Edit door Baloeke. Met knip en plak werk is deze gekomen van http://www.minatica.be/threads/72377-Chrome-loopt-steeds-vaker-vast

Zoals de titel al zegt loopt mijn browser Chrome steeds vaker vast.
Ik krijg de pagina "Helaas" te zien, onder andere liep Schockwave flash daarnet.
Is een beetje sinds vrijdag begonnen.


Natuurlijk:

Voor het eerst dat ik het doe, hopelijk is het goed.



Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:01:04, on 21-11-2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.7930.16406)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\TechSmith\SnagIt 9\SnagIt32.exe
C:\Program Files\TechSmith\SnagIt 9\TSCHelp.exe
C:\Program Files\TechSmith\SnagIt 9\SnagPriv.exe
C:\Program Files\TechSmith\SnagIt 9\snagiteditor.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Users\Josh\Downloads\Downloader_for_Academic_Re source_Kit_.NET_CD2_Technology_Resources.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Users\Josh\AppData\Local\Google\Chrome\Applicat ion\chrome.exe
C:\Users\Josh\AppData\Local\Google\Chrome\Applicat ion\chrome.exe
C:\Users\Josh\AppData\Local\Google\Chrome\Applicat ion\chrome.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\mswinext.exe
C:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe
C:\Windows\system32\igfxsrvc.exe
C:\Users\Josh\AppData\Local\Google\Chrome\Applicat ion\chrome.exe
C:\Users\Josh\AppData\Local\Google\Chrome\Applicat ion\chrome.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\HiJackThis\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 9\SnagItBHO.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll
O3 - Toolbar: @C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 9\SnagItIEAddin.dll
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: SnagIt 9.lnk = C:\Program Files\TechSmith\SnagIt 9\SnagIt32.exe
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~3\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube Download - C:\Users\Josh\AppData\Roaming\DVDVideoSoftIEHelper s\youtubedownload.htm
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Josh\AppData\Roaming\DVDVideoSoftIEHelper s\youtubetomp3.htm
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: RelevantKnowledge - TMRG, Inc. - C:\Program Files\RelevantKnowledge\rlservice.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--
End of file - 7677 bytes

Download ComboFix van één van deze locaties:

Link 1 (http://download.bleepingcomputer.com/sUBs/ComboFix.exe)
Link 2 (http://www.infospyware.net/antimalware/combofix/)

* BELANGRIJK !!! Sla ComboFix.exe op je Bureaublad op.
>>Hier<< (http://www.bleepingcomputer.com/combofix/nl/hoe-dient-combofix-gebruikt-te-worden) kunt u lezen hoe u Combofix dient te gebruiken.

1. Schakel alle antivirus- en antispywareprogramma's uit, want anders kunnen ze misschien conflicteren met ComboFix.

* (hier (http://www.bleepingcomputer.com/forums/topic114351.html) of hier (http://www.techsupportforum.com/security-center/virus-trojan-spyware-help/490111-how-disable-your-security-applications.html) staat een handleiding over hoe je deze kan uitschakelen:)

2. Het kan voorkomen dat de computer meerdere malen opnieuw gestart moet worden, dit is normaal.
3. Dubbelklik op "Combofix.exe" om de tool te starten.
4. Klik niet in het scherm van Combofix als deze actief is, hierdoor kan de 'tool' vastlopen.

* Noot !!! Als er een error wordt getoond met de melding "Illegal operation attempted on a registery key that has been marked for deletion." herstart dan de computer.

5. Wanneer ComboFix klaar is, zal het het een logbestand voor je maken. Post de inhoud van dit logbestand (te vinden als C:\ComboFix.txt) in je volgende bericht.

Dit is het resultaat, heb precies gevolg wat je zei.
Ik kreeg ondertussen wel één melding, namelijk:



Warning!

Current registry file not found:
\Device\HarddiskVolume1\Boot\BCD

Restore this file?

Yes | No
Ik heb hier op geGoogled en zag dat wanneer ik Ja zou klikken, ik hoogstwaarschijnlijk een BSOD zou krijgen met daarna een hoop ellende, dus heb voor Nee gekozen.

Het volgende resultaat:


ComboFix 10-11-20.05 - Josh 22-11-2010 20:32:08.1.2 - x86
Microsoft Windows 7 Professional 6.1.7600.0.1252.31.1043.18.3069.2083 [GMT 1:00]
Gestart vanuit: c:\users\Josh\Desktop\ComboFix.exe
.

