Vraag & Antwoord

Beveiliging & privacy

Hijack, last van extra opende pagina azgalore

Anoniem
juisterr
1 antwoord
 • Logfile of Trend Micro HijackThis v2.0.2
  Scan saved at 20:39:10, on 16-6-2008
  Platform: Windows XP SP2 (WinNT 5.01.2600)
  MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
  Boot mode: Normal

  Running processes:
  G:\WINDOWS\System32\smss.exe
  G:\WINDOWS\system32\winlogon.exe
  G:\WINDOWS\system32\services.exe
  G:\WINDOWS\system32\lsass.exe
  G:\WINDOWS\system32\Ati2evxx.exe
  G:\WINDOWS\system32\svchost.exe
  G:\WINDOWS\System32\svchost.exe
  G:\WINDOWS\system32\Ati2evxx.exe
  G:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
  G:\Program Files\Alwil Software\Avast4\ashServ.exe
  G:\WINDOWS\Explorer.EXE
  G:\WINDOWS\system32\spoolsv.exe
  G:\Program Files\Creative\Sound Blaster X-Fi\DVDAudio\CTDVDDET.EXE
  G:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe
  G:\WINDOWS\CTHELPER.EXE
  G:\WINDOWS\system32\CTXFIHLP.EXE
  G:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe
  G:\WINDOWS\SYSTEM32\CTXFISPI.EXE
  G:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
  G:\Program Files\SPAMfighter\SFAgent.exe
  G:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
  G:\Program Files\iTunes\iTunesHelper.exe
  G:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
  G:\WINDOWS\System32\CTsvcCDA.EXE
  G:\WINDOWS\system32\PnkBstrA.exe
  G:\Program Files\Java\jre1.6.0_06\bin\jusched.exe
  G:\Program Files\Common Files\Teleca Shared\CapabilityManager.exe
  G:\WINDOWS\system32\ctfmon.exe
  G:\Program Files\Messenger\MSMSGS.EXE
  G:\Program Files\Creative\MediaSource\Detector\CTDetect.exe
  G:\Program Files\SPAMfighter\sfus.exe
  G:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
  G:\Program Files\Creative\ShareDLL\CADI\NotiMan.exe
  G:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
  G:\FRAPS\FRAPS.EXE
  G:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
  G:\Program Files\Logitech\SetPoint\SetPoint.exe
  G:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
  G:\Program Files\Alwil Software\Avast4\ashWebSv.exe
  G:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.EXE
  G:\WINDOWS\System32\svchost.exe
  G:\Program Files\Common Files\Teleca Shared\Generic.exe
  G:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
  G:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe
  G:\Program Files\iPod\bin\iPodService.exe
  G:\WINDOWS\system32\wuauclt.exe
  G:\Program Files\Trend Micro\HijackThis\HijackThis.exe

  R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.home.nl/
  R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
  O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - G:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
  O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - G:\PROGRA~1\SPYBOT~1\SDHelper.dll
  O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - G:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
  O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - g:\program files\google\googletoolbar3.dll
  O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - G:\Program Files\Google\GoogleToolbarNotifier\2.0.301.7164\swg.dll
  O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - g:\program files\google\googletoolbar3.dll
  O3 - Toolbar: (no name) - {47e161a0-f4ba-41dd-a17b-d2eb26ad6a02} - (no file)
  O4 - HKLM\..\Run: [CTDVDDET] "G:\Program Files\Creative\Sound Blaster X-Fi\DVDAudio\CTDVDDET.EXE"
  O4 - HKLM\..\Run: [RCSystem] "G:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe" RCSystem * -Startup
  O4 - HKLM\..\Run: [AudioDrvEmulator] "G:\Program Files\Creative\Shared Files\Module Loader\DLLML.exe" -1 AudioDrvEmulator "G:\Program Files\Creative\Shared Files\Module Loader\Audio Emulator\AudDrvEm.dll"
  O4 - HKLM\..\Run: [VolPanel] "G:\Program Files\Creative\Sound Blaster X-Fi\Volume Panel\VolPanel.exe"

