Op deze website gebruiken we cookies om content en advertenties te personaliseren, om functies voor social media te bieden en om ons websiteverkeer te analyseren. Ook delen we informatie over uw gebruik van onze site met onze partners voor social media, adverteren en analyse. Deze partners kunnen deze gegevens combineren met andere informatie die u aan ze heeft verstrekt of die ze hebben verzameld op basis van uw gebruik van hun services. Meer informatie.

Akkoord

Vraag & Antwoord

Beveiliging & privacy

Virus

hoekwi
30 antwoorden
  • Hallo Allemaal.
    Ook ik heb hier een Security ding op de pc zitten. Het is een vista-machine en dan werken bepaalde programmas anders of niet volgens mij.
    ik kom er meestal wel uit maar dit keer blijft het "virus" zit tonen. Ik heb combofix geprobeert in veilige modus maar deze blijft bij deel_2 hangen. Wel is het nu gelukt in de gewone modus maar met AVG nog aan omdat ik die niet uit kan krijgen. SD-fix werkt ook niet naar behoren. Malwarebites heb ik wel gedraait maar deze haalt niet alles weg. Ook spybots verwijderd niet alles. AVG draait op deze pc maar haalt ook niet het gewenste resultaat. Nu las ik het voorgaande en het kwam mij heel bekend voor. Maar komen alleen de regels die genoemd worden om in hijack aan te vinken niet voor. Dus nu toch eigenlijk wel een beetje ten einde raad zou ik jullie hulp in willen roepen. Nu zet ik het onder dit onderwerp omdat het gerelateerd is hieraan. mocht het op een andere plaats thuis horen hoor ik het graag.
    hieronder zet ik mijn hijack logfile neer in de hoop dat jullie mij hier verder mee kunnen helpen. Alvast bedankt.
    Willem

    EDIT: ik geloof dat ik het ondertussen toch gered heb dus kan dit bericht voor nu als vervallen beschouwd worden
  • Hallo Willem - of je het nu wel of voorelkaar hebt, post een nieuw HJT-log, want Spybot zit in de weg om definitief de malware te verwijderen!

    En dan dit: C:\Program Files\USB Disk Win98 Driver - wat heeft dit nu in Windows Vista te zoeken?
  • Hallo,
    Hierbij mijn hijacklog filetje. Alvast bedankt
    Ik kom ook een melding tegen over zango WeatherDPA. Hier is weinig over te vinden op internet. Malwarebites vind deze maar kan er verder niets mee.
    gr. Willem

    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 20:17:45, on 20-8-2010
    Platform: Windows Vista SP2 (WinNT 6.00.1906)
    MSIE: Internet Explorer v8.00 (8.00.6001.18943)
    Boot mode: Safe mode with network support

    Running processes:
    C:\Windows\Explorer.EXE
    C:\Program Files\Hijackthis\HijackThis.exe

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:6522
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll
    R3 - URLSearchHook: Entertainment and Graphics Toolbar - {34c09d88-6258-4129-a4b0-8e93c9c95065} - C:\Program Files\Entertainment_and_Graphics\tbEnte.dll
    R3 - URLSearchHook: Force Download Toolbar - {4562096d-4b1e-46b4-aaf2-e3492d44118e} - C:\Program Files\Force_Download\tbForc.dll
    R3 - URLSearchHook: Radio Bar 1 Toolbar - {0fc85f5d-6207-4515-a490-45a549d285c0} - C:\Program Files\Radio_Bar_1\tbRadi.dll
    R3 - URLSearchHook: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSof1.dll
    R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
    O2 - BHO: Radio Bar 1 Toolbar - {0fc85f5d-6207-4515-a490-45a549d285c0} - C:\Program Files\Radio_Bar_1\tbRadi.dll
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: Entertainment and Graphics Toolbar - {34c09d88-6258-4129-a4b0-8e93c9c95065} - C:\Program Files\Entertainment_and_Graphics\tbEnte.dll
    O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
    O2 - BHO: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSof1.dll
    O2 - BHO: Force Download Toolbar - {4562096d-4b1e-46b4-aaf2-e3492d44118e} - C:\Program Files\Force_Download\tbForc.dll
    O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll
    O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
    O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - (no file)
    O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
    O3 - Toolbar: Entertainment and Graphics Toolbar - {34c09d88-6258-4129-a4b0-8e93c9c95065} - C:\Program Files\Entertainment_and_Graphics\tbEnte.dll
    O3 - Toolbar: Force Download Toolbar - {4562096d-4b1e-46b4-aaf2-e3492d44118e} - C:\Program Files\Force_Download\tbForc.dll
    O3 - Toolbar: Radio Bar 1 Toolbar - {0fc85f5d-6207-4515-a490-45a549d285c0} - C:\Program Files\Radio_Bar_1\tbRadi.dll
    O3 - Toolbar: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSof1.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
    O4 - HKLM\..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
    O4 - HKLM\..\Run: [HDMICtrlMan] C:\Program Files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe
    O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
    O4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Toshiba TEMPRO] C:\Program Files\Toshiba TEMPRO\TemproTray.exe
    O4 - HKLM\..\Run: [USB Storage Toolbox] C:\Program Files\USB Disk Win98 Driver\Res.EXE
    O4 - HKLM\..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\\Phone\Skype.exe" /nosplash /minimized
    O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
    O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
    O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files\Toshiba\TRDCReminder\TRDCReminder.exe (User 'Default user')
    O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
    O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
    O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
    O8 - Extra context menu item: Google Sidewiki… - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
    O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
    O9 - Extra button: eBay - {76577871-04EC-495E-A12B-91F7C3600AFA} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url2.pl?NL (file missing)
    O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O9 - Extra button: Amazon.co.uk - {8A918C1D-E123-4E36-B562-5C1519E434CE} - http://www.amazon.co.uk/exec/obidos
    edirect-home?tag=Toshibaukbholink-21&site=home (file missing)
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
    O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
    O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
    O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
    O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
    O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O18 - Protocol: toolbarchrome - {718733BC-AD64-4E5F-AC18-A85FBD75D54D} - C:\Program Files\RadioBar\toolbar.ni.dll
    O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GoogleDesktopNetwork3.dll C:\Windows\System32\avgrsstx.dll
    O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
    O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
    O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
    O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
    O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe
    O23 - Service: AVG Free E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe
    O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
    O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
    O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    O23 - Service: Google Updateservice (gupdate1c9e0554a1c89a0) (gupdate1c9e0554a1c89a0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: McAfee Real-time Scanner (McShield) - Unknown owner - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe (file missing)
    O23 - Service: McAfee SystemGuards (McSysmon) - Unknown owner - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe (file missing)
    O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
    O23 - Service: SmartFaceVWatchSrv - Toshiba - C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatchSrv.exe
    O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files\Toshiba TEMPRO\TemproSvc.exe
    O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
    O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
    O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
    O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
    O23 - Service: TOSHIBA SMART Log Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
    O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
    O23 - Service: VRS Recording System (VRSService) - Unknown owner - C:\Program Files\NCH Swift Sound\VRS\vrs.exe


    End of file - 12747 bytes
  • Hallo Willem, je bent nog steeds niet verlost van het kreng!

