Mededeling

Collapse
No announcement yet.

Zit met vervelende CiD programma

Collapse
X
Collapse
  •  
  • Page of 1
  • Filter
  • Tijd
  • Show
Clear All
new posts
Vorige template Volgende
  • #1

    Zit met vervelende CiD programma

    Krijg steeds een Cid window te verwerken. Heb nu al veel geprobeerd, maar ze blijven steeds terugkomen. Kan iemand mij hiervan verlossen. Diegenen die het kan, ben ik duizend maal dankbaar.

    Logfile of Trend Micro HijackThis v2.0.2
    Scan saved at 10:16, on 2008-01-04
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.6000.16574)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
    C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\Netropa\Multimedia Keyboard\nhksrv.exe
    C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
    C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
    C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
    C:\WINDOWS\system32\beidservicecrl.exe
    C:\WINDOWS\system32\beidservicepcsc.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\RTHDCPL.EXE
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\CyberLink\PowerCinema\PCMService.exe
    C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
    C:\Program Files\FSC\Wireless Wheel Mouse\MOUSE32A.EXE
    C:\Program Files\Netropa\Multimedia Keyboard\MMKeybd.exe
    C:\Program Files\Netropa\Multimedia Keyboard\TrayMon.exe
    C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
    C:\Program Files\Netropa\Onscreen Display\OSD.exe
    C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
    C:\Program Files\Netropa\InetKb\Inetkb.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
    C:\Program Files\Logitech\Video\LogiTray.exe
    C:\Program Files\TomTom HOME\TomTomHOME.exe
    C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    C:\Program Files\Common Files\Symantec Shared\ccApp.exe
    C:\Program Files\iTunes\iTunesHelper.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Belgium Identity Card\beidsystemtray.exe
    C:\Program Files\RegistrySmart\RegistrySmart.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\WINDOWS\system32\LVComsX.exe
    C:\Program Files\Messenger\Msmsgs.exe
    C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
    C:\Program Files\Logitech\Video\FxSvr2.exe
    C:\Program Files\Mio Technology\MioSync\mioSync.exe
    C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\Program Files\Webshots\Webshots.scr
    C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
    C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
    C:\Program Files\Windows Live\Messenger\usnsvc.exe
    C:\Program Files\PopupZero\PopupZeroTray.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\Program Files\Internet Explorer\iexplore.exe
    C:\Program Files\uTorrent\uTorrent.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
    C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://pac.telenet.be:8080/
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
    O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll
    O2 - BHO: Trailfire Helper Object - {238D3404-0761-4B4D-851C-050A3A0AC40A} - C:\Program Files\Trailfire\trailfireToolbar-1.1.11748.dll
    O2 - BHO: RUPK - {604B283A-4E26-4504-98E7-72859F949547} - C:\PROGRA~1\HITWAR~1\sypcms.dll
    O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
    O2 - BHO: PopupZeroIEDLL.CPopupZeroIEDLL - {A94EDD52-85B3-472F-8BC0-D651D760FBF8} - C:\Program Files\PopupZero\PopupZeroIEDLL.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
    O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\en-au\msntb.dll
    O2 - BHO: System - {D1C8F9CE-563E-11D8-813C-005022E14DE2} - C:\Program Files\GayId Client\AddAPI.dll (file missing)
    O3 - Toolbar: ninemsn - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\en-au\msntb.dll
    O3 - Toolbar: (no name) - {C17590D2-ECB4-4b15-8820-F58798DCC118} - (no file)
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
    O3 - Toolbar: Visa Norton-verktygsfältet - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
    O3 - Toolbar: Trailfire Toolbar - {238D3403-0761-4B4D-851C-050A3A0AC40A} - C:\Program Files\Trailfire\trailfireToolbar-1.1.11748.dll
    O4 - HKLM\..\Run: [Snelkoppeling naar eigenschappenvenster voor High Definition Audio] HDAShCut.exe
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
    O4 - HKLM\..\Run: [PCMService] "C:\Program Files\CyberLink\PowerCinema\PCMService.exe"
    O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
    O4 - HKLM\..\Run: [LWBMOUSE] C:\Program Files\FSC\Wireless Wheel Mouse\MOUSE32A.EXE
    O4 - HKLM\..\Run: [MULTIMEDIA KEYBOARD] C:\Program Files\Netropa\Multimedia Keyboard\MMKeybd.exe
    O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
    O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
    O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
    O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
    O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
    O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME\TomTomHOME.exe" -s
    O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
    O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
    O4 - HKLM\..\Run: [RegistrySmart] C:\Program Files\RegistrySmart\RegistrySmart.exe
    O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [axis web cake second] C:\Documents and Settings\All Users\Application Data\Book Slow Axis Web\Hole four.exe
    O4 - HKLM\..\Run: [beidsystemtray] C:\Program Files\Belgium Identity Card\beidsystemtray.exe
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
    O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
    O4 - HKCU\..\Run: [MSMSGS] "c:\Program Files\Messenger\Msmsgs.exe" /background
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
    O4 - HKCU\..\Run: [Uniblue RegistryBooster 2] C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe /S
    O4 - HKCU\..\Run: [SaveInternet] C:\DOCUME~1\KRISPE~1\APPLIC~1\OpenHope\drv meal readme.exe
    O4 - HKCU\..\Run: [SpywareProMFC] C:\Program Files\SpywarePro\SpywarePro.exe
    O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service')
    O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice')
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O4 - Startup: Webshots.lnk = C:\Program Files\Webshots\Launcher.exe
    O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Global Startup: Bluetooth Manager.lnk = ?
    O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
    O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
    O4 - Global Startup: MioSync.lnk = C:\Program Files\Mio Technology\MioSync\mioSync.exe
    O8 - Extra context menu item: &Webshots Photo Search - res://C:\Program Files\Webshots\WSToolbar4IE.dll/MENUSEARCH.HTM
    O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
    O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: (no name) - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - (no file)
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: @c:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: @c:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?LinkID=39204
    O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} - http://www.symantec.com/techsupp/asa/ctrl/LSSupCtl.cab
    O16 - DPF: {2E12FB00-546B-4EE3-9CC2-057BF02E1C17} (Webshots Multiple Media Uploader - Container) - http://community.webshots.com/html/atx/wsaxcontrol.cab
    O16 - DPF: {3451DEDE-631F-421C-8127-FD793AFC6CC8} (ActiveDataInfo Class) - http://www.symantec.com/techsupp/asa/ctrl/SymAData.cab
    O16 - DPF: {44990200-3C9D-426D-81DF-AAB636FA4345} (Symantec SmartIssue) - http://www.symantec.com/techsupp/asa/ctrl/tgctlsi.cab
    O16 - DPF: {44990301-3C9D-426D-81DF-AAB636FA4345} (Symantec Script Runner Class) - http://www.symantec.com/techsupp/asa/ctrl/tgctlsr.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by109fd.bay109.hotmail.msn.com/resources/MsnPUpld.cab
    O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/NL-BE/a-UNO1/GAME_UNO1.cab
    O16 - DPF: {6A344D34-5231-452A-8A57-D064AC9B7862} (Symantec Download Manager) - https://webdl.symantec.com/activex/symdlmgr.cab
    O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
    O16 - DPF: {C9A703E2-3145-11D8-813C-005022E14DE2} (Installer Class) - http://img.lnm.eu/qtid.com/client/GayIdClientInstaller.cab
    O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
    O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
    O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
    O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
    O22 - SharedTaskScheduler: IE Component Categories cache daemon - {553858A7-4922-4e7e-B1C1-97140C1C16EF} - C:\WINDOWS\system32\ieframe.dll
    O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
    O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
    O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
    O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
    O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
    O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
    O23 - Service: eID CRL Service - Zetes - C:\WINDOWS\system32\beidservicecrl.exe
    O23 - Service: eID Privacy Service - Zetes - C:\WINDOWS\system32\beidservicepcsc.exe
    O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
    O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
    O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
    O23 - Service: Netropa NHK Server (nhksrv) - Unknown owner - C:\Program Files\Netropa\Multimedia Keyboard\nhksrv.exe
    O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe

    --
    End of file - 16297 bytes
    Labels: Geen
    • Citaat
  • #2
    Niemand die me kan helpen? ook de pc loopt wat trager als anders.
    • Citaat

    Comment

    • #3
      Je topic had de "In behandeling-status" hierdoor is het waarschijnlijk niemand opgevallen dat je nog niet geholpen werd.

      Start HijackThis nog een keer, kies voor "Do a system scan only" en plaats alleen een vinkje voor de volgende regels:
      O2 - BHO: System - {D1C8F9CE-563E-11D8-813C-005022E14DE2} - C:\Program Files\GayId Client\AddAPI.dll (file missing)
      O3 - Toolbar: (no name) - {C17590D2-ECB4-4b15-8820-F58798DCC118} - (no file)
      O4 - HKLM\..\Run: [axis web cake second] C:\Documents and Settings\All Users\Application Data\Book Slow Axis Web\Hole four.exe
      O4 - HKCU\..\Run: [SaveInternet] C:\DOCUME~1\KRISPE~1\APPLIC~1\OpenHope\drv meal readme.exe
      O9 - Extra button: (no name) - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - (no file)
      Sluit alle open vensters(behalve HijackThis), klik daarna op "Fix checked" en sluit HijackThis af.

      Herstart even je computer.

      Download dit bestand: Deljob.exe (mirror)
      Plaats het op je bureaublad.
      Indien je virusscanner de download van deljob.exe blokkeert,
      schakel dan tijdelijk je virusscanner uit of download de zip-versie
      deljob.zip en pak deze uit naar je Bureaublad.
      Dubbelklik Deljob.exe.
      Een logje(logit.txt) zal openen, het bestandje kan je ook terugvinden op je bureaublad.
      Post de inhoud van logit.txt in je volgende bericht.
      Post ook een nieuw logje van HijackThis

      Groeten smeenk
      • Citaat

      Comment

      • #4
        Dit is al eentje

        --------------------------------------------------------
        No LOP jobs found
        --------------------------------------------------------
        Files remaining after cleaning

        AppleSoftwareUpdate.job
        RegistrySmart Scheduled Scan.job
        XoftSpySE 2.job
        XoftSpySE.job
        --------------------------------------------------------
        App data folders

        De volumenaam van station C is 453032
        Het volumenummer is 8C0D-32F6

        Map van C:\Documents and Settings\Kris Peeters\Application Data

        2008-01-02 20:26 <DIR> .
        2008-01-02 20:26 <DIR> ..
        2007-11-28 14:32 <DIR> Adobe
        2007-01-23 22:03 <DIR> AdobeUM
        2007-06-27 09:12 <DIR> Ahead
        2006-09-03 10:33 <DIR> APPLEC~1 Apple Computer
        2006-05-04 10:53 <DIR> ATI
        2007-12-19 10:16 <DIR> BEID-C~1 beid-cache
        2007-03-26 18:28 <DIR> Canon
        2006-07-03 15:06 <DIR> CYBERL~1 CyberLink
        2007-03-18 16:14 <DIR> DivX
        2006-09-21 08:47 <DIR> Google
        2007-07-17 14:49 <DIR> GrabIt
        2007-04-23 12:58 <DIR> Help
        2006-05-04 10:53 <DIR> IDENTI~1 Identities
        2007-08-31 09:12 <DIR> INSTAL~1 InstallShield
        2006-07-03 15:01 <DIR> INTERV~1 InterVideo
        2008-01-02 20:26 <DIR> Lavasoft
        2006-09-16 14:57 <DIR> MACROM~1 Macromedia
        2007-12-27 20:54 <DIR> MICROS~1 Microsoft
        2006-08-15 10:03 <DIR> MICROS~2 Microsoft Web Folders
        2007-04-03 09:58 <DIR> Mozilla
        2007-12-19 09:22 <DIR> OpenHope
        2006-09-03 10:31 <DIR> Real
        2008-01-08 19:25 <DIR> REGIST~1 RegistrySmart
        2007-09-10 21:42 <DIR> SmartFTP
        2006-08-29 13:45 <DIR> Sun
        2007-09-01 11:31 <DIR> Symantec
        2006-09-25 18:08 <DIR> Teleca
        2007-12-02 20:23 <DIR> Template
        2007-04-04 12:51 <DIR> Toshiba
        2007-11-11 15:36 <DIR> Uniblue
        2008-01-07 11:01 <DIR> uTorrent
        2006-09-06 16:59 <DIR> Webshots
        0 bestand(en) 0 bytes
        34 map(pen) 204,440,219,648 bytes beschikbaar
        De volumenaam van station C is 453032
        Het volumenummer is 8C0D-32F6

        Map van C:\Documents and Settings\All Users\Application Data

        2008-01-05 17:29 <DIR> .
        2008-01-05 17:29 <DIR> ..
        2007-11-27 14:32 <DIR> Adobe
        2006-05-04 10:53 <DIR> Ahead
        2007-07-15 14:32 <DIR> Apple
        2006-10-26 15:08 <DIR> APPLEC~1 Apple Computer
        2007-12-19 09:22 <DIR> BOOKSL~1 Book Slow Axis Web
        2006-07-07 13:02 <DIR> CYBERL~1 CyberLink
        2008-01-05 17:29 <DIR> ESPION~1 espionServerData
        2006-09-20 17:54 <DIR> Google
        2008-01-02 20:36 <DIR> MESSEN~1 Messenger Plus!
        2008-01-02 20:26 <DIR> MICROS~1 Microsoft
        2006-05-04 10:53 <DIR> SBSI
        2006-08-15 10:15 <DIR> SBT
        2006-09-25 18:06 <DIR> SONYER~1 Sony Ericsson
        2008-01-02 20:26 <DIR> SPYBOT~1 Spybot - Search & Destroy
        2008-01-08 22:19 <DIR> Symantec
        2006-09-25 18:06 <DIR> Teleca
        2007-12-30 15:22 <DIR> TEMP
        2007-08-31 09:15 <DIR> TomTom
        2006-07-20 18:28 <DIR> WINDOW~1 Windows Genuine Advantage
        2007-11-21 11:38 <DIR> WLINST~1 WLInstaller
        2007-03-17 15:06 <DIR> YAHOO!~1 Yahoo! Companion
        0 bestand(en) 0 bytes
        23 map(pen) 204,440,215,552 bytes beschikbaar
        --------------------------------------------------------
        En dit is de tweede:

        Logfile of Trend Micro HijackThis v2.0.2
        Scan saved at 22:23, on 2008-01-08
        Platform: Windows XP SP2 (WinNT 5.01.2600)
        MSIE: Internet Explorer v7.00 (7.00.6000.16574)
        Boot mode: Normal

        Running processes:
        C:\WINDOWS\System32\smss.exe
        C:\WINDOWS\system32\winlogon.exe
        C:\WINDOWS\system32\services.exe
        C:\WINDOWS\system32\lsass.exe
        C:\WINDOWS\system32\Ati2evxx.exe
        C:\WINDOWS\system32\svchost.exe
        C:\WINDOWS\System32\svchost.exe
        C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
        C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
        C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe
        C:\WINDOWS\system32\Ati2evxx.exe
        C:\WINDOWS\Explorer.EXE
        C:\WINDOWS\system32\spoolsv.exe
        C:\Program Files\Netropa\Multimedia Keyboard\nhksrv.exe
        C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
        C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
        C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
        C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
        C:\WINDOWS\system32\beidservicecrl.exe
        C:\WINDOWS\system32\beidservicepcsc.exe
        C:\WINDOWS\system32\svchost.exe
        C:\WINDOWS\RTHDCPL.EXE
        C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
        C:\Program Files\CyberLink\PowerCinema\PCMService.exe
        C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
        C:\Program Files\FSC\Wireless Wheel Mouse\MOUSE32A.EXE
        C:\Program Files\Netropa\Multimedia Keyboard\MMKeybd.exe
        C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe
        C:\Program Files\Netropa\Multimedia Keyboard\TrayMon.exe
        C:\Program Files\Netropa\Onscreen Display\OSD.exe
        C:\Program Files\Netropa\InetKb\Inetkb.exe
        C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe
        C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
        C:\Program Files\Common Files\Real\Update_OB\realsched.exe
        C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
        C:\Program Files\Logitech\Video\LogiTray.exe
        C:\Program Files\TomTom HOME\TomTomHOME.exe
        C:\Program Files\Common Files\Symantec Shared\ccApp.exe
        C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
        C:\Program Files\iTunes\iTunesHelper.exe
        C:\Program Files\Belgium Identity Card\beidsystemtray.exe
        C:\WINDOWS\system32\ctfmon.exe
        C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
        C:\Program Files\Messenger\Msmsgs.exe
        C:\Program Files\RegistrySmart\RegistrySmart.exe
        C:\WINDOWS\system32\LVComsX.exe
        C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe
        C:\Program Files\Logitech\Video\FxSvr2.exe
        C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
        C:\Program Files\Mio Technology\MioSync\mioSync.exe
        C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
        C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
        C:\Program Files\Webshots\Webshots.scr
        C:\Program Files\iPod\bin\iPodService.exe
        C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
        C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
        C:\Program Files\Internet Explorer\iexplore.exe
        C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLLoginProxy.exe
        C:\Program Files\Windows Live\Messenger\usnsvc.exe
        C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