(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\RelevantKnowledge
c:\program files\RelevantKnowledge\MSVCP71.DLL
c:\program files\RelevantKnowledge\MSVCR71.DLL
c:\program files\RelevantKnowledge\rlservice.exe

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_RelevantKnowledge


(((((((((((((((((((( Bestanden Gemaakt van 2010-10-22 to 2010-11-22 ))))))))))))))))))))))))))))))
.

2010-11-22 19:37 . 2010-11-22 19:37 -------- d-----w- c:\windows\system32\config\systemprofile\AppData\L ocal\temp
2010-11-22 19:37 . 2010-11-22 19:37 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-11-21 22:49 . 2010-11-21 22:49 -------- d-----w- c:\program files\Intel
2010-11-21 22:49 . 2009-12-14 11:33 53248 ----a-w- c:\windows\system32\CSVer.dll
2010-11-21 22:49 . 2010-11-21 22:49 -------- d-----w- C:\Intel
2010-11-21 16:00 . 2010-11-21 16:00 388096 ----a-r- c:\users\Josh\AppData\Roaming\Microsoft\Installer\ {45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2010-11-20 16:49 . 2010-11-20 16:49 -------- d-----w- c:\windows\system32\config\systemprofile\AppData\L ocal\TechSmith
2010-11-19 17:05 . 2010-11-10 04:33 6273872 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{1E395007-32C3-4B77-A6F5-46FE00357A92}\mpengine.dll
2010-11-16 19:39 . 2010-11-16 19:39 -------- d-----w- c:\users\Josh\AppData\Local\ElevatedDiagnostics
2010-11-16 18:59 . 2010-11-16 18:59 77004 ----a-w- c:\windows\system32\drivers\AFS.SYS
2010-11-16 17:51 . 2010-11-16 17:51 -------- d-----w- c:\program files\Common Files\Hewlett-Packard
2010-11-16 17:47 . 2010-11-16 18:59 -------- d-----w- c:\program files\Hewlett-Packard
2010-11-15 22:22 . 2010-11-15 22:22 229208 ----a-w- c:\windows\system32\drivers\VMM.sys
2010-11-14 21:08 . 2010-11-18 16:03 165232 ---ha-w- c:\users\Josh\AppData\Roaming\Microsoft\Virtual PC\VPCKeyboard.dll
2010-11-14 21:07 . 2010-11-14 21:07 -------- d-----w- c:\program files\Microsoft Virtual PC
2010-11-14 13:58 . 2010-11-14 13:58 -------- d-----w- c:\program files\iPod
2010-11-14 13:58 . 2010-11-14 13:59 -------- d-----w- c:\program files\iTunes
2010-11-14 13:57 . 2010-11-14 13:57 -------- d-----w- c:\windows\system32\config\systemprofile\AppData\R oaming\Apple Computer
2010-11-14 13:29 . 2010-11-14 13:29 -------- d-----w- c:\programdata\TechSmith
2010-11-14 13:29 . 2010-11-14 13:29 -------- d-----w- c:\users\Josh\AppData\Local\TechSmith
2010-11-14 13:29 . 2010-11-14 13:29 -------- d-----w- c:\program files\TechSmith
2010-11-14 13:27 . 2010-11-14 13:27 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2010-10-31 20:01 . 2010-10-31 20:01 -------- d-----w- c:\programdata\Solidshield
2010-10-31 19:56 . 2010-02-04 09:01 74072 ----a-w- c:\windows\system32\XAPOFX1_4.dll
2010-10-31 19:56 . 2010-02-04 09:01 528216 ----a-w- c:\windows\system32\XAudio2_6.dll
2010-10-31 19:56 . 2010-02-04 09:01 238936 ----a-w- c:\windows\system32\xactengine3_6.dll
2010-10-31 19:56 . 2010-02-04 09:01 22360 ----a-w- c:\windows\system32\X3DAudio1_7.dll
2010-10-31 19:56 . 2009-09-04 16:44 515416 ----a-w- c:\windows\system32\XAudio2_5.dll
2010-10-31 19:56 . 2009-09-04 16:44 238936 ----a-w- c:\windows\system32\xactengine3_5.dll
2010-10-31 19:56 . 2009-09-04 16:29 1974616 ----a-w- c:\windows\system32\D3DCompiler_42.dll
