PC wordt zeer traag

[PolH]

DDS (Ver_2012-11-20.01) - NTFS_x86

Internet Explorer: 9.0.8112.16490 BrowserJavaVersion: 10.21.2

Run by Pol at 15:35:09 on 2013-06-18

Microsoft Windows 7 Home Premium 6.1.7601.1.1252.32.1043.18.1976.326 [GMT 2:00]

.

AV: Norton 360 *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: Norton 360 *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}

FW: Norton 360 *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}

.

============== Running Processes ================

.

C:\windows\system32\wininit.exe

C:\windows\system32\lsm.exe

C:\Program Files\IDT\WDM\STacSV.exe

C:\windows\System32\spoolsv.exe

C:\windows\system32\taskhost.exe

C:\windows\system32\Dwm.exe

C:\windows\Explorer.EXE

C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe

C:\Program Files\OpenEdge\bin\AdmSrvc.exe

C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe

C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files\IDT\WDM\aestsrv.exe

C:\Program Files\LSI SoftModem\agrsmsvc.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe

C:\Windows\System32\igfxtray.exe

C:\Windows\System32\hkcmd.exe

C:\Windows\System32\igfxpers.exe

C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe

C:\Program Files\Belgium Identity Card\beid35gui.exe

C:\Program Files\Fighters\SPAMfighter\sfagent.exe

C:\Program Files\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe

C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe

C:\windows\system32\igfxsrvc.exe

C:\Program Files\Hewlett-Packard\Shared\HPDrvMntSvc.exe

C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe

C:\Program Files\Common Files\LightScribe\LSSrvc.exe

C:\PROGRA~1\MAPSGA~2\bar\1.bin\39barsvc.exe

C:\Program Files\Norton 360\Engine\20.3.1.22\ccSvcHst.exe

C:\Program Files\Norton Ghost\Agent\VProSvc.exe

C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe

C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac

C:\Program Files\Norton 360\Engine\20.3.1.22\ccSvcHst.exe

C:\Program Files\OpenEdge\jre\bin\java.exe

C:\windows\system32\conhost.exe

C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe

C:\Program Files\CyberLink\PowerDVD11\PDVD11Serv.exe

C:\Program Files\IDT\WDM\sttray.exe

C:\Program Files\Fighters\Tray\FightersTray.exe

C:\Program Files\Common Files\Isabel\isa_kbc_certupdate.exe

C:\Program Files\Norton Ghost\Agent\VProTray.exe

C:\Program Files\Common Files\Java\Java Update\jusched.exe

C:\Program Files\MapsGalaxy_39\bar\1.bin\39brmon.exe

C:\Program Files\Hewlett-Packard\HP Advisor\DOCK\HPAdvisorDock.exe

C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe

C:\Program Files\Windows Sidebar\sidebar.exe

C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe

C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe

C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe

C:\Users\Pol\AppData\Roaming\Spotify\spotify.exe

C:\Program Files\MyTomTom 3\MyTomTomSA.exe

C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

C:\Users\Pol\AppData\Roaming\Dropbox\bin\Dropbox.exe

C:\Program Files\PDF Architect\HelperService.exe

C:\Program Files\PDF Architect\ConversionService.exe

c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe

C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe

C:\Program Files\Fighters\SPAMfighter\sfus.exe

C:\Program Files\Fighters\FighterSuiteService.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE

C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe

C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe

C:\windows\system32\wbem\unsecapp.exe

C:\windows\system32\SearchIndexer.exe

C:\windows\system32\wbem\wmiprvse.exe

C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

C:\windows\System32\WUDFHost.exe

C:\Program Files\Synaptics\SynTP\SynTPHelper.exe

C:\windows\system32\wbem\WmiApSrv.exe

C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe

C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe

C:\Program Files\Windows Media Player\wmpnetwk.exe

C:\Program Files\Hewlett-Packard\Shared\hpqToaster.exe

C:\windows\system32\conhost.exe

C:\Program Files\OpenEdge\jre\bin\java.exe

C:\Program Files\Hewlett-Packard\HP Advisor\HPAdvisor.exe

C:\Program Files\Norton Ghost\Shared\Drivers\SymSnapService.exe

C:\Program Files\Hewlett-Packard\HP Support Framework\hpsa_service.exe

C:\windows\system32\DllHost.exe

C:\windows\system32\wuauclt.exe

C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE

C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSServerForPDVD11.exe

C:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe

C:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe

C:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe

C:\windows\system32\wbem\wmiprvse.exe

C:\windows\System32\WUDFHost.exe

C:\windows\system32\conhost.exe

C:\windows\system32\svchost.exe -k DcomLaunch

C:\windows\system32\svchost.exe -k RPCSS

C:\windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\windows\system32\svchost.exe -k netsvcs

C:\windows\system32\svchost.exe -k LocalService

C:\windows\system32\svchost.exe -k NetworkService

C:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\windows\system32\svchost.exe -k imgsvc

C:\windows\system32\svchost.exe -k bthsvcs

C:\windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\windows\System32\svchost.exe -k LocalServicePeerNet

C:\windows\System32\svchost.exe -k secsvcs

C:\windows\system32\svchost.exe -k defragsvc

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.standaard.be/

uSearch Bar = hxxp://www.google.com/ie

uSearch Page = hxxp://www.google.com

uDefault_Search_URL = hxxp://www.google.com/ie

uSearchAssistant = hxxp://www.google.com/ie

uSearchURL,(Default) = hxxp://www.google.com/search?q=%s

uURLSearchHooks: <No Name>: {26842a09-ffa8-4e2c-ae12-0c80f01c3295} - c:\program files\mapsgalaxy_39\bar\1.bin\39SrcAs.dll

BHO: Adobe PDF Reader Help bij koppelingen: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll

BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll

BHO: PDF Architect Helper: {3A2D5EBA-F86D-4BD3-A177-019765996711} - c:\program files\pdf architect\PDFIEHelper.dll

BHO: Norton Identity Protection: {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - c:\program files\norton 360\engine\20.3.1.22\coieplg.dll

