Ga naar inhoud

hijackthis log


Aanbevolen berichten

Mijn vader zegt dat hij een politie virus op de computer had (het was een klein vierkant in het midden van het beeldscherm dat niet meer wegging, wat dus wel anders is dan de vorige politievirussen die ik al heb gezien) en systeemherstel heeft uitgevoerd.

door dat systeemherstel zie ik inderdaad geen virus meer (de computer start normaal op) maar ik vertrouw het toch niet helemaal.

wil dus iemand dit hijackthis logje nakijken a.u.b.?

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 19:50:19, on 17/11/2013

Platform: Windows Vista SP2 (WinNT 6.00.1906)

MSIE: Internet Explorer v9.00 (9.00.8112.16520)

Boot mode: Normal

Running processes:

C:\Program Files (x86)\Intel\Intel Matrix Storage Manager\IAAnotif.exe

C:\WINDOWS\System32\spool\drivers\x64\3\WrtMon.exe

C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe

C:\Users\Familie\AppData\Local\Akamai\netsession_win.exe

C:\WINDOWS\System32\spool\drivers\x64\3\WrtProc.exe

C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

C:\Users\Familie\AppData\Local\Akamai\netsession_win.exe

C:\hp\support\hpsysdrv.exe

C:\Program Files (x86)\ScanSoft\OmniPageSE4.0\OpWareSE4.exe

C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe

C:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe

C:\Program Files (x86)\real\realplayer\Update\realsched.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\BlueStacks\HD-Agent.exe

C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe

C:\hp\kbd\kbd.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqbam08.exe

C:\Program Files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe

C:\Program Files (x86)\Windows Media Player\wmplayer.exe

C:\Program Files (x86)\Combined Community Codec Pack\MPC\mpc-hc.exe

C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe

C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN België: Hotmail, Skype, nieuws, entertainment, lifestyle en meer!

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = MSN België: Hotmail, Skype, nieuws, entertainment, lifestyle en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN België: Hotmail, Skype, nieuws, entertainment, lifestyle en meer!

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = 127.0.0.1:9421;<local>

F2 - REG:system.ini: UserInit=userinit.exe,

O1 - Hosts: ::1 localhost

O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_printenhancer.dll

O2 - BHO: ContributeBHO Class - {074C1DC5-9320-4A9A-947D-C042949C6216} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll

O2 - BHO: RealNetworks Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\IE\rndlbrowserrecordplugin.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: AOL Toolbar BHO - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll

O2 - BHO: Aanmeldhulp voor Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll

O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O2 - BHO: McAfee SiteAdvisor BHO - {B164E929-A1B6-4A06-B104-2CD0E90A88FF} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O2 - BHO: DVDVideoSoft.WebPageAdjuster - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll

O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files (x86)\AOL\AOL Toolbar 5.0\aoltb.dll

O3 - Toolbar: Contribute Toolbar - {517BDDE4-E3A7-4570-B21E-2B52B6139FC7} - C:\Program Files (x86)\Adobe\Adobe Contribute CS5\Plugins\IEPlugin\contributeieplugin.dll

O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll

O3 - Toolbar: McAfee SiteAdvisor Toolbar - {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

O4 - HKLM\..\Run: [hpsysdrv] c:\hp\support\hpsysdrv.exe

O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KbdStub.EXE

O4 - HKLM\..\Run: [OsdMaestro] c:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD64.exe

O4 - HKLM\..\Run: [sSBkgdUpdate] "C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot

O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files (x86)\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"

O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

O4 - HKLM\..\Run: [switchBoard] "C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"

O4 - HKLM\..\Run: [HP Software Update] C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe

O4 - HKLM\..\Run: [DVDAgent] "c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe"

O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

O4 - HKLM\..\Run: [TkBellExe] "c:\program files (x86)\real\realplayer\Update\realsched.exe" -osboot

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - HKLM\..\Run: [blueStacks Agent] C:\Program Files (x86)\BlueStacks\HD-Agent.exe

O4 - HKLM\..\Run: [mcpltui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey

O4 - HKLM\..\Run: [DivXMediaServer] "C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe"

O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW

O4 - HKLM\..\RunOnce: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /install /silent

O4 - HKCU\..\Run: [Google Update] "C:\Users\Familie\AppData\Local\Google\Update\GoogleUpdate.exe" /c

O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe

O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden

O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Familie\AppData\Local\Akamai\netsession_win.exe"

O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

O4 - HKCU\..\Run: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"

