Re: Avg verwijderen

• 

  carrette georges

  20-04-2014 09:04

  Arthur Schreef:

  ——————————————————-

  > Logfile of HijackThis v1.99.1

  > Scan saved at 11:59:32, on 9-8-2005

  > Platform: Windows XP SP1 (WinNT 5.01.2600)

  > MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

  >

  > Running processes:

  > C:\WINDOWS\System32\smss.exe

  > C:\WINDOWS\system32\winlogon.exe

  > C:\WINDOWS\system32\services.exe

  > C:\WINDOWS\system32\lsass.exe

  > C:\WINDOWS\system32\svchost.exe

  > C:\WINDOWS\System32\svchost.exe

  > C:\WINDOWS\system32\spoolsv.exe

  > C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

  > C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

  > C:\Program Files\IVT

  > Corporation\BlueSoleil\BTNtService.exe

  > C:\WINDOWS\System32\nvsvc32.exe

  > C:\WINDOWS\System32\svchost.exe

  > C:\WINDOWS\Explorer.EXE

  > C:\WINDOWS\System32\sistray.EXE

  > C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe

  > C:\Program Files\Skype\Phone\Skype.exe

  > C:\Program Files\IVT

  > Corporation\BlueSoleil\BlueSoleil.exe

  > C:\WINDOWS\System32\wuauclt.exe

  > C:\Program Files\Internet Explorer\iexplore.exe

  > C:\Documents and Settings\ICT\Mijn documenten\Mijn

  > ontvangen bestanden\hijackthis.exe

  >

  > R0 - HKCU\Software\Microsoft\Internet

  > Explorer\Main,Start Page =

  > http://home.nld.chello.nl/

  > R1 - HKLM\Software\Microsoft\Internet

  > Explorer\Main,Default_Page_URL =

  > http://www.tiscali.nl

  > R0 - HKLM\Software\Microsoft\Internet

  > Explorer\Main,Start Page =

  > http://www.startpagina.nl

  > R1 - HKCU\Software\Microsoft\Internet

  > Explorer\Main,Window Title = Microsoft Internet

  > Explorer aangeboden door Tiscali

  > R1 -

  > HKCU\Software\Microsoft\Windows\CurrentVersion\Int

  > ernet Settings,ProxyServer =

  > wwwproxy.xs4all.nl:8080

  > R0 - HKCU\Software\Microsoft\Internet

  > Explorer\Toolbar,LinksFolderName = Koppelingen

  > F2 - REG:system.ini:

  > UserInit=C:\WINDOWS\System32\Userinit.exe

  > O2 - BHO: (no name) -

  > {53707962-6F74-2D53-2644-206D7942484F} -

  > C:\PROGRA~1\SPYBOT~1\SDHelper.dll

  > O2 - BHO: ST -

  > {9394EDE7-C8B5-483E-8773-474BF36AF6E4} -

  > C:\Program Files\MSN

  > Apps\ST\01.03.0000.1005\en-xu\stmain.dll

  > O2 - BHO: Google Toolbar Helper -

  > {AA58ED58-01DD-4d91-8333-CF10577473F7} -

  > c:\program files\google\googletoolbar1.dll

  > O2 - BHO: MSNToolBandBHO -

  > {BDBD1DAD-C946-4A17-ADC1-64B5B4FF55D0} -

  > C:\Program Files\MSN Apps\MSN

  > Toolbar\01.02.3000.1001\en-us\msntb.dll

  > O3 - Toolbar: FlashGet Bar -

  > {E0E899AB-F487-11D5-8D29-0050BA6940E3} -

  > C:\PROGRA~1\FlashGet\fgiebar.dll

  > O3 - Toolbar: MSN -

  > {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} -

  > C:\Program Files\MSN Apps\MSN

  > Toolbar\01.02.3000.1001\en-us\msntb.dll

  > O3 - Toolbar: &Radio -

  > {8E718888-423F-11D2-876E-00A0C9082467} -

  > C:\WINDOWS\System32\msdxm.ocx

  > O3 - Toolbar: &Google -

  > {2318C2B1-4965-11d4-9B18-009027A5CD4F} -

  > c:\program files\google\googletoolbar1.dll

  > O4 - HKLM\..\Run: RunDll32 cmicnfg.cpl,CMICtrlWnd

  > O4 - HKLM\..\Run: C:\WINDOWS\System32\sistray.EXE

  > O4 - HKLM\..\Run: C:\WINDOWS\System32\keyhook.exe

  > O4 - HKLM\..\Run: C:\WINDOWS\SiSUSBrg.exe

  > O4 - HKLM\..\Run: RUNDLL32.EXE

  > C:\WINDOWS\System32\NvCpl.dll,NvStartup

  > O4 - HKLM\..\Run: nwiz.exe /install

  > O4 - HKLM\..\Run: RUNDLL32.EXE

  > C:\WINDOWS\System32\NvMcTray.dll,NvTaskbarInit

  > O4 - HKLM\..\Run:

  > C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP

  > O4 - HKLM\..\Run:

  > C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe

  > O4 - HKCU\..\Run: mmces.exe

  > O4 - HKCU\..\Run: "C:\Program

  > Files\Skype\Phone\Skype.exe" /nosplash /minimized

  > O4 - Global Startup: BlueSoleil.lnk = ?

