Ga naar inhoud

Windows 7 computer vertoont verschillende gebreken

JANMATTHEUSSEN
 Delen

Aanbevolen berichten

kape Grootmeester

kape

Geplaatst:
Geplaatst:

Download AdwCleaner by Xplode naar je bureaublad.

A3qkP9RCEAAOZhQ.jpg

  • Sluit alle openstaande vensters.
  • Vista en Windows 7 gebruikers: Rechtsklik op AdwCleaner en selecteer als Administrator uitvoeren...
  • Voor XP: Gewoon dubbelklikken op AdwCleaner.
  • Klik vervolgens op Verwijderen.
  • Klik bij AdwCleaner – Informatie op OK
  • Klik bij AdwCleaner – Herstarten Noodzakelijk op OK

Dat tijdens de actie de snelkoppelingen verdwijnen, is normaal. Nadat de PC opnieuw is opgestart, opent een logfile. Post de inhoud van dit log in je volgende bericht.

Open een kladblokbestand.

Kopieer en plak daarin de onderstaande vetgedrukte tekst.

Folder::

d:\users\JanM\AppData\Roaming\OpenCandy

d:\program files (x86)\ask.com

Registry::

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"ApnUpdater"=-

la dit bestand op je bureaublad op als CFScript.

Sleep CFScript.txt in ComboFix.exe

Dit zal ComboFix doen herstarten. Start opnieuw op als dat gevraagd wordt.

Post na herstart de inhoud van de Combofix.txt in je volgende bericht.

Link naar reactie
Delen op andere sites
  • Reacties 21
  • Aangemaakt
  • Laatste reactie

Beste reacties in dit topic

Populaire dagen

Beste reacties in dit topic

Populaire dagen

Geplaatste afbeeldingen

JANMATTHEUSSEN Bijdrager

JANMATTHEUSSEN

Geplaatst:
  • Auteur
Geplaatst:

# AdwCleaner v2.007 - Verslag gemaakt op 09/11/2012 om 11:20:32

# Geactualiseerd op 06/11/2012 door Xplode

# Besturingssysteem : Windows 7 Ultimate Service Pack 1 (64 bits)

# Gebruiker : JanM - JANM-PC

# Opstarten Modus : Normale modus

# Gelanceerd vanaf : D:\Users\JanM\Desktop\adwcleaner.exe

# Optie [Verwijderen]

***** [Diensten] *****

***** [Files / Mappen] *****

Map Verwijdert : D:\Program Files (x86)\Ask.com

Map Verwijdert : D:\Users\IRENE.JanM-PC\AppData\LocalLow\AskToolbar

Map Verwijdert : D:\Users\JanM\AppData\LocalLow\AskToolbar

Map Verwijdert : D:\Users\JanM\AppData\Roaming\OpenCandy

Map Verwijdert : D:\Users\JanM\Documents\MyWebSearch

***** [Register] *****

Sleutel Verwijdert : HKCU\Software\APN

Sleutel Verwijdert : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}

Sleutel Verwijdert : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}

Sleutel Verwijdert : HKLM\Software\APN

Sleutel Verwijdert : HKLM\Software\AskToolbar

Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}

Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}

Sleutel Verwijdert : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}

Sleutel Verwijdert : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}

Sleutel Verwijdert : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ApnUpdater

Waarde Verwijdert : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]

***** [browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Het register bevat geen enkele ongeoorloofde invoer.

*************************

AdwCleaner[R1].txt - [1993 octets] - [09/11/2012 11:20:12]

AdwCleaner[s1].txt - [1967 octets] - [09/11/2012 11:20:32]

