Pryda

Deze is gelukt! Bijgevoegd het rapport. scan_160815-213036.txt

Overigens is de scan op ong. 85% en zijn er no threats found.

Ook in veilige modus blijft de scan steken na 1 uur scannen. Hij blijft dan staan op een bepaald target en komt niet verder. De tijd loopt wel door, dus de laptop loopt niet volledig vast.

Tot 2x toe is de computer volledig vastgelopen tijdens het scannen. Dit gebeurde beide keren na anderhalf uur scannen. Ik zal morgen nog eens proberen.

Windows Defender. Ik moet heel eerlijk zeggen dat ik niet vaak handmatig scan maar er gewoon vanuit ga dat dat programma zijn werk doet. Net liep de computer weer vast. Ik had 3 tabbladen openstaan en dan staat ie 10 seconden helemaal stil. Het processorgebruik is dan >75%, waarvan >1.000.000kb wordt gebruikt door svchost.exe (dit zie ik bij taakbeheer - processen). Kun je hier iets mee?

Results of screen317's Security Check version 1.014 --- 12/23/15 Windows 7 Service Pack 1 x64 (UAC is enabled) Internet Explorer 11 ``````````````Antivirus/Firewall Check:`````````````` WMI entry may not exist for antivirus; attempting automatic update. `````````Anti-malware/Other Utilities Check:````````` Adobe Flash Player 10 Flash Player out of Date! Adobe Reader XI ````````Process Check: objlist.exe by Laurent```````` Symantec Norton Online Backup NOBuAgent.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: 3% ````````````````````End of Log`````````````````````` Gisteren had ik een "Fysiek geheugen: 99%" waardoor mijn hele laptop wederom bevroor. Alleen uitzetten en opnieuw opstarten hielp. Ik kan nog niet alle programma's draaien die ik voordat deze situatie zich aandeed wel kon draaien.

Fixlog.txt

Bij deze Addition.txt FRST.txt

Sorry! Ik was iets te snel. Na herstarten van de laptop begon zoek.exe wel. Bijgevoegd het logje. Ik zal Farbar ook runnen. zoek-results.txt

Hey abbs, Wanneer ik op run als administrator klik en kies voor 'ja' gebeurt er verder niets. Tips?

Bij deze! log.txt

Hallo, Sinds 3 dagen vertoont mijn laptop rare kuren. Ik wist eerst niet waar het aan lag dus heb een systeemherstel uitgevoerd, dit mocht niet baten. Ondertussen ben ik er achter dat Google Chrome ervoor zorgt dat mijn hele laptop freezed. Het enige wat ik dan kan doen is het programma via veilige modus verwijderen. Omdat ik het zaakje niet helemaal vertrouw schakel ik graag jullie hulp in om uit te zoeken wat er precies aan de hand is. Bij voorbaat dank!

De manier die jij aanbracht om te updaten werkte niet. Ik krijg dan foutmelding: 3. Heb Chrome verwijderd en opnieuw geïnstalleerd en beschik ondertussen dus wel over de laatste versie. De enige site die ik na updaten bezocht heb is deze en heb nog geen last gehad van theadblock. Sample size is niet groot maar het probleem lijkt door update te zijn verholpen. AdwCleanerS2.txt

Het logje zoek-results.txt

Hierbij de zoek-results zoek-results.txt

Goedenavond, Sinds gisteren ineens last van random popups van ad by theadblock. Het is weer het standaard irritante probleem van adware (denk ik) maar helaas; scannen en verwijderen met MMAM en AdwCleaner heeft vandaag helaas niet geholpen. Bijgevoegd een RSIT logje. Kunnen jullie mij helpen? Bij voorbaat dank! log.txt

Hallo, Ik wist niet goed waar ik deze vraag moest stellen dus mocht ie fout staan, sorry daarvoor! Ik zit met het volgende probleem: Het fysiek geheugen van mijn laptop is altijd >90%. Nu bijvoorbeeld ook, het enige wat open staat is Chrome en VLC MediaPlayer. Het processorgebruik is meestal veel lager <50%. Wanneer ik bij taakbeheer / processen kijk valt mij eigenlijk niks geks op. Het probleem wordt de laatste tijd steeds erger, mijn laptop loopt vaak vast. Mijn laptop is een Samsung met windows 7, AMD A6 processor en 4 GB RAM (waarvan volgens systeemeigenschappen nog 3,46 GB beschikbaar is). Ik hoop dat jullie mij kunnen helpen om mijn laptop weer wat sneller te maken!

