Vraag & Antwoord

Beveiliging & privacy

mystard tablad verwijderen poging twee

Anoniem
None
16 antwoorden
 • hallo,
  iemand was mij aan het helpen mijn computer op te schonen, die hulp is gestrand, ik krijg een mystart tablad, en misschien wil iemand mij verder helpen het weg te halen,

  al gebeurt zijn:
  mbam adwarecleaner hijjackthis
  zie http://forum.computertotaal.nl/phpBB2/viewtopic.php?t=217806&highlight=

  ik weet niet of diegene daar al alles uitgehaald heeft wat er uit te halen viel,

  omdat ik niet wist dat mystart iets met veiligheid, virussen oid te maken had, had ik het ook in het verkeerde forum gedeelte geplaatst, dus zou fijn zijn als iemand mij verder wil helpen

  ik heb nu net DDs gedaan, logfile hieronder:


  .
  DDS (Ver_2011-08-26.01) - NTFSx86
  Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 10.5.1
  Run by Gebruiker at 11:24:26 on 2012-08-04
  Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.31.1043.18.1021.355 [GMT 2:00]
  .
  AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
  SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
  SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  .
  ============== Running Processes ===============
  .
  C:\Windows\system32\wininit.exe
  C:\Windows\system32\lsm.exe
  C:\Windows\system32\svchost.exe -k DcomLaunch
  C:\Windows\system32\svchost.exe -k rpcss
  C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
  C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
  C:\Windows\system32\svchost.exe -k netsvcs
  C:\Windows\system32\svchost.exe -k GPSvcGroup
  C:\Windows\system32\SLsvc.exe
  C:\Windows\system32\svchost.exe -k LocalService
  C:\Windows\system32\svchost.exe -k NetworkService
  C:\Program Files\AVAST Software\Avast\AvastSvc.exe
  C:\Windows\system32\Dwm.exe
  C:\Windows\Explorer.EXE
  C:\Windows\System32\spoolsv.exe
  C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
  C:\Windows\system32\taskeng.exe
  C:\Windows\system32\taskeng.exe
  C:\Program Files\AVAST Software\Avast\AvastUI.exe
  C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
  C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
  C:\Program Files\Giraffic\Veoh_GirafficWatchdog.exe
  C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
  C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
  C:\Windows\System32\svchost.exe -k WerSvcGroup
  C:\Windows\system32\SearchIndexer.exe
  C:\Program Files\Windows Media Player\wmpnscfg.exe
  C:\Users\Gebruiker\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
  C:\Program Files\Giraffic\Veoh_Giraffic.exe
  C:\Program Files\Windows Media Player\wmpnetwk.exe
  C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
  C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
  C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
  C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
  C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
  C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
  C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
  C:\Windows\system32\rundll32.exe
  C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
  C:\Users\Gebruiker\AppData\Local\Google\Chrome\Application\chrome.exe
  C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
  C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
  C:\Windows\system32\conime.exe
  C:\Windows\servicing\TrustedInstaller.exe
  C:\Windows\system32\wbem\wmiprvse.exe
  .
  ============== Pseudo HJT Report ===============
  .
  uStart Page = hxxp://www.ecosia.org/
  BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