2010-10-31 19:56 . 2009-09-04 16:29 453456 ----a-w- c:\windows\system32\d3dx10_42.dll
2010-10-31 19:56 . 2009-09-04 16:29 235344 ----a-w- c:\windows\system32\d3dx11_42.dll
2010-10-31 19:56 . 2009-09-04 16:29 5501792 ----a-w- c:\windows\system32\d3dcsx_42.dll
2010-10-31 19:56 . 2009-09-04 16:29 1892184 ----a-w- c:\windows\system32\D3DX9_42.dll
2010-10-31 19:56 . 2009-03-09 14:27 4178264 ----a-w- c:\windows\system32\D3DX9_41.dll
2010-10-28 19:52 . 2010-10-28 19:52 -------- d-sh--w- c:\programdata\DSS
2010-10-27 18:10 . 2010-10-27 18:10 -------- d-----w- c:\users\Josh\AppData\Roaming\dvdcss
2010-10-27 18:10 . 2010-10-27 18:10 -------- d-----w- c:\users\Josh\AppData\Roaming\NVIDIA
2010-10-27 18:10 . 2010-10-27 18:10 -------- d-----w- c:\users\Josh\AppData\Roaming\iJoysoft
2010-10-27 18:06 . 2010-10-27 18:09 -------- d-----w- c:\users\Josh\AppData\Roaming\GetRightToGo
2010-10-26 21:54 . 2010-08-04 06:18 641536 ----a-w- c:\windows\system32\CPFilters.dll
2010-10-26 21:54 . 2010-08-04 06:17 417792 ----a-w- c:\windows\system32\msdri.dll
2010-10-26 21:54 . 2010-08-04 06:15 204288 ----a-w- c:\windows\system32\MSNP.ax
2010-10-26 21:54 . 2010-08-04 06:15 199680 ----a-w- c:\windows\system32\mpg2splt.ax
2010-10-26 21:54 . 2010-07-13 05:22 26504 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2010-10-25 21:07 . 2010-10-25 21:07 -------- d-----w- c:\users\Josh\AppData\Roaming\Moyea
2010-10-25 21:04 . 2010-10-25 21:07 -------- d-----w- c:\users\Josh\AppData\Roaming\Leawo
2010-10-25 21:02 . 2010-03-15 09:31 165376 ----a-w- c:\windows\system32\unrar.dll
2010-10-25 21:02 . 2008-10-28 08:10 139264 ----a-w- c:\windows\system32\xvid.ax
2010-10-25 21:02 . 2008-10-08 07:45 606208 ----a-w- c:\windows\system32\xvidcore.dll
2010-10-25 20:19 . 2010-10-25 21:00 -------- d-----w- c:\users\Josh\AppData\Roaming\Vso
2010-10-25 20:18 . 2010-02-09 14:37 65602 ----a-w- c:\windows\system32\cook3260.dll
2010-10-25 20:18 . 2010-02-09 14:37 217127 ----a-w- c:\windows\system32\drv43260.dll
2010-10-25 20:18 . 2010-02-09 14:37 208935 ----a-w- c:\windows\system32\drv33260.dll
2010-10-25 20:18 . 2010-02-09 14:37 176165 ----a-w- c:\windows\system32\drv23260.dll
2010-10-25 20:18 . 2010-02-09 14:37 102439 ----a-w- c:\windows\system32\sipr3260.dll
2010-10-25 20:18 . 2010-02-09 14:37 626688 ----a-w- c:\windows\system32\vp7vfw.dll
2010-10-25 20:18 . 2010-02-09 14:37 1184984 ----a-w- c:\windows\system32\wvc1dmod.dll
2010-10-25 20:18 . 2010-10-25 20:18 -------- d-----w- c:\program files\VSO
2010-10-24 18:33 . 2010-10-24 18:33 -------- d-----w- c:\programdata\Codemasters
2010-10-24 18:09 . 2010-10-24 18:09 -------- d-----w- c:\program files\Codemasters
2010-10-24 17:22 . 2010-10-24 17:22 -------- d-----w- c:\users\Josh\AppData\Roaming\BlackBean
2010-10-24 17:20 . 2010-10-24 17:20 -------- d-----w- c:\program files\CCleaner
2010-10-24 14:01 . 2010-10-24 14:03 -------- d-----w- c:\users\Josh\AppData\Roaming\Windows Live Writer
2010-10-24 14:01 . 2010-10-24 14:01 -------- d-----w- c:\users\Josh\AppData\Local\Windows Live Writer
2010-10-24 10:06 . 2010-10-24 10:06 -------- d-----w- c:\program files\uTorrent
2010-10-24 10:05 . 2010-11-21 17:36 -------- d-----w- c:\users\Josh\AppData\Roaming\uTorrent

