] \"C:\\Documents and Settings\\Eigenaar\\Local Settings\\Application Data\\Google\\Update\\GoogleUpdate.exe\" /c\r\nO4 - HKCU\\..\\Run: [Spotify Web Helper] \"C:\\Documents and Settings\\Eigenaar\\Application Data\\Spotify\\Data\\SpotifyWebHelper.exe\"\r\nO4 - HKCU\\..\\Run: [Media Finder] \"C:\\Program Files\\Media Finder\\Media Finder.exe\" /opentotray\r\nO4 - HKCU\\..\\Run: [TorrentStream] C:\\Documents and Settings\\Eigenaar\\Application Data\\TorrentStream\\engine\\tsengine.exe\r\nO4 - HKCU\\..\\Run: [Spotify] \"C:\\Documents and Settings\\Eigenaar\\Application Data\\Spotify\\Spotify.exe\" /uri spotify:autostart\r\nO4 - HKUS\\S-1-5-19\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'Lokale service\')\r\nO4 - HKUS\\S-1-5-20\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'Netwerkservice\')\r\nO4 - HKUS\\S-1-5-21-1935655697-1647877149-839522115-1006\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'postgres\')\r\nO4 - HKUS\\S-1-5-18\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'SYSTEM\')\r\nO4 - HKUS\\.DEFAULT\\..\\Run: [CTFMON.EXE] C:\\WINDOWS\\system32\\CTFMON.EXE (User \'Default user\')\r\nO4 - Startup: Dropbox.lnk = C:\\Documents and Settings\\Eigenaar\\Application Data\\Dropbox\\bin\\Dropbox.exe\r\nO4 - Startup: OUTLOOK.lnk = C:\\Program Files\\Microsoft Office\\Office14\\OUTLOOK.EXE\r\nO8 - Extra context menu item: Download with &Media Finder - C:\\Program Files\\Media Finder\\hook.html\r\nO8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\\PROGRA~1\\MICROS~3\\Office14\\EXCEL.EXE/3000\r\nO8 - Extra context menu item: Se&nd to OneNote - res://C:\\PROGRA~1\\MICROS~3\\Office14\\ONBttnIE.dll/105\r\nO9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\Program Files\\Microsoft Office\\Office14\\ONBttnIE.dll\r\nO9 - Extra \'Tools\' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\Program Files\\Microsoft Office\\Office14\\ONBttnIE.dll\r\nO9 - Extra button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\\Program Files\\AVG\\AVG2012\\avgdtiex.dll\r\nO9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\\Program Files\\Microsoft Office\\Office14\\ONBttnIELinkedNotes.dll\r\nO9 - Extra \'Tools\' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\\Program Files\\Microsoft Office\\Office14\\ONBttnIELinkedNotes.dll\r\nO9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe\r\nO9 - Extra \'Tools\' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\\WINDOWS\\Network Diagnostic\\xpnetdiag.exe\r\nO9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe\r\nO9 - Extra \'Tools\' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\\Program Files\\Messenger\\msmsgs.exe\r\nO16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - [url]http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1342354108099[/url]\r\nO18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\\Program Files\\AVG\\AVG2012\\avgpp.dll\r\nO18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\\Program Files\\Common Files\\Microsoft Shared\\OFFICE14\\MSOXMLMF.DLL\r\nO20 - AppInit_DLLs: c:\\docume~1\\alluse~1\\applic~1\\browse~1\\23796~1.11\\{16cdf~1\\browse~1.dll\r\nO22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\\WINDOWS\\system32\\browseui.dll\r\nO22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\\WINDOWS\\system32\\browseui.dll\r\nO23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\\WINDOWS\\system32\\Macromed\\Flash\\FlashPlayerUpdateService.exe\r\nO23 - Service: Apple Mobile Device - Apple Inc. - C:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\AppleMobileDeviceService.exe\r\nO23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\\Program Files\\AVG\\AVG2012\\AVGIDSAgent.exe\r\nO23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\\Program Files\\AVG\\AVG2012\\avgwdsvc.exe\r\nO23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\\Program Files\\Bonjour\\mDNSResponder.exe\r\nO23 - Service: CLHNServiceForPowerDVD - Unknown owner - C:\\Program Files\\CyberLink\\PowerDVD11\\Kernel\\DMP\\CLHNServiceForPowerDVD.exe\r\nO23 - Service: CyberLink PowerDVD 11.0 Monitor Service - CyberLink - C:\\Program Files\\CyberLink\\PowerDVD11\\Common\\MediaServer\\CLMSMonitorService.exe\r\nO23 - Service: CyberLink PowerDVD 11.0 Service - CyberLink - C:\\Program Files\\CyberLink\\PowerDVD11\\Common\\MediaServer\\CLMSServerForPDVD11.exe\r\nO23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\\Program Files\\Common Files\\Macrovision Shared\\FLEXnet Publisher\\FNPLicensingService.exe\r\nO23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\\Program Files\\iPod\\bin\\iPodService.exe\r\nO23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle Corporation - C:\\Program Files\\Oracle\\JavaFX 2.1 Runtime\\bin\\jqs.exe\r\nO23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\\Program Files\\Mozilla Maintenance Service\\maintenanceservice.exe\r\nO23 - Service: NitroPDFDriverCreatorReadSpool (NitroDriverReadSpool) - Nitro PDF Software - C:\\Program Files\\Nitro PDF\\Professional\\NitroPDFDriverService.exe\r\nO23 - Service: NLS Service (nlsX86cc) - Nalpeiron Ltd. - C:\\WINDOWS\\system32\\NLSSRV32.EXE\r\nO23 - Service: PhoneMyPC_Helper - SoftwareForMe Inc - C:\\Program Files\\SoftwareForMe Inc\\PhoneMyPC\\PhoneMyPC_Helper.exe\r\nO23 - Service: PostgreSQL Server 8.4 (postgresql-8.4) - PostgreSQL Global Development Group - C:/Program Files/PostgreSQL/8.4/bin/pg_ctl.exe\r\nO23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\\Program Files\\Alcohol Soft\\Alcohol 120\\StarWind\\StarWindServiceAE.exe\r\nO23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\\Program Files\\Common Files\\Adobe\\SwitchBoard\\SwitchBoard.exe\r\nO23 - Service: WMP54Gv4SVC - GEMTEKS - C:\\Program Files\\Linksys Wireless-G PCI Wireless Network Monitor\\WLService.exe\r\n\r\n--\r\nEnd of file - 15166 bytes\r\n\r\n[/QUOTE]
Link naar reactie