Nee, echt merkbaar niet. Het is alleen zo dat mijn laptop wat minder programma's tegelijk kan draaien, maar dit komt natuurlijk ook met de jaren. Ik ben in ieder geval tevreden hoe het nu is

De snelheid is er zeker wat op vooruitgegaan

# AdwCleaner v3.020 - Report created 28/02/2014 at 13:03:54 # Updated 27/02/2014 by Xplode # Operating System : Windows 7 Home Premium Service Pack 1 (64 bits) # Username : Luc - PC-VAN-LUC # Running from : C:\Users\Luc\Downloads\adwcleaner (1).exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323} Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777} ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.16518 -\\ Mozilla Firefox v -\\ Google Chrome v [ File : C:\Users\Luc\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [2265 octets] - [17/02/2014 10:57:05] AdwCleaner[R1].txt - [1055 octets] - [28/02/2014 12:42:14] AdwCleaner[s0].txt - [2148 octets] - [17/02/2014 10:58:53] AdwCleaner[s1].txt - [982 octets] - [28/02/2014 13:03:54] ########## EOF - C:\AdwCleaner\AdwCleaner[s1].txt - [1041 octets] ##########

Zoek.exe v5.0.0.0 Updated 19-February-2014 Tool run by Luc on do 27-02-2014 at 18:30:06,52. Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64 Running in: Normal Mode Internet Access Detected Launched: C:\Users\Luc\Desktop\zoek.exe [scan all users] [script inserted] ==== System Restore Info ====================== 27-2-2014 18:32:03 Zoek.exe System Restore Point Created Succesfully. ==== Empty Folders Check ====================== C:\Program Files\Common Files\Symantec Shared deleted successfully C:\PROGRA~3\Oracle deleted successfully C:\Users\Luc\AppData\Roaming\TP deleted successfully C:\Users\Luc\AppData\Local\CrashDumps deleted successfully C:\Users\Luc\AppData\Local\HoldemResources deleted successfully ==== Creating Sample_27-02-2014_1903.zip ====================== Process rundll32.exe killed Copied file C:\Users\Luc\AppData\Local\TempFullTiltPokerEuSetup.exe to sample\TempFullTiltPokerEuSetup.exe sample\TempFullTiltPokerEuSetup.exe renamed to 4751478CC086B09AC6AAD266D9B34215 C:\Users\Public\Desktop\sample_27-02-2014_1903.zip created successfully ==== Deleting CLSID Registry Keys ====================== ==== Deleting CLSID Registry Values ====================== ==== Deleting Services ====================== ==== Deleting Files \ Folders ====================== C:\Users\Luc\AppData\Local\cache deleted C:\windows\SysWow64\searchplugins deleted C:\windows\SysWow64\Extensions deleted C:\Users\Luc\AppData\Local\TempFullTiltPokerEuSetup.exe deleted ==== Files Recently Created / Modified ====================== ====== C:\windows ==== ====== C:\Users\Luc\AppData\Local\Temp ==== ====== Java Cache ===== 2014-02-18 22:33:03 C1BBA7F1278F193AB584FFF460DB5E2A 17878 ----a-w- C:\Users\Luc\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\12\eef218c-7eeea61a 2014-02-18 22:32:58 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Users\Luc\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-1b6eeb07 2014-02-18 22:32:58 1E7FFF7FA8CF3E6EEB3BDAB9FB04C4AD 99 ----a-w- C:\Users\Luc\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\17\49a00451-6.0.lap 2014-02-18 22:32:56 415FC9732A3F4D89A0E01251CD66E136 646 ----a-w- C:\Users\Luc\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\18\3cb32f52-7a68b3e6 2014-02-18 22:32:58 34FA8033B50A3F99D3AB8209C72C0ABA 6860 ----a-w- C:\Users\Luc\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\43\1ca2666b-42588618 ====== C:\windows\SysWOW64 ===== 2014-02-18 22:32:00 95E15A2DE75AB48728AB8E1911C3EDB1 264616 ----a-w- C:\windows\SysWOW64\javaws.exe 2014-02-18 22:31:27 CB3638541DCAC86EE17FA8258202E20E 175016 ----a-w- C:\windows\SysWOW64\javaw.exe 2014-02-18 22:31:27 A7871E39687EC6EE9712209DAE248B3A 96168 ----a-w- C:\windows\SysWOW64\WindowsAccessBridge-32.dll 2014-02-18 22:31:27 9395BBE294045909A025C9F3DC3D9025 174504 ----a-w- C:\windows\SysWOW64\java.exe 2014-02-14 07:00:12 3D485254E43EF4E4F707346B5731EA9A 