Marcellis
Gebruiker
- Lid geworden
- 27 nov 2007
- Berichten
- 8
Internet is sinds een week erg sloom ik heb volgens mij iets fouts gedownload.
Ook youtube laden gaat sloom en afsluiten van de site ook.
er stond een een mapje van Pando netwerk in mijn ProgramFiles
Eerst gaf die aan dat ik het niet kon deleten maar na dat ik het gedelte heb
kwam het weer trug. ook was mijn Startpagina veranderd.
Ik had een vermoeden dat ik een virus had toen heb ik (ik wist nog niets van het Pando netwerk mapje)
Ad-Aware en Malwarebytes geintalleerd.
Ik heb het volgende gedaan.
- Ik gebruik avast (niet mee gescant)
- Ad-Aware geinstalleerd en gescant (gehele Scan)
Niets gevonden
- Ook heb ik Malwarebytes' Anti-Malware (gehele Scan)
Niets gevonden
- Ccleaner gedaan (Alles - na Systeem herstel)
- Windows Defender (gehele scan - na Systeem herstel)
- Systeem herstel
- Hijackthis gedaan (na Systeem herstel)
Bij Ad-Aware gaf die wel iets aan maar dat deed avast ook het is niet gevaarlijk.
hier is de log (ik weet niet of ik heb goed heb gedaan)
Ik heb het Systeem herstel net gedaan 26-10-2008 Rond 17:00
Ik weet nog niet of het Pando Netwerk map al trug is maar ik ben bang van wel.
Kunnen jullie mij helpen of hebben jullie suggesties
Ook youtube laden gaat sloom en afsluiten van de site ook.
er stond een een mapje van Pando netwerk in mijn ProgramFiles
Eerst gaf die aan dat ik het niet kon deleten maar na dat ik het gedelte heb
kwam het weer trug. ook was mijn Startpagina veranderd.
Ik had een vermoeden dat ik een virus had toen heb ik (ik wist nog niets van het Pando netwerk mapje)
Ad-Aware en Malwarebytes geintalleerd.
Ik heb het volgende gedaan.
- Ik gebruik avast (niet mee gescant)
- Ad-Aware geinstalleerd en gescant (gehele Scan)
Niets gevonden
- Ook heb ik Malwarebytes' Anti-Malware (gehele Scan)
Niets gevonden
- Ccleaner gedaan (Alles - na Systeem herstel)
- Windows Defender (gehele scan - na Systeem herstel)
- Systeem herstel
- Hijackthis gedaan (na Systeem herstel)
Bij Ad-Aware gaf die wel iets aan maar dat deed avast ook het is niet gevaarlijk.
hier is de log (ik weet niet of ik heb goed heb gedaan)
Code:
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 16:45:22, on 26-10-2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal
[b]Running processes:[/b]
[color=teal]c:\windows\system32\[/color][color=blue]dwm.exe[/color]
[color=teal]c:\windows\[/color][color=blue]explorer.exe[/color]
[color=teal]c:\windows\system32\[/color][color=blue]taskeng.exe[/color]
[color=teal]c:\windows\system32\[/color][color=blue]rundll32.exe[/color]
[color=teal]c:\program files\windows defender\[/color][color=blue]msascui.exe[/color]
[color=teal]c:\windows\[/color][color=blue]cnyhkey.exe[/color]
[color=teal]c:\windows\[/color][color=blue]modledkey.exe[/color]
[color=teal]c:\program files\alwil software\avast4\[/color][color=blue]ashdisp.exe[/color]
[color=teal]c:\program files\java\jre1.6.0_07\bin\[/color][color=blue]jusched.exe[/color]
[color=teal]c:\program files\analog devices\core\[/color][color=blue]smax4pnp.exe[/color]
[color=teal]c:\windows\system32\[/color][color=blue]rundll32.exe[/color]
[color=teal]c:\windows\system32\[/color][color=blue]rundll32.exe[/color]
