Vraag & Antwoord

Beveiliging & privacy

Virus

30 antwoorden
  • Hallo Allemaal. Ook ik heb hier een Security ding op de pc zitten. Het is een vista-machine en dan werken bepaalde programmas anders of niet volgens mij. ik kom er meestal wel uit maar dit keer blijft het "virus" zit tonen. Ik heb combofix geprobeert in veilige modus maar deze blijft bij deel_2 hangen. Wel is het nu gelukt in de gewone modus maar met AVG nog aan omdat ik die niet uit kan krijgen. SD-fix werkt ook niet naar behoren. Malwarebites heb ik wel gedraait maar deze haalt niet alles weg. Ook spybots verwijderd niet alles. AVG draait op deze pc maar haalt ook niet het gewenste resultaat. Nu las ik het voorgaande en het kwam mij heel bekend voor. Maar komen alleen de regels die genoemd worden om in hijack aan te vinken niet voor. Dus nu toch eigenlijk wel een beetje ten einde raad zou ik jullie hulp in willen roepen. Nu zet ik het onder dit onderwerp omdat het gerelateerd is hieraan. mocht het op een andere plaats thuis horen hoor ik het graag. hieronder zet ik mijn hijack logfile neer in de hoop dat jullie mij hier verder mee kunnen helpen. Alvast bedankt. Willem EDIT: ik geloof dat ik het ondertussen toch gered heb dus kan dit bericht voor nu als vervallen beschouwd worden
  • Hallo Willem - of je het nu wel of voorelkaar hebt, post een nieuw HJT-log, want Spybot zit in de weg om definitief de malware te verwijderen! En dan dit: C:\Program Files\USB Disk Win98 Driver - wat heeft dit nu in Windows Vista te zoeken?
  • Hallo, Hierbij mijn hijacklog filetje. Alvast bedankt Ik kom ook een melding tegen over zango WeatherDPA. Hier is weinig over te vinden op internet. Malwarebites vind deze maar kan er verder niets mee. gr. Willem Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 20:17:45, on 20-8-2010 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.18943) Boot mode: Safe mode with network support Running processes: C:\Windows\Explorer.EXE C:\Program Files\Hijackthis\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:6522 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll R3 - URLSearchHook: Entertainment and Graphics Toolbar - {34c09d88-6258-4129-a4b0-8e93c9c95065} - C:\Program Files\Entertainment_and_Graphics\tbEnte.dll R3 - URLSearchHook: Force Download Toolbar - {4562096d-4b1e-46b4-aaf2-e3492d44118e} - C:\Program Files\Force_Download\tbForc.dll R3 - URLSearchHook: Radio Bar 1 Toolbar - {0fc85f5d-6207-4515-a490-45a549d285c0} - C:\Program Files\Radio_Bar_1\tbRadi.dll R3 - URLSearchHook: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSof1.dll R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O2 - BHO: Radio Bar 1 Toolbar - {0fc85f5d-6207-4515-a490-45a549d285c0} - C:\Program Files\Radio_Bar_1\tbRadi.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Entertainment and Graphics Toolbar - {34c09d88-6258-4129-a4b0-8e93c9c95065} - C:\Program Files\Entertainment_and_Graphics\tbEnte.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll O2 - BHO: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSof1.dll O2 - BHO: Force Download Toolbar - {4562096d-4b1e-46b4-aaf2-e3492d44118e} - C:\Program Files\Force_Download\tbForc.dll O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - (no file) O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll O3 - Toolbar: Entertainment and Graphics Toolbar - {34c09d88-6258-4129-a4b0-8e93c9c95065} - C:\Program Files\Entertainment_and_Graphics\tbEnte.dll O3 - Toolbar: Force Download Toolbar - {4562096d-4b1e-46b4-aaf2-e3492d44118e} - C:\Program Files\Force_Download\tbForc.dll O3 - Toolbar: Radio Bar 1 Toolbar - {0fc85f5d-6207-4515-a490-45a549d285c0} - C:\Program Files\Radio_Bar_1\tbRadi.dll O3 - Toolbar: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSof1.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O4 - HKLM\..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNotify.exe O4 - HKLM\..\Run: [HDMICtrlMan] C:\Program Files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe O4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Toshiba TEMPRO] C:\Program Files\Toshiba TEMPRO\TemproTray.exe O4 - HKLM\..\Run: [USB Storage Toolbox] C:\Program Files\USB Disk Win98 Driver\Res.EXE O4 - HKLM\..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files\Toshiba\TRDCReminder\TRDCReminder.exe (User 'Default user') O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: eBay - {76577871-04EC-495E-A12B-91F7C3600AFA} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url2.pl?NL (file missing) O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Amazon.co.uk - {8A918C1D-E123-4E36-B562-5C1519E434CE} - http://www.amazon.co.uk/exec/obidos/redirect-home?tag=Toshibaukbholink-21&site=home (file missing) O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: toolbarchrome - {718733BC-AD64-4E5F-AC18-A85FBD75D54D} - C:\Program Files\RadioBar\toolbar.ni.dll O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GoogleDesktopNetwork3.dll C:\Windows\System32\avgrsstx.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe O23 - Service: AVG Free E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Updateservice (gupdate1c9e0554a1c89a0) (gupdate1c9e0554a1c89a0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: McAfee Real-time Scanner (McShield) - Unknown owner - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe (file missing) O23 - Service: McAfee SystemGuards (McSysmon) - Unknown owner - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe (file missing) O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe O23 - Service: SmartFaceVWatchSrv - Toshiba - C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatchSrv.exe O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files\Toshiba TEMPRO\TemproSvc.exe O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe O23 - Service: TOSHIBA SMART Log Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe O23 - Service: VRS Recording System (VRSService) - Unknown owner - C:\Program Files\NCH Swift Sound\VRS\vrs.exe -- End of file - 12747 bytes