7 antwoorden op deze vraag

Aanbevolen berichten

  • 0
Hallo Hoppeta.\n\ndeze hjt log entries mag je zeker weghalen :\n\nR0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = [url]http://search.conduit.com?SearchSour...ctid=CT1060933[/url]\n\nR1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Int ernet Settings,ProxyOverride = *.local\n\nO2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)\n\nO2 - BHO: Help the General-Search Project - {CA4520F3-AE13-4FB1-A513-58E23991C86D} - C:\\DOCUME~1\\Eigenaar~1\\APPLIC~1\\MEDIAF~1\\EXTENS~1\\ GENCRA~1.DLL\n\nverder zou ik je adviseren , om malwarebytes antimalware te downloaden en te installeren en te updaten en daarna een volledige systeemscan met dit programma te doen.\n\nlaat mij even weten , of het iets heeft verbeterd.
Link naar reactie
  • 0
[QUOTE]deze hjt log entries mag je zeker weghalen :\n\nR0 - HKCU\\Software\\Microsoft\\Internet Explorer\\Main,Start Page = [url]http://search.conduit.com?SearchSour...ctid=CT1060933[/url]\n\nR1 - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Int ernet Settings,ProxyOverride = *.local\n\nO2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)\n\nO2 - BHO: Help the General-Search Project - {CA4520F3-AE13-4FB1-A513-58E23991C86D} - C:\\DOCUME~1\\Eigenaar~1\\APPLIC~1\\MEDIAF~1\\EXTENS~1\\ GENCRA~1.DLL[/QUOTE]\n\nEven voor de zekerheid dit doe je door in het programma HijackThis de genoemde onderdelen te selecteren en op fix checked te klikken
Link naar reactie
  • 0
[QUOTE]en daarna: in ccleaner/gereedschap/opstarten cq in msconfig mag je alles uitzetten behalve je virusbeschermer. moet je eens zien hoe snel die dan wordt.[/QUOTE]\n\nKan ik echt ALLES uitzetten (behalve de virusbeschermer). ook dit soort dingen, waar ik geen idee heb wat het is?\n\nctfmon.exe C:\\WINDOWS\\system32\\ctfmon.exe\nIgfxTray C:\\WINDOWS\\system32\\igfxtray.exe\nHotKeysCmds C:\\WINDOWS\\system32\\hkcmd.exe\nPersistence C:\\WINDOWS\\system32\\igfxpers.exe\nRTHDCPL RTHDCPL.EXE\nSkyTel SkyTel.EXE\nAlcmtr ALCMTR.EXE\nUserFaultCheck %systemroot%\\system32\\dumprep 0 -u
Link naar reactie
  • 0
Het is ten hoogste aan te raden , om system32 files gewoon aan te laten staan , dit ten behoeve van een stabiel funcitionerend systeem .\n\nALCMTR.EXE , SKYTEL.EXE en RTHDCPL.EXE , zij afkomstig van je realtek audio programma , deze proxessesen kun je eventueel uitzetten , maar houdt er rekening mee, dat je zo je geluidskaart niet kunt aansturen , om voor speciale geluidseffecten te kiezen , ik zet deze persoonlijk wel altijd uit.\nUserFaultCheck %systemroot%\\system32\\dumprep 0 -u , deze kan je ook van je opstartlijst verwijderen. heb je trouwens nog een systeemscan gedaan mat malwarebytes anti malware???
Link naar reactie

Om een reactie te plaatsen, moet je eerst inloggen

Gast
Antwoord op deze vraag...

×   Geplakt als verrijkte tekst.   Herstel opmaak

  Er zijn maximaal 75 emoji toegestaan.

×   Je link werd automatisch ingevoegd.   Tonen als normale link

×   Je vorige inhoud werd hersteld.   Leeg de tekstverwerker

×   Je kunt afbeeldingen niet direct plakken. Upload of voeg afbeeldingen vanaf een URL in

  • Populaire leden

    Er is nog niemand die deze week reputatie heeft ontvangen.

  • Leden

    Geen leden om te tonen

×
×
  • Nieuwe aanmaken...