O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files (x86)\HP\Digital Imaging\bin\hpqtra08.exe

O4 - Global Startup: WDDMStatus.lnk = C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe

O4 - Global Startup: WDSmartWare.lnk = C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWare.exe

O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200

O8 - Extra context menu item: Free YouTube Download - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: Verzenden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra 'Tools' menuitem: Verz&enden naar OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll

O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL

O9 - Extra button: Toon of verberg HP Smart Web Printing - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll

O9 - Extra button: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll

O9 - Extra 'Tools' menuitem: Free YouTube Download - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - C:\Program Files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

O18 - Protocol: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

O18 - Protocol: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\PROGRA~2\mcafee\SITEAD~1\mcieplg.dll

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O18 - Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\PROGRA~2\mcafee\msc\mcsniepl.dll

O20 - AppInit_DLLs:

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: BlueStacks Android Service (BstHdAndroidSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-Service.exe

O23 - Service: BlueStacks Log Rotator Service (BstHdLogRotatorSvc) - BlueStack Systems, Inc. - C:\Program Files (x86)\BlueStacks\HD-LogRotatorService.exe

O23 - Service: CrossLoop Service (CrossLoopService) - CrossLoop - C:\Users\Familie\AppData\Local\CrossLoop\CrossLoopService.exe

O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)

O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\My HP Game Console\GameConsoleService.exe

O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe

O23 - Service: McAfee Home Network (HomeNetSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe

O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe

O23 - Service: HP Chasis Button Service (HPBtnSrv) - Unknown owner - c:\hp\HPEZBTN\HPBtnSrv.exe

O23 - Service: Intel® Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files (X86)\Intel\Intel Matrix Storage Manager\Iaantmon.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe

O23 - Service: McAfee SiteAdvisor Service - McAfee, Inc. - C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe

O23 - Service: McAfee AP Service (McAPExe) - McAfee, Inc. - C:\Program Files\McAfee\MSC\McAPExe.exe

O23 - Service: McAfee Personal Firewall Service (McMPFSvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe

O23 - Service: McAfee VirusScan Announcer (McNaiAnn) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe

O23 - Service: McAfee Scanner (McODS) - McAfee, Inc. - C:\Program Files\McAfee\VirusScan\mcods.exe

O23 - Service: McAfee Platform Services (mcpltsvc) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe

O23 - Service: McAfee Proxy Service (McProxy) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe

O23 - Service: McAfee Anti-Malware Core (mfecore) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\AMCore\mcshield.exe

O23 - Service: McAfee Firewall Core Service (mfefire) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe

O23 - Service: McAfee Validation Trust Protection Service (mfevtp) - Unknown owner - C:\Windows\system32\mfevtps.exe (file missing)

O23 - Service: 1% (MOBKbackup) - McAfee, Inc. - C:\Program Files (x86)\McAfee Online Backup\MOBKbackup.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: McAfee Anti-Spam Service (MSK80Service) - McAfee, Inc. - C:\Program Files\Common Files\McAfee\Platform\McSvcHost\McSvHost.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: RealNetworks Downloader Resolver Service - Unknown owner - C:\Program Files (x86)\RealNetworks\RealDownloader\rndlresolversvc.exe

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe

O23 - Service: TightVNC Server (tvnserver) - GlavSoft LLC. - C:\Users\Familie\AppData\Local\CrossLoop\tvnserver.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: WD SmartWare Drive Manager Service (WDDMService) - WDC - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe

O23 - Service: WD SmartWare Background Service (WDSmartWareBackgroundService) - Memeo - C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 17031 bytes

Link naar reactie
Delen op andere sites

Probeer onderstaande maar eens ;-)

Download 51a612a8b27e2-Zoek.pngZoek.zip naar het bureaublad.

  • Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
  • Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.
  • Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
  • Dubbelklik op Zoek.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Kopieer nu onderstaande code en plak die in het grote invulvenster:
  • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.

chromelook; 
firefoxlook; 
autoclean;
startupall; 
filesrcm;

  • Klik nu op de knop "Run script".
  • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  • Post het geopende logje in het volgende bericht.

Link naar reactie
Delen op andere sites

Zoek.exe Version 4.0.0.5 Updated 14-November-2013

Tool run by Familie on ma 18/11/2013 at 0:08:57,42.

Microsoft® Windows Vista™ Home Premium 6.0.6002 Service Pack 2 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Familie\AppData\Local\Temp\Rar$EXa0.670\zoek.exe [script inserted]

==== System Restore Info ======================

18/11/2013 0:11:52 Zoek.exe System Restore Point Created Succesfully.