  • Hallo Willem, je bent nog steeds niet verlost van het kreng! Heel belangrijk - onderstaande eerst doen: [color=#FF0000:5b0ad6fa32][b:5b0ad6fa32]• Stap 1•[/b:5b0ad6fa32][/color:5b0ad6fa32] [b:5b0ad6fa32]Deaktiveer [color=blue:5b0ad6fa32]TeaTimer en SDHelper[/color:5b0ad6fa32] van Spybot tijdens de fix want deze onderdelen kunnen veranderingen ongedaan maken[/b:5b0ad6fa32]. [list:5b0ad6fa32][*:5b0ad6fa32] Start Spybot S&D [*:5b0ad6fa32] Ga naar het Mode menu en selecteer "Advanced Mode" [*:5b0ad6fa32] In de linker kolom kies [b:5b0ad6fa32]"Tools"[/b:5b0ad6fa32] (of gereedschap ) en klik op > [b:5b0ad6fa32]Resident[/b:5b0ad6fa32] [*:5b0ad6fa32] Uitvinken [color=blue:5b0ad6fa32]"Resident TeaTimer en SDHelper[/color:5b0ad6fa32]" en sluit Spybot S&D.[/list:u:5b0ad6fa32] [list:5b0ad6fa32][*:5b0ad6fa32][b:5b0ad6fa32] Omdat Teatimer aktief was, doe vervolgens ook nog dit[/b:5b0ad6fa32]: [url=http://home.hetnet.nl/~stefsmeenk/ResetTeaTimer.exe][b:5b0ad6fa32]Download naar je bureaublad: ResetTeaTimer.exe[/b:5b0ad6fa32] (klik)[/url] [*:5b0ad6fa32] Klik/dubbelklik op ResetTeaTimer.exe [*:5b0ad6fa32] Hierdoor zullen de via Teatimer toegestane- of geblokkeerde items weer gereset worden naar de oorspronkelijke settings. [*:5b0ad6fa32] [b:5b0ad6fa32]Start de computer hierna opnieuw op.[/b:5b0ad6fa32][/list:u:5b0ad6fa32] [color=#FF0000:5b0ad6fa32][b:5b0ad6fa32]• Stap 2•[/b:5b0ad6fa32][/color:5b0ad6fa32] Sluit alle openstaande vensters (dus kopieer eerst deze pagina naar kladblok) en start dan HijackThis en klik op de knop [b:5b0ad6fa32]Do a Scan only, R3 - URLSearchHook: Entertainment and Graphics Toolbar - {34c09d88-6258-4129-a4b0-8e93c9c95065} - C:\Program Files\Entertainment_and_Graphics\tbEnte.dll R3 - URLSearchHook: Force Download Toolbar - {4562096d-4b1e-46b4-aaf2-e3492d44118e} - C:\Program Files\Force_Download\tbForc.dll R3 - URLSearchHook: Radio Bar 1 Toolbar - {0fc85f5d-6207-4515-a490-45a549d285c0} - C:\Program Files\Radio_Bar_1\tbRadi.dll R3 - URLSearchHook: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSof1.dll R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O2 - BHO: Entertainment and Graphics Toolbar - {34c09d88-6258-4129-a4b0-8e93c9c95065} - C:\Program Files\Entertainment_and_Graphics\tbEnte.dll O2 - BHO: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSof1.dll O2 - BHO: Force Download Toolbar - {4562096d-4b1e-46b4-aaf2-e3492d44118e} - C:\Program Files\Force_Download\tbForc.dll O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O3 - Toolbar: Entertainment and Graphics Toolbar - {34c09d88-6258-4129-a4b0-8e93c9c95065} - C:\Program Files\Entertainment_and_Graphics\tbEnte.dll O3 - Toolbar: Force Download Toolbar - {4562096d-4b1e-46b4-aaf2-e3492d44118e} - C:\Program Files\Force_Download\tbForc.dll O3 - Toolbar: Softonic-Eng7 Toolbar - {414b6d9d-4a95-4e8d-b5b1-149dd2d93bb3} - C:\Program Files\Softonic-Eng7\tbSof1.dll O9 - Extra button: eBay - {76577871-04EC-495E-A12B-91F7C3600AFA} - http://www.webtip.ch/cgi-bin/toshiba/tracker_url2.pl?NL (file missing) O9 - Extra button: Amazon.co.uk - {8A918C1D-E123-4E36-B562-5C1519E434CE} - http://www.amazon.co.uk/exec/obidos/redirect-home?tag=Toshibaukbholink-21&site=h ome (file missing) O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll[/b:5b0ad6fa32] [list:5b0ad6fa32][*:5b0ad6fa32] zet een vinkje voor die regel(s) welke met de bovenstaande regels corresponderen [*:5b0ad6fa32] vervolgens klik je daarna op de knop [b:5b0ad6fa32]Fix checked[/b:5b0ad6fa32] [*:5b0ad6fa32] Klik hierna HijackThis op uit.[/list:u:5b0ad6fa32] [color=#FF0000:5b0ad6fa32][b:5b0ad6fa32]• Stap 3•[/b:5b0ad6fa32][/color:5b0ad6fa32] [b:5b0ad6fa32][url=http://www.idealsoftware.nl/MBAM/]Download, installeer en blijf MBAM gebruiken (KLIK)[/url][/b:5b0ad6fa32] (klik op de blaue knop om de gratis versie te downloaden!) [list:5b0ad6fa32][*:5b0ad6fa32] Al meteen na de installatie wil [b:5b0ad6fa32]MBAM[/b:5b0ad6fa32] zijn database opwaarderen – toestaan dus. [*:5b0ad6fa32] Ook bij herhaald gebruik: eerst MBAM updaten via de tab [b:5b0ad6fa32]Update[/b:5b0ad6fa32]! [*:5b0ad6fa32] Start [b:5b0ad6fa32]MBAM[/b:5b0ad6fa32] en kies voor [b:5b0ad6fa32]Snelle Scan[/b:5b0ad6fa32] [*:5b0ad6fa32] [b:5b0ad6fa32]N.B.: Vista- en Windows 7 gebruik(st)ers starten MBAM middels rechtsklikken en dan kiezen voor Als Administrator uitvoeren.[/b:5b0ad6fa32] [*:5b0ad6fa32] Het scannen kan een tijdje duren, dus wees geduldig. [*:5b0ad6fa32] Indien de scan voltooid is, klik dan op de knop [b:5b0ad6fa32]OK[/b:5b0ad6fa32] [*:5b0ad6fa32] Klik daarna op de knop [b:5b0ad6fa32]Bekijk Resultaten[/b:5b0ad6fa32] om de resultaten te zien. [*:5b0ad6fa32] Zorg ervoor, dat alles aangevinkt is. [*:5b0ad6fa32] Vervolgens klik je op: [b:5b0ad6fa32]Verwijder geselecteerde[/b:5b0ad6fa32] . [*:5b0ad6fa32] Na het verwijderen zal een log openen en zal er gevraagd worden om de computer opnieuw op te starten. [*:5b0ad6fa32] Het log wordt automatisch bewaard door [b:5b0ad6fa32]MBAM[/b:5b0ad6fa32] en dat kan je terugvinden door op de tab [b:5b0ad6fa32]Logs[/b:5b0ad6fa32] te klikken in [b:5b0ad6fa32]MBAM[/b:5b0ad6fa32] . [*:5b0ad6fa32] Indien [b:5b0ad6fa32]MBAM[/b:5b0ad6fa32] moeilijkheden heeft met het verwijderen van bepaalde bestanden zal het enkele meldingen geven – dan telkens op [b:5b0ad6fa32]OK[/b:5b0ad6fa32] klikken! [*:5b0ad6fa32] Daarna zal [b:5b0ad6fa32]MBAM[/b:5b0ad6fa32] vragen om de Computer opnieuw op te starten - dus sta toe dat de computer opnieuw opgestart wordt.[/list:u:5b0ad6fa32] Indien er de rootkit (TDSS) aanwezig is, zal MBAM ook vragen te herstarten. Doe dit dan ook. MBAM zal dan na de herstart opnieuw scannen en de rootkit verwijderen. [[color=blue:5b0ad6fa32]b]Hierna post je de inhoud van de volgende logs:[/b] [list:5b0ad6fa32][*:5b0ad6fa32] een nieuw Hijackthis-log [*:5b0ad6fa32] MBAM scanlog[/list:u:5b0ad6fa32] [list:5b0ad6fa32][b:5b0ad6fa32]Tevens een Uninstall-lijst posten:[/b:5b0ad6fa32] [*:5b0ad6fa32] start HijackThis, [*:5b0ad6fa32] klik op de knop [b:5b0ad6fa32]Open the Misc Tools section[/b:5b0ad6fa32], [*:5b0ad6fa32] klik op de knop [b:5b0ad6fa32]Open Uninstall Manager[/b:5b0ad6fa32] [*:5b0ad6fa32] Klik op de knop [b:5b0ad6fa32]Save[/b:5b0ad6fa32].[/list:u:5b0ad6fa32][/color:5b0ad6fa32]
