zoekmachine google werkt niet, zowel op chrome, firefox als op internet explorer niet

[KEVIN1984]

Ik heb Windows XP en zo kan ik combofix / Uninstall niet vinden.

Ik krijg ook soms wachten op ad-emea.doubleclick.net

[KEVIN1984]

Ik heb WIndows XP en kan op deze manier combofix niet verwijderen en vind ook niet direct hoe anders.

IK krijg soms ook volgende melding bij chrome = ad-emea.doubleclick.net

[kape]

Om Combofix te verwijderen ga je via Start -> Uitvoeren en in dat vak tik je Combofix /Uninstall ... dan moet het wel werken.

[KEVIN1984]

Enorm bedankt voor het oplossen van mijn probleem

[KEVIN1984]

Google werkt terug niet meer.

Heb met Ccleaner de vorige stap herhaald en er worden geen problemen meer gevonden.

[kape]

Google werkt terug niet meer.

Heb met Ccleaner de vorige stap herhaald en er worden geen problemen meer gevonden.

Bedoel je dat Google op geen enkele browser nog werkt ???

[KEVIN1984]

Zowel op chrome als op internet explorer niet

[kape]

Download dan eens opnieuw Combofix en laat dat weer scannen.

[KEVIN1984]

ComboFix 12-08-05.02 - vermeirssen 06/08/2012 10:48:24.3.2 - x86

Microsoft Windows XP Professional 5.1.2600.3.1252.31.1043.18.1791.948 [GMT 2:00]

Gestart vanuit: c:\documents and settings\vermeirssen\Mijn documenten\Downloads\ComboFix.exe

.

.

(((((((((((((((((((( Bestanden Gemaakt van 2012-07-06 to 2012-08-06 ))))))))))))))))))))))))))))))

.

.

2012-08-06 06:34 . 2012-08-06 06:39 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Application Data\Adobe

2012-08-06 06:31 . 2012-08-06 06:31 -------- d-sh--w- c:\documents and settings\LocalService\IETldCache

2012-08-06 06:25 . 2006-03-02 07:00 5632 ----a-w- c:\windows\system32\wbem\snmp\smimsgif.dll

2012-08-06 06:25 . 2006-03-02 07:00 5632 ----a-w- c:\windows\system32\wbem\snmp\smierrsy.dll

2012-08-06 06:25 . 2006-03-02 07:00 5632 ----a-w- c:\windows\system32\dllcache\smimsgif.dll

2012-08-06 06:25 . 2006-03-02 07:00 5632 ----a-w- c:\windows\system32\dllcache\smierrsy.dll

2012-08-06 06:25 . 2006-03-02 07:00 15872 ----a-w- c:\windows\system32\wbem\snmp\smierrsm.dll

2012-08-06 06:25 . 2006-03-02 07:00 15872 ----a-w- c:\windows\system32\dllcache\smierrsm.dll

2012-08-06 06:25 . 2006-03-02 07:00 10240 ----a-w- c:\windows\system32\wbem\snmpstup.dll

2012-08-06 06:25 . 2006-03-02 07:00 10240 ----a-w- c:\windows\system32\dllcache\snmpstup.dll

2012-08-06 06:07 . 2012-08-06 08:51 -------- d--h--r- c:\documents and settings\vermeirssen\Onlangs geopend

2012-08-03 07:51 . 2012-08-03 07:51 276 ----a-w- C:\cc_20120803_095103.reg

2012-08-03 07:50 . 2012-08-03 07:50 4750 ----a-w- C:\cc_20120803_095038.reg

2012-08-03 07:49 . 2012-08-03 07:49 389754 ----a-w- C:\cc_20120803_094855.reg

2012-08-03 06:40 . 2012-08-03 06:40 -------- d-----w- c:\program files\CCleaner

2012-08-03 05:58 . 2012-08-06 05:51 118784 ----a-w- c:\windows\system32\chg.exe

2012-07-31 13:02 . 2012-07-31 13:02 -------- d-----w- c:\documents and settings\vermeirssen\Local Settings\Application Data\Sun

2012-07-31 07:40 . 2012-07-03 11:46 22344 ----a-w- c:\windows\system32\drivers\mbam.sys