.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))) ))
.
2010-10-19 09:41 . 2010-10-17 18:05 222080 ------w- c:\windows\system32\MpSigStub.exe
2010-09-28 14:44 . 2010-09-28 14:44 41984 ----a-w- c:\windows\system32\drivers\usbaapl.sys
2010-09-28 14:44 . 2010-09-28 14:44 4184352 ----a-w- c:\windows\system32\usbaaplrc.dll
2010-09-22 22:47 . 2010-09-22 22:47 49016 ----a-w- c:\windows\system32\sirenacm.dll
2010-09-21 12:03 . 2010-09-21 12:03 208768 ----a-w- c:\windows\system32\LIVESSP.DLL
2010-09-08 09:17 . 2010-09-08 09:17 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2010-09-08 09:17 . 2010-09-08 09:17 69632 ----a-w- c:\windows\system32\QuickTime.qts
2010-09-01 04:23 . 2010-10-17 19:34 12625408 ----a-w- c:\windows\system32\wmploc.DLL
2010-09-01 02:34 . 2010-10-17 19:34 2327552 ----a-w- c:\windows\system32\win32k.sys
2010-08-31 22:46 . 2010-10-18 18:36 1355264 ----a-w- c:\windows\system32\jscript9.dll
2010-08-31 22:44 . 2010-10-18 18:36 367104 ----a-w- c:\windows\system32\html.iec
2010-08-31 22:44 . 2010-10-18 18:36 1448448 ----a-w- c:\windows\system32\inetcpl.cpl
2010-08-31 22:44 . 2010-10-18 18:36 1122304 ----a-w- c:\windows\system32\wininet.dll
2010-08-31 22:44 . 2010-10-18 18:36 424960 ----a-w- c:\windows\system32\vbscript.dll
2010-08-31 22:43 . 2010-10-18 18:36 23552 ----a-w- c:\windows\system32\licmgr10.dll
2010-08-31 22:43 . 2010-10-18 18:36 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2010-08-31 22:43 . 2010-10-18 18:36 114176 ----a-w- c:\windows\system32\iesysprep.dll
2010-08-31 22:43 . 2010-10-18 18:36 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2010-08-31 22:43 . 2010-10-18 18:36 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2010-08-31 22:42 . 2010-10-18 18:36 51200 ----a-w- c:\windows\system32\admparse.dll
2010-08-31 22:42 . 2010-10-18 18:36 75264 ----a-w- c:\windows\system32\iesetup.dll
2010-08-31 22:42 . 2010-10-18 18:36 110592 ----a-w- c:\windows\system32\IEAdvpack.dll
2010-08-31 22:42 . 2010-10-18 18:36 150016 ----a-w- c:\windows\system32\iexpress.exe
2010-08-31 22:42 . 2010-10-18 18:36 149504 ----a-w- c:\windows\system32\wextract.exe
2010-08-31 22:42 . 2010-10-18 18:36 33280 ----a-w- c:\windows\system32\imgutil.dll
2010-08-31 22:42 . 2010-10-18 18:36 48640 ----a-w- c:\windows\system32\mshtmler.dll
2010-08-31 22:42 . 2010-10-18 18:36 11264 ----a-w- c:\windows\system32\mshta.exe
2010-08-31 22:42 . 2010-10-18 18:36 2381824 ----a-w- c:\windows\system32\mshtml.tlb
2010-08-31 22:42 . 2010-10-18 18:36 63488 ----a-w- c:\windows\system32\tdc.ocx
2010-08-31 22:41 . 2010-10-18 18:36 160768 ----a-w- c:\windows\system32\msls31.dll
2010-08-31 04:32 . 2010-10-17 19:34 954752 ----a-w- c:\windows\system32\mfc40.dll
2010-08-31 04:32 . 2010-10-17 19:34 954288 ----a-w- c:\windows\system32\mfc40u.dll
2010-08-27 05:46 . 2010-10-17 19:34 168448 ----a-w- c:\windows\system32\srvsvc.dll
2010-08-27 03:31 . 2010-10-17 19:34 310784 ----a-w- c:\windows\system32\drivers\srv.sys
2010-08-27 03:30 . 2010-10-17 19:34 308736 ----a-w- c:\windows\system32\drivers\srv2.sys
2010-08-27 03:30 . 2010-10-17 19:34 113664 ----a-w- c:\windows\system32\drivers\srvnet.sys
2010-08-26 04:39 . 2010-10-17 19:34 109056 ----a-w- c:\windows\system32\t2embed.dll
.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))) )
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-23 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-23 173592]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-23 150552]
"PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2009-07-27 180224]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-09-08 421888]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2010-11-10 421160]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
hpoddt01.exe.lnk - c:\program files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe [2003-4-6 28672]
SnagIt 9.lnk - c:\program files\TechSmith\SnagIt 9\SnagIt32.exe [2008-5-15 6822728]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\curr entversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)

[HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2010-09-20 21:07 932288 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2010-09-23 02:47 35760 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2010-11-10 23:40 421160 ----a-w- c:\program files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2010-09-08 09:17 421888 ----a-w- c:\program files\QuickTime\QTTask.exe

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\ v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 cpudrv;cpudrv;c:\program files\SystemRequirementsLab\cpudrv.sys [2009-12-18 11336]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EX E [2010-01-09 4640000]
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-10-17 1343400]
S0 AFS;AFS; [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2010-07-09 248936]

.
Inhoud van de 'Gedeelde Taken' map

2010-11-21 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2386266965-332034663-543012326-1001Core.job
- c:\users\Josh\AppData\Local\Google\Update\GoogleUp date.exe [2010-10-17 19:51]

2010-11-22 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2386266965-332034663-543012326-1001UA.job
- c:\users\Josh\AppData\Local\Google\Update\GoogleUp date.exe [2010-10-17 19:51]
.
.
------- Bijkomende Scan -------
.
uInternet Settings,ProxyOverride = *.local
IE: &Verzenden naar OneNote - c:\progra~1\MICROS~3\Office14\ONBttnIE.dll/105
IE: E&xporteren naar Microsoft Excel - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000
IE: Free YouTube Download - c:\users\Josh\AppData\Roaming\DVDVideoSoftIEHelper s\youtubedownload.htm
IE: Free YouTube to Mp3 Converter - c:\users\Josh\AppData\Roaming\DVDVideoSoftIEHelper s\youtubetomp3.htm
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\Common Files\microsoft shared\OFFICE14\MSOXMLMF.DLL
.
.
--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

[HKEY_USERS\S-1-5-21-2386266965-332034663-543012326-1001\Software\Microsoft\Windows\CurrentVersion\Exp lorer\FileExts\.eml\UserChoice]
@Denied: (2) (S-1-5-21-2386266965-332034663-543012326-1001)
@Denied: (2) (LocalSystem)
"Progid"="Outlook.File.eml.14"

[HKEY_USERS\S-1-5-21-2386266965-332034663-543012326-1001\Software\Microsoft\Windows\CurrentVersion\Exp lorer\FileExts\.vcf\UserChoice]
@Denied: (2) (S-1-5-21-2386266965-332034663-543012326-1001)
@Denied: (2) (LocalSystem)
"Progid"="Outlook.File.vcf.14"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63 A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil 10l_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63 A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63 A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil1 0l_ActiveX.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63 A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F 2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F 2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F 2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PC W\Security]
@Denied: (Full) (Everyone)
.
--------------------- DLLs Geladen Onder Lopende Processen ---------------------

- - - - - - - > 'Explorer.exe'(1372)
c:\program files\Microsoft Virtual PC\VPCShExH.DLL
.
------------------------ Andere Aktieve Processen ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\windows\system32\nvvsvc.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\conhost.exe
c:\windows\system32\WUDFHost.exe
c:\program files\TechSmith\SnagIt 9\TSCHelp.exe
c:\program files\TechSmith\SnagIt 9\SnagPriv.exe
c:\program files\TechSmith\SnagIt 9\snagiteditor.exe
c:\program files\iPod\bin\iPodService.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\sppsvc.exe
.
************************************************** ************************
.
Voltooingstijd: 2010-11-22 20:49:18 - machine werd herstart
ComboFix-quarantined-files.txt 2010-11-22 19:49

Pre-Run: 129.976.270.848 bytes beschikbaar
Post-Run: 129.878.159.360 bytes beschikbaar