        R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.hln.be/
        R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
        R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
        R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://pac.telenet.be:8080/
        R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
        R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
        O2 - BHO: (no name) - {1E8A6170-7264-4D0F-BEAE-D42A53123C75} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\NppBho.dll
        O2 - BHO: Trailfire Helper Object - {238D3404-0761-4B4D-851C-050A3A0AC40A} - C:\Program Files\Trailfire\trailfireToolbar-1.1.11748.dll
        O2 - BHO: RUPK - {604B283A-4E26-4504-98E7-72859F949547} - C:\PROGRA~1\HITWAR~1\sypcms.dll
        O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
        O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
        O2 - BHO: ST - {9394EDE7-C8B5-483E-8773-474BF36AF6E4} - C:\Program Files\MSN Apps\ST\01.03.0000.1005\en-xu\stmain.dll
        O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar4.dll
        O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\2.1.1119.1736\swg.dll
        O2 - BHO: MSNToolBandBHO - {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\en-au\msntb.dll
        O3 - Toolbar: ninemsn - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\MSN Apps\MSN Toolbar\01.02.5000.1021\en-au\msntb.dll
        O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar4.dll
        O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
        O3 - Toolbar: Visa Norton-verktygsfältet - {90222687-F593-4738-B738-FBEE9C7B26DF} - C:\Program Files\Common Files\Symantec Shared\coShared\Browser\1.5\UIBHO.dll
        O3 - Toolbar: Trailfire Toolbar - {238D3403-0761-4B4D-851C-050A3A0AC40A} - C:\Program Files\Trailfire\trailfireToolbar-1.1.11748.dll
        O4 - HKLM\..\Run: [Snelkoppeling naar eigenschappenvenster voor High Definition Audio] HDAShCut.exe
        O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
        O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
        O4 - HKLM\..\Run: [PCMService] "C:\Program Files\CyberLink\PowerCinema\PCMService.exe"
        O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
        O4 - HKLM\..\Run: [LWBMOUSE] C:\Program Files\FSC\Wireless Wheel Mouse\MOUSE32A.EXE
        O4 - HKLM\..\Run: [MULTIMEDIA KEYBOARD] C:\Program Files\Netropa\Multimedia Keyboard\MMKeybd.exe
        O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files\Adobe\Photoshop Album Starter Edition\3.2\Apps\apdproxy.exe"
        O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_03\bin\jusched.exe"
        O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
        O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
        O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
        O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe
        O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
        O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME\TomTomHOME.exe" -s
        O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
        O4 - HKLM\..\Run: [Symantec PIF AlertEng] "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe" /a /m "C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\AlertEng.dll"
        O4 - HKLM\..\Run: [RegistrySmart] C:\Program Files\RegistrySmart\RegistrySmart.exe
        O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
        O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
        O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
        O4 - HKLM\..\Run: [beidsystemtray] C:\Program Files\Belgium Identity Card\beidsystemtray.exe
        O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
        O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
        O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BackWeb-8876480.exe
        O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
        O4 - HKCU\..\Run: [MSMSGS] "c:\Program Files\Messenger\Msmsgs.exe" /background
        O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\MsnMsgr.Exe" /background
        O4 - HKCU\..\Run: [Uniblue RegistryBooster 2] C:\Program Files\Uniblue\RegistryBooster 2\RegistryBooster.exe /S
        O4 - HKCU\..\Run: [SpywareProMFC] C:\Program Files\SpywarePro\SpywarePro.exe
        O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Lokale service')
        O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Netwerkservice')
        O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
        O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
        O4 - Startup: Webshots.lnk = C:\Program Files\Webshots\Launcher.exe
        O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
        O4 - Global Startup: Bluetooth Manager.lnk = ?
        O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
        O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
        O4 - Global Startup: MioSync.lnk = C:\Program Files\Mio Technology\MioSync\mioSync.exe
        O8 - Extra context menu item: &Webshots Photo Search - res://C:\Program Files\Webshots\WSToolbar4IE.dll/MENUSEARCH.HTM
        O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
        O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
        O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
        O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
        O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
        O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
        O9 - Extra button: @c:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\Program Files\Messenger\msmsgs.exe
        O9 - Extra 'Tools' menuitem: @c:\Program Files\Messenger\Msgslang.dll,-61144 - {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\Program Files\Messenger\msmsgs.exe
        O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?LinkID=39204
        O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} - http://www.symantec.com/techsupp/asa/ctrl/LSSupCtl.cab
        O16 - DPF: {2E12FB00-546B-4EE3-9CC2-057BF02E1C17} (Webshots Multiple Media Uploader - Container) - http://community.webshots.com/html/atx/wsaxcontrol.cab
        O16 - DPF: {3451DEDE-631F-421C-8127-FD793AFC6CC8} (ActiveDataInfo Class) - http://www.symantec.com/techsupp/asa/ctrl/SymAData.cab
        O16 - DPF: {44990200-3C9D-426D-81DF-AAB636FA4345} (Symantec SmartIssue) - http://www.symantec.com/techsupp/asa/ctrl/tgctlsi.cab
        O16 - DPF: {44990301-3C9D-426D-81DF-AAB636FA4345} (Symantec Script Runner Class) - http://www.symantec.com/techsupp/asa/ctrl/tgctlsr.cab
        O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://by109fd.bay109.hotmail.msn.com/resources/MsnPUpld.cab
        O16 - DPF: {5D6F45B3-9043-443D-A792-115447494D24} (UnoCtrl Class) - http://messenger.zone.msn.com/NL-BE/a-UNO1/GAME_UNO1.cab
        O16 - DPF: {6A344D34-5231-452A-8A57-D064AC9B7862} (Symantec Download Manager) - https://webdl.symantec.com/activex/symdlmgr.cab
        O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary/MessengerStatsPAClient.cab56907.cab
        O16 - DPF: {C9A703E2-3145-11D8-813C-005022E14DE2} (Installer Class) - http://img.lnm.eu/qtid.com/client/GayIdClientInstaller.cab
        O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
        O17 - HKLM\System\CS1\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
        O17 - HKLM\System\CCS\Services\Tcpip\Parameters: NameServer = 208.67.220.220,208.67.222.222
        O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
        O22 - SharedTaskScheduler: IE Component Categories cache daemon - {553858A7-4922-4e7e-B1C1-97140C1C16EF} - C:\WINDOWS\system32\ieframe.dll
        O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
        O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
        O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
        O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
        O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccProxy.exe
        O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
        O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLCapSvc.exe
        O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\CyberLink\PowerCinema\Kernel\TV\CLSched.exe
        O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
        O23 - Service: COM Host (comHost) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\VAScanner\comHost.exe
        O23 - Service: CyberLink Media Library Service - Cyberlink - C:\Program Files\CyberLink\PowerCinema\Kernel\CLML_NTService\CLMLServer.exe
        O23 - Service: eID CRL Service - Zetes - C:\WINDOWS\system32\beidservicecrl.exe
        O23 - Service: eID Privacy Service - Zetes - C:\WINDOWS\system32\beidservicepcsc.exe
        O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
        O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
        O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
        O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
        O23 - Service: LiveUpdate Notice Service Ex (LiveUpdate Notice Ex) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
        O23 - Service: LiveUpdate Notice Service - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
        O23 - Service: Netropa NHK Server (nhksrv) - Unknown owner - C:\Program Files\Netropa\Multimedia Keyboard\nhksrv.exe
        O23 - Service: Symantec Core LC - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe

        --
        End of file - 15636 bytes
        • Citaat

        Comment

        • #5
          Download en installeer dit programma: GV Killer.exe

          Dubbelklik het, er zal een text-bestand openen(input.txt)
          Verwijder eventueel de text die al in dat bestand staat en plaats de volgende vetgedrukte regels er weer in:

          C:\Documents and Settings\Kris Peeters\Application Data\OpenHope
          C:\Documents and Settings\All Users\Application Data\Book Slow Axis Web
          C:\Program Files\OpenHope

          Sluit het textbestand en laat de wijzigingen opslaan
          Klik nu op de knop "Kill on reboot" en laat de PC herstarten.
          Na de herstart zal GV_Killer.exe opnieuw gestart worden, geef toestemming om de mappen te verwijderen.
          Als dat gelukt is mag je GV_Killer afsluiten.

          Post daarna een nieuw logje van Deljob.exe en meldt of de problemen voorbij zijn
          • Citaat

          Comment

          • #6
            Dit is het logje:

            --------------------------------------------------------
            No LOP jobs found
            --------------------------------------------------------
            Files remaining after cleaning

            AppleSoftwareUpdate.job
            RegistrySmart Scheduled Scan.job
            XoftSpySE 2.job
            XoftSpySE.job
            --------------------------------------------------------
            App data folders