    Heel belangrijk - onderstaande eerst doen:

    [b:5b0ad6fa32]• Stap 1•[/b:5b0ad6fa32][/color:5b0ad6fa32]

    [b:5b0ad6fa32]Deaktiveer TeaTimer en SDHelper[/color:5b0ad6fa32] van Spybot tijdens de fix want deze onderdelen kunnen veranderingen ongedaan maken[/b:5b0ad6fa32].
    [list:5b0ad6fa32][*:5b0ad6fa32] Start Spybot S&D
    [*:5b0ad6fa32] Ga naar het Mode menu en selecteer "Advanced Mode"
    [*:5b0ad6fa32] In de linker kolom kies [b:5b0ad6fa32]"Tools"[/b:5b0ad6fa32] (of gereedschap ) en klik op > [b:5b0ad6fa32]Resident[/b:5b0ad6fa32]
    [*:5b0ad6fa32] Uitvinken "Resident TeaTimer en SDHelper[/color:5b0ad6fa32]" en sluit Spybot S&D.[/list:u:5b0ad6fa32]
    [list:5b0ad6fa32][*:5b0ad6fa32][b:5b0ad6fa32] Omdat Teatimer aktief was, doe vervolgens ook nog dit[/b:5b0ad6fa32]:
    [b:5b0ad6fa32]Download naar je bureaublad: ResetTeaTimer.exe[/b:5b0ad6fa32] (klik)
    [*:5b0ad6fa32] Klik/dubbelklik op ResetTeaTimer.exe
    [*:5b0ad6fa32] Hierdoor zullen de via Teatimer toegestane- of geblokkeerde items weer gereset worden naar de oorspronkelijke settings.
    [*:5b0ad6fa32] [b:5b0ad6fa32]Start de computer hierna opnieuw op.[/b:5b0ad6fa32][/list:u:5b0ad6fa32]
    [b:5b0ad6fa32]• Stap 2•[/b:5b0ad6fa32][/color:5b0ad6fa32]

    Sluit alle openstaande vensters (dus kopieer eerst deze pagina naar kladblok) en start dan HijackThis en klik op de knop [b:5b0ad6fa32]Do a Scan only,

    R3 - URLSearchHook: Entertainment and Graphics Toolbar - {34c09d88-6258-4129-a4b0-8e93c9c95065} - C:\Program Files\Entertainment_and_Graphics\tbEnte.dll
    R3 - URLSearchHook: Force Download Toolbar - {4562096d-4b1e-46b4-aaf2-e3492d44118e} - C:\Program Files\Force_Download\tbForc.dll
    R3 - URLSearchHook: Radio Bar 1 Toolbar - {0fc85f5d-6207-4515-a490-45a549d285c0} - C:\Program Files\Radio_Bar_1\tbRadi.dll
    R3 - URLSearchHook: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSof1.dll
    R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
    O2 - BHO: Entertainment and Graphics Toolbar - {34c09d88-6258-4129-a4b0-8e93c9c95065} - C:\Program Files\Entertainment_and_Graphics\tbEnte.dll
    O2 - BHO: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSof1.dll
    O2 - BHO: Force Download Toolbar - {4562096d-4b1e-46b4-aaf2-e3492d44118e} - C:\Program Files\Force_Download\tbForc.dll
    O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
    O3 - Toolbar: Entertainment and Graphics Toolbar - {34c09d88-6258-4129-a4b0-8e93c9c95065} - C:\Program Files\Entertainment_and_Graphics\tbEnte.dll
    O3 - Toolbar: Force Download Toolbar - {4562096d-4b1e-46b4-aaf2-e3492d44118e} - C:\Program Files\Force_Download\tbForc.dll
    O3 - Toolbar: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSof1.dll
    O9 - Extra button: eBay - {76577871-04EC-495E-A12B-91F7C3600AFA} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url2.pl?NL (file missing)
    O9 - Extra button: Amazon.co.uk - {8A918C1D-E123-4E36-B562-5C1519E434CE} - http://www.amazon.co.uk/exec/obidos
    edirect-home?tag=Toshibaukbholink-21&site=h ome (file missing)
    O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll[/b:5b0ad6fa32]
    [list:5b0ad6fa32][*:5b0ad6fa32] zet een vinkje voor die regel(s) welke met de bovenstaande regels corresponderen
    [*:5b0ad6fa32] vervolgens klik je daarna op de knop [b:5b0ad6fa32]Fix checked[/b:5b0ad6fa32]
    [*:5b0ad6fa32] Klik hierna HijackThis op uit.[/list:u:5b0ad6fa32]
    [b:5b0ad6fa32]• Stap 3•[/b:5b0ad6fa32][/color:5b0ad6fa32]

    [b:5b0ad6fa32]Download, installeer en blijf MBAM gebruiken (KLIK)[/b:5b0ad6fa32]
    (klik op de blaue knop om de gratis versie te downloaden!)
    [list:5b0ad6fa32][*:5b0ad6fa32] Al meteen na de installatie wil [b:5b0ad6fa32]MBAM[/b:5b0ad6fa32] zijn database opwaarderen – toestaan dus.
    [*:5b0ad6fa32] Ook bij herhaald gebruik: eerst MBAM updaten via de tab [b:5b0ad6fa32]Update[/b:5b0ad6fa32]!

    [*:5b0ad6fa32] Start [b:5b0ad6fa32]MBAM[/b:5b0ad6fa32] en kies voor [b:5b0ad6fa32]Snelle Scan[/b:5b0ad6fa32]

    [*:5b0ad6fa32] [b:5b0ad6fa32]N.B.: Vista- en Windows 7 gebruik(st)ers starten MBAM middels rechtsklikken en dan kiezen voor Als Administrator uitvoeren.[/b:5b0ad6fa32]

    [*:5b0ad6fa32] Het scannen kan een tijdje duren, dus wees geduldig.
    [*:5b0ad6fa32] Indien de scan voltooid is, klik dan op de knop [b:5b0ad6fa32]OK[/b:5b0ad6fa32]
    [*:5b0ad6fa32] Klik daarna op de knop [b:5b0ad6fa32]Bekijk Resultaten[/b:5b0ad6fa32] om de resultaten te zien.
    [*:5b0ad6fa32] Zorg ervoor, dat alles aangevinkt is.
    [*:5b0ad6fa32] Vervolgens klik je op: [b:5b0ad6fa32]Verwijder geselecteerde[/b:5b0ad6fa32] .
    [*:5b0ad6fa32] Na het verwijderen zal een log openen en zal er gevraagd worden om de computer opnieuw op te starten.

    [*:5b0ad6fa32] Het log wordt automatisch bewaard door [b:5b0ad6fa32]MBAM[/b:5b0ad6fa32] en dat kan je terugvinden door op de tab [b:5b0ad6fa32]Logs[/b:5b0ad6fa32] te klikken in [b:5b0ad6fa32]MBAM[/b:5b0ad6fa32] .

    [*:5b0ad6fa32] Indien [b:5b0ad6fa32]MBAM[/b:5b0ad6fa32] moeilijkheden heeft met het verwijderen van bepaalde bestanden zal het enkele meldingen geven – dan telkens op [b:5b0ad6fa32]OK[/b:5b0ad6fa32] klikken!
    [*:5b0ad6fa32] Daarna zal [b:5b0ad6fa32]MBAM[/b:5b0ad6fa32] vragen om de Computer opnieuw op te starten - dus sta toe dat de computer opnieuw opgestart wordt.[/list:u:5b0ad6fa32]

    Indien er de rootkit (TDSS) aanwezig is, zal MBAM ook vragen te herstarten. Doe dit dan ook.
    MBAM zal dan na de herstart opnieuw scannen en de rootkit verwijderen.



