Vraag & Antwoord

Beveiliging & privacy

vervelende reclame in websites

4 antwoorden
  • Ik krijg elke keer vervelende reclamers in mijn browsers. Graag controle op logje: Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 19:41:06, on 13-2-2013 Platform: Windows Vista SP2 (WinNT 6.00.1906) MSIE: Internet Explorer v9.00 (9.00.8112.16457) Boot mode: Normal Running processes: C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\taskeng.exe C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Windows\RtHDVCpl.exe C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe C:\Program Files\HP\QuickPlay\QPService.exe C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe C:\Program Files\HP\HP Software Update\hpwuSchd2.exe C:\Program Files\Samsung\Kies\KiesTrayAgent.exe C:\Program Files\Microsoft Security Client\msseces.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Program Files\Windows Media Player\wmpnscfg.exe C:\Program Files\Samsung\Kies\KiesAirMessage.exe C:\Program Files\Samsung\Kies\Kies.exe C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\PROGRA~1\MICROS~3\Office12\OUTLOOK.EXE C:\Program Files\Secunia\PSI\psi_tray.exe C:\Users\Lieke\AppData\Roaming\Dropbox\bin\Dropbox.exe C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_5_502_146.exe C:\Windows\system32\Macromed\Flash\FlashPlayerPlugin_11_5_502_146.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Windows\system32\SearchProtocolHost.exe C:\Program Files\Google\Chrome\Application\chrome.exe C:\Program Files\Google\Chrome\Application\chrome.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=NL_NL&c=73&bd=Pavilion&pf=laptop R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=NL_NL&c=73&bd=Pavilion&pf=laptop R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=NL_NL&c=73&bd=Pavilion&pf=laptop R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O1 - Hosts: ::1 localhost O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\Microsoft\BingBar\7.1.361.0\BingExt.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files\Microsoft\BingBar\7.1.361.0\BingExt.dll" (file missing) O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O4 - HKLM\..\Run: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide O4 - HKLM\..\Run: [SMSERIAL] C:\Program Files\Motorola\SMSERIAL\sm56hlpr.exe O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe O4 - HKLM\..\Run: [QPService] "C:\Program Files\HP\QuickPlay\QPService.exe" O4 - HKLM\..\Run: [HP Health Check Scheduler] C:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe O4 - HKLM\..\Run: [hpWirelessAssistant] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe O4 - HKLM\..\Run: [WAWifiMessage] %ProgramFiles%\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [QlbCtrl.exe] C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [hpqSRMon] C:\Program Files\HP\Digital Imaging\bin\hpqSRMon.exe O4 - HKLM\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe O4 - HKLM\..\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\RunOnce: [Launcher] %WINDIR%\SMINST\launcher.exe O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe O4 - HKCU\..\Run: [KiesAirMessage] C:\Program Files\Samsung\Kies\KiesAirMessage.exe -startup O4 - HKCU\..\Run: [KiesPreload] C:\Program Files\Samsung\Kies\Kies.exe /preload O4 - HKCU\..