Ga naar inhoud

Internet Browser: mijn startpagina bij igoogle veranderd steeds


joska

Aanbevolen berichten

Al meer dan een jaar heb ik nu google chrome, heb mijn eigen startpagina, maar sinds enige tijd veranderd deze steeds. Zou ik met een virus of iets dergelijks te maken kunnen hebben ? Er gebeuren dingen die vreemd voorkomen. Zo heb ik pas AVG willen verwijderen via configuratiescherm, als het verwijderd is staat het er nog steeds, dat heb ik met meerdere programma's.

Link naar reactie
Delen op andere sites

Dag joska,

We zullen eerst eens nagaan of malware of virussen de oorzaak zijn van je probleem.

1. Download HijackThis. (klik er op)

Klik op HijackThis.msi en de download start automatisch na 5 seconden.

Bestand HijackThis.msi opslaan. Daarna kiezen voor "uitvoeren".

Hijackthis wordt nu op je PC geïnstalleerd, een snelkoppeling wordt op je bureaublad geplaatst.

Als je geen netwerkverbinding meer hebt, kan je de download doen met een andere pc en het bestand met een usb stick overbrengen

Als je enkel nog in veilige modus kan werken, moet je de executable (HijackThis.exe) downloaden.

Sla deze op in een nieuwe map op de C schijf (bvb C:\\hijackthis) en start hijackthis dan vanaf deze map.

De logjes kan je dan ook in die map terugvinden.


2. Klik op de snelkoppeling om HijackThis te starten. (lees eerst de rode tekst hieronder!)

Klik ofwel op "Do a systemscan and save a logfile", ofwel eerst op "Scan" en dan op "Savelog".

Er opent een kladblokvenster, hou gelijktijdig de CTRL en A-toets ingedrukt, nu is alles geselecteerd. Hou gelijktijdig de CTRL en C-toets ingedrukt, nu is alles gekopieerd. Plak nu het HJT logje in je bericht door CTRL en V-toets.

Krijg je een melding ""For some reason your system denied writing to the Host file ....", klik dan gewoon door op de OK-toets.

Let op : Windows Vista & 7 gebruikers dienen HijackThis als “administrator” uit te voeren via rechtermuisknop “als administrator uitvoeren". Indien dit via de snelkoppeling niet lukt voer je HijackThis als administrator uit in de volgende map : C:\\Program Files\\Trend Micro\\HiJackThis of C:\\Program Files (x86)\\Trend Micro\\HiJackThis. (Bekijk hier de afbeelding ---> Klik hier)


3. Na het plaatsen van je logje wordt dit door een expert nagekeken en hij begeleidt jou verder door het ganse proces.

Tip!

Wil je in woord en beeld weten hoe je een logje met HijackThis maakt en plaatst op het forum, klik dan HIER.

Link naar reactie
Delen op andere sites

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 11:45:26, on 2-4-2013

Platform: Windows 7 SP1 (WinNT 6.00.3505)

MSIE: Internet Explorer v9.00 (9.00.8112.16470)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe

C:\PROGRA~2\MIF5BA~1\OFFICE11\WORDVIEW.EXE

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Users\Gebruiker\Downloads\HijackThis.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Windows\SysWOW64\DllHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Google

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN NL: Hotmail, Outlook, Skype, Messenger, het laatste nieuws, entertainment en meer!

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O4 - HKLM\..\Run: [uSB3MON] "C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"

O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: ASP.NET-statusservice (aspnet_state) - Unknown owner - C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe (file missing)

O23 - Service: Intel® Content Protection HECI Service (cphs) - Intel Corporation - C:\Windows\SysWow64\IntelCpHeciSvc.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: GBSApache - Apache Software Foundation - C:\Program Files (x86)\2G\GBS Digitaal\apache\bin\apache.exe

O23 - Service: GBSMySQL - Unknown owner - C:\Program.exe (file missing)

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: Intel® Capability Licensing Service Interface - Intel® Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe

O23 - Service: Intel® ME Service - Unknown owner - C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe

O23 - Service: Intel® Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: Intel® Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NitroPDFReaderDriverCreatorReadSpool3 (NitroReaderDriverReadSpool3) - Nitro PDF Software - C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)

O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe

O23 - Service: TOSHIBA HDD SSD Alert Service - TOSHIBA Corporation - C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: Intel® Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 8874 bytes

Link naar reactie
Delen op andere sites

Hallo, je logje ziet er schoon uit maar dat zegt niet veel.