[color=teal]c:\program files\common files\lightscribe\[/color][color=blue]lightscribecontrolpanel.exe[/color]
[color=teal]c:\program files\rocketdock\[/color][color=blue]rocketdock.exe[/color]
[color=teal]c:\windows\ehome\[/color][color=blue]ehtray.exe[/color]
[color=teal]c:\windows\ehome\[/color][color=blue]ehmsas.exe[/color]
[color=teal]c:\program files\hewlett-packard\digital imaging\bin\[/color][color=blue]hpohmr08.exe[/color]
[color=teal]c:\program files\hewlett-packard\digital imaging\bin\[/color][color=blue]hpotdd01.exe[/color]
[color=teal]c:\windows\system32\[/color][color=blue]conime.exe[/color]
[color=teal]c:\program files\internet explorer\[/color][color=blue]iexplore.exe[/color]
[color=teal]c:\program files\common files\microsoft shared\windows live\[/color][color=blue]wlloginproxy.exe[/color]
[color=teal]c:\program files\ccleaner\[/color][color=blue]ccleaner.exe[/color]
[color=teal]c:\users\marcellis\appdata\local\microsoft\windows\temporary internet files\content.ie5\k3gqybf7\[/color][color=blue]hijackthis[b][1][/b].exe[/color]
[color=teal]c:\windows\system32\[/color][color=blue]searchfilterhost.exe[/color]
[color=silver]r1 -[/color] [color=brown]hkcu\software\microsoft\internet explorer\main[/color],search bar = [u][noparse]http://www.google.com/ie[/noparse][/u]
[color=silver]r1 -[/color] [color=brown]hkcu\software\microsoft\internet explorer\main[/color],search page = [u][noparse]http://www.google.com[/noparse][/u]
[color=silver]r1 -[/color] [color=brown]hklm\software\microsoft\internet explorer\main[/color],default_page_url = [u][noparse]http://go.microsoft.com/fwlink/?linkid=69157[/noparse][/u]
[color=silver]r1 -[/color] [color=brown]hklm\software\microsoft\internet explorer\main[/color],default_search_url = [u][noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse][/u]
[color=silver]r1 -[/color] [color=brown]hklm\software\microsoft\internet explorer\main[/color],search page = [u][noparse]http://go.microsoft.com/fwlink/?linkid=54896[/noparse][/u]
[color=silver]r0 -[/color] [color=brown]hklm\software\microsoft\internet explorer\main[/color],start page = [u][noparse]http://go.microsoft.com/fwlink/?linkid=69157[/noparse][/u]
[color=silver]r0 -[/color] [color=brown]hklm\software\microsoft\internet explorer\search[/color],searchassistant =
[color=silver]r0 -[/color] [color=brown]hklm\software\microsoft\internet explorer\search[/color],customizesearch =
[color=silver]r1 -[/color] [color=brown]hkcu\software\microsoft\windows\currentversion\internet settings[/color],proxyoverride = *.local
[color=silver]r0 -[/color] [color=brown]hkcu\software\microsoft\internet explorer\toolbar[/color],linksfoldername =
[color=silver]o1 -[/color] [color=brown]hosts[/color]: ::1 localhost
[color=silver]o2 -[/color] [color=brown]bho[/color]: adobe pdf reader link helper - [color=orange]{06849e9f-c8d7-4d59-b87d-784b7d6be0b3}[/color] - [color=teal]c:\program files\adobe\acrobat 7.0\activex\[/color][color=blue]acroiehelper.dll[/color]
[color=silver]o2 -[/color] [color=brown]bho[/color]: ssvhelper class - [color=orange]{761497bb-d6f0-462c-b6eb-d4daf1d92d43}[/color] - [color=teal]c:\program files\java\jre1.6.0_07\bin\[/color][color=blue]ssv.dll[/color]