  • Hallo, bedankt voor de informatie. Vanmorgen druk bezig geweest en heb 3 logbestanden. de eerste is van hijack, de 2e van malware en de 3e de uninstalllijst. hier de hijack: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 19:58:12, on 21-8-2010 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v8.00 (8.00.6001.18943) Boot mode: Safe mode with network support Running processes: C:\Windows\Explorer.EXE C:\Program Files\Hijackthis\HijackThis.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:6522 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files\Ask.com\GenericAskToolbar.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll O2 - BHO: (no name) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - (no file) O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll O3 - Toolbar: (no name) - {34c09d88-6258-4129-a4b0-8e93c9c95065} - (no file) O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [KeNotify] C:\Program Files\TOSHIBA\Utilities\KeNotify.exe O4 - HKLM\..\Run: [HDMICtrlMan] C:\Program Files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint2K\Apoint.exe O4 - HKLM\..\Run: [Toshiba Registration] C:\Program Files\Toshiba\Registration\ToshibaRegistration.exe O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Toshiba TEMPRO] C:\Program Files\Toshiba TEMPRO\TemproTray.exe O4 - HKLM\..\Run: [USB Storage Toolbox] C:\Program Files\USB Disk Win98 Driver\Res.EXE O4 - HKLM\..\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\\Phone\Skype.exe" /nosplash /minimized O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - .DEFAULT User Startup: TRDCReminder.lnk = C:\Program Files\Toshiba\TRDCReminder\TRDCReminder.exe (User 'Default user') O4 - Startup: OneNote 2007 Schermopname en Snel starten.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html O9 - Extra button: In weblog opnemen - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: &In weblog opnemen met Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Amazon.co.uk - {8A918C1D-E123-4E36-B562-5C1519E434CE} - http://www.amazon.co.uk/exec/obidos/redirect-home?tag=Toshibaukbholink-21&site=home (file missing) O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O18 - Protocol: toolbarchrome - {718733BC-AD64-4E5F-AC18-A85FBD75D54D} - C:\Program Files\RadioBar\toolbar.ni.dll O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GoogleDesktopNetwork3.dll C:\Windows\System32\avgrsstx.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Agere Systems - C:\Windows\system32\agrsmsvc.exe O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files\AVG\AVG9\Toolbar\ToolbarBroker.exe O23 - Service: AVG Free E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: ConfigFree Service - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe O23 - Service: getPlus(R) Helper - NOS Microsystems Ltd. - C:\Program Files\NOS\bin\getPlus_HelperSvc.exe O23 - Service: Google Desktop Manager 5.9.1005.12335 (GoogleDesktopManager-051210-111108) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe O23 - Service: Google Updateservice (gupdate1c9e0554a1c89a0) (gupdate1c9e0554a1c89a0) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: McAfee Real-time Scanner (McShield) - Unknown owner - C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe (file missing) O23 - Service: McAfee SystemGuards (McSysmon) - Unknown owner - C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe (file missing) O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe O23 - Service: SmartFaceVWatchSrv - Toshiba - C:\Program Files\Toshiba\SmartFaceV\SmartFaceVWatchSrv.exe O23 - Service: Notebook Performance Tuning Service (TEMPRO) (TemproMonitoringService) - Toshiba Europe GmbH - C:\Program Files\Toshiba TEMPRO\TemproSvc.exe O23 - Service: TOSHIBA Navi Support Service (TNaviSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\TOSHIBA DVD PLAYER\TNaviSrv.exe O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - c:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe O23 - Service: TOSHIBA SMART Log Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe O23 - Service: VRS Recording System (VRSService) - Unknown owner - C:\Program Files\NCH Swift Sound\VRS\vrs.exe -- End of file - 10162 bytes
  • [u:549c04616f][b:549c04616f]Hierbij de malware logfile:[/b:549c04616f][/u:549c04616f] Malwarebytes' Anti-Malware 1.46 www.malwarebytes.org Databaseversie: 4457 Windows 6.0.6002 Service Pack 2 (Safe Mode) Internet Explorer 8.0.6001.18943 21-8-2010 19:41:56 mbam-log-2010-08-21 (19-41-56).txt Scantype: Snelle scan Objecten gescand: 143120 Verstreken tijd: 4 minuut/minuten, 43 seconde(n) Geheugenprocessen geïnfecteerd: 0 Geheugenmodulen geïnfecteerd: 0 Registersleutels geïnfecteerd: 0 Registerwaarden geïnfecteerd: 0 Registerdata geïnfecteerd: 0 Mappen geïnfecteerd: 0 Bestanden geïnfecteerd: 0 Geheugenprocessen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Geheugenmodulen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registersleutels geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerwaarden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Registerdata geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Mappen geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) Bestanden geïnfecteerd: (Geen kwaadaardige objecten gedetecteerd) [size=18:549c04616f][b:549c04616f][u:549c04616f] en dan nog de uninstallijst:[/u:549c04616f][/b:549c04616f][/size:549c04616f] Aanmeldhulp voor Windows Live ID Adobe Flash Player 10 ActiveX Adobe Reader 9.1 - Nederlands ALPS Touch Pad Driver Apple Application Support Apple Mobile Device Support Apple Software Update Ask Toolbar a-squared Free 4.5 AV Voice Changer Software 7.0 AVG Free 9.0 BitTorrent Bluetooth Stack for Windows by Toshiba Bonjour Camera Assistant Software for Toshiba Catalyst Control Center - Branding CCleaner (remove only) DivX Setup Dolby Control Center DVD MovieFactory for TOSHIBA Entertainment_and_Graphics Toolbar Force_Download Toolbar Geluiddemper v. cd/dvd-station getPlus(R) for Adobe Google Chrome Google Desktop Google Earth Google Toolbar for Internet Explorer Google Toolbar for Internet Explorer Google Update Helper Google Updater HDMI Control Manager Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) Intel® Matrix Storage Manager InterActual Player iTunes JMicron JMB38X Flash Media Controller Junk Mail filter update LG USB Modem driver LG_MobileSync Malwarebytes' Anti-Malware Microsoft .NET Framework 3.5 Language Pack SP1 - nld Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 3.5 SP1 Microsoft Choice Guard Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office 2007 Service Pack 2 (SP2) Microsoft Office Excel MUI (Dutch) 