Voor de zekerheid

lg

15-01-2014 13:13

Trage laptop mede door te weinig geheugen.
Avg verwijderd ivm dll fout
Met veel pijn en moeite weer wifi en geluid aan de praat gekregen.
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org
Databaseversie: v2014.01.15.03
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Luuk van 't Hoff :: THUIS-MARJAN
15-1-2014 10:06:27
mbam-log-2014-01-15 (10-06-27).txt
Scan type: Volledige scan (C:\|)
Ingeschakelde scan opties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
Uitgeschakelde scan opties: P2P
Objecten gescand: 226555
Verstreken tijd: 1 uur/uren, 6 minuut/minuten, 54 seconde(n)
Geheugenprocessen gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Geheugenmodulen gedetecteerd: 1
C:\Documents and Settings\Luuk van 't Hoff\Application Data\newnext.me\nengine.dll (PUP.Optional.NextLive.A) -> Zal worden verwijderd tijdens het herstarten.
Registersleutels gedetecteerd: 3
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} (PUP.Optional.Spigot) -> Succesvol in quarantaine geplaatst en verwijderd.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} (PUP.Optional.Spigot) -> Succesvol in quarantaine geplaatst en verwijderd.
HKCU\SOFTWARE\CROSSRIDER (PUP.Optional.CrossRider.A) -> Succesvol in quarantaine geplaatst en verwijderd.
Registerwaarden gedetecteerd: 2
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|NextLive (PUP.Optional.NextLive.A) -> Data: C:\WINDOWS\system32\rundll32.exe “C:\Documents and Settings\Luuk van 't Hoff\Application Data\newnext.me\nengine.dll”,EntryPoint -m l -> Succesvol in quarantaine geplaatst en verwijderd.
HKCU\Software\Crossrider|Verifier (PUP.Optional.CrossRider.A) -> Data: c3ddeca60786398b5a9182bfa223b64c -> Succesvol in quarantaine geplaatst en verwijderd.
Registerdata gedetecteerd: 0
(Geen kwaadaardige objecten gedetecteerd)
Mappen gedetecteerd: 2
C:\Documents and Settings\Luuk van 't Hoff\Application Data\newnext.me (PUP.Optional.NextLive.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Luuk van 't Hoff\Application Data\newnext.me\cache (PUP.Optional.NextLive.A) -> Succesvol in quarantaine geplaatst en verwijderd.
Bestanden gedetecteerd: 5
C:\Documents and Settings\Luuk van 't Hoff\Local Settings\Temporary Internet Files\Content.IE5\CGWEV3BP\Soft32Downloader.exe (PUP.Optional.AdBundle) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Luuk van 't Hoff\Local Settings\Temporary Internet Files\Content.IE5\F3AK1001\driver booster setup.exe (PUP.Optional.Soft32.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Luuk van 't Hoff\Application Data\newnext.me\nengine.dll (PUP.Optional.NextLive.A) -> Zal worden verwijderd tijdens het herstarten.
C:\Documents and Settings\Luuk van 't Hoff\Application Data\newnext.me\nengine.cookie (PUP.Optional.NextLive.A) -> Succesvol in quarantaine geplaatst en verwijderd.
C:\Documents and Settings\Luuk van 't Hoff\Application Data\newnext.me\cache\spark.bin (PUP.Optional.NextLive.A) -> Succesvol in quarantaine geplaatst en verwijderd.
(einde)
Logfile of random's system information tool 1.09 (written by random/random)
Run by Luuk van 't Hoff at 2014-01-15 12:47:44
Microsoft Windows XP Professional Service Pack 3
System drive C: has 32 GB (80%) free of 40 GB
Total RAM: 222 MB (21% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:48:00, on 15-1-2014
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Microsoft Security Client\msseces.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\inetsrv\inetinfo.exe
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Documents and Settings\Luuk van 't Hoff\Bureaublad\RSIT.exe
C:\Program Files\trend micro\Luuk van 't Hoff.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.startnederland.nl/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Koppelingen
O4 - HKLM\..\Run: SkyTel.EXE
O4 - HKLM\..\Run: “C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe”
O4 - HKLM\..\Run: RTHDCPL.EXE