########## EOF - D:\AdwCleaner[s1].txt - [2027 octets] ##########

# AdwCleaner v2.007 - Verslag gemaakt op 09/11/2012 om 11:20:12

# Geactualiseerd op 06/11/2012 door Xplode

# Besturingssysteem : Windows 7 Ultimate Service Pack 1 (64 bits)

# Gebruiker : JanM - JANM-PC

# Opstarten Modus : Normale modus

# Gelanceerd vanaf : D:\Users\JanM\Desktop\adwcleaner.exe

# Optie [Zoeken]

***** [Diensten] *****

***** [Files / Mappen] *****

Map Aanwezig : D:\Program Files (x86)\Ask.com

Map Aanwezig : D:\Users\IRENE.JanM-PC\AppData\LocalLow\AskToolbar

Map Aanwezig : D:\Users\JanM\AppData\LocalLow\AskToolbar

Map Aanwezig : D:\Users\JanM\AppData\Roaming\OpenCandy

Map Aanwezig : D:\Users\JanM\Documents\MyWebSearch

***** [Register] *****

Sleutel Aanwezig : HKCU\Software\APN

Sleutel Aanwezig : HKCU\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}

Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\{79A765E1-C399-405B-85AF-466F52E918B0}

Sleutel Aanwezig : HKLM\Software\APN

Sleutel Aanwezig : HKLM\Software\AskToolbar

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{A5AA24EA-11B8-4113-95AE-9ED71DEAF12A}

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{006EE092-9658-4FD6-BD8E-A21A348E59F5}

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\CLSID\{AE07101B-46D4-4A98-AF68-0333EA26E113}

Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ApnUpdater

Waarde Aanwezig : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{AE07101B-46D4-4A98-AF68-0333EA26E113}]

***** [browsers] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] Het register bevat geen enkele ongeoorloofde invoer.

*************************

AdwCleaner[R1].txt - [1870 octets] - [09/11/2012 11:20:12]

########## EOF - D:\AdwCleaner[R1].txt - [1930 octets] ##########

ComboFix 12-11-09.02 - JanM 09/11/2012 11:37:29.4.8 - x64

Microsoft Windows 7 Ultimate 6.1.7601.1.1252.32.1043.18.6135.4433 [GMT 1:00]

Gestart vanuit: d:\users\JanM\Desktop\ComboFix.exe

gebruikte Opdracht switches :: d:\users\JanM\Desktop\CFScript.txt

AV: McAfee VirusScan Enterprise *Disabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}

SP: McAfee VirusScan Enterprise Antispyware Module *Disabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

(((((((((((((((((((( Bestanden Gemaakt van 2012-10-09 to 2012-11-09 ))))))))))))))))))))))))))))))

.

.

2012-11-09 10:41 . 2012-11-09 10:41 -------- d-----w- d:\users\IRENE.JanM-PC\AppData\Local\temp

2012-11-09 10:41 . 2012-11-09 10:41 -------- d-----w- d:\users\Default\AppData\Local\temp

2012-11-08 23:21 . 2012-11-08 23:21 -------- d-----w- d:\programdata\Macrovision

2012-11-08 23:07 . 2012-11-08 23:07 -------- d-----w- d:\programdata\FLEXnet

2012-11-08 22:02 . 2012-11-08 22:02 -------- d-----w- D:\Gladinet

2012-11-08 21:45 . 2012-11-08 21:45 -------- d-----w- d:\programdata\Zeon

2012-11-08 15:37 . 2012-11-08 15:37 -------- d--h--r- d:\users\Public\Libraries

2012-11-08 13:26 . 2012-11-08 13:26 53248 ----a-r- d:\users\JanM\AppData\Roaming\Microsoft\Installer\{F5D84887-8A6F-4993-8560-B3AA44CB620D}\ARPPRODUCTICON.exe

2012-11-08 13:13 . 2012-11-08 13:13 -------- d-----w- d:\users\JanM\AppData\Roaming\Avery

2012-11-07 22:44 . 2012-11-07 22:44 -------- d-----w- d:\users\JanM\AppData\Local\VS Revo Group

2012-11-07 12:29 . 2012-11-07 21:16 262144 ----a-w- d:\windows\ServiceProfiles\NetworkService\msmqlog.bin

2012-11-07 12:27 . 2012-11-07 21:13 -------- d-----w- D:\inetpub

2012-11-07 02:38 . 2012-11-07 02:38 -------- d-----w- d:\users\JanM\AppData\Roaming\Uniblue

2012-11-07 02:38 . 2012-11-07 02:38 -------- d-----w- d:\program files (x86)\Uniblue