- - End Of File - - C2D205EF2FA7B29EEF5125F271ECE2F6

Hi Joost,

Mag ik vragen om een nieuw HijackThis logje aub en vertel gelijk even hoe het nu gaat.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:12:19, on 22-11-2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.7930.16406)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\PowerISO\PWRISOVM.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\TechSmith\SnagIt 9\SnagIt32.exe
C:\Program Files\TechSmith\SnagIt 9\TSCHelp.exe
C:\Program Files\TechSmith\SnagIt 9\SnagPriv.exe
C:\Program Files\TechSmith\SnagIt 9\snagiteditor.exe
C:\Windows\Explorer.exe
C:\Users\Josh\Downloads\Downloader_for_Biztalk_Ser ver_2006_R2_Dev.exe
C:\Users\Josh\AppData\Local\Google\Chrome\Applicat ion\chrome.exe
C:\Program Files\Windows Live\Messenger\msnmsgr.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\Users\Josh\AppData\Local\Google\Chrome\Applicat ion\chrome.exe
C:\Program Files\HiJackThis\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Int ernet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\SnagIt 9\SnagItBHO.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~3\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~3\Office14\URLREDIR.DLL
O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll
O3 - Toolbar: @C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll
O3 - Toolbar: SnagIt - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\SnagIt 9\SnagItIEAddin.dll
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [PWRISOVM.EXE] C:\Program Files\PowerISO\PWRISOVM.EXE
O4 - HKLM\..\Run: [BCSSync] "C:\Program Files\Microsoft Office\Office14\BCSSync.exe" /DelayServices
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - Global Startup: hpoddt01.exe.lnk = ?
O4 - Global Startup: SnagIt 9.lnk = C:\Program Files\TechSmith\SnagIt 9\SnagIt32.exe
O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~1\MICROS~3\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~3\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Free YouTube Download - C:\Users\Josh\AppData\Roaming\DVDVideoSoftIEHelper s\youtubedownload.htm
O8 - Extra context menu item: Free YouTube to Mp3 Converter - C:\Users\Josh\AppData\Roaming\DVDVideoSoftIEHelper s\youtubetomp3.htm
O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: &Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: &Gekoppelde notities van OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDownload/nforce/NvidiaSmartScan.cab
O16 - DPF: {CF84DAC5-A4F5-419E-A0BA-C01FFD71112F} (SysInfo Class) - http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_intel_4.3.13.0.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Mobiel Apple apparaat (Apple Mobile Device) - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--
End of file - 6484 bytes



Ik had zonet alsnog weer dat chrome vastliep, wanneer ik herlaadt lukt het meestal wel weer.
Het maakt ook helemaal niet uit of de website al reeds geladen is ja/nee, Shockwave Flash loopt dan gewoon vast is de melding.
Meestal gebeurt dit bij Hyves.

Ik zie geen reden voor je probleem, je bent helaas niet alleen http://www.google.nl/#hl=nl&expIds=17259,26474,27697,27739,27744&xhr=t&q=Chrome+loopt+vast&cp=17&pf=p&sclient=psy&site=&source=hp&aq=0&aqi=&aql=&oq=&gs_rfai=&pbx=1&fp=cd33c7293ce9879f
Misschien helpt het als je Chrome opnieuw installeert?

Zonet stond mijn pc ook nog eens vast. Ik bezocht een website en ik was mn muis kwijt.
Ik dacht lege batterijen en mn muis staat op mn tv die uit staat (extern beeld).
Batterijen vervangen maar geen kick. Uiteindelijk powerknop ingedrukt gehouden

Lijkt me een ander probleem dan malware of virus. Als je een xp zou hebben zou ik denken aan tekort virtueel geheugen. Dit systeem zou dit niet mogen hebben. Er lijkt me hardware stuk te zijn ? Mogelijk je videokaart.

Ik heb Windows 7 32-bit geïnstalleerd staan. Nu heb ik een hele tijd nergens last meer van.
Dan zal ik binnenkort Chrome inderdaad eens opnieuw installeren.

Dan is dit in ieder geval duidelijk, heel erg bedankt voor de input.

Platform: Windows 7 (WinNT 6.00.3504)

Graag gedaan hoor.

Platform: Windows 7 (WinNT 6.00.3504)

Graag gedaan hoor.
Hahaha ja das waar ook, dat had je al lang gelezen :wall:

Oké tof. :good:

Deze mag gesloten worden overigens!