  BHO: RealPlayer Download and Record Plugin for Internet Explorer: {3049c3e9-b461-4bc5-8870-4c09146192ca} - c:\programdata\real\realplayer\browserrecordplugin\ie\rpbrowserrecordplugin.dll
  BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
  BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\oracle\javafx 2.1 runtime\bin\ssv.dll
  BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
  BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
  BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\oracle\javafx 2.1 runtime\bin\jp2ssv.dll
  TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
  TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
  uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
  uRun: [Spotify Web Helper] "c:\users\gebruiker\appdata\roaming\spotify\data\SpotifyWebHelper.exe"
  mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
  mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
  mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
  mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
  mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
  IE: E&xporteren naar Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
  IE: Google Sidewiki… - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
  IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
  IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
  IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
  Trusted Zone: hotmail.com\www
  Trusted Zone: live.com\dub114.mail
  Trusted Zone: live.com\login
  Trusted Zone: live.com\www
  Trusted Zone: youtube.com\www
  DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
  DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
  TCP: DhcpNameServer = 192.168.178.1
  TCP: Interfaces\{9A30735D-95BF-4355-BB1B-04E74BC3FDD9} : DhcpNameServer = 192.168.178.1
  Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
  Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
  Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
  SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
  .
  ============= SERVICES / DRIVERS ===============
  .
  R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-6-25 721000]
  R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2011-6-25 353688]
  R2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\common files\adobe\arm\1.0\armsvc.exe [2011-6-6 64952]
  R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2011-6-25 21256]
  R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-6-25 57656]
  R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2011-6-25 44808]
  R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2011-6-24 21504]
  R2 Giraffic;Veoh Giraffic Video Accelerator;c:\program files\giraffic\veoh_girafficwatchdog.exe –service –> c:\program files\giraffic\Veoh_GirafficWatchdog.exe –service [?]
  R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2011-6-25 655944]
  R2 Skype C2C Service;Skype C2C Service;c:\programdata\skype\toolbars\skype c2c service\c2c_service.exe [2012-7-5 3048136]
  R3 b57nd60x;%SvcDispName%;c:\windows\system32\drivers\b57nd60x.sys [2011-6-24 179712]
  R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-6-25 22344]
  S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
  S2 gupdate;Google Updateservice (gupdate);c:\program files\google\update\GoogleUpdate.exe [2011-6-25 136176]
  S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-7-13 160944]
  S3 gupdatem;Google Update-service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2011-6-25 136176]