==== Creating Sample_20131811_0019.zip ======================

Process rundll32.exe killed

Copied file C:\Users\Familie\MasterCollection_CS5_LS1.exe to sample\MasterCollection_CS5_LS1.exe

sample\MasterCollection_CS5_LS1.exe renamed to E7E911F47A3D7E2AD830F134B0357005

C:\Users\Public\Desktop\sample_20131811_0019.zip created successfully

==== Deleting CLSID Registry Keys ======================

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== Deleting Files \ Folders ======================

C:\ProgramData\4A58EC392A5D8DDC00814A586B6F1BB8 deleted

C:\PROGRA~2\Zynga deleted

C:\PROGRA~2\COMMON~1\Software Update Utility deleted

C:\PROGRA~2\COMMON~1\DVDVideoSoft\bin deleted

C:\PROGRA~2\Conduit deleted

C:\extensions.sqlite deleted

C:\Users\Familie\AppData\Roaming\DVDVideoSoftIEHelpers deleted

C:\Users\Familie\AppData\Roaming\Systweak deleted

C:\ProgramData\BrowserProtect deleted

C:\ProgramData\Ask deleted

C:\ProgramData\InstallMate deleted

C:\ProgramData\Premium deleted

C:\ProgramData\Babylon deleted

C:\ProgramData\YTD Video Downloader deleted

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\YTD Video Downloader deleted

C:\Windows\SysNative\roboot64.exe deleted

C:\Users\Familie\AppData\LocalLow\boost_interprocess deleted

C:\Windows\wininit.ini deleted

C:\Windows\SysWow64\searchplugins deleted

C:\Windows\SysWow64\Extensions deleted

C:\Users\Familie\MasterCollection_CS5_LS1.exe deleted

"C:\ProgramData\xvsoolbozzhuhak" deleted

"C:\Users\Familie\AppData\Roaming\Vso" deleted

"C:\Users\Familie\AppData\Roaming\ImTOO" deleted

==== Files Recently Created / Modified ======================

====== C:\Windows ====

====== C:\Users\Familie\AppData\Local\Temp ====

====== Java Cache =====

====== C:\Windows\SysWOW64 =====

2013-11-17 19:09:58 9B0B14B405E0EDF76B5F5E31A49EB753 96168 ----a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll

2013-11-14 10:43:28 B798365F54AF889BFD7D04ED75C016B7 2382848 ----a-w- C:\Windows\SysWOW64\mshtml.tlb

2013-11-14 10:43:27 677857FAC307E46E44F710B6C6F84607 420864 ----a-w- C:\Windows\SysWOW64\vbscript.dll

2013-11-14 10:43:27 3CC9655434741363AF977498A2B5E425 73216 ----a-w- C:\Windows\SysWOW64\mshtmled.dll

2013-11-14 10:43:26 E2E9F49C84C49C2DB5ADAF85D8CD8F1C 142848 ----a-w- C:\Windows\SysWOW64\ieUnatt.exe

2013-11-14 10:43:26 E26C86DE3AC36D09D201691B9D482D5B 176640 ----a-w- C:\Windows\SysWOW64\ieui.dll

2013-11-14 10:43:26 26ED02FA7B11FBFD87D4FF304EFFFFBF 231936 ----a-w- C:\Windows\SysWOW64\url.dll

2013-11-14 10:43:25 C36E38AD3C7FAFF0E30C4CBCB28CE7FB 1129472 ----a-w- C:\Windows\SysWOW64\wininet.dll

2013-11-14 10:43:25 375652E4B01E421683437896DA8D76C4 65024 ----a-w- C:\Windows\SysWOW64\jsproxy.dll

2013-11-14 10:43:24 E1092FB18A2D53DFC20D2EA8AC158E4B 607744 ----a-w- C:\Windows\SysWOW64\msfeeds.dll

2013-11-14 10:43:24 B8D440F705D52D9167C572ECF6522E89 1104896 ----a-w- C:\Windows\SysWOW64\urlmon.dll

2013-11-14 10:43:24 AB3F4974C87DC6DE7E427CF713E88B28 1427968 ----a-w- C:\Windows\SysWOW64\inetcpl.cpl

2013-11-14 10:43:23 FFA200640B887CBB737DA74C299BCE62 717824 ----a-w- C:\Windows\SysWOW64\jscript.dll