O4 - HKLM\..\Run: “c:\Program Files\Microsoft Security Client\msseces.exe” -hide -runkey
O4 - HKCU\..\Run: C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: C:\WINDOWS\System32\CTFMON.EXE (User ‘Lokale service’)
O4 - HKUS\S-1-5-20\..\Run: C:\WINDOWS\System32\CTFMON.EXE (User ‘Netwerkservice’)
O4 - HKUS\S-1-5-18\..\Run: C:\WINDOWS\System32\CTFMON.EXE (User ‘SYSTEM’)
O4 - HKUS\.DEFAULT\..\Run: C:\WINDOWS\System32\CTFMON.EXE (User ‘Default user’)
O8 - Extra context menu item: E&xporteren naar Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra ‘Tools’ menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra ‘Tools’ menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {BFF1950D-B1B4-4AE8-B842-B2CCF06D9A1B} (Zylom Games Player) - http://game.zylom.com/activex/zylomgamesplayer.cab
O22 - SharedTaskScheduler: Preloader van browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Cache-daemon voor onderdeelcategorieën - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
–
End of file - 3710 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job
C:\WINDOWS\tasks\Microsoft Antimalware Scheduled Scan.job
C:\WINDOWS\tasks\MpIdleTask.job
======Registry dump======
“SkyTel”=C:\WINDOWS\SkyTel.EXE
“ATIPTA”=C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
“RTHDCPL”=C:\WINDOWS\RTHDCPL.EXE
“MSC”=c:\Program Files\Microsoft Security Client\msseces.exe
“CTFMON.EXE”=C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\WINDOWS\system32\dumprep 0 -k
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\AVG Secure Search\vprot.exe
C:\PROGRA~1\MICROS~2\Office10\OSA.EXE
C:\WINDOWS\system32\Ati2evxx.dll
C:\WINDOWS\system32\WgaLogon.dll
“dontdisplaylastusername”=0
“legalnoticecaption”=
“legalnoticetext”=
“shutdownwithoutlogon”=1
“undockwithoutlogon”=1
“NoDriveTypeAutoRun”=145
“HonorAutoRunSetting”=1
“%windir%\system32\sessmgr.exe”="%windir%\system32\sessmgr.exe:*isabled:@xpsp2res.dll,-22019"
“%windir%\Network Diagnostic\xpnetdiag.exe”=“%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000”
“C:\Program Files\AVG\AVG2012\avgmfapx.exe”=“C:\Program Files\AVG\AVG2012\avgmfapx.exe:*:Enabled:Installer voor AVG”
“%windir%\system32\sessmgr.exe”=“%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019”
“%windir%\Network Diagnostic\xpnetdiag.exe”=“%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000”
“midimapper”=midimap.dll
“msacm.imaadpcm”=imaadp32.acm
“msacm.msadpcm”=msadp32.acm
“msacm.msg711”=msg711.acm
“msacm.msgsm610”=msgsm32.acm
“msacm.trspch”=tssoft32.acm
“vidc.cvid”=iccvid.dll
“vidc.I420”=msh263.drv
“vidc.iv31”=ir32_32.dll
“vidc.iv32”=ir32_32.dll
“vidc.iv41”=ir41_32.ax
“vidc.iyuv”=iyuv_32.dll
“vidc.mrle”=msrle32.dll
“vidc.msvc”=msvidc32.dll
“vidc.uyvy”=msyuv.dll
“vidc.yuy2”=msyuv.dll
“vidc.yvu9”=tsbyuv.dll
“vidc.yvyu”=msyuv.dll
“wavemapper”=msacm32.drv
“msacm.msg723”=msg723.acm
“vidc.M263”=msh263.drv
“vidc.M261”=msh261.drv
“msacm.msaudio1”=msaud32.acm
“msacm.sl_anet”=sl_anet.acm
“msacm.iac2”=C:\WINDOWS\System32\iac25_32.ax
“vidc.iv50”=ir50_32.dll
“msacm.l3acm”=C:\WINDOWS\System32\l3codeca.acm
“vidc.tscc”=tsccvid.dll
“wave”=wdmaud.drv
“midi”=wdmaud.drv
“mixer”=wdmaud.drv
“aux”=wdmaud.drv
======List of files/folders created in the last 1 month======
2014-01-15 12:47:45 —-D—- C:\Program Files\trend micro
2014-01-15 12:47:44 —-D—- C:\rsit
2014-01-15 12:43:36 —-D—- C:\Program Files\DriverPack Solution Installer 13
2014-01-15 12:43:22 —-D—- C:\Documents and Settings\Luuk van 't Hoff\Application Data\DRPSu
2014-01-15 12:41:28 —-D—- C:\WINDOWS\LastGood
2014-01-15 12:41:24 —-A—- C:\WINDOWS\system32\drivers\rt61.sys
2014-01-15 12:17:48 —-N—- C:\WINDOWS\system32\MpSigStub.exe
2014-01-15 12:16:44 —-D—- C:\9d79e490663e839a6c0b121f42c3
2014-01-15 12:11:36 —-D—- C:\Program Files\Microsoft Security Client
2014-01-15 12:07:03 —-D—- C:\WINDOWS\SoftwareDistribution
2014-01-15 12:01:48 —-D—- C:\WINDOWS\system32\CatRoot2
2014-01-15 11:49:52 —-A—- C:\WINDOWS\PSEXESVC.EXE
