Mededeling

Collapse
No announcement yet.

Virus na firewall uitgezet

Collapse
X
  •  
  • Filter
  • Tijd
  • Show
Clear All
new posts

  • Virus na firewall uitgezet

    Gisteren tijdelijk de firewall uitgezet bij een installatieprobleem van de printer, en meteen al een virus te pakken.
    Bij 'uitzending gemist' scrolt het venster automatisch naar beneden en vermenigvuldigd de bovenste balk zich!
    Hieronder de logbestanden.
    Graag jullie hulp. Paul

    Malwarebytes Anti-Malware 1.75.0.1300
    www.malwarebytes.org

    Databaseversie: v2013.10.10.02

    Windows 7 x64 NTFS
    Internet Explorer 8.0.7600.16385
    Paul Loomans :: PAULLAPTOP [administrator]

    10-10-2013 10:25:52
    mbam-log-2013-10-10 (10-25-52).txt

    Scan type: Snelle scan
    Ingeschakelde scan opties: Geheugen | Opstartitems | Register | Bestanden en mappen | Heuristiek/Extra | Heuristiek/Shuriken | PUP | PUM
    Uitgeschakelde scan opties: P2P
    Objecten gescand: 285381
    Verstreken tijd: 12 minuut/minuten, 19 seconde(n)

    Geheugenprocessen gedetecteerd: 0
    (Geen kwaadaardige objecten gedetecteerd)

    Geheugenmodulen gedetecteerd: 0
    (Geen kwaadaardige objecten gedetecteerd)

    Registersleutels gedetecteerd: 0
    (Geen kwaadaardige objecten gedetecteerd)

    Registerwaarden gedetecteerd: 0
    (Geen kwaadaardige objecten gedetecteerd)

    Registerdata gedetecteerd: 0
    (Geen kwaadaardige objecten gedetecteerd)

    Mappen gedetecteerd: 0
    (Geen kwaadaardige objecten gedetecteerd)

    Bestanden gedetecteerd: 0
    (Geen kwaadaardige objecten gedetecteerd)

    (einde)