Download zoek.exe naar het bureaublad.

  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe
    (hier of hier) kan je lezen hoe je dat doet.
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkwaardig probleem.
    startupall;
    filesrcm;
    


  • Klik op de knop "Options" en vink nu de onderstaande opties aan.


    • Running processes
    • Startup Information
    • Chrome Look
    • Reset Chrome
    • Reset IE proxy
    • Shortcut Fix
    • IE Defaults
    • Auto Clean

    [*] Klik daarna op de knop "Run script".

    [*] Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).

    [*] Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.

    [*] Post nu de inhoud van het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites

Zoek.exe Version 4.0.0.2 Updated 31-03-2013

Tool run by Gebruiker on wo 03-04-2013 at 11:29:57,89.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64

Running in: Normal Mode Internet Access Detected

==== Running Processes ======================

C:\Windows\system32\csrss.exe

C:\Windows\system32\wininit.exe

C:\Windows\system32\csrss.exe

C:\Windows\system32\winlogon.exe

C:\Windows\system32\services.exe

C:\Windows\system32\lsass.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\svchost.exe -k RPCSS

c:\Program Files\Microsoft Security Client\MsMpEng.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k LocalService

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files (x86)\2G\GBS Digitaal\apache\bin\apache.exe

C:\Program Files\Intel\iCLS Client\HeciServer.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\FWService\IntelMeFWService.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\jhi_service.exe

C:\Windows\system32\taskhost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\system32\taskeng.exe

C:\Windows\Explorer.EXE

C:\Program Files\ReviverSoft\Registry Reviver\RegistryReviver.exe

C:\Program Files\Common Files\Nitro\Reader\3.0\NitroPDFReaderDriverService3x64.exe

C:\Windows\system32\svchost.exe -k imgsvc

C:\Program Files (x86)\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler.exe

C:\Program Files (x86)\Google\Update\1.3.21.135\GoogleCrashHandler64.exe

C:\Program Files\Microsoft Security Client\msseces.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Windows\System32\igfxpers.exe

C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe

C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\Program Files (x86)\2G\GBS Digitaal\apache\bin\apache.exe

C:\Program Files (x86)\2G\GBS Digitaal\mysql\bin\mysqld-nt.exe

c:\Program Files\Microsoft Security Client\NisSrv.exe

C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE

C:\Windows\System32\WUDFHost.exe

C:\Windows\system32\SearchIndexer.exe

C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe

C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe

C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe

C:\Windows\system32\svchost.exe -k SDRSVC

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\Users\Gebruiker\Downloads\zoek.exe

C:\Windows\system32\conhost.exe

C:\Windows\system32\wbem\wmiprvse.exe

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-149430387-955752246-4138783394-1000\Software\Microsoft\Internet Explorer\SearchScopes\{88380FE6-EB0A-4369-8C1F-3C5E5FEB592A} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Files \ Folders ======================

"C:\Users\Gebruiker\AppData\Roaming\DealPly" deleted

"C:\ProgramData\Ask" deleted

"C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DealPly" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====

2013-04-01 09:47:45 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe

2013-04-01 09:47:45 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe

2013-04-01 09:47:45 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe

2013-04-01 09:47:45 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe

2013-04-01 09:47:45 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe

2013-03-24 22:09:56 FDCE9425812A2B497C2CF5DD14A38D20 3372 ----a-w- C:\Windows\myGBS.ini

====== C:\Users\GEBRUI~1\AppData\Local\Temp ====

====== C:\Windows\SysWOW64 =====

====== C:\Windows\SysWOW64\drivers =====

====== C:\Windows\Sysnative =====

====== C:\Windows\Sysnative\drivers =====

2013-03-26 07:08:39 92B3172E8C14C1444682F510843A9988 19968 ----a-w- C:\Windows\Sysnative\drivers\usb8023.sys

====== C:\Windows\Tasks ======

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-03-19 11:32:06 -------- d-----w- C:\Program Files\Common Files\Nitro

