Op deze website gebruiken we cookies om content en advertenties te personaliseren, om functies voor social media te bieden en om ons websiteverkeer te analyseren. Ook delen we informatie over uw gebruik van onze site met onze partners voor social media, adverteren en analyse. Deze partners kunnen deze gegevens combineren met andere informatie die u aan ze heeft verstrekt of die ze hebben verzameld op basis van uw gebruik van hun services. Meer informatie.

Akkoord

Vraag & Antwoord

Beveiliging & privacy

explorer beschadigd?

None
5 antwoorden
  • hello fooks,

    sinds een tijdje is mijn explorer aan het afwijken sinds ook Yahoo een of andere manier via een install programma erop is gekomen.
    Explorer geeft niet meer de normale scherm aan. Hier mijn logje:

    Logfile of HijackThis v1.99.1
    Scan saved at 14:27:32, on 21-5-2006
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.5346.0005)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    E:\Antivirus Program\microsoft antispy\MsMpEng.exe
    C:\WINDOWS\System32\svchost.exe
    E:\multimedia
    ero\InCD\InCDsrv.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\CTsvcCDA.exe
    c:\program files\mcafee.com\agent\mcdetect.exe
    c:\PROGRA~1\mcafee.com\vso\mcshield.exe
    c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
    C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe
    C:\WINDOWS\system32\MsPMSPSv.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
    E:\multimedia\Creative\sb2\Surround Mixer\CTSysVol.exe
    C:\WINDOWS\CTHELPER.EXE
    E:\Antivirus Program\microsoft antispy\MSASCui.exe
    C:\Program Files\McAfee.com\VSO\mcvsshld.exe
    C:\Program Files\McAfee.com\VSO\oasclnt.exe
    E:\multimedia\pinnacle\pctv Pro\Remote\Remoterm.exe
    E:\multimedia\Creative\sb2\DVDAudio\CTDVDDET.EXE
    c:\program files\mcafee.com\agent\mcagent.exe
    c:\progra~1\mcafee.com\vso\mcvsescn.exe
    C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    E:\multimedia
    ero\InCD\InCD.exe
    E:\multimedia\quicktime\iTunesHelper.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\iPod\bin\iPodService.exe
    E:\Util\FDF\FASTDE~1\FAST2.EXE
    E:\multimedia\Creative\mediasource\RemoteControl\RcMan.exe
    E:\multimedia\Creative\mediasource\Detector\CTDetect.exe
    C:\Program Files\Messenger\msmsgs.exe
    E:\Util\Logitech 518\SetPoint\SetPoint.exe
    c:\progra~1\mcafee.com\vso\mcvsftsn.exe
    E:\multimedia\pinnacle\Shared Files\Programs\Scheduler\PCLEScheduler.exe
    C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.EXE
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    E:\Antivirus Program\Hijack\HijackThis.exe

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54729
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=55245&clcid={SUB_CLCID}
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - E:\ANTIVI~1\SPYBOT~1\SDHelper.dll
    O3 - Toolbar: Google Web Accelerator - {DB87BFA2-A2E3-451E-8E5A-C89982D87CBF} - C:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
    O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
    O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
    O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\mcupdate.exe
    O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
    O4 - HKLM\..\Run: [CTSysVol] E:\multimedia\Creative\sb2\Surround Mixer\CTSysVol.exe
    O4 - HKLM\..\Run: [SBDrvDet] C:\Program Files\Creative\SB Drive Det\SBDrvDet.exe