2012-11-07 02:09 . 2012-11-07 02:09 -------- d-----w- d:\program files\log

2012-11-06 07:21 . 2012-10-12 07:19 9291768 ----a-w- d:\programdata\Microsoft\Windows Defender\Definition Updates\{94683E7A-AF15-4B74-B85E-C80A97D50800}\mpengine.dll

2012-11-02 23:15 . 2012-11-02 23:15 -------- d-----w- d:\users\JanM\AppData\Roaming\Malwarebytes

2012-11-02 23:14 . 2012-11-02 23:14 -------- d-----w- d:\programdata\Malwarebytes

2012-11-02 23:14 . 2012-11-02 23:33 -------- d-----w- d:\program files (x86)\Malwarebytes' Anti-Malware

2012-11-02 23:14 . 2012-09-29 18:54 25928 ----a-w- d:\windows\system32\drivers\mbam.sys

2012-11-02 13:39 . 2012-09-24 22:16 95208 ----a-w- d:\windows\SysWow64\WindowsAccessBridge-32.dll

2012-11-02 10:58 . 2012-11-02 10:58 -------- d-----w- d:\users\JanM\AppData\Roaming\Apple Computer

2012-10-31 08:11 . 2012-10-31 08:11 96768 ----a-w- d:\windows\SysWow64\sspicli.dll

2012-10-31 08:11 . 2012-10-31 08:11 458712 ----a-w- d:\windows\system32\drivers\cng.sys

2012-10-31 08:11 . 2012-10-31 08:11 340992 ----a-w- d:\windows\system32\schannel.dll

2012-10-31 08:11 . 2012-10-31 08:11 307200 ----a-w- d:\windows\system32\ncrypt.dll

2012-10-31 08:11 . 2012-10-31 08:11 247808 ----a-w- d:\windows\SysWow64\schannel.dll

2012-10-31 08:11 . 2012-10-31 08:11 220160 ----a-w- d:\windows\SysWow64\ncrypt.dll

2012-10-31 08:11 . 2012-10-31 08:11 22016 ----a-w- d:\windows\SysWow64\secur32.dll

2012-10-31 08:11 . 2012-10-31 08:11 154480 ----a-w- d:\windows\system32\drivers\ksecpkg.sys

2012-10-31 08:11 . 2012-10-31 08:11 1448448 ----a-w- d:\windows\system32\lsasrv.dll

2012-10-30 20:28 . 2012-10-30 23:07 -------- d-----w- d:\users\JanM\AppData\Roaming\nvda

2012-10-30 20:27 . 2012-10-30 22:09 -------- d-----w- d:\program files (x86)\NVDA

2012-10-30 20:23 . 2012-10-30 20:23 -------- d-----w- d:\users\JanM\AppData\Local\Adobe_Systems_Incorporate

2012-10-29 17:56 . 2012-10-29 17:56 -------- d-----w- d:\users\JanM\AppData\Local\Anwsoft

2012-10-25 10:39 . 2012-10-30 23:07 -------- d-----w- d:\program files (x86)\MyTomTom 3

2012-10-24 11:55 . 2012-10-24 11:55 -------- d-----w- d:\users\IRENE.JanM-PC\AppData\Local\Diagnostics

2012-10-22 14:50 . 2012-10-22 14:50 -------- d-----w- d:\users\JanM\AppData\Roaming\Lite

2012-10-16 16:57 . 2012-10-16 16:58 -------- d-----w- d:\program files (x86)\Common Files\Common Toolkit Suite

2012-10-10 20:51 . 2012-08-24 18:05 220160 ----a-w- d:\windows\system32\wintrust.dll

2012-10-10 20:51 . 2012-08-24 16:57 172544 ----a-w- d:\windows\SysWow64\wintrust.dll

2012-10-10 20:51 . 2012-09-14 19:19 2048 ----a-w- d:\windows\system32\tzres.dll

2012-10-10 20:51 . 2012-09-14 18:28 2048 ----a-w- d:\windows\SysWow64\tzres.dll

2012-10-10 20:51 . 2012-08-11 00:56 715776 ----a-w- d:\windows\system32\kerberos.dll