2012-07-31 06:52 . 2012-07-31 06:52 388096 ----a-r- c:\documents and settings\vermeirssen\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

2012-07-31 06:52 . 2012-07-31 06:52 -------- d-----w- c:\program files\Hijack this

2012-07-31 06:21 . 2012-07-31 06:21 -------- d-----w- c:\program files\Oracle

2012-07-31 06:21 . 2012-07-31 06:21 -------- d-----w- c:\documents and settings\vermeirssen\Application Data\Oracle

2012-07-31 05:58 . 2006-03-02 07:00 9216 ----a-w- c:\windows\system32\dllcache\wamps51.dll

2012-07-27 10:23 . 2012-07-27 10:23 -------- d-----w- c:\windows\system32\wbem\Repository

2012-07-27 10:07 . 2012-07-27 10:07 -------- d--h--w- c:\windows\system32\GroupPolicy

2012-07-27 10:03 . 2012-07-27 10:03 -------- d-----w- c:\documents and settings\All Users\Application Data\Bitdefender

2012-07-27 09:31 . 2012-07-27 09:32 -------- d-----w- c:\documents and settings\vermeirssen\Application Data\QuickScan

2012-07-19 06:21 . 2012-07-19 06:21 -------- d-----w- c:\program files\Microsoft Safety Essentials

2012-07-18 06:39 . 2012-07-18 06:39 -------- d-----w- c:\documents and settings\vermeirssen\Local Settings\Application Data\Identities

2012-07-17 13:47 . 2012-07-17 14:22 -------- d-----w- c:\documents and settings\vermeirssen\Local Settings\Application Data\Deployment

2012-07-17 13:34 . 2012-07-17 13:34 -------- d-----w- c:\documents and settings\vermeirssen\Application Data\ElevatedDiagnostics

2012-07-17 13:31 . 2012-07-17 13:31 -------- d-----w- c:\program files\Microsoft ATS

2012-07-17 13:27 . 2012-07-17 13:35 -------- d-----w- c:\windows\system32\MpEngineStore

2012-07-17 12:18 . 2012-07-17 12:18 -------- d-sh--w- c:\documents and settings\vermeirssen\IECompatCache

2012-07-17 12:10 . 2012-07-17 12:10 -------- d-sh--w- c:\documents and settings\vermeirssen\PrivacIE

2012-07-17 12:09 . 2012-07-17 12:09 -------- d-sh--w- c:\documents and settings\vermeirssen\IETldCache

2012-07-17 11:26 . 2012-07-17 11:27 -------- dc-h--w- c:\windows\ie8

2012-07-17 11:25 . 2012-05-11 14:44 521728 ------w- c:\windows\system32\dllcache\jsdbgui.dll

2012-07-17 11:24 . 2011-08-16 10:45 6144 ------w- c:\windows\system32\dllcache\iecompat.dll

2012-07-17 11:24 . 2012-05-11 14:44 12800 ------w- c:\windows\system32\dllcache\xpshims.dll

2012-07-17 11:24 . 2012-05-11 14:44 247808 ------w- c:\windows\system32\dllcache\ieproxy.dll

2012-07-17 11:24 . 2012-05-11 14:44 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll

2012-07-17 09:53 . 2012-07-17 09:53 -------- d-----w- c:\documents and settings\vermeirssen\Local Settings\Application Data\Opera

2012-07-17 07:45 . 2012-07-17 07:45 -------- d-----w- c:\documents and settings\vermeirssen\Local Settings\Application Data\Mozilla

.

.

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2012-07-05 20:07 . 2008-07-08 13:24 143872 ----a-w- c:\windows\system32\javacpl.cpl

2012-07-05 20:06 . 2012-07-05 10:31 772544 ----a-w- c:\windows\system32\npdeployJava1.dll

2012-07-05 20:06 . 2010-11-25 15:17 687544 ----a-w- c:\windows\system32\deployJava1.dll

2012-07-05 10:53 . 2012-07-05 10:53 739824 ----a-w- C:\ChromeSetup.exe

2012-06-13 13:55 . 2006-03-02 02:00 1866240 ----a-w- c:\windows\system32\win32k.sys