    DDS (Ver_2012-11-20.01) - NTFS_AMD64
    Internet Explorer: 8.0.7600.17267 BrowserJavaVersion: 10.25.2
    Run by Paul Loomans at 10:41:07 on 2013-10-10
    Microsoft Windows 7 Home Premium 6.1.7600.0.1252.31.1043.18.3892.1487 [GMT 2:00]
    .
    AV: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {0E9420C4-06B3-7FA0-3AB1-6E49CB52ECD9}
    AV: Lavasoft Ad-Aware *Disabled/Updated* {E0D97DD4-42BA-B3F2-A5A7-22E9ACE81FC7}
    SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    SP: Lavasoft Ad-Aware *Disabled/Updated* {5BB89C30-6480-BC7C-9F17-199BD76F557A}
    SP: AVG AntiVirus Free Edition 2014 *Enabled/Updated* {B5F5C120-2089-702E-0001-553BB0D5A664}
    FW: Lavasoft Ad-Aware *Disabled* {D8E2FCF1-08D5-B2AA-8EF8-8BDC523B58BC}
    .
    ============== Running Processes ===============
    .
    C:\PROGRA~2\AVG\AVG2014\avgrsa.exe
    C:\Program Files (x86)\AVG\AVG2014\avgcsrva.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\nvvsvc.exe
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Windows\system32\nvvsvc.exe
    C:\Windows\system32\WLANExt.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe
    C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
    C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
    C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe
    C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
    C:\ProgramData\DatacardService\DCService.exe
    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
    C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
    C:\Program Files (x86)\PDF Architect\HelperService.exe
    C:\Program Files (x86)\PDF Architect\ConversionService.exe
    C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe
    C:\Windows\SysWOW64\Rezip.exe
    C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
    C:\Program Files (x86)\AVG\AVG2014\avgnsa.exe
    C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
    C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\Windows\system32\svchost.exe -k bthsvcs
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe
    C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Windows\system32\SearchIndexer.exe
    C:\Windows\system32\taskhost.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\Dwm.exe
    C:\Program Files (x86)\Samsung\Samsung Recovery Solution 4\WCScheduler.exe
    C:\Windows\Explorer.EXE
    C:\Program Files (x86)\Samsung\Easy Display Manager\dmhkcore.exe
    C:\Program Files (x86)\Samsung\Samsung Support Center\SSCKbdHk.exe
    C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe
    C:\ProgramData\DatacardService\DCSHelper.exe
    C:\Windows\System32\hkcmd.exe
    C:\Windows\System32\igfxpers.exe
    C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe
    C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
    C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
    C:\Program Files\Windows Sidebar\sidebar.exe
    C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe
    C:\Users\Paul Loomans\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
    C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
    C:\Program Files (x86)\AVG\AVG2014\avgui.exe
    C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe
    C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    C:\Program Files (x86)\Brownie\BrStsW64.exe
    C:\PROGRA~2\AD-AWA~1\AdAware.exe
    C:\Program Files (x86)\Brownie\brpjp04a.exe
    C:\Windows\SysWOW64\RunDll32.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe
    C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
    C:\Windows\system32\igfxext.exe
    C:\Windows\system32\igfxsrvc.exe
    C:\Windows\system32\wuauclt.exe
    C:\Program Files (x86)\SAMSUNG\EasySpeedUpManager\EasySpeedUpManager.exe
    C:\Windows\System32\svchost.exe -k LocalServicePeerNet
    C:\Windows\system32\svchost.exe -k SDRSVC
    C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe
    C:\Users\Paul Loomans\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Paul Loomans\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Paul Loomans\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Paul Loomans\AppData\Local\Google\Chrome\Application\chrome.exe
    C:\Users\Paul Loomans\Downloads\Defogger.exe