2014-01-15 11:47:14 —-D—- C:\RegBackup
2014-01-15 09:43:03 —-A—- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2014-01-15 09:39:36 —-D—- C:\Documents and Settings\Luuk van 't Hoff\Application Data\Malwarebytes
2014-01-15 09:38:12 —-D—- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2014-01-15 09:37:04 —-A—- C:\WINDOWS\system32\drivers\mbam.sys
2014-01-15 09:37:02 —-D—- C:\Program Files\Malwarebytes' Anti-Malware
2014-01-15 09:29:05 —-HDC—- C:\WINDOWS\$NtUninstallKB2914368$
2014-01-14 17:36:34 —-A—- C:\WINDOWS\system32\drivers\MSKSSRV.sys
2014-01-14 16:59:06 —-A—- C:\WINDOWS\system32\drivers\RTAIODAT.DAT
2014-01-14 16:59:03 —-A—- C:\WINDOWS\system32\RtkCoLDRXP.dll
2014-01-14 16:59:03 —-A—- C:\WINDOWS\system32\drivers\Monfilt.sys
2014-01-14 16:59:02 —-A—- C:\WINDOWS\vncutil.exe
2014-01-14 16:58:51 —-A—- C:\WINDOWS\system32\drivers\Ambfilt.sys
2014-01-14 16:58:49 —-A—- C:\WINDOWS\system32\RtkCoInstIIXP.dll
2014-01-14 16:58:41 —-A—- C:\WINDOWS\RtkAudioService.exe
2014-01-14 16:58:17 —-D—- C:\DrvInstall
2014-01-14 16:15:41 —-A—- C:\WINDOWS\system32\drivers\drmkaud.sys
2014-01-14 16:15:31 —-A—- C:\WINDOWS\system32\drivers\kmixer.sys
2014-01-14 16:15:21 —-A—- C:\WINDOWS\system32\drivers\DMusic.sys
2014-01-14 16:15:08 —-A—- C:\WINDOWS\system32\drivers\swmidi.sys
2014-01-14 16:14:59 —-A—- C:\WINDOWS\system32\drivers\aec.sys
2014-01-14 16:14:48 —-A—- C:\WINDOWS\system32\drivers\splitter.sys
2014-01-14 16:14:36 —-A—- C:\WINDOWS\system32\drivers\sysaudio.sys
2014-01-14 16:13:15 —-A—- C:\WINDOWS\system32\drivers\wdmaud.sys
2014-01-14 16:12:22 —-D—- C:\WINDOWS\system32\Lang
2014-01-14 16:04:26 —-D—- C:\Program Files\ATI Technologies
2014-01-14 16:03:48 —-HD—- C:\Program Files\InstallShield Installation Information
2014-01-14 16:03:32 —-D—- C:\Program Files\Common Files\InstallShield
2014-01-14 16:03:29 —-A—- C:\WINDOWS\system32\Oemdspif.dll
2014-01-14 16:03:28 —-A—- C:\WINDOWS\system32\ativcoxx.dll
2014-01-14 16:03:27 —-A—- C:\WINDOWS\system32\atitvo32.dll
2014-01-14 16:03:27 —-A—- C:\WINDOWS\system32\atipdlxx.dll
2014-01-14 16:03:25 —-A—- C:\WINDOWS\system32\atioglxx.dll
2014-01-14 16:03:22 —-A—- C:\WINDOWS\system32\atioglx1.dll
2014-01-14 16:03:22 —-A—- C:\WINDOWS\system32\atikvmag.dll
2014-01-14 16:03:21 —-A—- C:\WINDOWS\system32\atiiiexx.dll
2014-01-14 16:03:21 —-A—- C:\WINDOWS\system32\atiicdxx.dat
2014-01-14 16:03:21 —-A—- C:\WINDOWS\system32\ATIDEMGR.dll
2014-01-14 16:03:21 —-A—- C:\WINDOWS\system32\ATIDDC.DLL
2014-01-14 16:03:19 —-A—- C:\WINDOWS\system32\drivers\ati2erec.dll
2014-01-14 16:03:19 —-A—- C:\WINDOWS\system32\Ati2mdxx.exe
2014-01-14 16:03:19 —-A—- C:\WINDOWS\system32\ati2evxx.exe
2014-01-14 16:03:19 —-A—- C:\WINDOWS\system32\ati2evxx.dll
2014-01-14 16:03:19 —-A—- C:\WINDOWS\system32\ati2edxx.dll
2014-01-14 16:02:44 —-A—- C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2014-01-14 16:02:01 —-D—- C:\WINDOWS\system32\RTCOM
2014-01-14 16:01:46 —-A—- C:\WINDOWS\system32\ksuser.dll
2014-01-14 16:01:46 —-A—- C:\WINDOWS\system32\drivers\portcls.sys
2014-01-14 16:01:42 —-A—- C:\WINDOWS\system32\drivers\drmk.sys
2014-01-14 16:01:15 —-A—- C:\WINDOWS\SOUNDMAN.EXE
2014-01-14 16:01:15 —-A—- C:\WINDOWS\SkyTel.exe
2014-01-14 16:01:15 —-A—- C:\WINDOWS\ALCWZRD.EXE
2014-01-14 16:01:15 —-A—- C:\WINDOWS\ALCMTR.EXE
2014-01-14 16:01:14 —-A—- C:\WINDOWS\RtlUpd.exe
2014-01-14 16:01:12 —-A—- C:\WINDOWS\RTLCPL.EXE
2014-01-14 16:01:10 —-A—- C:\WINDOWS\system32\drivers\RtkHDAud.sys
2014-01-14 16:01:06 —-A—- C:\WINDOWS\RTHDCPL.EXE
2014-01-14 16:01:06 —-A—- C:\WINDOWS\MicCal.exe
2014-01-14 16:00:42 —-D—- C:\Program Files\DIFX
2014-01-14 16:00:37 —-DC—- C:\WINDOWS\system32\DRVSTORE
2014-01-14 16:00:34 —-D—- C:\pnp
2014-01-14 15:20:53 —-A—- C:\log.txt
2014-01-14 15:08:46 —-D—- C:\Program Files\Common Files\Spigot
2014-01-14 15:05:03 —-D—- C:\Program Files\IObit
2014-01-14 11:22:45 —-D—- C:\Program Files\Driver-Soft
