hanske100

De melding is daar nu ook weg, bedankt! Zal deze discussie nu markeren als opggelost. Voor Uw informatie hieronder het logje: Zoek.exe Version 4.0.0.2 Updated 23-03-2013 Tool run by hans on di 26-03-2013 at 18:52:28,25. Microsoft Windows 7 Starter 6.1.7601 Service Pack 1 x86 Running in: Normal Mode Internet Access Detected ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Files \ Folders ====================== "C:\Users\hans\AppData\LocalLow\boost_interprocess" deleted ==== Firefox Extensions ====================== ==== Firefox Plugins ====================== ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions nneajnkjbffgblleaoojgaacokifdkhm - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx[12-12-2011 14:13] YouTube - hans - Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo Google Search - hans - Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf Digital Ocean - hans - Default\Extensions\ikpeigeegicomelfmfibgdddohdopfnp DivX Plus Web Player HTML5 \u003Cvideo\u003E - hans - Default\Extensions\nneajnkjbffgblleaoojgaacokifdkhm Gmail - hans - Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" ==== Reset Google Chrome ====================== C:\users\hans\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully C:\users\hans\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully ==== shortcuts on All Users Desktop ====================== C:\Users\Public\Desktop\BitTorrent.lnk - C:\Program Files\BitTorrent\BitTorrent.exe ==== shortcuts in Users Start Menu ====================== C:\Users\hans\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\hans\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\hans\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Guida a WinRAR.lnk - C:\Program Files\WinRAR\winrar.chm C:\Users\hans\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Manuale di RAR in modalità carattere.lnk - C:\Users\hans\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk - C:\Program Files\WinRAR\WinRAR.exe ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\BitTorrent.lnk - C:\Program Files\BitTorrent\BitTorrent.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk - C:\Program Files\Microsoft Silverlight\5.1.20125.0\Silverlight.Configuration.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Guida a WinRAR.lnk - C:\Program Files\WinRAR\winrar.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Manuale di RAR in modalità carattere.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk - C:\Program Files\WinRAR\WinRAR.exe ==== shortcuts in Quick Launch ====================== C:\Users\hans\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\BitTorrent.lnk - C:\Program Files\BitTorrent\BitTorrent.exe C:\Users\hans\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk - C:\Users\hans\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\hans\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe ==== Empty IE Cache ====================== C:\Users\hans\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\hans\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\hans\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\users\hans\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully After Reboot ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\hans\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\hans\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

Ja! De startpagina van 22 find tapak portal is weg bij het opstarten van explorer 7. Super! Maar..bij het opstarten van google chrome komt hij wel terug. Heb google chrome verwijderd en heb er hopelijk geen last meer van...of moet ik nog iets fixen?

ShortcutFix by Smeenk ==== shortcuts on All Users Desktop ====================== C:\Users\Public\Desktop\BitTorrent.lnk - C:\Program Files\BitTorrent\BitTorrent.exe C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe ==== shortcuts in Users Start Menu ====================== C:\Users\hans\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\hans\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\hans\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Users\hans\AppData\Local\Google\Chrome\Application\chrome.exe C:\Users\hans\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Guida a WinRAR.lnk - C:\Program Files\WinRAR\winrar.chm C:\Users\hans\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Manuale di RAR in modalità carattere.lnk - C:\Users\hans\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk - C:\Program Files\WinRAR\WinRAR.exe ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\BitTorrent.lnk - C:\Program Files\BitTorrent\BitTorrent.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Users\hans\AppData\Local\Google\Chrome\Application\chrome.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Help.lnk - C:\Program Files\Malwarebytes' Anti-Malware\mbam.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Verwijder Malwarebytes Anti-Malware.lnk - C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\chameleon.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk - C:\Program Files\Microsoft Silverlight\5.1.20125.0\Silverlight.Configuration.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Guida a WinRAR.lnk - C:\Program Files\WinRAR\winrar.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Manuale di RAR in modalità carattere.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk - C:\Program Files\WinRAR\WinRAR.exe ==== shortcuts in Quick Launch ====================== C:\Users\hans\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\BitTorrent.lnk - C:\Program Files\BitTorrent\BitTorrent.exe C:\Users\hans\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\hans\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Users\hans\AppData\Local\Google\Chrome\Application\chrome.exe

helaas nog niet..moet ik nu HijackThis gebruiken?