    O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
    O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
    O4 - HKLM\..\Run: [Windows Defender] "E:\Antivirus Program\microsoft antispy\MSASCui.exe" -hide
    O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
    O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
    O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
    O4 - HKLM\..\Run: [PCTVRemote] E:\multimedia\pinnacle\pctv Pro\Remote\Remoterm.exe
    O4 - HKLM\..\Run: [PCLEPCI] C:\PROGRA~1\Pinnacle\PPE\ppe.exe
    O4 - HKLM\..\Run: [CTDVDDET] E:\multimedia\Creative\sb2\DVDAudio\CTDVDDET.EXE
    O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
    O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [InCD] E:\multimedia
    ero\InCD\InCD.exe
    O4 - HKLM\..\Run: [iTunesHelper] "E:\multimedia\quicktime\iTunesHelper.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "E:\multimedia\quicktime\qttask.exe" -atboottime
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [FAST Defrag] E:\Util\FDF\FASTDE~1\FAST2.EXE -tray
    O4 - HKCU\..\Run: [RemoteCenter] E:\multimedia\Creative\mediasource\RemoteControl\RcMan.exe
    O4 - HKCU\..\Run: [Creative Detector] "E:\multimedia\Creative\mediasource\Detector\CTDetect.exe" /R
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Startup: Registration-PCTV.lnk = E:\multimedia\pinnacle\pctv Pro\ERegister\RegTool.exe
    O4 - Global Startup: Adobe Reader Snelle start.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: InterVideo WinCinema Manager.lnk = E:\multimedia\Common\Bin\WinCinemaMgr.exe
    O4 - Global Startup: Logitech SetPoint.lnk = E:\Util\Logitech 518\SetPoint\SetPoint.exe
    O4 - Global Startup: Pinnacle Scheduler.lnk = E:\multimedia\pinnacle\Shared Files\Programs\Scheduler\PCLEScheduler.exe
    O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
    O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
    O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
    O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
    O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
    O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans.html
    O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://creative.com/su/ocx/15015/CTSUEng.cab
    O16 - DPF: {0D6709DD-4ED8-40CA-B459-2757AEEF7BEE} (Dldrv2 Control) - http://download.gigabyte.com.tw/object/Dldrv.ocx
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab
    O16 - DPF: {5F0C30E4-1E72-4DCC-85E5-57810F1CA97B} (McUpdatePortalFactory Class) - http://www.amiuptodate.com/vsc/bin/1,0,0,9/McUpdatePortal.cab
    O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/su/ocx/15021/CTPID.cab
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: InCD Helper (InCDsrv) - Nero AG - E:\multimedia
    ero\InCD\InCDsrv.exe
    O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
    O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
    O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
    O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
    O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe

    thanx…alot…. :lol: 8) :-?




  • Ik ga wel even kijken. :)
  • start HJT opnieuw en doe een systemscan only, vink onderstaande regel aan en klik op fic checked.
    [b:17bf80ec62]O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)[/b:17bf80ec62]

    Download, installeer en update de free trial versie van Ewido Security Suite
    1. Tijdens de installatie, onder [b:17bf80ec62]"Additional Options"[/b:17bf80ec62], haal je de vinkjes weg bij [b:17bf80ec62]"Install background guard"[/b:17bf80ec62] en [b:17bf80ec62]"Install scan via context menu".[/b:17bf80ec62]
    2. Als je Ewido voor de eerste keer runt, zal je een foutmelding krijgen [b:17bf80ec62]"Database could not be found!".[/b:17bf80ec62] Klik dan op OK. Dit is normaal.
    3. In het hoofdscherm van Ewido, klik je op [b:17bf80ec62]update[/b:17bf80ec62] in het linker menu, en vervolgens op de [b:17bf80ec62]Start update[/b:17bf80ec62] knop.
    4. Als de updates gedaan zijn, zal er op de status bar beneden [b:17bf80ec62]"Update successful"[/b:17bf80ec62] staan.
    5. Sluit Ewido. Laat het nog [b:17bf80ec62]niet[/b:17bf80ec62] scannen
    Start je computer op in [b:17bf80ec62]VEILIGE MODUS[/b:17bf80ec62] VM

    [b:17bf80ec62]*BELANGRIJK*[/b:17bf80ec62] Zorg dat de verborgen bestanden en systeembestanden worden weergegeven. (klik hier voor hulp)


    [b:17bf80ec62]start Ewido [/b:17bf80ec62]

    Open Ewido Security Suite
    · klik op [b:17bf80ec62]Scanner [/b:17bf80ec62]
    · Klik op [b:17bf80ec62]complete system scan [/b:17bf80ec62]
    · Laat het programma je pc scannen
    Tijdens de scan zal je gevraagd worden of je gevonden bestanden wil verwijderen. Klik dan op [b:17bf80ec62]OK [/b:17bf80ec62]
    Als de scan beëindigd is, zal je een knop zien[b:17bf80ec62]Bewaar rapport[/b:17bf80ec62]

    · Klik op [b:17bf80ec62]Bewaar rapport [/b:17bf80ec62]
    · Sla het rapport op op je bureaublad
    · Sluit Ewido af

    Herstart je computer in normale modus
    Maak nu een nieuw Hijackthis logje samen met het rapport van Ewido en plaats dit hier aub, vertel of je nog dingen niet kon uitvoeren en of je problemen nu over zijn.
  • Hier de resultaat:

    Logfile of HijackThis v1.99.1
    Scan saved at 16:29:01, on 21-5-2006
    Platform: Windows XP SP2 (WinNT 5.01.2600)
    MSIE: Internet Explorer v7.00 (7.00.5346.0005)

