Doorzoek het forum
Zoeken met Startpagina
Startpagina Thema's
rudi
(tu)
Hallo Huib,
Jij ook de beste wensen voor 2013! Hier komen de logjes:
ComboFix 13-01-03.05 - Arne_Marijke 03-01-2013 20:15:06.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.31.1043.18.2989.1480
Gestart vanuit: c:\users\Arne_Marijke\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((( Andere Verwijderingen )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\FullRemove.exe
c:\windows\msvcr71.dll
c:\windows\SysWow64\~GLH0035.TMP
c:\windows\SysWow64\muzapp.exe
.
.
(((((((((((((((((((( Bestanden Gemaakt van 2012-12-03 to 2013-01-03 ))))))))))))))))))))))))))))))
.
.
2013-01-03 19:33 . 2013-01-03 19:33 ——– d—–w- c:\users\Default\AppData\Local\temp
2013-01-03 19:17 . 2013-01-03 19:17 76232 —-a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E2A301AE-6C9C-435D-A4B0-1FC438840749}\offreg.dll
2013-01-03 19:05 . 2012-11-19 00:01 9125352 —-a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E2A301AE-6C9C-435D-A4B0-1FC438840749}\mpengine.dll
2013-01-03 19:05 . 2012-05-31 10:25 279656 ——w- c:\windows\system32\MpSigStub.exe
2013-01-03 18:22 . 2012-10-30 22:51 370288 —-a-w- c:\windows\system32\drivers\aswSP.sys
2013-01-03 18:22 . 2012-10-30 22:51 25232 —-a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-01-03 18:22 . 2012-10-15 16:59 54072 —-a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-01-03 18:22 . 2012-10-30 22:51 59728 —-a-w- c:\windows\system32\drivers\aswTdi.sys
2013-01-03 18:22 . 2012-10-30 22:51 984144 —-a-w- c:\windows\system32\drivers\aswSnx.sys
2013-01-03 18:22 . 2012-10-30 22:51 71600 —-a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-01-03 18:22 . 2012-10-30 22:50 285328 —-a-w- c:\windows\system32\aswBoot.exe
2013-01-03 18:20 . 2012-10-30 22:51 41224 —-a-w- c:\windows\avastSS.scr
2013-01-03 18:20 . 2012-10-30 22:50 227648 —-a-w- c:\windows\SysWow64\aswBoot.exe
2013-01-03 18:20 . 2013-01-03 18:20 ——– d—–w- c:\programdata\AVAST Software
2013-01-03 18:20 . 2013-01-03 18:20 ——– d—–w- c:\program files\AVAST Software
2012-12-30 22:19 . 2012-12-30 22:19 ——– d—–w- c:\windows\system32\SPReview
2012-12-30 21:55 . 2012-12-30 21:55 ——– d—–w- c:\program files (x86)\Common Files\Java
2012-12-30 21:54 . 2012-12-30 21:53 859072 —-a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-12-30 21:54 . 2012-12-30 21:53 95184 —-a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2012-12-30 20:59 . 2012-11-28 14:58 67413224 —-a-w- c:\windows\system32\MRT.exe
2012-12-30 20:39 . 2012-12-30 20:39 ——– d—–w- c:\windows\system32\EventProviders
2012-12-30 19:20 . 2012-12-30 19:20 ——– d—–w- c:\program files (x86)\MyFree Codec
2012-12-30 19:14 . 2012-09-20 04:35 203104 —-a-w- c:\windows\system32\drivers\ssudobex.sys
2012-12-30 19:14 . 2012-09-20 04:35 203104 —-a-w- c:\windows\system32\drivers\ssudmdm.sys
2012-12-30 19:14 . 2012-09-20 04:35 102368 —-a-w- c:\windows\system32\drivers\ssudbus.sys
2012-12-28 18:44 . 2012-12-28 18:44 ——– d—–w- c:\users\Arne_Marijke\AppData\Roaming\Malwarebytes
2012-12-28 18:43 . 2012-12-28 18:43 ——– d—–w- c:\programdata\Malwarebytes
2012-12-28 18:43 . 2012-12-28 18:44 ——– d—–w- c:\program files (x86)\Malwarebytes' Anti-Malware
2012-12-28 18:43 . 2012-12-14 15:49 24176 —-a-w- c:\windows\system32\drivers\mbam.sys
2012-12-28 18:42 . 2012-12-28 18:42 ——– d—–w- c:\users\Arne_Marijke\AppData\Local\Programs
2012-12-26 21:15 . 2012-12-26 21:15 ——– d—–w- c:\programdata\Preventon
2012-12-26 13:06 . 2012-12-26 13:36 ——– d—–w- c:\programdata\clp
2012-12-26 12:25 . 2012-12-26 14:00 ——– d—–w- c:\program files (x86)\Common Files\PC Tools
2012-12-26 12:24 . 2012-12-26 12:24 ——– d—–w- c:\programdata\PC Tools
2012-12-26 12:24 . 2012-12-26 12:24 ——– d—–w- c:\users\Arne_Marijke\AppData\Roaming\Product_RM
2012-12-20 20:17 . 2012-12-16 17:11 46080 —-a-w- c:\windows\system32\atmlib.dll
2012-12-20 20:17 . 2012-12-16 14:13 34304 —-a-w- c:\windows\SysWow64\atmlib.dll
2012-12-20 20:17 . 2012-12-16 14:45 367616 —-a-w- c:\windows\system32\atmfd.dll
2012-12-20 20:17 . 2012-12-16 14:13 295424 —-a-w- c:\windows\SysWow64\atmfd.dll
2012-12-12 09:46 . 2012-11-09 05:45 2048 —-a-w- c:\windows\system32\tzres.dll
2012-12-12 09:46 . 2012-11-09 04:42 2048 —-a-w- c:\windows\SysWow64\tzres.dll
2012-12-12 09:46 . 2012-11-22 03:26 3149824 —-a-w- c:\windows\system32\win32k.sys
2012-12-06 18:09 . 2012-08-21 12:01 33240 —-a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2012-12-06 18:08 . 2012-12-06 18:08 ——– d—–w- c:\program files\iPod