    C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE
    C:\Windows\system32\taskhost.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    C:\Windows\system32\SearchProtocolHost.exe
    C:\Windows\system32\SearchFilterHost.exe
    C:\Windows\System32\cscript.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://www.google.com/ig/redirectdomain?brand=smsn&bmod=smsn
    uDefault_Page_URL = hxxp://www.google.com/ig/redirectdomain?brand=smsn&bmod=smsn
    uURLSearchHooks: {6c97a91e-4524-4019-86af-2aa2d567bf5c} - <orphaned>
    mWinlogon: Userinit = userinit.exe,
    BHO: PDF Architect Helper: {3A2D5EBA-F86D-4BD3-A177-019765996711} - C:\Program Files (x86)\PDF Architect\PDFIEHelper.dll
    BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
    BHO: Aanmeldhulp voor Windows Live ID: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    BHO: Skype Browser Helper: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - D:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll
    BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office14\URLREDIR.DLL
    BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
    TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    TB: PDF Architect Toolbar: {25A3A431-30BB-47C8-AD6A-E1063801134F} - C:\Program Files (x86)\PDF Architect\PDFIEPlugin.dll
    TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
    uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
    uRun: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
    uRun: [Google Update] "C:\Users\Paul Loomans\AppData\Local\Google\Update\GoogleUpdate.exe" /c
    uRun: [HW_OPENEYE_OUC_Mobile Partner] "C:\Program Files (x86)\Mobile Partner\UpdateDog\ouc.exe"
    uRun: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
    uRun: [Spotify Web Helper] "C:\Users\Paul Loomans\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
    uRun: [AVG-Secure-Search-Update_0913b] C:\Users\Paul Loomans\AppData\Roaming\AVG 0913b Campaign\AVG-Secure-Search-Update-0913b.exe /PROMPT --mid da7f5bfe22b047d6a9edd152f780546f-cc7f8e7f27ab18fd1870fd7f403e024c278a1d08 --CMPID 0913b
    mRun: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
    mRun: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
    mRun: [UpdatePDRShortCut] "C:\Program Files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\PowerDirector" UpdateWithCreateOnce "Software\CyberLink\PowerDirector\7.0"
    mRun: [PDVD8LanguageShortcut] "C:\Program Files (x86)\CyberLink\PowerDVD8\Language\Language.exe"
    mRun: [UpdatePPShortCut] "C:\Program Files (x86)\CyberLink\PowerProducer\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\PowerProducer" UpdateWithCreateOnce "Software\CyberLink\PowerProducer\5.0"
    mRun: [UpdatePSTShortCut] "C:\Program Files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\DVD Suite" UpdateWithCreateOnce "Software\CyberLink\PowerStarter"
    mRun: [UCam_Menu] "C:\Program Files (x86)\CyberLink\YouCam\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\YouCam" UpdateWithCreateOnce "Software\CyberLink\YouCam\2.0"
    mRun: [BCSSync] "C:\Program Files (x86)\Microsoft Office\Office14\BCSSync.exe" /DelayServices
    mRun: [PMBVolumeWatcher] C:\Program Files (x86)\Sony\PMB\PMBVolumeWatcher.exe
    mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
    mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
    mRun: [AVG_UI] "C:\Program Files (x86)\AVG\AVG2014\avgui.exe" /TRAYONLY
    mRun: [Ad-Aware Browsing Protection] "C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe"
    mRun: [Ad-Aware Antivirus] "C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareLauncher" --windows-run
    mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
    mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
    mRun: [BrStsWnd] C:\Program Files (x86)\Brownie\BrstsW64.exe Autorun
    mRun: [Brdefprn] C:\Program Files (x86)\Brother\BRHL2170\Brdefprn.exe -d
    StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\BLUETO~1.LNK - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
    mPolicies-Explorer: NoActiveDesktop = dword:1
    mPolicies-Explorer: NoActiveDesktopChanges = dword:1
    mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