\Run: [] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe O4 - Startup: Dropbox.lnk = Lieke\AppData\Roaming\Dropbox\bin\Dropbox.exe O4 - Startup: OpenOffice.org 3.1 .lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Secunia PSI Tray.lnk = C:\Program Files\Secunia\PSI\psi_tray.exe O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200 O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office12\EXCEL.EXE/3000 O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL O9 - Extra button: HP Slim selecteren - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O20 - AppInit_DLLs: c:\progra~1\google\google~3\goec62~1.dll,c:\progra~1\google\google~3\goec62~1.dll O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe O23 - Service: CyberLink Background Capture Service (CBCS) (CLCapSvc) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLCapSvc.exe O23 - Service: CyberLink Task Scheduler (CTS) (CLSched) - Unknown owner - C:\Program Files\HP\QuickPlay\Kernel\TV\CLSched.exe O23 - Service: Com4Qlb - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4Qlb.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: HP Health Check Service - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: LiveUpdate - Unknown owner - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE (file missing) O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe O23 - Service: Planner voor Automatische LiveUpdate - Unknown owner - C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe (file missing) O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe O23 - Service: Secunia PSI Agent - Secunia - C:\Program Files\Secunia\PSI\PSIA.exe O23 - Service: Secunia Update Agent - Secunia - C:\Program Files\Secunia\PSI\sua.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: Symantec Core LC - Unknown owner - C:\Program Files\Common Files\Symantec Shared\CCPD-LC\symlcsvc.exe -- End of file - 13019 bytes
  • Hallo Gerben3 - we gaan kijken. [color=#FF0000:5f61cffd3d][b:5f61cffd3d]Stap •1•[/b:5f61cffd3d][/color:5f61cffd3d] [b:5f61cffd3d]Welk programma[/b:5f61cffd3d]: [color=#008000:5f61cffd3d][b:5f61cffd3d]AdwCleaner[/b:5f61cffd3d][/color:5f61cffd3d] [b:5f61cffd3d]Waarvoor/waarom[/b:5f61cffd3d]: Scanner om Windows op te schonen en te ontdoen van malafide toolbars. [b:5f61cffd3d]Moeilijkheidsgraad[/b:5f61cffd3d]: Geen. [b:5f61cffd3d]Downloadlokatie[/b:5f61cffd3d]: Dit programma absoluut naar het bureaublad downloaden dan wel daar naar toe verplaatsen! [b:5f61cffd3d]Download[/b:5f61cffd3d]: [url=http://general-changelog-team.fr/en/downloads/finish/20-outils-de-xplode/2-adwcleaner][color=#FF0000:5f61cffd3d][b:5f61cffd3d]AdwCleaner by Xplode[/b:5f61cffd3d][/color:5f61cffd3d][/url]. [b:5f61cffd3d]Opmerkingen[/b:5f61cffd3d]: [list:5f61cffd3d][*:5f61cffd3d][color=#FF0000:5f61cffd3d][b:5f61cffd3d] Alle openstaande programma's en webpagina's dienen afgesloten te zijn[/b:5f61cffd3d][/color:5f61cffd3d]. [*:5f61cffd3d]Dat na opstarten van [color=#008000:5f61cffd3d][b:5f61cffd3d]AdwCleaner[/b:5f61cffd3d][/color:5f61cffd3d] de snelkoppelingen verdwijnen van bureaublad, is normaal.[/list:u:5f61cffd3d] [b:5f61cffd3d][color=#008000:5f61cffd3d]AdwCleaner[/color:5f61cffd3d] opstarten[/b:5f61cffd3d]: [list:5f61cffd3d][*:5f61cffd3d][b:5f61cffd3d][color=#0000FF:5f61cffd3d]Windows 2000[/color:5f61cffd3d][/b:5f61cffd3d] en [color=#0000FF:5f61cffd3d][b:5f61cffd3d]Windows XP[/b:5f61cffd3d][/color:5f61cffd3d]: dubbelklik op adwcleaner.exe. [*:5f61cffd3d][color=#0000FF:5f61cffd3d][b:5f61cffd3d]Windows Vista[/b:5f61cffd3d][/color:5f61cffd3d], [color=#0000FF:5f61cffd3d][b:5f61cffd3d]Windows 7[/b:5f61cffd3d][/color:5f61cffd3d] en [color=#0000FF:5f61cffd3d][b:5f61cffd3d]Windows 8[/b:5f61cffd3d][/color:5f61cffd3d]: via rechtsklik op adwcleaner.exe en kies voor "Als Administrator uitvoeren".