2012-10-10 20:51 . 2012-08-10 23:56 542208 ----a-w- d:\windows\SysWow64\kerberos.dll

2012-10-10 20:51 . 2012-06-02 05:41 184320 ----a-w- d:\windows\system32\cryptsvc.dll

2012-10-10 20:51 . 2012-06-02 05:41 140288 ----a-w- d:\windows\system32\cryptnet.dll

2012-10-10 20:51 . 2012-06-02 05:41 1464320 ----a-w- d:\windows\system32\crypt32.dll

2012-10-10 20:51 . 2012-06-02 04:36 140288 ----a-w- d:\windows\SysWow64\cryptsvc.dll

2012-10-10 20:51 . 2012-06-02 04:36 1159680 ----a-w- d:\windows\SysWow64\crypt32.dll

2012-10-10 20:51 . 2012-06-02 04:36 103936 ----a-w- d:\windows\SysWow64\cryptnet.dll

.

.

.

((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))

.

2012-11-07 19:05 . 2012-05-05 19:54 388096 ----a-r- d:\users\JanM\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

2012-11-07 13:29 . 2012-04-28 18:44 73656 ----a-w- d:\windows\SysWow64\FlashPlayerCPLApp.cpl

2012-11-07 13:29 . 2012-04-28 18:44 697272 ----a-w- d:\windows\SysWow64\FlashPlayerApp.exe

2012-11-04 16:04 . 2012-04-05 20:32 57960 ----a-w- d:\windows\system32\OpenCL.dll

2012-10-12 18:09 . 2012-04-30 11:31 25472 ----a-w- d:\windows\system32\RegistryDefragBootTime.exe

2012-10-10 21:26 . 2012-04-24 13:07 65309168 ----a-w- d:\windows\system32\MRT.exe

2012-09-28 14:37 . 2012-09-28 14:37 221696 ----a-w- d:\windows\system32\clinfo.exe

2012-09-28 14:36 . 2012-09-28 14:36 75776 ----a-w- d:\windows\system32\OpenVideo64.dll

2012-09-28 14:36 . 2012-09-28 14:36 65536 ----a-w- d:\windows\SysWow64\OpenVideo.dll

2012-09-28 14:36 . 2012-09-28 14:36 63488 ----a-w- d:\windows\system32\OVDecode64.dll

2012-09-28 14:36 . 2012-09-28 14:36 56320 ----a-w- d:\windows\SysWow64\OVDecode.dll

2012-09-28 14:36 . 2012-09-28 14:36 32635904 ----a-w- d:\windows\system32\amdocl64.dll

2012-09-28 14:32 . 2012-09-28 14:32 27341824 ----a-w- d:\windows\SysWow64\amdocl.dll

2012-09-13 13:37 . 2012-06-17 20:05 746984 ----a-w- d:\windows\SysWow64\deployJava1.dll

2012-09-13 13:37 . 2012-06-17 20:05 821736 ----a-w- d:\windows\SysWow64\npDeployJava1.dll

2012-09-11 20:31 . 2012-09-11 20:31 574464 ----a-w- d:\windows\system32\d3d10level9.dll

2012-09-11 20:31 . 2012-09-11 20:31 490496 ----a-w- d:\windows\SysWow64\d3d10level9.dll

2012-09-11 20:31 . 2012-09-11 20:31 376688 ----a-w- d:\windows\system32\drivers\netio.sys

2012-09-11 20:31 . 2012-09-11 20:31 288624 ----a-w- d:\windows\system32\drivers\FWPKCLNT.SYS

2012-09-11 20:31 . 2012-09-11 20:31 1913200 ----a-w- d:\windows\system32\drivers\tcpip.sys

2012-09-11 20:31 . 2012-09-11 20:31 950128 ----a-w- d:\windows\system32\drivers\ndis.sys

2012-09-11 20:31 . 2012-09-11 20:31 41472 ----a-w- d:\windows\system32\drivers\RNDISMP.sys

2012-08-24 11:15 . 2012-09-22 12:17 17810944 ----a-w- d:\windows\system32\mshtml.dll

2012-08-24 10:39 . 2012-09-22 12:17 10925568 ----a-w- d:\windows\system32\ieframe.dll