    mPolicies-System: ConsentPromptBehaviorUser = dword:3
    mPolicies-System: EnableUIADesktopToggle = dword:0
    IE: &Verzenden naar OneNote - C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
    IE: Add to Google Photos Screensa&ver - C:\Windows\System32\GPhotos.scr/200
    IE: Afbeelding verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
    IE: E&xporteren naar Microsoft Excel - C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
    IE: Pagina verzenden naar &Bluetooth-apparaat... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    IE: Translate with Babylon - C:\Program Files (x86)\Babylon\Babylon-Pro\Utils\BabylonIEPI.dll/Action.htm
    IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
    IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - D:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab
    TCP: NameServer = 192.168.2.2
    TCP: Interfaces\{1D129297-FE5F-45C9-853B-D2B23A6FE9F8} : NameServer = 194.151.228.2 194.151.228.34
    TCP: Interfaces\{9A42A558-ADD1-4BEC-A30B-6328DD496273} : DHCPNameServer = 62.179.104.196 213.46.228.196
    TCP: Interfaces\{AD754EFD-C3EA-4743-BDA8-CEE8A1A5CA0C} : NameServer = 194.151.228.34 194.151.228.50
    TCP: Interfaces\{DA9CAA04-9DE9-4E42-BFE4-D6632D10E054} : NameServer = 194.151.228.34 194.151.228.50
    TCP: Interfaces\{DCD9CA77-1DD9-445C-94F7-101728EEB58B} : DHCPNameServer = 192.168.2.2
    TCP: Interfaces\{DCD9CA77-1DD9-445C-94F7-101728EEB58B}\3596475636F6D6146403634493 : DHCPNameServer = 192.168.0.1
    TCP: Interfaces\{DCD9CA77-1DD9-445C-94F7-101728EEB58B}\7596649602D41696B656E63786F666 : DHCPNameServer = 192.168.88.1
    TCP: Interfaces\{DCD9CA77-1DD9-445C-94F7-101728EEB58B}\B405E4D265746573531393343353644333 : DHCPNameServer = 192.168.1.254
    TCP: Interfaces\{DCD9CA77-1DD9-445C-94F7-101728EEB58B}\C44484F57416374756E6 : DHCPNameServer = 192.168.1.1
    Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - <orphaned>
    Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - D:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
    Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    AppInit_DLLs= C:\Windows\SysWOW64\nvinit.dll
    SSODL: WebCheck - <orphaned>
    x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
    x64-BHO: Skype add-on for Internet Explorer: {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
    x64-BHO: Google Toolbar Notifier BHO: {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg64.dll
    x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL
    x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
    x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
    x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
    x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
    x64-Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\System32\NvCpl.dll,NvStartup
    x64-Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe -s
    x64-Run: [SynTPEnh] C:\Program Files (x86)\Synaptics\SynTP\SynTPEnh.exe
    x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
    x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
    x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
    x64-IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
    x64-Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
    x64-Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - <orphaned>
    x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
    x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
    x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
    x64-Notify: igfxcui - igfxdev.dll
    x64-SSODL: WebCheck - <orphaned>
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - C:\Users\Paul Loomans\AppData\Roaming\Mozilla\Firefox\Profiles\d9tw9nhc.default\
    FF - prefs.js: browser.search.selectedEngine - Ask.com
    FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL
    FF - plugin: C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL
    FF - plugin: C:\Program Files (x86)\ABN AMRO e.dentifier2\Mozilla\npBECON.dll
    FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
    FF - plugin: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
    FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