  > O4 - Global Startup: Microsoft Office.lnk =

  > C:\Program Files\Microsoft Office\Office\OSA9.EXE

  > O8 - Extra context menu item: &Google Search -

  > res://c:\program

  > files\google\GoogleToolbar1.dll/cmsearch.html

  > O8 - Extra context menu item: &Translate English

  > Word - res://c:\program

  > files\google\GoogleToolbar1.dll/cmwordtrans.html

  > O8 - Extra context menu item: Backward Links -

  > res://c:\program

  > files\google\GoogleToolbar1.dll/cmbacklinks.html

  > O8 - Extra context menu item: Cached Snapshot of

  > Page - res://c:\program

  > files\google\GoogleToolbar1.dll/cmcache.html

  > O8 - Extra context menu item: Ontvang alles met

  > FlashGet - C:\Program Files\FlashGet\jc_all.htm

  > O8 - Extra context menu item: Ontvang met FlashGet

  > - C:\Program Files\FlashGet\jc_link.htm

  > O8 - Extra context menu item: Similar Pages -

  > res://c:\program

  > files\google\GoogleToolbar1.dll/cmsimilar.html

  > O8 - Extra context menu item: Translate Page into

  > English - res://c:\program

  > files\google\GoogleToolbar1.dll/cmtrans.html

  > O9 - Extra button: (no name) -

  > {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)

  > O9 - Extra button: FlashGet -

  > {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} -

  > C:\PROGRA~1\FlashGet\flashget.exe

  > O9 - Extra ‘Tools’ menuitem: &FlashGet -

  > {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} -

  > C:\PROGRA~1\FlashGet\flashget.exe

  > O9 - Extra button: Messenger -

  > {FB5F1910-F110-11d2-BB9E-00C04F795683} -

  > C:\Program Files\Messenger\MSMSGS.EXE

  > O9 - Extra ‘Tools’ menuitem: Messenger -

  > {FB5F1910-F110-11d2-BB9E-00C04F795683} -

  > C:\Program Files\Messenger\MSMSGS.EXE

  > O12 - Plugin for .UVR: C:\Program Files\Internet

  > Explorer\Plugins\NPUPano.dll

  > O14 - IERESET.INF:

  > START_PAGE_URL=http://www.tiscali.nl

  > O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C}

  > (Checkers Class) -

  > http://messenger.zone.msn.com/binary/msgrchkr.cab

  > O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537}

  > (MSN Photo Upload Tool) -

  > http://spaces.msn.com//PhotoUpload/MsnPUpld.cab

  > O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D}

  > (MessengerStatsClient Class) -

  > http://messenger.zone.msn.com/binary/MessengerStat

  > sClient.cab

  > O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF}

  > (MsnMessengerSetupDownloadControl Class) -

  > http://messenger.msn.com/download/MsnMessengerSetu

  > pDownloader.cab

  > O16 - DPF: {CC05BC12-2AA2-4AC7-AC81-0E40F83B1ADF}

  > (Live365Player Class) -

  > http://www.live365.com/players/play365.cab

  > O16 - DPF: {DE591B16-A452-11D6-AED1-0001030A4E46}

  > (PBGNX Control) -

  > https://gto.postbank.nl/GTO/PBGNX.cab

  > O16 - DPF: {FE8287E9-5F43-11D3-ABCA-00105A5C1F46}

  > (HouseCall Control) -

  > http://www.housecall.nl/housecall/xscan4.cab

  > O23 - Service: AVG7 Alert Manager Server

  > (Avg7Alrt) - GRISOFT, s.r.o. -

  > C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe

  > O23 - Service: AVG7 Update Service (Avg7UpdSvc) -

  > GRISOFT, s.r.o. -

  > C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe

  > O23 - Service: BlueSoleil Hid Service - Unknown

  > owner - C:\Program Files\IVT

  > Corporation\BlueSoleil\BTNtService.exe

  > O23 - Service: NVIDIA Display Driver Service

  > (NVSvc) - NVIDIA Corporation -

  > C:\WINDOWS\System32\nvsvc32.exe

  >

  > Hay ik hoop dat dit hetgene is wat jullie bedoelen

  > en nodig hebben

  > Het probleem heb ik hoop duidelijk genoeg

  > beschreven anders hoor ik hetwel :-)

  > Alvast bedankt

  Rapporteren
• 

  Ben

  20-04-2014 09:47

  Hallo,

  Heb je het bericht in quote geplaatst, dat hoeft niet.

  Kopieer en plak gewoon het logje hier.

  Rapporteren
• 

  fazantje

  30-04-2014 21:27

  Omdat er geen reactie meer volgt wordt dit topic gesloten.

  Wilt U Uw topic als nog weer openen, stuur dan een prive bericht naar Ben of Huib (fazantje).

  Zij zullen dan het “slotje” er van af halen en het topic is weer geopend.

  Het AV team.

  Rapporteren

Dit topic is gesloten, er kunnen geen reacties meer worden geplaatst.