2012-12-06 18:08 . 2012-12-06 18:09 ——– d—–w- c:\programdata\34BE82C4-E596-4e99-A191-52C6199EBF69
2012-12-06 18:08 . 2012-12-06 18:09 ——– d—–w- c:\program files\iTunes
2012-12-06 18:08 . 2012-12-06 18:09 ——– d—–w- c:\program files (x86)\iTunes
2012-12-06 18:06 . 2012-12-06 18:06 ——– d—–w- c:\program files\Bonjour
2012-12-06 18:06 . 2012-12-06 18:06 ——– d—–w- c:\program files (x86)\Bonjour
2012-12-06 18:04 . 2012-12-06 18:04 159744 —-a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin7.dll
2012-12-06 18:04 . 2012-12-06 18:04 159744 —-a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin6.dll
2012-12-06 18:04 . 2012-12-06 18:04 159744 —-a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin5.dll
2012-12-06 18:04 . 2012-12-06 18:04 159744 —-a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin4.dll
2012-12-06 18:04 . 2012-12-06 18:04 159744 —-a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin3.dll
2012-12-06 18:04 . 2012-12-06 18:04 159744 —-a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin2.dll
2012-12-06 18:04 . 2012-12-06 18:04 159744 —-a-w- c:\program files (x86)\Internet Explorer\Plugins\npqtplugin.dll
2012-12-06 18:04 . 2012-12-06 18:04 ——– d—–w- c:\program files (x86)\QuickTime
2012-12-06 13:00 . 2012-12-06 13:00 ——– d—–w- c:\windows\nl
.
.
.
((((((((((((((((((((((((((((((((((((((( Find3M Rapport ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-12-30 22:38 . 2009-07-14 02:36 152576 —-a-w- c:\windows\SysWow64\msclmd.dll
2012-12-30 22:38 . 2009-07-14 02:36 175616 —-a-w- c:\windows\system32\msclmd.dll
2012-12-30 21:53 . 2011-03-25 18:10 779704 —-a-w- c:\windows\SysWow64\deployJava1.dll
2012-11-05 12:38 . 2012-08-30 16:53 30568 —-a-w- c:\windows\system32\drivers\avgtpx64.sys
2012-10-25 02:12 . 2012-10-25 02:12 94208 —-a-w- c:\windows\SysWow64\QuickTimeVR.qtx
2012-10-25 02:12 . 2012-10-25 02:12 69632 —-a-w- c:\windows\SysWow64\QuickTime.qts
2012-10-22 18:33 . 2012-10-22 18:33 696760 —-a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-10-22 18:33 . 2011-06-11 17:11 73656 —-a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-10-16 08:38 . 2012-11-28 09:29 135168 —-a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2012-10-16 08:38 . 2012-11-28 09:29 350208 —-a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2012-10-16 07:39 . 2012-11-28 09:29 561664 —-a-w- c:\windows\apppatch\AcLayers.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Opstartpunten )))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Nota* lege verwijzingen & legitieme standaard verwijzingen worden niet getoond
REGEDIT4
.
“HP Photosmart 5510 series (NET)”=“c:\program files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe”
“gStart”=“c:\program files (x86)\Garmin\Training Center\gStart.exe”
“KiesPreload”=“c:\program files (x86)\Samsung\Kies\Kies.exe”
“KiesPDLR”=“c:\program files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe”
.
“UpdateLBPShortCut”=“c:\program files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe”
“UpdateP2GoShortCut”=“c:\program files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe”
“Boingo Wi-Fi”=“c:\program files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk”
“StartCCC”=“c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe”
“ATKOSD2”=“c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe”
“ATKMEDIA”=“c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe”
“HControlUser”=“c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe”
“SwitchBoard”=“c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe”
“AdobeCS5ServiceManager”=“c:\program files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe”
“HP Software Update”=“c:\program files (x86)\Hp\HP Software Update\HPWuSchd2.exe”
“KiesTrayAgent”=“c:\program files (x86)\Samsung\Kies\KiesTrayAgent.exe”
“ConnectionCenter”=“c:\program files (x86)\Citrix\ICA Client\concentr.exe”
“APSDaemon”=“c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe”
“QuickTime Task”=“c:\program files (x86)\QuickTime\QTTask.exe”
“iTunesHelper”=“c:\program files (x86)\iTunes\iTunesHelper.exe”
“Adobe ARM”=“c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe”
“avast”=“c:\program files\AVAST Software\Avast\avastUI.exe”
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
FancyStart daemon.lnk - c:\windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe
Receiver.lnk - c:\windows\Installer\{961882FF-663F-47D2-8588-C9943C5E6A26}\pnaico.exe.20FBBF0A_A7E5_4BDE_9798_9811C3D135AC.exe
.
“ConsentPromptBehaviorAdmin”= 5 (0x5)
“ConsentPromptBehaviorUser”= 3 (0x3)
“EnableUIADesktopToggle”= 0 (0x0)
.