2012-06-05 15:49 . 2006-12-04 13:17 1372672 ----a-w- c:\windows\system32\msxml6.dll

2012-06-05 15:49 . 2006-03-02 02:00 1172480 ----a-w- c:\windows\system32\msxml3.dll

2012-06-04 15:35 . 2006-03-02 02:00 210968 ----a-w- c:\windows\system32\wuweb.dll

2012-06-04 04:32 . 2006-03-02 02:00 152576 ----a-w- c:\windows\system32\schannel.dll

2012-06-02 13:19 . 2007-07-30 17:18 18456 ----a-w- c:\windows\system32\wuaueng.dll.mui

2012-06-02 13:19 . 2006-03-02 02:00 329240 ----a-w- c:\windows\system32\wucltui.dll

2012-06-02 13:19 . 2006-03-02 02:00 219160 ----a-w- c:\windows\system32\wuaucpl.cpl

2012-06-02 13:19 . 2007-07-30 17:19 45080 ----a-w- c:\windows\system32\wups2.dll

2012-06-02 13:19 . 2006-03-02 02:00 97304 ----a-w- c:\windows\system32\cdm.dll

2012-06-02 13:19 . 2006-03-02 02:00 53784 ----a-w- c:\windows\system32\wuauclt.exe

2012-06-02 13:19 . 2006-03-02 02:00 35864 ----a-w- c:\windows\system32\wups.dll

2012-06-02 13:19 . 2007-07-30 17:20 15896 ----a-w- c:\windows\system32\wuapi.dll.mui

2012-06-02 13:19 . 2007-07-30 17:20 15896 ----a-w- c:\windows\system32\wuaucpl.cpl.mui

2012-06-02 13:19 . 2006-03-02 02:00 577048 ----a-w- c:\windows\system32\wuapi.dll

2012-06-02 13:19 . 2007-07-30 17:19 24088 ----a-w- c:\windows\system32\wucltui.dll.mui

2012-06-02 13:19 . 2006-03-02 02:00 1933848 ----a-w- c:\windows\system32\wuaueng.dll

2012-05-31 13:22 . 2006-03-02 02:00 602624 ----a-w- c:\windows\system32\crypt32.dll

2012-05-16 15:09 . 2006-03-02 02:00 916992 ----a-w- c:\windows\system32\wininet.dll

2012-05-11 14:44 . 2006-03-02 02:00 43520 ------w- c:\windows\system32\licmgr10.dll

2012-05-11 14:44 . 2006-03-02 02:00 1469440 ------w- c:\windows\system32\inetcpl.cpl

2012-05-11 11:39 . 2006-03-02 02:00 385024 ------w- c:\windows\system32\html.iec

.

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2008-03-24 344064]

"SoundMAXPnP"="c:\program files\Analog Devices\Core\smax4pnp.exe" [2007-07-10 1036288]

"amd_dc_opt"="c:\program files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2007-07-23 77824]

"SetRefresh"="c:\program files\Compaq\SetRefresh\SetRefresh.exe" [2003-11-20 525824]

"Recguard"="c:\windows\Sminst\Recguard.exe" [2006-05-12 1138688]

"Reminder"="c:\windows\Creator\Remind_XP.exe" [2006-03-31 761856]

"Scheduler"="c:\windows\SMINST\Scheduler.exe" [2006-07-10 872448]

"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2011-05-10 49208]

"Synchronization Manager"="c:\windows\system32\mobsync.exe" [2008-04-14 144384]

"RoxioDragToDisc"="c:\program files\Roxio\Drag-to-Disc\DrgToDsc.exe" [2006-10-30 1116920]

"AppleSyncNotifier"="c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe" [2009-03-26 177472]

"ToolBoxFX"="c:\program files\HP\ToolBoxFX\bin\HPTLBXFX.exe" [2008-08-25 53248]

"HPUsageTracking"="c:\program files\HP\HP UT\bin\hppusg.exe" [2008-09-02 36864]

"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-03-27 37296]

"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-02 843712]

"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-01-18 254696]

"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-07-03 462920]

.

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]

"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]

"NoWelcomeScreen"= 1 (0x1)

.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

@="Driver"

.