    [b]Hierna post je de inhoud van de volgende logs:
    [list:5b0ad6fa32][*:5b0ad6fa32] een nieuw Hijackthis-log
    [*:5b0ad6fa32] MBAM scanlog[/list:u:5b0ad6fa32]
    [list:5b0ad6fa32][b:5b0ad6fa32]Tevens een Uninstall-lijst posten:[/b:5b0ad6fa32]
    [*:5b0ad6fa32] start HijackThis,
    [*:5b0ad6fa32] klik op de knop [b:5b0ad6fa32]Open the Misc Tools section[/b:5b0ad6fa32],
    [*:5b0ad6fa32] klik op de knop [b:5b0ad6fa32]Open Uninstall Manager[/b:5b0ad6fa32]
    [*:5b0ad6fa32] Klik op de knop [b:5b0ad6fa32]Save[/b:5b0ad6fa32].[/list:u:5b0ad6fa32][/color:5b0ad6fa32]
  • Hallo,
    bedankt voor de informatie. Vanmorgen druk bezig geweest en heb 3 logbestanden. de eerste is van hijack, de 2e van malware en de 3e de uninstalllijst.

    hier de hijack:
    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 19:58:12, on 21-8-2010
    Platform: Windows Vista SP2 (WinNT 6.00.1906)
    MSIE: Internet Explorer v8.00 (8.00.6001.18943)
    Boot mode: Safe mode with network support

    Running processes:
    C:\Windows\Explorer.EXE
    C:\Program Files\Hijackthis\HijackThis.exe

    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:6522
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
    O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll
    O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
    O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - (no file)
    O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll
    O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
    O3 - Toolbar: (no name) - {34c09d88-6258-4129-a4b0-8e93c9c95065} - (no file)
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O4 - HKLM\..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNotify.exe
    O4 - HKLM\..\Run: [HDMICtrlMan] C:\Program Files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe
    O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe
    O4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Toshiba TEMPRO] C:\Program Files\Toshiba TEMPRO\TemproTray.exe
    O4 - HKLM\..\Run: [USB Storage Toolbox] C:\Program Files\USB Disk Win98 Driver\Res.EXE
    O4 - HKLM\..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe
    O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
    O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
    O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
    O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\\Phone\Skype.exe" /nosplash /minimized
    O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
    O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files\Toshiba\TRDCReminder\TRDCReminder.exe (User 'Default user')
    O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
    O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
    O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000
    O8 - Extra context menu item: Google Sidewiki… - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
    O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
    O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
    O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O9 - Extra button: Amazon.co.uk - {8A918C1D-E123-4E36-B562-5C1519E434CE} - http://www.amazon.co.uk/exec/obidos
    edirect-home?tag=Toshibaukbholink-21&site=home (file missing)
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
    O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab
    O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
    O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
    O18 - Protocol: toolbarchrome - {718733BC-AD64-4E5F-AC18-A85FBD75D54D} - C:\Program Files\RadioBar\toolbar.ni.dll
    O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GoogleDesktopNetwork3.dll C:\Windows\System32\avgrsstx.dll
    O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll
    O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
    O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe
    O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
    O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
    O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe
    O23 - Service: AVG Free E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe
    O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
    O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
    O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
    O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe
    O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
    O23 - Service: Google Updateservice (gupdate1c9e0554a1c89a0) (gupdate1c9e0554a1c89a0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
    O23 - Service: McAfee Real-time Scanner (McShield) - Unknown owner - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe (file missing)
    O23 - Service: McAfee SystemGuards (McSysmon) - Unknown owner - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe (file missing)
    O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
    O23 - Service: SmartFaceVWatchSrv - Toshiba - C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatchSrv.exe
    O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files\Toshiba TEMPRO\TemproSvc.exe
    O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe
    O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
    O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
    O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
    O23 - Service: TOSHIBA SMART Log Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
    O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
    O23 - Service: VRS Recording System (VRSService) - Unknown owner - C:\Program Files\NCH Swift Sound\VRS\vrs.exe


    End of file - 10162 bytes
  • [u:549c04616f][b:549c04616f]Hierbij de malware logfile:[/b:549c04616f][/u:549c04616f]
    Malwarebytes' Anti-Malware 1.46
    www.malwarebytes.org

    Databaseversie: 4457

    Windows 6.0.6002 Service Pack 2 (Safe Mode)
    Internet Explorer 8.0.6001.18943

    21-8-2010 19:41:56
    mbam-log-2010-08-21 (19-41-56).txt

    Scantype: Snelle scan
    Objecten gescand: 143120
    Verstreken tijd: 4 minuut/minuten, 43 seconde(n)

    Geheugenprocessen geïnfecteerd: 0
    Geheugenmodulen geïnfecteerd: 0
    Registersleutels geïnfecteerd: 0
    Registerwaarden geïnfecteerd: 0
    Registerdata geïnfecteerd: 0
    Mappen geïnfecteerd: 0
    Bestanden geïnfecteerd: 0

    Geheugenprocessen geïnfecteerd:
    (Geen kwaadaardige objecten gedetecteerd)

    Geheugenmodulen geïnfecteerd:
    (Geen kwaadaardige objecten gedetecteerd)

    Registersleutels geïnfecteerd:
    (Geen kwaadaardige objecten gedetecteerd)

    Registerwaarden geïnfecteerd:
    (Geen kwaadaardige objecten gedetecteerd)

    Registerdata geïnfecteerd:
    (Geen kwaadaardige objecten gedetecteerd)

    Mappen geïnfecteerd:
    (Geen kwaadaardige objecten gedetecteerd)

    Bestanden geïnfecteerd:
    (Geen kwaadaardige objecten gedetecteerd)

    [size=18:549c04616f][b:549c04616f][u:549c04616f]
    en dan nog de uninstallijst:[/u:549c04616f][/b:549c04616f][/size:549c04616f]