  S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
  .
  =============== Created Last 30 ================
  .
  2012-07-30 20:59:07 388608 —-a-w- c:\users\gebruiker\HijackThis.exe
  2012-07-26 09:15:20 ——– d—–r- c:\program files\Skype
  2012-07-26 09:13:45 946352 —-a-w- c:\users\gebruiker\SkypeSetup.exe
  2012-07-23 21:00:18 ——– d—–w- c:\program files\VideoLAN
  2012-07-23 20:43:39 ——– d—–w- c:\program files\Perion
  2012-07-23 20:43:34 ——– d—–w- c:\program files\Incredibar.com
  2012-07-23 20:14:02 ——– d-sh–w- C:\$RECYCLE.BIN
  2012-07-23 20:13:56 ——– d—–w- c:\users\gebruiker\appdata\local\temp
  2012-07-23 20:00:20 98816 —-a-w- c:\windows\sed.exe
  2012-07-23 20:00:20 518144 —-a-w- c:\windows\SWREG.exe
  2012-07-23 20:00:20 256000 —-a-w- c:\windows\PEV.exe
  2012-07-23 20:00:20 208896 —-a-w- c:\windows\MBR.exe
  2012-07-23 20:00:11 ——– d—–w- C:\ComboFix
  2012-07-18 13:20:02 ——– d—–w- c:\program files\Oracle
  2012-07-18 13:17:02 687544 —-a-w- c:\windows\system32\deployJava1.dll
  2012-07-18 13:17:01 772544 —-a-w- c:\windows\system32\npDeployJava1.dll
  2012-07-18 00:59:09 159744 —-a-w- c:\program files\internet explorer\plugins\npqtplugin7.dll
  2012-07-18 00:59:09 159744 —-a-w- c:\program files\internet explorer\plugins\npqtplugin6.dll
  2012-07-18 00:59:09 159744 —-a-w- c:\program files\internet explorer\plugins\npqtplugin5.dll
  2012-07-18 00:59:09 159744 —-a-w- c:\program files\internet explorer\plugins\npqtplugin4.dll
  2012-07-18 00:59:09 159744 —-a-w- c:\program files\internet explorer\plugins\npqtplugin3.dll
  2012-07-18 00:59:09 159744 —-a-w- c:\program files\internet explorer\plugins\npqtplugin2.dll
  2012-07-18 00:59:09 159744 —-a-w- c:\program files\internet explorer\plugins\npqtplugin.dll
  2012-07-13 21:05:14 ——– d—–w- c:\users\gebruiker\appdata\local\Spotify
  2012-07-13 21:04:08 ——– d—–w- c:\users\gebruiker\appdata\roaming\Spotify
  2012-07-13 20:53:57 ——– d—–w- c:\program files\Nieuwe map
  2012-07-11 20:40:04 2047488 —-a-w- c:\windows\system32\win32k.sys
  2012-07-11 20:31:01 708608 —-a-w- c:\program files\common files\system\ado\msado15.dll
  2012-07-11 20:30:56 440704 —-a-w- c:\windows\system32\drivers\ksecdd.sys
  2012-07-11 20:30:55 278528 —-a-w- c:\windows\system32\schannel.dll
  2012-07-11 20:30:55 204288 —-a-w- c:\windows\system32\ncrypt.dll
  2012-07-11 20:30:36 1401856 —-a-w- c:\windows\system32\msxml6.dll
  2012-07-11 20:30:36 1248768 —-a-w- c:\windows\system32\msxml3.dll
  .
  ==================== Find3M ====================
  .
  2012-07-03 16:21:53 721000 —-a-w- c:\windows\system32\drivers\aswSnx.sys
  2012-07-03 16:21:53 57656 —-a-w- c:\windows\system32\drivers\aswMonFlt.sys
  2012-07-03 16:21:32 41224 —-a-w- c:\windows\avastSS.scr
  2012-07-03 11:46:44 22344 —-a-w- c:\windows\system32\drivers\mbam.sys
  2012-06-05 20:23:10 499712 —-a-w- c:\windows\system32\msvcp71.dll
  2012-06-05 20:23:10 348160 —-a-w- c:\windows\system32\msvcr71.dll
  2012-06-02 22:12:32 2422272 —-a-w- c:\windows\system32\wucltux.dll
  2012-06-02 22:12:13 88576 —-a-w- c:\windows\system32\wudriver.dll
  2012-06-02 13:19:42 171904 —-a-w- c:\windows\system32\wuwebv.dll
  2012-06-02 13:12:20 33792 —-a-w- c:\windows\system32\wuapp.exe
  2012-06-02 08:33:25 1800192 —-a-w- c:\windows\system32\jscript9.dll
  2012-06-02 08:25:08 1129472 —-a-w- c:\windows\system32\wininet.dll
  2012-06-02 08:25:03 1427968 —-a-w- c:\windows\system32\inetcpl.cpl
  2012-06-02 08:20:33 142848 —-a-w- c:\windows\system32\ieUnatt.exe
  2012-06-02 08:16:52 2382848 —-a-w- c:\windows\system32\mshtml.tlb
  .
  ============= FINISH: 11:25:11,60 ===============