454656 ----a-w- C:\windows\SysWOW64\vbscript.dll 2014-02-14 06:56:20 B8F28AAC003060E3B125D2447CFC19E2 164864 ----a-w- C:\windows\SysWOW64\msrating.dll 2014-02-14 06:56:20 B5B3334F177CED627C2D7FE38235B6B1 2724864 ----a-w- C:\windows\SysWOW64\mshtml.tlb 2014-02-14 06:56:16 85AC8EB265EDCAD86D651D45C5E3AB83 440832 ----a-w- C:\windows\SysWOW64\ieui.dll 2014-02-14 06:55:46 C9D1131E2163CE932DF3EAAF0EEA3673 524288 ----a-w- C:\windows\SysWOW64\msfeeds.dll 2014-02-14 06:55:45 6A06EB11F1E5BDAA795DAE7838F9FE20 43008 ----a-w- C:\windows\SysWOW64\jsproxy.dll 2014-02-14 06:55:43 7D6B20C69CC8EECB8F31D4FAF913BBE8 112128 ----a-w- C:\windows\SysWOW64\ieUnatt.exe 2014-02-14 06:55:42 408805B8083896DC95E6340F4016BEBD 61952 ----a-w- C:\windows\SysWOW64\iesetup.dll 2014-02-14 06:55:41 0E7B7C9F483300F9FF97C6A1E4BC4F57 32768 ----a-w- C:\windows\SysWOW64\iernonce.dll 2014-02-14 06:55:40 260D6B421E5551E8BA75D16B5CA90D9A 51200 ----a-w- C:\windows\SysWOW64\ieetwproxystub.dll 2014-02-14 06:55:38 0F739443669F3A48F1B2325995117BFE 553472 ----a-w- C:\windows\SysWOW64\jscript9diag.dll 2014-02-14 06:55:37 5DD49C02D059C1E6E47A8FB4A076C9B1 703488 ----a-w- C:\windows\SysWOW64\ieapfltr.dll 2014-02-14 06:55:34 34CBED7698D557DDB43F8732FBC2ACB9 2168320 ----a-w- C:\windows\SysWOW64\iertutil.dll 2014-02-14 06:55:33 9C89246184979A070B0C6CCF61C68136 1820160 ----a-w- C:\windows\SysWOW64\wininet.dll 2014-02-14 06:55:32 5D9DC6332A4FC66388B09BBE7CF53750 1156096 ----a-w- C:\windows\SysWOW64\urlmon.dll 2014-02-14 06:55:29 40E68599FE3A10F816217D3789FCE74E 1964032 ----a-w- C:\windows\SysWOW64\inetcpl.cpl 2014-02-14 06:55:23 79FA7D8B488F90EDE325963379A6F738 11266048 ----a-w- C:\windows\SysWOW64\ieframe.dll 2014-02-14 06:55:20 C863E5A2417DF0F2A31ED32C3B2CB23F 17103872 ----a-w- C:\windows\SysWOW64\mshtml.dll 2014-02-14 06:55:18 99280392987A1A96C756A9F38C4CE396 4244480 ----a-w- C:\windows\SysWOW64\jscript9.dll ====== C:\windows\SysWOW64\drivers ===== ====== C:\windows\Sysnative ===== 2014-02-16 20:46:22 2167A643DE043B2E279276693F22614F 413680 ----a-w- C:\windows\Sysnative\FNTCACHE.DAT 2014-02-14 07:00:11 F67C7D80745379DC4C5332EFFE5AC696 548864 ----a-w- C:\windows\Sysnative\vbscript.dll 2014-02-14 06:56:21 94C59DD02BC7EA0E421055B9946CA861 2724864 ----a-w- C:\windows\Sysnative\mshtml.tlb 2014-02-14 06:56:19 1D1D7F52EC84294859642A4309FE648E 195584 ----a-w- C:\windows\Sysnative\msrating.dll 2014-02-14 06:56:15 63B5E990896BA81D604032A48CC80A5C 574976 ----a-w- C:\windows\Sysnative\ieui.dll 2014-02-14 06:55:49 FD08F8BA2437A85F500EFFE3FD3158A6 33792 ----a-w- C:\windows\Sysnative\iernonce.dll 2014-02-14 06:55:49 E77092C38028EB0A5C461B3436E0A6D5 4096 ----a-w- C:\windows\Sysnative\ieetwcollectorres.dll 2014-02-14 06:55:49 27516B54E116D5EF8B0129B5C829A87C 218624 ----a-w- C:\windows\Sysnative\ie4uinit.exe 2014-02-14 06:55:46 99ED8FBAFD325550D07A32664D9E3CC8 53760 ----a-w- C:\windows\Sysnative\jsproxy.dll 2014-02-14 06:55:45 CDE728C8FB1D6E132CED44835FA44C87 627200 ----a-w- C:\windows\Sysnative\msfeeds.dll 2014-02-14 06:55:42 338415F2E9A188875B6E43B5269620B0 139264 ----a-w- C:\windows\Sysnative\ieUnatt.exe 2014-02-14 06:55:41 C1E2C16D58D76323800C3EE5E2C5095A 66048 ----a-w- C:\windows\Sysnative\iesetup.dll 2014-02-14 06:55:40 FCFAEDF0AA1A78A1875FDB798598408B 48640 ----a-w- C:\windows\Sysnative\ieetwproxystub.dll 2014-02-14 06:55:40 E129D34089E70215B65EA611F802FA9A 111616 ----a-w- C:\windows\Sysnative\ieetwcollector.exe 2014-02-14 06:55:38 D016F5092E4FFC41147E8555A71D2DDE 23170048 ----a-w- C:\windows\Sysnative\mshtml.dll 2014-02-14 06:55:38 3906C9640406FC0FC00A324947C74893 708608 ----a-w- C:\windows\Sysnative\jscript9diag.dll 2014-02-14 06:55:37 F348B2D0983C91392632B4291C517AA4 817664 ----a-w- C:\windows\Sysnative\ieapfltr.dll 2014-02-14 06:55:33 6300AD525D639CECBB3D144B6D7B30F9 2765824 ----a-w- C:\windows\Sysnative\iertutil.dll 2014-02-14 06:55:32 263B6E451526A90FF8B1CEC759F22956 2334208 ----a-w- C:\windows\Sysnative\wininet.dll 2014-02-14 