  O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
  O4 - HKLM\..\Run: [CTxfiHlp] CTXFIHLP.EXE
  O4 - HKLM\..\Run: [UpdReg] G:\WINDOWS\UpdReg.EXE
  O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "G:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
  O4 - HKLM\..\Run: [Adobe Photo Downloader] "G:\Program Files\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
  O4 - HKLM\..\Run: [NeroFilterCheck] G:\WINDOWS\system32\NeroCheck.exe
  O4 - HKLM\..\Run: [SPAMfighter Agent] "G:\Program Files\SPAMfighter\SFAgent.exe" update delay 60
  O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
  O4 - HKLM\..\Run: [QuickTime Task] "G:\Program Files\QuickTime\qttask.exe" -atboottime
  O4 - HKLM\..\Run: [iTunesHelper] "G:\Program Files\iTunes\iTunesHelper.exe"
  O4 - HKLM\..\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE
  O4 - HKLM\..\Run: [avast!] G:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
  O4 - HKLM\..\Run: [SunJavaUpdateSched] "G:\Program Files\Java\jre1.6.0_06\bin\jusched.exe"
  O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "G:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
  O4 - HKCU\..\Run: [CTFMON.EXE] G:\WINDOWS\system32\ctfmon.exe
  O4 - HKCU\..\Run: [MSMSGS] "G:\Program Files\Messenger\MSMSGS.EXE" /background
  O4 - HKCU\..\Run: [Creative Detector] "G:\Program Files\Creative\MediaSource\Detector\CTDetect.exe" /R
  O4 - HKCU\..\Run: [swg] G:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
  O4 - HKCU\..\Run: [StartCCC] G:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
  O4 - HKCU\..\Run: [Fraps] G:\FRAPS\FRAPS.EXE
  O4 - HKCU\..\Run: [KCeasy] G:\Program Files\KCeasy\KCeasy.exe /hide
  O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] G:\WINDOWS\System32\CTFMON.EXE (User 'Lokale service')
  O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] G:\WINDOWS\System32\CTFMON.EXE (User 'Netwerkservice')
  O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] G:\WINDOWS\System32\CTFMON.EXE (User 'SYSTEM')
  O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] G:\WINDOWS\System32\CTFMON.EXE (User 'Default user')
  O4 - Global Startup: Logitech Desktop Messenger.lnk = G:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
  O4 - Global Startup: Logitech SetPoint.lnk = G:\Program Files\Logitech\SetPoint\SetPoint.exe
  O4 - Global Startup: Microsoft Office.lnk = G:\Program Files\Microsoft Office\Office10\OSA.EXE
  O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://G:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
  O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - G:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
  O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - G:\Program Files\Java\jre1.6.0_06\bin\ssv.dll
  O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - G:\PROGRA~1\SPYBOT~1\SDHelper.dll
  O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - G:\PROGRA~1\SPYBOT~1\SDHelper.dll
  O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - G:\Program Files\Messenger\msmsgs.exe
  O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - G:\Program Files\Messenger\msmsgs.exe
  O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - G:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
  O23 - Service: Apple Mobile Device - Apple, Inc. - G:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
  O23 - Service: avast! iAVS4 Control Service (aswUpdSv) - ALWIL Software - G:\Program Files\Alwil Software\Avast4\aswUpdSv.exe
  O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - G:\WINDOWS\system32\Ati2evxx.exe
  O23 - Service: ATI Smart - Unknown owner - G:\WINDOWS\system32\ati2sgag.exe
  O23 - Service: avast! Antivirus - ALWIL Software - G:\Program Files\Alwil Software\Avast4\ashServ.exe
  O23 - Service: avast! Mail Scanner - ALWIL Software - G:\Program Files\Alwil Software\Avast4\ashMaiSv.exe
  O23 - Service: avast! Web Scanner - ALWIL Software - G:\Program Files\Alwil Software\Avast4\ashWebSv.exe
  O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - G:\WINDOWS\System32\CTsvcCDA.EXE
  O23 - Service: Google Updater Service (gusvc) - Google - G:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
  O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - G:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
  O23 - Service: iPod-service (iPod Service) - Apple Inc. - G:\Program Files\iPod\bin\iPodService.exe
  O23 - Service: PnkBstrA - Unknown owner - G:\WINDOWS\system32\PnkBstrA.exe
  O23 - Service: SPAMfighter Update Service - SPAMfighter ApS - G:\Program Files\SPAMfighter\sfus.exe


  End of file - 8922 bytes

Beantwoord deze vraag

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.

Op deze website gebruiken we cookies om content en advertenties te personaliseren, om functies voor social media te bieden en om ons websiteverkeer te analyseren. Ook delen we informatie over uw gebruik van onze site met onze partners voor social media, adverteren en analyse. Deze partners kunnen deze gegevens combineren met andere informatie die u aan ze heeft verstrekt of die ze hebben verzameld op basis van uw gebruik van hun services. Meer informatie.

Akkoord