Mededeling

Collapse
No announcement yet.

opstartitems???

Collapse
X
Collapse
  •  
  • Page of 1
  • Filter
  • Tijd
  • Show
Clear All
new posts
Vorige template Volgende
  • #1

    opstartitems???

    Hoi

    Ik las het stuk van ADMIN inzake opstart items, echter:
    hoe kan ik jullie een copie laten zien van de opstartitems die mij opstarten?
    Labels: Geen
    • Citaat
  • #2
    Open HijackThis

    Klik op Config
    Klik op Misc Tools
    Klik op "Generate StartupList Log"

    Hoezo; twijfel je bij iets?


    Het rapaille dat per Przewalskipaard arriveerde bij het feeëriek gesitueerde etablissement - komma -

    "Verwar de waarheid niet met de mening van de meerderheid"
    • Citaat

    Comment

    • #3
      Twijfel is een groot woord maar als het nog beter kan?

      StartupList report, 2-11-2004, 10:19:35
      StartupList version: 1.52.2
      Started from : C:\Program Files\Hyjackthis okt 2004\HijackThis.EXE
      Detected: Windows XP SP1 (WinNT 5.01.2600)
      Detected: Internet Explorer v6.00 SP1 (6.00.2800.1106)
      * Using default options
      ==================================================

      Running processes:

      C:\WINDOWS\System32\smss.exe
      C:\WINDOWS\system32\winlogon.exe
      C:\WINDOWS\system32\services.exe
      C:\WINDOWS\system32\lsass.exe
      C:\WINDOWS\system32\svchost.exe
      C:\WINDOWS\System32\svchost.exe
      C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
      C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
      C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
      C:\WINDOWS\system32\spoolsv.exe
      C:\Program Files\Common Files\EPSON\EBAPI\eEBSVC.exe
      C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
      C:\Program Files\Common Files\EPSON\EBAPI\SAgent2.exe
      C:\Program Files\Norton AntiVirus\navapsvc.exe
      C:\WINDOWS\System32\nvsvc32.exe
      C:\Program Files\Norton AntiVirus\SAVScan.exe
      C:\WINDOWS\System32\svchost.exe
      C:\WINDOWS\Explorer.EXE
      C:\WINDOWS\System32\RUNDLL32.EXE
      C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe
      C:\Program Files\Common Files\Symantec Shared\ccApp.exe
      C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE
      C:\Program Files\QuickTime\qttask.exe
      C:\Program Files\Messenger Plus! 3\MsgPlus.exe
      C:\Program Files\Common Files\Symantec Shared\Security Center\UsrPrmpt.exe
      C:\Program Files\MSN Messenger\msnmsgr.exe
      C:\Program Files\Outlook Express\msimn.exe
      C:\Program Files\Norton AntiVirus\OPScan.exe
      C:\Program Files\Internet Explorer\iexplore.exe
      C:\WINDOWS\System32\wuauclt.exe
      C:\Program Files\Symantec\LiveUpdate\AUpdate.exe
      C:\Program Files\Hyjackthis okt 2004\HijackThis.exe

      --------------------------------------------------

      Checking Windows NT UserInit:

      [HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon]
      UserInit = C:\WINDOWS\system32\userinit.exe,

      --------------------------------------------------

      Autorun entries from Registry:
      HKLM\Software\Microsoft\Windows\CurrentVersion\Run

      SiSUSBRG = C:\WINDOWS\SiSUSBrg.exe
      Cmaudio = RunDll32 cmicnfg.cpl,CMICtrlWnd
      NvCplDaemon = RUNDLL32.EXE C:\WINDOWS\System32\NvCpl.dll,NvStartup
      nwiz = nwiz.exe /install
      NvMediaCenter = RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
      SpeedTouch USB Diagnostics = "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon
      ccApp = "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
      EPSON Stylus C82 Series (Kopie 1) = C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P33 "EPSON Stylus C82 Series (Kopie 1)" /O5 "LPT1:" /M "Stylus C82"
      EPSON Stylus C82 Series = C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S10IC2.EXE /P23 "EPSON Stylus C82 Series" /O5 "LPT1:" /M "Stylus C82"
      URLLSTCK.exe = C:\Program Files\Norton Internet Security\UrlLstCk.exe
      QuickTime Task = "C:\Program Files\QuickTime\qttask.exe" -atboottime
      MessengerPlus3 = "C:\Program Files\Messenger Plus! 3\MsgPlus.exe"
      SSC_UserPrompt = C:\Program Files\Common Files\Symantec Shared\Security Center\UsrPrmpt.exe
      Symantec NetDriver Monitor = C:\PROGRA~1\SYMNET~1\SNDMon.exe