    FF - plugin: C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll
    FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.111\npGoogleUpdate3.dll
    FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.115\npGoogleUpdate3.dll
    FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll
    FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
    FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll
    FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll
    FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.69\npGoogleUpdate3.dll
    FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll
    FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll
    FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
    FF - plugin: C:\Program Files (x86)\Java\jre6\bin\plugin2\npdeployJava1.dll
    FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
    FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\5.1.20513.0\npctrlui.dll
    FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npwachk.dll
    FF - plugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll
    FF - plugin: C:\Program Files (x86)\Sony\Media Go\npmediago.dll
    FF - plugin: C:\Program Files (x86)\Sony\PLAYSTATION Network Downloader\nppsndl.dll
    FF - plugin: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll
    FF - plugin: C:\Users\Paul Loomans\AppData\Local\Google\Update\1.3.21.153\npGoogleUpdate3.dll
    FF - plugin: C:\Users\Paul Loomans\AppData\Roaming\Mozilla\Firefox\Profiles\d9tw9nhc.default\extensions\{d0d3f03e-b5f1-41e6-9b14-3741bb0a9c32}\plugins\np-mswmp.dll
    FF - plugin: C:\Users\Paul Loomans\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll
    FF - plugin: C:\Users\Paul Loomans\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll
    FF - plugin: C:\Users\Paul Loomans\AppData\Roaming\Mozilla\plugins\npo1d.dll
    FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_6_602_171.dll
    FF - plugin: C:\Windows\SysWOW64\npdeployJava1.dll
    FF - plugin: C:\Windows\SysWOW64\npmproxy.dll
    FF - plugin: C:\Windows\SysWOW64\npwmsdrm.dll
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 AVGIDSHA;AVGIDSHA;C:\Windows\System32\drivers\avgidsha.sys [2013-9-2 192824]
    R0 Avgloga;AVG Logging Driver;C:\Windows\System32\drivers\avgloga.sys [2013-9-2 294712]
    R0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\System32\drivers\avgmfx64.sys [2013-8-20 123704]
    R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\System32\drivers\avgrkx64.sys [2013-9-8 31544]
    R0 gfibto;gfibto;C:\Windows\System32\drivers\gfibto.sys [2013-1-16 14456]
    R0 RapportKE64;RapportKE64;C:\Windows\System32\drivers\RapportKE64.sys [2013-7-2 295696]
    R1 Avgdiska;AVG Disk Driver;C:\Windows\System32\drivers\avgdiska.sys [2013-8-1 147768]
    R1 AVGIDSDriver;AVGIDSDriver;C:\Windows\System32\drivers\avgidsdrivera.sys [2013-9-2 241464]
    R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\System32\drivers\avgldx64.sys [2013-9-2 212280]
    R1 Avgtdia;AVG TDI Driver;C:\Windows\System32\drivers\avgtdia.sys [2013-8-1 251192]
    R1 RapportCerberus_56758;RapportCerberus_56758;C:\ProgramData\Trusteer\Rapport\store\exts\RapportCerber us\baseline\RapportCerberus64_56758.sys [2013-8-22 589872]
    R1 RapportEI64;RapportEI64;C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportEI64.sys [2013-9-10 265872]
    R1 RapportPG64;RapportPG64;C:\Program Files (x86)\Trusteer\Rapport\bin\x64\RapportPG64.sys [2013-9-10 384432]
    R1 SABI;SAMSUNG Kernel Driver For Windows 7;C:\Windows\System32\drivers\SABI.sys [2010-6-24 13824]
    R2 Ad-Aware Service;Ad-Aware Service;C:\Program Files (x86)\Ad-Aware Antivirus\AdAwareService.exe [2012-12-14 1236968]
    R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2014\avgidsagent.exe [2013-9-3 3538480]
    R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe [2013-9-22 301152]
    R2 DCService.exe;DCService.exe;C:\ProgramData\DatacardService\DCService.exe [2010-9-29 249856]
    R2 PDF Architect Helper Service;PDF Architect Helper Service;C:\Program Files (x86)\PDF Architect\HelperService.exe [2012-11-22 1522312]
    R2 PDF Architect Service;PDF Architect Service;C:\Program Files (x86)\PDF Architect\ConversionService.exe [2012-11-22 905864]