2007 Microsoft Office Home and Student 2007 Microsoft Office Home and Student 2007 Microsoft Office Live Add-in 1.5 Microsoft Office OneNote MUI (Dutch) 2007 Microsoft Office PowerPoint MUI (Dutch) 2007 Microsoft Office PowerPoint Viewer 2007 (Dutch) Microsoft Office Proof (Dutch) 2007 Microsoft Office Proof (English) 2007 Microsoft Office Proof (French) 2007 Microsoft Office Proof (German) 2007 Microsoft Office Proofing (Dutch) 2007 Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) Microsoft Office Shared MUI (Dutch) 2007 Microsoft Office Word MUI (Dutch) 2007 Microsoft Search Enhancement Pack Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Sync Framework Runtime Native v1.0 (x86) Microsoft Sync Framework Services Native v1.0 (x86) Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Works MSVCRT MSXML 4.0 SP2 (KB954430) MSXML 4.0 SP2 (KB973688) myphotobook 3.6 NCH Toolbox OGA Notifier 2.0.0048.0 Picasa 3 QuickTime Radio_Bar_1 Toolbar RadioBar Toolbar Realtek 8169 8168 8101E 8102E Ethernet Driver Realtek High Definition Audio Driver Roll Security Update for 2007 Microsoft Office System (KB2277947) Security Update for 2007 Microsoft Office System (KB969559) Security Update for 2007 Microsoft Office System (KB976321) Security Update for 2007 Microsoft Office System (KB982312) Security Update for 2007 Microsoft Office System (KB982331) Security Update for Microsoft Office Excel 2007 (KB982308) Security Update for Microsoft Office InfoPath 2007 (KB979441) Security Update for Microsoft Office PowerPoint 2007 (KB982158) Security Update for Microsoft Office system 2007 (972581) Security Update for Microsoft Office system 2007 (KB974234) Security Update for Microsoft Office Visio Viewer 2007 (KB973709) Security Update for Microsoft Office Word 2007 (KB2251419) Security Update for Windows Media Encoder (KB954156) Security Update for Windows Media Encoder (KB979332) Skype Toolbars Skype™ 4.2 Softonic-Eng7 Toolbar Spybot - Search & Destroy Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL TOSHIBA Assist TOSHIBA ConfigFree TOSHIBA Disc Creator TOSHIBA DVD PLAYER TOSHIBA Extended Tiles for Windows Mobility Center TOSHIBA Face Recognition TOSHIBA Face Recognition TOSHIBA Flash Cards Support Utility TOSHIBA Hardware Setup Toshiba Online Product Information TOSHIBA Recovery Disc Creator TOSHIBA SD Memory Utilities TOSHIBA Software Modem TOSHIBA Supervisorwachtwoord Toshiba TEMPRO TOSHIBA Value Added Package TOSHIBA-handleidingen TRDCReminder TRORDCLauncher Update for 2007 Microsoft Office System (KB967642) Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Microsoft Office OneNote 2007 (KB980729) Update voor Microsoft Office Excel 2007 Help (KB963678) Update voor Microsoft Office Powerpoint 2007 Help (KB963669) Update voor Microsoft Office Word 2007 Help (KB963665) USB Disk Win98 Driver VC80CRTRedist - 8.0.50727.4053 Vegas Pro 9.0 VideoPad Video Editor VLC media player 0.9.8a VRS Recording System WavePad Sound Editor Windows Live - Hulpprogramma voor uploaden Windows Live Call Windows Live Communications Platform Windows Live Essentials Windows Live Essentials Windows Live Mail Windows Live Messenger Windows Live Movie Maker Windows Live Photo Gallery Windows Live Sync Windows Live Toolbar Windows Live Writer Windows Media Encoder 9 Series Windows Media Encoder 9 Series Ik hoor graag of er nog gekke dingen in zitten. alvast bedankt groeten Willem
  • Hmmm - van de fix is weinig tot niets terechtgekomen! Heb je dat wel gedaan?
  • Hallo, Ik denktoch dat er iets misgegaan is vanmiddag. Ik heb alles nogmaals uitgevoerd en de eerder geposte lijsten overschreven door nieuwe lijsten. Ik hoop dat het nu beter is. Ik hoor het graag. groeten Willem
  • Hallo Willem, dat ziet er al beter uit inderdaad! En ik had ook nog wat vergeten - dat mag je ook nog fixen! Sluit alle openstaande vensters (dus kopieer eerst deze pagina naar kladblok) en start dan HijackThis en klik op de knop [b:2dea9b453a]Do a Scan only, R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=127.0.0.1:6522[/b:2dea9b453a] [list:2dea9b453a][*:2dea9b453a] zet een vinkje voor die regel(s) welke met de bovenstaande regels corresponderen [*:2dea9b453a] vervolgens klik je daarna op de knop [b:2dea9b453a]Fix checked[/b:2dea9b453a] [*:2dea9b453a] Klik hierna HijackThis op uit.[/list:u:2dea9b453a] Verder is het heel belanrijk dat je de Adobe Reader in jouw Windows gaat updaten! Want dat is dringend noodzakelijk om veiligheidslekken erin te dichten! Als gebruiker van de versie 9 start je de Reader, klik je in de menubalk op [b:2dea9b453a]Help[/b:2dea9b453a] en kies je vervolgens voor [b:2dea9b453a]Controleren op updates....[/b:2dea9b453a] Let vervolgens op de melding in de systray (waar de klok ook huist), wanneerd de update klaar is om geïnstalleerd te worden! Daarna doe je het volgende: [b:2dea9b453a][url=http://download.bleepingcomputer.com/sUBs/ComboFix.exe]laat Combofix jouw Windows scannen (klik)[/url][/b:2dea9b453a]. [b:2dea9b453a][url=http://www.bleepingcomputer.com/combofix/nl/hoe-dient-combofix-gebruikt-te-worden]Hoe Combofix goed te gebruiken (klik)[/url][/b:2dea9b453a] [list:2dea9b453a][*:2dea9b453a][b:2dea9b453a] Om Combofix te kunnen gebruiken geldt het volgende:[/b:2dea9b453a] [*:2dea9b453a][b:2dea9b453a]Vista- en Windows 7 gebruikers starten Combofix op met Administratorrechten![/b:2dea9b453a] [*:2dea9b453a] [COLOR="Black"][/color][COLOR="Red"]Er mogen geen webbrowsers openstaan[/COLOR] [*:2dea9b453a] [COLOR="Black"][/COLOR] [COLOR="Red"]Antivirus moet geheel gedeaktiveerd zijn[/COLOR] [*:2dea9b453a] [COLOR="Black"][/COLOR] [COLOR="red"]Actieve mal- en spywarescanners moeten gedeaktiveerd zijn[/COLOR] [*:2dea9b453a][COLOR="Black"][/color][COLOR="Red"]Niet in het actieve Combofixvnster klikken – dit zal Combofix doen bevriezen![/COLOR] [*:2dea9b453a][COLOR="Black"][/color][COLOR="red"]Combofix sluit de internet verbinding – probeer deze tussentijds niet te herstellen![/COLOR] [*:2dea9b453a] En vergeet ook niet Windows Defender tijdelijk uit te schakelen: zie daarvoor [url]http://windowshelp.microsoft.com/Windows/nl-NL/help/31d797aa-091d-4d67-a556-dbfaf21bf0dc1043.mspx[/url] [*:2dea9b453a] [b:2dea9b453a]Hier vindt je gegevens hoe antivirus te deaktiveren[/b:2dea9b453a] [url]http://www.bleepingcomputer.com/forums/topic114351.html[/url] [*:2dea9b453a] [b:2dea9b453a]Post aansluitend het Combofix log .[/b:2dea9b453a][/list:u:2dea9b453a]