  TWEEDE LOGFILE:
  ..
  UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
  IF REQUESTED, ZIP IT UP & ATTACH IT
  .
  DDS (Ver_2011-08-26.01)
  .
  Microsoft® Windows Vista™ Home Premium
  Boot Device: \Device\HarddiskVolume1
  Install Date: 24-6-2011 10:15:21
  System Uptime: 4-8-2012 11:14:39 (0 hours ago)
  .
  Motherboard: Dell Inc. | |
  Processor: Intel(R) Core(TM)2 CPU T7400 @ 2.16GHz | Microprocessor | 2167/166mhz
  .
  ==== Disk Partitions =========================
  .
  C: is FIXED (NTFS) - 93 GiB total, 46,852 GiB free.
  D: is CDROM ()
  .
  ==== Disabled Device Manager Items =============
  .
  ==== System Restore Points ===================
  .
  .
  ==== Installed Programs ======================
  .
  Update for Microsoft Office 2007 (KB2508958)
  Aangifte inkomstenbelasting 2011
  Adobe Flash Player 11 ActiveX
  Adobe Reader X (10.1.0) - Nederlands
  Adobe Shockwave Player 11.6
  Apple Application Support
  Apple Mobile Device Support
  Apple Software Update
  avast! Free Antivirus
  CCleaner
  CDBurnerXP
  Dropbox
  Google Chrome
  Google Update Helper
  Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
  Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
  Internet Explorer (Enable DEP)
  iTunes
  Java Auto Updater
  Java(TM) 7 Update 5
  JavaFX 2.1.1
  Malwarebytes Anti-Malware versie 1.62.0.1300
  Microsoft .NET Framework 3.5 Language Pack SP1 - nld
  Microsoft .NET Framework 3.5 SP1
  Microsoft .NET Framework 4 Client Profile
  Microsoft .NET Framework 4 Client Profile NLD Language Pack
  Microsoft Office 2007 Service Pack 3 (SP3)
  Microsoft Office Access MUI (Dutch) 2007
  Microsoft Office Enterprise 2007
  Microsoft Office Excel MUI (Dutch) 2007
  Microsoft Office File Validation Add-In
  Microsoft Office Groove MUI (Dutch) 2007
  Microsoft Office InfoPath MUI (Dutch) 2007
  Microsoft Office OneNote MUI (Dutch) 2007
  Microsoft Office Outlook MUI (Dutch) 2007
  Microsoft Office PowerPoint MUI (Dutch) 2007
  Microsoft Office Proof (Dutch) 2007
  Microsoft Office Proof (English) 2007
  Microsoft Office Proof (French) 2007
  Microsoft Office Proof (German) 2007
  Microsoft Office Proofing (Dutch) 2007
  Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
  Microsoft Office Publisher MUI (Dutch) 2007
  Microsoft Office Shared MUI (Dutch) 2007
  Microsoft Office Word MUI (Dutch) 2007
  Microsoft Silverlight
  Microsoft Visual C++ 2005 Redistributable
  Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
  Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
  Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
  Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
  NVIDIA Drivers
  QuickTime
  RealNetworks - Microsoft Visual C++ 2008 Runtime
  RealPlayer
  Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
  Security Update for Microsoft .NET Framework 3.5 SP1 (KB2657424)
  Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
  Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
  Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
  Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
  Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
  Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
  Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
  Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
  Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
  Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
  Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
  Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
  Security Update for Microsoft Office 2007 suites (KB2596666) 32-Bit Edition
  Security Update for Microsoft Office 2007 suites (KB2596672) 32-Bit Edition
  Security Update for Microsoft Office 2007 suites (KB2596744) 32-Bit Edition
  Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition
  Security Update for Microsoft Office 2007 suites (KB2596792) 32-Bit Edition
  Security Update for Microsoft Office 2007 suites (KB2596871) 32-Bit Edition
  Security Update for Microsoft Office 2007 suites (KB2596880) 32-Bit Edition
  Security Update for Microsoft Office 2007 suites (KB2597162) 32-Bit Edition
  Security Update for Microsoft Office 2007 suites (KB2597969) 32-Bit Edition
  Security Update for Microsoft Office 2007 suites (KB2598041) 32-Bit Edition
  Security Update for Microsoft Office Excel 2007 (KB2597161) 32-Bit Edition
  Security Update for Microsoft Office InfoPath 2007 (KB2596786) 32-Bit Edition
  Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition
  Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition
  Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edition
  Security Update for Microsoft Office Word 2007 (KB2596917) 32-Bit Edition
  Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2478663)
  Security Update for Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD (KB2518870)
  Skype Click to Call
  Skype™ 5.10
  Spotify
  Taalpakket voor Microsoft .NET Framework 3.5 SP1 - NL
  Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD
  Update for 2007 Microsoft Office System (KB967642)
  Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
  Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
  Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
  Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
  Update for Microsoft Office 2007 suites (KB2598306) 32-Bit Edition
  Update voor Microsoft Office Excel 2007 Help (KB963678)
  Update voor Microsoft Office Powerpoint 2007 Help (KB963669)
  Update voor Microsoft Office Word 2007 Help (KB963665)
  Veoh Giraffic Video Accelerator
  Veoh Web Player
  Windows Media Player Firefox Plugin
  .
  ==== End Of File ===========================
 • Wat we onlangs gedaan hebben weet ik wel.
  Dat Fabian ertussendoor kwam heeft je mogelijk in verwarring gebracht?