======= C:\Program Files (x86) =====

2013-03-24 22:07:53 -------- d-----w- C:\Program Files (x86)\2G

2013-03-21 20:13:30 -------- d-----w- C:\Program Files (x86)\Alawar

2013-03-19 11:32:05 -------- d-----w- C:\Program Files (x86)\Nitro

2013-03-19 11:32:05 -------- d-----w- C:\Program Files (x86)\Common Files\Nitro

======= C: =====

====== C:\Users\Gebruiker\AppData\Roaming ======

2013-04-01 09:56:08 -------- d-----w- C:\users\Public\AppData\Local\temp

2013-04-01 09:56:08 -------- d-----w- C:\users\Default\AppData\Local\temp

2013-04-01 09:56:08 -------- d-----w- C:\users\Default User\AppData\Local\temp

2013-03-24 22:14:18 6F367B354CD9837B9608C1539876E87A 97 ----a-w- C:\users\Gebruiker\AppData\Local\fusioncache.dat

2013-03-24 22:14:18 -------- d-----w- C:\users\Gebruiker\AppData\Local\ApplicationHistory

2013-03-19 12:28:58 11F7944E702A918512814398DF976122 64024 ----a-w- C:\users\Gebruiker\AppData\Local\GDIPFONTCACHEV1.DAT

2013-03-19 11:33:02 -------- d-----w- C:\users\Gebruiker\AppData\Roaming\Nitro

2013-03-19 11:33:02 -------- d-----w- C:\users\Gebruiker\AppData\Roaming\FileOpen

2013-03-19 11:31:17 -------- d-----w- C:\users\Gebruiker\AppData\Roaming\Downloaded Installations

====== C:\Users\Gebruiker ======

2013-04-01 09:56:08 -------- d-----w- C:\Users\Public\AppData

2013-03-21 20:13:40 -------- d-----w- C:\ProgramData\FarmFrenzy2

2013-03-21 20:13:40 -------- d-----w- C:\ProgramData\Egoset

2013-03-21 20:13:40 -------- d-----w- C:\ProgramData\AlawarWrapper

2013-03-19 11:33:02 -------- d-----w- C:\ProgramData\FileOpen

2013-03-19 11:32:05 -------- d-----w- C:\ProgramData\Nitro

2013-03-07 10:26:12 D7F9F4F6D85B879A1E6082CCF3D69A15 12288 ------w- C:\Users\Gebruiker\Acn HU 14 maart.doc

====== C: exe-files ==

2013-04-01 11:15:08 BECDDA0990DEBD72A30096533521AD73 213384 ----atw- C:\Users\Gebruiker\AppData\Local\Temp\{596E72B9-D0EF-41CD-A825-00355AF3FDAE}\GoogleCrashHandler.exe

2013-04-01 11:15:08 B676429E44F2F8ACC3BAE7C89F46B212 281480 ----atw- C:\Users\Gebruiker\AppData\Local\Temp\{596E72B9-D0EF-41CD-A825-00355AF3FDAE}\GoogleCrashHandler64.exe

2013-04-01 11:15:08 984CC93BB0EF86A0B4825269D8379D81 774424 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\{596E72B9-D0EF-41CD-A825-00355AF3FDAE}\GoogleUpdateSetup.exe

2013-04-01 11:15:08 74E337FFEB2B34043F8499D2F3DE03A8 59784 ----atw- C:\Users\Gebruiker\AppData\Local\Temp\{596E72B9-D0EF-41CD-A825-00355AF3FDAE}\GoogleUpdateOnDemand.exe

2013-04-01 11:15:08 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Users\Gebruiker\AppData\Local\Temp\{596E72B9-D0EF-41CD-A825-00355AF3FDAE}\GoogleUpdate.exe

2013-04-01 11:15:08 376ECCCE33C2C232112DE830E3C81763 59784 ----atw- C:\Users\Gebruiker\AppData\Local\Temp\{596E72B9-D0EF-41CD-A825-00355AF3FDAE}\GoogleUpdateBroker.exe

2013-04-01 11:08:01 0EF4E7E582711D151E8B78727B406F05 33039712 ----a-w- C:\Program Files (x86)\Google\Update\Download\{8A69D345-D564-463C-AFF1-A69D9E530F96}\26.0.1410.43\26.0.1410.43_chrome_installer.exe

2013-04-01 11:07:20 EEBF289531B1D9F844FCDC2F6A625A44 774624 ----a-w- C:\Users\Gebruiker\Downloads\ChromeSetup.exe