hopelijk nu gelukt: Zoek.exe Version 4.0.0.2 Updated 23-03-2013 Tool run by hans on zo 24-03-2013 at 13:03:14,58. Microsoft Windows 7 Starter 6.1.7601 Service Pack 1 x86 Running in: Normal Mode Internet Access Detected ==== Running Processes ====================== C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\csrss.exe C:\Windows\system32\winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\WLANExt.exe C:\Windows\system32\conhost.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\Launch Manager\dsiwmis.exe C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe C:\Program Files\Launch Manager\LMworker.exe C:\Program Files\Launch Manager\LMutilps32.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Program Files\Windows Live\Family Safety\fsssvc.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Acer\Registration\GREGsvc.exe C:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exe C:\Program Files\Acer\Acer Updater\UpdaterService.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\Norton AntiVirus\Engine\19.9.1.14\ccSvcHst.exe C:\Program Files\Symantec\Norton Online Backup\NOBuAgent.exe C:\Program Files\Acer\Acer VCM\RS_Service.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Norton AntiVirus\Engine\19.9.1.14\ccSvcHst.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Windows\System32\igfxtray.exe C:\Windows\system32\igfxsrvc.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Launch Manager\LManager.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe C:\Program Files\Winamp\winampa.exe C:\Program Files\Windows Live\Family Safety\fsui.exe C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\DivX\DivX Update\DivXUpdate.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Windows\system32\igfxext.exe C:\Program Files\Windows Live\Messenger\msnmsgr.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Acer\Acer VCM\AcerVCM.exe C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe C:\Windows\system32\SearchIndexer.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Users\hans\Desktop\zoek.exe C:\Windows\system32\conhost.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.exe C:\Windows\system32\wbem\wmiprvse.exe ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Installed Programs ====================== ???? ??? Windows Live ???? Windows Live ????? Messenger ????? Windows Live ?????? ??????? ?? Windows Live ???????? ?? Messenger ???????? ?????????? Windows Live ????????? Messenger ??????????? ?? Windows Live @C:\\Program Files\\Intel\\Intel Control Center\\Uninstaller\\SetupICC.exe,-100 @C:\\Program Files\\Intel\\Intel® Graphics Media Accelerator Driver\\Uninstall\\Setup.exe,-1154 @C:\\Program Files\\Intel\\Intel® Rapid Storage Technology\\Uninstall\\Setup.exe,-2018 Acer Crystal Eye Webcam Acer ePower Management Acer eRecovery Management Acer Games Acer Registration Acer ScreenSaver Acer Updater Acer VCM Adobe AIR Adobe Flash Player 11 ActiveX Adobe Flash Player 11 Plugin Adobe Reader X (10.1.5) MUI Akhra: The Treasures Alice's Magical Mahjong Ask Toolbar Ask Toolbar Updater BearShare Bejeweled 3 BitTorrent Brainville Chuzzle Deluxe Compatibility Pack for the 2007 Office system Compl‚ment Messenger Complemento Messenger D3DX10 Diego's Ultimate Rescue DivX Setup Doplnok programu Messenger Facebook Video Calling 1.2.0.287 Final Drive: Nitro Fooz Kids Fooz Kids Platform Fotogalerija Windows Live Galeria de Fotografias do Windows Live Galer¡a fotogr fica de Windows Live Galeria fotogr…fica del Windows Live Galeria fotografii uslugi Windows Live Galerie de photos Windows Live Galerie foto Windows Live Google Chrome Google Update Helper Identity Card Insaniquarium Deluxe Intel® Control Center Intel® Graphics Media Accelerator Driver Intel® Rapid Storage Technology Java 7 Update 13 Java Auto Updater JavaFX 2.1.1 Junk Mail filter update Launch Manager Malwarebytes Anti-Malware versie 1.70.0.1100 Media Player Utilities 4.28 Mesh Runtime Messenger-kumppani Messenger ???? Messenger Assistent Messenger Companion Messenger k¡s‚ro Messenger Laguna Messenger Suradnik Microsoft .NET Framework 4 Client Profile Microsoft .NET Framework 4 Client Profile NLD Language Pack Microsoft Application Error Reporting Microsoft Office File Validation Add-In Microsoft Office Professional Editie 2003 Microsoft PowerPoint Viewer Microsoft Silverlight Microsoft SQL Server 2005 Compact Edition [ENU] Microsoft Visual C++ 2005 Redistributable Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 More Games from Acer Games MSVCRT My Farm Life My Kingdom for the Princess 3 Norton AntiVirus Norton Online Backup Poczta uslugi Windows Live Podstawowe programy Windows Live Pomocnik Messenger Posta Windows Live QuickTime Raccolta foto di Windows Live Realtek Ethernet Controller Driver Realtek High Definition Audio Driver Realtek PCIE Card Reader Running Sheep S?????? f?t???af??? t?? Windows Live Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2) Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405) Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827) Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449) Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019) Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595) Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642) Skip-Bo - Castaway Caper Slingo Deluxe Spremljevalec Messenger Super Granny 6 Synaptics Pointing Device Driver Taalpakket voor Microsoft .NET Framework 4 Client Profile - NLD Update for Microsoft .NET Framework 4 Client Profile (KB2468871) Update for Microsoft .NET Framework 4 Client Profile (KB2533523) Update for Microsoft .NET Framework 4 Client Profile (KB2600217) Update Installer for WildTangent Games App VC80CRTRedist - 8.0.50727.6195 Wedding Dash WildTangent Games App (Acer Games) Winamp Windows Live ??? Windows Live ???? Windows Live Argazki Galeria Windows Live Communications Platform Windows Live Essentials Windows Live Family Safety Windows Live Fotogal‚ria Windows Live Fotogalerie Windows Live Fotogalleri Windows Live Fotograf Galerisi Windows Live Fot¢t r Windows Live Galeria de Fotos Windows Live Galerija fotografija Windows Live ID Sign-in Assistant Windows Live Installer Windows Live Mail Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen Windows Live Mesh Windows Live Messenger Windows Live Messenger Companion Core Windows Live MIME IFilter Windows Live Movie Maker Windows Live Photo Common Windows Live Photo Gallery Windows Live PIMT Platform Windows Live Remote Client Windows Live Remote Client Resources Windows Live Remote Service Windows Live Remote Service Resources Windows Live SOXE Windows Live SOXE Definitions Windows Live Temel Par‡alar Windows Live UX Platform Windows Live UX Platform Language Pack Windows Live Writer Windows Live Writer Resources Windows Liven asennusty”kalu Windows Liven s„hk”posti Windows Liven valokuvavalikoima WinRAR 4.20 (32-bit) ==== Reset Hosts File ====================== # Copyright © 1993-2006 Microsoft Corp. # # This is a sample HOSTS file used by Microsoft TCP/IP for Windows. # # This file contains the mappings of IP addresses to host names. Each # entry should be kept on an individual line. The IP address should # be placed in the first column followed by the corresponding host name. # The IP address and the host name should be separated by at least one # space. # # Additionally, comments (such as these) may be inserted on individual # lines or following the machine name denoted by a '#' symbol. # # For example: # # 102.54.94.97 rhino.acme.com # source server # 38.25.63.10 x.acme.com # x client host # localhost name resolution is handle within DNS itself. 127.0.0.1 localhost ::1 localhost ==== System Specs ====================== Windows: Windows XP Starter Edition Service Pack 2 (Build 2600) Internet Explorer: 9.0.8112.16421 Memory (RAM): 1013 MB CPU Info: Intel® Atom CPU N2600 @ 1.60GHz CPU Speed: 1635,2 MHz Sound Card: SAMSUNG (Intel® Display Audio | Luidsprekers (Realtek High Defi | Display Adapters: Intel® Graphics Media Accelerator 3600 Series | RDPDD Chained DD | RDP Encoder Mirror Driver | RDP Reflector Display Driver Monitors: 1x; Digital Flat Panel (640x480 60Hz) | Screen Resolution: 800 X 600 - 32 bit Network: Network Present Network Adapters: Broadcom 802.11n Network Adapter | Realtek PCIe FE Family Controller CD / DVD Drives: No optical drives found. Ports: COM Ports NOT Present. LPT Port NOT Present. Mouse: 5 Button Wheel Mouse Present Hard Disks: C: 285,0GB Hard Disks - Free: C: 206,6GB Manufacturer *: Insyde Corp. BIOS Info: AT/AT COMPATIBLE | 01/03/12 | ACRSYS - 1 Time Zone: West-Europa (standaardtijd) Motherboard *: Acer JE01_CT Sun Java version: 1.7.0_13 Country: Nederland Language: NLD ==== Files Recently Created / Modified ====================== ====== C:\Windows ==== 2013-03-23 15:03:30 93CFF3B7BA964CB2E0B6AAB18E8BA3EE 87 ----a-w- C:\Windows\NetwkCfg.txt 2013-03-23 14:49:55 8E3EDA3BF129A2DB29B0605D9EDCEF3E 3052 ----a-w- C:\Windows\checkip.dat ====== C:\Users\hans\AppData\Local\Temp ==== 2013-03-17 21:28:24 4DA57E612033ACE195B21F97DEE211E8 394832 ----a-w- C:\Users\hans\AppData\Local\Temp\uninst1.exe 2013-03-17 21:27:53 CEF32B574F8C732BACAFD93210642DBB 4495624 ----a-w- C:\Users\hans\AppData\Local\Temp\tbBitt.dll ====== C:\Windows\system32 ===== 2013-03-17 16:20:47 AD8CC0F9E9270554FD32A5E53776F15B 420944 ----a-w- C:\Windows\System32\msvcp100.dll 2013-03-17 16:20:47 6B148840D374DBC87F8A0C34FB15C523 773712 ----a-w- C:\Windows\System32\msvcr100.dll 2013-03-16 09:34:09 60D6B33E77A297AA1B14BF0452C20471 2382848 ----a-w- C:\Windows\System32\mshtml.tlb 2013-03-16 09:34:08 E7E671A2A0159ED8D86CA98DF134BB70 73216 ----a-w- C:\Windows\System32\mshtmled.dll 2013-03-16 09:34:08 C9A2D460FD5E409C9320B4CE68A81549 420864 ----a-w- C:\Windows\System32\vbscript.dll 2013-03-16 09:34:07 6428A1B56B4F426F35A029231FF0BB1E 65024 ----a-w- C:\Windows\System32\jsproxy.dll 2013-03-16 09:34:07 15CF0E37F2B406BDE06CBA4F507B25DE 176640 ----a-w- C:\Windows\System32\ieui.dll 2013-03-16 09:34:06 C798EB903A4FA90D2961E164518090C5 607744 ----a-w- C:\Windows\System32\msfeeds.dll 2013-03-16 09:34:06 C43AFA13B552BCC4352106193F008229 142848 ----a-w- C:\Windows\System32\ieUnatt.exe 2013-03-16 09:34:04 1895402C57C32BF8281E8F6C65522253 717824 ----a-w- C:\Windows\System32\jscript.dll 2013-03-16 09:34:04 03728C624D05C2F157BBD46F6B7F6EA0 1129472 ----a-w- C:\Windows\System32\wininet.dll 2013-03-16 09:34:03 69F42E40A0C4344939437D86A8893DA6 1800704 ----a-w- C:\Windows\System32\jscript9.dll 2013-03-16 09:34:02 D0F2CB059B2A89AD5B24FD9EB8D784BE 231936 ----a-w- C:\Windows\System32\url.dll 2013-03-16 09:34:02 73BDB1C0801D44BEA5F6749FD340CC0F 1796096 ----a-w- C:\Windows\System32\iertutil.dll 2013-03-16 09:34:00 2A324C44A1B2352EF5F2E1C8984935C0 1427968 ----a-w- C:\Windows\System32\inetcpl.cpl 2013-03-16 09:34:00 180D098704551DE37C6299AA888D6821 1103872 ----a-w- C:\Windows\System32\urlmon.dll 2013-03-16 09:33:58 263963D93A3CA8F685EFA5966F1E6581 12321792 ----a-w- C:\Windows\System32\mshtml.dll 2013-03-16 09:33:55 D3EAB9BCB2B92EFCA615781C215644C0 9738240 ----a-w- C:\Windows\System32\ieframe.dll ====== C:\Windows\system32\drivers ===== 2013-03-20 22:01:47 FE8A57C8E04EDD3AA8ADD8F3C8F65297 15872 ----a-w- C:\Windows\System32\drivers\usb8023.sys 2013-03-19 20:32:13 629CABB0421668C9D3D402A3C3D77E14 21104 ----a-w- C:\Windows\System32\drivers\mbam.sys ====== C:\Windows\Tasks ====== ====== C:\Windows\Temp ====== ======= C:\Program Files ===== 2013-03-17 16:20:25 -------- d-----w- C:\Program Files\WinRAR 2013-03-03 13:23:41 -------- d-----w- C:\Program Files\BitTorrent ======= C: ===== 2013-03-23 14:53:40 D41D8CD98F00B204E9800998ECF8427E 0 -c--a-w- C:\wizard.txt ====== C:\Users\hans\AppData\Roaming ====== 2013-03-19 20:30:48 -------- d-----w- C:\users\hans\AppData\Local\Programs 2013-03-17 16:20:38 -------- d-----w- C:\users\hans\AppData\Roaming\WinRAR 2013-03-03 13:25:47 -------- d-----w- C:\users\hans\AppData\Roaming\Mozilla 2013-03-03 13:21:22 -------- d-----w- C:\users\hans\AppData\Roaming\BitTorrent ====== C:\Users\hans ====== 2013-03-17 16:21:11 -------- d-----w- C:\ProgramData\eSafe 2013-03-03 13:16:01 723D57083A70B869846DA40EF885F704 104 ----a-w- C:\Users\Public\sdelevURL.tmp ====== C: exe-files == 2013-03-19 20:29:39 0FB6D382FA5FBF72D05FC2A4503B7DF2 10156344 ----a-w- C:\Users\hans\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\37FCUQ20\mbam-setup-1.70.0.1100.exe 2013-03-17 21:28:24 4DA57E612033ACE195B21F97DEE211E8 394832 ----a-w- C:\Users\hans\AppData\Local\Temp\uninst1.exe 2013-03-17 16:20:37 A31A0B6899EF70FE4B8EEAD335F6ED67 1402960 ----a-w- C:\Users\hans\AppData\Local\Temp\Desk365\eInstall\eInstall.exe 2013-03-17 16:20:25 88C8D01CA39BF5E133C374838FD9105A 412160 ----a-w- C:\Program Files\WinRAR\Rar.exe 2013-03-17 16:20:25 5AE541BA4D91EA4AB68D6865CD05A7D9 277504 ----a-w- C:\Program Files\WinRAR\UnRAR.exe 2013-03-17 16:20:25 2F55EF93547C24D91C1FCE656019FEBC 1178112 ----a-w- C:\Program Files\WinRAR\WinRAR.exe 2013-03-17 16:20:25 0ACBF7A958D48300CE1BA7C462664BB2 125440 ----a-w- C:\Program Files\WinRAR\Uninstall.exe === C: other files == 2013-03-20 22:01:47 FE8A57C8E04EDD3AA8ADD8F3C8F65297 15872 ----a-w- C:\Windows\System32\drivers\usb8023.sys 2013-03-20 22:01:47 BE444D443F424E3146534BA98978D68A 15872 ----a-w- C:\Windows\System32\DriverStore\FileRepository\netrndis.inf_x86_neutral_1c5becb2deac08f0\usb80236.sys 2013-03-20 22:01:47 AF77716205C97E902E6C5B78DECE2CCA 15872 ----a-w- C:\Windows\System32\DriverStore\FileRepository\netrndis.inf_x86_neutral_1c5becb2deac08f0\usb8023x.sys 2013-03-19 20:32:13 629CABB0421668C9D3D402A3C3D77E14 21104 ----a-w- C:\Windows\System32\drivers\mbam.sys ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-2485100347-1127089113-3349535558-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Google Update"="C:\Users\hans\AppData\Local\Google\Update\GoogleUpdate.exe /c" "msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe /background" "Facebook Update"="C:\Users\hans\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "IsMyWinLockerReboot"="msiexec.exe /qn /x{voidguid}" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" "IsMyWinLockerReboot"="msiexec.exe /qn /x{voidguid}" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" "IsMyWinLockerReboot"="msiexec.exe /qn /x{voidguid}" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce] "IsMyWinLockerReboot"="msiexec.exe /qn /x{voidguid}" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Norton Online Backup"="C:\Program Files\Symantec\Norton Online Backup\NOBuClient.exe" "Adobe ARM"="C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "IgfxTray"="C:\Windows\system32\igfxtray.exe" "HotKeysCmds"="C:\Windows\system32\hkcmd.exe" "Persistence"="C:\Windows\system32\igfxpers.exe" "LManager"="C:\Program Files\Launch Manager\LManager.exe" "RTHDVCPL"="C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s" "Power Management"="C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe" "WinampAgent"="C:\Program Files\Winamp\winampa.exe" "fssui"="C:\Program Files\Windows Live\Family Safety\fsui.exe -autorun" "QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe -atboottime" "DivXMediaServer"="C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe" "DivXUpdate"="C:\Program Files\DivX\DivX Update\DivXUpdate.exe /CHECKNOW" "SunJavaUpdateSched"="C:\Program Files\Common Files\Java\Java Update\jusched.exe" "SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe " [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Google Update"="C:\Users\hans\AppData\Local\Google\Update\GoogleUpdate.exe /c" "msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe /background" "Facebook Update"="C:\Users\hans\AppData\Local\Facebook\Update\FacebookUpdate.exe /c /nocrashserver" ==== Startup Registry Disabled ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\EgisTec Ticket Service] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\MozillaMaintenance] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\Skype C2C Service] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\Services\SkypeUpdate] ==== Startup Folders ====================== 2011-12-16 09:56:03 1728 ----a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Acer VCM.lnk ==== Task Scheduler Jobs ====================== C:\Windows\tasks\Adobe Flash Player Updater.job --a------ C:@C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2485100347-1127089113-3349535558-1000Core.job --a------ C:\Users\hans\AppData\Local\Facebook\Update\FacebookUpdate.exe [12-07-2012 12:04] C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-2485100347-1127089113-3349535558-1000UA.job --a------ C:\Users\hans\AppData\Local\Facebook\Update\FacebookUpdate.exe [12-07-2012 12:04] C:\Windows\tasks\GoogleUpdateTaskMachineCore.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [03-09-2012 16:32] C:\Windows\tasks\GoogleUpdateTaskMachineUA.job --a------ C:\Program Files\Google\Update\GoogleUpdate.exe [03-09-2012 16:32] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2485100347-1127089113-3349535558-1000Core.job --a------ C:\Users\hans\AppData\Local\Google\Update\GoogleUpdate.exe [27-05-2012 22:06] C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-2485100347-1127089113-3349535558-1000UA.job --a------ C:p;C:\Users\hans\AppData\Local\Google\Update\GoogleUpdate.exe [] ==== Firefox Extensions ====================== ==== Firefox Plugins ====================== ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions jbpkiefagocgkmemidfngdkamloieekf - C:\Program Files\TornTV.com\torn11.crx[] ndgonipadfipmlmdfofnjnhhlgojnjdn - C:\Users\hans\AppData\Local\CRE\ndgonipadfipmlmdfofnjnhhlgojnjdn.crx[] nneajnkjbffgblleaoojgaacokifdkhm - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx[12-12-2011 14:13] pfmopbbadnfoelckkcmjjeaaegjpjjbk - C:\Program Files\Gophoto.it\gophotoit14.crx[] HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions ndgonipadfipmlmdfofnjnhhlgojnjdn - C:\Users\hans\AppData\Local\CRE\ndgonipadfipmlmdfofnjnhhlgojnjdn.crx[] Digital Ocean - hans - Default\Extensions\ikpeigeegicomelfmfibgdddohdopfnp BittorrentBar_NL - hans - Default\Extensions\ndgonipadfipmlmdfofnjnhhlgojnjdn GoPhoto.it - hans - Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk ==== Chrome Fix ====================== C:\Users\hans\AppData\Local\Google\Chrome\User Data\Default\Extensions\ndgonipadfipmlmdfofnjnhhlgojnjdn deleted successfully C:\Users\hans\AppData\Local\Google\Chrome\User Data\Default\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk deleted successfully ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}] not found New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="Google" [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main] "Start Page"="Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}" ==== shortcuts on All Users Desktop ====================== C:\Users\Public\Desktop\BitTorrent.lnk - C:\Program Files\BitTorrent\BitTorrent.exe C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk - C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe ==== shortcuts in Users Start Menu ====================== C:\Users\hans\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! C:\Users\hans\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! C:\Users\hans\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Users\hans\AppData\Local\Google\Chrome\Application\chrome.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! C:\Users\hans\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Guida a WinRAR.lnk - C:\Program Files\WinRAR\winrar.chm C:\Users\hans\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\Manuale di RAR in modalità carattere.lnk - C:\Users\hans\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk - C:\Program Files\WinRAR\WinRAR.exe ==== shortcuts in All Users Start Menu ====================== C:\ProgramData\Microsoft\Windows\Start Menu\BitTorrent.lnk - C:\Program Files\BitTorrent\BitTorrent.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware Help.lnk - C:\Program Files\Malwarebytes' Anti-Malware\mbam.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Malwarebytes Anti-Malware.lnk - C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Verwijder Malwarebytes Anti-Malware.lnk - C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware\Tools\Malwarebytes Anti-Malware Chameleon.lnk - C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\chameleon.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight\Microsoft Silverlight.lnk - C:\Program Files\Microsoft Silverlight\5.1.20125.0\Silverlight.Configuration.exe C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Guida a WinRAR.lnk - C:\Program Files\WinRAR\winrar.chm C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\Manuale di RAR in modalità carattere.lnk - C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR\WinRAR.lnk - C:\Program Files\WinRAR\WinRAR.exe ==== shortcuts in Quick Launch ====================== C:\Users\hans\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\BitTorrent.lnk - C:\Program Files\BitTorrent\BitTorrent.exe C:\Users\hans\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! C:\Users\hans\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Users\hans\AppData\Local\Google\Chrome\Application\chrome.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! ==== shortcuts After Repair ====================== C:\Users\hans\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk - C:\Program Files\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! C:\Users\hans\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\Internet Explorer (No Add-ons).lnk - C:\Program Files\Internet Explorer\iexplore.