  • Hallo, nou ondertussen adobe geupdate en combofix gedraaid met als resultaat onderstaande logfile. Ik ben benieuwd of er nog gekke dingen in zitten. ik hoor graag van u. groeten Willem ComboFix 10-08-21.01 - slagter 21-08-2010 22:13:49.4.2 - x86 NETWORK Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.31.1043.18.3066.2622 [GMT 2:00] Gestart vanuit: c:\users\slagter\Desktop\ComboFix.exe SP: Spybot - Search and Destroy *disabled* (Updated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9} SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46} . (((((((((((((((((((( Bestanden Gemaakt van 2010-07-21 to 2010-08-21 )))))))))))))))))))))))))))))) . 2010-08-21 20:19 . 2010-08-21 20:19 -------- d-----w- c:\users\slagter\AppData\Local\temp 2010-08-21 20:19 . 2010-08-21 20:19 -------- d-----w- c:\users\Public\AppData\Local\temp 2010-08-21 20:19 . 2010-08-21 20:19 -------- d-----w- c:\users\Gast\AppData\Local\temp 2010-08-21 20:19 . 2010-08-21 20:19 -------- d-----w- c:\users\Default\AppData\Local\temp 2010-08-21 19:35 . 2010-08-21 19:35 -------- d-----w- c:\users\slagter\AppData\Local\Adobe 2010-08-20 18:21 . 2010-08-20 18:21 -------- d-----w- c:\programdata\Office Genuine Advantage 2010-08-20 12:24 . 2010-08-20 12:48 -------- d-----w- C:\SDFix 2010-08-20 11:28 . 2010-05-21 12:14 221568 ------w- c:\windows\system32\MpSigStub.exe 2010-08-18 18:24 . 2010-08-18 18:24 -------- d-----w- c:\program files\Enigma Software Group 2010-08-18 18:24 . 2010-08-18 19:18 -------- d-----w- c:\windows\95431C66CF9A4913BFFF6050785AFB65.TMP 2010-08-18 17:59 . 2010-06-30 12:22 2102600 ----a-w- c:\programdata\AVG Security Toolbar\IEToolbar.dll 2010-08-18 16:20 . 2010-08-18 16:20 -------- d-----w- C:\$AVG 2010-08-18 15:48 . 2010-08-18 15:48 243024 ----a-w- c:\windows\system32\drivers\avgtdix.sys 2010-08-18 15:48 . 2010-08-18 15:48 12536 ----a-w- c:\windows\system32\avgrsstx.dll 2010-08-18 15:48 . 2010-08-18 15:48 216400 ----a-w- c:\windows\system32\drivers\avgldx86.sys 2010-08-18 15:48 . 2010-08-21 19:40 -------- d-----w- c:\windows\system32\drivers\Avg 2010-08-18 15:48 . 2010-08-18 15:48 29584 ----a-w- c:\windows\system32\drivers\avgmfx86.sys 2010-08-18 15:47 . 2010-08-18 17:59 -------- d-----w- c:\programdata\AVG Security Toolbar 2010-08-18 15:47 . 2010-08-18 15:47 -------- d-----w- c:\program files\AVG 2010-08-18 15:47 . 2010-08-18 15:47 -------- d-----w- c:\programdata\avg9 2010-08-18 09:23 . 2010-08-21 08:24 -------- d-----w- c:\programdata\Spybot - Search & Destroy 2010-08-18 09:23 . 2010-08-18 09:24 -------- d-----w- c:\program files\Spybot - Search & Destroy 2010-08-17 14:04 . 2010-08-17 14:04 -------- d-----w- c:\users\slagter\AppData\Roaming\Malwarebytes 2010-08-17 13:49 . 2010-04-29 13:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2010-08-17 13:49 . 2010-08-17 14:04 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware 2010-08-17 13:49 . 2010-08-17 13:49 -------- d-----w- c:\programdata\Malwarebytes 2010-08-17 13:49 . 2010-04-29 13:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys 2010-08-17 13:47 . 2010-08-21 18:01 -------- d-----w- C:\dump 2010-08-17 13:35 . 2010-08-18 20:43 680 ----a-w- c:\users\slagter\AppData\Local\d3d9caps.dat 2010-08-16 17:08 . 2010-08-16 17:09 -------- d-----w- c:\users\Gast\AppData\Roaming\vlc 2010-08-16 15:10 . 2010-08-19 12:53 -------- d-----w- c:\users\slagter\AppData\Local\vmqwxcixp 2010-08-16 15:09 . 2010-08-16 15:09 -------- d-----w- c:\users\slagter\AppData\Roaming\BD51DD45836969C08C2B5883D040AEEC 2010-08-15 15:04 . 2010-06-08 17:35 3600768 ----a-w- c:\windows\system32\ntkrnlpa.exe 2010-08-15 15:04 . 2010-06-08 17:35 3548040 ----a-w- c:\windows\system32\ntoskrnl.exe 2010-08-15 15:04 . 2010-06-11 16:15 1248768 ----a-w- c:\windows\system32\msxml3.dll 2010-08-15 15:04 . 2010-06-18 15:04 302080 ----a-w- c:\windows\system32\drivers\srv.sys 2010-08-15 15:04 . 2010-06-18 15:04 144896 ----a-w- c:\windows\system32\drivers\srv2.sys 2010-08-15 15:04 . 2010-06-16 16:04 905088 ----a-w- c:\windows\system32\drivers\tcpip.sys . ((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-08-21 20:10 . 2008-01-21 06:47 666366 ----a-w- c:\windows\system32\perfh013.dat 2010-08-21 20:10 . 2008-01-21 06:47 126270 ----a-w- c:\windows\system32\perfc013.dat 2010-08-21 19:38 . 2008-11-27 11:16 -------- d-----w- c:\program files\Common Files\Adobe 2010-08-20 13:52 . 2009-11-10 18:19 -------- d-----w- c:\program files\Microsoft 2010-08-18 20:09 . 2010-08-18 19:56 3336 ----a-w- c:\windows\system32\drivers\kgpcpy.cfg 2010-08-18 19:57 . 2010-08-18 19:57 312 ----a-w- c:\windows\system32\drivers\kgpfr2.cfg 2010-08-18 18:24 . 2008-11-27 11:22 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard 2010-08-18 17:04 . 2008-11-27 11:18 -------- d-----w- c:\programdata\McAfee 2010-08-18 14:56 . 2008-11-27 10:35 -------- d-----w- c:\program files\Java 2010-08-16 15:22 . 2010-08-16 15:22 83288 ----a-w- c:\users\Gast\AppData\Local\GDIPFONTCACHEV1.DAT 2010-08-16 15:15 . 2010-03-24 17:58 -------- d-----w- c:\users\slagter\AppData\Roaming\BitTorrent 2010-08-16 09:27 . 2008-11-27 11:23 -------- d-----w- c:\program files\Microsoft Works 2010-08-16 09:20 . 2008-11-27 11:26 -------- d-----w- c:\programdata\Microsoft Help 2010-08-16 09:20 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail 2010-08-15 17:56 . 2010-02-23 21:18 -------- d-----w- c:\users\slagter\AppData\Roaming\Skype 2010-08-15 16:21 . 2010-02-23 21:20 -------- d-----w- c:\users\slagter\AppData\Roaming\skypePM 2010-08-12 21:44 . 2009-05-27 22:23 31024 ----a-w- c:\users\slagter\AppData\Roaming\wklnhst.dat 2010-07-12 16:04 . 2010-05-21 17:45 -------- d-----w- c:\program files\Softonic-Eng7 2010-06-30 14:11 . 2010-06-26 11:12 -------- d-----w- c:\users\slagter\AppData\Roaming\GetRightToGo 2010-06-26 06:05 . 2010-08-15 15:05 916480 ----a-w- c:\windows\system32\wininet.dll 2010-06-26 06:02 . 2010-08-15 15:05 71680 ----a-w- c:\windows\system32\iesetup.dll 2010-06-26 06:02 . 2010-08-15 15:05 109056 ----a-w- c:\windows\system32\iesysprep.dll 2010-06-26 04:25 . 2010-08-15 15:05 133632 ----a-w- c:\windows\system32\ieUnatt.exe 2010-06-21 13:37 . 2010-08-15 15:05 2037760 ----a-w- c:\windows\system32\win32k.sys 2010-06-18 17:31 . 