“LoadAppInit_DLLs”=1 (0x1)
“AppInit_DLLs”=c:\progra~2\Citrix\ICACLI~1\RSHook.dll
.
“mixer”=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS
R3 ASPI;Advanced SCSI Programming Interface Driver;c:\windows\System32\DRIVERS\ASPI32.sys
R3 AVFSFilter;AVFSFilter;c:\windows\system32\DRIVERS\avfsfilter.sys
R3 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files (x86)\AVG\AVG10\Toolbar\ToolbarBroker.exe
R3 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys
R3 ssudobex;SAMSUNG Mobile USB OBEX Serial Port(DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudobex.sys
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys
R3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\Wat\WatAdminSvc.exe
S1 aswSnx;aswSnx;
S1 aswSP;aswSP;
S1 avgtp;avgtp;c:\windows\system32\drivers\avgtpx64.sys
S1 ctxusbm;Citrix USB Monitor Driver;c:\windows\system32\DRIVERS\ctxusbm.sys
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe
S2 aksdf;aksdf;c:\windows\system32\drivers\aksdf.sys
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys
S2 aswFsBlk;aswFsBlk;
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys
S2 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
S2 hasplms;Sentinel HASP License Manager;c:\windows\system32\hasplms.exe -run
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
S2 vToolbarUpdater13.2.0;vToolbarUpdater13.2.0;c:\program files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe
.
.
— Andere Services/Drivers In Geheugen —
.
*NewlyCreated* - ASWSNX
.
Inhoud van de ‘Gedeelde Taken’ map
.
2012-11-15 c:\windows\Tasks\AIRecoveryRemind.job
- c:\program files (x86)\ASUS\AI Recovery\AIRecoveryRemind.exe
.
2013-01-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe
.
2013-01-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe
.
2013-01-03 c:\windows\Tasks\HP Photo Creations Communicator.job
- c:\programdata\HP Photo Creations\MessageCheck.exe
.
.
——— X64 Entries ———–
.
.
@=“{472083B0-C522-11CF-8763-00608CC02F24}”
2012-10-30 22:50 133400 —-a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
@=“{6D4133E5-0742-4ADC-8A8C-9303440F7190}”
2009-11-26 05:49 70656 —-a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
@=“{64174815-8D98-4CE6-8646-4C039977D808}”
2009-11-26 05:49 70656 —-a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
“ETDWare”=“c:\program files\Elantech\ETDCtrl.exe”
“ASUS WebStorage”=“c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe”
“SysTrayApp”=“c:\program files\IDT\WDM\sttray64.exe”
“AmIcoSinglun64”=“c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe”
“AdobeAAMUpdater-1.0”=“c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe”
.
“AppInit_DLLs”=c:\progra~2\Citrix\ICACLI~1\RSHook.dll c:\progra~2\Citrix\ICACLI~1\RSHook.dll
.
——- Bijkomende Scan ——-
.
uStart Page = hxxp://www.google.nl/
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
TCP: DhcpNameServer = 192.168.2.1
DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/4.0.3.0/GarminAxControl_32.CAB
.
- - - - ORPHANS VERWIJDERD - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKCU-Run-Syncables - c:\program files (x86)\syncables\syncables desktop\Syncables.exe
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
Wow6432Node-HKCU-Run-KiesAirMessage - c:\program files (x86)\Samsung\Kies\KiesAirMessage.exe
Wow6432Node-HKLM-Run-vProt - c:\program files (x86)\AVG Secure Search\vprot.exe
Wow6432Node-HKLM-Run-ROC_roc_dec12 - c:\program files (x86)\AVG Secure Search\ROC_roc_dec12.exe
Wow6432Node-HKLM-Run- - (no file)
Wow6432Node-HKLM-Run-ROC_ROC_JULY_P1 - c:\program files (x86)\AVG Secure Search\ROC_ROC_JULY_P1.exe
Toolbar-Locked - (no file)
WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829} - (no file)
HKLM-Run-Setwallpaper - c:\programdata\SetWallpaper.cmd
AddRemove-K_Series_ScreenSaver_EN - c:\windows\system32\K_Series_ScreenSaver_EN.scr
.
.
.
——————— VERGRENDELDE REGISTER SLEUTELS ———————
.
@Denied: (A 2) (Everyone)
@=“FlashBroker”
“LocalizedString”=“@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe,-101”
.
“Enabled”=dword:00000001
.
@=“c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe”
.
@=“{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”
.
@Denied: (A 2) (Everyone)
@=“IFlashBroker5”
.
@=“{00020424-0000-0000-C000-000000000046}”
.
@=“{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”
“Version”=“1.0”
.
@Denied: (A 2) (Everyone)
@=“FlashBroker”
“LocalizedString”=“@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101”
.
“Enabled”=dword:00000001
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe”
.
@=“{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”
.
@Denied: (A 2) (Everyone)
@=“Shockwave Flash Object”
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx”
“ThreadingModel”=“Apartment”
.
@=“0”
.
@=“ShockwaveFlash.ShockwaveFlash.11”
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1”
.
@=“{D27CDB6B-AE6D-11cf-96B8-444553540000}”
.
@=“1.0”
.
@=“ShockwaveFlash.ShockwaveFlash”
.
@Denied: (A 2) (Everyone)
@=“Macromedia Flash Factory Object”
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx”
“ThreadingModel”=“Apartment”
.
@=“FlashFactory.FlashFactory.1”
.
@=“c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1”
.
@=“{D27CDB6B-AE6D-11cf-96B8-444553540000}”
.
@=“1.0”
.
@=“FlashFactory.FlashFactory”
.
