WaWaKe
26 May 2011, 14:52
Beste forumvrienden,
Ik ben nieuw op dit forum en heb alle reglementen eensgoed doorgelezen.
Hierna vind je een HijackThis logje die ik graag eensvoorleg. Ik begrijp er niets van, van zie er toch geen ’rare’ dingen in.
Omdat ik de laatste twee dagen nogal veel hebgeïnstalleerd en gewist, zou ik het graag eens nagezien hebben. Ik zal er verder geen misbruik van maken(dit heb ik ook uit de mededelingen begrepen. Alles is gedaan zoals gevraagd:MBAM, Tfc.exe, enz. (mijn file-extensies waren nadien wel verborgen, maar datheb ik in map- en zoekopties terug gezet).
Ik heb geen problemen, behalve dat mijn opstarttijd van45 sec. (één jaar geleden) nu al is opgelopen tot 1.50 min. Ik hop dat dezetrend zich niet doorzet. Sloluto heeft iets geholpen (want het was nog langer),maar toch…
Niet dringend.
Dank bij voorbaat.
WWk
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:38:18, on 26/05/2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE:Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\ProgramFiles\Soluto\soluto.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\ProgramFiles\Norton 360 Premier Edition\Engine\4.3.0.5\ccSvcHst.exe
C:\Windows\system32\SearchFilterHost.exe
C:\ProgramFiles\Trend Micro\HiJackThis\HiJackThis.exe
R0 -HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =http://www.google.be/
R1 -HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =http://go.microsoft.com/fwlink/?LinkId=69157
R1 -HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =http://go.microsoft.com/fwlink/?LinkId=54896
R1 -HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =http://go.microsoft.com/fwlink/?LinkId=54896
R0 -HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =http://homepage.acer.com/rdr.aspx?b=ACAW&l=0813&m=veriton_l480g&r=17050310kz03pt3844s85a2811lb04
F2 - REG:system.ini:UserInit=C:\Windows\system32\userin it.exe,C:\Program Files\Soluto\soluto.exe/userinit
O2 - BHO:AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\ProgramFiles\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: SymantecNCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton 360Premier Edition\Engine\4.3.0.5\coIEPlg.dll
O2 - BHO: SymantecIntrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\ProgramFiles\Norton 360 Premier Edition\Engine\4.3.0.5\IPSBHO.DLL
O2 - BHO: WindowsLive ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\ProgramFiles\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy PhotoPrint - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\EpsonSoftware\Easy Photo Print\EPTBL.dll
O2 - BHO: LastPassBrowser Helper Object - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\ProgramFiles\LastPass\LPBar.dll
O2 - BHO: WindowsLive Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: GoogleToolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\ProgramFiles\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO:SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\ProgramFiles\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO:URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} -C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: WOT Helper- {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files\WOT\WOT.dll
O3 - Toolbar: EasyPhoto Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\EpsonSoftware\Easy Photo Print\EPTBL.dll
O3 - Toolbar: WOT -{71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files\WOT\WOT.dll
O3 - Toolbar:LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\ProgramFiles\LastPass\LPBar.dll
O3 - Toolbar: NortonToolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360Premier Edition\Engine\4.3.0.5\coIEPlg.dll
O3 - Toolbar: GoogleToolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\GoogleToolbar\GoogleToolbar_32.dll
O8 - Extra contextmenu item: Add to Google Photos Screensa&ver -res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra contextmenu item: Free YouTube Download - C:\Users\WalterWaes\AppData\Roaming\DVDVideoSoftIE Helpers\freeyoutubedownload.htm
O8 - Extra contextmenu item: Free YouTube to MP3 Converter - C:\Users\WalterWaes\AppData\Roaming\DVDVideoSoftIE Helpers\freeyoutubetomp3converter.htm
O8 - Extra contextmenu item: Google Sidewiki... - res://C:\Program Files\Google\GoogleToolbar\Component\GoogleToolbar Dynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
O8 - Extra contextmenu item: LastPass - file://C:\ProgramFiles\LastPass\context.html?cmd=lastpass
O8 - Extra contextmenu item: LastPass Fill Forms - file://C:\ProgramFiles\LastPass\context.html?cmd=fillform s
O9 - Extra button:@C:\Program Files\Windows Live\Companion\companionlang.dll,-600 -{0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\WindowsLive\Companion\companioncore.dll
O9 - Extra button:@C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 -{219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\WindowsLive\Writer\WriterBrowserExtension.dl l
O9 - Extra 'Tools'menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003- {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\WindowsLive\Writer\WriterBrowserExtension.dl l