    Aanmeldhulp voor Windows Live ID
    Adobe Flash Player 10 ActiveX
    Adobe Reader 9.1 - Nederlands
    ALPS Touch Pad Driver
    Apple Application Support
    Apple Mobile Device Support
    Apple Software Update
    Ask Toolbar
    a-squared Free 4.5
    AV Voice Changer Software 7.0
    AVG Free 9.0
    BitTorrent
    Bluetooth Stack for Windows by Toshiba
    Bonjour
    Camera Assistant Software for Toshiba
    Catalyst Control Center - Branding
    CCleaner (remove only)
    DivX Setup
    Dolby Control Center
    DVD MovieFactory for TOSHIBA
    Entertainment_and_Graphics Toolbar
    Force_Download Toolbar
    Geluiddemper v. cd/dvd-station
    getPlus(R) for Adobe
    Google Chrome
    Google Desktop
    Google Earth
    Google Toolbar for Internet Explorer
    Google Toolbar for Internet Explorer
    Google Update Helper
    Google Updater
    HDMI Control Manager
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
    Intel® Matrix Storage Manager
    InterActual Player
    iTunes
    JMicron JMB38X Flash Media Controller
    Junk Mail filter update
    LG USB Modem driver
    LG_MobileSync
    Malwarebytes' Anti-Malware
    Microsoft .NET Framework 3.5 Language Pack SP1 - nld
    Microsoft .NET Framework 3.5 SP1
    Microsoft .NET Framework 3.5 SP1
    Microsoft Choice Guard
    Microsoft Office 2007 Service Pack 2 (SP2)
    Microsoft Office 2007 Service Pack 2 (SP2)
    Microsoft Office 2007 Service Pack 2 (SP2)
    Microsoft Office 2007 Service Pack 2 (SP2)
    Microsoft Office 2007 Service Pack 2 (SP2)
    Microsoft Office 2007 Service Pack 2 (SP2)
    Microsoft Office Excel MUI (Dutch) 2007
    Microsoft Office Home and Student 2007
    Microsoft Office Home and Student 2007
    Microsoft Office Live Add-in 1.5
    Microsoft Office OneNote MUI (Dutch) 2007
    Microsoft Office PowerPoint MUI (Dutch) 2007
    Microsoft Office PowerPoint Viewer 2007 (Dutch)
    Microsoft Office Proof (Dutch) 2007
    Microsoft Office Proof (English) 2007
    Microsoft Office Proof (French) 2007
    Microsoft Office Proof (German) 2007
    Microsoft Office Proofing (Dutch) 2007
    Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
    Microsoft Office Shared MUI (Dutch) 2007
    Microsoft Office Word MUI (Dutch) 2007
    Microsoft Search Enhancement Pack
    Microsoft Silverlight
    Microsoft SQL Server 2005 Compact Edition [ENU]
    Microsoft Sync Framework Runtime Native v1.0 (x86)
    Microsoft Sync Framework Services Native v1.0 (x86)
    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Works
    MSVCRT
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    myphotobook 3.6
    NCH Toolbox
    OGA Notifier 2.0.0048.0
    Picasa 3
    QuickTime
    Radio_Bar_1 Toolbar
    RadioBar Toolbar
    Realtek 8169 8168 8101E 8102E Ethernet Driver
    Realtek High Definition Audio Driver
    Roll
    Security Update for 2007 Microsoft Office System (KB2277947)
    Security Update for 2007 Microsoft Office System (KB969559)
    Security Update for 2007 Microsoft Office System (KB976321)
    Security Update for 2007 Microsoft Office System (KB982312)
    Security Update for 2007 Microsoft Office System (KB982331)
    Security Update for Microsoft Office Excel 2007 (KB982308)
    Security Update for Microsoft Office InfoPath 2007 (KB979441)
    Security Update for Microsoft Office PowerPoint 2007 (KB982158)
    Security Update for Microsoft Office system 2007 (972581)
    Security Update for Microsoft Office system 2007 (KB974234)
    Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
    Security Update for Microsoft Office Word 2007 (KB2251419)
    Security Update for Windows Media Encoder (KB954156)
    Security Update for Windows Media Encoder (KB979332)
    Skype Toolbars
    Skype™ 4.2
    Softonic-Eng7 Toolbar
    Spybot - Search & Destroy
    Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL
    TOSHIBA Assist
    TOSHIBA ConfigFree
    TOSHIBA Disc Creator
    TOSHIBA DVD PLAYER
    TOSHIBA Extended Tiles for Windows Mobility Center
    TOSHIBA Face Recognition
    TOSHIBA Face Recognition
    TOSHIBA Flash Cards Support Utility
    TOSHIBA Hardware Setup
    Toshiba Online Product Information
    TOSHIBA Recovery Disc Creator
    TOSHIBA SD Memory Utilities
    TOSHIBA Software Modem
    TOSHIBA Supervisorwachtwoord
    Toshiba TEMPRO
    TOSHIBA Value Added Package
    TOSHIBA-handleidingen
    TRDCReminder
    TRORDCLauncher
    Update for 2007 Microsoft Office System (KB967642)
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
    Update for Microsoft Office OneNote 2007 (KB980729)
    Update voor Microsoft Office Excel 2007 Help (KB963678)
    Update voor Microsoft Office Powerpoint 2007 Help (KB963669)
    Update voor Microsoft Office Word 2007 Help (KB963665)
    USB Disk Win98 Driver
    VC80CRTRedist - 8.0.50727.4053
    Vegas Pro 9.0
    VideoPad Video Editor
    VLC media player 0.9.8a
    VRS Recording System
    WavePad Sound Editor
    Windows Live - Hulpprogramma voor uploaden
    Windows Live Call
    Windows Live Communications Platform
    Windows Live Essentials
    Windows Live Essentials
    Windows Live Mail
    Windows Live Messenger
    Windows Live Movie Maker
    Windows Live Photo Gallery
    Windows Live Sync
    Windows Live Toolbar
    Windows Live Writer
    Windows Media Encoder 9 Series
    Windows Media Encoder 9 Series

    Ik hoor graag of er nog gekke dingen in zitten.
    alvast bedankt
    groeten Willem
  • Hmmm - van de fix is weinig tot niets terechtgekomen!

    Heb je dat wel gedaan?
  • Hallo,
    Ik denktoch dat er iets misgegaan is vanmiddag. Ik heb alles nogmaals uitgevoerd en de eerder geposte lijsten overschreven door nieuwe lijsten. Ik hoop dat het nu beter is.

    Ik hoor het graag.

    groeten Willem
  • Hallo Willem, dat ziet er al beter uit inderdaad!
    En ik had ook nog wat vergeten - dat mag je ook nog fixen!

    Sluit alle openstaande vensters (dus kopieer eerst deze pagina naar kladblok) en start dan HijackThis en klik op de knop [b:2dea9b453a]Do a Scan only,

    R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:6522[/b:2dea9b453a]
    [list:2dea9b453a][*:2dea9b453a] zet een vinkje voor die regel(s) welke met de bovenstaande regels corresponderen
    [*:2dea9b453a] vervolgens klik je daarna op de knop [b:2dea9b453a]Fix checked[/b:2dea9b453a]
    [*:2dea9b453a] Klik hierna HijackThis op uit.[/list:u:2dea9b453a]
    Verder is het heel belanrijk dat je de Adobe Reader in jouw Windows gaat updaten! Want dat is dringend noodzakelijk om veiligheidslekken erin te dichten!

    Als gebruiker van de versie 9 start je de Reader, klik je in de menubalk op [b:2dea9b453a]Help[/b:2dea9b453a] en kies je vervolgens voor [b:2dea9b453a]Controleren op updates….[/b:2dea9b453a]

    Let vervolgens op de melding in de systray (waar de klok ook huist), wanneerd de update klaar is om geïnstalleerd te worden!


    Daarna doe je het volgende: [b:2dea9b453a]laat Combofix jouw Windows scannen (klik)[/b:2dea9b453a].
    [b:2dea9b453a]Hoe Combofix goed te gebruiken (klik)[/b:2dea9b453a]
    [list:2dea9b453a][*:2dea9b453a][b:2dea9b453a] Om Combofix te kunnen gebruiken geldt het volgende:[/b:2dea9b453a]
    [*:2dea9b453a][b:2dea9b453a]Vista- en Windows 7 gebruikers starten Combofix op met Administratorrechten![/b:2dea9b453a]
    [*:2dea9b453a] Er mogen geen webbrowsers openstaan
    [*:2dea9b453a] Antivirus moet geheel gedeaktiveerd zijn
    [*:2dea9b453a] Actieve mal- en spywarescanners moeten gedeaktiveerd zijn
    [*:2dea9b453a]Niet in het actieve Combofixvnster klikken – dit zal Combofix doen bevriezen!
    [*:2dea9b453a]Combofix sluit de internet verbinding – probeer deze tussentijds niet te herstellen!
    [*:2dea9b453a] En vergeet ook niet Windows Defender tijdelijk uit te schakelen: zie daarvoor http://windowshelp.microsoft.com/Windows/nl-NL/help/31d797aa-091d-4d67-a556-dbfaf21bf0dc1043.mspx
    [*:2dea9b453a] [b:2dea9b453a]Hier vindt je gegevens hoe antivirus te deaktiveren[/b:2dea9b453a] http://www.bleepingcomputer.com/forums/topic114351.html
    [*:2dea9b453a] [b:2dea9b453a]Post aansluitend het Combofix log .[/b:2dea9b453a][/list:u:2dea9b453a]
  • Hallo,
    nou ondertussen adobe geupdate en combofix gedraaid met als resultaat onderstaande logfile.
    Ik ben benieuwd of er nog gekke dingen in zitten.
    ik hoor graag van u.
    groeten Willem

    ComboFix 10-08-21.01 - slagter 21-08-2010 22:13:49.4.2 - x86 NETWORK
    Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.31.1043.18.3066.2622 [GMT 2:00]
    Gestart vanuit: c:\users\slagter\Desktop\ComboFix.exe
    SP: Spybot - Search and Destroy *disabled* (Updated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9}
    SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
    .