2013-11-14 10:43:23 D36137E26569D22B6C395EB68CBE0018 1806848 ----a-w- C:\Windows\SysWOW64\jscript9.dll

2013-11-14 10:43:22 AC986A1AD35CDBF07B0E5D1AC9D527B5 12344832 ----a-w- C:\Windows\SysWOW64\mshtml.dll

2013-11-14 10:43:22 58C300DB5ED80A46A778DECB9D02DA57 1796096 ----a-w- C:\Windows\SysWOW64\iertutil.dll

2013-11-14 10:43:19 048FF8515CE100990423E96678112CDF 9739264 ----a-w- C:\Windows\SysWOW64\ieframe.dll

2013-11-13 03:40:19 EE16F3E01C4A6C77383F1BBBD10AD6C2 596480 ----a-w- C:\Windows\SysWOW64\FWPUCLNT.DLL

2013-11-13 03:40:10 0317420D419E1885894B3ED9D375D245 993792 ----a-w- C:\Windows\SysWOW64\crypt32.dll

2013-11-13 03:39:52 804513A03B06FE8DC56CAD879BA42FD6 304128 ----a-w- C:\Windows\SysWOW64\gdi32.dll

====== C:\Windows\SysWOW64\drivers =====

2013-11-17 18:24:42 B18225739ED9CAA83BA2DF966E9F43E8 41272 ----a-w- C:\Windows\SysWOW64\drivers\mbamswissarmy.sys

====== C:\Windows\Sysnative =====

2013-11-14 10:43:28 714E9503AC7048E0212F79D8C1D6C3A7 2382848 ----a-w- C:\Windows\Sysnative\mshtml.tlb

2013-11-14 10:43:28 3A4DB794F4B7FC36690A0A937A30B18B 96768 ----a-w- C:\Windows\Sysnative\mshtmled.dll

2013-11-14 10:43:26 CDACE6BF6B7ECD8463430AF5318B4A38 85504 ----a-w- C:\Windows\Sysnative\jsproxy.dll

2013-11-14 10:43:26 88C40415EEB19F947E2105D48E87D1D2 248320 ----a-w- C:\Windows\Sysnative\ieui.dll

2013-11-14 10:43:26 794F7FCD48CCB49BB1970904EA8E57C4 173056 ----a-w- C:\Windows\Sysnative\ieUnatt.exe

2013-11-14 10:43:25 C4AA30C01694001B8374CC62BF9AE6FF 1392128 ----a-w- C:\Windows\Sysnative\wininet.dll

2013-11-14 10:43:25 4971D89BD84E2F01DA004E4FAC202EED 237056 ----a-w- C:\Windows\Sysnative\url.dll

2013-11-14 10:43:24 E14025BFE959C7CFA495021AB93DB8ED 729088 ----a-w- C:\Windows\Sysnative\msfeeds.dll

2013-11-14 10:43:24 BE18E52826AC6253F4BF2A814C9362D7 2334720 ----a-w- C:\Windows\Sysnative\jscript9.dll

2013-11-14 10:43:24 979ADB9662E543212D786AADB6964E15 1346560 ----a-w- C:\Windows\Sysnative\urlmon.dll

2013-11-14 10:43:24 7873D45AA2C725D95A016898940FFB75 1494528 ----a-w- C:\Windows\Sysnative\inetcpl.cpl

2013-11-14 10:43:23 D914949662B98FAAEEBF37D0DC036BE6 2147840 ----a-w- C:\Windows\Sysnative\iertutil.dll

2013-11-14 10:43:23 9A2FD60081F2B77C86C6A0D1A86B0170 816640 ----a-w- C:\Windows\Sysnative\jscript.dll

2013-11-14 10:43:23 4FBFB5A1DFFC744C352A03DCE1D41DDC 599040 ----a-w- C:\Windows\Sysnative\vbscript.dll

2013-11-14 10:43:20 1CFBE5D5844FDB11E1589BC74260FBB4 17847296 ----a-w- C:\Windows\Sysnative\mshtml.dll

2013-11-14 10:43:19 26088C2096E08A85816AD4B37D7E03E5 10926080 ----a-w- C:\Windows\Sysnative\ieframe.dll

2013-11-13 03:40:20 294362FF85B023080703240B0696D1D8 217074 ----a-w- C:\Windows\Sysnative\WFP.TMF

2013-11-13 03:40:20 0401A380C88754B2399F8043AC9B2BF9 462848 ----a-w- C:\Windows\Sysnative\IKEEXT.DLL