            De volumenaam van station C is 453032
            Het volumenummer is 8C0D-32F6

            Map van C:\Documents and Settings\Kris Peeters\Application Data

            2008-01-02 20:26 <DIR> .
            2008-01-02 20:26 <DIR> ..
            2007-11-28 14:32 <DIR> Adobe
            2007-01-23 22:03 <DIR> AdobeUM
            2007-06-27 09:12 <DIR> Ahead
            2006-09-03 10:33 <DIR> APPLEC~1 Apple Computer
            2006-05-04 10:53 <DIR> ATI
            2007-12-19 10:16 <DIR> BEID-C~1 beid-cache
            2007-03-26 18:28 <DIR> Canon
            2006-07-03 15:06 <DIR> CYBERL~1 CyberLink
            2007-03-18 16:14 <DIR> DivX
            2006-09-21 08:47 <DIR> Google
            2007-07-17 14:49 <DIR> GrabIt
            2007-04-23 12:58 <DIR> Help
            2006-05-04 10:53 <DIR> IDENTI~1 Identities
            2007-08-31 09:12 <DIR> INSTAL~1 InstallShield
            2006-07-03 15:01 <DIR> INTERV~1 InterVideo
            2008-01-02 20:26 <DIR> Lavasoft
            2006-09-16 14:57 <DIR> MACROM~1 Macromedia
            2007-12-27 20:54 <DIR> MICROS~1 Microsoft
            2006-08-15 10:03 <DIR> MICROS~2 Microsoft Web Folders
            2007-04-03 09:58 <DIR> Mozilla
            2007-12-19 09:22 <DIR> OpenHope
            2006-09-03 10:31 <DIR> Real
            2008-01-08 19:25 <DIR> REGIST~1 RegistrySmart
            2007-09-10 21:42 <DIR> SmartFTP
            2006-08-29 13:45 <DIR> Sun
            2007-09-01 11:31 <DIR> Symantec
            2006-09-25 18:08 <DIR> Teleca
            2007-12-02 20:23 <DIR> Template
            2007-04-04 12:51 <DIR> Toshiba
            2007-11-11 15:36 <DIR> Uniblue
            2008-01-07 11:01 <DIR> uTorrent
            2006-09-06 16:59 <DIR> Webshots
            0 bestand(en) 0 bytes
            34 map(pen) 204,432,150,528 bytes beschikbaar
            De volumenaam van station C is 453032
            Het volumenummer is 8C0D-32F6

            Map van C:\Documents and Settings\All Users\Application Data

            2008-01-08 22:35 <DIR> .
            2008-01-08 22:35 <DIR> ..
            2007-11-27 14:32 <DIR> Adobe
            2006-05-04 10:53 <DIR> Ahead
            2007-07-15 14:32 <DIR> Apple
            2006-10-26 15:08 <DIR> APPLEC~1 Apple Computer
            2006-07-07 13:02 <DIR> CYBERL~1 CyberLink
            2008-01-05 17:29 <DIR> ESPION~1 espionServerData
            2006-09-20 17:54 <DIR> Google
            2008-01-02 20:36 <DIR> MESSEN~1 Messenger Plus!
            2008-01-02 20:26 <DIR> MICROS~1 Microsoft
            2006-05-04 10:53 <DIR> SBSI
            2006-08-15 10:15 <DIR> SBT
            2006-09-25 18:06 <DIR> SONYER~1 Sony Ericsson
            2008-01-02 20:26 <DIR> SPYBOT~1 Spybot - Search & Destroy
            2008-01-08 22:45 <DIR> Symantec
            2006-09-25 18:06 <DIR> Teleca
            2007-12-30 15:22 <DIR> TEMP
            2007-08-31 09:15 <DIR> TomTom
            2006-07-20 18:28 <DIR> WINDOW~1 Windows Genuine Advantage
            2007-11-21 11:38 <DIR> WLINST~1 WLInstaller
            2007-03-17 15:06 <DIR> YAHOO!~1 Yahoo! Companion
            0 bestand(en) 0 bytes
            22 map(pen) 204,432,146,432 bytes beschikbaar
            --------------------------------------------------------
            Voor het moment geenCiD meer. Morgen is uitgebreider teste.

            Nu voor de hulp, al duizendmaal dank.

            kris
            • Citaat

            Comment

            • #7
              Deze is nog aanwezig:
              C:\Documents and Settings\Kris Peeters\Application Data\OpenHope

              Dubbelklik GV_Killer.exe er zal een text-bestand openen(input.txt)
              Verwijder eventueel de text die al in dat bestand staat en plaats de volgende vetgedrukte regels er weer in:

              C:\Documents and Settings\Kris Peeters\Application Data\OpenHope

              Sluit het textbestand en laat de wijzigingen opslaan
              Klik nu op de knop "Kill on reboot" en laat de PC herstarten.
              Na de herstart zal GV_Killer.exe opnieuw gestart worden, geef toestemming om de mappen te verwijderen.
              Als dat gelukt is mag je GV_Killer afsluiten.

              Post daarna een nieuw logje van Deljob.exe
              Zijn er nog meer gebruikers op deze computer?
              • Citaat

              Comment

              • #8
                Begrijp het voorgaande niet goed, het staat erin en moet opnieuw inzetten??

                En er zijn geen andere gebruikers.
                • Citaat

                Comment

                • #9
                  Die map is nog aanwezig, gebruik het programma opnieuw.