    (((((((((((((((((((( Bestanden Gemaakt van 2010-07-21 to 2010-08-21 ))))))))))))))))))))))))))))))
    .

    2010-08-21 20:19 . 2010-08-21 20:19 ——– d—–w- c:\users\slagter\AppData\Local\temp
    2010-08-21 20:19 . 2010-08-21 20:19 ——– d—–w- c:\users\Public\AppData\Local\temp
    2010-08-21 20:19 . 2010-08-21 20:19 ——– d—–w- c:\users\Gast\AppData\Local\temp
    2010-08-21 20:19 . 2010-08-21 20:19 ——– d—–w- c:\users\Default\AppData\Local\temp
    2010-08-21 19:35 . 2010-08-21 19:35 ——– d—–w- c:\users\slagter\AppData\Local\Adobe
    2010-08-20 18:21 . 2010-08-20 18:21 ——– d—–w- c:\programdata\Office Genuine Advantage
    2010-08-20 12:24 . 2010-08-20 12:48 ——– d—–w- C:\SDFix
    2010-08-20 11:28 . 2010-05-21 12:14 221568 ——w- c:\windows\system32\MpSigStub.exe
    2010-08-18 18:24 . 2010-08-18 18:24 ——– d—–w- c:\program files\Enigma Software Group
    2010-08-18 18:24 . 2010-08-18 19:18 ——– d—–w- c:\windows\95431C66CF9A4913BFFF6050785AFB65.TMP
    2010-08-18 17:59 . 2010-06-30 12:22 2102600 —-a-w- c:\programdata\AVG Security Toolbar\IEToolbar.dll
    2010-08-18 16:20 . 2010-08-18 16:20 ——– d—–w- C:\$AVG
    2010-08-18 15:48 . 2010-08-18 15:48 243024 —-a-w- c:\windows\system32\drivers\avgtdix.sys
    2010-08-18 15:48 . 2010-08-18 15:48 12536 —-a-w- c:\windows\system32\avgrsstx.dll
    2010-08-18 15:48 . 2010-08-18 15:48 216400 —-a-w- c:\windows\system32\drivers\avgldx86.sys
    2010-08-18 15:48 . 2010-08-21 19:40 ——– d—–w- c:\windows\system32\drivers\Avg
    2010-08-18 15:48 . 2010-08-18 15:48 29584 —-a-w- c:\windows\system32\drivers\avgmfx86.sys
    2010-08-18 15:47 . 2010-08-18 17:59 ——– d—–w- c:\programdata\AVG Security Toolbar
    2010-08-18 15:47 . 2010-08-18 15:47 ——– d—–w- c:\program files\AVG
    2010-08-18 15:47 . 2010-08-18 15:47 ——– d—–w- c:\programdata\avg9
    2010-08-18 09:23 . 2010-08-21 08:24 ——– d—–w- c:\programdata\Spybot - Search & Destroy
    2010-08-18 09:23 . 2010-08-18 09:24 ——– d—–w- c:\program files\Spybot - Search & Destroy
    2010-08-17 14:04 . 2010-08-17 14:04 ——– d—–w- c:\users\slagter\AppData\Roaming\Malwarebytes
    2010-08-17 13:49 . 2010-04-29 13:39 38224 —-a-w- c:\windows\system32\drivers\mbamswissarmy.sys
    2010-08-17 13:49 . 2010-08-17 14:04 ——– d—–w- c:\program files\Malwarebytes' Anti-Malware
    2010-08-17 13:49 . 2010-08-17 13:49 ——– d—–w- c:\programdata\Malwarebytes
    2010-08-17 13:49 . 2010-04-29 13:39 20952 —-a-w- c:\windows\system32\drivers\mbam.sys
    2010-08-17 13:47 . 2010-08-21 18:01 ——– d—–w- C:\dump
    2010-08-17 13:35 . 2010-08-18 20:43 680 —-a-w- c:\users\slagter\AppData\Local\d3d9caps.dat
    2010-08-16 17:08 . 2010-08-16 17:09 ——– d—–w- c:\users\Gast\AppData\Roaming\vlc
    2010-08-16 15:10 . 2010-08-19 12:53 ——– d—–w- c:\users\slagter\AppData\Local\vmqwxcixp
    2010-08-16 15:09 . 2010-08-16 15:09 ——– d—–w- c:\users\slagter\AppData\Roaming\BD51DD45836969C08C2B5883D040AEEC
    2010-08-15 15:04 . 2010-06-08 17:35 3600768 —-a-w- c:\windows\system32
    tkrnlpa.exe
    2010-08-15 15:04 . 2010-06-08 17:35 3548040 —-a-w- c:\windows\system32
    toskrnl.exe
    2010-08-15 15:04 . 2010-06-11 16:15 1248768 —-a-w- c:\windows\system32\msxml3.dll
    2010-08-15 15:04 . 2010-06-18 15:04 302080 —-a-w- c:\windows\system32\drivers\srv.sys
    2010-08-15 15:04 . 2010-06-18 15:04 144896 —-a-w- c:\windows\system32\drivers\srv2.sys
    2010-08-15 15:04 . 2010-06-16 16:04 905088 —-a-w- c:\windows\system32\drivers\tcpip.sys

    .
    ((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2010-08-21 20:10 . 2008-01-21 06:47 666366 —-a-w- c:\windows\system32\perfh013.dat
    2010-08-21 20:10 . 2008-01-21 06:47 126270 —-a-w- c:\windows\system32\perfc013.dat
    2010-08-21 19:38 . 2008-11-27 11:16 ——– d—–w- c:\program files\Common Files\Adobe
    2010-08-20 13:52 . 2009-11-10 18:19 ——– d—–w- c:\program files\Microsoft
    2010-08-18 20:09 . 2010-08-18 19:56 3336 —-a-w- c:\windows\system32\drivers\kgpcpy.cfg
    2010-08-18 19:57 . 2010-08-18 19:57 312 —-a-w- c:\windows\system32\drivers\kgpfr2.cfg
    2010-08-18 18:24 . 2008-11-27 11:22 ——– d—–w- c:\program files\Common Files\Wise Installation Wizard
    2010-08-18 17:04 . 2008-11-27 11:18 ——– d—–w- c:\programdata\McAfee
    2010-08-18 14:56 . 2008-11-27 10:35 ——– d—–w- c:\program files\Java
    2010-08-16 15:22 . 2010-08-16 15:22 83288 —-a-w- c:\users\Gast\AppData\Local\GDIPFONTCACHEV1.DAT
    2010-08-16 15:15 . 2010-03-24 17:58 ——– d—–w- c:\users\slagter\AppData\Roaming\BitTorrent
    2010-08-16 09:27 . 2008-11-27 11:23 ——– d—–w- c:\program files\Microsoft Works
    2010-08-16 09:20 . 2008-11-27 11:26 ——– d—–w- c:\programdata\Microsoft Help
    2010-08-16 09:20 . 2006-11-02 11:18 ——– d—–w- c:\program files\Windows Mail
    2010-08-15 17:56 . 2010-02-23 21:18 ——– d—–w- c:\users\slagter\AppData\Roaming\Skype
    2010-08-15 16:21 . 2010-02-23 21:20 ——– d—–w- c:\users\slagter\AppData\Roaming\skypePM
    2010-08-12 21:44 . 2009-05-27 22:23 31024 —-a-w- c:\users\slagter\AppData\Roaming\wklnhst.dat
    2010-07-12 16:04 . 2010-05-21 17:45 ——– d—–w- c:\program files\Softonic-Eng7
    2010-06-30 14:11 . 2010-06-26 11:12 ——– d—–w- c:\users\slagter\AppData\Roaming\GetRightToGo
    2010-06-26 06:05 . 2010-08-15 15:05 916480 —-a-w- c:\windows\system32\wininet.dll
    2010-06-26 06:02 . 2010-08-15 15:05 71680 —-a-w- c:\windows\system32\iesetup.dll
    2010-06-26 06:02 . 2010-08-15 15:05 109056 —-a-w- c:\windows\system32\iesysprep.dll
    2010-06-26 04:25 . 2010-08-15 15:05 133632 —-a-w- c:\windows\system32\ieUnatt.exe
    2010-06-21 13:37 . 2010-08-15 15:05 2037760 —-a-w- c:\windows\system32\win32k.sys
    2010-06-18 17:31 . 2010-08-15 15:05 36864 —-a-w- c:\windows\system32\rtutils.dll
    2010-06-11 16:16 . 2010-08-15 15:05 274944 —-a-w- c:\windows\system32\schannel.dll
    2010-05-27 20:08 . 2010-08-15 15:05 81920 —-a-w- c:\windows\system32\iccvid.dll
    2010-05-26 17:06 . 2010-06-11 12:24 34304 —-a-w- c:\windows\system32\atmlib.dll
    2010-05-26 14:47 . 2010-06-11 12:24 289792 —-a-w- c:\windows\system32\atmfd.dll
    .