  Download AdwCleaner by Xplode naar het bureaublad.

  [list:5eb24823bc][*:5eb24823bc]Sluit alle openstaande vensters
  [*:5eb24823bc]Rechtsklik op AdwCleaner en selecteer als Administrator uitvoeren…
  [*:5eb24823bc]Klik vervolgens op Delete
  [*:5eb24823bc]Klik bij AdwCleaner – Information op OK
  [*:5eb24823bc]Klik bij AdwCleaner – Restart Required op OK[/list:u:5eb24823bc]

  Dat tijdens de aktie de snelkoppelingen verdwijnen, is normaal.
  Nadat de PC opnieuw is opgestart, opent een logfile.
  Post aansluitend de inhoud van dit log in je volgende bericht.
 • fijn, bij deze het adwcleaner log

  # AdwCleaner v1.800 - Logfile created 08/05/2012 at 00:31:38
  # Updated 01/08/2012 by Xplode
  # Operating system : Windows Vista (TM) Home Premium Service Pack 2 (32 bits)
  # User : Gebruiker - PC_VAN_GEBRUIKE
  # Running from : C:\Users\Gebruiker\Desktop\adwcleaner.exe
  # Option [Delete]


  ***** [Services] *****


  ***** [Files / Folders] *****


  ***** [Registry] *****


  ***** [Registre - GUID] *****


  ***** [Internet Browsers] *****

  -\\ Internet Explorer v9.0.8112.16421

  [OK] Registry is clean.

  -\\ Google Chrome v20.0.1132.57

  File : C:\Users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Preferences

  [OK] File is clean.

  *************************

  AdwCleaner[R1].txt - [6549 octets] - [04/08/2012 11:11:28]
  AdwCleaner[S1].txt - [6765 octets] - [04/08/2012 11:13:02]
  AdwCleaner[R2].txt - [944 octets] - [05/08/2012 00:29:40]
  AdwCleaner[S2].txt - [876 octets] - [05/08/2012 00:31:38]

  ########## EOF - C:\AdwCleaner[S2].txt - [1003 octets] ##########
 • Indien de oude ComboFix,exe nog op het bureaublad staat, verwijder deze dan naar de prullenbak.

  [b:60bde1144d]Welk programma[/b:60bde1144d]:
 • de eerste keer dat ik combo fix draaide zag ik dat incredibar verwijdert werd, maar nog steeds krijg ik bij een nieuw tablad mystart