[/list:u:5f61cffd3d] [b:5f61cffd3d][color=#008000:5f61cffd3d]AdwCleaner[/color:5f61cffd3d] is opgestart[/b:5f61cffd3d]: [list:5f61cffd3d][*:5f61cffd3d]Klik op de knop [color=#0000FF:5f61cffd3d][b:5f61cffd3d]Verwijderen[/b:5f61cffd3d][/color:5f61cffd3d] [*:5f61cffd3d]Klik bij [color=#0000FF:5f61cffd3d][b:5f61cffd3d]AdwCleaner – Afsluiting van de programma's[/b:5f61cffd3d][/color:5f61cffd3d] op [b:5f61cffd3d]OK[/b:5f61cffd3d] [*:5f61cffd3d]Klik bij [color=#0000FF:5f61cffd3d][b:5f61cffd3d]AdwCleaner – Herstarten noodzakelijk[/b:5f61cffd3d][/color:5f61cffd3d] op [b:5f61cffd3d]OK[/b:5f61cffd3d][/list:u:5f61cffd3d] [b:5f61cffd3d][color=#008000:5f61cffd3d]AdwCleaner[/color:5f61cffd3d] logbestand[/b:5f61cffd3d]: [list:5f61cffd3d][*:5f61cffd3d]Nadat de PC opnieuw is opgestart, opent een logfile. [*:5f61cffd3d]Post vervolgens de inhoud van dit log in je volgende bericht.[/list:u:5f61cffd3d] [color=#FF0000:5f61cffd3d][b:5f61cffd3d]Stap •2•[/b:5f61cffd3d][/color:5f61cffd3d] [b:5f61cffd3d]Welk programma[/b:5f61cffd3d]: [color=#008000:5f61cffd3d][b:5f61cffd3d]Junkware Removal Tool by Thisisu[/b:5f61cffd3d][/color:5f61cffd3d] [b:5f61cffd3d]Waarvoor/waarom[/b:5f61cffd3d]: Scanner om Windows o.a. te ontdoen van malafide toolbars. [b:5f61cffd3d]Moeilijkheidsgraad[/b:5f61cffd3d]: Geen. [b:5f61cffd3d]Downloadlokatie[/b:5f61cffd3d]: Dit programma absoluut naar het bureaublad downloaden dan wel daar naar toe verplaatsen! [b:5f61cffd3d]Download[/b:5f61cffd3d]: [url=http://thisisudax.org/downloads/JRT.exe][color=#FF0000:5f61cffd3d][b:5f61cffd3d]JRT.exe[/b:5f61cffd3d][/color:5f61cffd3d] [/url]. [b:5f61cffd3d]Opmerkingen[/b:5f61cffd3d]: [list:5f61cffd3d][*:5f61cffd3d][color=#FF0000:5f61cffd3d][b:5f61cffd3d] Alle openstaande programma's en webpagina's dienen afgesloten te zijn[/b:5f61cffd3d][/color:5f61cffd3d]. [*:5f61cffd3d] [b:5f61cffd3d][color=#008000:5f61cffd3d]Het is raadzaam de actieve beveiligingssoftware te deaktiveren, zodat mogelijke conflicten met JRT.exe uitgsloten worden.[/color:5f61cffd3d][/b:5f61cffd3d]: [*:5f61cffd3d][url=http://www.hijackthis.nl/forum/viewtopic.php?f=86&t=32608][b:5f61cffd3d][color=#0000FF:5f61cffd3d]Hier[/color:5f61cffd3d][/b:5f61cffd3d][/url] en [url=http://www.hijackthis.nl/forum/viewtopic.php?f=86&t=32607][b:5f61cffd3d][color=#0000FF:5f61cffd3d]hier[/color:5f61cffd3d][/b:5f61cffd3d][/url] vindt je gegevens hoe antivirusprogramma's en spywarescanners te deaktiveren. [*:5f61cffd3d]Dat tijdens de scan van [color=#008000:5f61cffd3d][b:5f61cffd3d]JRT.exe[/b:5f61cffd3d][/color:5f61cffd3d] tijdelijk de snelkoppelingen verdwijnen van het bureaublad, is normaal.[/list:u:5f61cffd3d] [b:5f61cffd3d][color=#008000:5f61cffd3d]Junkware Removal Tool by Thisisu[/color:5f61cffd3d] opstarten[/b:5f61cffd3d]: [list:5f61cffd3d][*:5f61cffd3d][b:5f61cffd3d][color=#0000FF:5f61cffd3d]Windows 2000[/color:5f61cffd3d][/b:5f61cffd3d] en [color=#0000FF:5f61cffd3d][b:5f61cffd3d]Windows XP[/b:5f61cffd3d][/color:5f61cffd3d]: dubbelklik op [color=#008000:5f61cffd3d][b:5f61cffd3d]JRT.exe[/b:5f61cffd3d][/color:5f61cffd3d]. [*:5f61cffd3d][color=#0000FF:5f61cffd3d][b:5f61cffd3d]Windows Vista[/b:5f61cffd3d][/color:5f61cffd3d], [color=#0000FF:5f61cffd3d][b:5f61cffd3d]Windows 7[/b:5f61cffd3d][/color:5f61cffd3d] en [color=#0000FF:5f61cffd3d][b:5f61cffd3d]Windows 8[/b:5f61cffd3d][/color:5f61cffd3d]: via rechtsklik op [color=#008000:5f61cffd3d][b:5f61cffd3d]JRT.exe[/b:5f61cffd3d][/color:5f61cffd3d] en kies voor "Als Administrator uitvoeren". [*:5f61cffd3d][color=#008000:5f61cffd3d][b:5f61cffd3d]JRT.exe[/b:5f61cffd3d][/color:5f61cffd3d] zal daarna Windows gaan scannen. [*:5f61cffd3d]Deze scan kan afhankelijk van de systeemspecificaties soms vrij lang duren, wees dus geduldig. [*:5f61cffd3d]Als de scan voltooid is zal een logje ([color=#0000FF:5f61cffd3d][b:5f61cffd3d]JRT.txt[/b:5f61cffd3d][/color:5f61cffd3d]) op het bureaublad opgeslagen worden en automatisch openen. [*:5f61cffd3d]Post de inhoud van dit log in je volgende bericht.[/list:u:5f61cffd3d] [color=#FF0000:5f61cffd3d][b:5f61cffd3d]Stap •3•[/b:5f61cffd3d][/color:5f61cffd3d] [b:5f61cffd3d]Welk programma[/b:5f61cffd3d]: [color=#008000:5f61cffd3d][b:5f61cffd3d]ComboFix[/b:5f61cffd3d][/color:5f61cffd3d] [b:5f61cffd3d]Waarvoor/waarom[/b:5f61cffd3d]: Zeer specialistische scanner om Windows diepgaand te onderzoeken en op te schonen. [b:5f61cffd3d]Moeilijkheidsgraad[/b:5f61cffd3d]: Min of meer lastige voorbereidingsfase, dus lees alles eerst goed. [b:5f61cffd3d]Downloadlokatie[/b:5f61cffd3d]: Dit programma absoluut naar het bureaublad downloaden! [b:5f61cffd3d]Download ComboFix via één van deze locaties[/b:5f61cffd3d]: [list:5f61cffd3d][*:5f61cffd3d][url=http://download.bleepingcomputer.com/sUBs/ComboFix.exe][b:5f61cffd3d]Bleepingcomputer[/b:5f61cffd3d][/url] [*:5f61cffd3d][url=http://www.forospyware.com/sUBs/ComboFix.exe][b:5f61cffd3d]ForoSpyware[/b:5f61cffd3d][/url] [*:5f61cffd3d][url=http://subs.geekstogo.com/ComboFix.exe][b:5f61cffd3d]Geekstogo[/b:5f61cffd3d][/url][/list:u:5f61cffd3d] [url=http://www.bleepingcomputer.com/combofix/nl/hoe-dient-combofix-gebruikt-te-worden][b:5f61cffd3d][color=#0000FF:5f61cffd3d]Hier[/color:5f61cffd3d][/b:5f61cffd3d][/url] zie je hoe je ComboFix moet gebruiken. Antivirusprogramma en actieve malwarescanners dienen al voor je ComboFix start gedeaktiveert zijn! [url=http://www.hijackthis.nl/forum/viewtopic.php?f=86&t=32608][b:5f61cffd3d][color=#0000FF:5f61cffd3d]Hier[/color:5f61cffd3d][/b:5f61cffd3d][/url] en [url=http://www.hijackthis.nl/forum/viewtopic.php?f=86&t=32607][b:5f61cffd3d][color=#0000FF:5f61cffd3d]hier[/color:5f61cffd3d][/b:5f61cffd3d][/url] vindt je gegevens hoe antivirusprogramma's en spywarescanners te deaktiveren. [b:5f61cffd3d]Opmerkingen[/b:5f61cffd3d]: [list:5f61cffd3d][*:5f61cffd3d] Bij gebruik van Windows XP zal er mogelijk gevraagd worden, om de "Recovery Console" te installeren! Sta dit dan toe (hiervoor is een actieve internet verbinding vereist). [*:5f61cffd3d]Alle openstaande programma's en webpagina's dienen afgesloten te zijn.[/list:u:5f61cffd3d] [b:5f61cffd3d]ComboFix opstarten[/b:5f61cffd3d]: [list:5f61cffd3d][*:5f61cffd3d][b:5f61cffd3d][color=#0000FF:5f61cffd3d]Windows 2000[/color:5f61cffd3d][/b:5f61cffd3d] en [color=#0000FF:5f61cffd3d][b:5f61cffd3d]Windows XP[/b:5f61cffd3d][/color:5f61cffd3d]: dubbelklik op ComboFix.exe. [*:5f61cffd3d][color=#0000FF:5f61cffd3d][b:5f61cffd3d]Windows Vista[/b:5f61cffd3d][/color:5f61cffd3d] en [color=#0000FF:5f61cffd3d][b:5f61cffd3d]Windows 7[/b:5f61cffd3d][/color:5f61cffd3d]: via rechtsklik op ComboFix.exe en kies voor "Als Administrator uitvoeren".