      --------------------------------------------------

      Autorun entries from Registry:
      HKCU\Software\Microsoft\Windows\CurrentVersion\Run

      MessengerPlus3 = "C:\Program Files\Messenger Plus! 3\MsgPlus.exe" /WinStart
      msnmsgr = "C:\Program Files\MSN Messenger\msnmsgr.exe" /background

      --------------------------------------------------

      Shell & screensaver key from C:\WINDOWS\SYSTEM.INI:

      Shell=*INI section not found*
      SCRNSAVE.EXE=*INI section not found*
      drivers=*INI section not found*

      Shell & screensaver key from Registry:

      Shell=Explorer.exe
      SCRNSAVE.EXE=C:\WINDOWS\System32\sstext3d.scr
      drivers=*Registry value not found*

      Policies Shell key:

      HKCU\..\Policies: Shell=*Registry key not found*
      HKLM\..\Policies: Shell=*Registry value not found*

      --------------------------------------------------


      Enumerating Browser Helper Objects:

      (no name) - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}
      Web assistant - C:\Program Files\Common Files\Symantec Shared\AdBlocking\NISShExt.dll - {9ECB9560-04F9-4bbc-943D-298DDF1699E1}
      NAV Helper - C:\Program Files\Norton AntiVirus\NavShExt.dll - {BDF3E430-B101-42AD-A544-FADC6B084872}

      --------------------------------------------------

      Enumerating Task Scheduler jobs:

      Norton AntiVirus - Mijn computer scannen.job
      Symantec NetDetect.job

      --------------------------------------------------

      Enumerating Download Program Files:

      [Checkers Class]
      InProcServer32 = C:\WINDOWS\Downloaded Program Files\msgrchkr.dll
      CODEBASE = http://messenger.zone.msn.com/binary/msgrchkr.cab

      [QuickTime Object]
      InProcServer32 = C:\Program Files\QuickTime\QTPlugin.ocx
      CODEBASE = http://www.apple.com/qtactivex/qtplugin.cab

      [Shockwave ActiveX Control]
      InProcServer32 = C:\WINDOWS\system32\Macromed\Director\SwDir.dll
      CODEBASE = http://download.macromedia.com/pub/s...ctor/swdir.cab

      [AimSp32 Class]
      InProcServer32 = C:\WINDOWS\Downloaded Program Files\aimsp32.dll
      CODEBASE = http://rimmel.ai-media.com/save/makeover.cab

      [Minesweeper Flags Class]
      InProcServer32 = C:\WINDOWS\Downloaded Program Files\minesweeper.dll
      CODEBASE = http://messenger.zone.msn.com/binary/MineSweeper.cab

      [Easywebinstaller Control]
      InProcServer32 = C:\WINDOWS\DOWNLO~1\EASYWE~1.OCX
      CODEBASE = http://s7.blingblingcontent.com/tool...binstaller.ocx

      [MessengerStatsClient Class]
      InProcServer32 = C:\WINDOWS\Downloaded Program Files\messengerstatsclient.dll
      CODEBASE = http://messenger.zone.msn.com/binary...tatsClient.cab

      [MSN File Upload Control]
      InProcServer32 = C:\WINDOWS\DOWNLO~1\MsnUpld.dll
      CODEBASE = http://sc.groups.msn.com/controls/FileUC/MsnUpld.cab

      [Update Class]
      InProcServer32 = C:\WINDOWS\System32\iuctl.dll
      CODEBASE = http://v4.windowsupdate.microsoft.co...?38063.1478125