2012-08-24 10:31 . 2012-09-22 12:18 2312704 ----a-w- d:\windows\system32\jscript9.dll

2012-08-24 10:22 . 2012-09-22 12:18 1346048 ----a-w- d:\windows\system32\urlmon.dll

2012-08-24 10:21 . 2012-09-22 12:18 1392128 ----a-w- d:\windows\system32\wininet.dll

2012-08-24 10:20 . 2012-09-22 12:18 1494528 ----a-w- d:\windows\system32\inetcpl.cpl

2012-08-24 10:18 . 2012-09-22 12:18 237056 ----a-w- d:\windows\system32\url.dll

2012-08-24 10:17 . 2012-09-22 12:18 85504 ----a-w- d:\windows\system32\jsproxy.dll

2012-08-24 10:14 . 2012-09-22 12:18 173056 ----a-w- d:\windows\system32\ieUnatt.exe

2012-08-24 10:14 . 2012-09-22 12:18 816640 ----a-w- d:\windows\system32\jscript.dll

2012-08-24 10:13 . 2012-09-22 12:18 599040 ----a-w- d:\windows\system32\vbscript.dll

2012-08-24 10:12 . 2012-09-22 12:18 2144768 ----a-w- d:\windows\system32\iertutil.dll

2012-08-24 10:11 . 2012-09-22 12:18 729088 ----a-w- d:\windows\system32\msfeeds.dll

2012-08-24 10:10 . 2012-09-22 12:18 96768 ----a-w- d:\windows\system32\mshtmled.dll

2012-08-24 10:09 . 2012-09-22 12:18 2382848 ----a-w- d:\windows\system32\mshtml.tlb

2012-08-24 10:04 . 2012-09-22 12:18 248320 ----a-w- d:\windows\system32\ieui.dll

2012-08-24 06:59 . 2012-09-22 12:18 1800704 ----a-w- d:\windows\SysWow64\jscript9.dll

2012-08-24 06:51 . 2012-09-22 12:18 1129472 ----a-w- d:\windows\SysWow64\wininet.dll

2012-08-24 06:51 . 2012-09-22 12:18 1427968 ----a-w- d:\windows\SysWow64\inetcpl.cpl

2012-08-24 06:47 . 2012-09-22 12:18 142848 ----a-w- d:\windows\SysWow64\ieUnatt.exe

2012-08-24 06:47 . 2012-09-22 12:18 420864 ----a-w- d:\windows\SysWow64\vbscript.dll

2012-08-24 06:43 . 2012-09-22 12:18 2382848 ----a-w- d:\windows\SysWow64\mshtml.tlb

2012-08-21 21:01 . 2012-09-26 08:30 245760 ----a-w- d:\windows\system32\OxpsConverter.exe

2012-08-20 17:38 . 2012-10-10 20:52 44032 ----a-w- d:\windows\apppatch\acwow64.dll

.

.

((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond

REGEDIT4

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GladinetIconOverlay]

@="{3C3DC57A-7535-48AF-BB9E-C3576A4F34D0}"

[HKEY_CLASSES_ROOT\CLSID\{3C3DC57A-7535-48AF-BB9E-C3576A4F34D0}]

2011-07-26 12:58 194416 ----a-w- d:\program files (x86)\Nuance\Nuance Cloud Connector\GlOverlayIcon32.dll

.

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GladinetUploading]

@="{959A18D3-9CC9-41e8-B76F-34ED9A89D4EA}"

[HKEY_CLASSES_ROOT\CLSID\{959A18D3-9CC9-41e8-B76F-34ED9A89D4EA}]

2011-07-26 13:00 194416 ----a-w- d:\program files (x86)\Nuance\Nuance Cloud Connector\GlOverlayIconU32.dll

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Sidebar"="d:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]

"NetworkIndicator"="d:\program files (x86)\NetworkIndicator\NetworkIndicator.exe" [2010-10-25 344064]

"OfficeSyncProcess"="d:\program files (x86)\Microsoft Office\Office14\MSOSYNC.EXE" [2012-01-20 719672]