2010-08-15 15:05 36864 ----a-w- c:\windows\system32\rtutils.dll 2010-06-11 16:16 . 2010-08-15 15:05 274944 ----a-w- c:\windows\system32\schannel.dll 2010-05-27 20:08 . 2010-08-15 15:05 81920 ----a-w- c:\windows\system32\iccvid.dll 2010-05-26 17:06 . 2010-06-11 12:24 34304 ----a-w- c:\windows\system32\atmlib.dll 2010-05-26 14:47 . 2010-06-11 12:24 289792 ----a-w- c:\windows\system32\atmfd.dll . ((((((((((((((((((((((((((((( SnapShot@2010-08-20_14.38.36 ))))))))))))))))))))))))))))))))))))))))) . + 2008-01-21 01:58 . 2010-08-21 19:46 62886 c:\windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin + 2006-11-02 13:05 . 2010-08-21 19:46 81268 c:\windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin + 2009-05-27 22:17 . 2010-08-21 19:46 12172 c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2095233901-1526310406-36394863-1000_UserData.bin + 2009-05-27 21:17 . 2010-08-21 19:37 32768 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2009-05-27 21:17 . 2010-08-20 13:54 32768 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2009-05-27 21:17 . 2010-08-20 13:54 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-05-27 21:17 . 2010-08-21 19:37 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-05-27 21:17 . 2010-08-21 19:37 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2009-05-27 21:17 . 2010-08-20 13:54 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2009-05-30 13:14 . 2010-08-21 08:37 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2009-05-30 13:14 . 2010-08-20 14:27 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2009-05-30 13:14 . 2010-08-20 14:27 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-05-30 13:14 . 2010-08-21 08:37 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-05-30 13:14 . 2010-08-21 08:37 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2009-05-30 13:14 . 2010-08-20 14:27 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2009-06-06 09:18 . 2010-08-21 09:23 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2009-06-06 09:18 . 2010-08-20 13:45 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2009-06-06 09:18 . 2010-08-20 13:45 32768 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-06-06 09:18 . 2010-08-21 09:23 32768 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-06-06 09:18 . 2010-08-21 09:23 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2009-06-06 09:18 . 2010-08-20 13:45 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2010-08-21 19:51 . 2010-08-21 20:06 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat - 2010-08-20 13:45 . 2010-08-20 13:45 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat - 2010-08-20 13:45 . 2010-08-20 13:45 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat + 2010-08-21 19:51 . 2010-08-21 20:06 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat + 2009-05-28 09:02 . 2010-08-21 11:05 280630 c:\windows\System32\WDI\SuspendPerformanceDiagnostics_SystemData_S3.bin + 2006-11-02 10:33 . 2010-08-21 20:10 586568 c:\windows\System32\perfh009.dat + 2006-11-02 10:33 . 2010-08-21 20:10 100640 c:\windows\System32\perfc009.dat - 2009-05-28 09:08 . 2010-08-20 12:23 262144 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat + 2009-05-28 09:08 . 2010-08-21 08:35 262144 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat - 2008-11-27 11:39 . 2010-08-20 13:03 548552 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat + 2008-11-27 11:39 . 2010-08-21 19:49 548552 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat + 2010-08-21 19:39 . 2010-08-21 19:39 3962368 c:\windows\Installer\3c25a.msi . ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten ))))))))))))))))))))))))))))))))))))))))))))))))))) . . *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond REGEDIT4 [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] "{00000000-6E41-4FD3-8538-502F5495E5FC}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448] [HKEY_CLASSES_ROOT\clsid\{00000000-6e41-4fd3-8538-502f5495e5fc}] [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}] 2010-02-04 15:50 1197448 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448] [HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}] [HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1] [HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}] [HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-02-04 1197448] [HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}] [HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1] [HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}] [HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920] "TOSCDSPD"="c:\program files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe" [2008-07-04 430080] "msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856] "ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 125952] "Skype"="c:\program files\Skype\\Phone\Skype.exe" [2010-03-09 26100520] "swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2009-05-29 39408] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "KeNotify"="c:\program files\TOSHIBA\Utilities\KeNotify.exe" [2006-11-06 34352] "HDMICtrlMan"="c:\program files\TOSHIBA\HDMICtrlMan\HDMICtrlMan.exe" [2008-05-20 716800] "Apoint"="c:\program files\Apoint2K\Apoint.exe" [2007-12-15 184320] "Toshiba Registration"="c:\program files\Toshiba\Registration\ToshibaRegistration.exe" [2008-01-11 574864] "Toshiba TEMPRO"="c:\program files\Toshiba TEMPRO\TemproTray.exe" [2009-04-21 1045904] "USB Storage Toolbox"="c:\program files\USB Disk Win98 Driver\Res.EXE" [2005-09-14 65536] "Skytel"="c:\program files\Realtek\Audio\HDA\Skytel.exe" [2009-08-24 1833504] "iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2009-09-21 305440] "AVG9_TRAY"="c:\progra~1\AVG\AVG9\avgtray.exe" [2010-08-18 2065760] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-03 35696] "Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-09-04 935288] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "GrpConv"="grpconv -o" [X] c:\users\slagter\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ OneNote 2007 Schermopname en Snel starten.