    ((((((((((((((((((((((((((((( SnapShot@2010-08-20_14.38.36 )))))))))))))))))))))))))))))))))))))))))
    .
    + 2008-01-21 01:58 . 2010-08-21 19:46 62886 c:\windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin
    + 2006-11-02 13:05 . 2010-08-21 19:46 81268 c:\windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin
    + 2009-05-27 22:17 . 2010-08-21 19:46 12172 c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2095233901-1526310406-36394863-1000_UserData.bin
    + 2009-05-27 21:17 . 2010-08-21 19:37 32768 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    - 2009-05-27 21:17 . 2010-08-20 13:54 32768 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    - 2009-05-27 21:17 . 2010-08-20 13:54 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
    + 2009-05-27 21:17 . 2010-08-21 19:37 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
    + 2009-05-27 21:17 . 2010-08-21 19:37 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
    - 2009-05-27 21:17 . 2010-08-20 13:54 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
    + 2009-05-30 13:14 . 2010-08-21 08:37 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    - 2009-05-30 13:14 . 2010-08-20 14:27 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    - 2009-05-30 13:14 . 2010-08-20 14:27 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
    + 2009-05-30 13:14 . 2010-08-21 08:37 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
    + 2009-05-30 13:14 . 2010-08-21 08:37 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
    - 2009-05-30 13:14 . 2010-08-20 14:27 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
    + 2009-06-06 09:18 . 2010-08-21 09:23 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    - 2009-06-06 09:18 . 2010-08-20 13:45 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
    - 2009-06-06 09:18 . 2010-08-20 13:45 32768 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
    + 2009-06-06 09:18 . 2010-08-21 09:23 32768 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
    + 2009-06-06 09:18 . 2010-08-21 09:23 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
    - 2009-06-06 09:18 . 2010-08-20 13:45 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
    + 2010-08-21 19:51 . 2010-08-21 20:06 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
    - 2010-08-20 13:45 . 2010-08-20 13:45 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
    - 2010-08-20 13:45 . 2010-08-20 13:45 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
    + 2010-08-21 19:51 . 2010-08-21 20:06 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
    + 2009-05-28 09:02 . 2010-08-21 11:05 280630 c:\windows\System32\WDI\SuspendPerformanceDiagnostics_SystemData_S3.bin
    + 2006-11-02 10:33 . 2010-08-21 20:10 586568 c:\windows\System32\perfh009.dat
    + 2006-11-02 10:33 . 2010-08-21 20:10 100640 c:\windows\System32\perfc009.dat
    - 2009-05-28 09:08 . 2010-08-20 12:23 262144 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
    + 2009-05-28 09:08 . 2010-08-21 08:35 262144 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
    - 2008-11-27 11:39 . 2010-08-20 13:03 548552 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
    + 2008-11-27 11:39 . 2010-08-21 19:49 548552 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
    + 2010-08-21 19:39 . 2010-08-21 19:39 3962368 c:\windows\Installer\3c25a.msi
    .
    ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
    REGEDIT4

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
    "{00000000-6E41-4FD3-8538-502F5495E5FC}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448]

    [HKEY_CLASSES_ROOT\clsid\{00000000-6e41-4fd3-8538-502f5495e5fc}]

    [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
    2010-02-04 15:50 1197448 —-a-w- c:\program files\Ask.com\GenericAskToolbar.dll

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
    "{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448]

    [HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
    [HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
    [HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
    [HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

    [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
    "{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448]

    [HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
    [HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
    [HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
    [HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920]
    "TOSCDSPD"="c:\program files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe" [2008-07-04 430080]
    "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]
    "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952]
    "Skype"="c:\program files\Skype\\Phone\Skype.exe" [2010-03-09 26100520]
    "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-05-29 39408]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "KeNotify"="c:\program files\TOSHIBA\Utilities\KeNotify.exe" [2006-11-06 34352]
    "HDMICtrlMan"="c:\program files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe" [2008-05-20 716800]
    "Apoint"="c:\program files\Apoint2K\Apoint.exe" [2007-12-15 184320]
    "Toshiba Registration"="c:\program files\Toshiba\Registration\ToshibaRegistration.exe" [2008-01-11 574864]
    "Toshiba TEMPRO"="c:\program files\Toshiba TEMPRO\TemproTray.exe" [2009-04-21 1045904]
    "USB Storage Toolbox"="c:\program files\USB Disk Win98 Driver\Res.EXE" [2005-09-14 65536]
    "Skytel"="c:\program files\Realtek\Audio\HDA\Skytel.exe" [2009-08-24 1833504]
    "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-09-21 305440]
    "AVG9_TRAY"="c:\progra~1\AVG\AVG9\avgtray.exe" [2010-08-18 2065760]
    "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-03 35696]
    "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-09-04 935288]

    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
    "GrpConv"="grpconv -o" [X]

    c:\users\slagter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    OneNote 2007 Schermopname en Snel starten.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]

    c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    TRDCReminder.lnk - c:\program files\Toshiba\TRDCReminder\TRDCReminder.exe [2008-3-5 393216]

    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "EnableUIADesktopToggle"= 0 (0x0)

    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
    "AppInit_DLLs"=c:\progra~1\Google\GOOGLE~2\GoogleDesktopNetwork3.dll c:\windows\System32\avgrsstx.dll

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer]
    @="Service"

    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
    @="Service"

    [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
    "VistaSp2"=hex(b):db,62,13,90,bb,2c,ca,01