@Denied: (A 2) (Everyone)
@=“IFlashBroker5”
.
@=“{00020424-0000-0000-C000-000000000046}”
.
@=“{FAB3E735-69C7-453B-A446-B6823C6DF1C9}”
“Version”=“1.0”
.
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
“BlindDial”=dword:00000000
.
@Denied: (Full) (Everyone)
.
Voltooingstijd: 2013-01-03 21:04:40
ComboFix-quarantined-files.txt 2013-01-03 20:04
.
Pre-Run: 8.856.363.008 bytes beschikbaar
Post-Run: 18.325.458.944 bytes beschikbaar
.
- - End Of File - - 89D4E96C6D17C6F6F76884FC0C6CCB93
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:33:37, on 3-1-2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Garmin\Training Center\gStart.exe
C:\Program Files (x86)\Samsung\Kies\Kies.exe
C:\Program Files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
C:\Program Files (x86)\ASUS\SmartLogon\sensorsrv.exe
C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo Wi-Fi.exe
C:\Program Files (x86)\Citrix\ICA Client\PNAMAIN.EXE
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
C:\Program Files (x86)\Citrix\ICA Client\concentr.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Citrix\ICA Client\Receiver\Receiver.exe
C:\Program Files (x86)\Citrix\ICA Client\WFCRUN32.EXE
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_4_402_287_ActiveX.exe
C:\Users\Arne_Marijke\Desktop\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.nl/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll (file missing)
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Aanmeldhulp voor Microsoft-account - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - “C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll” (file missing)
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - “C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll” (file missing)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: “C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe” “C:\Program Files (x86)\CyberLink\LabelPrint” UpdateWithCreateOnce “Software\CyberLink\LabelPrint\2.5”
O4 - HKLM\..\Run: “C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe” “C:\Program Files (x86)\CyberLink\Power2Go” UpdateWithCreateOnce “SOFTWARE\CyberLink\Power2Go\6.0”
O4 - HKLM\..\Run: “C:\Program Files (x86)\Boingo\Boingo Wi-Fi\Boingo.lnk”
O4 - HKLM\..\Run: “C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe” MSRun
O4 - HKLM\..\Run: C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe” -launchedbylogin
O4 - HKLM\..\Run: C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe
O4 - HKLM\..\Run: “C:\Program Files (x86)\Citrix\ICA Client\concentr.exe” /startup
O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe”
O4 - HKLM\..\Run: “C:\Program Files (x86)\QuickTime\QTTask.exe” -atboottime
O4 - HKLM\..\Run: “C:\Program Files (x86)\iTunes\iTunesHelper.exe”
O4 - HKLM\..\Run: “C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe”
O4 - HKLM\..\Run: “C:\Program Files\AVAST Software\Avast\avastUI.exe” /nogui
O4 - HKCU\..\Run: “C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe” -deviceID “CN1AO055XP05NR:NW” -scfn “HP Photosmart 5510 series (NET)” -AutoStart 1
O4 - HKCU\..\Run: C:\Program Files (x86)\Garmin\Training Center\gStart.exe
O4 - HKCU\..\Run: C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload
O4 - HKCU\..\Run: C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
O4 - Global Startup: FancyStart daemon.lnk = ?
O4 - Global Startup: Receiver.lnk = ?
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra ‘Tools’ menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: HP Smart Print - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe
O9 - Extra ‘Tools’ menuitem: SmartPrint - {22CC3EBD-C286-43aa-B8E6-06B115F74162} - C:\Program Files (x86)\Hewlett-Packard\SmartPrint\smartprintsetup.exe
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: Accelerated graphics
O16 - DPF: Garmin Communicator Plug-In - https://static.garmincdn.com/gcp/ie/4.0.3.0/GarminAxControl_32.CAB
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll (file missing)
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: application/x-ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica; charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica; charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica; charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica; charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica; charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica; charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica; charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica;charset=euc-jp - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica;charset=ISO-8859-1 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica;charset=MS936 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica;charset=MS949 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica;charset=MS950 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica;charset=UTF-8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter: application/x-ica;charset=UTF8 - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
O18 - Filter hijack: ica - {CFB6322E-CC85-4d1b-82C7-893888A236BC} - C:\Program Files (x86)\Citrix\ICA Client\IcaMimeFilter.dll
O20 - AppInit_DLLs: C:\PROGRA~2\Citrix\ICACLI~1\RSHook.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: AVG Security Toolbar Service - Unknown owner - C:\Program Files (x86)\AVG\AVG10\Toolbar\ToolbarBroker.exe
O23 - Service: Bonjour-service (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update-service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Sentinel HASP License Manager (hasplms) - Unknown owner - C:\Windows\system32\hasplms.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: iPod-service (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Audio Service (STacSV) - IDT, Inc. - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_38986e29a8b510a2\STacSV64.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: vToolbarUpdater13.2.0 - Unknown owner - C:\Program Files (x86)\Common Files\AVG Secure Search\vToolbarUpdater\13.2.0\ToolbarUpdater.exe
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
–
End of file - 16115 bytes
Hallo,
“zoek.exe” gebruiken
Schakel je antivirus- en antispywareprogramma's uit, zoek.exe wordt tijdens het downloaden of tijdens gebruik soms als trojan aangezien.
(hier of hier) kan je lezen hoe je dat doet.
Download daarna zoek.exe naar het bureaublad.
Windows 2000 en Windows XP: start de tool middels dubbelklik op “zoek.exe”.
Windows Vista en Windows 7: start de tool middels rechtsklik op “zoek.exe” en dan kiezen voor Als Administrator uitvoeren.