2013-11-13 03:40:19 F947921ABCF504A7CA03F28709324F9D 781824 ----a-w- C:\Windows\Sysnative\FWPUCLNT.DLL

2013-11-13 03:40:11 3B748E0A5FAA10E4DD2165A6E859C59C 1278976 ----a-w- C:\Windows\Sysnative\crypt32.dll

2013-11-13 03:39:52 8C92D6DB08B4632D9E680B783C02DE04 389632 ----a-w- C:\Windows\Sysnative\gdi32.dll

====== C:\Windows\Sysnative\drivers =====

2013-11-17 18:24:36 9C4FB231B6E02F84580DE2F00F3C5293 25912 ----a-w- C:\Windows\Sysnative\drivers\mbam.sys

2013-11-13 03:39:48 2BA159E1F9FD75F6A496742B20F1D9CF 404992 ----a-w- C:\Windows\Sysnative\drivers\afd.sys

2013-10-31 08:19:35 3800C23D0D90C59AAFCDEFDC82B5C4AF 66040 ----a-w- C:\Windows\Sysnative\drivers\MOBK.sys

2013-10-31 08:19:32 29F981739E50305128022CBE10B3659C 197704 ----a-w- C:\Windows\Sysnative\drivers\HipShieldK.sys

2013-10-31 08:19:32 12F0F8D3F84FAB8F31D073286FE131CB 2641 ----a-w- C:\Windows\Sysnative\drivers\mfencrk.inf

2013-10-31 08:19:30 4DC47CB74EBC1D92DD445FCC5DEAE76A 2951 ----a-w- C:\Windows\Sysnative\drivers\mfencbdc.inf

2013-10-31 08:19:15 F4BE81C919FC0A012F5357E3911D4B67 74560 ----a-w- C:\Windows\Sysnative\drivers\McPvDrv.sys

====== C:\Windows\Tasks ======

2013-11-17 22:27:30 41EADEFADCC900612697D23DA979B1D9 3356 ----a-w- C:\Windows\Sysnative\Tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-805820276-755253952-2625451065-1000

2013-11-16 09:30:44 D88E93E93FCB7700D981C92EDB6900CE 3378 ----a-w- C:\Windows\Sysnative\Tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-805820276-755253952-2625451065-1000

====== C:\Windows\Temp ======

======= C:\Program Files =====

2013-10-21 12:40:40 -------- d-----w- C:\Program Files\stinger

======= C:\PROGRA~2 =====

2013-11-17 18:47:54 -------- d-----w- C:\PROGRA~2\Trend Micro

======= C: =====

====== C:\Users\Familie\AppData\Roaming ======

====== C:\Users\Familie ======

2013-11-17 19:10:57 -------- d-----w- C:\ProgramData\Oracle

2013-11-17 19:08:03 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java

2013-11-12 23:48:20 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\DivX

====== C: exe-files ==

2013-11-15 13:54:18 F06EE764FF00B7A049862C8D50D4215D 730976 ----a-w- C:\Program Files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\31.0.1650.57\31.0.1650.57_31.0.1650.48_chrome_updater.exe

2013-11-14 10:43:25 27DC2B3A141BE4566A0B45A5E5F4668A 763632 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe

2013-11-14 10:43:25 06085B62BC7E0C8E2605CEA38774D956 757488 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe

2013-11-14 10:37:51 971BCACC7310DB7B8373F6D6DD5B956F 82896128 ----a-w- C:\8e9d0d65383b6ada95f1b0fa7a1fa3\MRT.exe

=== C: other files ==

2013-11-17 23:19:20 24ACB038B4AFD81A8F4701C3084E5687 496845 ----a-w- C:\Users\Public\Desktop\sample_20131811_0019.zip

2013-11-17 18:24:42 B18225739ED9CAA83BA2DF966E9F43E8 41272 ----a-w- C:\WINDOWS\SysWOW64\drivers\mbamswissarmy.sys

2013-11-17 18:24:36 9C4FB231B6E02F84580DE2F00F3C5293 25912 ----a-w- C:\WINDOWS\System32\drivers\mbam.sys

2013-11-13 03:39:48 2BA159E1F9FD75F6A496742B20F1D9CF 404992 ----a-w- C:\WINDOWS\System32\drivers\afd.sys

==== Startup Registry Enabled ======================

[HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run]

"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run]

"WindowsWelcomeCenter"="rundll32.exe oobefldr.dll,ShowWelcomeCenter"

"Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /detectMem"

[HKEY_USERS\S-1-5-21-805820276-755253952-2625451065-1000\Software\Microsoft\Windows\CurrentVersion\Run]