    R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\Drivers\avgldx86.sys [2010-08-18 216400]
    R2 a2free;a-squared Free Service;c:\program files\a-squared Free\a2service.exe [2009-05-29 717320]
    R2 avg9emc;AVG Free E-mail Scanner;c:\program files\AVG\AVG9\avgemc.exe [2010-08-18 921952]
    R2 avg9wd;AVG Free WatchDog;c:\program files\AVG\AVG9\avgwdsvc.exe [2010-08-18 308136]
    R2 ConfigFree Service;ConfigFree Service;c:\program files\TOSHIBA\ConfigFree\CFSvcs.exe [2008-09-05 40960]
    R2 gupdate1c9e0554a1c89a0;Google Updateservice (gupdate1c9e0554a1c89a0);c:\program files\Google\Update\GoogleUpdate.exe [2009-05-29 133104]
    R2 SBSDWSCService;SBSD Security Center Service;c:\program files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368]
    R2 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO);c:\program files\Toshiba TEMPRO\TemproSvc.exe [2009-04-21 116104]
    R2 TOSHIBA SMART Log Service;TOSHIBA SMART Log Service;c:\program files\TOSHIBA\SMARTLogService\TosIPCSrv.exe [2008-07-15 106496]
    R2 VRSService;VRS Recording System;c:\program files\NCH Swift Sound\VRS\vrs.exe [2010-05-21 1052676]
    R3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\AVG\AVG9\Toolbar\ToolbarBroker.exe [2010-06-30 431432]
    R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [2010-06-15 30192]
    R3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [2008-09-09 99216]
    R3 SmartFaceVWatchSrv;SmartFaceVWatchSrv;c:\program files\Toshiba\SmartFaceV\SmartFaceVWatchSrv.exe [2008-08-25 77824]
    R3 TpChoice;Touch Pad Detection Filter driver;c:\windows\system32\DRIVERS\TpChoice.sys [x]
    R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\DRIVERS\vcsvad.sys [2008-12-10 17792]
    S1 AvgTdiX;AVG Free Network Redirector;c:\windows\system32\Drivers\avgtdix.sys [2010-08-18 243024]
    S3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\NETw5v32.sys [2008-11-17 3668480]


    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
    LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
    .
    Inhoud van de 'Gedeelde Taken' map

    2010-08-21 c:\windows\Tasks\Google Software Updater.job
    - c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-11-27 12:01]

    2010-08-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
    - c:\program files\Google\Update\GoogleUpdate.exe [2009-05-29 12:01]

    2010-08-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
    - c:\program files\Google\Update\GoogleUpdate.exe [2009-05-29 12:01]

    2010-08-21 c:\windows\Tasks\User_Feed_Synchronization-{58AE26E0-067B-4123-8545-EB8950472177}.job
    - c:\windows\system32\msfeedssync.exe [2010-08-15 04:24]
    .
    .
    ——- Bijkomende Scan ——-
    .
    uStart Page = hxxp://www.google.com/
    mStart Page = hxxp://www.google.com/ig
    edirectdomain?brand=TSEA&bmod=TSEA
    mSearch Bar = hxxp://www.google.com
    uInternet Settings,ProxyOverride = <local>
    uInternet Settings,ProxyServer = http=127.0.0.1:6522
    uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
    IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
    IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
    IE: Google Sidewiki… - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
    IE: {{8A918C1D-E123-4E36-B562-5C1519E434CE} - http://www.amazon.co.uk/exec/obidos
    edirect-home?tag=Toshibaukbholink-21&site=home
    Handler: toolbarchrome - {718733BC-AD64-4e5f-AC18-A85FBD75D54D} - c:\program files\RadioBar\toolbar.ni.dll
    .
    - - - - ORPHANS VERWIJDERD - - - -

    Toolbar-{34c09d88-6258-4129-a4b0-8e93c9c95065} - (no file)
    WebBrowser-{34C09D88-6258-4129-A4B0-8E93C9C95065} - (no file)
    WebBrowser-{4562096D-4B1E-46B4-AAF2-E3492D44118E} - (no file)
    WebBrowser-{0FC85F5D-6207-4515-A490-45A549D285C0} - (no file)
    WebBrowser-{414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3} - (no file)
    WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll
    WebBrowser-{71A3D7B2-167E-4A98-8474-822988C52992} - (no file)
    WebBrowser-{5B291E6C-9A74-4034-971B-A4B007A0B315} - (no file)
    HKLM-RunOnce-<NO NAME> - (no file)



    **************************************************************************

    catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
    Rootkit scan 2010-08-21 22:19
    Windows 6.0.6002 Service Pack 2 NTFS

    scannen van verborgen processen …

    scannen van verborgen autostart items …

    HKCU\Software\Microsoft\Windows\CurrentVersion\Run
    TOSCDSPD = c:\program files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe?/i?????????????X???????????????

    scannen van verborgen bestanden …

    Scan succesvol afgerond
    verborgen bestanden: 0

    **************************************************************************
    .
    ——————— VERGRENDELDE REGISTER SLEUTELS ———————

    [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    "MSCurrentCountry"=dword:000000b5
    .
    Voltooingstijd: 2010-08-21 22:21:00
    ComboFix-quarantined-files.txt 2010-08-21 20:20
    ComboFix2.txt 2010-08-20 14:40
    ComboFix3.txt 2010-08-20 11:09

    Pre-Run: 109.758.312.448 bytes beschikbaar
    Post-Run: 109.680.713.728 bytes beschikbaar

    - - End Of File - - 2D4BE565EE0B60069510CBFBE8CE59E7
  • Hallo Willem, ziet er goed uit.

    je mag Combofix verwijderen - het tool heeft zijn werk gedaan!

    [list:34f6256766][*:34f6256766] Ga daarvoor naar Start - Uitvoeren,
    [*:34f6256766] kopieer en plak hierin het volgende: [b:34f6256766]Combofix /Uninstall[/b:34f6256766]
    [*:34f6256766] klik daarna op [b:34f6256766]OK[/b:34f6256766].
    [*:34f6256766] Indien het goed is, krijg je vervolgens een melding, dat Combofix verwijderd werd.[/list:u:34f6256766]

    Voorbeeld:

    [img:34f6256766]http://home.kpn.nl/stefsmeenk/CFUninstall.PNG[/img:34f6256766]

    Uitvoeren kan ook gestart worden door de toetsencombinatie [img:34f6256766]http://home.kpn.nl/stefsmeenk/W+R.jpg[/img:34f6256766]

    Hoe draait jouw Windows nu?
  • Hij draait prima, geen gekke dingen meer, mooi vlot… Wel vroeg ik mij nu af ik heb alles steeds op mijn boot gedaan, bij meerdere users moet je dat op alles apart doen of is het zo voor alle gebruikers geregeld.

    Tot zover reuze bedankt.

    Groeten Willem
  • Jouw PC heeft meerdere gebruikers?
    Ga er maar rustig van uit dat alles weer in orde is!
  • Hallo,
    allereerst de andere pc doet het goed geen problemen nog / meer gehad
    ik wil toch nog een beroep doen op jullie/jou kennis…
    Ik kreeg te horen dat ook de andere labtop ook niet vooruit te branden is. Dus heb ik alle tooltjes die ik heb losgelaten op deze pc. Maar toch zit er ergens iets dat de pc erg vertraagd. Daarom plaats ik hieronder het hijacklogje en hoop dat jullie tussen de regels door wel wat kunnen vinden.
    alvast bedankt..

    dan volgt hier het logfiletje

    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 21:42:18, on 29-8-2010
    Platform: Windows XP SP3 (WinNT 5.01.2600)
    MSIE: Internet Explorer v8.00 (8.00.6001.18702)
    Boot mode: Normal