Vervolgens zal er na een tijdje een venster geopend worden.
Met je muis selecteer je nu de volgende keuze "Combined fix"(rechts onderaan)
Kopieer nu onderstaande Vet gedrukte en plak die in het grote invulvenster:
autoclean;
c:\program files (x86)\Common Files\AVG Secure Search;fs
AVG Security Toolbar Service;s
c:\program files (x86)\AVG;fs
vToolbarUpdater13.2.0;s
filesrcm;
chromelook;
firefoxlook;
startupall;
Sluit nu eerst alle nog openstaande programmavensters!
Klik nu op de knop "Run script".
Wacht nu geduldig af tot er een logje opent(dit kan na een herstart zijn)
Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
Post nu de inhoud van het geopende logje in het volgende bericht.
Gr.Ben
Zoek.exe Version 3.0.0.4 Updated 05-January-2013
Tool run by Arne_Marijke on ma 07-01-2013 at 14:41:23,59.
Microsoft Windows 7 Home Premium 6.1.7601 Service Pack 1 x64
Running in: Normal Mode Internet Access Detected
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1947532227-1929374630-366376058-1000\Software\Microsoft\Internet Explorer\SearchScopes\{4D7359AD-7DE4-442C-8C3B-4564C9F059B2} deleted successfully
HKEY_USERS\S-1-5-21-1947532227-1929374630-366376058-1000\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2A59} deleted successfully
HKEY_USERS\S-1-5-21-1947532227-1929374630-366376058-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
HKEY_USERS\S-1-5-21-1947532227-1929374630-366376058-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
HKEY_USERS\S-1-5-21-1947532227-1929374630-366376058-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} deleted successfully
HKEY_USERS\S-1-5-21-1947532227-1929374630-366376058-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} deleted successfully
HKEY_USERS\S-1-5-21-1947532227-1929374630-366376058-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D2CE3E00-F94A-4740-988E-03DC2F38C34F} deleted successfully
HKEY_USERS\S-1-5-21-1947532227-1929374630-366376058-1000\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D2CE3E00-F94A-4740-988E-03DC2F38C34F} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{D2CE3E00-F94A-4740-988E-03DC2F38C34F} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D2CE3E00-F94A-4740-988E-03DC2F38C34F} deleted successfully
HKEY_CLASSES_ROOT\CLSID\{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-1947532227-1929374630-366376058-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{21FA44EF-376D-4D53-9B0F-8A89D3229068} deleted successfully
HKEY_USERS\S-1-5-21-1947532227-1929374630-366376058-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\{CCC7A320-B3CA-4199-B1A6-9F516DD69829} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar\{8dcb7100-df86-4384-8842-8fa844297b3f} deleted successfully
==== Deleting Services ======================
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\AVG Security Toolbar Service deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\AVG Security Toolbar Service deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vToolbarUpdater13.2.0 deleted successfully
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Services\vToolbarUpdater13.2.0 deleted successfully
==== Deleting Files \ Folders ======================
“c:\program files (x86)\Common Files\AVG Secure Search” deleted
“c:\program files (x86)\AVG” deleted
==== Files Recently Created / Modified ======================
====== C:\Windows ====
2013-01-03 19:12:34 F042EE4C8D66248D9B86DCF52ABAE416 256000 —-a-w- C:\Windows\PEV.exe
2013-01-03 19:12:34 9E05A9C264C8A908A8E79450FCBFF047 80412 —-a-w- C:\Windows\grep.exe
2013-01-03 19:12:34 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 —-a-w- C:\Windows\zip.exe
2013-01-03 19:12:34 0297C72529807322B152F517FDB0A9FC 406528 —-a-w- C:\Windows\SWSC.exe
2013-01-03 19:12:34 0277C027A26428DB64EF4F64F52BB4FD 208896 —-a-w- C:\Windows\MBR.exe
2013-01-03 18:20:50 74D55DED81C61871F0DB7F3A63A4D312 41224 —-a-w- C:\Windows\avastSS.scr
====== C:\Users\ARNE_M~1\AppData\Local\Temp ====
====== C:\Windows\SysWOW64 =====
2013-01-03 18:22:30 D41D8CD98F00B204E9800998ECF8427E 0 —-a-w- C:\Windows\SysWOW64\config.nt
2013-01-03 18:20:46 A4B4FE50CCA23B38688003EA85A30EF6 227648 —-a-w- C:\Windows\SysWOW64\aswBoot.exe
2012-12-31 10:56:23 EF71BA5DF59034962B0C62314A71351A 193536 —-a-w- C:\Windows\SysWOW64\dhcpcore6.dll
2012-12-31 10:56:23 81F6C1AE23B1C493D9E996C3103915D7 44032 —-a-w- C:\Windows\SysWOW64\dhcpcsvc6.dll
2012-12-31 10:56:12 140D9F911182357626165EA0BEB98C4F 156672 —-a-w- C:\Windows\SysWOW64\ncsi.dll
2012-12-31 10:56:11 5078492B9CAC9CB721698DB51F039035 175104 —-a-w- C:\Windows\SysWOW64\netcorehc.dll