  ComboFix 12-08-05.02 - Gebruiker 06-08-2012 16:02:55.4.2 - x86
  Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.31.1043.18.1021.363 [GMT 2:00]
  Gestart vanuit: c:\users\Gebruiker\Desktop\ComboFix.exe
  AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
  SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
  SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
  .
  .
  (((((((((((((((((((( Bestanden Gemaakt van 2012-07-06 to 2012-08-06 ))))))))))))))))))))))))))))))
  .
  .
  2012-08-06 14:09 . 2012-08-06 14:10 ——– d—–w- c:\users\Gebruiker\AppData\Local\temp
  2012-08-06 14:09 . 2012-08-06 14:09 ——– d—–w- c:\users\Default\AppData\Local\temp
  2012-07-26 09:16 . 2012-07-27 21:30 ——– d—–w- c:\users\Gebruiker\AppData\Roaming\Skype
  2012-07-26 09:15 . 2012-07-26 09:15 ——– d—–w- c:\program files\Common Files\Skype
  2012-07-26 09:15 . 2012-07-26 09:17 ——– d—–r- c:\program files\Skype
  2012-07-26 09:15 . 2012-07-26 09:17 ——– d—–w- c:\programdata\Skype
  2012-07-23 21:00 . 2012-07-23 21:03 ——– d—–w- c:\program files\VideoLAN
  2012-07-23 20:43 . 2012-07-23 20:43 ——– d—–w- c:\program files\Perion
  2012-07-23 20:43 . 2012-07-23 20:43 454 —-a-w- C:\user.js
  2012-07-18 13:21 . 2012-07-18 13:21 ——– d—–w- c:\program files\Common Files\Java
  2012-07-18 13:20 . 2012-07-18 13:20 ——– d—–w- c:\program files\Oracle
  2012-07-18 13:17 . 2012-07-05 20:06 687544 —-a-w- c:\windows\system32\deployJava1.dll
  2012-07-18 13:17 . 2012-07-05 20:06 772544 —-a-w- c:\windows\system32\npDeployJava1.dll
  2012-07-18 13:14 . 2012-07-18 13:15 ——– d—–w- c:\program files\java
  2012-07-18 00:59 . 2012-07-18 00:59 159744 —-a-w- c:\program files\Internet Explorer\Plugins\npqtplugin7.dll
  2012-07-18 00:59 . 2012-07-18 00:59 159744 —-a-w- c:\program files\Internet Explorer\Plugins\npqtplugin6.dll
  2012-07-18 00:59 . 2012-07-18 00:59 159744 —-a-w- c:\program files\Internet Explorer\Plugins\npqtplugin5.dll
  2012-07-18 00:59 . 2012-07-18 00:59 159744 —-a-w- c:\program files\Internet Explorer\Plugins\npqtplugin4.dll
  2012-07-18 00:59 . 2012-07-18 00:59 159744 —-a-w- c:\program files\Internet Explorer\Plugins\npqtplugin3.dll
  2012-07-18 00:59 . 2012-07-18 00:59 159744 —-a-w- c:\program files\Internet Explorer\Plugins\npqtplugin2.dll
  2012-07-18 00:59 . 2012-07-18 00:59 159744 —-a-w- c:\program files\Internet Explorer\Plugins\npqtplugin.dll
  2012-07-13 21:05 . 2012-08-03 18:19 ——– d—–w- c:\users\Gebruiker\AppData\Local\Spotify
  2012-07-13 21:04 . 2012-08-03 18:24 ——– d—–w- c:\users\Gebruiker\AppData\Roaming\Spotify
  2012-07-13 20:53 . 2012-07-18 13:11 ——– d—–w- c:\program files\Nieuwe map
  2012-07-11 20:40 . 2012-06-13 13:40 2047488 —-a-w- c:\windows\system32\win32k.sys
  2012-07-11 20:31 . 2012-06-05 16:47 708608 —-a-w- c:\program files\Common Files\System\ado\msado15.dll
  2012-07-11 20:30 . 2012-06-04 15:26 440704 —-a-w- c:\windows\system32\drivers\ksecdd.sys
  2012-07-11 20:30 . 2012-06-02 00:04 278528 —-a-w- c:\windows\system32\schannel.dll
  2012-07-11 20:30 . 2012-06-02 00:03 204288 —-a-w- c:\windows\system32\ncrypt.dll
  2012-07-11 20:30 . 2012-06-05 16:47 1401856 —-a-w- c:\windows\system32\msxml6.dll
  2012-07-11 20:30 . 2012-06-05 16:47 1248768 —-a-w- c:\windows\system32\msxml3.dll
  2012-07-10 21:23 . 2012-07-18 00:59 ——– d—–w- c:\program files\quicktime
  .
  .
  .
  ((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
  .
  2012-07-03 16:21 . 2011-06-25 21:15 54232 —-a-w- c:\windows\system32\drivers\aswTdi.sys
  2012-07-03 16:21 . 2011-06-25 21:16 353688 —-a-w- c:\windows\system32\drivers\aswSP.sys
  2012-07-03 16:21 . 2011-06-25 21:16 21256 —-a-w- c:\windows\system32\drivers\aswFsBlk.sys
  2012-07-03 16:21 . 2011-06-25 21:15 35928 —-a-w- c:\windows\system32\drivers\aswRdr.sys
  2012-07-03 16:21 . 2011-06-25 21:15 721000 —-a-w- c:\windows\system32\drivers\aswSnx.sys
  2012-07-03 16:21 . 2011-06-25 21:15 57656 —-a-w- c:\windows\system32\drivers\aswMonFlt.sys
  2012-07-03 16:21 . 2011-06-25 21:14 41224 —-a-w- c:\windows\avastSS.scr
  2012-07-03 16:21 . 2011-06-25 21:14 227648 —-a-w- c:\windows\system32\aswBoot.exe
  2012-07-03 11:46 . 2011-06-25 21:02 22344 —-a-w- c:\windows\system32\drivers\mbam.sys
  2012-06-05 20:23 . 2011-12-04 13:57 499712 —-a-w- c:\windows\system32\msvcp71.dll