2013-04-01 11:05:40 BECDDA0990DEBD72A30096533521AD73 213384 ----atw- C:\Users\Gebruiker\AppData\Local\Temp\{0C6EB35E-1FA9-49A8-B852-6BB473E0A9F3}\GoogleCrashHandler.exe

2013-04-01 11:05:40 B676429E44F2F8ACC3BAE7C89F46B212 281480 ----atw- C:\Users\Gebruiker\AppData\Local\Temp\{0C6EB35E-1FA9-49A8-B852-6BB473E0A9F3}\GoogleCrashHandler64.exe

2013-04-01 11:05:40 984CC93BB0EF86A0B4825269D8379D81 774424 ----a-w- C:\Users\Gebruiker\AppData\Local\Temp\{0C6EB35E-1FA9-49A8-B852-6BB473E0A9F3}\GoogleUpdateSetup.exe

2013-04-01 11:05:40 74E337FFEB2B34043F8499D2F3DE03A8 59784 ----atw- C:\Users\Gebruiker\AppData\Local\Temp\{0C6EB35E-1FA9-49A8-B852-6BB473E0A9F3}\GoogleUpdateOnDemand.exe

2013-04-01 11:05:40 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Users\Gebruiker\AppData\Local\Temp\{0C6EB35E-1FA9-49A8-B852-6BB473E0A9F3}\GoogleUpdate.exe

2013-04-01 11:05:40 376ECCCE33C2C232112DE830E3C81763 59784 ----atw- C:\Users\Gebruiker\AppData\Local\Temp\{0C6EB35E-1FA9-49A8-B852-6BB473E0A9F3}\GoogleUpdateBroker.exe

2013-04-01 09:47:45 F042EE4C8D66248D9B86DCF52ABAE416 256000 ----a-w- C:\Windows\PEV.exe

2013-04-01 09:47:45 9E05A9C264C8A908A8E79450FCBFF047 80412 ----a-w- C:\Windows\grep.exe

2013-04-01 09:47:45 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 ----a-w- C:\Windows\zip.exe

2013-04-01 09:47:45 0297C72529807322B152F517FDB0A9FC 406528 ----a-w- C:\Windows\SWSC.exe

2013-04-01 09:47:45 0277C027A26428DB64EF4F64F52BB4FD 208896 ----a-w- C:\Windows\MBR.exe

2013-04-01 09:40:41 6E6E0BDA4ECA0AD8F582908C74F91238 4328608 ----a-w- C:\Users\Gebruiker\Downloads\rcpsetupsoftonic_soft_util_728_90_ppagetop.exe

=== C: other files ==

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-21-149430387-955752246-4138783394-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"USB3MON"="C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey"

"IgfxTray"="C:\Windows\system32\igfxtray.exe"

"HotKeysCmds"="C:\Windows\system32\hkcmd.exe"

"Persistence"="C:\Windows\system32\igfxpers.exe"

"RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s"

"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

"TosSENotify"="C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe"

==== Startup Registry Disabled ======================

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run-]

"Adobe ARM"="\"C:\\Program Files (x86)\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe\""

"SunJavaUpdateSched"="\"C:\\Program Files (x86)\\Common Files\\Java\\Java Update\\jusched.exe\""

"QuickTime Task"="\"C:\\Program Files (x86)\\QuickTime\\QTTask.exe\" -atboottime"

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [13-03-2013 02:27]

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [27-10-2012 12:35]

C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [27-10-2012 12:35]

C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d-Logon.job --a------ C:\Program Files (x86)\Intel\IntelR ME FW Recovery Agent\bin\Bootstrap.exe []

C:\Windows\tasks\ISM-UpdateService-4e00205a-2ab1-4423-8f77-cc25b82cde1d.job --a------ C:\Program Files (x86)\Intel\IntelR ME FW Recovery Agent\bin\Bootstrap.exe []

C:\Windows\tasks\Start Registry Reviver for C855-17T@Gebruiker(logon).job --a------ C:\Program Files\ReviverSoft\Registry Reviver\RegistryReviver.exe [03-12-2012 20:24]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

gaiilaahiahdejapggenmdmafpmbipje - C:\Program Files (x86)\DealPly\DealPly.crx[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions

gaiilaahiahdejapggenmdmafpmbipje - C:\Program Files (x86)\DealPly\DealPly.crx[]