                  Als het niet lukt probeer dan de map:
                  C:\Documents and Settings\Kris Peeters\Application Data\OpenHope
                  zelf te vinden en te verwijderen
                  • Citaat

                  Comment

                  • #10
                    Ok , heb het gedaan zoals je zei, hier is opnieuw een logje:
                    --------------------------------------------------------
                    No LOP jobs found
                    --------------------------------------------------------
                    Files remaining after cleaning

                    AppleSoftwareUpdate.job
                    RegistrySmart Scheduled Scan.job
                    XoftSpySE 2.job
                    XoftSpySE.job
                    --------------------------------------------------------
                    App data folders

                    De volumenaam van station C is 453032
                    Het volumenummer is 8C0D-32F6

                    Map van C:\Documents and Settings\Kris Peeters\Application Data

                    2008-01-02 20:26 <DIR> .
                    2008-01-02 20:26 <DIR> ..
                    2007-11-28 14:32 <DIR> Adobe
                    2007-01-23 22:03 <DIR> AdobeUM
                    2007-06-27 09:12 <DIR> Ahead
                    2006-09-03 10:33 <DIR> APPLEC~1 Apple Computer
                    2006-05-04 10:53 <DIR> ATI
                    2007-12-19 10:16 <DIR> BEID-C~1 beid-cache
                    2007-03-26 18:28 <DIR> Canon
                    2006-07-03 15:06 <DIR> CYBERL~1 CyberLink
                    2007-03-18 16:14 <DIR> DivX
                    2006-09-21 08:47 <DIR> Google
                    2007-07-17 14:49 <DIR> GrabIt
                    2007-04-23 12:58 <DIR> Help
                    2006-05-04 10:53 <DIR> IDENTI~1 Identities
                    2007-08-31 09:12 <DIR> INSTAL~1 InstallShield
                    2006-07-03 15:01 <DIR> INTERV~1 InterVideo
                    2008-01-02 20:26 <DIR> Lavasoft
                    2006-09-16 14:57 <DIR> MACROM~1 Macromedia
                    2007-12-27 20:54 <DIR> MICROS~1 Microsoft
                    2006-08-15 10:03 <DIR> MICROS~2 Microsoft Web Folders
                    2007-04-03 09:58 <DIR> Mozilla
                    2007-12-19 09:22 <DIR> OpenHope
                    2006-09-03 10:31 <DIR> Real
                    2008-01-08 19:25 <DIR> REGIST~1 RegistrySmart
                    2007-09-10 21:42 <DIR> SmartFTP
                    2006-08-29 13:45 <DIR> Sun
                    2007-09-01 11:31 <DIR> Symantec
                    2006-09-25 18:08 <DIR> Teleca
                    2007-12-02 20:23 <DIR> Template
                    2007-04-04 12:51 <DIR> Toshiba
                    2007-11-11 15:36 <DIR> Uniblue
                    2008-01-07 11:01 <DIR> uTorrent
                    2006-09-06 16:59 <DIR> Webshots
                    0 bestand(en) 0 bytes
                    34 map(pen) 205,143,048,192 bytes beschikbaar
                    De volumenaam van station C is 453032
                    Het volumenummer is 8C0D-32F6

                    Map van C:\Documents and Settings\All Users\Application Data

                    2008-01-08 22:35 <DIR> .
                    2008-01-08 22:35 <DIR> ..
                    2007-11-27 14:32 <DIR> Adobe
                    2006-05-04 10:53 <DIR> Ahead
                    2007-07-15 14:32 <DIR> Apple
                    2006-10-26 15:08 <DIR> APPLEC~1 Apple Computer
                    2006-07-07 13:02 <DIR> CYBERL~1 CyberLink
                    2008-01-05 17:29 <DIR> ESPION~1 espionServerData
                    2006-09-20 17:54 <DIR> Google
                    2008-01-02 20:36 <DIR> MESSEN~1 Messenger Plus!
                    2008-01-02 20:26 <DIR> MICROS~1 Microsoft
                    2006-05-04 10:53 <DIR> SBSI
                    2006-08-15 10:15 <DIR> SBT
                    2006-09-25 18:06 <DIR> SONYER~1 Sony Ericsson
                    2008-01-02 20:26 <DIR> SPYBOT~1 Spybot - Search & Destroy
                    2008-01-09 11:20 <DIR> Symantec
                    2006-09-25 18:06 <DIR> Teleca
                    2007-12-30 15:22 <DIR> TEMP
                    2007-08-31 09:15 <DIR> TomTom
                    2006-07-20 18:28 <DIR> WINDOW~1 Windows Genuine Advantage
                    2007-11-21 11:38 <DIR> WLINST~1 WLInstaller
                    2007-03-17 15:06 <DIR> YAHOO!~1 Yahoo! Companion
                    0 bestand(en) 0 bytes
                    22 map(pen) 205,143,044,096 bytes beschikbaar
                    --------------------------------------------------------
                    • Citaat

                    Comment

                    • #11
                      Heb het handmatig verwijderd en dit is het resultaat.
                      --------------------------------------------------------
                      No LOP jobs found
                      --------------------------------------------------------
                      Files remaining after cleaning

                      AppleSoftwareUpdate.job
                      RegistrySmart Scheduled Scan.job
                      XoftSpySE 2.job
                      XoftSpySE.job
                      --------------------------------------------------------
                      App data folders

                      De volumenaam van station C is 453032
                      Het volumenummer is 8C0D-32F6