06:55:31 22874047B810B5B174C68ACD7C0B6510 1393664 ----a-w- C:\windows\Sysnative\urlmon.dll 2014-02-14 06:55:28 83296DE8CFFEADA636DCC1AB2E3BF643 2041856 ----a-w- C:\windows\Sysnative\inetcpl.cpl 2014-02-14 06:55:26 DB02F4D37E5F7F07A0D0F9FAA68249EE 13051392 ----a-w- C:\windows\Sysnative\ieframe.dll 2014-02-14 06:55:13 5922EEA922D3AD686342F866CAEE851F 5768704 ----a-w- C:\windows\Sysnative\jscript9.dll ====== C:\windows\Sysnative\drivers ===== 2014-02-16 21:42:14 0BB97D43299910CBFBA59C461B99B910 25928 ----a-w- C:\windows\Sysnative\drivers\mbam.sys ====== C:\windows\Tasks ====== ====== C:\windows\Temp ====== ======= C:\Program Files ===== 2014-02-16 20:56:57 -------- d-----w- C:\Program Files\trend micro ======= C:\PROGRA~2 ===== 2014-02-25 10:03:46 -------- d-----w- C:\PROGRA~2\ESET 2014-01-31 21:42:17 -------- d-----w- C:\PROGRA~2\PokerStrategy.com ======= C: ===== ====== C:\Users\Luc\AppData\Roaming ====== 2014-02-26 15:52:49 -------- d-----r- C:\Users\Luc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\BT Devices 2014-02-16 20:48:34 AA6A28FFC14ECC89719A854F96DDF70A 109784 ----a-w- C:\Users\Luc\AppData\Local\GDIPFONTCACHEV1.DAT 2014-02-16 20:45:03 54B883F1628C079D2488CD4FAC120324 457048 ----a-w- C:\windows\serviceprofiles\Localservice\AppData\Local\FontCache3.0.0.0.dat 2014-01-31 21:43:00 -------- d-----w- C:\Users\Luc\AppData\Local\ICMTrainerLight 2014-01-31 21:42:39 -------- d-----w- C:\Users\Luc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PokerStrategy ====== C:\Users\Luc ====== 2014-02-25 10:02:56 E8D3E34FFDAF21DF7C09CBBBA5763237 2347384 ----a-w- C:\Users\Luc\Downloads\esetsmartinstaller_enu.exe 2014-02-22 15:53:52 C8266C162C8FB45B003B771F8B07BFE3 61682384 ----a-w- C:\Users\Luc\Downloads\PT-Install-v4.10.9.exe 2014-02-17 09:55:36 54DB2B8C60F04C5ADE6D711D47EABA75 1166132 ----a-w- C:\Users\Luc\Desktop\adwcleaner.exe 2014-02-17 09:53:20 54DB2B8C60F04C5ADE6D711D47EABA75 1166132 ----a-w- C:\Users\Luc\Downloads\adwcleaner.exe 2014-02-16 21:39:54 683FDD3D773C58B262DC07CD0C6CE938 10285040 ----a-w- C:\Users\Luc\Downloads\mbam-setup-1.75.0.1300.exe 2014-02-16 20:56:32 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Luc\Desktop\RSITx64.exe 2014-02-16 20:55:45 662C39FC1E27131551D557862CEC47F0 935175 ----a-w- C:\Users\Luc\Downloads\RSITx64.exe 2014-02-16 16:36:04 5C68A2107DBD9B08CACE3130FE55B062 921000 ----a-w- C:\Users\Luc\Downloads\chromeinstall-7u51.exe ====== C: exe-files == 2014-02-25 10:03:58 CE0D0B11986FD2C0247AE88A59B36A6E 579904 ----a-w- C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineCmdLineScanner.exe 2014-02-25 10:03:58 7ABF8849E76732C357F419B1AF5668F2 546944 ----a-w- C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineCmdLineScannerA.exe 2014-02-25 10:03:58 6D4ED8A5C071F29730A6F0B943FEEA3A 122584 ----a-w- C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerUninstaller.exe 2014-02-25 10:03:57 BDB7D97012F9B3102DB72AA76A24942A 546944 ----a-w- C:\Program Files (x86)\ESET\ESET Online Scanner\OnlineScannerApp.exe 2014-02-25 10:03:57 7C9EEC809FB9CDA26EFC245C001EA980 2347384 ----a-w- C:\Program Files (x86)\ESET\ESET Online Scanner\ESETSmartInstaller.exe 2014-02-25 10:02:56 E8D3E34FFDAF21DF7C09CBBBA5763237 2347384 ----a-w- C:\Users\Luc\Downloads\esetsmartinstaller_enu.exe 2014-02-22 15:53:52 C8266C162C8FB45B003B771F8B07BFE3 61682384 ----a-w- C:\Users\Luc\Downloads\PT-Install-v4.10.9.exe 2014-02-22 15:46:12 A4F0C36642681927FA53CD6A90CA2975 7620312 ----a-w- C:\Users\Luc\AppData\Local\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\33.0.1750.117\33.0.1750.117_32.0.1700.107_chrome_updater.exe === C: other files == 2014-02-27 18:04:10 D9E8987FE815635C93F4D4A232C25AC4 22672611 ----a-w- C:\Users\Public\Desktop\sample_27-02-2014_1903.zip ==== Startup Registry Enabled ====================== [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="%ProgramFiles%\Windows\Sidebar.exe /autoRun" [HKEY_USERS\S-1-5-21-3520410495-254977392-370578606-1000\Software\Microsoft\Windows\CurrentVersion\Run] "Google