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680] c:\users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\ TRDCReminder.lnk - c:\program files\Toshiba\TRDCReminder\TRDCReminder.exe [2008-3-5 393216] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"=c:\progra~1\Google\GOOGLE~2\GoogleDesktopNetwork3.dll c:\windows\System32\avgrsstx.dll [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer] @="Service" [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] @="Service" [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc] "VistaSp2"=hex(b):db,62,13,90,bb,2c,ca,01 R1 AvgLdx86;AVG Free AVI Loader Driver x86;c:\windows\system32\Drivers\avgldx86.sys [2010-08-18 216400] R2 a2free;a-squared Free Service;c:\program files\a-squared Free\a2service.exe [2009-05-29 717320] R2 avg9emc;AVG Free E-mail Scanner;c:\program files\AVG\AVG9\avgemc.exe [2010-08-18 921952] R2 avg9wd;AVG Free WatchDog;c:\program files\AVG\AVG9\avgwdsvc.exe [2010-08-18 308136] R2 ConfigFree Service;ConfigFree Service;c:\program files\TOSHIBA\ConfigFree\CFSvcs.exe [2008-09-05 40960] R2 gupdate1c9e0554a1c89a0;Google Updateservice (gupdate1c9e0554a1c89a0);c:\program files\Google\Update\GoogleUpdate.exe [2009-05-29 133104] R2 SBSDWSCService;SBSD Security Center Service;c:\program files\Spybot - Search & Destroy\SDWinSec.exe [2009-01-26 1153368] R2 TemproMonitoringService;Notebook Performance Tuning Service (TEMPRO);c:\program files\Toshiba TEMPRO\TemproSvc.exe [2009-04-21 116104] R2 TOSHIBA SMART Log Service;TOSHIBA SMART Log Service;c:\program files\TOSHIBA\SMARTLogService\TosIPCSrv.exe [2008-07-15 106496] R2 VRSService;VRS Recording System;c:\program files\NCH Swift Sound\VRS\vrs.exe [2010-05-21 1052676] R3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\AVG\AVG9\Toolbar\ToolbarBroker.exe [2010-06-30 431432] R3 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [2010-06-15 30192] R3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [2008-09-09 99216] R3 SmartFaceVWatchSrv;SmartFaceVWatchSrv;c:\program files\Toshiba\SmartFaceV\SmartFaceVWatchSrv.exe [2008-08-25 77824] R3 TpChoice;Touch Pad Detection Filter driver;c:\windows\system32\DRIVERS\TpChoice.sys [x] R3 VCSVADHWSer;Avnex Virtual Audio Device (WDM);c:\windows\system32\DRIVERS\vcsvad.sys [2008-12-10 17792] S1 AvgTdiX;AVG Free Network Redirector;c:\windows\system32\Drivers\avgtdix.sys [2010-08-18 243024] S3 NETw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\NETw5v32.sys [2008-11-17 3668480] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . Inhoud van de 'Gedeelde Taken' map 2010-08-21 c:\windows\Tasks\Google Software Updater.job - c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-11-27 12:01] 2010-08-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job - c:\program files\Google\Update\GoogleUpdate.exe [2009-05-29 12:01] 2010-08-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job - c:\program files\Google\Update\GoogleUpdate.exe [2009-05-29 12:01] 2010-08-21 c:\windows\Tasks\User_Feed_Synchronization-{58AE26E0-067B-4123-8545-EB8950472177}.job - c:\windows\system32\msfeedssync.exe [2010-08-15 04:24] . . ------- Bijkomende Scan ------- . uStart Page = hxxp://www.google.com/ mStart Page = hxxp://www.google.com/ig/redirectdomain?brand=TSEA&bmod=TSEA mSearch Bar = hxxp://www.google.com uInternet Settings,ProxyOverride = <local> uInternet Settings,ProxyServer = http=127.0.0.1:6522 uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200 IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000 IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html IE: {{8A918C1D-E123-4E36-B562-5C1519E434CE} - http://www.amazon.co.uk/exec/obidos/redirect-home?tag=Toshibaukbholink-21&site=home Handler: toolbarchrome - {718733BC-AD64-4e5f-AC18-A85FBD75D54D} - c:\program files\RadioBar\toolbar.ni.dll . - - - - ORPHANS VERWIJDERD - - - - Toolbar-{34c09d88-6258-4129-a4b0-8e93c9c95065} - (no file) WebBrowser-{34C09D88-6258-4129-A4B0-8E93C9C95065} - (no file) WebBrowser-{4562096D-4B1E-46B4-AAF2-E3492D44118E} - (no file) WebBrowser-{0FC85F5D-6207-4515-A490-45A549D285C0} - (no file) WebBrowser-{414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3} - (no file) WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - c:\program files\AVG\AVG9\Toolbar\IEToolbar.dll WebBrowser-{71A3D7B2-167E-4A98-8474-822988C52992} - (no file) WebBrowser-{5B291E6C-9A74-4034-971B-A4B007A0B315} - (no file) HKLM-RunOnce-<NO NAME> - (no file) ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2010-08-21 22:19 Windows 6.0.6002 Service Pack 2 NTFS scannen van verborgen processen ... scannen van verborgen autostart items ... HKCU\Software\Microsoft\Windows\CurrentVersion\Run TOSCDSPD = c:\program files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe?/i?????????????X??????????????? scannen van verborgen bestanden ... Scan succesvol afgerond verborgen bestanden: 0 ************************************************************************** . --------------------- VERGRENDELDE REGISTER SLEUTELS --------------------- [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 "MSCurrentCountry"=dword:000000b5 . Voltooingstijd: 2010-08-21 22:21:00 ComboFix-quarantined-files.txt 2010-08-21 20:20 ComboFix2.txt 2010-08-20 14:40 ComboFix3.txt 2010-08-20 11:09 Pre-Run: 109.758.312.448 bytes beschikbaar Post-Run: 109.680.713.728 bytes beschikbaar - - End Of File - - 2D4BE565EE0B60069510CBFBE8CE59E7
  • Hallo Willem, ziet er goed uit. je mag Combofix verwijderen - het tool heeft zijn werk gedaan! [list:34f6256766][*:34f6256766] Ga daarvoor naar Start - Uitvoeren, [*:34f6256766] kopieer en plak hierin het volgende: [b:34f6256766]Combofix /Uninstall[/b:34f6256766] [*:34f6256766] klik daarna op [b:34f6256766]OK[/b:34f6256766]. [*:34f6256766] Indien het goed is, krijg je vervolgens een melding, dat Combofix verwijderd werd.[/list:u:34f6256766] Voorbeeld: [img:34f6256766]http://home.kpn.nl/stefsmeenk/CFUninstall.PNG[/img:34f6256766] Uitvoeren kan ook gestart worden door de toetsencombinatie [img:34f6256766]http://home.kpn.nl/stefsmeenk/W+R.jpg[/img:34f6256766] Hoe draait jouw Windows nu?
  • Hij draait prima, geen gekke dingen meer, mooi vlot... Wel vroeg ik mij nu af ik heb alles steeds op mijn boot gedaan, bij meerdere users moet je dat op alles apart doen of is het zo voor alle gebruikers geregeld. Tot zover reuze bedankt. Groeten Willem
  • Jouw PC heeft meerdere gebruikers? Ga er maar rustig van uit dat alles weer in orde is!
  • Hallo, allereerst de andere pc doet het goed geen problemen nog / meer gehad ik wil toch nog een beroep doen op jullie/jou kennis... Ik kreeg te horen dat ook de andere labtop ook niet vooruit te branden is. Dus heb ik alle tooltjes die ik heb losgelaten op deze pc. Maar toch zit er ergens iets dat de pc erg vertraagd. Daarom plaats ik hieronder het hijacklogje en hoop dat jullie tussen de regels door wel wat kunnen vinden. alvast bedankt.. dan volgt hier het logfiletje Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 21:42:18, on 29-8-2010 Platform: Windows XP SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\AVG\AVG9\avgchsvx.exe C:\Program Files\AVG\AVG9\avgrsx.exe C:\Program Files\AVG\AVG9\avgcsrvx.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\AVG\AVG9\avgwdsvc.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\system32\o2flash.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\AVG\AVG9\avgnsx.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\RTHDCPL.EXE C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\WINDOWS\system32\msiexec.exe C:\hijackthis\HijackThis.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.marktplaats.nl/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/ R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen R3 - URLSearchHook: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll R3 - URLSearchHook: (no name) - *{CFBFAE00-17A6-11D0-99CB-00C04FD64497} - (no file) O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file) O2 - BHO: Windows Live Aanmelden - Help - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\RunOnce: [FlashPlayerUpdate] C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_ActiveX.exe -update activex O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_89D8574934B26AC4.dll/cmsidewiki.html O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} (PCPitstop Utility) - http://utilities.pcpitstop.com/Nirvana/controls/pcmatic.cab O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} (MSN Photo Upload Tool) - http://gfx1.hotmail.com/mail/w3/resources/MSNPUpld.cab O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} (Windows Live Hotmail Photo Upload Tool) - http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing) O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe O23 - Service: Google Updateservice (gupdate1c9c98bebd63ff6) (gupdate1c9c98bebd63ff6) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: O2Micro Flash Memory (O2Flash) - Unknown owner - C:\WINDOWS\system32\o2flash.exe -- End of file - 7228 bytes
  • ook nog even een uninstall lijst gedraaid Adobe Flash Player 10 ActiveX Adobe Reader 9.3.4 - Nederlands Ambrasoft Familiepakket 0809 ArcSoft ShowBiz DVD 2 ATI - Software-verwijderprogramma ATI Display Driver AV301P AVG Free 9.0 Beveiligingsupdate voor Windows Internet Explorer 7 (KB938127-v2) Beveiligingsupdate voor Windows Internet Explorer 7 (KB956390) Beveiligingsupdate voor Windows Internet Explorer 7 (KB961260) Beveiligingsupdate voor Windows Internet Explorer 7 (KB963027) Beveiligingsupdate voor Windows Internet Explorer 8 (KB2183461) Beveiligingsupdate voor Windows Internet Explorer 8 (KB971961) Beveiligingsupdate voor Windows Internet Explorer 8 (KB972260) Beveiligingsupdate voor Windows Internet Explorer 8 (KB974455) Beveiligingsupdate voor Windows Internet Explorer 8 (KB976325) Beveiligingsupdate voor Windows Internet Explorer 8 (KB978207) Beveiligingsupdate voor Windows Internet Explorer 8 (KB981332) Beveiligingsupdate voor Windows Internet Explorer 8 (KB982381) CCleaner Compatibility Pack for the 2007 Office system Google Earth Google Toolbar for Internet Explorer Google Toolbar for Internet Explorer Google Update Helper Google Updater Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) Java(TM) 6 Update 21 Junk Mail filter update Malwarebytes' Anti-Malware Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Dutch Language Pack Microsoft .NET Framework 1.1 Security Update (KB979906) Microsoft .NET Framework 2.0 Service Pack 2 Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - NLD Microsoft .NET Framework 3.0 Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - NLD Microsoft .NET Framework 3.5 Language Pack SP1 - nld Microsoft .NET Framework 3.5 SP1 Microsoft .NET Framework 3.5 SP1 Microsoft Choice Guard Microsoft Compression Client Pack 1.0 for Windows XP Microsoft Internationalized Domain Names Mitigation APIs Microsoft National Language Support Downlevel APIs Microsoft Office Outlook Connector Microsoft Office Professional Editie 2003 Microsoft Silverlight Microsoft User-Mode Driver Framework Feature Pack 1.0 Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2005 Redistributable Motorola SM56 Data Fax Modem MSVCRT O2Micro Flash Memory Card Windows Driver V2.04 Pakket voor de provider van Microsoft Base-smartcardcryptografieservice QuickTime Realtek High Definition Audio Driver Segoe UI Spybot - Search & Destroy Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update voor Windows Internet Explorer 8 (KB973874) Update voor Windows Internet Explorer 8 (KB976662) Update voor Windows Internet Explorer 8 (KB976749) Update voor Windows Internet Explorer 8 (KB980182) USB Video/Audio Driver Visual C++ 8.0 ATL (x86) WinSXS MSM Visual C++ 8.0 CRT (x86) WinSXS MSM Windows Defender Windows Internet Explorer 8 Windows Live - Hulpprogramma voor uploaden Windows Live aanmeldhulp Windows Live Call Windows Live Communications Platform Windows Live Essentials Windows Live Essentials Windows Live Mail Windows Live Messenger Windows Media Format 11 runtime Windows Media Format 11 runtime Windows Media Player 11 Windows Media Player 11 Windows XP Service Pack 3 Windows-stuurprogrammapakket - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0) WinRAR XML Paper Specification Shared Components Language Pack 1.0
  • Hoi Willem, het log ziet er goed uit. Ik adviseer je om AVG en Windows Defender te verwijderen en daarvoor in de plaats Avast 5 Free te installeren - de nummer 1 van de gratis antivurusprogramma's! Zie ook: http://www.nationaalcomputerforum.nl/showthread.php?t=65134 * AVG Remover: [url]http://www.avg.com/nl-nl/download-tools[/url] * Avast 5 Free: [url]http://download.cnet.com/Avast-Free-Antivirus/3000-2239_4-10019223.html?part=dl-85737&subj=dl&tag=button[/url] Installeer Avast met alle opties! En vergeet niet Avast eerst te registreren en daarna te updaten - hiervoor klik je in het menu op [b:ae579e2e49]Onderhoud[/b:ae579e2e49] Laat weten of de Avastscan mogelijk iets vindt! Noot: Avast in je eigen computer: je internetverbinding wordt dan ook sneller!
  • Hallo, alles op de 2 labtops omgebatterij-t en gescaned, niets gevonden, alles goed volgens AV. Daarna speedtest.net uitgevoerd en met zelfde provider volgende resultaten.. pc 1: 21,6 Mb/s - 3,7 Mb/s pc 2: 10,59 Mb/s - 3,66 Mb/s waar komt zo'n verschil vandaan? kan dat komen omdat er gewoon 2-3 jaar tussen zit qua leeftijd en ene pc xp heeft en andere windows 7? Ik hoor het graag groeten Willem
  • Welk notebook heeft die lagere snelheid? De XP of de Windows 7 machine? En welk AV zit er in?
  • de windows 7 is sneller en AV versie is 5.0.594 en bij XP is het AV gelijk groeten Willem
  • Wat gebeurt er als je beide notebooks op dezelfde plek vergelijkt. Een mooie site om de snelheid te checken: www.speed.io

Beantwoord deze vraag

Weet jij het antwoord op deze vraag? Registreer of meld je aan met je account

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.