"Google Update"="C:\Users\Familie\AppData\Local\Google\Update\GoogleUpdate.exe /c"

"ehTray.exe"="C:\Windows\ehome\ehTray.exe"

"LightScribe Control Panel"="C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden"

"Akamai NetSession Interface"="C:\Users\Familie\AppData\Local\Akamai\netsession_win.exe"

"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

"TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"hpsysdrv"="c:\hp\support\hpsysdrv.exe"

"KBD"="C:\HP\KBD\KbdStub.EXE"

"OsdMaestro"="c:\Program Files\Hewlett-Packard\On-Screen OSD Indicator\OSD64.exe"

"SSBkgdUpdate"="C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe -Embedding -boot"

"OpwareSE4"="C:\Program Files (x86)\ScanSoft\OmniPageSE4.0\OpwareSE4.exe"

"AdobeCS5ServiceManager"="C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe -launchedbylogin"

"SwitchBoard"="C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"

"HP Software Update"="C:\Program Files (x86)\HP\HP Software Update\HPWuSchd2.exe"

"DVDAgent"="c:\Program Files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe"

"mcui_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey"

"TkBellExe"="c:\program files (x86)\real\realplayer\Update\realsched.exe -osboot"

"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

"BlueStacks Agent"="C:\Program Files (x86)\BlueStacks\HD-Agent.exe"

"mcpltui_exe"="C:\Program Files\McAfee.com\Agent\mcagent.exe /runkey"

"DivXMediaServer"="C:\Program Files (x86)\DivX\DivX Media Server\DivXMediaServer.exe"

"DivXUpdate"="C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe /CHECKNOW"

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]

"Google Update"="C:\Users\Familie\AppData\Local\Google\Update\GoogleUpdate.exe /c"

"ehTray.exe"="C:\Windows\ehome\ehTray.exe"

"LightScribe Control Panel"="C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden"

"Akamai NetSession Interface"="C:\Users\Familie\AppData\Local\Akamai\netsession_win.exe"

"swg"="C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

"TomTomHOME.exe"="C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RtHDVCpl"="RAVCpl64.exe"

"HP Health Check Scheduler"="[ProgramFilesFolder]Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe"

"IAAnotif"="C:\Program Files (X86)\Intel\Intel Matrix Storage Manager\Iaanotif.exe"

"NvCplDaemon"="RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup"

"WrtMon.exe"="C:\Windows\system32\spool\drivers\x64\3\WrtMon.exe"

"AdobeAAMUpdater-1.0"="C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"

"Windows Defender"="%ProgramFiles%\Windows Defender\MSASCui.exe -hide"

==== Startup Folders ======================

2010-07-25 13:14:48 2004 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk

2010-09-02 14:13:54 1223 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WDDMStatus.lnk

2010-09-02 14:13:54 1278 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\WDSmartWare.lnk

==== Task Scheduler Jobs ======================

C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [01/11/2013 14:51]

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [15/07/2010 18:26]

C:\Windows\tasks\GoogleUpdateTaskMachineUA1ce7f273425421c.job --a------ [undetermined Task]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-805820276-755253952-2625451065-1000Core.job --a------ C:\Users\Familie\AppData\Local\Google\Update\GoogleUpdate.exe [03/06/2011 19:43]

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-805820276-755253952-2625451065-1000UA1cec8486bb407ba.job --a------ C:\Users\Familie\AppData\Local\Google\Update\GoogleUpdate.exe [03/06/2011 19:43]

==== Other Scheduled Tasks ======================

"C:\Windows\SysNative\tasks\Adobe Flash Player Updater" [C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe]

"C:\Windows\SysNative\tasks\AdobeAAMUpdater-1.0-PC_van_Familie-Familie" [C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe]

"C:\Windows\SysNative\tasks\AdobeFlashPlayerUpdate" [C:\Windows\SysWOW64\FlashPlayerUpdateService.exe]

"C:\Windows\SysNative\tasks\AdobeFlashPlayerUpdate 2" [C:\Windows\SysWOW64\FlashPlayerUpdateService.exe]

"C:\Windows\SysNative\tasks\CreateChoiceProcessTask" [C:\WINDOWS\System32\browserchoice.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineCore" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskMachineUA1ce7f273425421c" [C:\Program Files (x86)\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-805820276-755253952-2625451065-1000Core" [C:\Users\Familie\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-805820276-755253952-2625451065-1000UA1cec8486bb407ba" [C:\Users\Familie\AppData\Local\Google\Update\GoogleUpdate.exe]