Update"="C:\Users\Luc\AppData\Local\Google\Update\GoogleUpdate.exe /c" "msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background" "Spotify Web Helper"="C:\Users\Luc\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" "Spotify"="C:\Users\Luc\AppData\Roaming\Spotify\spotify.exe /uri spotify:autostart" "uTorrent"="C:\Users\Luc\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED" [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "FlashPlayerUpdate"="C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_9_900_170_ActiveX.exe -update activex" [HKEY_USERS\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\RunOnce] "mctadmin"="C:\Windows\System32\mctadmin.exe" [HKEY_USERS\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\RunOnce] "FlashPlayerUpdate"="C:\windows\SysWOW64\Macromed\Flash\FlashUtil32_11_9_900_170_ActiveX.exe -update activex" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "APSDaemon"="C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" "QuickTime Task"="C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime" "AVG_UI"="C:\Program Files (x86)\AVG\AVG2014\avgui.exe /TRAYONLY" "Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" "BCSSync"="C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe /DelayServices" "SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe" [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "Google Update"="C:\Users\Luc\AppData\Local\Google\Update\GoogleUpdate.exe /c" "msnmsgr"="C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background" "Spotify Web Helper"="C:\Users\Luc\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" "Spotify"="C:\Users\Luc\AppData\Roaming\Spotify\spotify.exe /uri spotify:autostart" "uTorrent"="C:\Users\Luc\AppData\Roaming\uTorrent\uTorrent.exe /MINIMIZED" ==== Startup Registry Enabled x64 ====================== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "MSC"="c:\Program Files\Microsoft Security Client\msseces.exe -hide -runkey" "Cm106Sound"="C:\windows\syswow64\RunDll32.exe C:\windows\Syswow64\cm106.dll,CMICtrlWnd" ==== Task Scheduler Jobs ====================== C:\windows\tasks\Adobe Flash Player Updater.job --a------ C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [21-02-2014 11:22] C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3520410495-254977392-370578606-1000Core.job --a------ C:\Users\Luc\AppData\Local\Google\Update\GoogleUpdate.exe [17-08-2012 16:13] C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-3520410495-254977392-370578606-1000UA.job --a------ C::C:\Users\Luc\AppData\Local\Google\Update\GoogleUpdate.exe [] ==== Other Scheduled Tasks ====================== "C:\windows\SysNative\tasks\Adobe Flash Player Updater" [C:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe] "C:\windows\SysNative\tasks\advSRS5" ["C:\Program Files (x86)\Samsung\Samsung Recovery Solution 5\WCScheduler.exe"] "C:\windows\SysNative\tasks\CCleanerSkipUAC" ["C:\Program Files\CCleaner\CCleaner.exe"] "C:\windows\SysNative\tasks\Easy Software Manager Agent" ["%ProgramFiles(x86)%\Samsung\Easy Software Manager\SWMAgent.exe"] "C:\windows\SysNative\tasks\EasyBatteryManager" ["%ProgramFiles(x86)%\Samsung\Easy Settings\EBM\EasyBatteryMgr4.exe"] "C:\windows\SysNative\tasks\EasyDisplayMgr" ["C:\Program Files (x86)\Samsung\Easy Settings\dmhkcore.exe"] "C:\windows\SysNative\tasks\EasySpeedUpManager" ["%programfiles(x86)%\Samsung\Easy Settings\EasySpeedUpManager.exe"] "C:\windows\SysNative\tasks\EasySupportCenter" ["%ProgramFiles%\Samsung\Easy Support Center\SamoyedAgent.exe"] "C:\windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-3520410495-254977392-370578606-1000Core" [C:\Users\Luc\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\windows\SysNative\tasks\GoogleUpdateTaskUserS-1-5-21-3520410495-254977392-370578606-1000UA" [C:\Users\Luc\AppData\Local\Google\Update\GoogleUpdate.exe] "C:\windows\SysNative\tasks\MirageAgent" [C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe] "C:\windows\SysNative\tasks\MovieColorEnhancer" ["%programfiles(x86)%\Samsung\Easy