BHO: Norton Vulnerability Protection: {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - c:\program files\norton 360\engine\20.3.1.22\ips\ipsbho.dll

BHO: Search Helper: {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - c:\program files\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll

BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre7\bin\ssv.dll

BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll

BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll

BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre7\bin\jp2ssv.dll

BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - c:\program files\hewlett-packard\hp support framework\resources\hpnetworkcheck\HPNetworkCheckPlugin.dll

TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll

TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\program files\norton 360\engine\20.3.1.22\coieplg.dll

TB: MapsGalaxy: {364EA597-E728-4CE4-BB4A-ED846EF47970} -

TB: Norton Toolbar: {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - c:\program files\norton 360\engine\20.3.1.22\coieplg.dll

TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\google toolbar\GoogleToolbar_32.dll

TB: PDF Architect Toolbar: {25A3A431-30BB-47C8-AD6A-E1063801134F} - c:\program files\pdf architect\PDFIEPlugin.dll

uRun: [HPAdvisorDock] c:\program files\hewlett-packard\hp advisor\dock\HPAdvisorDock.exe

uRun: [skype] "c:\program files\skype\\phone\Skype.exe" /nosplash /minimized

uRun: [LightScribe Control Panel] c:\program files\common files\lightscribe\LightScribeControlPanel.exe -hidden

uRun: [sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun

uRun: [NokiaOviSuite2] c:\program files\nokia\nokia ovi suite\NokiaOviSuite.exe -tray

uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"

uRun: [PC Suite Tray] "c:\program files\nokia\nokia pc suite 7\PCSuite.exe" -onlytray

uRun: [spotify] "c:\users\pol\appdata\roaming\spotify\Spotify.exe" /uri spotify:autostart

uRun: [MyTomTomSA.exe] c:\program files\mytomtom 3\MyTomTomSA.exe

mRun: [QLBController] c:\program files\hewlett-packard\hp hotkey support\QLBController.exe /start

mRun: [iAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exe

mRun: [synTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe

mRun: [WirelessAssistant] c:\program files\hewlett-packard\hp wireless assistant\HPWAMain.exe

mRun: [igfxTray] c:\windows\system32\igfxtray.exe

mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe

mRun: [Persistence] c:\windows\system32\igfxpers.exe

mRun: [uDC Integration] <no file>

mRunOnce: [Malwarebytes Anti-Malware] c:\program files\malwarebytes' anti-malware\mbamgui.exe /install /silent

StartupFolder: c:\users\pol\appdata\roaming\micros~1\windows\startm~1\programs\startup\dropbox.lnk - c:\users\pol\appdata\roaming\dropbox\bin\Dropbox.exe

StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\blueto~1.lnk - c:\program files\widcomm\bluetooth software\BTTray.exe

mPolicies-System: ConsentPromptBehaviorAdmin = dword:5

mPolicies-System: ConsentPromptBehaviorUser = dword:3

mPolicies-System: EnableUIADesktopToggle = dword:0

IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200

IE: Afbeelding verzenden naar &Bluetooth-apparaat... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm

IE: E&xporteren naar Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000

IE: Pagina verzenden naar &Bluetooth-apparaat... - c:\program files\widcomm\bluetooth software\btsendto_ie.htm

IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - c:\program files\hewlett-packard\hp support framework\resources\hpnetworkcheck\NCLauncherFromIE.exe

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}

IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm

Trusted Zone: //about.htm/

Trusted Zone: //Exclude.htm/

Trusted Zone: //FWEvent.htm/

Trusted Zone: //LanguageSelection.htm/

Trusted Zone: //Message.htm/

Trusted Zone: //MyAgttryCmd.htm/

Trusted Zone: //MyAgttryNag.htm/

Trusted Zone: //MyNotification.htm/

Trusted Zone: //NOCLessUpdate.htm/

Trusted Zone: //quarantine.htm/

Trusted Zone: //ScanNow.htm/

Trusted Zone: //strings.vbs/

Trusted Zone: //Template.htm/

Trusted Zone: //Update.htm/

Trusted Zone: //VirFound.htm/

DPF: Microsoft XML Parser for Java - file:///C:/windows/Java/classes/xmldso.cab

DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab

DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab

DPF: {B8BE5E93-A60C-4D26-A2DC-220313175592} - hxxp://cdn2.zone.msn.com/binFramework/v10/ZPAFramework.cab102118.cab

DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

DPF: {FF3C5A9F-5A99-4930-80E8-4709194C2AD3} - hxxp://zone.msn.com/bingame/zpagames/ZPA_Backgammon.cab64162.cab

TCP: NameServer = 195.130.131.129 195.130.130.1

TCP: Interfaces\{A2D233A5-DAD2-4DDE-AE26-26FD1A9BDDFE} : DHCPNameServer = 195.130.131.129 195.130.130.1

TCP: Interfaces\{F1322002-B6F0-4527-901C-5FB40F3F4CD1} : DHCPNameServer = 192.168.255.1

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll

Notify: igfxcui - igfxdev.dll

SSODL: WebCheck - <orphaned>

SecurityProviders: SecurityProviders = credssp.dll, schannel.dll

mASetup: {10880D85-AAD9-4558-ABDC-2AB1552D831F} - "c:\program files\common files\lightscribe\LSRunOnce.exe"

.

================= FIREFOX ===================

.

FF - ProfilePath - c:\users\pol\appdata\roaming\mozilla\firefox\profiles\0pkevk53.default\

FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?btnG=Google+Search&q=

FF - prefs.js: browser.search.selectedEngine - Google

FF - prefs.js: browser.startup.homepage - hxxp://www.google.com

FF - prefs.js: keyword.URL - hxxp://www.google.com/search?btnG=Google+Search&q=

FF - prefs.js: network.proxy.type - 0

FF - component: c:\program files\mcafee\siteadvisor enterprise\components\McFFPlg.dll

FF - component: c:\program files\nokia\nokia ovi suite\connectors\bookmarks connector\firefoxextension\components\FirefoxExtension.dll

FF - plugin: c:\program files\java\j2re1.4.2_04\bin\NPJPI142_04.dll

.