2012-12-31 10:56:11 0BA65122FFA7E37564EE86422DBF7AE8 52224 —-a-w- C:\Windows\SysWOW64\nlaapi.dll
2012-12-31 10:56:10 23FC8068953C9BE2D63AE4EF1129112A 18944 —-a-w- C:\Windows\SysWOW64\netevent.dll
2012-12-30 21:54:10 52DF0C578CC1A2659F0DF6FCFEC09222 95184 —-a-w- C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
====== C:\Windows\SysWOW64\drivers =====
====== C:\Windows\Sysnative =====
2013-01-03 19:05:56 77980C9B2B95CD1726C9054FEC145FDD 279656 ——w- C:\Windows\Sysnative\MpSigStub.exe
2013-01-03 18:22:30 B764F0F8B0D7FF2FFC3FB4C063F5F52A 285328 —-a-w- C:\Windows\Sysnative\aswBoot.exe
2012-12-31 10:56:23 3CC16A849E6092E43909F48EF0E60306 226816 —-a-w- C:\Windows\Sysnative\dhcpcore6.dll
2012-12-31 10:56:23 3C06D5A929B798D0B13F6481242A0FD2 55296 —-a-w- C:\Windows\Sysnative\dhcpcsvc6.dll
2012-12-31 10:56:12 D4FAC263861BAE06971C7F7D0A8EBF15 216576 —-a-w- C:\Windows\Sysnative\ncsi.dll
2012-12-31 10:56:12 59B3BE37BAFBD40715F45D580783738B 246272 —-a-w- C:\Windows\Sysnative\netcorehc.dll
2012-12-31 10:56:11 8AD77806D336673F270DB31645267293 303104 —-a-w- C:\Windows\Sysnative\nlasvc.dll
2012-12-31 10:56:11 08C2957BB30058E663720C5606885653 569344 —-a-w- C:\Windows\Sysnative\iphlpsvc.dll
2012-12-31 10:56:10 DC4382E93770B3BF0774DB7FE46C8239 18944 —-a-w- C:\Windows\Sysnative\netevent.dll
2012-12-31 10:56:10 46BB91A169B9B31FF44EB04C48EC1D41 70656 —-a-w- C:\Windows\Sysnative\nlaapi.dll
2012-12-31 10:56:05 A236B1646E96AB06BE0F8D592B6D9A0D 245760 —-a-w- C:\Windows\Sysnative\OxpsConverter.exe
2012-12-30 20:59:42 0B984635501604D42A7A1AC7DA191376 67413224 —-a-w- C:\Windows\Sysnative\MRT.exe
====== C:\Windows\Sysnative\drivers =====
2013-01-03 18:22:43 538A32E2C99BF073D4CA76C30BEDAA60 370288 —-a-w- C:\Windows\Sysnative\drivers\aswSP.sys
2013-01-03 18:22:43 4FCAEF0C5BE7629AEB878998E0FE959B 25232 —-a-w- C:\Windows\Sysnative\drivers\aswFsBlk.sys
2013-01-03 18:22:36 57768C7DB4681F2510F247F82EF31D4F 54072 —-a-w- C:\Windows\Sysnative\drivers\aswRdr2.sys
2013-01-03 18:22:35 6EDC79D73745FD44C41B55B2D13D0B70 59728 —-a-w- C:\Windows\Sysnative\drivers\aswTdi.sys
2013-01-03 18:22:34 E71D826A1F3CE9C9DE3E77F2D02AFFBF 984144 —-a-w- C:\Windows\Sysnative\drivers\aswSnx.sys
2013-01-03 18:22:30 B50CDD87772D6A11CB90924AAD399DF8 71600 —-a-w- C:\Windows\Sysnative\drivers\aswMonFlt.sys
2012-12-31 10:56:18 760E38053BF56E501D562B70AD796B88 950128 —-a-w- C:\Windows\Sysnative\drivers\ndis.sys
2012-12-31 10:56:18 0E01641D96889BDEB22DE12D30575B08 41472 —-a-w- C:\Windows\Sysnative\drivers\RNDISMP.sys
2012-12-31 10:56:12 7942B7AC3FF598F8A1736D51ADAF04E8 376688 —-a-w- C:\Windows\Sysnative\drivers\netio.sys
2012-12-31 10:56:12 37608401DFDB388CAF66917F6B2D6FB0 1914248 —-a-w- C:\Windows\Sysnative\drivers\tcpip.sys
2012-12-31 10:56:11 910DD6694848872FD3B8F42BAF801D0A 288624 —-a-w- C:\Windows\Sysnative\drivers\FWPKCLNT.SYS
2012-12-31 10:56:10 1B16D0BD9841794A6E0CDE0CEF744ABC 45568 —-a-w- C:\Windows\Sysnative\drivers\tcpipreg.sys
2012-12-30 19:14:12 F161567B90721F4C42BD5F95A4C9B2D0 203104 —-a-w- C:\Windows\Sysnative\drivers\ssudobex.sys
2012-12-30 19:14:11 C692C94FE55CAD0633440236022C27B3 203104 —-a-w- C:\Windows\Sysnative\drivers\ssudmdm.sys
2012-12-30 19:14:11 B9430166FEB246F6070A62B3554932C9 102368 —-a-w- C:\Windows\Sysnative\drivers\ssudbus.sys
2012-12-28 18:43:54 92EB844D90615CB266F84C3202B8786E 24176 —-a-w- C:\Windows\Sysnative\drivers\mbam.sys
====== C:\Windows\Tasks ======
====== C:\Windows\Temp ======
======= C:\Program Files =====
======= C:\Program Files (x86) =====
2012-12-30 19:20:40 ——– d—–w- C:\Program Files (x86)\MyFree Codec
2012-12-26 12:25:11 ——– d—–w- C:\Program Files (x86)\Common Files\PC Tools
======= C: =====
2012-12-29 19:29:03 57E1DBDF2D3741CF765030DE14058FC2 801 —-a-w- C:\AdwCleaner.txt
====== C:\Users\Arne_Marijke\AppData\Roaming ======
2013-01-03 20:05:04 ——– d—–w- C:\users\Public\AppData\Local\temp
2013-01-03 20:05:04 ——– d—–w- C:\users\Default\AppData\Local\temp
2013-01-03 20:05:04 ——– d—–w- C:\users\Default User\AppData\Local\temp
2012-12-28 18:42:51 ——– d—–w- C:\users\Arne_Marijke\AppData\Local\Programs
2012-12-26 12:24:35 ——– d—–w- C:\users\Arne_Marijke\AppData\Roaming\Product_RM
====== C:\Users\Arne_Marijke ======
2013-01-03 20:05:04 ——– d—–w- C:\Users\Public\AppData
2012-12-26 21:15:03 ——– d—–w- C:\ProgramData\Preventon
2012-12-26 13:06:12 ——– d—–w- C:\ProgramData\clp
2012-12-26 12:24:36 ——– d—–w- C:\ProgramData\PC Tools
====== C: exe-files ==
2013-01-03 19:12:34 F042EE4C8D66248D9B86DCF52ABAE416 256000 —-a-w- C:\Windows\PEV.exe
2013-01-03 19:12:34 9E05A9C264C8A908A8E79450FCBFF047 80412 —-a-w- C:\Windows\grep.exe