Settings\MovieColorEnhancer.exe"] "C:\windows\SysNative\tasks\Norton WSC Integration" ["C:\Program Files (x86)\Norton Internet Security\Engine\19.9.0.9\WSCStub.exe"] "C:\windows\SysNative\tasks\SCCSpeedBoot" ["%programfiles(x86)%\Samsung\Easy Settings\SCCSpeedBoot.exe"] "C:\windows\SysNative\tasks\SidebarExecute" [C:\Program Files\Windows Sidebar\sidebar.exe] "C:\windows\SysNative\tasks\SmartSetting" ["%programfiles(x86)%\Samsung\Easy Settings\SmartSetting.exe"] "C:\windows\SysNative\tasks\WLANStartup" ["%programfiles(x86)%\Samsung\Easy Settings\WLANStartup.exe"] "C:\windows\SysNative\tasks\Apple\AppleSoftwareUpdate" [C:\Program Files (x86)\Apple Software Update\SoftwareUpdate.exe] "C:\windows\SysNative\tasks\Norton Internet Security\Norton Error Analyzer" [C:\Program Files (x86)\Norton Internet Security\Engine\19.9.0.9\SymErr.exe] "C:\windows\SysNative\tasks\Norton Internet Security\Norton Error Processor" [C:\Program Files (x86)\Norton Internet Security\Engine\19.9.0.9\SymErr.exe] "C:\windows\SysNative\tasks\OfficeSoftwareProtectionPlatform\SvcRestartTask" [%systemroot%\system32\sc.exe start osppsvc] ==== Chrome Look ====================== HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions koalekbhpbggkcfhkkbolikjoaobbppi - C:\Program Files (x86)\PutLockerDownloader\PutLockerDownloader10.crx[] AdBlock - Luc\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom ==== Set IE to Default ====================== Old Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] No DefaultScope Set For HKCU New Values: [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main] "Start Page"="http://www.google.com" [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes] "DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}" ==== All HKCU SearchScopes ====================== HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes {0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE10SR" {6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}" ==== Deleting Registry Keys ====================== HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\koalekbhpbggkcfhkkbolikjoaobbppi deleted successfully ==== Empty IE Cache ====================== C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Luc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\Users\Luc\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully C:\windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\windows\sysWoW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully C:\windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully ==== Empty FireFox Cache ====================== No FireFox Cache found ==== Empty Chrome Cache ====================== C:\Users\Luc\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully ==== Empty All Flash Cache ====================== Flash Cache Emptied Successfully ==== Empty All Java Cache ====================== Java Cache cleared successfully ==== C:\zoek_backup content ====================== C:\zoek_backup (files=16 folders=41 24267919 bytes) ==== Empty Temp Folders ====================== C:\Users\Default\AppData\Local\Temp emptied successfully C:\Users\Default User\AppData\Local\Temp emptied successfully C:\Users\Luc\AppData\Local\Temp will be emptied at reboot C:\Users\postgres\AppData\Local\Temp emptied successfully C:\windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully C:\windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully C:\windows\Temp will be emptied at reboot ==== After Reboot ====================== ==== Empty Temp Folders ====================== C:\windows\Temp successfully emptied C:\Users\Luc\AppData\Local\Temp successfully emptied ==== Empty Recycle Bin ====================== C:\$RECYCLE.BIN successfully emptied ==== EOF on do 27-02-2014 at 19:28:43,47 ======================