  2012-06-05 20:23 . 2011-12-04 13:57 348160 —-a-w- c:\windows\system32\msvcr71.dll
  2012-06-02 22:19 . 2012-06-25 09:15 53784 —-a-w- c:\windows\system32\wuauclt.exe
  2012-06-02 22:19 . 2012-06-25 09:15 45080 —-a-w- c:\windows\system32\wups2.dll
  2012-06-02 22:19 . 2012-06-25 09:13 35864 —-a-w- c:\windows\system32\wups.dll
  2012-06-02 22:19 . 2012-06-25 09:13 577048 —-a-w- c:\windows\system32\wuapi.dll
  2012-06-02 22:19 . 2012-06-25 09:15 1933848 —-a-w- c:\windows\system32\wuaueng.dll
  2012-06-02 22:12 . 2012-06-25 09:15 2422272 —-a-w- c:\windows\system32\wucltux.dll
  2012-06-02 22:12 . 2012-06-25 09:13 88576 —-a-w- c:\windows\system32\wudriver.dll
  2012-06-02 13:19 . 2012-06-25 09:12 171904 —-a-w- c:\windows\system32\wuwebv.dll
  2012-06-02 13:12 . 2012-06-25 09:12 33792 —-a-w- c:\windows\system32\wuapp.exe
  .
  .
  ((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
  .
  .
  *Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
  REGEDIT4
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
  @="{472083B0-C522-11CF-8763-00608CC02F24}"
  [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
  2012-07-03 16:21 121528 —-a-w- c:\program files\AVAST Software\Avast\ashShell.dll
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
  @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
  [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
  2012-02-14 22:58 94208 —-a-w- c:\users\Gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
  @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
  [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
  2012-02-14 22:58 94208 —-a-w- c:\users\Gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
  @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
  [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
  2012-02-14 22:58 94208 —-a-w- c:\users\Gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
  .
  [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  "WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240]
  "Spotify Web Helper"="c:\users\Gebruiker\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2012-07-13 1193176]
  .
  [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
  "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-07-03 4273976]
  "Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-07-03 462920]
  "QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2012-04-18 421888]
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
  "EnableUIADesktopToggle"= 0 (0x0)
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
  2011-06-06 10:55 937920 —-a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
  2012-02-20 19:28 59240 —-a-w- c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
  2009-02-26 16:36 30040 —-a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
  2012-03-27 03:09 421736 —-a-w- c:\program files\itunes\iTunesHelper.exe
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
  2007-10-04 19:24 8497696 —-a-w- c:\windows\System32\nvcpl.dll
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NVHotkey]
  2007-10-04 19:24 86016 —-a-w- c:\windows\System32\nvhotkey.dll
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
  2007-10-04 19:24 81920 —-a-w- c:\windows\System32\nvmctray.dll
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvSvc]
  2007-10-04 19:24 86016 —-a-w- c:\windows\System32\nvsvc.dll
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
  2009-04-11 06:28 1233920 —-a-w- c:\program files\Windows Sidebar\sidebar.exe
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
  2012-07-13 11:33 17418928 —-a-r- c:\program files\Skype\Phone\Skype.exe
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify]
  2012-07-13 21:05 7601880 —-a-w- c:\users\Gebruiker\AppData\Roaming\Spotify\spotify.exe
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Spotify Web Helper]
  2012-07-13 21:04 1193176 —-a-w- c:\users\Gebruiker\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
  2012-01-17 09:07 252296 —-a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
  2012-06-05 20:23 296056 —-a-w- c:\program files\Real\RealPlayer\Update\realsched.exe
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
  2008-01-19 07:33 202240 —-a-w- c:\program files\Windows Media Player\wmpnscfg.exe
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