2014-01-14 11:21:13 —-D—- C:\Documents and Settings\Luuk van 't Hoff\Application Data\WinRAR
2014-01-14 11:20:47 —-D—- C:\Program Files\WinRAR
2014-01-14 11:16:54 —-A—- C:\WINDOWS\system32\drivers\USBSTOR.SYS
2014-01-14 10:57:21 —-D—- C:\Documents and Settings\Luuk van 't Hoff\Application Data\IObit
2014-01-14 10:57:20 —-D—- C:\Documents and Settings\All Users\Application Data\IObit
2014-01-14 10:26:59 —-D—- C:\Program Files\CCleaner
======List of files/folders modified in the last 1 month======
2014-01-15 12:47:45 —-RD—- C:\Program Files
2014-01-15 12:46:38 —-D—- C:\WINDOWS\system32
2014-01-15 12:46:37 —-A—- C:\WINDOWS\system32\PerfStringBackup.INI
2014-01-15 12:45:32 —-D—- C:\WINDOWS\Temp
2014-01-15 12:41:39 —-D—- C:\WINDOWS\system32\drivers
2014-01-15 12:41:28 —-HD—- C:\WINDOWS\inf
2014-01-15 12:41:28 —-D—- C:\WINDOWS
2014-01-15 12:41:10 —-SD—- C:\WINDOWS\Tasks
2014-01-15 12:32:39 —-D—- C:\WINDOWS\system32\inetsrv
2014-01-15 12:14:05 —-SHD—- C:\WINDOWS\Installer
2014-01-15 12:13:19 —-D—- C:\WINDOWS\system32\CatRoot
2014-01-15 12:11:42 —-D—- C:\WINDOWS\WinSxS
2014-01-15 12:11:42 —-D—- C:\Program Files\Common Files\Microsoft Shared
2014-01-15 12:05:25 —-A—- C:\WINDOWS\SchedLgU.Txt
2014-01-15 12:02:31 —-D—- C:\WINDOWS\Registration
2014-01-15 12:00:37 —-D—- C:\WINDOWS\system32\drivers\etc
2014-01-15 11:47:36 —-D—- C:\WINDOWS\repair
2014-01-15 11:47:32 —-SHD—- C:\System Volume Information
2014-01-15 11:46:05 —-RSHDC—- C:\WINDOWS\system32\dllcache
2014-01-15 11:16:20 —-HDC—- C:\WINDOWS\$NtUninstallKB2676562$
2014-01-15 09:54:07 —-D—- C:\WINDOWS\system32\MRT
2014-01-15 09:46:53 —-D—- C:\WINDOWS\Debug
2014-01-15 09:46:04 —-A—- C:\WINDOWS\system32\MRT.exe
2014-01-14 17:35:44 —-D—- C:\Documents and Settings\Luuk van 't Hoff\Application Data\Belastingdienst
2014-01-14 17:10:36 —-D—- C:\Program Files\Common Files
2014-01-14 16:59:16 —-D—- C:\WINDOWS\system32\ReinstallBackups
2014-01-14 14:49:34 —-D—- C:\WINDOWS\Connection Wizard
2014-01-14 11:15:18 —-A—- C:\WINDOWS\imsins.BAK
2014-01-14 11:06:55 —-D—- C:\WINDOWS\Prefetch
2014-01-09 18:56:38 —-D—- C:\WINDOWS\system32\Cache
2014-01-08 11:01:39 —-D—- C:\Program Files\Internet Explorer
2014-01-08 10:46:50 —-D—- C:\Documents and Settings\Luuk van 't Hoff\Application Data\MSN6
2014-01-08 10:40:24 —-D—- C:\Program Files\MSN
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 MpFilter;Microsoft Malware Protection Driver; C:\WINDOWS\system32\DRIVERS\MpFilter.sys
R1 intelppm;Intel GV3-processorstuurprogramma; C:\WINDOWS\System32\DRIVERS\intelppm.sys
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
R3 HDAudBus;Microsoft UAA-busstuurprogramma voor High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
R3 hidusb;Microsoft HID Class-stuurprogramma; C:\WINDOWS\System32\DRIVERS\hidusb.sys
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys
R3 mouhid;Stuurprogramma voor muis-HID; C:\WINDOWS\System32\DRIVERS\mouhid.sys
R3 RT61;Ralink RT61 Wireless Driver; C:\WINDOWS\system32\DRIVERS\RT61.sys
R3 rtl8139;NT-stuurprogramma voor Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS
R3 USBSTOR;Stuurprogramma voor USB-massaopslag; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys
S3 MBAMSwissArmy;MBAMSwissArmy; \??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys
S3 RT73;Conceptronic RT73 Wireles Driver; C:\WINDOWS\system32\DRIVERS\rt73.sys
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe
R2 IISADMIN;IIS-beheer; C:\WINDOWS\System32\inetsrv\inetinfo.exe
R2 LPDSVC;TCP/IP Print Server; C:\WINDOWS\System32\tcpsvcs.exe
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe
R2 SMTPSVC;SMTP (Simple Mail Transfer Protocol); C:\WINDOWS\System32\inetsrv\inetinfo.exe
R2 SNMP;SNMP-service; C:\WINDOWS\System32\snmp.exe
R2 W3SVC;World Wide Web-publicatie; C:\WINDOWS\System32\inetsrv\inetinfo.exe
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
S3 SNMPTRAP;SNMP Trap-service; C:\WINDOWS\System32\snmptrap.exe
—————–EOF—————–
Ben