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    E:\Antivirus Program\microsoft antispy\MsMpEng.exe
    C:\WINDOWS\System32\svchost.exe
    E:\multimedia
    ero\InCD\InCDsrv.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\WINDOWS\system32\CTsvcCDA.exe
    E:\Antivirus Program\ewido anti-malware\ewidoctrl.exe
    E:\Antivirus Program\ewido anti-malware\ewidoguard.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    c:\program files\mcafee.com\agent\mcdetect.exe
    c:\PROGRA~1\mcafee.com\vso\mcshield.exe
    c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
    c:\PROGRA~1\mcafee.com\vso\OasClnt.exe
    C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe
    c:\program files\mcafee.com\vso\mcvsshld.exe
    c:\program files\mcafee.com\agent\mcagent.exe
    c:\progra~1\mcafee.com\vso\mcvsescn.exe
    C:\WINDOWS\system32\MsPMSPSv.exe
    C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
    E:\multimedia\Creative\sb2\Surround Mixer\CTSysVol.exe
    C:\WINDOWS\CTHELPER.EXE
    E:\Antivirus Program\microsoft antispy\MSASCui.exe
    E:\multimedia\pinnacle\pctv Pro\Remote\Remoterm.exe
    E:\multimedia\Creative\sb2\DVDAudio\CTDVDDET.EXE
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\Common Files\Real\Update_OB\realsched.exe
    C:\PROGRA~1\McAfee.com\PERSON~1\MpfAgent.exe
    E:\multimedia
    ero\InCD\InCD.exe
    C:\WINDOWS\system32\wuauclt.exe
    E:\multimedia\quicktime\iTunesHelper.exe
    C:\Program Files\iPod\bin\iPodService.exe
    C:\WINDOWS\system32\ctfmon.exe
    E:\Util\FDF\FASTDE~1\FAST2.EXE
    E:\multimedia\Creative\mediasource\RemoteControl\RcMan.exe
    E:\multimedia\Creative\mediasource\Detector\CTDetect.exe
    C:\Program Files\Messenger\msmsgs.exe
    c:\progra~1\mcafee.com\vso\mcvsftsn.exe
    E:\Util\Logitech 518\SetPoint\SetPoint.exe
    E:\multimedia\pinnacle\Shared Files\Programs\Scheduler\PCLEScheduler.exe
    C:\Program Files\Common Files\Logitech\KhalShared\KHALMNPR.EXE
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\ATI Technologies\ATI.ACE\cli.exe
    C:\Program Files\Outlook Express\msimn.exe
    C:\Program Files\Internet Explorer\IEXPLORE.EXE
    E:\Antivirus Program\Hijack\HijackThis.exe

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=54729
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=55245&clcid={SUB_CLCID}
    O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - E:\ANTIVI~1\SPYBOT~1\SDHelper.dll
    O3 - Toolbar: Google Web Accelerator - {DB87BFA2-A2E3-451E-8E5A-C89982D87CBF} - C:\Program Files\Google\Web Accelerator\GoogleWebAccToolbar.dll
    O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
    O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
    O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
    O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\McUpdate.exe
    O4 - HKLM\..\Run: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
    O4 - HKLM\..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe
    O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
    O4 - HKLM\..\Run: [CTSysVol] E:\multimedia\Creative\sb2\Surround Mixer\CTSysVol.exe
    O4 - HKLM\..\Run: [SBDrvDet] C:\Program Files\Creative\SB Drive Det\SBDrvDet.exe