  "AntiVirusOverride"=dword:00000001
  .
  S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
  .
  .
  [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
  LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache
  .
  Inhoud van de 'Gedeelde Taken' map
  .
  2012-08-06 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
  - c:\program files\Google\Update\GoogleUpdate.exe [2011-06-25 16:29]
  .
  2012-08-06 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
  - c:\program files\Google\Update\GoogleUpdate.exe [2011-06-25 16:29]
  .
  2012-08-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3632470845-1243836632-4002592152-1000Core.job
  - c:\users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-18 07:09]
  .
  2012-08-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3632470845-1243836632-4002592152-1000UA.job
  - c:\users\Gebruiker\AppData\Local\Google\Update\GoogleUpdate.exe [2011-09-18 07:09]
  .
  .
  ——- Bijkomende Scan ——-
  .
  uStart Page = hxxp://www.ecosia.org/
  IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
  IE: Google Sidewiki… - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll/cmsidewiki.html
  Trusted Zone: hotmail.com\www
  Trusted Zone: live.com\dub114.mail
  Trusted Zone: live.com\login
  Trusted Zone: live.com\www
  Trusted Zone: youtube.com\www
  TCP: DhcpNameServer = 192.168.178.1
  .
  .
  **************************************************************************
  .
  catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
  Rootkit scan 2012-08-06 16:10
  Windows 6.0.6002 Service Pack 2 NTFS
  .
  scannen van verborgen processen …
  .
  scannen van verborgen autostart items …
  .
  scannen van verborgen bestanden …
  .
  Scan succesvol afgerond
  verborgen bestanden: 0
  .
  **************************************************************************
  .
  ——————— VERGRENDELDE REGISTER SLEUTELS ———————
  .
  [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet010\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
  @Denied: (A) (Users)
  @Denied: (A) (Everyone)
  @Allowed: (B 1 2 3 4 5) (S-1-5-20)
  "BlindDial"=dword:00000000
  .
  ——————— DLLs Geladen Onder Lopende Processen ———————
  .
  - - - - - - - > 'Explorer.exe'(3596)
  c:\users\Gebruiker\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
  .
  Voltooingstijd: 2012-08-06 16:12:31
  ComboFix-quarantined-files.txt 2012-08-06 14:12
  ComboFix2.txt 2012-08-06 13:57
  ComboFix3.txt 2012-08-05 21:26
  ComboFix4.txt 2012-07-23 20:13
  .
  Pre-Run: 50.054.807.552 bytes beschikbaar
  Post-Run: 50.008.367.104 bytes beschikbaar
  .
  - - End Of File - - EEE32160B9654D9F7E2AF4A4FE65467B
 • In welke browser of welke browsers gebeurd het?
 • google chrome, in explorer niet, maar hotmail werkt niet in explorer
 • Welke plug=ins heb je in Chrome zitten?
 • weet niet waar ik dat kan vinden, kan ik zelf misschien ook uitzoeken
 • Klik in de rechter bovenkant in Chrome op het "raderwieltje".
 • omdat ik het even erg druk heb geef ik even andere dingen prioriteit, mijn laptop werkt nog, dus ik stel dit even uit, maar tot zover bedankt voor alle hulp, ik zal binnen een paar weken graag hiermee verder gaan, maar dan weet je het even dat je niks hoort
 • [quote:37ed85cb30="Abraham54"]Klik in de rechter bovenkant in Chrome op het "raderwieltje".[/quote:37ed85cb30]
  @ iemand85: als je binnenkort weer tijd hebt, dan hoef je niet te zoeken naar een raderwieltje, want zo'n tandwiel zit niet in Chrome. (Ik neem aan dat Abraham54 Internet Explorer gebruikt en daar zit dat tandwiel wel…)

  In Chrome klik je (rechtsboven) op de afbeelding van een steeksleutel. Daarna klik je op Extra en dan op Extensies, want zo heten plug-ins in Chrome.
  Noem alle extensies op die je ziet; dan kan Abraham54 je verder van advies dienen.
 • En hoe gaat het nu, ben je nu dat vervelende kreng kwijt?
 • @ porrelaar: ik heb mij inderdaad vergist.
  Komt ook daardoor omdat ik Chrome zelf niet gebruik.
 • bedankt, ik ga het doen
 • Dit had ik dus een beetje uitgesteld, maar ik bedacht dat het opgelost is, ik weet zelf niet hoe, maar jullie in elk geval bedankt voor de hulp, zij het een beetje laat,
  vr. groet,
  LE

Beantwoord deze vraag

Dit is een gearchiveerde pagina. Antwoorden is niet meer mogelijk.