15-01-2014 13:23

Hallo,
Schakel eerst de Antivirussoftware uit voordat je zoek.exe download.
Schakel je antivirus- en antispywareprogramma's tijdelijk uit, deze kunnen namelijk conflicteren met Zoek.exe.
Download Zoek.exe naar het bureaublad.
* Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
Zoek.exe uitvoeren
Wanneer u problemen ondervindt bij het uitvoeren van dit programma of bepaalde foutmeldingen te zien krijgt laat dit dan even weten in uw bericht.
* Dubbelklik vervolgens op Zoek.exe om de tool te starten.
* Windows Vista, 7 en 8 gebruikers dienen de tool als “administrator” uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
* Kopieer nu onderstaande vet gedrukte code en plak die in het grote invulvenster:
* Note: Dit script is speciaal bedoeld voor deze computer, gebruik dit dan ook niet op andere computers met een gelijkaardig probleem.
firefoxlook;
emptyclsid;
torpigcheck;
emptyfolderscheck;delete
C:\WINDOWS\tasks\MpIdleTask.job;f
C:\WINDOWS\tasks\AVG-Secure-Search-Update_JUNE2013_TB_rmv.job;f
;r
“C:\Program Files\AVG\AVG2012\avgmfapx.exe”=-;r
C:\Program Files\AVG;fs
chromelook;
standardsearch;
filesrcm;
autoclean;
startupall;
* Klik nu op de knop "Run script".
* Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
* Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
* Post het geopende logje in het volgende bericht.
lg

