antivirus.startpagina.nl

Logfile + Probleem

  • Anonymous avatar

    Erik

    Mogen we nog een nieuw hjt logje :-)

  • Anonymous avatar

    Rudolf

    u vraagt wij draaien ..

    heb allen nog 1 probleem krijg geen verbinding met msn ..

    Logfile of HijackThis v1.99.1

    Scan saved at 18:43:42, on 28-10-05

    Platform: Windows 98 SE (Win9x 4.10.2222A)

    MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

    Running processes:

    C:\WINDOWS\SYSTEM\KERNEL32.DLL

    C:\WINDOWS\SYSTEM\MSGSRV32.EXE

    C:\WINDOWS\SYSTEM\MPREXE.EXE

    C:\WINDOWS\SYSTEM\mmtask.tsk

    C:\WINDOWS\SYSTEM\MSTASK.EXE

    C:\NORMAN\BIN\ZANDA.EXE

    C:\WINDOWS\EXPLORER.EXE

    C:\NORMAN\NVC\BIN\CCLAW.EXE

    C:\NORMAN\NVC\BIN\NVCSCHED.EXE

    C:\NORMAN\NVC\BIN\NIP.EXE

    C:\NORMAN\BIN\NJEEVES.EXE

    C:\WINDOWS\TASKMON.EXE

    C:\WINDOWS\SYSTEM\SYSTRAY.EXE

    C:\WINDOWS\LOADQM.EXE

    C:\WINDOWS\SYSTEM\STIMON.EXE

    C:\NORMAN\BIN\ZLH.EXE

    C:\PROGRAM FILES\MSN MESSENGER\MSNMSGR.EXE

    C:\PROGRAM FILES\TEXTBRIDGE CLASSIC 2.0\EREG\REMIND32.EXE

    C:\PROGRAM FILES\WINZIP\WZQKPICK.EXE

    C:\WINDOWS\SYSTEM\WMIEXE.EXE

    C:\WINDOWS\SYSTEM\DDHELP.EXE

    C:\WINDOWS\SYSTEM\PSTORES.EXE

    C:\WINDOWS\DESKTOP\BURO TROEP\HIJACK 2\HIJACKTHIS.EXE

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.startpagina.nl/

    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.arnhem.chello.nl:8080

    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost

    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen

    F1 - win.ini: run=hpfsched

    O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAM FILES\ADOBE\ACROBAT 5.0\READER\ACTIVEX\ACROIEHELPER.OCX

    O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX

    O4 - HKLM\..\Run: C:\WINDOWS\scanregw.exe /autorun

    O4 - HKLM\..\Run: C:\WINDOWS\taskmon.exe

    O4 - HKLM\..\Run: SysTray.ExE

    O4 - HKLM\..\Run: Rundll32.exe powrprof.dll,LoadCurrentPwrScheme

    O4 - HKLM\..\Run: RUNDLL32.EXE C:\WINDOWS\SYSTEM\NvCpl.dll,NvStartup

    O4 - HKLM\..\Run: nwiz.exe /install

    O4 - HKLM\..\Run: RUNDLL32.EXE C:\WINDOWS\SYSTEM\NvMcTray.dll,NvTaskbarInit

    O4 - HKLM\..\Run: C:\PROGRA~1\TEXTBR~1.0\BIN\REGIST~1.EXE

    O4 - HKLM\..\Run: loadqm.exe

    O4 - HKLM\..\Run: C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mm_tray.exe

    O4 - HKLM\..\Run: starter.exe

    O4 - HKLM\..\Run: C:\WINDOWS\SYSTEM\STIMON.EXE

    O4 - HKLM\..\Run: C:\NORMAN\BIN\ZLH.EXE /LOAD /SPLASH

    O4 - HKLM\..\RunServices: Rundll32.exe powrprof.dll,LoadCurrentPwrScheme

    O4 - HKLM\..\RunServices: C:\PROGRA~1\TEXTBR~1.0\BIN\REGIST~1.EXE

    O4 - HKLM\..\RunServices: mstask.exe

    O4 - HKLM\..\RunServices: “C:\Program Files\Common Files\Symantec Shared\Script Blocking\SBServ.exe” -reg

    O4 - HKLM\..\RunServices: “C:\NORMAN\BIN\ZANDA.EXE” /LOAD

    O4 - HKCU\..\Run: “C:\PROGRAM FILES\MSN MESSENGER\MSNMSGR.EXE” /background

    O4 - Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office10\OSA.EXE

    O4 - Startup: reminder-ScanSoft Product Registration.lnk = C:\Program Files\TextBridge Classic 2.0\Ereg\REMIND32.EXE

    O4 - Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE

    O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRAM FILES\YAHOO!\MESSENGER\YHEXBMES0521.DLL

    O9 - Extra ‘Tools’ menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\PROGRAM FILES\YAHOO!\MESSENGER\YHEXBMES0521.DLL

    O9 - Extra button: Microsoft AntiSpyware helper - {113AB220-CCD5-11D9-9EE7-0001029F72C0} - (no file) (HKCU)

    O9 - Extra ‘Tools’ menuitem: Microsoft AntiSpyware helper - {113AB220-CCD5-11D9-9EE7-0001029F72C0} - (no file) (HKCU)

    O12 - Plugin for .pdf: C:\PROGRA~1\INTERN~1\PLUGINS\nppdf32.dll

    O16 - DPF: {CE69F98F-2AF3-4306-BAC6-A79070EDA1B4} (Zylom Loader Object) - http://game16.zylom.lycos.nl/activex/zylomloader.cab

    O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game14.zylom.lycos.nl/activex/zylomgamesplayer.cab

    O16 - DPF: Yahoo! Pool 2 - http://download.games.yahoo.com/games/clients/y/pote_x.cab

    O16 - DPF: {1663ed61-23eb-11d2-b92f-008048fdd814} (MeadCo ScriptX Basic) - http://www.kennelclub.nl/media/scripts/ScriptX.cab

    O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab

    O17 - HKLM\System\CCS\Services\VxD\MSTCP: NameServer = 212.142.28.66,212.142.28.67

  • Anonymous avatar

    Rudolf

    staat hier boven weet niet of jullie hem al gezine hadden ??

  • Anonymous avatar

    Erik

    Logje is schoon.

    MSN deinstalleren en opnieuw installeren, mischien zijn er een paar registersleutels veranderd :? of het is druk :? gebeurd mij ook wel eens.

  • Anonymous avatar

    Rudolf

    programmatje verwijderen ??

    hij staad zo pontifikaal op het burop blad …

    oke thnx .. kan ik dat laatste [

    enne allemaal heel erg bedankt voor jullie hulp aan dit blondje vandaag