Google Drive - Gebruiker - Default\Extensions\apdfllckaahabafndbhieahigkjlhalf

YouTube - Gebruiker - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - Gebruiker - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

Adobe Flash Player - Gebruiker - Default\Extensions\jiiccolbjkhpgockodneljpejdeaaodf

Gmail - Gebruiker - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.google.nl/"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://www.google.nl/"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

{80c554b9-c7f8-4a21-9471-06d606da78a2} Bing Url="http://www.bing.com/search?q={searchTerms}&form=MSSEDF&pc=MSSE"

==== Reset Google Chrome ======================

C:\users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully

C:\users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== shortcuts on All Users Desktop ======================

C:\Users\Public\Desktop\GBS Digitaal 2.0 ©.lnk -

C:\Users\Public\Desktop\Nitro Reader.lnk - C:\Program Files (x86)\Nitro\Reader 3\NitroPDFReader.exe

==== shortcuts in All Users Start Menu ======================

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nitro Reader 3.lnk - C:\Windows\Installer\{87ECF749-ABDD-4960-B35E-85CB328AB074}\Reader.ico

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Microsoft .NET Framework 1.1 Configuration.lnk - C:\Windows\Microsoft.NET\Framework\v1.1.4322\mscorcfg.msc

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\Microsoft .NET Framework 1.1 Wizards.lnk - C:\Windows\Microsoft.NET\Framework\v1.1.4322\ConfigWizards.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ANNO 1602 Gold-Edition\Config.lnk - C:\Program Files (x86)\ANNO 1602 Gold-Edition\Config.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ANNO 1602 Gold-Edition\Editor.lnk - C:\Program Files (x86)\ANNO 1602 Gold-Edition\1602Edit.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ANNO 1602 Gold-Edition\Handleiding.lnk - C:\Program Files (x86)\ANNO 1602 Gold-Edition\Manual.pdf

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ANNO 1602 Gold-Edition\Leesmij.lnk - C:\Program Files (x86)\ANNO 1602 Gold-Edition\ReadMe.rtf

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ANNO 1602 Gold-Edition\Uninstallere Anno 1602 Gold-Edition.lnk - C:\Windows\system32\RunDll32.exe C:\PROGRA~2\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files (x86)\InstallShield Installation Information\{077A7810-A937-4465-AD08-ACED9807995F}\SETUP.exe" -uninst

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Farm Frenzy 2\Farm Frenzy 2.lnk - C:\Program Files (x86)\Alawar\FarmFrenzy2\farm2.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Farm Frenzy 2\Uninstall Farm Frenzy 2.lnk - C:\Program Files (x86)\Alawar\FarmFrenzy2\Uninstall.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GBS Digitaal\GBS Digitaal 2.0 ©.lnk -

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GBS Digitaal\Uninstall GBS Digitaal.lnk - C:\Windows\GBS Digitaal\uninstall.exe "/U:C:\Program Files (x86)\2G\GBS Digitaal\Uninstall\uninstall.xml"

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk - C:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\Silverlight.Configuration.exe

==== shortcuts in Quick Launch ======================

C:\Users\Gebruiker\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\GBS Digitaal 2.0 ©.lnk -

C:\Users\Gebruiker\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Program Files (x86)\Google\Chrome\Application\chrome.exe

==== Reset IE Proxy ======================

Value(s) before fix:

"ProxyEnable"=dword:00000000

Value(s) after fix:

"ProxyEnable"=dword:00000000

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje deleted successfully

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\gaiilaahiahdejapggenmdmafpmbipje deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\users\Gebruiker\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

After Reboot

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\GEBRUI~1\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Gebruiker\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

- - - Updated - - -

Nu onder de browserbalk een balk weg, met favorieten uit IE die naar Chrome zijn overgezet.

Link naar reactie
Delen op andere sites

Vandaag was mijn facebook weer vrij gegeven, na het inloggen direct weer geblokkeerd, melding : besmetting in chrome !

Als ik in wp werk krijg ik daar een melding dat ik een verouderde versie van chrome grbruik.

Zit nog niet goed denk ik.

Doe deze week al elke 2 dagen virusscan en malware, en cleaner en registery reviver.

Krijg geen fout meldingen.

Link naar reactie
Delen op andere sites

Link naar reactie
Delen op andere sites

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.