15-01-2014 14:31

Zoals gevraagd
Mijn advies voor deze laptop is geheugen bijzetten en kijken of windows 7 mogelijk is.
Zoek.exe v5.0.0.0 Updated 12-Januari-2014
Tool run by Luuk van 't Hoff on wo 15-01-2014 at 13:57:48,84.
Microsoft Windows XP Professional 5.1.2600 Service Pack 3 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Documents and Settings\Luuk van 't Hoff\Bureaublad\zoek.exe
==== System Restore Info ======================
15-1-2014 13:59:13 Zoek.exe System Restore Point Created Succesfully.
==== Torpig Check ======================
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\CDF {67EA19A0-CCEF-11d0-8024-00C04FD75D13} %SystemRoot%\System32\shdocvw.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\FileSystem {217FC9C0-3AEA-1069-A2DB-08002B30309D} shell32.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\MyDocuments {ECF03A33-103D-11d2-854D-006008059367} %SystemRoot%\System32\mydocs.dll
HKEY_CLASSES_ROOT\Directory\shellex\CopyHookHandlers\Sharing {40dd6e20-7c17-11ce-a804-00aa003ca9f6} ntshrui.dll
==== Empty Folders Check ======================
C:\Program Files\DriverPack Solution Installer 13 deleted successfully
C:\Documents and Settings\Luuk van 't Hoff\Application Data\DRPSu deleted successfully
==== Deleting CLSID Registry Keys ======================
HKEY_USERS\S-1-5-21-1417001333-682003330-839522115-1003\Software\Microsoft\Internet Explorer\SearchScopes\{60008075-1AC7-4C31-897B-CC8A4F8BBA9E} deleted successfully
HKEY_USERS\.DEFAULT\Software\Microsoft\Internet Explorer\Explorer Bars\{32683183-48a0-441b-a342-7c2a440a9478} deleted successfully
HKEY_USERS\S-1-5-19\Software\Microsoft\Internet Explorer\Explorer Bars\{32683183-48a0-441b-a342-7c2a440a9478} deleted successfully
HKEY_USERS\S-1-5-20\Software\Microsoft\Internet Explorer\Explorer Bars\{32683183-48a0-441b-a342-7c2a440a9478} deleted successfully
HKEY_USERS\S-1-5-21-1417001333-682003330-839522115-1003\Software\Microsoft\Internet Explorer\Explorer Bars\{32683183-48a0-441b-a342-7c2a440a9478} deleted successfully
==== Deleting CLSID Registry Values ======================
HKEY_USERS\S-1-5-21-1417001333-682003330-839522115-1003\Software\Microsoft\Internet Explorer\Approved Extensions\{34A0D84B-CDDC-4EC4-AFDD-4F1DDE1D14E5} deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{32683183-48a0-441b-a342-7c2a440a9478} deleted successfully
==== Running Processes ======================
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\inetsrv\inetinfo.exe
C:\WINDOWS\System32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\Microsoft Security Client\msseces.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\Luuk van 't Hoff\Bureaublad\zoek.exe
c:\Program Files\Microsoft Security Client\MpCmdRun.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\System32\svchost.exe -k NetworkService
C:\WINDOWS\System32\svchost.exe -k LocalService
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
==== Deleting Services ======================
==== FireFox Fix ======================
ProfilePath: C:\Documents and Settings\Luuk van 't Hoff\Application Data\Mozilla\Firefox\Profiles\uo1j1cmu.default
user.js not found
—- Lines CT3018509 removed from prefs.js —-
user_pref(“CT3018509..clientLogIsEnabled”, false);
user_pref(“CT3018509..clientLogServiceUrl”, “http://clientlog.users.conduit.com/ClientDiagnostics.asmx/ReportDiagnosticsEvent”);
user_pref(“CT3018509..uninstallLogServiceUrl”, “http://uninstall.users.conduit.com/Uninstall.asmx/RegisterToolbarUninstallation”);
user_pref(“CT3018509.ALLOW_SHOWING_HIDDEN_TOOLBAR”, false);
user_pref(“CT3018509.AboutPrivacyUrl”, “http://www.conduit.com/privacy/Default.aspx”);
user_pref(“CT3018509.AppTrackingLastCheckTime”, “Wed Feb 29 2012 12:19:02 GMT+0100”);
user_pref(“CT3018509.BrowserCompStateIsOpen_129683388555092712”, true);
user_pref(“CT3018509.BrowserCompStateIsOpen_129774349446762757”, true);
user_pref(“CT3018509.CT3018509”, “CT3018509”);
user_pref(“CT3018509.CurrentServerDate”, “1-4-2012”);
user_pref(“CT3018509.DSInstall”, false);
user_pref(“CT3018509.DialogsAlignMode”, “LTR”);
user_pref(“CT3018509.DialogsGetterLastCheckTime”, “Sun Apr 01 2012 17:55:03 GMT+0200”);
user_pref(“CT3018509.DownloadReferralCookieData”, “{\”BannerName\“:\”\“,\”BannerTypeId\“:\”\“,\”BannerCulture\“:\”\“,\”DownloadTime\“:\”2/27/2012 7:41
user_pref(“CT3018509.ExternalComponentPollDate129510405198305199”, “Wed Apr 04 2012 10:24:05 GMT+0200”);
user_pref(“CT3018509.ExternalComponentPollDate129510405203040747”, “Wed Apr 04 2012 10:24:05 GMT+0200”);
user_pref(“CT3018509.FirstServerDate”, “27-2-2012”);
user_pref(“CT3018509.FirstTime”, true);
user_pref(“CT3018509.FirstTimeFF3”, true);
user_pref(“CT3018509.FixPageNotFoundErrors”, false);
user_pref(“CT3018509.GroupingServerCheckInterval”, 1440);
user_pref(“CT3018509.GroupingServiceUrl”, “http://grouping.services.conduit.com/”);
user_pref(“CT3018509.HPInstall”, false);
user_pref(“CT3018509.HasUserGlobalKeys”, true);
user_pref(“CT3018509.HomePageProtectorEnabled”, false);
user_pref(“CT3018509.HomepageBeforeUnload”, “chrome://branding/locale/browserconfig.properties”);
user_pref(“CT3018509.Initialize”, true);
user_pref(“CT3018509.InitializeCommonPrefs”, true);
user_pref(“CT3018509.InstallationAndCookieDataSentCount”, 3);
user_pref(“CT3018509.InstallationType”, “DirectDownload”);
user_pref(“CT3018509.InstalledDate”, “Mon Feb 27 2012 17:48:52 GMT+0100”);
user_pref(“CT3018509.InvalidateCache”, false);
user_pref(“CT3018509.IsAlertDBUpdated”, true);
user_pref(“CT3018509.IsGrouping”, false);
user_pref(“CT3018509.IsInitSetupIni”, true);
user_pref(“CT3018509.IsMulticommunity”, false);