ESETSmartInstaller@High as downloader log: all ok # version=8 # OnlineScannerApp.exe=1.0.0.1 # OnlineScanner.ocx=1.0.0.6920 # api_version=3.0.2 # EOSSerial=c4f5a1011b9dd3448db53cb5525bab42 # engine=17214 # end=finished # remove_checked=true # archives_checked=true # unwanted_checked=true # unsafe_checked=true # antistealth_checked=true # utc_time=2014-02-25 07:35:08 # local_time=2014-02-25 08:35:08 (+0100, West-Europa (standaardtijd)) # country="Netherlands" # lang=1033 # osver=6.1.7601 NT Service Pack 1 # compatibility_mode=5893 16776574 100 94 18665578 144986758 0 0 # scanned=208037 # found=3 # cleaned=3 # scan_time=34141 sh=DD6E088E22874B283348A15DB5159C7B20CC6D22 ft=1 fh=fe9dda6ca79832a6 vn="Win32/Bundled.Toolbar.Google.D potentially unsafe application (deleted - quarantined)" ac=C fn="C:\Users\Luc\Downloads\ccsetup407.exe" sh=19BC5798800953C9F49CD6C797707E3FA3BE6711 ft=1 fh=421b349fee7ad5b9 vn="Win32/Packed.Autoit.H potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\Luc\Downloads\Sharkystrator_ins.exe" sh=410A1A7D02E0A6F6802541F4CFD53B3D67036C16 ft=1 fh=0598e52cdcec8b0d vn="a variant of Win32/4Shared.D potentially unwanted application (deleted - quarantined)" ac=C fn="C:\Users\Luc\Downloads\The Knowledge-Creating Company How Japanese Companies Create th PDF.exe" - - - Updated - - - Tevens wil ik laten weten dat mijn laptop al een stukje sneller is geworden, bedankt daarvoor! Het valt me echter wel op dat processorgebruik vaak best hoog is (~50 tot 100%) terwijl ik niet al te veel programma's tegelijk gebruik.