"C:\Windows\SysNative\tasks\RealDownloaderDownloaderScheduledTaskS-1-5-21-805820276-755253952-2625451065-1000" [C:\Program Files (x86)\RealNetworks\RealDownloader\recordingmanager.exe]

"C:\Windows\SysNative\tasks\RealDownloaderRealUpgradeLogonTaskS-1-5-21-805820276-755253952-2625451065-1000" [C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe]

"C:\Windows\SysNative\tasks\RealDownloaderRealUpgradeScheduledTaskS-1-5-21-805820276-755253952-2625451065-1000" [C:\Program Files (x86)\RealNetworks\RealDownloader\realupgrade.exe]

"C:\Windows\SysNative\tasks\RealPlayerRealUpgradeLogonTaskS-1-5-21-805820276-755253952-2625451065-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]

"C:\Windows\SysNative\tasks\RealPlayerRealUpgradeScheduledTaskS-1-5-21-805820276-755253952-2625451065-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]

"C:\Windows\SysNative\tasks\RealUpgradeLogonTaskS-1-5-21-805820276-755253952-2625451065-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]

"C:\Windows\SysNative\tasks\RealUpgradeScheduledTaskS-1-5-21-805820276-755253952-2625451065-1000" [C:\Program Files (x86)\Real\RealUpgrade\RealUpgrade.exe]

"C:\Windows\SysNative\tasks\PC-Doctor\Scheduled Maintenance" [C:\Program Files (x86)\PC-Doctor 5 for Windows\RunProfiler.exe]

"C:\Windows\SysNative\tasks\PC-Doctor\Scheduled Maintenance Swap" [C:\Program Files (x86)\PC-Doctor 5 for Windows\task_swap.exe]

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Mozilla\Firefox\Extensions]

"{4ED1F68A-5463-4931-9384-8FFF5ED91D92}"="C:\Program Files (x86)\McAfee\SiteAdvisor" [15/11/2013 10:01]

[HKEY_CURRENT_USER\Software\Mozilla\Firefox\Extensions]

"smartwebprinting@hp.com"="C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3" [25/07/2010 14:17]

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

fheoggkfdfchfphceeifdbepaooicaho - C:\Program Files (x86)\McAfee\SiteAdvisor\McChPlg.crx[05/11/2013 13:14]

idhngdhcfkoamngbedgpaokgjbnpdiji - C:\ProgramData\RealNetworks\RealDownloader\BrowserPlugins\Chrome\Ext\realdownloader.crx[16/04/2013 02:11]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions

nikpibnbobmbdbheedjfogjlikpgpnhp - C:\Program Files (x86)\Common Files\DVDVideoSoft\plugins\DVDVideoSoftBrowserExtension.crx[25/07/2013 13:18]

Angry Birds - Familie - Default\Extensions\aknpkdffaafgjchaibgeefbgmgeghloj

YouTube - Familie - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo

Google Search - Familie - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf

SiteAdvisor - Familie - Default\Extensions\fheoggkfdfchfphceeifdbepaooicaho

Windows Media Player Extension for HTML5 - Familie - Default\Extensions\hokdglbhghcebcopdbanieangmcamaak

RealDownloader - Familie - Default\Extensions\idhngdhcfkoamngbedgpaokgjbnpdiji

Fruity Annie - Familie - Default\Extensions\jbacnfobpliffdmiickfhceamljbcnjf

Google Wallet - Familie - Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda

Psykopaint - Familie - Default\Extensions\pgjchkcfmigkkhedgjedmffdepgmpfil

Gmail - Familie - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chrome Fix ======================

C:\Users\Familie\AppData\Local\Google\Chrome\User Data\Default\Local Storage\http_free-youtube-download.nl.softonic.com_0.localstorage-journal deleted successfully

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=nl_be&c=83&bd=Pavilion&pf=cndt"

"Default_Page_URL"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=nl_be&c=83&bd=Pavilion&pf=cndt"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Default_Page_URL"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=nl_be&c=83&bd=Pavilion&pf=cndt"

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]

"Default_Page_URL"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=nl_be&c=83&bd=Pavilion&pf=cndt"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]

"tab"="$ActiveDomain/page/Tabs/?client_uuid=bda82ac0-85c3-4b48-b0d2-41fde8d1391d"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]

"tab"="$ActiveDomain/page/Tabs/?client_uuid=bda82ac0-85c3-4b48-b0d2-41fde8d1391d"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] not found