user_pref(“CT3018509.IsOpenThankYouPage”, true);
user_pref(“CT3018509.IsOpenUninstallPage”, true);
user_pref(“CT3018509.IsProtectorsInit”, true);
user_pref(“CT3018509.LanguagePackLastCheckTime”, “Wed Apr 04 2012 10:24:09 GMT+0200”);
user_pref(“CT3018509.LanguagePackReloadIntervalMM”, 1440);
user_pref(“CT3018509.LanguagePackServiceUrl”, “http://translation.users.conduit.com/Translation.ashx”);
user_pref(“CT3018509.LastLogin_3.10.0.1”, “Wed Apr 04 2012 10:24:05 GMT+0200”);
user_pref(“CT3018509.LastLogin_3.9.0.3”, “Tue Mar 13 2012 12:34:39 GMT+0100”);
user_pref(“CT3018509.LatestVersion”, “3.10.0.1”);
user_pref(“CT3018509.Locale”, “en-us”);
user_pref(“CT3018509.MCDetectTooltipHeight”, “83”);
user_pref(“CT3018509.MCDetectTooltipUrl”, “http://@EB_INSTALL_LINK@/rank/tooltip/?version=1”);
user_pref(“CT3018509.MCDetectTooltipWidth”, “295”);
user_pref(“CT3018509.MyStuffEnabledAtInstallation”, true);
user_pref(“CT3018509.OriginalFirstVersion”, “3.9.0.3”);
user_pref(“CT3018509.RadioIsPodcast”, false);
user_pref(“CT3018509.RadioLastCheckTime”, “Wed Apr 04 2012 10:24:10 GMT+0200”);
user_pref(“CT3018509.RadioLastUpdateIPServer”, “3”);
user_pref(“CT3018509.RadioLastUpdateServer”, “3”);
user_pref(“CT3018509.RadioMediaID”, “9962”);
user_pref(“CT3018509.RadioMediaType”, “Media Player”);
user_pref(“CT3018509.RadioMenuSelectedID”, “EBRadioMenu_CT30185099962”);
user_pref(“CT3018509.RadioShrinkedFromSetup”, false);
user_pref(“CT3018509.RadioStationName”, “California%20Rock”);
user_pref(“CT3018509.RadioStationURL”, “http://feedlive.net/california.asx”);
user_pref(“CT3018509.SearchCaption”, “Game Master 2.1 Customized Web Search”);
user_pref(“CT3018509.SearchEngineBeforeUnload”, “AVG Secure Search”);
user_pref(“CT3018509.SearchFromAddressBarIsInit”, true);
user_pref(“CT3018509.SearchFromAddressBarUrl”, “http://search.conduit.com/ResultsExt.aspx?ctid=CT3018509&SearchSource=2&q=”);
user_pref(“CT3018509.SearchInNewTabEnabled”, true);
user_pref(“CT3018509.SearchInNewTabIntervalMM”, 1440);
user_pref(“CT3018509.SearchInNewTabLastCheckTime”, “Wed Apr 04 2012 10:24:05 GMT+0200”);
user_pref(“CT3018509.SearchInNewTabServiceUrl”, “http://newtab.conduit-hosting.com/newtab/?ctid=EB_TOOLBAR_ID”);
user_pref(“CT3018509.SearchProtectorEnabled”, false);
user_pref(“CT3018509.SearchProtectorToolbarDisabled”, false);
user_pref(“CT3018509.SendProtectorDataViaLogin”, true);
user_pref(“CT3018509.ServiceMapLastCheckTime”, “Wed Apr 04 2012 10:24:05 GMT+0200”);
user_pref(“CT3018509.SettingsLastCheckTime”, “Wed Apr 04 2012 10:24:04 GMT+0200”);
user_pref(“CT3018509.SettingsLastUpdate”, “1332961695”);
user_pref(“CT3018509.TBHomePageUrl”, “http://search.conduit.com/?ctid=CT3018509&SearchSource=13”);
user_pref(“CT3018509.ThirdPartyComponentsInterval”, 504);
user_pref(“CT3018509.ThirdPartyComponentsLastCheck”, “Thu Mar 29 2012 14:58:41 GMT+0200”);
user_pref(“CT3018509.ThirdPartyComponentsLastUpdate”, “1312887586”);
user_pref(“CT3018509.ToolbarShrinkedFromSetup”, false);
user_pref(“CT3018509.TrusteLinkUrl”, “http://trust.conduit.com/CT3018509”);
user_pref(“CT3018509.TrustedApiDomains”, "conduit.com,conduit-hosting.com,conduit-services.com,client.conduit-storage.com,OurToolbar.com,CommunityTool
user_pref(“CT3018509.UserID”, “UN10856430847548781”);
user_pref(“CT3018509.ValidationData_Search”, 0);
user_pref(“CT3018509.ValidationData_Toolbar”, 2);
user_pref(“CT3018509.alertChannelId”, “1410096”);
user_pref(“CT3018509.backendstorage./9b+7e-x305”, "247E2936303C363679453A3D2A722C797A207B3128333D462B554A4D4B4749594D33535D4F432C45333439344A414C565B5
user_pref(“CT3018509.backendstorage./9b+7e06cg5el8:”, “6E6D6E6F6E726D767375”);
user_pref(“CT3018509.backendstorage./9b+7e06cg5el;8i:k”, “247E2D2F226A747374757478737C797B242F4B49474F42357D5D5C3D”);
user_pref(“CT3018509.backendstorage./9b+7e31;cjc<=fbj#cf”, "247E61393F236B25757674722A212C6E414F444D327A344F4849524E562F4F523E354023605550585356504932
user_pref(“CT3018509.backendstorage./9b+7e31;cji5e k@c”, "247E61393F236B2573787229202B6D404E434C3179335440502B564B4E3B323D205D524D5550534D462F4875784B
user_pref(“CT3018509.backendstorage./9b+7e31;cji8a k@c”, "247E61393F236B256F75287E2A6C3F4D424B30783253424B2A554A4D3A313C7E4B47515D422B4436463D482B5758
user_pref(“CT3018509.backendstorage./9b+7e31;cjig=ki\”mbe“, ”247E61393F236B2574717829202B6D404E434C31793354524856542D584D503D343F225F6250442D463836494
user_pref(“CT3018509.backendstorage./9b+7ebe3g=;d9n9=d”, “372C2D326975762E3A3C7B3A39434A494841434B265146492965504656496571734D334B57”);
user_pref(“CT3018509.backendstorage./9b-0?3g>d”, “696E6A6A6D43726D7A46787A77204876777D25237A4F522A20562957592B275C5C312C2E”);
user_pref(“CT3018509.backendstorage./9b-0?3g@6:5;”, “”);
user_pref(“CT3018509.backendstorage./9b-0?3gfa7ef”, “2B2E2C3D”);
user_pref(“CT3018509.backendstorage./9b-3=3eccja=f>”, "247E333D2C452F4135276F292A212C393D44307832332A354448584C3A232E333E58604F6456604F6852645858635E6
user_pref(“CT3018509.backendstorage./9b/>01=9a6k6@44i48?”, “372C2D32697576334236334148477B213F3E484F4E4D4648502B564B4E2E5959595F4C564F3764535750”);
user_pref(“CT3018509.backendstorage./9b5ba==9cjag”, “6F3B3C3F6E6B41767A76737746487D7A4E204E7E4D”);
user_pref(“CT3018509.backendstorage./9b6b11g4c56b>f;p;anr@p”, “6E6D6E6F6E726D76737872777A”);
user_pref(“CT3018509.backendstorage./9b9643g3/9e”, “6A”);
user_pref(“CT3018509.backendstorage./9b<:222h64<”, “393F352F3E”);
user_pref(“CT3018509.backendstorage./9b=+03eh8h8j?:”, “4443”);
user_pref(“CT3018509.backendstorage./9b?+e2a52d8”, “372C2D326975762E3A3C7B3A39434A494841434B2651464929655046566470727951555E5E52”);
user_pref("CT3018509.backendstorage./9b?b0d:8aj62
Ben