Wanneer ik ComboFix laat scannen stopt hij halverwege en loopt heel mijn laptop vast. Ctrl-Alt-Del werkt dan ook niet meer, de enige manier waarop ik hem uit kan zetten is de power-knop. Er gaat dus iets mis.

Ik merk wel wat verschil maar het is nog niet als een maand terug. Misschien is het ook handig om te vermelden dat de laptop vorige week zomaar uitviel en een blauw scherm kreeg. Heb toen de laptop opnieuw opgestart en daarna geen blauw scherm meer gehad. In ieder geval al wel bedankt voor het verwijderen van de malware

# AdwCleaner v3.018 - Report created 17/02/2014 at 10:58:53 # Updated 28/01/2014 by Xplode # Operating System : Windows 7 Home Premium Service Pack 1 (64 bits) # Username : Luc - PC-VAN-LUC # Running from : C:\Users\Luc\Desktop\adwcleaner.exe # Option : Clean ***** [ Services ] ***** ***** [ Files / Folders ] ***** Folder Deleted : C:\ProgramData\Babylon Folder Deleted : C:\Users\Luc\AppData\Local\PutLockerDownloader Folder Deleted : C:\Users\Luc\AppData\Roaming\Babylon Folder Deleted : C:\Users\Luc\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\PutLockerDownloader.com ***** [ Shortcuts ] ***** ***** [ Registry ] ***** Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap Key Deleted : HKLM\SOFTWARE\Classes\PutLockerDownloader Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasapi32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\au__rasmancs Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\MyBabylontb_RASMANCS Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\PutlockerDownloader_RASAPI32 Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\PutlockerDownloader_RASMANCS Key Deleted : HKCU\Software\5c558d88e235eb43 Key Deleted : HKLM\SOFTWARE\5c558d88e235eb43 Key Deleted : HKLM\SOFTWARE\Classes\Interface\{79FB5FC8-44B9-4AF5-BADD-CCE547F953E5} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{014DB5FA-EAFB-4592-A95B-F44D3EE87FA9} Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9} Key Deleted : HKLM\Software\Babylon Key Deleted : HKLM\Software\DataMngr ***** [ Browsers ] ***** -\\ Internet Explorer v11.0.9600.16518 -\\ Mozilla Firefox v -\\ Google Chrome v [ File : C:\Users\Luc\AppData\Local\Google\Chrome\User Data\Default\preferences ] ************************* AdwCleaner[R0].txt - [2265 octets] - [17/02/2014 10:57:05] AdwCleaner[s0].txt - [2008 octets] - [17/02/2014 10:58:53] ########## EOF - C:\AdwCleaner\AdwCleaner[s0].txt - [2068 octets] ##########