"TomTomHOME.exe"="d:\program files (x86)\TomTom HOME 2\TomTomHOMERunner.exe" [2012-08-28 247768]

"swg"="d:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-04-28 39408]

"ISUSPM"="d:\programdata\FLEXnet\Connect\11\ISUSPM.exe" [2010-05-21 324976]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]

"McAfeeUpdaterUI"="d:\program files (x86)\McAfee\Common Framework\udaterui.exe" [2011-01-12 161088]

"ShStatEXE"="d:\program files (x86)\McAfee\VirusScan Enterprise\SHSTAT.EXE" [2011-09-14 215360]

"PMSpeed"="d:\program files (x86)\NewSoft\Presto! PageManager 9.01\PMSpeed.EXE" [2010-07-29 116632]

"NUSB3MON"="d:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]

"Adobe Reader Speed Launcher"="d:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2012-07-31 38872]

"Adobe ARM"="d:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-11 919008]

"OmniPage Preload"="d:\program files (x86)\Nuance\OmniPage18\OmniPage18.exe" [2011-08-14 2987880]

"Nuance OmniPage 18-reminder"="d:\program files (x86)\Nuance\OmniPage18\Ereg\Ereg.exe" [2011-05-16 333088]

"PDFCreHook"="d:\program files (x86)\Nuance\PDF Create 7\pdfcreate7hook.exe" [2011-06-28 605032]

"PDF7 Registry Controller"="d:\program files (x86)\Nuance\PDF Create 7\RegistryController.exe" [2011-06-27 140136]

"SunJavaUpdateSched"="d:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]

"CommonToolkitTray"="d:\program files (x86)\Fighters\Tray\FightersTray.exe" [2012-08-13 1454184]

"sfagent"="d:\program files (x86)\Fighters\SPAMfighter\sfagent.exe" [2012-09-18 1201256]

"JMB36X IDE Setup"="d:\windows\raidtool\xinside.exe" [2010-09-07 43608]

"Nuance PDF Reader-reminder"="d:\program files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" [2008-11-03 328992]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"ConsentPromptBehaviorAdmin"= 5 (0x5)

"ConsentPromptBehaviorUser"= 3 (0x3)

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]

"NoWinKeys"= 1 (0x1)

.

R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;d:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]

R3 ACSSCR;ACR38 Smart Card Reader;d:\windows\system32\DRIVERS\a38usb.sys [2009-12-15 44928]

R3 cpuz135;cpuz135; [x]

R3 mferkdet;McAfee Inc. mferkdet;d:\windows\system32\drivers\mferkdet.sys [2012-04-24 100904]

R3 Ph3xIB64;Philips 713x Inbox PCI TV Card;d:\windows\system32\DRIVERS\Ph3xIB64.sys [2009-06-10 1627520]

R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;d:\windows\system32\drivers\rdpvideominiport.sys [2012-10-31 19456]

R3 Synth3dVsc;Synth3dVsc;d:\windows\system32\drivers\synth3dvsc.sys [x]

R3 TsUsbFlt;TsUsbFlt;d:\windows\system32\drivers\tsusbflt.sys [2012-10-31 57856]

R3 VGPU;VGPU;d:\windows\system32\drivers\rdvgkmd.sys [x]

R3 WatAdminSvc;Windows Activation Technologies-service;d:\windows\system32\Wat\WatAdminSvc.exe [2012-04-24 1255736]

R3 WinRing0_1_2_0;WinRing0_1_2_0; [x]

R4 AsSysCtrlService;ASUS System Control Service;d:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [2009-08-19 90112]

R4 SPAMfighter Update Service;SPAMfighter Update Service;d:\program files (x86)\Fighters\SPAMfighter\sfus.exe [2012-09-18 216168]

R4 Suite Service;Suite Service;d:\program files (x86)\Fighters\FighterSuiteService.exe [2012-01-23 1324680]

R4 TomTomHOMEService;TomTomHOMEService;d:\program files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2012-08-28 92632]

R4 UMVPFSrv;UMVPFSrv;d:\program files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe [2012-01-18 450848]

S0 Achernar;Achernar - SCSI Command Filter Drivers;d:\windows\system32\Drivers\Achernar.sys [2012-04-25 34104]

S0 mfewfpk;McAfee Inc. mfewfpk;d:\windows\system32\drivers\mfewfpk.sys [2012-04-24 283744]

S2 AMD External Events Utility;AMD External Events Utility;d:\windows\system32\atiesrxx.exe [2012-04-06 236544]

S2 GladFileMonSvc;GladFileMonSvc;d:\program files (x86)\Nuance\Nuance Cloud Connector\GladFileMonSvc.exe [2011-07-26 29552]

S2 MBAMScheduler;MBAMScheduler;d:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-09-29 399432]

S2 MBAMService;MBAMService;d:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-09-29 676936]

S2 mfevtp;McAfee Validation Trust Protection Service;d:\windows\system32\mfevtps.exe [2012-04-24 158832]

S3 asmthub3;ASMedia USB3 Hub Service;d:\windows\system32\DRIVERS\asmthub3.sys [2012-02-21 130536]

S3 asmtxhci;ASMEDIA XHCI Service;d:\windows\system32\DRIVERS\asmtxhci.sys [2012-02-21 396776]

S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;d:\windows\system32\drivers\AtihdW76.sys [2012-02-23 95760]

S3 LVRS64;Logitech RightSound Filter Driver;d:\windows\system32\DRIVERS\lvrs64.sys [2012-01-18 351136]

S3 LVUVC64;Logitech QuickCam Pro 9000(UVC);d:\windows\system32\DRIVERS\lvuvc64.sys [2012-01-18 4865568]

S3 MBAMProtector;MBAMProtector;d:\windows\system32\drivers\mbam.sys [2012-09-29 25928]

S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;d:\windows\system32\DRIVERS\nusb3hub.sys [2010-12-10 80384]

S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;d:\windows\system32\DRIVERS\nusb3xhc.sys [2010-12-10 181248]

S3 PlxDma;PlxDma;d:\windows\system32\DRIVERS\PlxDma.sys [2011-09-30 80640]

S3 RTL8167;Realtek 8167 NT Driver;d:\windows\system32\DRIVERS\Rt64win7.sys [2012-04-11 708200]

S3 tsusbhub;Remote Deskotop USB Hub;d:\windows\system32\drivers\tsusbhub.sys [2010-11-20 117248]

.

.

--- Andere Services/Drivers In Geheugen ---

.

*Deregistered* - mfeavfk01

.

Inhoud van de 'Gedeelde Taken' map

.

2012-11-09 d:\windows\Tasks\Adobe Flash Player Updater.job

- d:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-28 13:29]

.

2012-11-09 d:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- d:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-28 18:44]

.

2012-11-09 d:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- d:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-04-28 18:44]

.

2012-11-09 d:\windows\Tasks\RegistryBooster.job

- d:\program files (x86)\Uniblue\RegistryBooster\rbmonitor.exe [2012-11-07 13:39]

.

.

--------- X64 Entries -----------

.

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GladinetIconOverlay]

@="{3C3DC57A-7535-48AF-BB9E-C3576A4F34D0}"

[HKEY_CLASSES_ROOT\CLSID\{3C3DC57A-7535-48AF-BB9E-C3576A4F34D0}]

2011-07-26 12:58 192368 ----a-w- d:\program files (x86)\Nuance\Nuance Cloud Connector\GlOverlayIcon.dll

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GladinetUploading]

@="{959A18D3-9CC9-41e8-B76F-34ED9A89D4EA}"

[HKEY_CLASSES_ROOT\CLSID\{959A18D3-9CC9-41e8-B76F-34ED9A89D4EA}]

2011-07-26 13:01 195440 ----a-w- d:\program files (x86)\Nuance\Nuance Cloud Connector\GlOverlayIconU.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"WrtMon.exe"="d:\windows\system32\spool\drivers\x64\3\WrtMon.exe" [2008-05-24 26448]

"WheelMouse"="d:\program files\mouse\amoumain.exe" [2012-05-31 270336]

"UpdateUSB"="d:\windows\inf\updateusb.exe" [2006-06-25 30720]

"JMB36X IDE Setup"="d:\windows\raidtool\xinside.exe" [2010-09-07 43608]

"CanonSolutionMenu"="d:\program files (x86)\Canon\SolutionMenu\CNSLMAIN.exe" [2007-05-14 644696]

.

------- Bijkomende Scan -------

.

mLocal Page = d:\windows\system32\blank.htm

uInternet Settings,ProxyOverride = <local>;127.0.0.1

TCP: DhcpNameServer = 10.135.200.35

.

- - - - ORPHANS VERWIJDERD - - - -

.

Toolbar-Locked - (no file)

Wow6432Node-HKCU-Run-OpAgent - OpAgent.exe

Wow6432Node-HKLM-Run-ISUSPM - c:\programdata\FLEXnet\Connect\11\isuspm.exe

AddRemove-USB 2.0 Setup program - d:\program files (x86)\VIA Technologies

.

.

.

--------------------- VERGRENDELDE REGISTER SLEUTELS ---------------------

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@d:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_110_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="d:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_110_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="FlashBroker"

"LocalizedString"="@d:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_110_ActiveX.exe,-101"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]

"Enabled"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]

@="d:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_110_ActiveX.exe"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Shockwave Flash Object"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="d:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]

@="0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]

@="ShockwaveFlash.ShockwaveFlash.11"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="d:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx, 1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="ShockwaveFlash.ShockwaveFlash"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]

@Denied: (A 2) (Everyone)

@="Macromedia Flash Factory Object"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]

@="d:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx"

"ThreadingModel"="Apartment"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]

@="FlashFactory.FlashFactory.1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]

@="d:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_110.ocx, 1"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]

@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]

@="1.0"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]

@="FlashFactory.FlashFactory"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]

@Denied: (A 2) (Everyone)

@="IFlashBroker5"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]

@="{00020424-0000-0000-C000-000000000046}"

.

[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]

@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

"Version"="1.0"

.

[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]

@Denied: (A) (Everyone)

"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"

.

[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3]

@Denied: (A) (Everyone)

.

[HKEY_LOCAL_MACHINE\software\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]

"Key"="ActionsPane3"

"Location"="d:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"

.

[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

@Denied: (Full) (Everyone)

.

Voltooingstijd: 2012-11-09 11:42:39

ComboFix-quarantined-files.txt 2012-11-09 10:42

ComboFix2.txt 2012-11-08 22:15

ComboFix3.txt 2012-11-08 21:26

.

Pre-Run: 249.786.712.064 bytes beschikbaar

Post-Run: 249.505.329.152 bytes beschikbaar

.

- - End Of File - - 56227D65011696D3302068DF07F189EF

Link naar reactie
Delen op andere sites
kape Grootmeester

kape

Geplaatst:
Geplaatst:

Download MVPS Hosts.

Unzip het programma naar een door u bepaalde locatie.

Windows XP

Klik op mvps.bat en kies voor “uitvoeren” om mvps.bat op te starten (*).

Druk op toets om door te gaan.

Van het bestaande bestand HOSTS op de standaardlocatie C:\windows\system32\drivers\etc wordt een backup gemaakt met de naam HOSTS.MVP

Dan wordt het bestand vervangen door de actuele MVPS Hosts-versie.

(*) Windows Vista en Windows 7 gebruikers moeten rechtsklikken op mvps.bat en kiezen voor ”uitvoeren als administrator” om mvps.bat op te starten.

Link naar reactie
Delen op andere sites
 Delen
Ga naar topic overzicht
Logo

OVER ONS

PC Helpforum helpt GRATIS computergebruikers sinds juli 2006. Ons team geeft via het forum professioneel antwoord op uw vragen en probeert uw pc problemen zo snel mogelijk op te lossen. Word lid vandaag, plaats je vraag online en het PC Helpforum-team helpt u graag verder!

SITEMAP

×
×
  • Nieuwe aanmaken...

Belangrijke informatie

We hebben cookies geplaatst op je toestel om deze website voor jou beter te kunnen maken. Je kunt de cookie instellingen aanpassen, anders gaan we er van uit dat het goed is om verder te gaan.