15-01-2014 14:40

Hallo,
Download
AdwCleaner by Xplode naar het bureaublad.
*Sluit alle openstaande vensters.
*Dubbelklik op AdwCleaner om hem te starten.
*Windows Vista, 7 en 8 gebruikers dienen de tool als “administrator” uit te voeren,
*Door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
*Klik vervolgens op Scan.
*Klik vervolgens op Clean als er items zijn gevonden.
*Klik bij Herstarten Noodzakelijk op OK
Nadat de PC opnieuw is opgestart, opent meestal een logfile.
Anders is het hier terug te vinden C:\AdwCleaner\AdwCleaner.txt
Post aansluitend de inhoud van dit log in je volgende bericht.
lg

15-01-2014 15:00

Stap uitgevoerd.
# AdwCleaner v3.017 - Report created 15/01/2014 at 14:52:01
# Updated 12/01/2014 by Xplode
# Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
# Username : Luuk van 't Hoff - THUIS-MARJAN
# Running from : C:\Documents and Settings\Luuk van 't Hoff\Bureaublad\adwcleaner.exe
# Option : Clean
***** *****
***** *****
***** *****
***** *****
Key Deleted : HKLM\SOFTWARE\Classes\AppID\ScriptHelper.EXE
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Paths\MobogenieAdd
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{BB711CB0-C70B-482E-9852-EC05EBD71DBB}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{DE9028D0-5FFA-4E69-94E3-89EE8741F468}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{03E2A1F3-4402-4121-8B35-733216D61217}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9E3B11F6-4179-4603-A71B-A55F4BCB0BEC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{07CAC314-E962-4F78-89AB-DD002F2490EE}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{090ACFA1-1580-11D1-8AC0-00C0F00910F9}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9C049BA6-EA47-4AC3-AED6-A66D8DC9E1D8}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{B4E90801-B83C-11D0-8B40-00C0F00AE35A}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F25AF245-4A81-40DC-92F9-E9021F207706}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{03EB0E9C-7A91-4381-A220-9B52B641CDB1}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{95B7759C-8C7F-4BF1-B163-73684A933233}
Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser
Key Deleted : HKCU\Software\WEDLMNGR
Key Deleted : HKCU\Software\AppDataLow\Software\Search Settings
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\AVG Secure Search
***** *****
-\\ Internet Explorer v8.0.6001.18702
-\\ Mozilla Firefox v
*************************
AdwCleaner.txt - -
AdwCleaner.txt - -
########## EOF - C:\AdwCleaner\AdwCleaner.txt - ##########
Ben

15-01-2014 15:16

Hallo,
Meer kan ik niet voor je betekenen, alles ziet er zo netjes uit.
Je mag de gebruikte programma's weer verwijderen.
Mijn advies voor deze laptop is geheugen bijzetten en kijken of windows 7 mogelijk is.
Niet alleen voor deze laptop maar ga dit nieuws rustig door geven aan de mensen die je helpt.
Link: http://antivirus.startpagina.nl/prikbord/16978410/updates-voor-xp-stopt-(15-01-2014)#msg-16978410
lg

15-01-2014 15:27

Ben wederom bedankt
LG
Ben

15-01-2014 15:30

Hallo lg,
Bedankt en graag gedaan.
fazantje

22-01-2014 20:34

Omdat dit topic is opgelost word het gesloten.
Wilt U Uw topic als nog weer openen, stuur dan een privé bericht naar Ben of Huib (fazantje).
Zij zullen dan het “slotje” er van af halen en het topic is weer open.
Het AV team.

Dit topic is gesloten, er kunnen geen reacties meer worden geplaatst.

Voor de zekerheid

lg

Ben

lg

Ben

lg

Ben

lg

Ben

fazantje