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! C:\Users\hans\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome\Google Chrome.lnk - C:\Users\hans\AppData\Local\Google\Chrome\Application\chrome.exe 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! C:\Users\hans\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk - C:\Program Files\Internet Explorer\iexplore.exe C:\Users\hans\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Google Chrome.lnk - C:\Users\hans\AppData\Local\Google\Chrome\Application\chrome.exe ==== Reset IE Proxy ====================== Value(s) before fix: "ProxyEnable"=dword:00000000 Value(s) after fix: "ProxyEnable"=dword:00000000 ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\jbpkiefagocgkmemidfngdkamloieekf deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ndgonipadfipmlmdfofnjnhhlgojnjdn deleted successfully HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\pfmopbbadnfoelckkcmjjeaaegjpjjbk deleted successfully HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\ndgonipadfipmlmdfofnjnhhlgojnjdn deleted successfully ==== Empty IE Cache ====================== C:\Users\hans\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\Users\hans\AppData\Local\Temp\acro_rd_dir\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\hans\AppData\Local\Temp\Low\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\hans\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\hans\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\users\hans\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully After Reboot ==== Empty Temp Folders ====================== C:\Windows\Temp successfully emptied C:\Users\hans\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== Deleting Files / Folders ====================== "C:\Users\hans\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not found "C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat" not deleted

Hallo! Hier het logje van zoek.exe: Zoek.exe Version 4.0.0.2 Updated 18-03-2013 Tool run by hans on di 19-03-2013 at 22:46:46,16. Microsoft Windows 7 Starter 6.1.7601 Service Pack 1 x86 Running in: Normal Mode Internet Access Detected ==== Running Processes ====================== C:\Windows\system32\csrss.exe C:\Windows\system32\csrss.exe C:\Windows\system32\wininit.exe C:\Windows\system32\winlogon.exe C:\Windows\system32\services.exe C:\Windows\system32\lsass.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k RPCSS C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\system32\WLANExt.exe C:\Windows\system32\conhost.exe C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe C:\Program Files\Launch Manager\dsiwmis.exe C:\Windows\system32\taskhost.exe C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe C:\Program Files\Launch Manager\LMworker.exe C:\Program Files\Launch Manager\LMutilps32.exe C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation C:\Windows\system32\Dwm.exe C:\Program Files\Windows Live\Family Safety\fsssvc.exe C:\Windows\Explorer.EXE C:\Program Files\Acer\Registration\GREGsvc.exe C:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exe C:\Program Files\Acer\Acer Updater\UpdaterService.exe C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE C:\Program Files\Norton AntiVirus\Engine\19.9.1.14\ccSvcHst.exe C:\Program Files\Symantec\Norton Online Backup\NOBuAgent.exe C:\Program Files\Acer\Acer VCM\RS_Service.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Windows\System32\igfxtray.exe C:\Windows\system32\igfxsrvc.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Launch Manager\LManager.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe C:\Program Files\Winamp\winampa.exe C:\Program Files\Windows Live\Family Safety\fsui.exe C:\Program Files\DivX\DivX Update\DivXUpdate.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Ask.com\Updater\Updater.exe C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Program Files\Acer\Acer VCM\AcerVCM.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE C:\Windows\system32\wbem\wmiprvse.exe C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe C:\Program Files\Norton AntiVirus\Engine\19.9.1.14\ccSvcHst.exe C:\Windows\system32\igfxext.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe C:\Program Files\Google\Update\GoogleUpdate.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\taskeng.exe C:\Users\hans\Desktop\zoek.exe C:\Windows\system32\conhost.exe C:\Windows\system32\wbem\wmiprvse.exe