    Running processes:
    C:\WINDOWS\System32\smss.exe
    C:\WINDOWS\system32\winlogon.exe
    C:\WINDOWS\system32\services.exe
    C:\WINDOWS\system32\lsass.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\system32\svchost.exe
    C:\WINDOWS\System32\svchost.exe
    C:\Program Files\AVG\AVG9\avgchsvx.exe
    C:\Program Files\AVG\AVG9\avgrsx.exe
    C:\Program Files\AVG\AVG9\avgcsrvx.exe
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\AVG\AVG9\avgwdsvc.exe
    C:\Program Files\Java\jre6\bin\jqs.exe
    C:\WINDOWS\system32\o2flash.exe
    C:\WINDOWS\system32\svchost.exe
    C:\Program Files\AVG\AVG9\avgnsx.exe
    C:\WINDOWS\system32\Ati2evxx.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\RTHDCPL.EXE
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
    C:\WINDOWS\system32\msiexec.exe
    C:\hijackthis\HijackThis.exe

    R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.marktplaats.nl/
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
    R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
    R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
    R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file)
    O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
    O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
    O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
    O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
    O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll
    O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
    O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
    O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll
    O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
    O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
    O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
    O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
    O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
    O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
    O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_ActiveX.exe -update activex
    O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
    O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
    O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
    O8 - Extra context menu item: Google Sidewiki… - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html
    O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
    O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
    O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
    O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://utilities.pcpitstop.com/Nirvana/controls/pcmatic.cab
    O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3
    esources/MSNPUpld.cab
    O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
    O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab
    O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
    O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing)
    O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
    O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
    O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
    O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
    O23 - Service: Google Updateservice (gupdate1c9c98bebd63ff6) (gupdate1c9c98bebd63ff6) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
    O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
    O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
    O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
    O23 - Service: O2Micro Flash Memory (O2Flash) - Unknown owner - C:\WINDOWS\system32\o2flash.exe


    End of file - 7228 bytes
  • ook nog even een uninstall lijst gedraaid

    Adobe Flash Player 10 ActiveX
    Adobe Reader 9.3.4 - Nederlands
    Ambrasoft Familiepakket 0809
    ArcSoft ShowBiz DVD 2
    ATI - Software-verwijderprogramma
    ATI Display Driver
    AV301P
    AVG Free 9.0
    Beveiligingsupdate voor Windows Internet Explorer 7 (KB938127-v2)
    Beveiligingsupdate voor Windows Internet Explorer 7 (KB956390)
    Beveiligingsupdate voor Windows Internet Explorer 7 (KB961260)
    Beveiligingsupdate voor Windows Internet Explorer 7 (KB963027)
    Beveiligingsupdate voor Windows Internet Explorer 8 (KB2183461)
    Beveiligingsupdate voor Windows Internet Explorer 8 (KB971961)
    Beveiligingsupdate voor Windows Internet Explorer 8 (KB972260)
    Beveiligingsupdate voor Windows Internet Explorer 8 (KB974455)
    Beveiligingsupdate voor Windows Internet Explorer 8 (KB976325)
    Beveiligingsupdate voor Windows Internet Explorer 8 (KB978207)
    Beveiligingsupdate voor Windows Internet Explorer 8 (KB981332)
    Beveiligingsupdate voor Windows Internet Explorer 8 (KB982381)
    CCleaner
    Compatibility Pack for the 2007 Office system
    Google Earth
    Google Toolbar for Internet Explorer
    Google Toolbar for Internet Explorer
    Google Update Helper
    Google Updater
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
    Java(TM) 6 Update 21
    Junk Mail filter update
    Malwarebytes' Anti-Malware
    Microsoft .NET Framework 1.1
    Microsoft .NET Framework 1.1
    Microsoft .NET Framework 1.1 Dutch Language Pack
    Microsoft .NET Framework 1.1 Security Update (KB979906)
    Microsoft .NET Framework 2.0 Service Pack 2
    Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - NLD
    Microsoft .NET Framework 3.0 Service Pack 2
    Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - NLD
    Microsoft .NET Framework 3.5 Language Pack SP1 - nld
    Microsoft .NET Framework 3.5 SP1
    Microsoft .NET Framework 3.5 SP1
    Microsoft Choice Guard
    Microsoft Compression Client Pack 1.0 for Windows XP
    Microsoft Internationalized Domain Names Mitigation APIs
    Microsoft National Language Support Downlevel APIs
    Microsoft Office Outlook Connector
    Microsoft Office Professional Editie 2003
    Microsoft Silverlight
    Microsoft User-Mode Driver Framework Feature Pack 1.0
    Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2005 Redistributable
    Motorola SM56 Data Fax Modem
    MSVCRT
    O2Micro Flash Memory Card Windows Driver V2.04
    Pakket voor de provider van Microsoft Base-smartcardcryptografieservice
    QuickTime
    Realtek High Definition Audio Driver
    Segoe UI
    Spybot - Search & Destroy
    Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
    Update voor Windows Internet Explorer 8 (KB973874)
    Update voor Windows Internet Explorer 8 (KB976662)
    Update voor Windows Internet Explorer 8 (KB976749)
    Update voor Windows Internet Explorer 8 (KB980182)
    USB Video/Audio Driver
    Visual C++ 8.0 ATL (x86) WinSXS MSM
    Visual C++ 8.0 CRT (x86) WinSXS MSM
    Windows Defender
    Windows Internet Explorer 8
    Windows Live - Hulpprogramma voor uploaden
    Windows Live aanmeldhulp
    Windows Live Call
    Windows Live Communications Platform
    Windows Live Essentials
    Windows Live Essentials
    Windows Live Mail
    Windows Live Messenger
    Windows Media Format 11 runtime
    Windows Media Format 11 runtime
    Windows Media Player 11
    Windows Media Player 11
    Windows XP Service Pack 3
    Windows-stuurprogrammapakket - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0)
    WinRAR
    XML Paper Specification Shared Components Language Pack 1.0
  • Hoi Willem, het log ziet er goed uit.

    Ik adviseer je om AVG en Windows Defender te verwijderen en daarvoor in de plaats Avast 5 Free te installeren - de nummer 1 van de gratis antivurusprogramma's!

    Zie ook: http://www.nationaalcomputerforum.nl/showthread.php?t=65134

    * AVG Remover: http://www.avg.com/nl-nl/download-tools

    * Avast 5 Free: http://download.cnet.com/Avast-Free-Antivirus/3000-2239_4-10019223.html?part=dl-85737&subj=dl&tag=button

    Installeer Avast met alle opties!
    En vergeet niet Avast eerst te registreren en daarna te updaten - hiervoor klik je in het menu op [b:ae579e2e49]Onderhoud[/b:ae579e2e49]

    Laat weten of de Avastscan mogelijk iets vindt!

    Noot: Avast in je eigen computer: je internetverbinding wordt dan ook sneller!
  • Hallo,
    alles op de 2 labtops omgebatterij-t en gescaned, niets gevonden, alles goed volgens AV. Daarna speedtest.net uitgevoerd en met zelfde provider volgende resultaten..
    pc 1: 21,6 Mb/s - 3,7 Mb/s
    pc 2: 10,59 Mb/s - 3,66 Mb/s

    waar komt zo'n verschil vandaan? kan dat komen omdat er gewoon 2-3 jaar tussen zit qua leeftijd en ene pc xp heeft en andere windows 7?

    Ik hoor het graag
    groeten Willem
  • Welk notebook heeft die lagere snelheid?
    De XP of de Windows 7 machine?

    En welk AV zit er in?
  • de windows 7 is sneller en AV versie is 5.0.594
    en bij XP is het AV gelijk
    groeten Willem
  • Wat gebeurt er als je beide notebooks op dezelfde plek vergelijkt.

    Een mooie site om de snelheid te checken: www.speed.io

Beantwoord deze vraag

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.