[HKEY_LOCAL_MACHINE\software\microsoft\security center]

"AntiVirusOverride"=dword:00000001

.

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]

"%windir%\\system32\\sessmgr.exe"=

"c:\\WINDOWS\\SMINST\\Scheduler.exe"=

"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

"c:\\Documents and Settings\\vermeirssen\\Local Settings\\Application Data\\Google\\Chrome\\Application\\chrome.exe"=

.

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]

"47806:TCP"= 47806:TCP:Trend Micro Client/Server Security Agent Listener

.

R0 ahcix86;ahcix86;c:\windows\system32\drivers\ahcix86.sys [19/12/2007 16:43 171024]

R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [31/07/2012 9:40 655944]

R3 IFXTPM;IFXTPM;c:\windows\system32\drivers\ifxtpm.sys [23/01/2007 22:13 36608]

R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [31/07/2012 9:40 22344]

S3 ACSSCR;ACR38 Smart Card Reader;c:\windows\system32\drivers\a38usb.sys [17/05/2011 12:30 33536]

S3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [20/11/2009 12:17 136704]

S3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [20/11/2009 12:17 8320]

.

--- Andere Services/Drivers In Geheugen ---

.

*NewlyCreated* - CISVC

*NewlyCreated* - SNMP

*NewlyCreated* - SNMPTRAP

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12

.

Inhoud van de 'Gedeelde Taken' map

.

2011-08-27 c:\windows\Tasks\AppleSoftwareUpdate.job

- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]

.

2012-08-03 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3605200381-2388821997-499089046-1224Core.job

- c:\documents and settings\vermeirssen\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2012-07-17 14:22]

.

2012-08-06 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3605200381-2388821997-499089046-1224UA.job

- c:\documents and settings\vermeirssen\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2012-07-17 14:22]

.

.

------- Bijkomende Scan -------

.

TCP: DhcpNameServer = 10.7.2.1 195.238.2.21

.

.

------- Bestandsassociaties -------

.

.txt=

.

.

**************************************************************************

.

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, GMER - Rootkit Detector and Remover

Rootkit scan 2012-08-06 10:54

Windows 5.1.2600 Service Pack 3 NTFS

.

scannen van verborgen processen ...

.

scannen van verborgen autostart items ...

.

scannen van verborgen bestanden ...

.

Scan succesvol afgerond

verborgen bestanden: 0

.

**************************************************************************

.

--------------------- DLLs Geladen Onder Lopende Processen ---------------------

.

- - - - - - - > 'winlogon.exe'(688)

c:\windows\system32\Ati2evxx.dll

.

- - - - - - - > 'lsass.exe'(744)

c:\program files\Bonjour\mdnsNSP.dll

.

- - - - - - - > 'explorer.exe'(18132)

c:\windows\system32\webcheck.dll

c:\windows\system32\WPDShServiceObj.dll

c:\windows\system32\PortableDeviceTypes.dll

c:\windows\system32\PortableDeviceApi.dll

.

Voltooingstijd: 2012-08-06 10:55:37

ComboFix-quarantined-files.txt 2012-08-06 08:55

.

Pre-Run: 175.420.039.168 bytes beschikbaar

Post-Run: 175.412.600.832 bytes beschikbaar

.

- - End Of File - - 9C07CC398DEB282AF1F5BD5F3C4CC3C7

[kweezie wabbit]

Doe ook eens het volgende.

Ga naar start - alle programma's - bureauaccesoires.

Zoek het icoon van het opdrachtprompt en klik er op met de rechter muisknop en kies dan in het lijstje voor uitvoeren als administrator om het opdrachtprompt te openen.

In het opdrachtprompt typ je ipconfig /all > c:\ipconfig.txt en druk enter.

Let op de spatie voor de / en voor en na de >.

C is de schijfletter van de systeemschijf; deze kan je aanpasssen indien de systeemschijf niet de letter C heeft.

Open de verkenner en klik op de C schijf.

Open het bestand ipconfig.txt en plak de inhoud in je volgend bericht of voeg het bestand ipconfig.txt toe aan je volgend bericht.

Hoe je een bijlage toevoegt aan een bericht, kan je lezen in deze handleiding.