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"

"Start Page"="http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=nl_be&c=83&bd=Pavilion&pf=cndt"

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main]

"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Microsoft\Internet Explorer\Main]

"Default_Page_URL"="http://go.microsoft.com/fwlink/?LinkId=69157"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\AboutURLs]

"Tabs"="res://ieframe.dll/tabswelcome.htm"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AboutURLs]

"Tabs"="res://ieframe.dll/tabswelcome.htm"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-805820276-755253952-2625451065-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_USERS\S-1-5-21-805820276-755253952-2625451065-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_LOCAL_MACHINE\software\Wow6432Node\mozilla\Firefox\extensions\belgiumeid@eid.belgium.be deleted successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{3A577012-B38B-5A27-C442-CFC592F79648} deleted successfully

==== Empty IE Cache ======================

C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Users\Default\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully

C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Familie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Familie\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

C:\Users\Familie\AppData\Local\Google\Chrome\User Data\Default\Application Cache\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied

C:\Users\Familie\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found

"C:\Users\Familie\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

"C:\Windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" deleted

==== EOF on ma 18/11/2013 at 0:34:47,17 ======================

Link naar reactie
Delen op andere sites

Ziet er schoon uit hoor :-)

Doe dit nog maar even:

Download 52147fb3b2536-AdwCleaner_99_3_16x16x32.pngAdwCleaner by Xplode naar het bureaublad.

AdwCleaner uitvoeren

  • Sluit alle openstaande vensters.
  • Dubbelklik op AdwCleaner.exe om de tool te starten.
  • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  • Klik vervolgens op de knop Scan.
  • Wanneer de scan gereed is Klikt u vervolgens op de knop Clean.
  • Als dit gereed is wordt er gevraagd om de computer opnieuw op te starten, klik hier op OK.
  • Nadat de computer opnieuw is opgestart wordt het logbestand automatisch geopend.
  • Plaats dit logbestand in het volgende bericht.

Download 51a5ce45263de-delfix.pngDelfix by Xplode naar het bureaublad.

Dubbelklik op Delfix.exe om de tool te starten.

Zet nu vinkjes voor de volgende items:

  • Remove disinfection tools
  • Purge System Restore
  • Reset system settings

Klik nu op "Run" en wacht geduldig tot de tool gereed is.

Wanneer de tool gereed is wordt er een logbestand aangemaakt. Dit hoeft u echter niet te plaatsen.

Link naar reactie
Delen op andere sites

# AdwCleaner v3.012 - Report created 18/11/2013 at 13:31:32

# Updated 11/11/2013 by Xplode

# Operating System : Windows Vista Home Premium Service Pack 2 (64 bits)

# Username : Familie - PC_VAN_FAMILIE

# Running from : C:\Users\Familie\Downloads\adwcleaner.exe

# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

[!] Folder Deleted : C:\ProgramData\NCH Software

[!] Folder Deleted : C:\Program Files (x86)\NCH Software

[!] Folder Deleted : C:\Users\Familie\AppData\Roaming\NCH Software

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}

Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}

Key Deleted : HKCU\Software\Conduit

Key Deleted : HKCU\Software\NCH Software

Key Deleted : HKLM\Software\NCH Software

Key Deleted : HKLM\Software\systweak

Key Deleted : [x64] HKLM\SOFTWARE\DivX\Install\Setup\WizardLayout\ConduitToolbar

***** [ Browsers ] *****

-\\ Internet Explorer v9.0.8112.16520

-\\ Google Chrome v31.0.1650.57

[ File : C:\Users\Familie\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [1559 octets] - [18/11/2013 13:27:22]

AdwCleaner[R1].txt - [1560 octets] - [18/11/2013 13:28:47]

AdwCleaner[s0].txt - [1342 octets] - [18/11/2013 13:31:32]

########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [1402 octets] ##########

Link naar reactie
Delen op andere sites

Gebruikte je programma's van NCH Software?

Kennelijk gooit Adwcleaner die er standaard uit, maar ik heb al van meerdere mensen vernomen dat ze deze programma's al lange tijd gebruiken en dat er niets mis mee is.

Als je deze programma's gebruikte dan moet je die wellicht even opnieuw installeren, vink wel even de meeliftende NCH Toolbar uit zodat deze niet meegeïnstalleerd wordt ;)

Zijn alle problemen nu voorbij? :)

Link naar reactie
Delen op andere sites

Gast
Dit topic is nu gesloten voor nieuwe reacties.
×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.