      [SassCln Object]
      InProcServer32 = C:\WINDOWS\Downloaded Program Files\SassCln.dll
      CODEBASE = http://www.microsoft.com/security/controls/SassCln.CAB

      [MSN Photo Upload Tool]
      InProcServer32 = C:\WINDOWS\Downloaded Program Files\MsnPUpld.dll
      CODEBASE = http://sc.groups.msn.com/controls/PhotoUC/MsnPUpld.cab

      [Shockwave Flash Object]
      InProcServer32 = C:\WINDOWS\System32\macromed\flash\Flash.ocx
      CODEBASE = http://download.macromedia.com/pub/s...sh/swflash.cab

      [IMDownloader Class]
      CODEBASE = http://www2.incredimail.com/contents...r/imloader.cab

      [MSN Chat Control 4.5]
      InProcServer32 = C:\WINDOWS\Downloaded Program Files\MSNChat45.ocx
      CODEBASE = http://chat.msn.com/bin/msnchat45.cab

      [Solitaire Showdown Class]
      InProcServer32 = C:\WINDOWS\Downloaded Program Files\solitaireshowdown.dll
      CODEBASE = http://messenger.zone.msn.com/binary...reShowdown.cab

      [HouseCall Control]
      InProcServer32 = C:\WINDOWS\DOWNLO~1\xscan51.ocx
      CODEBASE = http://www.housecall.nl/housecall/xscan4.cab

      --------------------------------------------------

      Enumerating ShellServiceObjectDelayLoad items:

      PostBootReminder: C:\WINDOWS\system32\SHELL32.dll
      CDBurn: C:\WINDOWS\system32\SHELL32.dll
      WebCheck: C:\WINDOWS\System32\webcheck.dll
      SysTray: C:\WINDOWS\System32\stobject.dll

      --------------------------------------------------
      End of report, 8.137 bytes
      Report generated in 0,094 seconds

      Command line options:
      /verbose - to add additional info on each section
      /complete - to include empty sections and unsuspicious data
      /full - to include several rarely-important sections
      /force9x - to include Win9x-only startups even if running on WinNT
      /forcent - to include WinNT-only startups even if running on Win9x
      /forceall - to include all Win9x and WinNT startups, regardless of platform
      /history - to list version history only
      • Citaat

      Comment

      • #4
        Wat wil je Bart? Dat wij je vertellen wat niet strikt noodzakelijk is?


        Het rapaille dat per Przewalskipaard arriveerde bij het feeëriek gesitueerde etablissement - komma -

        "Verwar de waarheid niet met de mening van de meerderheid"
        • Citaat

        Comment

        • #5
          Ja als dat kan ? In elk geval wat jullie als kenners van de log vinden?
          • Citaat

          Comment

          • #6
            Nou Bart; je bent wel een speciaal geval jij. Dat wordt extra betalen .

            Volgende items zou je zonder problemen met startup control panel weg kunnen vinken:

            SiSUSBRG = C:\WINDOWS\SiSUSBrg.exe
            Cmaudio = RunDll32 cmicnfg.cpl,CMICtrlWnd
            NvMediaCenter = RUNDLL32.EXE C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit
            SpeedTouch USB Diagnostics = "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon
            QuickTime Task = "C:\Program Files\QuickTime\qttask.exe" -atboottime


            Het rapaille dat per Przewalskipaard arriveerde bij het feeëriek gesitueerde etablissement - komma -

            "Verwar de waarheid niet met de mening van de meerderheid"
            • Citaat

            Comment

            • #7
              speciaal geval....ikke?

              kennen wij elkaar?

              trouwens waar zet ik ze uit dan want in Ms config zie ik er een paar niet om uit te vinken.....
              Last edited by The Godfather; 02-11-04, 12:56.
              • Citaat

              Comment

              • #8
                Gebruik Startup Control Panel eens .

                Link kun je vinden in de topic van de overbodige items.


                Het rapaille dat per Przewalskipaard arriveerde bij het feeëriek gesitueerde etablissement - komma -

                "Verwar de waarheid niet met de mening van de meerderheid"
                • Citaat

                Comment

                Vorige template Volgende
                Sorry, you are not authorized to view this page
                Working...
                X