    R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;C:\Program Files (x86)\Sony\PMB\PMBDeviceInfoProvider.exe [2011-3-15 428384]
    R2 RapportMgmtService;Rapport Management Service;C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe [2013-9-10 1435928]
    R2 Rezip;Rezip;C:\Windows\SysWOW64\Rezip.exe [2010-6-24 311296]
    R2 SBAMSvc;Ad-Aware;C:\Program Files (x86)\Ad-Aware Antivirus\SBAMSvc.exe [2012-9-20 3677000]
    R2 Skype C2C Service;Skype C2C Service;C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2012-10-2 3064000]
    R2 TomTomHOMEService;TomTomHOMEService;C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2012-1-23 92592]
    R2 UNS;Intel(R) Management & Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-6-24 2320920]
    R3 btwampfl;Bluetooth AMP USB Filter;C:\Windows\System32\drivers\btwampfl.sys [2010-11-2 340520]
    R3 btwl2cap;Bluetooth L2CAP Service;C:\Windows\System32\drivers\btwl2cap.sys [2010-11-2 39464]
    R3 HECIx64;Intel(R) Management Engine Interface;C:\Windows\System32\drivers\HECIx64.sys [2010-6-25 56344]
    R3 huawei_enumerator;huawei_enumerator;C:\Windows\System32\drivers\ew_jubusenum.sys [2011-4-14 86016]
    R3 Impcd;Impcd;C:\Windows\System32\drivers\Impcd.sys [2010-6-25 158976]
    R3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2010-6-25 271872]
    R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\System32\drivers\yk62x64.sys [2009-9-28 395264]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
    S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
    S2 SkypeUpdate;Skype Updater;D:\Program Files (x86)\Skype\Updater\Updater.exe [2013-6-21 162408]
    S3 e.dentifier2;SmartCard Reader ABN AMRO e.dentifier2;C:\Windows\System32\drivers\aabed2.sys [2008-3-20 28672]
    S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;C:\Windows\System32\drivers\ew_hwusbdev.sys [2011-4-14 117248]
    S3 ewusbnet;HUAWEI USB-NDIS miniport;C:\Windows\System32\drivers\ewusbnet.sys [2011-4-14 256000]
    S3 fssfltr;fssfltr;C:\Windows\System32\drivers\fssfltr.sys [2010-12-15 48488]
    S3 fsssvc;Windows Live Family Safety Service;C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2011-5-13 1492840]
    S3 ggflt;SEMC USB Flash Driver Filter;C:\Windows\System32\drivers\ggflt.sys [2012-8-27 14448]
    S3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2009-6-10 187392]
    S3 Sony PC Companion;Sony PC Companion;C:\Program Files (x86)\Sony\Sony PC Companion\PCCService.exe [2012-5-23 155320]
    S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\System32\drivers\usbaapl64.sys [2011-5-10 51712]
    S3 WatAdminSvc;Windows Activation Technologies-service;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-11-17 1255736]
    .
    =============== Created Last 30 ================
    .
    2013-10-08 11:28:55 -------- d-----w- C:\Users\Paul Loomans\AppData\Local\{070CF8B2-6B45-433A-8E69-45E080C8A199}
    2013-10-07 08:40:02 -------- d-----w- C:\ProgramData\Brother
    2013-10-03 21:10:13 -------- d-----w- C:\Users\Paul Loomans\AppData\Roaming\AVG2014
    2013-10-03 21:05:59 -------- d-----w- C:\ProgramData\AVG2014
    2013-10-03 21:03:22 -------- d-----w- C:\Users\Paul Loomans\AppData\Local\Avg2014
    2013-09-23 12:09:57 1998168 ----a-w- C:\Windows\SysWow64\D3DX9_43.dll
    2013-09-23 12:06:24 -------- d-----w- C:\Program Files (x86)\Sony Media Go Install
    .
    ==================== Find3M ====================
    .
    2013-09-10 21:18:28 295696 ----a-w- C:\Windows\System32\drivers\RapportKE64.sys
    2013-09-08 20:11:42 31544 ----a-w- C:\Windows\System32\drivers\avgrkx64.sys
    2013-09-02 08:59:14 212280 ----a-w- C:\Windows\System32\drivers\avgldx64.sys
    2013-09-02 08:29:18 294712 ----a-w- C:\Windows\System32\drivers\avgloga.sys
    2013-09-02 08:26:50 192824 ----a-w- C:\Windows\System32\drivers\avgidsha.sys
    2013-09-02 08:26:42 241464 ----a-w- C:\Windows\System32\drivers\avgidsdrivera.sys
    2013-08-20 20:53:58 123704 ----a-w- C:\Windows\System32\drivers\avgmfx64.sys
    2013-08-01 14:07:06 251192 ----a-w- C:\Windows\System32\drivers\avgtdia.sys
    2013-08-01 14:06:28 147768 ----a-w- C:\Windows\System32\drivers\avgdiska.sys
    .
    ============= FINISH: 10:43:00,45 ===============