2013-01-03 19:12:34 5E832F4FAF5F481F2EAF3B3A48F603B8 68096 —-a-w- C:\Windows\zip.exe
2013-01-03 19:12:34 0297C72529807322B152F517FDB0A9FC 406528 —-a-w- C:\Windows\SWSC.exe
2013-01-03 19:12:34 0277C027A26428DB64EF4F64F52BB4FD 208896 —-a-w- C:\Windows\MBR.exe
=== C: other files ==
2013-01-03 18:22:43 538A32E2C99BF073D4CA76C30BEDAA60 370288 —-a-w- C:\Windows\System32\drivers\aswSP.sys
2013-01-03 18:22:43 4FCAEF0C5BE7629AEB878998E0FE959B 25232 —-a-w- C:\Windows\System32\drivers\aswFsBlk.sys
2013-01-03 18:22:36 57768C7DB4681F2510F247F82EF31D4F 54072 —-a-w- C:\Windows\System32\drivers\aswRdr2.sys
2013-01-03 18:22:35 6EDC79D73745FD44C41B55B2D13D0B70 59728 —-a-w- C:\Windows\System32\drivers\aswTdi.sys
2013-01-03 18:22:34 E71D826A1F3CE9C9DE3E77F2D02AFFBF 984144 —-a-w- C:\Windows\System32\drivers\aswSnx.sys
2013-01-03 18:22:30 B50CDD87772D6A11CB90924AAD399DF8 71600 —-a-w- C:\Windows\System32\drivers\aswMonFlt.sys
==== Startup Registry Enabled ======================
“HP Photosmart 5510 series (NET)”=“C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe -deviceID CN1AO055XP05NR:NW -scfn HP Photosmart 5510 series (NET) -AutoStart 1”
“gStart”=“C:\Program Files (x86)\Garmin\Training Center\gStart.exe”
“KiesPreload”=“C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload”
“KiesPDLR”=“C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe”
@=“C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe”
“RESTART_STICKY_NOTES”=“C:\Windows\System32\StikyNot.exe”
“UpdateLBPShortCut”=“C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe C:\Program Files (x86)\CyberLink\LabelPrint UpdateWithCreateOnce Software\CyberLink\LabelPrint\2.5”
“UpdateP2GoShortCut”=“C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe C:\Program Files (x86)\CyberLink\Power2Go UpdateWithCreateOnce SOFTWARE\CyberLink\Power2Go\6.0”
“StartCCC”=“C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe MSRun”
“ATKOSD2”=“C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe”
“ATKMEDIA”=“C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe”
“HControlUser”=“C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe”
“SwitchBoard”=“C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe”
“AdobeCS5ServiceManager”=“C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe -launchedbylogin”
“HP Software Update”=“C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe”
“KiesTrayAgent”=“C:\Program Files (x86)\Samsung\Kies\KiesTrayAgent.exe”
“ConnectionCenter”=“C:\Program Files (x86)\Citrix\ICA Client\concentr.exe /startup”
“APSDaemon”=“C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe”
“QuickTime Task”=“C:\Program Files (x86)\QuickTime\QTTask.exe -atboottime”
“iTunesHelper”=“C:\Program Files (x86)\iTunes\iTunesHelper.exe”
“Adobe ARM”=“C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe”
“avast”=“C:\Program Files\AVAST Software\Avast\avastUI.exe /nogui”
“HP Photosmart 5510 series (NET)”=“C:\Program Files\HP\HP Photosmart 5510 series\Bin\ScanToPCActivationApp.exe -deviceID CN1AO055XP05NR:NW -scfn HP Photosmart 5510 series (NET) -AutoStart 1”
“gStart”=“C:\Program Files (x86)\Garmin\Training Center\gStart.exe”
“KiesPreload”=“C:\Program Files (x86)\Samsung\Kies\Kies.exe /preload”
“KiesPDLR”=“C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe”
@=“C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe”
“RESTART_STICKY_NOTES”=“C:\Windows\System32\StikyNot.exe”
==== Startup Folders ======================
2010-08-09 23:20:32 2617 —-a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\FancyStart daemon.lnk
2012-11-20 19:47:35 2833 —-a-w- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Receiver.lnk
==== Task Scheduler Jobs ======================
C:\Windows\tasks\AIRecoveryRemind.job –a—— C:=C:=C:\Program Files (x86)\ASUS\AI Recovery\AIRecoveryRemind.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job –a—— C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
C:\Windows\tasks\HP Photo Creations Communicator.job –a—— C:\ProgramData\HP Photo Creations\MessageCheck.exe
==== Chrome Look ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions
icmlaeflemplmjndnaapfdbbnpncnbda - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx
jbolfgndggfhhpbnkgnpjkfhinclbigj - No path found
ndibdjnfmopecpmkdieinmbadjfpblof - C:\ProgramData\AVG Secure Search\ChromeExt\13.2.0.5\avg.crx
==== Set IE to Default ======================
Old Values:
“Start Page”=“http://www.google.nl/”
“Tabs”=“http://www.google.com”
“Tabs”=“http://www.google.com”
“DefaultScope”=“{4D7359AD-7DE4-442C-8C3B-4564C9F059B2}”
not found