O9 - Extra button:LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\ProgramFiles\LastPass\LPBar.dll
O9 - Extra button:&Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} -C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools'menuitem: &Gekoppelde notities van OneNote -{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\MicrosoftOffice\Office14\ONBttnIELinkedNotes .dll
O9 - Extra button:Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\ProgramFiles\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools'menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\ProgramFiles\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group:[ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF:{4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} (BitDefender QuickScan Control) -http://quickscan.bitdefender.com/qsax/qsax.cab
O16 - DPF:{E2883E8F-472F-4FB0-9522-AC9BF37916A7} -http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol:skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\ProgramFiles\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol:skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg- {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\PhotoGallery\AlbumDownloadProtocolHandler.dll
O18 - Protocol: wot- {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files\WOT\WOT.dll
O18 - Filter hijack:text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\CommonFiles\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service:Emsisoft Anti-Malware 5.0 - Service (a2AntiMalware) - Emsi Software GmbH -C:\Program Files\Emsisoft Anti-Malware\a2service.exe
O23 - Service:Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\ProgramFiles\Google\Update\GoogleUpdate.exe
O23 - Service:Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\ProgramFiles\Google\Update\GoogleUpdate.exe
O23 - Service:Google Software Updater (gusvc) - Google - C:\ProgramFiles\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service:Norton 360 (N360) - Symantec Corporation - C:\Program Files\Norton 360 PremierEdition\Engine\4.3.0.5\ccSvcHst.exe
O23 - Service:Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe
O23 - Service:Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe
O23 - Service:Soluto PCGenome Core Service (SolutoService) - Soluto - C:\ProgramFiles\Soluto\SolutoService.exe
O23 - Service: EpsonPrinter Status Agent (StatusAgent) - SEIKO EPSON CORPORATION -C:\ESM2\SAgentNT.exe
O23 - Service:Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
--
End of file - 7594 bytes
Ik ben nieuw op dit forum en heb alle reglementen eensgoed doorgelezen.
Hierna vind je een HijackThis logje die ik graag eensvoorleg. Ik begrijp er niets van, van zie er toch geen ’rare’ dingen in.
Omdat ik de laatste twee dagen nogal veel hebgeïnstalleerd en gewist, zou ik het graag eens nagezien hebben. Ik zal er verder geen misbruik van maken(dit heb ik ook uit de mededelingen begrepen. Alles is gedaan zoals gevraagd:MBAM, Tfc.exe, enz. (mijn file-extensies waren nadien wel verborgen, maar datheb ik in map- en zoekopties terug gezet).
Ik heb geen problemen, behalve dat mijn opstarttijd van45 sec. (één jaar geleden) nu al is opgelopen tot 1.50 min. Ik hop dat dezetrend zich niet doorzet. Sloluto heeft iets geholpen (want het was nog langer),maar toch…
Niet dringend.
Dank bij voorbaat.
WWk
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:38:18, on 26/05/2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE:Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\ProgramFiles\Soluto\soluto.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\ProgramFiles\Norton 360 Premier Edition\Engine\4.3.0.5\ccSvcHst.exe
C:\Windows\system32\SearchFilterHost.exe
C:\ProgramFiles\Trend Micro\HiJackThis\HiJackThis.exe
R0 -HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =http://www.google.be/
R1 -HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =http://go.microsoft.com/fwlink/?LinkId=69157
R1 -HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =http://go.microsoft.com/fwlink/?LinkId=54896
R1 -HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =http://go.microsoft.com/fwlink/?LinkId=54896
R0 -HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =http://homepage.acer.com/rdr.aspx?b=ACAW&l=0813&m=veriton_l480g&r=17050310kz03pt3844s85a2811lb04
F2 - REG:system.ini:UserInit=C:\Windows\system32\userin it.exe,C:\Program Files\Soluto\soluto.exe/userinit
O2 - BHO:AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\ProgramFiles\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: SymantecNCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton 360Premier Edition\Engine\4.3.0.5\coIEPlg.dll
O2 - BHO: SymantecIntrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\ProgramFiles\Norton 360 Premier Edition\Engine\4.3.0.5\IPSBHO.DLL
O2 - BHO: WindowsLive ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\ProgramFiles\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Easy PhotoPrint - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\EpsonSoftware\Easy Photo Print\EPTBL.dll
O2 - BHO: LastPassBrowser Helper Object - {95D9ECF5-2A4D-4550-BE49-70D42F71296E} - C:\ProgramFiles\LastPass\LPBar.dll