Hoi! Zou iemand me willen helpen om 22 find tapak portal te verwijderen? Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 22:10:56, on 19-3-2013 Platform: Windows 7 SP1 (WinNT 6.00.3505) MSIE: Internet Explorer v9.00 (9.00.8112.16470) Boot mode: Normal Running processes: C:\Windows\system32\taskhost.exe C:\Program Files\Launch Manager\LMworker.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\Windows\System32\igfxtray.exe C:\Windows\System32\hkcmd.exe C:\Windows\system32\igfxsrvc.exe C:\Windows\System32\igfxpers.exe C:\Program Files\Launch Manager\LManager.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe C:\Program Files\Winamp\winampa.exe C:\Program Files\Windows Live\Family Safety\fsui.exe C:\Program Files\DivX\DivX Update\DivXUpdate.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Ask.com\Updater\Updater.exe C:\Program Files\Acer\Acer VCM\AcerVCM.exe C:\Program Files\Synaptics\SynTP\SynTPHelper.exe C:\Program Files\Norton AntiVirus\Engine\19.9.1.14\ccSvcHst.exe C:\Windows\system32\igfxext.exe C:\Windows\system32\wbem\unsecapp.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\Macromed\Flash\FlashUtil32_11_6_602_180_ActiveX.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\taskhost.exe C:\Windows\system32\taskeng.exe C:\Users\hans\Downloads\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = Hotmail, Messenger, het laatste nieuws en entertainment | MSN.NL R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = 22Find Tapak Portal - My Homepage - navigasi terbaik dan paling lengkap laman Malaysia! R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll O2 - BHO: Norton Vulnerability Protection - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton AntiVirus\Engine\19.9.1.14\IPS\IPSBHO.DLL O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll O4 - HKLM\..\Run: [Norton Online Backup] C:\Program Files\Symantec\Norton Online Backup\NOBuClient.exe O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [igfxTray] C:\Windows\system32\igfxtray.exe O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe O4 - HKLM\..\Run: [GfxServiceInstall] C:\Windows\system32\GfxCUIServiceInstall.vbs O4 - HKLM\..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exe O4 - HKLM\..\Run: [synTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe O4 - HKLM\..\Run: [RTHDVCPL] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s O4 - HKLM\..\Run: [Power Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" O4 - HKLM\..\Run: [fssui] "C:\Program Files\Windows Live\Family Safety\fsui.exe" -autorun O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [DivXMediaServer] C:\Program Files\DivX\DivX Media Server\DivXMediaServer.exe O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [ApnUpdater] "C:\Program Files\Ask.com\Updater\Updater.exe" O4 - HKLM\..\RunOnce: [Malwarebytes Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe /install /silent O4 - HKCU\..\Run: [Google Update] "C:\Users\hans\AppData\Local\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background O4 - HKCU\..\Run: [Facebook Update] "C:\Users\hans\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver O4 - HKUS\S-1-5-19\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE') O4 - HKUS\S-1-5-20\..\Run: [sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE') O4 - HKUS\S-1-5-18\..\RunOnce: [isMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\RunOnce: [isMyWinLockerReboot] msiexec.exe /qn /x{voidguid} (User 'Default user') O4 - Global Startup: Acer VCM.lnk = ? O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll O9 - Extra button: Onderzoek - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MIF5BA~1\OFFICE11\REFIEBAR.DLL O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files\Launch Manager\dsiwmis.exe O23 - Service: ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files\WildTangent Games\App\GamesAppService.exe O23 - Service: GREGService - Acer Incorporated - C:\Program Files\Acer\Registration\GREGsvc.exe O23 - Service: Google Updateservice (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Intel® Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exe O23 - Service: Live Updater Service - Acer Incorporated - C:\Program Files\Acer\Acer Updater\UpdaterService.exe O23 - Service: Norton AntiVirus (NAV) - Symantec Corporation - C:\Program Files\Norton AntiVirus\Engine\19.9.1.14\ccSvcHst.exe O23 - Service: Norton Online Backup (NOBU) - Symantec Corporation - C:\Program Files\Symantec\Norton Online Backup\NOBuAgent.exe O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files\Acer\Acer VCM\RS_Service.exe -- End of file - 9567 bytes