New Values:
“Start Page”=“http://www.google.nl/”
“Tabs”=“res://ieframe.dll/tabswelcome.htm”
“Tabs”=“res://ieframe.dll/tabswelcome.htm”
“DefaultScope”=“{6A1806CD-94D4-4689-BA73-E35EA1EA9990}”
==== All HKCU SearchScopes ======================
HKCU\*\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url=“http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC”
HKCU\*\SearchScopes\{67A2568C-7A0A-4EED-AECC-B5405DE63B64} Google Url=“http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7ASUT”
HKCU\*\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990} Google Url=“http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}&ie={inputEncoding}&oe={outputEncoding}&startIndex={startIndex?}&startPage={startPage}”
==== Deleting CLSID Registry Keys ======================
==== Deleting CLSID Registry Values ======================
==== Deleting Registry Keys ======================
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\linkscanner deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Google\Chrome\Extensions\ndibdjnfmopecpmkdieinmbadjfpblof deleted successfully
==== Empty IE Cache ======================
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Arne_Marijke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5 emptied successfully
C:\Users\Arne_Marijke\AppData\Local\Temp\acrord32_sbx\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Arne_Marijke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat will be deleted at reboot
==== Empty FireFox Cache ======================
No FireFox Profiles found
==== Empty Chrome Cache ======================
No Chrome Cache found
==== Empty All Flash Cache ======================
Flash Cache Emptied Successfully
==== Empty All Java Cache ======================
Java Cache cleared successfully
After Reboot
==== Empty Temp Folders ======================
C:\Windows\Temp successfully emptied
C:\Users\ARNE_M~1\AppData\Local\Temp successfully emptied
==== Empty Recycle Bin ======================
C:\$RECYCLE.BIN successfully emptied
==== Deleting Files / Folders ======================
“C:\Users\Arne_Marijke\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat” not found
“C:\Windows\sysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat” not deleted
Hallo,
De laptop is weer een stuk sneller geworden! (tu)
Bedankt voor jullie hulp!
Alleen nog 2 dingetjes:
Adobe Photoshop CS5 werkt niet meer omdat ik geen serie nummer meer heb………(ws is er iets verwijderd dat niet had gemoeten? 
)
Als ik internet explorer nu opstart krijg ik nu een “popup” van; invoegtoepassingbeheren (eerder verscheen dat ergens onder in beeld)
Moet ik nu nog weer wat hulpprogramma's verwijderen?
gr. Marijke
Hallo,
Malwarebytes kan je laten staan en één maal in de week (na te hebben geupdate) je pc mee scannen.
1. De volgende programma's en bijbehorende log bestanden mag je verwijderen.
• DDS
• Security Check.
• AdwCleaner via Deinstallatie functie als je het programma opstart.
• zoek.exe
• ComboFix via de onderstaande instructies.
Ga naar Start.
Kopieer en plak: Combofix /Uninstall in de startzoekbalk.
Druk ENTER en bevestig met OK.
Als het goed is krijg je dan een melding dat Combofix verwijderd werd.
2. Download Ccleaner
Bij het installeren van de nieuwste Ccleaner wordt nu ook Google Chrome (helaas) mee geinstalleerd.
Je moet tijdens het installeren een vinkje weg halen, zodat Google Chrome niet geinstalleerd word.
Installeer CCleaner en start CCleaner op.
• Klik in de linkse kolom op Cleaner.
• Klik achtereenvolgens op Analyseren en Opschonen.
• Klik vervolgens in de linkse kolom op Register en klik op Scan naar problemen.
• Als er fouten gevonden worden klik je op Herstel geselecteerde problemen en OK.
• Dan krijg je de vraag om een back-up te maken, klik op JA en kies dan Herstel alle geselecteerde fouten.
• Sluit hierna CCleaner af.
3. Verwijder nog even je systeemherstelpunten en maak een nieuwe aan: http://users.telenet.be/marcvn/spyware/systeemherstel.html
>>>Adobe Photoshop CS5 werkt niet meer omdat ik geen serie nummer meer heb………(ws is er iets verwijderd dat niet had gemoeten?)<<<
Had je het nummer niet ergens genoteerd dan na het te hebben geïnstalleerd?
>>>Als ik internet explorer nu opstart krijg ik nu een “popup” van; invoegtoepassingbeheren (eerder verscheen dat ergens onder in beeld)<<<
Kijk je instellingen even na ander reset IE eens (back-up je favorieten) http://windows.microsoft.com/nl-NL/windows7/Reset-Internet-Explorer-settings-in-Internet-Explorer-9
Gr.Ben
Dit topic is gesloten, er kunnen geen reacties meer worden geplaatst.