[color=silver]o2 -[/color] [color=brown]bho[/color]: (no name) - [color=orange]{7e853d72-626a-48ec-a868-ba8d5e23e045}[/color] - (no file)
[color=silver]o2 -[/color] [color=brown]bho[/color]: windows live aanmelden - help - [color=orange]{9030d464-4c02-4abf-8ecc-5164760863c6}[/color] - [color=teal]c:\program files\common files\microsoft shared\windows live\[/color][color=blue]windowslivelogin.dll[/color]
[color=silver]o4 -[/color] [color=brown]hklm\..\run[/color]: [b][windows defender][/b] [color=teal]%programfiles%\windows defender\[/color][color=blue]msascui.exe[/color] -hide
[color=silver]o4 -[/color] [color=brown]hklm\..\run[/color]: [b][jmb36x ide setup][/b] [color=teal]c:\windows\jm\[/color][color=blue]jminside.exe[/color]
[color=silver]o4 -[/color] [color=brown]hklm\..\run[/color]: [b][ledpointer][/b] cnyhkey.exe
[color=silver]o4 -[/color] [color=brown]hklm\..\run[/color]: [b][moled][/b] modledkey.exe
[color=silver]o4 -[/color] [color=brown]hklm\..\run[/color]: [b][quickfinder scheduler][/b] [color=teal]c:\program files\wordperfect office x3\programs\[/color][color=blue]qfschd130.exe[/color]
[color=silver]o4 -[/color] [color=brown]hklm\..\run[/color]: [b][nerofiltercheck][/b] [color=teal]c:\program files\common files\ahead\lib\[/color][color=blue]nerocheck.exe[/color]
[color=silver]o4 -[/color] [color=brown]hklm\..\run[/color]: [b][auditvista][/b]
[color=silver]o4 -[/color] [color=brown]hklm\..\run[/color]: [b][avast!][/b] [color=teal]c:\progra~1\alwils~1\avast4\[/color][color=blue]ashdisp.exe[/color]
[color=silver]o4 -[/color] [color=brown]hklm\..\run[/color]: [b][sunjavaupdatesched][/b] [color=teal]c:\program files\java\jre1.6.0_07\bin\[/color][color=blue]jusched.exe[/color]
[color=silver]o4 -[/color] [color=brown]hklm\..\run[/color]: [b][soundmaxpnp][/b] [color=teal]c:\program files\analog devices\core\[/color][color=blue]smax4pnp.exe[/color]
[color=silver]o4 -[/color] [color=brown]hklm\..\run[/color]: [b][nvsvc][/b] rundll32.exe [color=teal]c:\windows\system32\[/color][color=blue]nvsvc.dll[/color],nvsvcstart
[color=silver]o4 -[/color] [color=brown]hklm\..\run[/color]: [b][nvcpldaemon][/b] rundll32.exe [color=teal]c:\windows\system32\[/color][color=blue]nvcpl.dll[/color],nvstartup
[color=silver]o4 -[/color] [color=brown]hklm\..\run[/color]: [b][nvmediacenter][/b] rundll32.exe [color=teal]c:\windows\system32\[/color][color=blue]nvmctray.dll[/color],nvtaskbarinit
[color=silver]o4 -[/color] [color=brown]hkcu\..\run[/color]: [b][lightscribe control panel][/b] [color=teal]c:\program files\common files\lightscribe\[/color][color=blue]lightscribecontrolpanel.exe[/color] -hidden
[color=silver]o4 -[/color] [color=brown]hkcu\..\run[/color]: [b][rocketdock][/b] [color=teal]c:\program files\rocketdock\[/color][color=blue]rocketdock.exe[/color]
[color=silver]o4 -[/color] [color=brown]hkcu\..\run[/color]: [b][msnmsgr][/b] [color=teal]c:\program files\windows live\messenger\[/color][color=blue]msnmsgr.exe[/color] /background
[color=silver]o4 -[/color] [color=brown]hkcu\..\run[/color]: [b][ehtray.exe][/b] [color=teal]c:\windows\ehome\[/color][color=blue]ehtray.exe[/color]