    O4 - HKLM\..\Run: [UpdReg] C:\WINDOWS\UpdReg.EXE
    O4 - HKLM\..\Run: [CTHelper] CTHELPER.EXE
    O4 - HKLM\..\Run: [Windows Defender] "E:\Antivirus Program\microsoft antispy\MSASCui.exe" -hide
    O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
    O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
    O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
    O4 - HKLM\..\Run: [PCTVRemote] E:\multimedia\pinnacle\pctv Pro\Remote\Remoterm.exe
    O4 - HKLM\..\Run: [PCLEPCI] C:\PROGRA~1\Pinnacle\PPE\ppe.exe
    O4 - HKLM\..\Run: [CTDVDDET] E:\multimedia\Creative\sb2\DVDAudio\CTDVDDET.EXE
    O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
    O4 - HKLM\..\Run: [ATICCC] "C:\Program Files\ATI Technologies\ATI.ACE\cli.exe" runtime -Delay
    O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
    O4 - HKLM\..\Run: [InCD] E:\multimedia
    ero\InCD\InCD.exe
    O4 - HKLM\..\Run: [iTunesHelper] "E:\multimedia\quicktime\iTunesHelper.exe"
    O4 - HKLM\..\Run: [QuickTime Task] "E:\multimedia\quicktime\qttask.exe" -atboottime
    O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [FAST Defrag] E:\Util\FDF\FASTDE~1\FAST2.EXE -tray
    O4 - HKCU\..\Run: [RemoteCenter] E:\multimedia\Creative\mediasource\RemoteControl\RcMan.exe
    O4 - HKCU\..\Run: [Creative Detector] "E:\multimedia\Creative\mediasource\Detector\CTDetect.exe" /R
    O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
    O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
    O4 - Startup: Registration-PCTV.lnk = E:\multimedia\pinnacle\pctv Pro\ERegister\RegTool.exe
    O4 - Global Startup: Adobe Reader Snelle start.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
    O4 - Global Startup: InterVideo WinCinema Manager.lnk = E:\multimedia\Common\Bin\WinCinemaMgr.exe
    O4 - Global Startup: Logitech SetPoint.lnk = E:\Util\Logitech 518\SetPoint\SetPoint.exe
    O4 - Global Startup: Pinnacle Scheduler.lnk = E:\multimedia\pinnacle\Shared Files\Programs\Scheduler\PCLEScheduler.exe
    O6 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
    O8 - Extra context menu item: &Google Search - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
    O8 - Extra context menu item: &Translate English Word - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
    O8 - Extra context menu item: Backward Links - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
    O8 - Extra context menu item: Cached Snapshot of Page - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
    O8 - Extra context menu item: Similar Pages - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
    O8 - Extra context menu item: Translate Page into English - res://c:\program files\google\GoogleToolbar2.dll/cmtrans.html
    O16 - DPF: {0A5FD7C5-A45C-49FC-ADB5-9952547D5715} (Creative Software AutoUpdate) - http://creative.com/su/ocx/15015/CTSUEng.cab
    O16 - DPF: {0D6709DD-4ED8-40CA-B459-2757AEEF7BEE} (Dldrv2 Control) - http://download.gigabyte.com.tw/object/Dldrv.ocx
    O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
    O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} (McAfee.com Operating System Class) - http://download.mcafee.com/molbin/shared/mcinsctl/4,0,0,101/mcinsctl.cab
    O16 - DPF: {5F0C30E4-1E72-4DCC-85E5-57810F1CA97B} (McUpdatePortalFactory Class) - http://www.amiuptodate.com/vsc/bin/1,0,0,9/McUpdatePortal.cab
    O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://www.creative.com/su/ocx/15021/CTPID.cab
    O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: ATI Smart - Unknown owner - C:\WINDOWS\system32\ati2sgag.exe
    O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
    O23 - Service: ewido security suite control - ewido networks - E:\Antivirus Program\ewido anti-malware\ewidoctrl.exe
    O23 - Service: ewido security suite guard - ewido networks - E:\Antivirus Program\ewido anti-malware\ewidoguard.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
    O23 - Service: InCD Helper (InCDsrv) - Nero AG - E:\multimedia
    ero\InCD\InCDsrv.exe
    O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
    O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
    O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
    O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
    O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MpfService.exe


    ———————————————————
    ewido anti-malware - Scan rapport
    ———————————————————

    + Gemaakt op: 16:17:13, 21-5-2006
    + Rapport samenvatting: B54B190E

    + Scan resultaten:

    C:\Documents and Settings\tinus\Cookies\tinus@stat.onestat[2].txt -> TrackingCookie.Onestat : Schoongemaakt met een backup
    C:\Program Files\Common Files\Real\WeatherBug\MiniBugTransporter.dll -> Adware.Minibug : Schoongemaakt met een backup


    ::Einde rapport

    ff zien of alles in orde is….grjtjes




  • in principe is er niks aan de hand alleen staan deze regel nog steeds in je logje, het bijbehorende bestand is weg(file missing) maar de regel niet.
    Dus start weer opnieuw op, maar nu in veilige modus, tijdens opstarten op F8 getapt drukken, kies dan voor veilige modus.

    start HJT en doe een systemscan only, vink onderstaande regel aan en klik op fix checked.
    [b:a29f8b125f]O3 - Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)[/b:a29f8b125f]

    zoek met verkenner eens naar de toolbar. waarschijnlijk op je C schijf
    bv: C:\PROGRAM FILES\[b:a29f8b125f]YAHOO!\COMPANION\YCOMP5_0_2_4.DLL[/b:a29f8b125f] <<< dit is slechts een voorbeeld.

    als die er nog staat verwijder die dan.

    start opnieuw op in normale modus en plaats een nieuw logje.

Beantwoord deze vraag

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.