============= SERVICES / DRIVERS ===============

.

R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\n360\1403010.016\symds.sys [2013-4-16 367704]

R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\n360\1403010.016\symefa.sys [2013-4-16 934488]

R1 BHDrvx86;BHDrvx86;c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_20.3.0.36\definitions\bashdefs\20130531.001\BHDrvx86.sys [2013-5-31 1002072]

R1 ccSet_N360;Norton 360 Settings Manager;c:\windows\system32\drivers\n360\1403010.016\ccsetx86.sys [2013-4-16 134304]

R1 IDSVix86;IDSVix86;c:\programdata\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\n360_20.3.0.36\definitions\ipsdefs\20130615.001\IDSvix86.sys [2013-6-18 386720]

R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\n360\1403010.016\ironx86.sys [2013-4-16 175264]

R1 SymNetS;Symantec Network Security WFP Driver;c:\windows\system32\drivers\n360\1403010.016\symnets.sys [2013-4-16 338592]

R2 {329F96B6-DF1E-4328-BFDA-39EA953C1312};Power Control [2011/11/05 17:12:17];c:\program files\cyberlink\powerdvd11\common\navfilter\000.fcl [2011-9-16 77296]

R2 AdminService10.2B;AdminService for OpenEdge 10.2B;c:\program files\openedge\bin\admsrvc.exe [2010-9-14 28672]

R2 AESTFilters;Andrea ST Filters Service;c:\program files\idt\wdm\AEstSrv.exe [2010-9-13 81920]

R2 CLHNServiceForPowerDVD;CLHNServiceForPowerDVD;c:\program files\cyberlink\powerdvd11\kernel\dmp\CLHNServiceForPowerDVD.exe [2011-11-5 83240]

R2 CyberLink PowerDVD 11.0 Monitor Service;CyberLink PowerDVD 11.0 Monitor Service;c:\program files\cyberlink\powerdvd11\common\mediaserver\CLMSMonitorService.exe [2011-11-5 75048]

R2 CyberLink PowerDVD 11.0 Service;CyberLink PowerDVD 11.0 Service;c:\program files\cyberlink\powerdvd11\common\mediaserver\CLMSServerForPDVD11.exe [2011-11-5 292136]

R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files\hewlett-packard\hp support framework\HPSA_Service.exe [2012-9-27 86528]

R2 HPDrvMntSvc.exe;HP Quick Synchronization Service;c:\program files\hewlett-packard\shared\HPDrvMntSvc.exe [2012-8-10 197536]

R2 hpHotkeyMonitor;HP Hotkey Monitor;c:\program files\hewlett-packard\hp hotkey support\hpHotkeyMonitor.exe [2010-1-28 265272]

R2 MapsGalaxy_39Service;MapsGalaxyService;c:\progra~1\mapsga~2\bar\1.bin\39barsvc.exe [2013-5-24 42504]

R2 MBAMScheduler;MBAMScheduler;c:\program files\malwarebytes' anti-malware\mbamscheduler.exe [2013-6-18 418376]

R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2013-6-18 701512]

R2 N360;Norton 360;c:\program files\norton 360\engine\20.3.1.22\ccsvchst.exe [2013-4-16 144520]

R2 ntk_PowerDVD;ntk_PowerDVD;c:\program files\cyberlink\powerdvd11\kernel\dmp\ntk_PowerDVD.sys [2011-11-5 71664]

R2 PDF Architect Helper Service;PDF Architect Helper Service;c:\program files\pdf architect\HelperService.exe [2013-4-8 1320496]

R2 PDF Architect Service;PDF Architect Service;c:\program files\pdf architect\ConversionService.exe [2013-4-8 799280]

R2 SPAMfighter Update Service;SPAMfighter Update Service;c:\program files\fighters\spamfighter\sfus.exe [2013-2-28 216608]

R2 Suite Service;Suite Service;c:\program files\fighters\FighterSuiteService.exe [2012-11-12 1270376]

R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\drivers\btwl2cap.sys [2010-9-13 29472]

R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2013-5-2 106656]

R3 GenericMount;Generic Mount Driver;c:\windows\system32\drivers\GenericMount.sys [2010-2-12 57840]

R3 IntcHdmiAddService;Intel® High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [2010-9-13 122880]

R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2013-6-18 22856]

R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2010-6-10 257568]

R3 rtl8192se;Realtek Wireless LAN 802.11n PCI-E NIC NT Driver;c:\windows\system32\drivers\rtl8192se.sys [2010-9-13 996896]

R3 SymSnapService;SymSnapService;c:\program files\norton ghost\shared\drivers\SymSnapService.exe [2010-2-11 1964528]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 NOBU;Norton Online Backup;c:\program files\symantec\norton online backup\nobuagent.exe service --> c:\program files\symantec\norton online backup\NOBuAgent.exe service [?]

S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-7-13 160944]

S3 ACSSCR;ACR38 Smart Card Reader;c:\windows\system32\drivers\a38usbxp.sys [2004-4-30 24832]

S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-14 229888]

S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2011-7-24 36608]

S3 GenericMount Helper Service;GenericMount Helper Service;c:\program files\norton ghost\shared\drivers\GenericMountHelper.exe [2010-2-12 1574408]

S3 RoxMediaDB10;RoxMediaDB10;c:\program files\common files\roxio shared\10.0\sharedcom\RoxMediaDB10.exe [2009-11-23 1120752]

S3 Symantec SymSnap VSS Provider;Symantec SymSnap VSS Provider;c:\windows\system32\dllhost.exe [2009-7-14 7168]

S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-6-21 52224]

S3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\wat\WatAdminSvc.exe [2010-9-14 1343400]

.

=============== Created Last 30 ================

.