[color=silver]o4 -[/color] [color=brown]hkcu\..\run[/color]: [b][igndlm.exe][/b] [color=teal]c:\program files\download manager\[/color][color=blue]dlm.exe[/color] /windowsstart /startifwork
[color=silver]o4 -[/color] [color=brown]hkus\s-1-5-19\..\run[/color]: [b][sidebar][/b] [color=teal]%programfiles%\windows sidebar\[/color][color=blue]sidebar.exe[/color] /detectmem (user 'local service')
[color=silver]o4 -[/color] [color=brown]hkus\s-1-5-19\..\run[/color]: [b][windowswelcomecenter][/b] rundll32.exe oobefldr.dll,showwelcomecenter (user 'local service')
[color=silver]o4 -[/color] [color=brown]hkus\s-1-5-20\..\run[/color]: [b][sidebar][/b] [color=teal]%programfiles%\windows sidebar\[/color][color=blue]sidebar.exe[/color] /detectmem (user 'network service')
[color=silver]o4 -[/color] [color=brown]startup[/color]: xfire.lnk = [color=teal]c:\program files\xfire\[/color][color=blue]xfire.exe[/color]
[color=silver]o4 -[/color] [color=brown]global startup[/color]: adobe reader snelle start.lnk = [color=teal]c:\program files\adobe\acrobat 7.0\reader\[/color][color=blue]reader_sl.exe[/color]
[color=silver]o4 -[/color] [color=brown]global startup[/color]: hp psc 1000 series.lnk = ?
[color=silver]o4 -[/color] [color=brown]global startup[/color]: hpoddt01.exe.lnk = ?
[color=silver]o8 -[/color] [color=brown]extra context menu item[/color]: e&xporteren naar microsoft excel - res://[color=teal]c:\progra~1\micros~2\office11\[/color][color=blue]excel.exe[/color]/3000
[color=silver]o8 -[/color] [color=brown]extra context menu item[/color]: open with wordperfect - c:\program files\wordperfect office x3\programs\wplauncher.hta
[color=silver]o9 -[/color] [color=brown]extra button[/color]: (no name) - [color=orange]{08b0e5c0-4fcb-11cf-aaa5-00401c608501}[/color] - [color=teal]c:\progra~1\java\jre16~4.0_0\bin\[/color][color=blue]ssv.dll[/color]
[color=silver]o9 -[/color] [color=brown]extra 'tools' menuitem[/color]: sun java console - [color=orange]{08b0e5c0-4fcb-11cf-aaa5-00401c608501}[/color] - [color=teal]c:\progra~1\java\jre16~4.0_0\bin\[/color][color=blue]ssv.dll[/color]
[color=silver]o9 -[/color] [color=brown]extra button[/color]: add to videoget - [color=orange]{88cfa58b-a63f-4a94-9c54-0c7a58e3333e}[/color] - [color=teal]c:\progra~1\nuclea~1\videoget\plugins\[/color][color=blue]videog~1.dll[/color] [color=red](file missing)[/color]
[color=silver]o9 -[/color] [color=brown]extra 'tools' menuitem[/color]: add to &videoget - [color=orange]{88cfa58b-a63f-4a94-9c54-0c7a58e3333e}[/color] - [color=teal]c:\progra~1\nuclea~1\videoget\plugins\[/color][color=blue]videog~1.dll[/color] [color=red](file missing)[/color]
[color=silver]o9 -[/color] [color=brown]extra button[/color]: onderzoek - [color=orange]{92780b25-18cc-41c8-b9be-3c9c571a8263}[/color] - [color=teal]c:\progra~1\micros~2\office11\[/color][color=blue]refiebar.dll[/color]
[color=silver]o9 -[/color] [color=brown]extra button[/color]: (no name) - [color=orange]{cd67f990-d8e9-11d2-98fe-00c0f0318afe}[/color] - (no file)
[color=silver]o10 -[/color] [color=brown]broken internet access because of lsp provider '[color=teal]c[/color]:\program files\bonjour\[/color][color=blue]mdnsnsp.dll[/color]' missing
[color=silver]o13 -[/color] [color=brown]gopher prefix[/color]:
[color=silver]o15 -[/color] [color=brown]esc trusted zone[/color]: [u][noparse]http://*.update.microsoft.com[/noparse][/u]
[color=silver]o16 -[/color] [color=brown]dpf[/color]: [color=orange]{1e54d648-b804-468d-bc78-4affed8e262e}[/color] (system requirements lab) - [u][noparse]http://www.srtest.com/srl_bin/sysreqlab3.cab[/noparse][/u]
[color=silver]o16 -[/color] [color=brown]dpf[/color]: [color=orange]{39b0684f-d7bf-4743-b050-fdc3f48f7e3b}[/color] (cdownloadctrl object) - [u][noparse]http://www.fileplanet.com/fpdlmgr/cabs/fpdc_2.3.7.109.cab[/noparse][/u]
[color=silver]o16 -[/color] [color=brown]dpf[/color]: [color=orange]{e55fd215-a32e-43fe-a777-a7e8f165f557}[/color] (flatcast viewer 5.0) - [u][noparse]http://data.myflatcast.com/data/objects/npfv501.dll[/noparse][/u]
[color=silver]o23 -[/color] [color=brown]service[/color]: avast! iavs4 control service (aswupdsv) - alwil software - [color=teal]c:\program files\alwil software\avast4\[/color][color=blue]aswupdsv.exe[/color]
[color=silver]o23 -[/color] [color=brown]service[/color]: avast! antivirus - alwil software - [color=teal]c:\program files\alwil software\avast4\[/color][color=blue]ashserv.exe[/color]
[color=silver]o23 -[/color] [color=brown]service[/color]: avast! mail scanner - alwil software - [color=teal]c:\program files\alwil software\avast4\[/color][color=blue]ashmaisv.exe[/color]
[color=silver]o23 -[/color] [color=brown]service[/color]: avast! web scanner - alwil software - [color=teal]c:\program files\alwil software\avast4\[/color][color=blue]ashwebsv.exe[/color]
[color=silver]o23 -[/color] [color=brown]service[/color]: ##id_string1.6844f930_1628_4223_b5cc_5bb94b879762## (bonjour service) - unknown owner - [color=teal]c:\program files\bonjour\[/color][color=blue]mdnsresponder.exe[/color] [color=red](file missing)[/color]
[color=silver]o23 -[/color] [color=brown]service[/color]: flexnet licensing service - macrovision europe ltd. - [color=teal]c:\program files\common files\macrovision shared\flexnet publisher\[/color][color=blue]fnplicensingservice.exe[/color]
[color=silver]o23 -[/color] [color=brown]service[/color]: lightscribeservice direct disc labeling service (lightscribeservice) - hewlett-packard company - [color=teal]c:\program files\common files\lightscribe\[/color][color=blue]lssrvc.exe[/color]
[color=silver]o23 -[/color] [color=brown]service[/color]: nbservice - nero ag - [color=teal]c:\program files\nero\nero 7\nero backitup\[/color][color=blue]nbservice.exe[/color]
[color=silver]o23 -[/color] [color=brown]service[/color]: nmindexingservice - nero ag - [color=teal]c:\program files\common files\ahead\lib\[/color][color=blue]nmindexingservice.exe[/color]
[color=silver]o23 -[/color] [color=brown]service[/color]: pnkbstra - unknown owner - [color=teal]c:\windows\system32\[/color][color=blue]pnkbstra.exe[/color]
[color=silver]o23 -[/color] [color=brown]service[/color]: protexislicensing - unknown owner - [color=teal]c:\windows\system32\[/color][color=blue]psiservice.exe[/color]
--
end of file - 7724 bytesIk heb het Systeem herstel net gedaan 26-10-2008 Rond 17:00
Ik weet nog niet of het Pando Netwerk map al trug is maar ik ben bang van wel.
Kunnen jullie mij helpen of hebben jullie suggesties
Laatst bewerkt:
