Ongevraagde webpagina

[Ferre50]

Dag allemaal,

Wanneer ik op internet surf komt er altijd een ongevraagde pagina open"www.blogto.com".Vanaf dan reageerd pc bijna niet meer.

Vanaf dan kan ik niet meer terug naar de voorgaande pagina,moet telkens internet sluiten.Soms komt er ook een kadertje op een pagina met reklame,dit krijg ik niet weg en als ik hier naar de voorgaande pagina klik veranderd de reklame in het kadertje bij elke klik maar de hoofdpagina gaat niet terug.

Hoe geraak ik hier vanaf?

Heb al gescand met Malwarebytes en Superantispyware.

Mvg.

[jahewi]

Hoi Ferre50,

Ik denk dat we eerst maar eens moeten kijken of je probleem te maken heeft met malware.

Download DDS van sUBS van één van deze locaties en plaats het op je bureaublad:

DDS - Bleeping Computer download.

DDS - Bleeping Computer download.

DDS - Infospyware.

DDS is een diagnosetool en maakt gebruik van scripts.

Schakel je beveiligings software uit voordat je DDS uitvoert!

Dubbelklik op DDS om de tool te starten.

DDS zal 2 logfiles openen:

* DDS.txt

* Attach.txt

Een scherm vraagt je om beide logjes op te slaan omdat de logjes weg zullen zijn als je ze sluit.

Sla de logjes op bijvoorbeeld op je bureaublad of een andere plaats waar je ze makkelijk terug vind.

Post het DDS.txt logje met je volgende antwoord als bijlage. De Attach.txt post je alleen wanneer ik hier om vraag.

sukses,

jahewi

[Ferre50]

Internet Explorer: 10.0.9200.16537 BrowserJavaVersion: 10.25.2

Run by Fernand at 12:31:42 on 2013-07-21

Microsoft Windows 8 Pro with Media Center 6.2.9200.0.1252.32.1043.18.7658.5080 [GMT 2:00]

.

AV: AVG AntiVirus Free Edition 2013 *Disabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}

AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

SP: AVG AntiVirus Free Edition 2013 *Disabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}

.

============== Running Processes ===============

.

C:\WINDOWS\system32\svchost.exe -k DcomLaunch

C:\Program Files (x86)\HP SimplePass 2012\TrueSuiteService.exe

C:\WINDOWS\system32\svchost.exe -k RPCSS

C:\WINDOWS\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\WINDOWS\system32\svchost.exe -k netsvcs

C:\WINDOWS\system32\svchost.exe -k LocalService

C:\WINDOWS\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Program Files\IDT\WDM\STacSV64.exe

C:\Program Files\Classic Shell\ClassicShellService.exe

C:\WINDOWS\system32\Hpservice.exe

C:\Windows\System32\WUDFHost.exe

C:\WINDOWS\system32\svchost.exe -k NetworkService

C:\WINDOWS\System32\spoolsv.exe

C:\WINDOWS\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files\IDT\WDM\AESTSr64.exe

C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe

C:\WINDOWS\system32\svchost.exe -k apphost

C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe

C:\WINDOWS\system32\BtwRSupportService.exe

C:\WINDOWS\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\WINDOWS\system32\dashost.exe

C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe

C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe

C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe

C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe

C:\Program Files\Web Assistant\ExtensionUpdaterService.exe

C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

C:\WINDOWS\system32\mqsvc.exe

C:\WINDOWS\system32\svchost.exe -k imgsvc

C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe

C:\WINDOWS\system32\svchost.exe -k iissvcs

C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe

C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

C:\WINDOWS\system32\wbem\wmiprvse.exe

C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe

C:\WINDOWS\system32\wbem\wmiprvse.exe

C:\WINDOWS\system32\SearchIndexer.exe

C:\WINDOWS\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe

C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

C:\Program Files (x86)\Nero\Update\NASvc.exe

C:\WINDOWS\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe

C:\WINDOWS\System32\dwm.exe

C:\Program Files (x86)\HP SimplePass 2012\TouchControl.exe

C:\Program Files (x86)\HP SimplePass 2012\BioMonitor.exe

C:\WINDOWS\Explorer.EXE

C:\WINDOWS\system32\wbem\unsecapp.exe

C:\Program Files\Classic Shell\ClassicStartMenu.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

C:\WINDOWS\system32\taskhostex.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\IDT\WDM\sttray64.exe

C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE

C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar1.exe

C:\Program Files\Hewlett-Packard\HP LaunchBox\HPTaskBar2.exe

C:\Program Files (x86)\AVG\AVG2013\avgui.exe

C:\Program Files (x86)\CyberLink\Shared files\brs.exe

C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe

C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe

C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe

C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe

C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe

C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe

C:\Program Files (x86)\ScanSoft\PaperPort\pptd40nt.exe

C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe

C:\Program Files (x86)\Brother\Brmfcmon\BrMfcmon.exe

C:\Program Files (x86)\Brother\ControlCenter3\brccMCtl.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE

C:\WINDOWS\system32\svchost.exe -k WbioSvcGroup

C:\WINDOWS\system32\msiexec.exe

C:\Program Files (x86)\AVG\AVG2013\avgcfgex.exe

C:\WINDOWS\System32\cscript.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.google.be/

uURLSearchHooks: {3bbd3c14-4c16-4989-8366-95bc9179779d} - <orphaned>

uURLSearchHooks: {78e516ef-11de-47a1-8364-a99b917ec5ee} - <orphaned>

uURLSearchHooks: {87775fdb-6972-41f9-ae51-8326e38cb206} - <orphaned>

mWinlogon: Userinit = userinit.exe,

BHO: IB Updater: {336D0C35-8A85-403a-B9D2-65C292C39087} - C:\Program Files\Web Assistant\Extension32.dll

BHO: ExplorerBHO Class: {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll

BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\AMD\SteadyVideo\SteadyVideo.dll

BHO: Java Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

BHO: TrueSuite Website Log On: {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2012\IEBHO.dll

BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

BHO: HP Network Check Helper: {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll

BHO: ClassicIE9BHO Class: {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll

BHO: {FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - <orphaned>

TB: Classic Explorer Bar: {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll

mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY

mRun: [bDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe

mRun: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe

mRun: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey

mRun: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

mRun: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe

mRun: [HPQuickWebProxy] "C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"

mRun: [NBAgent] "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart

mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"

mRun: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

mRun: [sSBkgdUpdate] "C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot

mRun: [PaperPort PTD] "C:\Program Files (x86)\ScanSoft\PaperPort\pptd40nt.exe"

mRun: [indexSearch] "C:\Program Files (x86)\ScanSoft\PaperPort\IndexSearch.exe"

mRun: [PPort11reminder] "C:\Program Files (x86)\ScanSoft\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini"

mRun: [brMfcWnd] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN

mRun: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

mPolicies-Explorer: EnableShellExecuteHooks = dword:1

mPolicies-System: HideFastUserSwitching = dword:0

IE: &Verzenden naar OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105

IE: E&xporteren naar Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000

IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

IE: {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

IE: {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe

IE: {64964764-1101-4bbd-8891-B56B1A53B9B3} - {553891B7-A0D5-4526-BE18-D3CE461D6310}

IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204

DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} - hxxp://h20614.www2.hp.com/ediags/gmd/Install/Cab/hpdetect119.cab

TCP: NameServer = 195.130.130.3 195.130.131.3

TCP: Interfaces\{2B8E5003-B920-4070-9920-64B34FB4F1A4} : DHCPNameServer = 195.130.130.3 195.130.131.3

TCP: Interfaces\{2B8E5003-B920-4070-9920-64B34FB4F1A4}\079607F6 : DHCPNameServer = 195.130.130.3 195.130.131.3

TCP: Interfaces\{2B8E5003-B920-4070-9920-64B34FB4F1A4}\45E65647775627B6 : DHCPNameServer = 192.168.0.1

TCP: Interfaces\{2B8E5003-B920-4070-9920-64B34FB4F1A4}\4756C656E65647D25464134463 : DHCPNameServer = 195.130.130.3 195.130.131.3

TCP: Interfaces\{BA254C85-DEBD-4DBB-A638-0B53D23707F8} : DHCPNameServer = 195.130.130.3 195.130.131.3

TCP: Interfaces\{BA254C85-DEBD-4DBB-A638-0B53D23707F8}\4756C656E65647D25464134463 : DHCPNameServer = 195.130.130.3 195.130.131.3

Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll

Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\AMD\SteadyVideo\VideoMIMEFilter.dll

Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - <orphaned>

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll

Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

SSODL: WebCheck - <orphaned>

SEH: EasyBits ShellExecute Hook - {E54729E8-BB3D-4270-9D49-7389EA579090} - C:\Windows\SysWOW64\ezUPBHook.dll

SecurityProviders: SecurityProviders = credssp.dll, OwmipteSxasf.dll

x64-BHO: IB Updater: {336D0C35-8A85-403a-B9D2-65C292C39087} - C:\Program Files\Web Assistant\Extension64.dll

x64-BHO: ExplorerBHO Class: {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer64.dll

x64-BHO: SteadyVideoBHO Class: {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll

x64-BHO: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - <orphaned>

x64-BHO: TrueSuite Website Log On: {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2012\x64\IEBHO.dll

x64-BHO: Java Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} -

x64-BHO: ClassicIE9BHO Class: {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_64.dll

x64-TB: Classic Explorer Bar: {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer64.dll

x64-Run: [synTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe

x64-Run: [sysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe

x64-Run: [setDefault] C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe

x64-mPolicies-Explorer: EnableShellExecuteHooks = dword:1

x64-mPolicies-System: HideFastUserSwitching = dword:0

x64-IE: {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe

x64-IE: {64964764-1101-4bbd-8891-B56B1A53B9B3} - {553891B7-A0D5-4526-BE18-D3CE461D6310}

x64-Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll

x64-Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files\AMD\SteadyVideo\VideoMIMEFilter.dll

x64-Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - <orphaned>

x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - <orphaned>

x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>

x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>

x64-SSODL: WebCheck - <orphaned>

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\Fernand\AppData\Roaming\Mozilla\Firefox\Profiles\1zkfgpul.default\

FF - prefs.js: browser.startup.homepage - hxxp://www.google.be/

FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll

FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll

FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrlui.dll

FF - plugin: C:\Program Files (x86)\WildTangent Games\App\BrowserIntegration\Registered\1\NP_wtapp.dll

FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll

FF - plugin: C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll

FF - plugin: C:\WINDOWS\SysWOW64\npDeployJava1.dll

FF - plugin: C:\WINDOWS\SysWOW64\npmproxy.dll

.

============= SERVICES / DRIVERS ===============

.

R0 AVGIDSHA;AVGIDSHA;C:\WINDOWS\System32\Drivers\avgidsha.sys [2012-10-15 63328]

R0 Avgloga;AVG Logging Driver;C:\WINDOWS\System32\Drivers\avgloga.sys [2012-9-21 225120]

R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\WINDOWS\System32\Drivers\avgmfx64.sys [2012-11-16 111968]

R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\WINDOWS\System32\Drivers\avgrkx64.sys [2012-9-14 40800]

R1 AVGIDSDriver;AVGIDSDriver;C:\WINDOWS\System32\Drivers\avgidsdrivera.sys [2012-10-22 154464]

R1 Avgldx64;AVG AVI Loader Driver;C:\WINDOWS\System32\Drivers\avgldx64.sys [2012-10-2 185696]

R1 Avgwfpa;AVG Firewall Driver;C:\WINDOWS\System32\Drivers\avgwfpa.sys [2012-11-27 208736]

R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2012/09/18 09:08:08];C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl [2010-11-17 146928]

R2 AESTFilters;Andrea ST Filters Service;C:\Program Files\IDT\WDM\AESTSr64.exe [2013-7-7 89600]

R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-5-30 361984]

R2 AODDriver4.1;AODDriver4.1;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2012-3-5 53888]

R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe [2012-10-22 196664]

R2 BcmBtRSupport;Bluetooth Radio Control Service;C:\WINDOWS\System32\BtwRSupportService.exe [2011-12-15 2246184]

R2 FPLService;TrueSuiteService;C:\Program Files (x86)\HP SimplePass 2012\TrueSuiteService.exe [2011-8-26 260424]

R2 Freemake Improver;Freemake Improver;C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2012-7-16 96768]

R2 HP Support Assistant Service;HP Support Assistant Service;C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\HPSA_Service.exe [2012-9-27 86528]

R2 HPAuto;HP Auto;C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [2011-2-16 682040]

R2 HPClientSvc;HP Client Services;C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe [2010-10-11 346168]

R2 HPDrvMntSvc.exe;HP Quick Synchronization Service;C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2012-8-10 197536]

R2 hpsrv;HP Service;C:\WINDOWS\System32\hpservice.exe [2011-5-27 30520]

R2 HPWMISVC;HPWMISVC;C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2011-7-11 26680]

R2 IB Updater;IB Updater;C:\Program Files\Web Assistant\ExtensionUpdaterService.exe [2012-7-27 188760]

R2 IconMan_R;IconMan_R;C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [2012-5-30 2413056]

R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-11-13 418376]

R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-7-16 701512]

R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2010-3-25 490280]

R2 TomTomHOMEService;TomTomHOMEService;C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2010-8-24 92008]

R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;C:\WINDOWS\System32\Drivers\AtihdW76.sys [2010-11-17 115216]

R3 bcbtums;Bluetooth RAM Firmware Download USB Filter;C:\WINDOWS\System32\Drivers\bcbtums.sys [2012-1-27 134696]

R3 BthLEEnum;Bluetooth Low Energy-stuurprogramma;C:\WINDOWS\System32\Drivers\BthLEEnum.sys [2012-7-26 202752]

R3 MBAMProtector;MBAMProtector;C:\WINDOWS\System32\Drivers\mbam.sys [2012-7-16 25928]

R3 RSPCIESTOR;Realtek PCIE CardReader Driver;C:\WINDOWS\System32\Drivers\RtsPStor.sys [2012-3-29 342632]

R3 RTL8168;Realtek 8168 NT-stuurprogramma;C:\WINDOWS\System32\Drivers\Rt630x64.sys [2012-6-2 589824]

S0 Avgboota;AVG Early Launch Anti-Malware Driver;C:\WINDOWS\System32\Drivers\avgboota.sys [2012-10-26 20912]

S2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe [2012-11-16 5814904]

S3 amd_sata;amd_sata;C:\WINDOWS\System32\Drivers\amd_sata.sys [2011-4-16 79488]

S3 amd_xata;amd_xata;C:\WINDOWS\System32\Drivers\amd_xata.sys [2011-4-16 40064]

S3 BTWDPAN;Bluetooth Personal Area Network;C:\WINDOWS\System32\Drivers\btwdpan.sys [2012-5-30 89640]

S3 GamesAppService;GamesAppService;C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]

S3 vmbusr;Provider van virtuele-machinebus;C:\WINDOWS\System32\Drivers\vmbusr.sys [2012-7-26 117248]

S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-22 57184]

.

=============== Created Last 30 ================

.

2013-07-20 11:47:58 1671680 ----a-w- C:\Program Files (x86)\Mozilla Firefox\extensions\websitelogon@truesuite.com\components\FFXPCOM3.dll

2013-07-20 11:47:58 1669120 ----a-w- C:\Program Files (x86)\Mozilla Firefox\extensions\websitelogon@truesuite.com\components\FFXPCOM6.dll

2013-07-20 11:47:58 1668608 ----a-w- C:\Program Files (x86)\Mozilla Firefox\extensions\websitelogon@truesuite.com\components\FFXPCOM5.dll

2013-07-20 11:47:58 1668608 ----a-w- C:\Program Files (x86)\Mozilla Firefox\extensions\websitelogon@truesuite.com\components\FFXPCOM4.dll

2013-07-20 11:47:58 1667072 ----a-w- C:\Program Files (x86)\Mozilla Firefox\extensions\websitelogon@truesuite.com\components\FFXPCOM7.dll

2013-07-19 16:44:05 -------- d-----w- C:\Users\Fernand\AppData\Local\Macromedia

2013-07-18 16:29:35 -------- d-----w- C:\Users\Fernand\AppData\Roaming\SUPERAntiSpyware.com

2013-07-17 12:56:20 -------- d-----w- C:\Program Files\Classic Shell

2013-07-16 18:05:16 -------- d-----w- C:\Users\Fernand\AppData\Local\Deployment

2013-07-11 06:31:32 -------- d-----w- C:\Users\Fernand\AbiSuite

2013-07-11 06:30:51 -------- d-----w- C:\Program Files (x86)\AbiWord

2013-07-09 13:25:06 -------- d-----w- C:\Program Files (x86)\VideoLAN

2013-07-07 10:56:34 1965056 ----a-w- C:\WINDOWS\System32\stapo64.dll

2013-07-07 10:51:58 -------- d-----w- C:\Program Files (x86)\AMD AVT

2013-07-07 10:50:16 -------- d-----w- C:\Program Files\Common Files\ATI Technologies

2013-07-07 10:50:12 -------- d-----w- C:\WINDOWS\LastGood.Tmp

2013-06-29 09:06:20 -------- d-----w- C:\Users\Fernand\AppData\Roaming\WebCake

2013-06-29 09:06:07 -------- d-----w- C:\Program Files (x86)\TornTV.com

2013-06-23 14:31:40 96168 ----a-w- C:\WINDOWS\SysWow64\WindowsAccessBridge-32.dll

.

==================== Find3M ====================

.

2013-06-23 14:31:37 867240 ----a-w- C:\WINDOWS\SysWow64\npDeployJava1.dll

2013-06-23 14:31:37 789416 ----a-w- C:\WINDOWS\SysWow64\deployJava1.dll

2013-06-07 16:05:30 151552 ----a-w- C:\WINDOWS\KMService.exe

2013-06-04 22:09:22 78200 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerCPLApp.cpl

2013-06-04 22:09:22 693112 ----a-w- C:\WINDOWS\SysWow64\FlashPlayerApp.exe

2013-05-23 23:01:46 1300992 ----a-w- C:\WINDOWS\System32\gdi32.dll

2013-05-23 22:27:05 1022464 ----a-w- C:\WINDOWS\SysWow64\gdi32.dll

2013-05-15 22:37:03 44032 ----a-w- C:\WINDOWS\SysWow64\UXInit.dll

2013-05-15 22:35:49 53760 ----a-w- C:\WINDOWS\System32\UXInit.dll

2013-05-15 22:35:47 144384 ----a-w- C:\WINDOWS\System32\tssdisai.dll

2013-05-15 02:25:59 888320 ----a-w- C:\WINDOWS\System32\autochk.exe

2013-05-15 02:25:44 542208 ----a-w- C:\WINDOWS\System32\untfs.dll

2013-05-15 02:24:10 793088 ----a-w- C:\WINDOWS\SysWow64\autochk.exe

2013-05-15 02:24:01 482816 ----a-w- C:\WINDOWS\SysWow64\untfs.dll

2013-05-14 13:14:01 2706432 ----a-w- C:\WINDOWS\System32\mshtml.tlb

2013-05-14 09:23:31 2706432 ----a-w- C:\WINDOWS\SysWow64\mshtml.tlb

2013-05-04 07:58:17 120736 ----a-w- C:\WINDOWS\System32\AuthHost.exe

2013-05-04 07:45:29 2233600 ----a-w- C:\WINDOWS\System32\drivers\tcpip.sys

2013-05-04 07:34:17 446720 ----a-w- C:\WINDOWS\System32\drivers\USBHUB3.SYS

2013-05-04 07:34:17 213248 ----a-w- C:\WINDOWS\System32\drivers\UCX01000.SYS

2013-05-04 07:34:15 284416 ----a-w- C:\WINDOWS\System32\drivers\spaceport.sys

2013-05-04 06:59:56 39424 ----a-w- C:\WINDOWS\System32\wuapp.exe

2013-05-04 06:59:51 1483776 ----a-w- C:\WINDOWS\System32\VSSVC.exe

2013-05-04 06:59:36 812544 ----a-w- C:\WINDOWS\System32\Magnify.exe

2013-05-04 06:59:25 98304 ----a-w- C:\WINDOWS\System32\wudriver.dll

2013-05-04 06:59:25 251904 ----a-w- C:\WINDOWS\System32\WUSettingsProvider.dll

2013-05-04 06:59:25 141824 ----a-w- C:\WINDOWS\System32\wuwebv.dll

2013-05-04 06:59:24 1619968 ----a-w- C:\WINDOWS\System32\wucltux.dll

2013-05-04 06:59:08 13644288 ----a-w- C:\WINDOWS\System32\Windows.UI.Xaml.dll

2013-05-04 06:58:54 328192 ----a-w- C:\WINDOWS\System32\ubpm.dll

2013-05-04 06:58:54 10116096 ----a-w- C:\WINDOWS\System32\twinui.dll

2013-05-04 06:58:49 173568 ----a-w- C:\WINDOWS\System32\storewuauth.dll

2013-05-04 06:58:49 1332736 ----a-w- C:\WINDOWS\System32\sysmain.dll

2013-05-04 06:58:48 330240 ----a-w- C:\WINDOWS\System32\stobject.dll

2013-05-04 06:58:28 93696 ----a-w- C:\WINDOWS\System32\psmsrv.dll

2013-05-04 06:58:02 470528 ----a-w- C:\WINDOWS\System32\netprofmsvc.dll

2013-05-04 06:58:02 151552 ----a-w- C:\WINDOWS\System32\netprofm.dll

2013-05-04 06:58:01 169984 ----a-w- C:\WINDOWS\System32\netplwiz.dll

2013-05-04 06:57:59 17408 ----a-w- C:\WINDOWS\System32\muifontsetup.dll

2013-05-04 06:57:46 560640 ----a-w- C:\WINDOWS\System32\mfmp4srcsnk.dll

2013-05-04 06:57:31 820736 ----a-w- C:\WINDOWS\System32\gpprefcl.dll

2013-05-04 06:57:15 501760 ----a-w- C:\WINDOWS\System32\DevicePairing.dll

2013-05-04 06:57:05 179712 ----a-w- C:\WINDOWS\System32\bisrv.dll

2013-05-04 06:57:05 122368 ----a-w- C:\WINDOWS\System32\biwinrt.dll

2013-05-04 06:57:04 389120 ----a-w- C:\WINDOWS\System32\BCP47Langs.dll

2013-05-04 06:57:04 2305024 ----a-w- C:\WINDOWS\System32\authui.dll

2013-05-04 06:57:00 708096 ----a-w- C:\WINDOWS\System32\AppXDeploymentExtensions.dll

2013-05-04 06:57:00 1131520 ----a-w- C:\WINDOWS\System32\AppXDeploymentServer.dll

2013-05-04 06:56:53 419840 ----a-w- C:\WINDOWS\System32\intl.cpl

2013-05-04 04:58:34 34304 ----a-w- C:\WINDOWS\SysWow64\wuapp.exe

2013-05-04 04:58:14 758784 ----a-w- C:\WINDOWS\SysWow64\Magnify.exe

2013-05-04 04:58:02 83968 ----a-w- C:\WINDOWS\SysWow64\wudriver.dll

2013-05-04 04:58:02 125952 ----a-w- C:\WINDOWS\SysWow64\wuwebv.dll

2013-05-04 04:57:49 10788864 ----a-w- C:\WINDOWS\SysWow64\Windows.UI.Xaml.dll

2013-05-04 04:57:39 8857088 ----a-w- C:\WINDOWS\SysWow64\twinui.dll

2013-05-04 04:57:39 247296 ----a-w- C:\WINDOWS\SysWow64\ubpm.dll

2013-05-04 04:57:35 303616 ----a-w- C:\WINDOWS\SysWow64\stobject.dll

2013-05-04 04:57:16 18432 ----a-w- C:\WINDOWS\SysWow64\npmproxy.dll

2013-05-04 04:57:04 151040 ----a-w- C:\WINDOWS\SysWow64\netplwiz.dll

2013-05-04 04:57:04 115712 ----a-w- C:\WINDOWS\SysWow64\netprofm.dll

2013-05-04 04:57:02 14336 ----a-w- C:\WINDOWS\SysWow64\muifontsetup.dll

2013-05-04 04:56:48 411136 ----a-w- C:\WINDOWS\SysWow64\mfmp4srcsnk.dll

2013-05-04 04:56:35 582144 ----a-w- C:\WINDOWS\SysWow64\gpprefcl.dll

2013-05-04 04:56:14 449536 ----a-w- C:\WINDOWS\SysWow64\DevicePairing.dll

2013-05-04 04:56:06 92160 ----a-w- C:\WINDOWS\SysWow64\biwinrt.dll

2013-05-04 04:56:05 309760 ----a-w- C:\WINDOWS\SysWow64\BCP47Langs.dll

2013-05-04 04:56:05 2035712 ----a-w- C:\WINDOWS\SysWow64\authui.dll

2013-05-04 04:55:58 389632 ----a-w- C:\WINDOWS\SysWow64\intl.cpl

2013-05-04 04:51:38 14848 ----a-w- C:\WINDOWS\System32\rars.rs

2013-05-04 04:48:33 83968 ----a-w- C:\WINDOWS\System32\drivers\hidclass.sys

2013-05-04 04:48:26 27648 ----a-w- C:\WINDOWS\System32\drivers\hidusb.sys

2013-05-04 04:47:02 427520 ----a-w- C:\WINDOWS\System32\drivers\rdbss.sys

2013-05-04 04:10:47 14848 ----a-w- C:\WINDOWS\SysWow64\rars.rs

2013-04-28 22:30:55 1767936 ----a-w- C:\WINDOWS\SysWow64\wininet.dll

2013-04-28 22:30:12 2877440 ----a-w- C:\WINDOWS\SysWow64\jscript9.dll

2013-04-28 22:28:33 2241024 ----a-w- C:\WINDOWS\System32\wininet.dll

2013-04-28 22:28:29 915968 ----a-w- C:\WINDOWS\System32\uxtheme.dll

2013-04-28 22:28:00 3958784 ----a-w- C:\WINDOWS\System32\jscript9.dll

2013-04-27 05:20:12 733184 ----a-w- C:\WINDOWS\System32\win32spl.dll

2013-04-23 23:13:53 1013248 ----a-w- C:\WINDOWS\SysWow64\certutil.exe

2013-04-23 23:12:44 1569792 ----a-w- C:\WINDOWS\SysWow64\crypt32.dll

2013-04-23 23:12:44 109056 ----a-w- C:\WINDOWS\SysWow64\cryptnet.dll

2013-04-23 22:56:35 1255936 ----a-w- C:\WINDOWS\System32\certutil.exe

2013-04-23 22:55:48 68096 ----a-w- C:\WINDOWS\System32\cryptsvc.dll

2013-04-23 22:55:48 1889280 ----a-w- C:\WINDOWS\System32\crypt32.dll

2013-04-23 22:55:48 141312 ----a-w- C:\WINDOWS\System32\cryptnet.dll

.

============= FINISH: 12:32:01,54 ===============

[jahewi]

Hoi Ferre50,

Download zoek.exe naar het bureaublad.

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe

(hier of hier) kan je lezen hoe je dat doet.

• Dubbelklik op Zoek.exe om de tool te starten.
  
• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  
• Kopieer nu onderstaande code en plak die in het grote invulvenster:
  
• Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
  

 
{3bbd3c14-4c16-4989-8366-95bc9179779d};c
{78e516ef-11de-47a1-8364-a99b917ec5ee};c
{87775fdb-6972-41f9-ae51-8326e38cb206};c
{336D0C35-8A85-403a-B9D2-65C292C39087};c
{FD72061E-9FDE-484D-A58A-0BAB4151CAD8};c
emptyclsid;
autoclean;
standardsearch;

• Klik nu op de knop "Run script".
  
• Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  
• Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  
• Post het geopende logje in het volgende bericht.
  

sukses,

jahewi

[Ferre50]

Zoek.exe Version 4.0.0.4 Updated 21-07-2013

Tool run by Fernand on zo 21-07-2013 at 16:11:32,85.

Microsoft Windows 8 Pro with Media Center 6.2.9200 x64

Running in: Normal Mode Internet Access Detected

Launched: C:\Users\Fernand\Downloads\zoek (1).exe [script inserted]

==== System Restore Info ======================

21-7-2013 16:13:16 Zoek.exe System Restore Point Created Succesfully.

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-116800127-559303469-1812208031-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully

HKEY_USERS\S-1-5-21-116800127-559303469-1812208031-1002\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully

HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully

HKEY_USERS\S-1-5-21-116800127-559303469-1812208031-1002\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} deleted successfully

HKEY_USERS\S-1-5-21-116800127-559303469-1812208031-1002\Software\Microsoft\Internet Explorer\SearchScopes\{2fa28606-de77-4029-af96-b231e3b8f827} deleted successfully

HKEY_USERS\S-1-5-21-116800127-559303469-1812208031-1002\Software\Microsoft\Internet Explorer\SearchScopes\{4A9A14A5-C867-4CB4-AD70-955388A8D10E} deleted successfully

HKEY_USERS\S-1-5-21-116800127-559303469-1812208031-1002\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2406} deleted successfully

HKEY_USERS\S-1-5-21-116800127-559303469-1812208031-1002\Software\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A} deleted successfully

HKEY_USERS\S-1-5-21-116800127-559303469-1812208031-1002\Software\Microsoft\Internet Explorer\SearchScopes\{D71CA0B6-C3E7-4A62-B8E2-CE42E98375CD} deleted successfully

HKEY_CLASSES_ROOT\CLSID\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully

HKEY_CLASSES_ROOT\Wow6432Node\CLSID\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8} deleted successfully

==== Deleting CLSID Registry Values ======================

HKEY_USERS\S-1-5-21-116800127-559303469-1812208031-1002\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{3bbd3c14-4c16-4989-8366-95bc9179779d} deleted successfully

HKEY_USERS\S-1-5-21-116800127-559303469-1812208031-1002\Software\Microsoft\Internet Explorer\URLSearchHooks\{3bbd3c14-4c16-4989-8366-95bc9179779d} deleted successfully

HKEY_USERS\S-1-5-21-116800127-559303469-1812208031-1002\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{78e516ef-11de-47a1-8364-a99b917ec5ee} deleted successfully

HKEY_USERS\S-1-5-21-116800127-559303469-1812208031-1002\Software\Microsoft\Internet Explorer\URLSearchHooks\{78e516ef-11de-47a1-8364-a99b917ec5ee} deleted successfully

HKEY_USERS\S-1-5-21-116800127-559303469-1812208031-1002\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{87775fdb-6972-41f9-ae51-8326e38cb206} deleted successfully

HKEY_USERS\S-1-5-21-116800127-559303469-1812208031-1002\Software\Microsoft\Internet Explorer\URLSearchHooks\{87775fdb-6972-41f9-ae51-8326e38cb206} deleted successfully

HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\{336D0C35-8A85-403a-B9D2-65C292C39087} deleted successfully

==== Running Processes ======================

C:\Program Files (x86)\HP SimplePass 2012\TrueSuiteService.exe

C:\Program Files\Classic Shell\ClassicShellService.exe

C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe

C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe

C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe

C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe

C:\Program Files\Web Assistant\ExtensionUpdaterService.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe

C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe

C:\Program Files (x86)\Nero\Update\NASvc.exe

C:\Program Files (x86)\HP SimplePass 2012\TouchControl.exe

C:\Program Files (x86)\HP SimplePass 2012\BioMonitor.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files (x86)\AVG\AVG2013\avgui.exe

C:\Program Files (x86)\CyberLink\Shared files\brs.exe

C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe

C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe

C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe

C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe

C:\Program Files (x86)\ScanSoft\PaperPort\pptd40nt.exe

C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe

C:\Program Files (x86)\Brother\Brmfcmon\BrMfcmon.exe

C:\Program Files (x86)\Brother\ControlCenter3\brccMCtl.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Program Files (x86)\IncrediMail\Bin\IncMail.exe

C:\Program Files (x86)\IncrediMail\Bin\ImApp.exe

C:\Users\Fernand\Downloads\zoek (1).exe

C:\WINDOWS\SysWOW64\cmd.exe

C:\WINDOWS\SysWOW64\cmd.exe

C:\Program Files (x86)\AVG\AVG2013\avgcfgex.exe

==== Deleting Services ======================

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ib updater deleted successfully

==== FireFox Fix ======================

ProfilePath: C:\Users\Fernand\AppData\Roaming\Mozilla\Firefox\Profiles\1zkfgpul.default

user.js not found

---- Lines OneClickDownload removed from prefs.js ----

---- Lines OneClickDownload modified from prefs.js ----

---- FireFox user.js and prefs.js backups ----

prefs_21-07-2013_1621_.backup

ProfilePath: C:\Users\Fernand\AppData\Roaming\Mozilla\Firefox\Profiles\extensions

user.js not found

---- Lines OneClickDownload removed from prefs.js ----

---- Lines OneClickDownload modified from prefs.js ----

---- FireFox user.js and prefs.js backups ----

prefs_21-07-2013_1621_.backup

ProfilePath: C:\Users\Fernand\AppData\Roaming\Mozilla\Firefox\Profiles\[ofr2][opt]rs0,[slws][slns]

prefs.js not found

user.js not found

---- Lines OneClickDownload removed from prefs.js ----

---- Lines OneClickDownload modified from prefs.js ----

---- FireFox user.js and prefs.js backups ----

==== Deleting Files \ Folders ======================

"C:\user.js" deleted

"C:\WINDOWS\SysNative\roboot64.exe" deleted

"C:\windows\SysNative\dmwu.exe" deleted

"C:\user.js" deleted

"C:\Program Files (x86)\TornTV.com" deleted

"C:\Program Files (x86)\smartdl" deleted

"C:\Program Files (x86)\GoforFiles" deleted

"C:\Program Files (x86)\1ClickDownload" deleted

"C:\Program Files (x86)\OApps" deleted

"C:\Program Files (x86)\Conduit" deleted

"C:\Program Files (x86)\Common Files\Wondershare" deleted

"C:\Program Files\Web Assistant" deleted

"C:\Users\Fernand\AppData\Roaming\Wondershare" deleted

"C:\Users\Fernand\AppData\Roaming\GoforFiles" deleted

"C:\Users\Fernand\AppData\Roaming\WebCake" deleted

"C:\Users\Fernand\AppData\Roaming\ParetoLogic" deleted

"C:\Users\Fernand\AppData\Roaming\DriverCure" deleted

"C:\Users\Fernand\AppData\Roaming\Babylon" deleted

"C:\Users\Fernand\AppData\Roaming\Systweak" deleted

"C:\Users\Fernand\AppData\Roaming\YourFileDownloader" deleted

"C:\Users\Fernand\AppData\Roaming\OpenCandy" deleted

"C:\ProgramData\StarApp" deleted

"C:\ProgramData\ParetoLogic" deleted

"C:\ProgramData\InstallMate" deleted

"C:\ProgramData\Tarma Installer" deleted

"C:\ProgramData\Babylon" deleted

"C:\Users\Fernand\AppData\Local\Ilivid Player" deleted

"C:\Users\Fernand\AppData\Local\CRE" deleted

"C:\Users\Fernand\AppData\Local\Wondershare" deleted

"C:\Users\Fernand\AppData\Local\Conduit" deleted

"C:\Users\Fernand\AppData\LocalLow\BabylonToolbar" deleted

"C:\Users\Fernand\AppData\LocalLow\Delta" deleted

"C:\Users\Fernand\AppData\LocalLow\DataMngr" deleted

"C:\Users\Fernand\AppData\LocalLow\Incredibar.com" deleted

"C:\Users\Fernand\AppData\LocalLow\PriceGong" deleted

"C:\Users\Fernand\AppData\LocalLow\searchquband" deleted

"C:\Users\Fernand\AppData\LocalLow\Conduit" deleted

"C:\Users\Fernand\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd" deleted

"C:\WINDOWS\Syswow64\WNLT" deleted

"C:\WINDOWS\SysWow64\searchplugins" deleted

"C:\WINDOWS\SysWow64\Extensions" deleted

"C:\Users\Fernand\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\OneClickDownload@OneClickDownload.com" deleted

==== System Specs ======================

Windows: Windows Version 6.2 (Build 9200)

Memory (RAM): 7658 MB

CPU Info: AMD A8-3550MX APU with Radeon HD Graphics

CPU Speed: 2031,0 MHz

Sound Card: Speakers and Headphones (IDT Hi |

Communications Headphones (IDT |

Display Adapters: AMD Radeon HD 6620G (Microsoft Corporation - WDDM v1.20) | AMD Radeon HD 6620G (Microsoft Corporation - WDDM v1.20)

Monitors: 1x; Algemeen PnP-beeldscherm |

Screen Resolution: 1600 X 900 - 32 bit

Network: Network Present

Network Adapters: Microsoft Wi-Fi Direct Virtual Adapter | Bluetooth-apparaat (Personal Area Network) | Realtek PCIe GBE Family-controller | Broadcom 802.11n-netwerkadapter

CD / DVD Drives: 1x (F: | ) F: hp CDDVDW SN-208BB

Ports: COM Ports NOT Present. LPT Port NOT Present.

Mouse: 8 Button Wheel Mouse Present

Hard Disks: C: 232,8GB | G: 94,1MB

Hard Disks - Free: C: 90,0GB | G: 58,0MB

Manufacturer *: Hewlett-Packard

BIOS Info: AT/AT COMPATIBLE | 12/06/05 | HPQOEM - 1

Time Zone: Romance (standaardtijd)

Motherboard *: Hewlett-Packard 180D

Internet Explorer Version: 10.0.9200.16599

Sun Java version: 1.7.0_25

Country: Nederland

Language: NLD

==== Files Recently Created / Modified ======================

====== C:\WINDOWS ====

====== C:\Users\Fernand\AppData\Local\Temp ====

====== C:\WINDOWS\SysWOW64 =====

====== C:\WINDOWS\SysWOW64\drivers =====

====== C:\WINDOWS\Sysnative =====

====== C:\WINDOWS\Sysnative\drivers =====

====== C:\WINDOWS\Tasks ======

2013-07-19 16:33:09 EE54A61819767E5733619C7AB7BE6E5F 3828 ----a-w- C:\WINDOWS\Sysnative\Tasks\Adobe Flash Player Updater

2013-07-19 16:33:09 0EB85623A9C8FE1A6C1BA0175ED31693 940 ----a-w- C:\WINDOWS\Tasks\Adobe Flash Player Updater.job

====== C:\WINDOWS\Temp ======

======= C:\Program Files =====

2013-07-17 12:56:20 -------- d-----w- C:\Program Files\Classic Shell

======= C:\Program Files (x86) =====

2013-07-19 09:37:13 -------- d-----w- C:\Program Files (x86)\Mozilla Maintenance Service

2013-07-11 06:30:51 -------- d-----w- C:\Program Files (x86)\AbiWord

2013-07-09 13:25:06 -------- d-----w- C:\Program Files (x86)\VideoLAN

2013-07-07 10:51:58 -------- d-----w- C:\Program Files (x86)\AMD AVT

======= C: =====

====== C:\Users\Fernand\AppData\Roaming ======

2013-07-19 09:37:21 -------- d-----w- C:\users\Fernand\AppData\Local\Mozilla

2013-07-18 16:29:35 -------- d-----w- C:\users\Fernand\AppData\Roaming\SUPERAntiSpyware.com

2013-07-16 18:05:16 -------- d-----w- C:\users\Fernand\AppData\Local\Deployment

2013-07-11 06:31:23 -------- d-----w- C:\users\Fernand\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AbiWord Word Processor

2013-07-09 13:25:40 -------- d-----w- C:\users\Fernand\AppData\Roaming\vlc

2013-07-08 06:04:50 -------- d-----w- C:\users\Fernand\AppData\Locallow\Evernote

====== C:\Users\Fernand ======

2013-07-21 10:30:04 8B968045D75783A09592C3105F2865DA 688992 ------r- C:\Users\Fernand\Desktop\dds.com

2013-07-21 10:29:50 8B968045D75783A09592C3105F2865DA 688992 ----a-w- C:\Users\Fernand\Downloads\dds.com

2013-07-19 09:37:13 -------- d-----w- C:\ProgramData\Mozilla

2013-07-19 09:36:33 60A5BE7393AA0807535023BE31338775 280256 ----a-w- C:\Users\Fernand\Downloads\Firefox Setup Stub 22.0.exe

2013-07-18 16:28:43 E66B8B84418D0245EDD2D6AC95FE7DF5 26585024 ----a-w- C:\Users\Fernand\Downloads\SUPERAntiSpyware.exe

2013-07-17 12:56:20 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Classic Shell

2013-07-16 17:31:43 DA0177B7A18ECCF97E1C179BE4ECBA3C 8437760 ----a-w- C:\Users\Fernand\Downloads\ClassicShellSetup_3_6_8.exe

2013-07-11 06:31:32 -------- d-----w- C:\Users\Fernand\AbiSuite

2013-07-11 06:31:23 -------- d-----w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AbiWord Word Processor

2013-07-07 11:07:32 -------- d-----w- C:\ProgramData\ATI

====== C: exe-files ==

2013-07-19 09:37:13 528A5C2570F468155A1B3CF0A2FF5EBD 117144 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

2013-07-19 09:37:13 3F03612125FDFA1DE204582CEEBB8ED5 106212 ----a-w- C:\Program Files (x86)\Mozilla Maintenance Service\Uninstall.exe

2013-07-19 09:36:33 60A5BE7393AA0807535023BE31338775 280256 ----a-w- C:\Users\Fernand\Downloads\Firefox Setup Stub 22.0.exe

2013-07-18 16:28:43 E66B8B84418D0245EDD2D6AC95FE7DF5 26585024 ----a-w- C:\Users\Fernand\Downloads\SUPERAntiSpyware.exe

2013-07-17 12:57:01 A6C95B1242FEEA42144D5AB96364AA53 544 ----a-w- C:\$Recycle.Bin\S-1-5-21-116800127-559303469-1812208031-1002\$I07H54U.exe

2013-07-16 17:31:43 DA0177B7A18ECCF97E1C179BE4ECBA3C 8437760 ----a-w- C:\Users\Fernand\Downloads\ClassicShellSetup_3_6_8.exe

2013-07-16 09:31:29 6466C051022547489D3409205128881B 59784 ----atw- C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleUpdateBroker.exe

2013-07-16 09:31:29 1CA3976D1B1FE826ADF339F90AC25C60 59784 ----atw- C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleUpdateOnDemand.exe

2013-07-16 09:31:28 A6F8D4FBC12177A75AB4C06D059229B6 784664 ----a-w- C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleUpdateSetup.exe

2013-07-16 09:31:23 D9A08472D8D0218A0AE2C9D9F63EA531 290696 ----atw- C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler64.exe

2013-07-16 09:31:23 8726802EA4FBFFA3FD54FD2449BF51D4 217992 ----atw- C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe

2013-07-16 09:31:23 506708142BC63DABA64F2D3AD1DCD5BF 116648 ----atw- C:\Program Files (x86)\Google\Update\1.3.21.153\GoogleUpdate.exe

2013-07-16 09:31:22 A6F8D4FBC12177A75AB4C06D059229B6 784664 ----a-w- C:\Program Files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.153\GoogleUpdateSetup.exe

=== C: other files ==

2013-07-21 10:30:04 8B968045D75783A09592C3105F2865DA 688992 ------r- C:\Users\Fernand\Desktop\dds.com

2013-07-21 10:29:50 8B968045D75783A09592C3105F2865DA 688992 ----a-w- C:\Users\Fernand\Downloads\dds.com

==== Startup Registry Enabled ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"Adobe ARM"="C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

"AVG_UI"="C:\Program Files (x86)\AVG\AVG2013\avgui.exe /TRAYONLY"

"BDRegion"="C:\Program Files (x86)\Cyberlink\Shared files\brs.exe"

"Easybits Recovery"="C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe"

"HP CoolSense"="C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey"

"HP Quick Launch"="C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"

"HPOSD"="C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe"

"HPQuickWebProxy"="C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"

"NBAgent"="C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe /WinStart"

"RemoteControl10"="C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"

"StartCCC"="C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun"

"SSBkgdUpdate"="C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe -Embedding -boot"

"PaperPort PTD"="C:\Program Files (x86)\ScanSoft\PaperPort\pptd40nt.exe"

"IndexSearch"="C:\Program Files (x86)\ScanSoft\PaperPort\IndexSearch.exe"

"PPort11reminder"="C:\Program Files (x86)\ScanSoft\PaperPort\Ereg\Ereg.exe -r C:\ProgramData\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini"

"BrMfcWnd"="C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN"

"ControlCenter3"="C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun"

"SunJavaUpdateSched"="C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

==== Startup Registry Enabled x64 ======================

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"SetDefault"="C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe"

"SynTPEnh"="%ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe "

"SysTrayApp"="C:\Program Files\IDT\WDM\sttray64.exe"

==== Task Scheduler Jobs ======================

C:\WINDOWS\tasks\Adobe Flash Player Updater.job --a-------- C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [19-07-2013 18:33]

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job --a-------- C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [14-05-2013 16:26]

C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job --a-------- [undetermined Task]

C:\WINDOWS\tasks\HPCeeScheduleForFERNAND-HP$.job --a-------- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [15-07-2011 05:43]

C:\WINDOWS\tasks\HPCeeScheduleForFernand.job --a-------- C:\Program Files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [15-07-2011 05:43]

C:\WINDOWS\tasks\ROC_REG_JAN_DELETE.job --a-------- [undetermined Task]

==== Firefox Extensions ======================

AppDir: C:\Program Files (x86)\Mozilla Firefox

- TrueSuite Website Logon - %AppDir%\extensions\websitelogon@truesuite.com

==== Firefox Plugins ======================

Profilepath: C:\Users\Fernand\AppData\Roaming\Mozilla\Firefox\Profiles\1zkfgpul.default

0C8597DBC74AAF5179471BA013E3C6B4 - C:\WINDOWS\SysWOW64\Macromed\Flash\NPSWF32_11_8_800_94.dll - Shockwave Flash

D7324EB1EDCB8990F8522DE0311359E9 - C:\WINDOWS\SysWOW64\npDeployJava1.dll - Java Deployment Toolkit 7.0.250.17

F556A64AB2DB1BD834E7C89CE211516B - C:\Windows\system32\Adobe\Director\np32dsw.dll - Shockwave for Director / Shockwave for Director

3A57A288F098188E92C6B0309CBC50B2 - C:\WINDOWS\SysWOW64\npmproxy.dll - Microsoft® Windows® Operating System

==== Chrome Look ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions

cjofdnhdkbflacojpfpkchgafjahijbb - C:\Users\Fernand\AppData\Local\CRE\cjofdnhdkbflacojpfpkchgafjahijbb.crx[]

debkinhcgejcbfgjiaalomcmkedjmiaa - C:\Program Files (x86)\HP SimplePass 2012\tschrome.crx[25-08-2011 13:41]

dlnembnfbcpjnepmfjmngjenhhajpdfd - C:\Program Files\Web Assistant\source.crx[]

jbolfgndggfhhpbnkgnpjkfhinclbigj - C:\Program Files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Chrome\Freemake.Plugin.Chrome.crx[]

niapdbllcanepiiimjjndipklodoedlc - C:\Program Files (x86)\Yontoo\YontooLayers.crx[]

pmlghpafmmnmmkjdhacccolfgnkiboco - C:\Program Files (x86)\1ClickDownload\oneclickdownloader11.crx[]

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions

cjofdnhdkbflacojpfpkchgafjahijbb - C:\Users\Fernand\AppData\Local\CRE\cjofdnhdkbflacojpfpkchgafjahijbb.crx[]

==== Chrome Fix ======================

C:\Users\Fernand\AppData\Local\Google\Chrome\User Data\Default\Extensions\cjofdnhdkbflacojpfpkchgafjahijbb deleted successfully

==== Set IE to Default ======================

Old Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="Google"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47c0-9269-B4C6572FD61A}] not found

New Values:

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]

"Start Page"="Google"

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes]

"DefaultScope"="{6A1806CD-94D4-4689-BA73-E35EA1EA9990}"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes

{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="{searchTerms} - Bing"

{483830EE-A4CD-4b71-B0A3-3D82E62A6909} Unknown Url="Not_Found"

{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url="{searchTerms} - Google Search}"

{95B7759C-8C7F-4BF1-B163-73684A933233} AVG Secure Search Url="https://isearch.avg.com/search?cid={C53F155B-0D2E-4917-A4A6-C8F3885A4C9C}&mid=959779b4c15b47d0818d359c7b1f48c7-25a714bad6dec7b97ec3e2c796ff5c7bac5d0f10〈=nl&ds=AVG&pr=fr&d=2012-07-16"

{b7fca997-d0fb-4fe0-8afd-255e89cf9671} Yahoo Url="{searchTerms} - Yahoo!-Zoekresultaten"

{d43b3890-80c7-4010-a95d-1e77b5924dc3} Wikipedia Url="Zoekresultaten voor "{searchTerms" - Wikipedia}"

{D944BB61-2E34-4DBF-A683-47E505C587DC} eBay Url="searchTerms | eBay}"

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-116800127-559303469-1812208031-1002\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4b71-B0A3-3D82E62A6909} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\cjofdnhdkbflacojpfpkchgafjahijbb deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\jbolfgndggfhhpbnkgnpjkfhinclbigj deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\niapdbllcanepiiimjjndipklodoedlc deleted successfully

HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Google\Chrome\Extensions\pmlghpafmmnmmkjdhacccolfgnkiboco deleted successfully

HKEY_CURRENT_USER\SOFTWARE\Google\Chrome\Extensions\cjofdnhdkbflacojpfpkchgafjahijbb deleted successfully

==== HijackThis Entries ======================

F2 - REG:system.ini: UserInit=userinit.exe,

O2 - BHO: ExplorerBHO Class - {449D0D6E-2412-4E61-B68F-1CB625CD9E52} - C:\Program Files\Classic Shell\ClassicExplorer32.dll

O2 - BHO: AMD SteadyVideo BHO - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll

O2 - BHO: Java Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll

O2 - BHO: TSBHO Class - {8590886E-EC8C-43C1-A32C-E4C2B0B6395B} - C:\Program Files (x86)\HP SimplePass 2012\IEBHO.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll

O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll

O2 - BHO: ClassicIE9BHO Class - {EA801577-E6AD-4BD5-8F71-4BE0154331A4} - C:\Program Files\Classic Shell\ClassicIE9DLL_32.dll

O3 - Toolbar: Classic Explorer Bar - {553891B7-A0D5-4526-BE18-D3CE461D6310} - C:\Program Files\Classic Shell\ClassicExplorer32.dll

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2013\avgui.exe" /TRAYONLY

O4 - HKLM\..\Run: [bDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe

O4 - HKLM\..\Run: [Easybits Recovery] C:\Program Files (x86)\EasyBits For Kids\ezRecover.exe

O4 - HKLM\..\Run: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey

O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe

O4 - HKLM\..\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe

O4 - HKLM\..\Run: [HPQuickWebProxy] "C:\Program Files (x86)\Hewlett-Packard\HP QuickWeb\hpqwutils.exe"

O4 - HKLM\..\Run: [NBAgent] "C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart

O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"

O4 - HKLM\..\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun

O4 - HKLM\..\Run: [sSBkgdUpdate] "C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot

O4 - HKLM\..\Run: [PaperPort PTD] "C:\Program Files (x86)\ScanSoft\PaperPort\pptd40nt.exe"

O4 - HKLM\..\Run: [indexSearch] "C:\Program Files (x86)\ScanSoft\PaperPort\IndexSearch.exe"

O4 - HKLM\..\Run: [PPort11reminder] "C:\Program Files (x86)\ScanSoft\PaperPort\Ereg\Ereg.exe" -r "C:\ProgramData\ScanSoft\PaperPort\11\Config\Ereg\Ereg.ini"

O4 - HKLM\..\Run: [brMfcWnd] C:\Program Files (x86)\Brother\Brmfcmon\BrMfcWnd.exe /AUTORUN

O4 - HKLM\..\Run: [ControlCenter3] C:\Program Files (x86)\Brother\ControlCenter3\brctrcen.exe /autorun

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O8 - Extra context menu item: &Verzenden naar OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105

O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000

O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll

O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe

O9 - Extra button: (no name) - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe

O9 - Extra 'Tools' menuitem: Classic IE9 Settings - {56753E59-AF1D-4FBA-9E15-31557124ADA2} - C:\Program Files\Classic Shell\ClassicIE9_32.exe

O9 - Extra button: (no name) - {64964764-1101-4bbd-8891-B56B1A53B9B3} - C:\Program Files\Classic Shell\ClassicExplorer32.dll

O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} (GMNRev Class) - http://h20614.www2.hp.com/ediags/gmd/Install/Cab/hpdetect119.cab

O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - (no file)

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL

O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll

O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll

O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll

O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe

O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

O23 - Service: Andrea ST Filters Service (AESTFilters) - Andrea Electronics Corporation - C:\Program Files\IDT\WDM\AESTSr64.exe

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\WINDOWS\System32\alg.exe (file missing)

O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe

O23 - Service: AVGIDSAgent - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgidsagent.exe

O23 - Service: AVG WatchDog (avgwd) - AVG Technologies CZ, s.r.o. - C:\Program Files (x86)\AVG\AVG2013\avgwdsvc.exe

O23 - Service: @oem26.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service (BcmBtRSupport) - Unknown owner - C:\WINDOWS\system32\BtwRSupportService.exe (file missing)

O23 - Service: Classic Shell Service (ClassicShellService) - IvoSoft - C:\Program Files\Classic Shell\ClassicShellService.exe

O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\WINDOWS\system32\fxssvc.exe (file missing)

O23 - Service: TrueSuiteService (FPLService) - HP - C:\Program Files (x86)\HP SimplePass 2012\TrueSuiteService.exe

O23 - Service: Freemake Improver - Freemake - C:\ProgramData\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe

O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe

O23 - Service: Google Update-service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe

O23 - Service: HP Auto (HPAuto) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe

O23 - Service: HP Client Services (HPClientSvc) - Hewlett-Packard Company - C:\Program Files\Hewlett-Packard\HP Client Services\HPClientServices.exe

O23 - Service: HP Quick Synchronization Service (HPDrvMntSvc.exe) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe

O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe

O23 - Service: @oem12.inf,%hpservice_desc%;HP Service (hpsrv) - Unknown owner - C:\WINDOWS\system32\Hpservice.exe (file missing)

O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe

O23 - Service: IconMan_R - Realsil Microelectronics Inc. - C:\Program Files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe

O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)

O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\WINDOWS\System32\msdtc.exe (file missing)

O23 - Service: @mqutil.dll,-6102 (MSMQ) - Unknown owner - C:\WINDOWS\system32\mqsvc.exe (file missing)

O23 - Service: Nero Update (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\WINDOWS\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\WINDOWS\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\WINDOWS\System32\spoolsv.exe (file missing)

O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\WINDOWS\system32\sppsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10101 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe

O23 - Service: TomTomHOMEService - TomTom - C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\WINDOWS\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\WINDOWS\system32\vssvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\WINDOWS\system32\wbengine.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

==== Empty IE Cache ======================

C:\WINDOWS\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Fernand\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

C:\Users\Fernand\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully

C:\WINDOWS\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

C:\users\Fernand\AppData\Local\Mozilla\Firefox\Profiles\1zkfgpul.default\Cache emptied successfully

==== Empty Chrome Cache ======================

No Chrome Cache found

==== Empty All Flash Cache ======================

Flash Cache is not empty, a reboot is needed

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\WINDOWS\Temp successfully emptied

C:\Users\Fernand\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== Deleting Files / Folders ======================

"C:\users\Fernand\AppData\Roaming\Macromedia\Flash Player\#SharedObjects\AEKWX3AB\admin.brightcove.com" not found

==== EOF on zo 21-07-2013 at 16:27:09,99 ======================

[jahewi]

Hoi Ferre50,

Dat ziet er al een stuk beter uit.

Nog even een controle op losse restjes malware:

Download AdwCleaner by Xplode naar het bureaublad.

• Sluit alle openstaande vensters.
  
• Dubbelklik op AdwCleaner om hem te starten.
  
• Klik vervolgens op Verwijderen.
  
• Klik bij AdwCleaner – Informatie op OK
  
• Klik bij AdwCleaner – Herstarten Noodzakelijk op OK
  

Dat tijdens de actie de snelkoppelingen verdwijnen, is normaal.

Nadat de PC opnieuw is opgestart, opent een logfile.

Post aansluitend de inhoud van dit log in je volgende bericht.

Laat dan gelijk ook weten hoe het met de problemen gesteld is.

sukses,

jahewi

[Ferre50]

De ongevraagde webpagina"blogto.com"is niet meer gekomen,nu was er een andere,de reclame vakjes zijn ook weg.

# AdwCleaner v2.306 - Verslag gemaakt op 21/07/2013 om 18:36:16

# Geactualiseerd op 19/07/2013 door Xplode

# Besturingssysteem : Windows 8 Pro with Media Center (64 bits)

# Gebruiker : Fernand - FERNAND-HP

# Opstarten Modus : Normale modus

# Gelanceerd vanaf : C:\Users\Fernand\Downloads\adwcleaner (1).exe

# Optie [Zoeken]

***** [Diensten] *****

***** [Files / Mappen] *****

***** [Register] *****

Sleutel Aanwezig : HKCU\Software\1ClickDownload

Sleutel Aanwezig : HKCU\Software\AppDataLow\Software\Conduit

Sleutel Aanwezig : HKCU\Software\AppDataLow\Software\ConduitSearchScopes

Sleutel Aanwezig : HKCU\Software\AppDataLow\Software\PriceGong

Sleutel Aanwezig : HKCU\Software\AppDataLow\Software\searchqutoolbar

Sleutel Aanwezig : HKCU\Software\AppDataLow\Software\SmartBar

Sleutel Aanwezig : HKCU\Software\BabylonToolbar

Sleutel Aanwezig : HKCU\Software\Conduit

Sleutel Aanwezig : HKCU\Software\DataMngr

Sleutel Aanwezig : HKCU\Software\DataMngr_Toolbar

Sleutel Aanwezig : HKCU\Software\IGearSettings

Sleutel Aanwezig : HKCU\Software\ilivid

Sleutel Aanwezig : HKCU\Software\IM

Sleutel Aanwezig : HKCU\Software\ImInstaller

Sleutel Aanwezig : HKCU\Software\InstallCore

Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}

Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}

Sleutel Aanwezig : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}

Sleutel Aanwezig : HKCU\Software\Softonic

Sleutel Aanwezig : HKCU\Software\WNLT

Sleutel Aanwezig : HKCU\Software\YourFileDownloader

Sleutel Aanwezig : HKCU\Software\5808a8fe63be915

Sleutel Aanwezig : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}

Sleutel Aanwezig : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}

Sleutel Aanwezig : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}

Sleutel Aanwezig : HKLM\Software\AVG Secure Search

Sleutel Aanwezig : HKLM\Software\Babylon

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\1ClicktorrentFile

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\1ClicktorrentFile1

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\Extension.DLL

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject.1

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\oneclick

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\oneclickmg

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Prod.cap

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Toolbar.CT2865317

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Toolbar.CT3201318

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Toolbar.CT3241949

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\TypeLib\{B00FE392-639D-4688-976E-A1BFF368CB96}

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\YontooIEClient.Api

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\YontooIEClient.Layers

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\YontooIEClient.Layers.1

Sleutel Aanwezig : HKLM\Software\Conduit

Sleutel Aanwezig : HKLM\Software\DataMngr

Sleutel Aanwezig : HKLM\Software\IB Updater

Sleutel Aanwezig : HKLM\Software\Iminent

Sleutel Aanwezig : HKLM\Software\ImInstaller

Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}

Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}

Sleutel Aanwezig : HKLM\Software\Web Assistant

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\5808a8fe63be915

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{7697BC38-D0FA-454B-AC75-968B4CCABFCE}

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}

Sleutel Aanwezig : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Freemake Video Converter_is1

Sleutel Aanwezig : HKLM\Software\YourFileDownloader

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{7697BC38-D0FA-454B-AC75-968B4CCABFCE}

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}

Sleutel Aanwezig : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}

Sleutel Aanwezig : HKLM\SOFTWARE\DataMngr

Sleutel Aanwezig : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd

Sleutel Aanwezig : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd

Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}

Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}

Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1

Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}

Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\incredibar

Sleutel Aanwezig : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WNLT

Sleutel Aanwezig : HKLM\SOFTWARE\Tarma Installer

Sleutel Aanwezig : HKLM\SOFTWARE\Web Assistant

Sleutel Aanwezig : HKU\S-1-5-21-116800127-559303469-1812208031-1002\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}

Sleutel Aanwezig : HKU\S-1-5-21-116800127-559303469-1812208031-1002\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}

Sleutel Aanwezig : HKU\S-1-5-21-116800127-559303469-1812208031-1002\Software\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}

Waarde Aanwezig : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]

Waarde Aanwezig : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]

Waarde Aanwezig : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052}]

***** [browsers] *****

-\\ Internet Explorer v10.0.9200.16537

[OK] Het register bevat geen enkele ongeoorloofde invoer.

-\\ Mozilla Firefox v22.0 (nl)

File : C:\Users\Fernand\AppData\Roaming\Mozilla\Firefox\Profiles\1zkfgpul.default\prefs.js

[OK] De file bevat geen enkele ongeoorloofde invoer.

File : C:\Users\Fernand\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js

[OK] De file bevat geen enkele ongeoorloofde invoer.

File : C:\Users\Fernand\AppData\Roaming\Mozilla\Firefox\Profiles\[ofr2][opt]rs0,[slws][slns]\prefs.js

[OK] De file bevat geen enkele ongeoorloofde invoer.

-\\ Google Chrome v [Onmogelijk de versie te verkrijgen]

File : C:\Users\Fernand\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] De file bevat geen enkele ongeoorloofde invoer.

*************************

AdwCleaner[R1].txt - [10376 octets] - [21/07/2013 17:27:10]

AdwCleaner[R2].txt - [10441 octets] - [21/07/2013 18:33:54]

AdwCleaner[R3].txt - [10413 octets] - [21/07/2013 18:36:16]

########## EOF - C:\AdwCleaner[R3].txt - [10474 octets] ##########

- - - Updated - - -

Sorry,was vergeten op verwijderen te klikken,zie hier het logje na verwijderen.

# AdwCleaner v2.306 - Verslag gemaakt op 21/07/2013 om 18:46:11

# Geactualiseerd op 19/07/2013 door Xplode

# Besturingssysteem : Windows 8 Pro with Media Center (64 bits)

# Gebruiker : Fernand - FERNAND-HP

# Opstarten Modus : Normale modus

# Gelanceerd vanaf : C:\Users\Fernand\Downloads\adwcleaner (1).exe

# Optie [Verwijderen]

***** [Diensten] *****

***** [Files / Mappen] *****

***** [Register] *****

Sleutel Verwijderd : HKCU\Software\1ClickDownload

Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\Conduit

Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\ConduitSearchScopes

Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\PriceGong

Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\searchqutoolbar

Sleutel Verwijderd : HKCU\Software\AppDataLow\Software\SmartBar

Sleutel Verwijderd : HKCU\Software\BabylonToolbar

Sleutel Verwijderd : HKCU\Software\Conduit

Sleutel Verwijderd : HKCU\Software\DataMngr

Sleutel Verwijderd : HKCU\Software\DataMngr_Toolbar

Sleutel Verwijderd : HKCU\Software\IGearSettings

Sleutel Verwijderd : HKCU\Software\ilivid

Sleutel Verwijderd : HKCU\Software\IM

Sleutel Verwijderd : HKCU\Software\ImInstaller

Sleutel Verwijderd : HKCU\Software\InstallCore

Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}

Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}

Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}

Sleutel Verwijderd : HKCU\Software\Softonic

Sleutel Verwijderd : HKCU\Software\WNLT

Sleutel Verwijderd : HKCU\Software\YourFileDownloader

Sleutel Verwijderd : HKCU\Software\5808a8fe63be915

Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{95B7759C-8C7F-4BF1-B163-73684A933233}

Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}

Sleutel Verwijderd : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}

Sleutel Verwijderd : HKLM\Software\AVG Secure Search

Sleutel Verwijderd : HKLM\Software\Babylon

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\1ClicktorrentFile

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\1ClicktorrentFile1

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{608D3067-77E8-463D-9084-908966806826}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{B302A1BD-0157-49FA-90F1-4E94F22C7B4B}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{CFDAFE39-20CE-451D-BD45-A37452F39CF0}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\Extension.DLL

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\YontooIEClient.DLL

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Applications\ilividsetup.exe

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Applications\ilividsetupv1.exe

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Extension.ExtensionHelperObject.1

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\oneclick

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\oneclickmg

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Prod.cap

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Toolbar.CT2865317

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Toolbar.CT3201318

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Toolbar.CT3241949

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{1D5A4199-956E-49BC-B89F-6A35C57C0D13}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{B00FE392-639D-4688-976E-A1BFF368CB96}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\TypeLib\{D372567D-67C1-4B29-B3F0-159B52B3E967}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\YontooIEClient.Api

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\YontooIEClient.Api.1

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\YontooIEClient.Layers

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\YontooIEClient.Layers.1

Sleutel Verwijderd : HKLM\Software\Conduit

Sleutel Verwijderd : HKLM\Software\DataMngr

Sleutel Verwijderd : HKLM\Software\IB Updater

Sleutel Verwijderd : HKLM\Software\Iminent

Sleutel Verwijderd : HKLM\Software\ImInstaller

Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}

Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{DF7770F7-832F-4BDF-B144-100EDDD0C3AE}

Sleutel Verwijderd : HKLM\Software\Web Assistant

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\5808a8fe63be915

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{3C471948-F874-49F5-B338-4F214A2EE0B1}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{898EA8C8-E7FF-479B-8935-AEC46303B9E5}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{99066096-8989-4612-841F-621A01D54AD7}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{BC9FD17D-30F6-4464-9E53-596A90AFF023}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\CLSID\{FE9271F2-6EFD-44B0-A826-84C829536E93}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{7697BC38-D0FA-454B-AC75-968B4CCABFCE}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}

Sleutel Verwijderd : HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\Freemake Video Converter_is1

Sleutel Verwijderd : HKLM\Software\YourFileDownloader

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{10DE7085-6A1E-4D41-A7BF-9AF93E351401}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{1AD27395-1659-4DFF-A319-2CFA243861A5}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{7697BC38-D0FA-454B-AC75-968B4CCABFCE}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}

Sleutel Verwijderd : HKLM\SOFTWARE\Classes\Interface\{A36867C6-302D-49FC-9D8E-1EB037B5F1AB}

Sleutel Verwijderd : HKLM\SOFTWARE\DataMngr

Sleutel Verwijderd : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd

Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{B7FCA997-D0FB-4FE0-8AFD-255E89CF9671}

Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}

Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1

Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{889DF117-14D1-44EE-9F31-C5FB5D47F68B}

Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\incredibar

Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WNLT

Sleutel Verwijderd : HKLM\SOFTWARE\Tarma Installer

Sleutel Verwijderd : HKLM\SOFTWARE\Web Assistant

Waarde Verwijderd : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}]

Waarde Verwijderd : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]

Waarde Verwijderd : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{FE1DEEEA-DB6D-44b8-83F0-34FC0F9D1052}]

***** [browsers] *****

-\\ Internet Explorer v10.0.9200.16537

[OK] Het register bevat geen enkele ongeoorloofde invoer.

-\\ Mozilla Firefox v22.0 (nl)

File : C:\Users\Fernand\AppData\Roaming\Mozilla\Firefox\Profiles\1zkfgpul.default\prefs.js

[OK] De file bevat geen enkele ongeoorloofde invoer.

File : C:\Users\Fernand\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js

[OK] De file bevat geen enkele ongeoorloofde invoer.

File : C:\Users\Fernand\AppData\Roaming\Mozilla\Firefox\Profiles\[ofr2][opt]rs0,[slws][slns]\prefs.js

[OK] De file bevat geen enkele ongeoorloofde invoer.

-\\ Google Chrome v [Onmogelijk de versie te verkrijgen]

File : C:\Users\Fernand\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] De file bevat geen enkele ongeoorloofde invoer.

*************************

AdwCleaner[R1].txt - [10376 octets] - [21/07/2013 17:27:10]

AdwCleaner[R2].txt - [10441 octets] - [21/07/2013 18:33:54]

AdwCleaner[R3].txt - [10502 octets] - [21/07/2013 18:36:16]

AdwCleaner[s1].txt - [10121 octets] - [21/07/2013 18:46:11]

########## EOF - C:\AdwCleaner[s1].txt - [10182 octets] ##########

[jahewi]

Hoi Ferre50,

Begrijp ik het goed dat er nog steeds een ongevraagde pagina wordt geopend?

De computer ziet er in ieder geval een stuk opgeruimder uit.

Ik wil je echter graag nog een extra malware-scan laten doen en dan nog wat verder in je computer kijken of er niets is achter gebleven:

Deel 1:

Download MalwareBytes' Anti-Malware (website) en sla het op je bureaublad op.

Zorg dat er na de installatie een vinkje is geplaatst bij:

• Update MalwareBytes' Anti-Malware
  
• Start MalwareBytes' Anti-Malware
  
• Je krijgt hier ook de keuze om de evaluatie versie van MBAM te gebruiken, indien je dit niet wilt vink dit dan uit.
  

Klik daarna op "Voltooien".

Indien een update gevonden wordt, zal die gedownload en geïnstalleerd worden.

Bij problemen!!! (Lees de onderstaande instructies)

• Malwarebytes' Anti-Malware Chameleon
  
• Problemen bij het installeren van Malwarebytes' Anti-Malware
  
• Problemen bij het updaten van Malwarebytes' Anti-Malware
  
• Problemen bij het starten van Malwarebytes' Anti-Malware
  

• Zodra het programma gestart is, ga dan naar het tabblad "Instellingen".
  
• Vink hier aan: "Sluit Internet Explorer tijdens verwijdering van malware".
  
• Ga daarna naar het tabblad "Scanner", kies hier voor "Snelle Scan".
  
• Druk vervolgens op "Scannen" om de scan te starten.
  
• Het scannen kan een tijdje duren, dus wees geduldig.
  
• Wanneer de scan voltooid is, klik op OK, daarna "Bekijk Resultaten" om de resultaten te zien.
  
• Zorg ervoor dat daar alles aangevinkt is, daarna klik op: "Verwijder geselecteerde".
  
• Na het verwijderen zal een log openen en zal er gevraagd worden om de computer opnieuw op te starten.
  
• Herstart de computer indien nodig en post hierna de log in het volgende bericht.
  

Deel 2:

Download zoek.exe naar het bureaublad.

Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe

(hier of hier) kan je lezen hoe je dat doet.

• Dubbelklik op Zoek.exe om de tool te starten.
  
• Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
  
• Kopieer nu onderstaande code en plak die in het grote invulvenster:
  
• Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
  

 
standardsearch; 
silentrunners; 

• Klik nu op de knop "Run script".
  
• Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
  
• Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
  
• Post het geopende logje in het volgende bericht.
  

sukses,

jahewi

[Ferre50]

Beste Jahewi,

De laatste 2 uren geen problemen meer gehad na verwijderen van de sleutels in logje van adwcleaner.

Bij deze wil ik U bedanken voor de hulp.

Als er morgen geen problemen meer zijn zal ik als opgelost markeren.

Mvg.

[jahewi]

heel graag gedaan, Ferre50

Mocht je toch nog problemen hebben, voer dan de instrukties, die ik hierboven heb geplaatst, uit.

Groet,

jahewi