                      Map van C:\Documents and Settings\Kris Peeters\Application Data

                      2008-01-09 11:23 <DIR> .
                      2008-01-09 11:23 <DIR> ..
                      2007-11-28 14:32 <DIR> Adobe
                      2007-01-23 22:03 <DIR> AdobeUM
                      2007-06-27 09:12 <DIR> Ahead
                      2006-09-03 10:33 <DIR> APPLEC~1 Apple Computer
                      2006-05-04 10:53 <DIR> ATI
                      2007-12-19 10:16 <DIR> BEID-C~1 beid-cache
                      2007-03-26 18:28 <DIR> Canon
                      2006-07-03 15:06 <DIR> CYBERL~1 CyberLink
                      2007-03-18 16:14 <DIR> DivX
                      2006-09-21 08:47 <DIR> Google
                      2007-07-17 14:49 <DIR> GrabIt
                      2007-04-23 12:58 <DIR> Help
                      2006-05-04 10:53 <DIR> IDENTI~1 Identities
                      2007-08-31 09:12 <DIR> INSTAL~1 InstallShield
                      2006-07-03 15:01 <DIR> INTERV~1 InterVideo
                      2008-01-02 20:26 <DIR> Lavasoft
                      2006-09-16 14:57 <DIR> MACROM~1 Macromedia
                      2007-12-27 20:54 <DIR> MICROS~1 Microsoft
                      2006-08-15 10:03 <DIR> MICROS~2 Microsoft Web Folders
                      2007-04-03 09:58 <DIR> Mozilla
                      2006-09-03 10:31 <DIR> Real
                      2008-01-08 19:25 <DIR> REGIST~1 RegistrySmart
                      2007-09-10 21:42 <DIR> SmartFTP
                      2006-08-29 13:45 <DIR> Sun
                      2007-09-01 11:31 <DIR> Symantec
                      2006-09-25 18:08 <DIR> Teleca
                      2007-12-02 20:23 <DIR> Template
                      2007-04-04 12:51 <DIR> Toshiba
                      2007-11-11 15:36 <DIR> Uniblue
                      2008-01-07 11:01 <DIR> uTorrent
                      2006-09-06 16:59 <DIR> Webshots
                      0 bestand(en) 0 bytes
                      33 map(pen) 205,142,753,280 bytes beschikbaar
                      De volumenaam van station C is 453032
                      Het volumenummer is 8C0D-32F6

                      Map van C:\Documents and Settings\All Users\Application Data

                      2008-01-08 22:35 <DIR> .
                      2008-01-08 22:35 <DIR> ..
                      2007-11-27 14:32 <DIR> Adobe
                      2006-05-04 10:53 <DIR> Ahead
                      2007-07-15 14:32 <DIR> Apple
                      2006-10-26 15:08 <DIR> APPLEC~1 Apple Computer
                      2006-07-07 13:02 <DIR> CYBERL~1 CyberLink
                      2008-01-05 17:29 <DIR> ESPION~1 espionServerData
                      2006-09-20 17:54 <DIR> Google
                      2008-01-02 20:36 <DIR> MESSEN~1 Messenger Plus!
                      2008-01-02 20:26 <DIR> MICROS~1 Microsoft
                      2006-05-04 10:53 <DIR> SBSI
                      2006-08-15 10:15 <DIR> SBT
                      2006-09-25 18:06 <DIR> SONYER~1 Sony Ericsson
                      2008-01-02 20:26 <DIR> SPYBOT~1 Spybot - Search & Destroy
                      2008-01-09 11:20 <DIR> Symantec
                      2006-09-25 18:06 <DIR> Teleca
                      2007-12-30 15:22 <DIR> TEMP
                      2007-08-31 09:15 <DIR> TomTom
                      2006-07-20 18:28 <DIR> WINDOW~1 Windows Genuine Advantage
                      2007-11-21 11:38 <DIR> WLINST~1 WLInstaller
                      2007-03-17 15:06 <DIR> YAHOO!~1 Yahoo! Companion
                      0 bestand(en) 0 bytes
                      22 map(pen) 205,142,753,280 bytes beschikbaar
                      --------------------------------------------------------
                      • Citaat

                      Comment

                      • #12
                        Ziet er goed uit

                        Download ATF cleaner (mirror)(gemaakt door Atribune)

                        Belangrijk: Sluit al je browservensters(IE en/of Firefox en/of Opera) om de tool goed te kunnen laten werken.

                        Dubbelklik op ATF cleaner om het programma te starten.
                        Op het tabblad "Main", plaats je een vinkje bij Select All.
                        Klik op de knop Empty Selected.

                        Het volgende doen als je ook FireFox als browser hebt:
                        Klik op tabblad "Firefox", plaats een vinkje bij Select All.
                        Wil je de door Firefox opgeslagen wachtwoorden behouden, dan klik je in het venster dat verschijnt op "No".
                        (dit haalt het vinkje weer weg bij "Firefox saved passwords")
                        Klik op de knop Empty Selected.

                        Het volgende doen als je ook Opera als browser hebt:
                        Klik op tabblad "Opera", plaats een vinkje bij Select All.
                        Wil je de door Opera opgeslagen wachtwoorden behouden, dan klik je in het venster dat verschijnt op "No".
                        Klik op de knop Empty Selected.
                        Ga naar het tabblad "Main" en klik op de knop Exit om het programma af te sluiten.

                        Schakel Systeemherstel uit. Herstart de computer. Schakel Systeemherstel weer in.
                        Kijk hier hoe je je systeemherstel moet uitschakelen.
                        Hiermee verwijder je eventuele restanten van de infecties uit je systeemherstel.

                        Dan denk ik dat alles weer OK is
                        • Citaat

                        Comment

                        • #13
                          Heb alles gedaan wat je gevraagd hebt. Hopelijk is alles nu in orde.

                          Duizend maal dank voor mij hier te helpen.
                          • Citaat

                          Comment

                          • #14
                            Graag gedaan hoor
                            • Citaat

                            Comment

                            Vorige template Volgende
                            Sorry, you are not authorized to view this page
                            Working...
                            X