2013-06-18 12:45:11 -------- d-----w- c:\users\pol\appdata\roaming\Malwarebytes

2013-06-18 12:44:41 -------- d-----w- c:\programdata\Malwarebytes

2013-06-18 12:44:38 22856 ----a-w- c:\windows\system32\drivers\mbam.sys

2013-06-18 12:44:38 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware

2013-06-18 08:46:28 388096 ----a-r- c:\users\pol\appdata\roaming\microsoft\installer\{45a66726-69bc-466b-a7a4-12fcba4883d7}\HiJackThis.exe

2013-06-18 08:46:28 -------- d-----w- c:\program files\Trend Micro

2013-06-18 08:43:44 -------- dc----w- C:\HijackThis

2013-06-18 08:02:38 60872 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{d69b19a8-c1d9-411a-8c41-d7880296e966}\offreg.dll

2013-06-18 07:22:55 7068072 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{d69b19a8-c1d9-411a-8c41-d7880296e966}\mpengine.dll

2013-06-14 09:48:25 560560 ----a-w- c:\windows\system32\vsprint8.ocx

2013-06-14 09:48:24 344504 ----a-w- c:\windows\system32\vspdf8.ocx

2013-06-14 07:18:39 934488 ----a-w- c:\windows\system32\drivers\n360\1404000.028\symefa.sys

2013-06-14 07:18:39 603224 ----a-w- c:\windows\system32\drivers\n360\1404000.028\srtsp.sys

2013-06-14 07:18:39 367704 ----a-w- c:\windows\system32\drivers\n360\1404000.028\symds.sys

2013-06-14 07:18:39 339544 ----a-w- c:\windows\system32\drivers\n360\1404000.028\symnets.sys

2013-06-14 07:18:39 32344 ----a-w- c:\windows\system32\drivers\n360\1404000.028\srtspx.sys

2013-06-14 07:18:39 21400 ----a-r- c:\windows\system32\drivers\n360\1404000.028\symelam.sys

2013-06-14 07:18:39 175264 ----a-w- c:\windows\system32\drivers\n360\1404000.028\ironx86.sys

2013-06-14 07:18:39 134744 ----a-w- c:\windows\system32\drivers\n360\1404000.028\ccsetx86.sys

2013-06-14 07:17:53 14818 ----a-w- c:\windows\system32\drivers\n360\1404000.028\symvtcer.dat

2013-06-14 07:17:53 -------- d-----w- c:\windows\system32\drivers\n360\1404000.028

2013-06-12 20:27:35 24576 ----a-w- c:\windows\system32\cryptdlg.dll

2013-06-12 20:26:47 492544 ----a-w- c:\windows\system32\win32spl.dll

2013-06-12 20:26:33 903168 ----a-w- c:\windows\system32\certutil.exe

2013-06-12 20:26:32 1160192 ----a-w- c:\windows\system32\crypt32.dll

2013-06-12 20:26:32 103936 ----a-w- c:\windows\system32\cryptnet.dll

2013-06-12 20:26:30 43008 ----a-w- c:\windows\system32\certenc.dll

2013-06-12 20:26:30 140288 ----a-w- c:\windows\system32\cryptsvc.dll

2013-06-12 20:24:55 3968872 ----a-w- c:\windows\system32\ntkrnlpa.exe

2013-06-12 20:24:55 3913576 ----a-w- c:\windows\system32\ntoskrnl.exe

2013-06-12 20:24:49 1293672 ----a-w- c:\windows\system32\drivers\tcpip.sys

2013-05-29 15:13:26 -------- d-----w- c:\users\pol\appdata\local\TomTom

2013-05-29 15:12:56 -------- d-----w- c:\program files\TomTom International B.V

2013-05-29 15:12:40 -------- d-----w- c:\program files\MyTomTom 3

2013-05-27 15:27:11 -------- dc----w- C:\SiteOLV

2013-05-26 14:47:14 -------- dc----w- C:\Mijn website

2013-05-26 14:39:26 -------- d-----w- c:\program files\WebSite X5 v8 - Evolution

2013-05-26 14:37:53 29696 ----a-w- c:\windows\system32\VB5STKIT.DLL

2013-05-26 14:37:52 218416 ----a-w- c:\windows\system32\iwpsetup.exe

2013-05-25 14:42:23 -------- d-----w- c:\program files\WebSite X5 v10 - Evolution Demo

2013-05-25 14:23:49 -------- d-----w- c:\users\pol\appdata\local\Incomedia

2013-05-25 14:23:01 -------- d-----w- c:\program files\WebSite X5 v9 - Evolution Demo

2013-05-24 10:21:00 -------- d-----w- c:\users\pol\appdata\local\IAC

2013-05-24 08:58:06 -------- d-----w- c:\users\pol\appdata\local\MapsGalaxy_39

2013-05-24 08:57:34 -------- d-----w- c:\program files\MapsGalaxy_39

2013-05-22 14:14:39 -------- d-----w- c:\users\pol\appdata\local\Sonos,_Inc

2013-05-21 16:11:06 -------- d-----w- c:\program files\Sonos

2013-05-21 16:10:29 -------- d-----w- c:\programdata\Sonos,_Inc

2013-05-21 16:09:51 -------- d-----w- c:\users\pol\appdata\local\Downloaded Installations

.

==================== Find3M ====================

.

2013-06-12 20:27:38 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe

2013-06-12 20:27:37 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2013-05-16 22:39:39 1800704 ----a-w- c:\windows\system32\jscript9.dll

2013-05-16 22:28:26 1129472 ----a-w- c:\windows\system32\wininet.dll

2013-05-16 22:27:30 1427968 ----a-w- c:\windows\system32\inetcpl.cpl

2013-05-16 22:21:37 142848 ----a-w- c:\windows\system32\ieUnatt.exe

2013-05-16 22:20:30 420864 ----a-w- c:\windows\system32\vbscript.dll

2013-05-16 22:16:57 2382848 ----a-w- c:\windows\system32\mshtml.tlb

2013-05-02 00:06:08 238872 ------w- c:\windows\system32\MpSigStub.exe

2013-04-13 04:45:16 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll

2013-04-13 04:45:15 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll

2013-04-12 13:45:29 1211752 ----a-w- c:\windows\system32\drivers\ntfs.sys

2013-04-10 05:18:40 728424 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys

2013-04-10 05:18:40 218984 ----a-w- c:\windows\system32\drivers\dxgmms1.sys

2013-04-10 03:14:06 2347520 ----a-w- c:\windows\system32\win32k.sys

2013-04-09 13:13:52 95416 ----a-w- c:\windows\system32\pdfcmon.dll

2013-04-06 15:30:16 861088 ----a-w- c:\windows\system32\npDeployJava1.dll

2013-04-06 15:30:16 782240 ----a-w- c:\windows\system32\deployJava1.dll

2013-04-05 13:50:18 142496 ----a-w- c:\windows\system32\drivers\SYMEVENT.SYS

2013-04-04 20:14:37 39 ---ha-w- c:\windows\system32\spfid.bin

2013-04-04 20:14:37 39 ---ha-w- c:\windows\spfid.bin

2013-04-04 03:35:08 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll

2013-04-02 14:09:52 4550656 ----a-w- c:\windows\system32\GPhotos.scr

.

============= FINISH: 15:36:19,97 ===============

moet je ook de attach.txt hebben,

indien ja, hoe stuur ik een zipfile op? of mag ik die gewoon copieren?

[Maxstar]

Hoi,

Attacht.txt heb ik niet nodig.

Download zoek.exe naar het bureaublad.

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe

(hier of hier) kan je lezen hoe je dat doet.

• 
  
• Dubbelklik op Zoek.exe om de tool te starten.
  
• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  
• Kopieer nu onderstaande code en plak die in het grote invulvenster:
  
• Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
  

   
  {26842a09-ffa8-4e2c-ae12-0c80f01c3295};c
  c:\program files\mapsgalaxy_39;fs
  MapsGalaxy_39Service;s
  c:\users\pol\appdata\local\MapsGalaxy_39;s
  autoclean;
  startupall; 
  filesrcm; 
  

  
  

• Klik nu op de knop "Run script".
  
• Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  
• Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  
• Post het geopende logje in het volgende bericht.
  

[PolH]

Zoek.exe Version 4.0.0.2 Updated 18-June-2013

Tool run by Pol on di 18/06/2013 at 16:16:53,02.

Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x86

Running in: Normal Mode Internet Access Detected

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3740741272-41367026-2587978378-1001\Software\Microsoft\Internet Explorer\SearchScopes\{b0441a0e-a49a-4e16-afc1-74ecced1921f} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{26842a09-ffa8-4e2c-ae12-0c80f01c3295} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-3740741272-41367026-2587978378-1001\Software\Microsoft\Internet Explorer\URLSearchHooks\{26842a09-ffa8-4e2c-ae12-0c80f01c3295} deleted successfully

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\MapsGalaxy_39Service deleted successfully

HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\MapsGalaxy_39Service deleted successfully

==== Deleting Files \ Folders ======================

"C:\ProgramData\HPWALog.txt" deleted

"C:\windows\wacam.TMP" deleted

"c:\program files\MapsGalaxy_39\bar\1.bin\39brmon.exe" deleted

"c:\program files\MapsGalaxy_39\bar\1.bin\39brstub.dll" deleted

"c:\program files\MapsGalaxy_39\bar\1.bin\T8RES.DLL" deleted

"C:\Program Files\MapsGalaxy_39\bar\1.bin\39brmon.exe" deleted

"C:\Program Files\MapsGalaxy_39\bar\1.bin\39brstub.dll" deleted

"C:\Program Files\MapsGalaxy_39\bar\1.bin\T8RES.DLL" deleted

"c:\program files\MapsGalaxy_39" not deleted

"C:\windows\system32\appdata" deleted

"C:\Program Files\MapsGalaxy_39" not deleted

"C:\Users\Pol\AppData\Roaming\pdfforge" deleted

"c:\program files\MapsGalaxy_39\bar" not deleted

"c:\program files\MapsGalaxy_39\bar\1.bin" not deleted

"C:\Program Files\MapsGalaxy_39\bar" not deleted

"C:\Program Files\MapsGalaxy_39\bar\1.bin" not deleted

==== Files Recently Created / Modified ======================

====== C:\windows ====

====== C:\Users\Pol\AppData\Local\Temp ====

2013-06-16 14:23:05 BCB0728F4B117855765CE8FE883B5E9B 1536 -c--a-w- C:\Users\Pol\AppData\Local\Temp\NOSEventMessages.dll

====== C:\windows\system32 =====

2013-06-14 09:48:25 3727AD30B5FE423F0F23B5AC33EBE41B 560560 ----a-w- C:\windows\System32\vsprint8.ocx

2013-06-14 09:48:24 ADA54308E1AD2CA60197C6E3648CD840 344504 ----a-w- C:\windows\System32\vspdf8.ocx

2013-06-12 21:36:46 756D0A65C1FB5528DBD04A44F773E608 2382848 ----a-w- C:\windows\System32\mshtml.tlb

2013-06-12 21:36:46 56DF028F2EE4A2C2972E06907815C822 73216 ----a-w- C:\windows\System32\mshtmled.dll

2013-06-12 21:36:45 43697D7CDAEAE3EBBADE2C05107418FF 420864 ----a-w- C:\windows\System32\vbscript.dll

2013-06-12 21:36:44 45194B4B2280B7745AC6C483C32385A8 65024 ----a-w- C:\windows\System32\jsproxy.dll

2013-06-12 21:36:43 C2CDBB424CF2461199322D6825F7B426 607744 ----a-w- C:\windows\System32\msfeeds.dll

2013-06-12 21:36:43 A1400CCB4D99E0B9E76EB45782D5C7FC 176640 ----a-w- C:\windows\System32\ieui.dll

2013-06-12 21:36:43 977176C4A8F4039F17F9BA939AA857A0 142848 ----a-w- C:\windows\System32\ieUnatt.exe

2013-06-12 21:36:43 6A25377A76479A0C0BF3DB6FC42FE09A 1129472 ----a-w- C:\windows\System32\wininet.dll

2013-06-12 21:36:42 B49CEF589D47D9D3F602E118B1F5F3B5 717824 ----a-w- C:\windows\System32\jscript.dll

2013-06-12 21:36:42 84C8AFD609A3DE18F40AA64CDEB40194 231936 ----a-w- C:\windows\System32\url.dll

2013-06-12 21:36:42 57E68AE0BCEB0F70C8AA1C4A6D5C2050 1800704 ----a-w- C:\windows\System32\jscript9.dll

2013-06-12 21:36:41 6057AA7FDF03309A18FAE4E9FCFE7D8F 1796096 ----a-w- C:\windows\System32\iertutil.dll

2013-06-12 21:36:40 DBA747919344CD1353F8107134A20D62 1427968 ----a-w- C:\windows\System32\inetcpl.cpl

2013-06-12 21:36:40 71D8D1FD4989932674CD1F5743191286 1104384 ----a-w- C:\windows\System32\urlmon.dll

2013-06-12 21:36:39 B81388E9FE895065FD5CEAF3C11FDC3F 9738752 ----a-w- C:\windows\System32\ieframe.dll

2013-06-12 21:36:39 A6F5B25905CD01AE714990E02C7205A5 12329984 ----a-w- C:\windows\System32\mshtml.dll

2013-06-12 20:27:35 45FBAFFA68CBC29AC2563985CEE72B9C 24576 ----a-w- C:\windows\System32\cryptdlg.dll

2013-06-12 20:26:47 FC415B303B1ECF80B5F130A1F7203D02 492544 ----a-w- C:\windows\System32\win32spl.dll

2013-06-12 20:26:33 0D52559AEF4AA5EAC82F530617032283 903168 ----a-w- C:\windows\System32\certutil.exe

2013-06-12 20:26:32 92245C959E5BC378809D2CC5E9F6E9C7 1160192 ----a-w- C:\windows\System32\crypt32.dll

2013-06-12 20:26:32 8A8B277067C22F4BF6AA9A31692FC4D3 103936 ----a-w- C:\windows\System32\cryptnet.dll

2013-06-12 20:26:30 CC917AC4D3F8756FF13174980B474791 43008 ----a-w- C:\windows\System32\certenc.dll

2013-06-12 20:26:30 3897DFF247D9ED0006190349DE264E14 140288 ----a-w- C:\windows\System32\cryptsvc.dll

2013-06-12 20:24:55 575DDD83B40880E1DEB48758673BDA71 3913576 ----a-w- C:\windows\System32\ntoskrnl.exe

2013-06-12 20:24:55 3F63CF7DF313428CA9C5D1F410DF4645 3968872 ----a-w- C:\windows\System32\ntkrnlpa.exe

====== C:\windows\system32\drivers =====

2013-06-18 12:44:38 4470E3C1E0C3378E4CAB137893C12C3A 22856 ----a-w- C:\windows\System32\drivers\mbam.sys

2013-06-12 20:24:49 D32FDAC73FCD76B85389C39BC1087F2A 1293672 ----a-w- C:\windows\System32\drivers\tcpip.sys

====== C:\windows\Tasks ======

====== C:\windows\Temp ======

======= C:\Program Files =====

2013-06-18 08:46:28 -------- d-----w- C:\Program Files\Trend Micro

2013-05-29 15:12:56 -------- d-----w- C:\Program Files\TomTom International B.V

2013-05-29 15:12:40 -------- d-----w- C:\Program Files\MyTomTom 3

2013-05-26 14:39:26 -------- d-----w- C:\Program Files\WebSite X5 v8 - Evolution

2013-05-25 14:42:23 -------- d-----w- C:\Program Files\WebSite X5 v10 - Evolution Demo

2013-05-25 14:23:01 -------- d-----w- C:\Program Files\WebSite X5 v9 - Evolution Demo

2013-05-24 10:15:42 -------- d-----w- C:\Program Files\FileZilla FTP Client

2013-05-24 08:57:34 -------- d-----w- C:\Program Files\MapsGalaxy_39

2013-05-21 16:11:06 -------- d-----w- C:\Program Files\Sonos

======= C: =====

====== C:\Users\Pol\AppData\Roaming ======

2013-05-31 15:23:56 -------- d-----w- C:\users\Pol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Bluetooth-apparaten

2013-05-29 15:13:26 -------- d-----w- C:\users\Pol\AppData\Local\TomTom

2013-05-25 14:23:49 -------- d-----w- C:\users\Pol\AppData\Local\Incomedia

2013-05-24 10:21:00 -------- d-----w- C:\users\Pol\AppData\Local\IAC

2013-05-24 10:15:52 -------- d-----w- C:\users\Pol\AppData\Roaming\FileZilla

2013-05-24 08:58:08 -------- d-----w- C:\users\Pol\AppData\Locallow\IAC

2013-05-24 08:58:06 -------- d-----w- C:\users\Pol\AppData\Local\MapsGalaxy_39

2013-05-24 08:57:57 -------- d-----w- C:\users\Pol\AppData\Locallow\MapsGalaxy_39

2013-05-22 14:14:39 -------- d-----w- C:\users\Pol\AppData\Local\Sonos,_Inc

2013-05-21 16:09:51 -------- d-----w- C:\users\Pol\AppData\Local\Downloaded Installations

====== C:\Users\Pol ======

2013-06-18 13:29:41 8B968045D75783A09592C3105F2865DA 688992 ------r- C:\Users\Pol\Desktop\dds.com

2013-06-18 12:43:10 683FDD3D773C58B262DC07CD0C6CE938 10285040 ----a-w- C:\Users\Pol\Desktop\mbam-setup-1.75.0.1300.exe

2013-05-29 15:13:05 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TomTom

2013-05-26 14:41:05 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Incomedia WebSite X5 v8 - Evolution

2013-05-25 14:43:21 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WebSite X5 v10 - Evolution Demo

2013-05-24 10:15:44 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FileZilla FTP Client

2013-05-21 16:11:16 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Sonos

2013-05-21 16:10:29 -------- d-----w- C:\ProgramData\Sonos,_Inc

====== C: exe-files ==

2013-06-12 21:36:42 67EE46FD4D3B56531C5DD1BDC149275A 757400 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe

=== C: other files ==

2013-06-18 13:44:00 80F7270423D1B9F9F4E2981817763A92 123517798 -c--a-w- C:\Users\Pol\Pictures\Davidsfonds\wetransfer-5a9552.zip

2013-06-18 13:29:41 8B968045D75783A09592C3105F2865DA 688992 ------r- C:\Users\Pol\Desktop\dds.com

2013-06-17 19:48:09 3E750525E4007FD90C2DD888D146E3D0 1230 ----a-w- C:\Users\Pol\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\S0DMENH9\flXHR[1].vbs

2013-06-17 16:18:04 4A74BEA09CFC2272F0B117970C9EF58E 580482 ----a-w- C:\Vero\dump\Anpoka.zip

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun"

[HKEY_USERS\S-1-5-21-3740741272-41367026-2587978378-1001\Software\Microsoft\Windows\CurrentVersion\Run]

"HPAdvisorDock"="C:\Program Files\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe"

"Skype"="C:\Program Files\Skype\\Phone\Skype.exe /nosplash /minimized"

"LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden"

"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

"NokiaOviSuite2"="C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray"

"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

"PC Suite Tray"="C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe -onlytray"

"Spotify"="C:\Users\Pol\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart"

"MyTomTomSA.exe"="C:\Program Files\MyTomTom 3\MyTomTomSA.exe"

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce]

"mctadmin"="C:\Windows\System32\mctadmin.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"QLBController"="C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe /start"

"IAAnotif"="C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe"

"WirelessAssistant"="C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe"

"IgfxTray"="C:\windows\system32\igfxtray.exe"

"HotKeysCmds"="C:\windows\system32\hkcmd.exe"

"Persistence"="C:\windows\system32\igfxpers.exe"

"SignIn"="C:\Program Files\Microsoft Online Services\Sign In\SignIn.exe /autorun"

"beid"="C:\Program Files\Belgium Identity Card\beid35gui.exe /startup"

"sfagent"="C:\Program Files\Fighters\SPAMfighter\sfagent.exe"

"Logitech Download Assistant"="C:\Windows\system32\rundll32.exe C:\Windows\System32\LogiLDA.dll,LogiFetch"

"Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"ArcSoft Connection Service"="C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe"

"RemoteControl11"="C:\Program Files\CyberLink\PowerDVD11\PDVD11Serv.exe"

"CommonToolkitTray"="C:\Program Files\Fighters\Tray\FightersTray.exe"

"IsaKbcCertUpdate"="C:\Program Files\Common Files\Isabel\isa_kbc_certupdate.exe"

"Norton Ghost 15.0"="C:\Program Files\Norton Ghost\Agent\VProTray.exe"

"SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe"

"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

"SysTrayApp"="C:\Program Files\IDT\WDM\sttray.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]

"Malwarebytes Anti-Malware"="C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"HPAdvisorDock"="C:\Program Files\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe"

"Skype"="C:\Program Files\Skype\\Phone\Skype.exe /nosplash /minimized"

"LightScribe Control Panel"="C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden"

"Sidebar"="C:\Program Files\Windows Sidebar\sidebar.exe /autoRun"

"NokiaOviSuite2"="C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray"

"swg"="C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

"PC Suite Tray"="C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe -onlytray"

"Spotify"="C:\Users\Pol\AppData\Roaming\Spotify\Spotify.exe /uri spotify:autostart"

"MyTomTomSA.exe"="C:\Program Files\MyTomTom 3\MyTomTomSA.exe"

==== Startup Folders ======================

2010-09-14 12:02:00 1048 ----a-w- C:\users\Pol\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk

2010-09-13 16:43:30 848 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Bluetooth.lnk

==== Task Scheduler Jobs ======================

C:\windows\tasks\Adobe Flash Player Updater.job --a------ [undertermined Task]

C:\windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [19/06/2011 12:54]

C:\windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [19/06/2011 12:54]

C:\windows\tasks\HPCeeScheduleForPol.job --a------ C:\Program Files\Hewlett-Packard\HP Ceement\HPCEE.exe [05/01/2010 12:53]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Pol\AppData\Roaming\Mozilla\Firefox\Profiles\0pkevk53.default

- MapsGalaxy - %ProfilePath%\extensions\39ffxtbr@MapsGalaxy_39.com

AppDir: C:\Program Files\Mozilla Firefox

- Belgium eID - %AppDir%\extensions\belgiumeid@eid.belgium.be

- Default - %AppDir%\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

- Undetermined - %AppDir%\extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}

==== Firefox Plugins ======================

Profilepath: C:\Users\Pol\AppData\Roaming\Mozilla\Firefox\Profiles\0pkevk53.default

22E022C1B47866F29ACE50693AB656B0 - C:\Program Files\Mozilla Firefox\plugins\npnul32.dll - Mozilla Default Plug-in

9A6101F29E2E9D41B99CBCC8F106E8FE - C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL - 2007 Microsoft Office system

==== Deleting Files \ Folders ======================

"C:\Users\Pol\AppData\Roaming\Mozilla\Firefox\Profiles\0pkevk53.default\extensions\39ffxtbr@MapsGalaxy_39.com" deleted

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

mkfokfffehpeedafpekjeddnmnjhmcmk - C:\Program Files\Norton 360\Engine\20.3.1.22\Exts\Chrome.crx[02/04/2013 02:37]

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="De Standaard"

"Search Page"="Google"

"Search Bar"="Upgrade to Google Chrome"

"Default_Search_URL"="Upgrade to Google Chrome"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]

"(Default)"="%s - Bing"

@="%s - Google Search"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]

"SearchAssistant"="Upgrade to Google Chrome"

"Default_Search_URL"="Upgrade to Google Chrome"

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Search Page"="Bing"

"Search Bar"="Bing"

"Default_Search_URL"="Bing"

"Start Page"="De Standaard"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]

"(Default)"="%s - Bing"

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Search]

"Default_Search_URL"="Bing"

"SearchAssistant"="http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} @ieframe.dll,-12512 Url="{searchTerms} - Bing"

{16365DD7-2B7D-46A0-AA77-88F9A092D4A7} Google Url="{searchTerms} - Google zoeken"

