ongevraagde werkbalk

  • Onderwerp starter Onderwerp starter ibiza
  • Startdatum Startdatum
Status
Niet open voor verdere reacties.
ibiza

ibiza

Terugkerende gebruiker
Lid geworden
6 apr 2002
Berichten
3.416
heb ineens een werkbalk bij van casino,gambling
je weet dat vervelend spyware gedoe
spybod kan ze blijkbaar niet verwijderen
weet iemand hoe het is irritant
 
wel dat was heel snel


Logfile of HijackThis v1.94.0
Scan saved at 13:33:17, on 10/06/2003
Platform: Windows ME (Win9x 4.90.3000)
MSIE: Internet Explorer v5.50 (5.50.4134.0100)

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar=http://a7316.sbvr.com/searchbar.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page=http://a7316.sbvr.com/searchbar.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page=http://E14883.sbvr.com/passthrough/index.html?http://www.google.be/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant=http://a7316.sbvr.com/searchbar.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar=http://a7316.sbvr.com/searchbar.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page=http://a7316.sbvr.com/searchbar.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant=http://a7316.sbvr.com/searchbar.html
F1 - win.ini: run=hpfsched
O2 - BHO: (no name) - {136A9D1D-1F4B-43D4-8359-6F2382449255} - C:\PROGRAM FILES\SUPERBAR\SUPERBAR.DLL
O2 - BHO: (no name) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\PROGRAM FILES\ADOBE\ACROBAT 5.0\READER\ACTIVEX\ACROIEHELPER.OCX
O2 - BHO: (no name) - {a551c4f1-0a06-41f4-b4a0-4aac78900983} - C:\WINDOWS\APPLICATION DATA\STSTOYFRUZ.DLL
O3 - Toolbar: @msdxmLC.dll,-1@1043,&Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\SYSTEM\MSDXM.OCX
O3 - Toolbar: Norton AntiVirus - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - C:\Program Files\Norton AntiVirus\NavShExt.dll
O3 - Toolbar: SuperBar - {5CCCF7FE-D53E-4059-AC03-0765E8FD487A} - C:\PROGRAM FILES\SUPERBAR\SUPERBAR.DLL
O3 - Toolbar: rchwooyqmsb - {24986119-03da-4f66-a9e0-6b49f70f6740} - C:\WINDOWS\APPLICATION DATA\STSTOYFRUZ.DLL
O4 - HKLM\..\Run: [ScanRegistry] C:\WINDOWS\scanregw.exe /autorun
O4 - HKLM\..\Run: [TaskMonitor] C:\WINDOWS\taskmon.exe
O4 - HKLM\..\Run: [PCHealth] C:\WINDOWS\PCHealth\Support\PCHSchd.exe -s
O4 - HKLM\..\Run: [SystemTray] SysTray.Exe
O4 - HKLM\..\Run: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\Run: [NAV Agent] C:\PROGRA~1\NORTON~1\NAVAPW32.EXE
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Alcatel\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [EM_EXEC] C:\PROGRA~1\LOGITECH\MOUSEW~1\SYSTEM\EM_EXEC.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE NvQTwk,NvCplDaemon initialize
O4 - HKLM\..\Run: [SBHC] C:\Program Files\SuperBar\sbhc.exe
O4 - HKLM\..\Run: [LoadQM] loadqm.exe
O4 - HKLM\..\Run: [afrust] C:\WINDOWS\APPLIC~1\qchifmak.exe -QuieT
O4 - HKLM\..\RunServices: [LoadPowerProfile] Rundll32.exe powrprof.dll,LoadCurrentPwrScheme
O4 - HKLM\..\RunServices: [SchedulingAgent] mstask.exe
O4 - HKLM\..\RunServices: [*StateMgr] C:\WINDOWS\System\Restore\StateMgr.exe
O4 - HKLM\..\RunServices: [ScriptBlocking] "C:\Program Files\Common Files\Symantec Shared\Script Blocking\SBServ.exe" -reg
O4 - HKLM\..\RunServices: [StillImageMonitor] C:\WINDOWS\SYSTEM\STIMON.EXE
O4 - HKCU\..\Run: [Taskbar Display Controls] RunDLL deskcp16.dll,QUICKRES_RUNDLLENTRY
O9 - Extra button: Related (HKLM)
O9 - Extra 'Tools' menuitem: Show &Related Links (HKLM)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} (Update Class) - http://v4.windowsupdate.microsoft.com/CAB/x86/ansi/iuctl.CAB?37753.5667592593
O16 - DPF: {8522F9B3-38C5-4AA4-AE40-7401F1BBC851} - http://216.65.38.226/Download_Plugin.exe
O17 - HKLM\System\CCS\Services\VxD\MSTCP: Domain = R6853.sbvr.com
 
OK! :)

Vink de volgende zaken aan in Hijack This , sluit vervolgens Internet Explorer, en druk op "fix checked":


R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar=http://a7316.sbvr.com/searchbar.html
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page=http://a7316.sbvr.com/searchbar.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page=http://E14883.sbvr.com/passthrough/index.html?http://www.google.be/
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant=http://a7316.sbvr.com/searchbar.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar=http://a7316.sbvr.com/searchbar.html
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page=http://a7316.sbvr.com/searchbar.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant=http://a7316.sbvr.com/searchbar.html

O2 - BHO: (no name) - {136A9D1D-1F4B-43D4-8359-6F2382449255} - C:\PROGRAM FILES\SUPERBAR\SUPERBAR.DLL
O2 - BHO: (no name) - {a551c4f1-0a06-41f4-b4a0-4aac78900983} - C:\WINDOWS\APPLICATION DATA\STSTOYFRUZ.DLL

O3 - Toolbar: SuperBar - {5CCCF7FE-D53E-4059-AC03-0765E8FD487A} - C:\PROGRAM FILES\SUPERBAR\SUPERBAR.DLL
O3 - Toolbar: rchwooyqmsb - {24986119-03da-4f66-a9e0-6b49f70f6740} - C:\WINDOWS\APPLICATION DATA\STSTOYFRUZ.DLL

O4 - HKLM\..\Run: [SBHC] C:\Program Files\SuperBar\sbhc.exe
O4 - HKLM\..\Run: [LoadQM] loadqm.exe
O4 - HKLM\..\Run: [afrust] C:\WINDOWS\APPLIC~1\qchifmak.exe -QuieT

O16 - DPF: {8522F9B3-38C5-4AA4-AE40-7401F1BBC851} - http://216.65.38.226/Download_Plugin.exe
O17 - HKLM\System\CCS\Services\VxD\MSTCP: Domain = R6853.sbvr.com

Vervolgens even opnieuw opstarten, ga naar C:\Windows\Application Data, en wis het bestand qchifmak.exe.

That's it! :)

Succes,
 
wel kleinkramer je bent ook ne computercrack heb ik de indruk bovenste balk is weg
maar bovenstart heb ik er nu nog een zie bijlage
 

Bijlagen

  • untitled.jpg
    untitled.jpg
    9,7 KB · Weergaven: 19
probleem opgelost bij pagina was er stuk van een site bijgekomen veranderd probleem opgelost


bedankt he
 
Status
Niet open voor verdere reacties.
                    Steun ons                    

Nieuwste berichten

Terug
Bovenaan Onderaan