[/list:u:5f61cffd3d] [b:5f61cffd3d]ComboFix is opgestart[/b:5f61cffd3d]: [list:5f61cffd3d][*:5f61cffd3d]Niet in het zwarte venster klikken, hierdoor kan ComboFix of zelfs Windows geheel "bevriezen"! [*:5f61cffd3d]Combofix sluit tijdens de scan de internet verbinding – probeer deze tussentijds niet te herstellen! [*:5f61cffd3d]Het kan voorkomen dat de computer meerdere malen opnieuw opgestart moet worden, dit is normaal. [*:5f61cffd3d]Wanneer ComboFix gereed is, zal het het een logbestand voor je maken. [*:5f61cffd3d]Post de inhoud van dit logbestand in je volgende bericht. [*:5f61cffd3d]Indien het log niet opstart, is dit terug tevinden in C:\ComboFix.txt[/list:u:5f61cffd3d] [b:5f61cffd3d]Belangrijke opmerking[/b:5f61cffd3d]: [list:5f61cffd3d][*:5f61cffd3d][b:5f61cffd3d][color=#0000FF:5f61cffd3d]Indien na de scan bij het opstarten van programma's er een error wordt getoond met de melding:[/color:5f61cffd3d][/b:5f61cffd3d] [*:5f61cffd3d][b:5f61cffd3d][color=#FF0000:5f61cffd3d]Er is geprobeerd een ongeldige bewerking uit te voeren op een registersleutel die is gemarkeerd voor verwijdering.[/color:5f61cffd3d][/b:5f61cffd3d] [*:5f61cffd3d][b:5f61cffd3d][color=#008000:5f61cffd3d]Start dan de computer opnieuw op.[/color:5f61cffd3d][/b:5f61cffd3d][/list:u:5f61cffd3d]
  • Hierbij de log van programma ADWCleaner: # AdwCleaner v2.112 - Verslag gemaakt op 15/02/2013 om 16:46:15 # Geactualiseerd op 10/02/2013 door Xplode # Besturingssysteem : Windows Vista (TM) Home Premium Service Pack 2 (32 bits) # Gebruiker : Lieke - LAPTOP-LIEKE # Opstarten Modus : Normale modus # Gelanceerd vanaf : C:\Users\Lieke\Desktop\adwcleaner0.exe # Optie [Verwijderen] ***** [Diensten] ***** ***** [Files / Mappen] ***** File Verwijdert : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml Map Verwijdert : C:\ProgramData\Babylon Map Verwijdert : C:\ProgramData\InstallMate Map Verwijdert : C:\Users\Lieke\AppData\Roaming\Babylon Verwijdert bij het opstarten : C:\ProgramData\Premium ***** [Register] ***** Sleutel Verwijdert : HKCU\Software\AppDataLow\SProtector Sleutel Verwijdert : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9} Sleutel Verwijdert : HKLM\Software\Babylon Sleutel Verwijdert : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{761F6A83-F007-49E4-8EAC-CDB6808EF06F} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{826D7151-8D99-434B-8540-082B8C2AE556} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Interface\{66EEF543-A9AC-4A9D-AA3C-1ED148AC8EEE} Sleutel Verwijdert : HKLM\SOFTWARE\Classes\Prod.cap Sleutel Verwijdert : HKLM\SOFTWARE\Classes\S Sleutel Verwijdert : HKLM\SOFTWARE\Classes\TypeLib\{11549FE4-7C5A-4C17-9FC3-56FC5162A994} Sleutel Verwijdert : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\063A857434EDED11A893800002C0A966 Sleutel Verwijdert : HKLM\Software\SP Global Sleutel Verwijdert : HKLM\Software\SProtector ***** [Browsers] ***** -\\ Internet Explorer v9.0.8112.16457 [OK] Het register bevat geen enkele ongeoorloofde invoer. -\\ Mozilla Firefox v18.0.2 (nl) File : C:\Users\Lieke\AppData\Roaming\Mozilla\Firefox\Profiles\oyb2jun5.default\prefs.js C:\Users\Lieke\AppData\Roaming\Mozilla\Firefox\Profiles\oyb2jun5.default\user.js ... Verwijdert ! Verwijdert : user_pref("aol_toolbar.default.homepage.check", false); Verwijdert : user_pref("aol_toolbar.default.search.check", false); Verwijdert : user_pref("extensions.50b64a7706c23.scode", "(function(){try{if('aol.com,mail.google.com,premiumrepo[...] Verwijdert : user_pref("extensions.BabylonToolbar.admin", false); Verwijdert : user_pref("extensions.BabylonToolbar.aflt", "babsst"); Verwijdert : user_pref("extensions.BabylonToolbar.appId", "{BDB69379-802F-4eaf-B541-F8DE92DD98DB}"); Verwijdert : user_pref("extensions.BabylonToolbar.bbDpng", "28"); Verwijdert : user_pref("extensions.BabylonToolbar.cntry", "NL"); Verwijdert : user_pref("extensions.BabylonToolbar.dfltLng", "en"); Verwijdert : user_pref("extensions.BabylonToolbar.dpkLst", "1169821598,3855095921,302281469,2400444324,3654782829[...] Verwijdert : user_pref("extensions.BabylonToolbar.excTlbr", false); Verwijdert : user_pref("extensions.BabylonToolbar.hdrMd5", "577A0C2BABAF57E845D5217633C7CF89"); Verwijdert : user_pref("extensions.BabylonToolbar.hmpg", false); Verwijdert : user_pref("extensions.BabylonToolbar.id", "1d8ff685000000000000001cbf3fae74"); Verwijdert : user_pref("extensions.BabylonToolbar.instlDay", "15672"); Verwijdert : user_pref("extensions.BabylonToolbar.instlRef", "sst"); Verwijdert : user_pref("extensions.BabylonToolbar.lastVrsnTs", "1.8.3.818:31:55"); Verwijdert : user_pref("extensions.BabylonToolbar.newTab", true); Verwijdert : user_pref("extensions.BabylonToolbar.pnu_irhnew", "{\"newVrsn\":\"5\",\"lastVrsn\":\"5\",\"vrsnLoad\[...] Verwijdert : user_pref("extensions.BabylonToolbar.prdct", "BabylonToolbar"); Verwijdert : user_pref("extensions.BabylonToolbar.prtkDS", 0); Verwijdert : user_pref("extensions.BabylonToolbar.prtkHmpg", 0); Verwijdert : user_pref("extensions.BabylonToolbar.prtnrId", "babylon"); Verwijdert : user_pref("extensions.BabylonToolbar.sg", "czb"); Verwijdert : user_pref("extensions.BabylonToolbar.smplGrp", "czb"); Verwijdert : user_pref("extensions.BabylonToolbar.tlbrId", "irhnew"); Verwijdert : user_pref("extensions.BabylonToolbar.tlbrSrchUrl", "hxxp://search.babylon.com/?babsrc=TB_def&mntrId=[...] Verwijdert : user_pref("extensions.BabylonToolbar.vrsn", "1.8.3.8"); Verwijdert : user_pref("extensions.BabylonToolbar.vrsnTs", "1.8.3.818:31:55"); Verwijdert : user_pref("extensions.BabylonToolbar.vrsni", "1.8.3.8"); Verwijdert : user_pref("extensions.BabylonToolbar_i.newTab", true); Verwijdert : user_pref("extensions.BabylonToolbar_i.newTabUrl", "hxxp://search.babylon.com/?affID=117064&tt=4812_[...] Verwijdert : user_pref("extensions.BabylonToolbar_i.smplGrp", "none"); Verwijdert : user_pref("extensions.BabylonToolbar_i.vrsnTs", "1.8.3.818:31:55"); Verwijdert : user_pref("sweetim.toolbar.previous.browser.search.defaultenginename", ""); Verwijdert : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", ""); Verwijdert : user_pref("sweetim.toolbar.previous.browser.startup.homepage", ""); Verwijdert : user_pref("sweetim.toolbar.previous.keyword.URL", ""); Verwijdert : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", ""); Verwijdert : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", ""); Verwijdert : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", ""); Verwijdert : user_pref("sweetim.toolbar.searchguard.enable", ""); -\\ Google Chrome v24.0.1312.57 File : C:\Users\Lieke\AppData\Local\Google\Chrome\User Data\Default\Preferences [OK] De file bevat geen enkele ongeoorloofde invoer. ************************* AdwCleaner[S1].txt - [5723 octets] - [15/02/2013 16:46:15] ########## EOF - C:\AdwCleaner[S1].txt - [5783 octets] ##########
  • Dat JRT krijg ik niet geinstalleerd. althans ik weet niet waar het neergezet wordt. Kan het niet terugvinden. Bovendien probeert het mijn standaard zoek machine te wijzigen.

Beantwoord deze vraag

Weet jij het antwoord op deze vraag? Registreer of meld je aan met je account

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.