O2 - BHO: WindowsLive Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} -C:\Program Files\Windows Live\Companion\companioncore.dll
O2 - BHO: GoogleToolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\ProgramFiles\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO:SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\ProgramFiles\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO:URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} -C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: WOT Helper- {C920E44A-7F78-4E64-BDD7-A57026E7FEB7} - C:\Program Files\WOT\WOT.dll
O3 - Toolbar: EasyPhoto Print - {9421DD08-935F-4701-A9CA-22DF90AC4EA6} - C:\Program Files\EpsonSoftware\Easy Photo Print\EPTBL.dll
O3 - Toolbar: WOT -{71576546-354D-41c9-AAE8-31F2EC22BF0D} - C:\Program Files\WOT\WOT.dll
O3 - Toolbar:LastPass Toolbar - {9f6b5cc3-5c7b-4b5c-97af-19dec1e380e5} - C:\ProgramFiles\LastPass\LPBar.dll
O3 - Toolbar: NortonToolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton 360Premier Edition\Engine\4.3.0.5\coIEPlg.dll
O3 - Toolbar: GoogleToolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\GoogleToolbar\GoogleToolbar_32.dll
O8 - Extra contextmenu item: Add to Google Photos Screensa&ver -res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra contextmenu item: Free YouTube Download - C:\Users\WalterWaes\AppData\Roaming\DVDVideoSoftIE Helpers\freeyoutubedownload.htm
O8 - Extra contextmenu item: Free YouTube to MP3 Converter - C:\Users\WalterWaes\AppData\Roaming\DVDVideoSoftIE Helpers\freeyoutubetomp3converter.htm
O8 - Extra contextmenu item: Google Sidewiki... - res://C:\Program Files\Google\GoogleToolbar\Component\GoogleToolbar Dynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
O8 - Extra contextmenu item: LastPass - file://C:\ProgramFiles\LastPass\context.html?cmd=lastpass
O8 - Extra contextmenu item: LastPass Fill Forms - file://C:\ProgramFiles\LastPass\context.html?cmd=fillform s
O9 - Extra button:@C:\Program Files\Windows Live\Companion\companionlang.dll,-600 -{0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\WindowsLive\Companion\companioncore.dll
O9 - Extra button:@C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 -{219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\WindowsLive\Writer\WriterBrowserExtension.dl l
O9 - Extra 'Tools'menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003- {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\WindowsLive\Writer\WriterBrowserExtension.dl l
O9 - Extra button:LastPass - {43699cd0-e34f-11de-8a39-0800200c9a66} - C:\ProgramFiles\LastPass\LPBar.dll
O9 - Extra button:&Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} -C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools'menuitem: &Gekoppelde notities van OneNote -{789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\MicrosoftOffice\Office14\ONBttnIELinkedNotes .dll
O9 - Extra button:Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\ProgramFiles\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools'menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\ProgramFiles\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O11 - Options group:[ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF:{4B54A9DE-EF1C-4EBE-A328-7C28EA3B433A} (BitDefender QuickScan Control) -http://quickscan.bitdefender.com/qsax/qsax.cab
O16 - DPF:{E2883E8F-472F-4FB0-9522-AC9BF37916A7} -http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol:skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\ProgramFiles\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol:skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} -C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg- {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\PhotoGallery\AlbumDownloadProtocolHandler.dll
O18 - Protocol: wot- {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - C:\Program Files\WOT\WOT.dll
O18 - Filter hijack:text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\CommonFiles\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service:Emsisoft Anti-Malware 5.0 - Service (a2AntiMalware) - Emsi Software GmbH -C:\Program Files\Emsisoft Anti-Malware\a2service.exe
O23 - Service:Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\ProgramFiles\Google\Update\GoogleUpdate.exe
O23 - Service:Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\ProgramFiles\Google\Update\GoogleUpdate.exe
O23 - Service:Google Software Updater (gusvc) - Google - C:\ProgramFiles\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service:Norton 360 (N360) - Symantec Corporation - C:\Program Files\Norton 360 PremierEdition\Engine\4.3.0.5\ccSvcHst.exe
O23 - Service:Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe
O23 - Service:Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe
O23 - Service:Soluto PCGenome Core Service (SolutoService) - Soluto - C:\ProgramFiles\Soluto\SolutoService.exe
O23 - Service: EpsonPrinter Status Agent (StatusAgent) - SEIKO EPSON CORPORATION -C:\ESM2\SAgentNT.exe
O23 - Service:Updater Service - Acer - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
--
End of file - 7594 bytes