{34E06CAD-35C0-4201-9B09-1529B6FAD270} Bing Url="{searchTerms} - Bing"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-3740741272-41367026-2587978378-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{364EA597-E728-4CE4-BB4A-ED846EF47970} deleted successfully

HKEY_USERS\S-1-5-21-3740741272-41367026-2587978378-1001\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{364EA597-E728-4CE4-BB4A-ED846EF47970} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{364EA597-E728-4CE4-BB4A-ED846EF47970} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-3740741272-41367026-2587978378-1001\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{364EA597-E728-4CE4-BB4A-ED846EF47970} deleted successfully

==== Empty IE Cache ======================

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Pol\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\Users\Pol\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Pol\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Pol\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

No Chrome User Data found

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\windows\Temp successfully emptied

C:\Users\Pol\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Users\Pol\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

"C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

"c:\program files\MapsGalaxy_39" not found

"C:\Program Files\MapsGalaxy_39" not found

==== EOF on di 18/06/2013 at 16:39:41,60 ======================

[Maxstar]

Hoi,

Download AdwCleaner by Xplode naar het bureaublad.

• 
  
• Sluit alle openstaande vensters.
  
• Dubbelklik op AdwCleaner om hem te starten.
  
• Klik vervolgens op Verwijderen.
  
• Klik bij AdwCleaner – Informatie op OK
  
• Klik bij AdwCleaner – Herstarten Noodzakelijk op OK
  

Dat tijdens de actie de snelkoppelingen verdwijnen, is normaal.

Nadat de PC opnieuw is opgestart, opent een logfile.

Post aansluitend de inhoud van dit log in je volgende bericht.

[PolH]

# AdwCleaner v2.303 - Verslag gemaakt op 19/06/2013 om 10:12:53

# Geactualiseerd op 08/06/2013 door Xplode

# Besturingssysteem : Windows 7 Home Premium Service Pack 1 (32 bits)

# Gebruiker : Pol - ANPOKA-HP

# Opstarten Modus : Normale modus

# Gelanceerd vanaf : C:\Users\Pol\Desktop\adwcleaner.exe

# Optie [Verwijderen]

***** [Diensten] *****

***** [Files / Mappen] *****

Map Verwijderd : C:\Program Files\iMesh Applications

Map Verwijderd : C:\Users\Pol\AppData\Local\MapsGalaxy_39

Map Verwijderd : C:\Users\Pol\AppData\LocalLow\MapsGalaxy_39

Verwijderd bij het opstarten : C:\Program Files\Mozilla Firefox\extensions\{1FD91A9C-410C-4090-BBCC-55D3450EF433}

***** [Register] *****

Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\MapsGalaxy_39

Sleutel Verwijderd : HKCU\Software\Imesh

Sleutel Verwijderd : HKCU\Software\MapsGalaxy_39

Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{25A3A431-30BB-47C8-AD6A-E1063801134F}

Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{25A3A431-30BB-47C8-AD6A-E1063801134F}

Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}

Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8F0B76E1-4E46-427B-B55B-B90593468AC6}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{A7DDCBDE-5C86-415C-8A37-763AE183E7E4}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\iMesh.exe

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\WMHelper.DLL

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{13119113-0854-469D-807A-171568457991}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{25A3A431-30BB-47C8-AD6A-E1063801134F}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{27BF8F8D-58B8-D41C-F913-B7EEB57EF6F6}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{33119133-0854-469D-807A-171568457991}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{69d3f709-9de2-479f-980f-532d46895703}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{23119123-0854-469D-807A-171568457991}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{69d3f709-9de2-479f-980f-532d46895703}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{B37B4BA6-334E-72C1-B57E-6AFE8F8A5AF3}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{B77AD4AC-C1C2-B293-7737-71E13A11FFEA}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{E773F2CF-5E6E-FF2B-81A1-AC581A26B2B2}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{F42C7B47-5234-4BF5-8882-DAAC0D64870D}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{F7BEBBB1-7E6B-4561-9444-6F4866D60C7C}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{03119103-0854-469D-807A-171568457991}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{96F7FABC-5789-EFA4-B6ED-1272F4C1D27B}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{A147AA03-820F-4A0F-9F34-D6CB4004A2F9}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{ec96f516-51b2-4b46-8451-8665f5a6ba2b}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{f07fbd3e-2048-44a4-9065-71bf551e2672}

Sleutel Verwijderd : HKLM\Software\Imesh

Sleutel Verwijderd : HKLM\Software\MapsGalaxy_39

Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{7C3B01BC-53A5-48A0-A43B-0C67731134B9}

Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{8F0B76E1-4E46-427B-B55B-B90593468AC6}

Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{8FB495A1-4A3F-4C1D-BD27-3F3AB2E66763}

Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\Imesh

Sleutel Verwijderd : HKLM\SOFTWARE\MozillaPlugins\@MapsGalaxy_39.com/Plugin

Waarde Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{25A3A431-30BB-47C8-AD6A-E1063801134F}]

Waarde Verwijderd : HKLM\SOFTWARE\Mozilla\Firefox\Extensions [39ffxtbr@MapsGalaxy_39.com]

***** [browsers] *****

-\\ Internet Explorer v9.0.8112.16490

[OK] Het register bevat geen enkele ongeoorloofde invoer.

-\\ Mozilla Firefox v3.6.10 (nl)

File : C:\Users\Pol\AppData\Roaming\Mozilla\Firefox\Profiles\0pkevk53.default\prefs.js

[OK] De file bevat geen enkele ongeoorloofde invoer.

*************************

AdwCleaner[s1].txt - [4451 octets] - [19/06/2013 10:12:53]

########## EOF - C:\AdwCleaner[s1].txt - [4511 octets] ##########

[Maxstar]

Hoi,

Hoe staat het nu momenteel met de problemen?

[PolH]

Het is veel verbeterd! outlook opstarten duurt soms wat lang, maar daar kunnen we mee leven.

Hebben jullie ervaring met "system mechanic"?

[kweezie wabbit]

System mechanic is een tool die veel beloofd maar niet echt een meerwaarde is bij het oplossen of voorkomen van problemen.

Het is natuurlijk jouw beslissing maar ik zou System mechanic en andere soortgelijke programma's niet installeren.