    GMER 2.1.19163 - http://www.gmer.net
    Rootkit scan 2013-10-10 11:01:09
    Windows 6.1.7600 x64 \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 SAMSUNG_ rev.2AJ1 298,09GB
    Running: 5sm7ofbg.exe; Driver: C:\Users\PAULLO~1\AppData\Local\Temp\pwloikod.sys


    ---- User code sections - GMER 2.1 ----

    .text C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe[1064] C:\Windows\SysWOW64\ntdll.dll!KiUserApcDispatcher 00000000775b0028 5 bytes JMP 0000000100faab00
    .text C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe[1064] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW + 493 0000000075342c91 4 bytes CALL 71ab0000
    .text C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe[1064] C:\Windows\syswow64\WS2_32.dll!getaddrinfo 0000000076c96737 5 bytes JMP 0000000171a50022
    .text C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe[1064] C:\Windows\syswow64\WS2_32.dll!gethostbyname 0000000076ca7133 5 bytes JMP 0000000171ae0022
    .text C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe[1064] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075471465 2 bytes [47, 75]
    .text C:\Program Files (x86)\Trusteer\Rapport\bin\RapportMgmtService.exe[1064] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000754714bb 2 bytes [47, 75]
    .text ... * 2
    .text C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe[2096] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075471465 2 bytes [47, 75]
    .text C:\Program Files (x86)\AVG\AVG2014\avgwdsvc.exe[2096] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000754714bb 2 bytes [47, 75]
    .text ... * 2
    .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[2516] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075471465 2 bytes [47, 75]
    .text C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe[2516] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000754714bb 2 bytes [47, 75]
    .text ... * 2
    .text C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe[3464] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075471465 2 bytes [47, 75]
    .text C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe[3464] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000754714bb 2 bytes [47, 75]
    .text ... * 2
    .text C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe[3456] C:\Windows\SysWOW64\ntdll.dll!KiUserApcDispatcher 00000000775b0028 5 bytes JMP 0000000100c5bad0
    .text C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe[3456] C:\Windows\syswow64\KERNELBASE.dll!LoadLibraryExW + 493 0000000075342c91 4 bytes CALL 71ac0000
    .text C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe[3456] C:\Windows\syswow64\WS2_32.dll!getaddrinfo 0000000076c96737 5 bytes JMP 0000000171a20022
    .text C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe[3456] C:\Windows\syswow64\WS2_32.dll!gethostbyname 0000000076ca7133 5 bytes JMP 0000000171a60022
    .text C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe[3456] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075471465 2 bytes [47, 75]
    .text C:\Program Files (x86)\Trusteer\Rapport\bin\RapportService.exe[3456] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000754714bb 2 bytes [47, 75]
    .text ... * 2
    .text C:\Program Files (x86)\AVG\AVG2014\avgui.exe[5000] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075471465 2 bytes [47, 75]
    .text C:\Program Files (x86)\AVG\AVG2014\avgui.exe[5000] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000754714bb 2 bytes [47, 75]
    .text ... * 2
    .text C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe[5008] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075471465 2 bytes [47, 75]
    .text C:\ProgramData\Ad-Aware Browsing Protection\adawarebp.exe[5008] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000754714bb 2 bytes [47, 75]
    .text ... * 2
    .text C:\PROGRA~2\AD-AWA~1\AdAware.exe[4896] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075471465 2 bytes [47, 75]
    .text C:\PROGRA~2\AD-AWA~1\AdAware.exe[4896] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000754714bb 2 bytes [47, 75]
    .text ... * 2
    .text C:\Windows\SysWOW64\RunDll32.exe[3132] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075471465 2 bytes [47, 75]
    .text C:\Windows\SysWOW64\RunDll32.exe[3132] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000754714bb 2 bytes [47, 75]
    .text ... * 2
    .text C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe[5616] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075471465 2 bytes [47, 75]
    .text C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbam.exe[5616] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000754714bb 2 bytes [47, 75]
    .text ... * 2
    .text C:\Users\Paul Loomans\Downloads\Defogger.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 69 0000000075471465 2 bytes [47, 75]
    .text C:\Users\Paul Loomans\Downloads\Defogger.exe[5536] C:\Windows\syswow64\PSAPI.DLL!GetModuleInformation + 155 00000000754714bb 2 bytes [47, 75]
    .text ... * 2

  • #2
    Waarom heb je dan niet eerst je internetverbinding verbroken?

    Download Zoek.zip naar het bureaublad.
    1. Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kun je negeren, dit is namelijk een onterechte waarschuwing.
    2. Schakel je antivirus- en antispywareprogramma's uit, mogelijk kunnen ze conflicteren met zoek.exe (hier en hier) kan je lezen hoe je dat doet.

    • Klik met de rechtermuisknop op Zoek.zip en klik op de optie "Alles uitpakken".
    • Dubbelklik vervolgens op Zoek.exe om de tool te starten.
    • Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
    • Kopieer nu onderstaande code en plak die in het grote invulvenster:
    • Note: Dit script is speciaal bedoeld voor deze PC, gebruik dit dan ook niet op andere PC's met een gelijkaardig probleem.
      Code:
      emptyclsid;
      emptyfolderscheck;
      firefoxlook; 
      Chromelook; 
      CHRdefaults;
      autoclean; 
      iedefaults; 
      filesrcm;
    • Klik nu op de knop "Run script".
    • Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
    • Mocht na de herstart geen logje verschijnen, start zoek.exe dan opnieuw, de log verschijnt dan alsnog.
    • Post het geopende logje in het volgende bericht als bijlage.

    Windows 10 opstarten in Veilige Modus

    Comment


    • #3
      In de bijlage logbestand van zoek

      Ik had niet gedacht zo snel al een virus te zullen hebben (heb de firewall misschien 30 seconden uitgeschakeld.
      Dank voor je hulp!

      Comment


      • #4
        vraag me af of het in een bijlage zit. Ik deed het via geavanceerd, dan bijlage uploaden lukte niet. Hoe stuur ik het bestand als bijlage?

        Comment


        • #5
          nog eens

          nu als txt bestand
          Bijgevoegde Bestanden

          Comment


          • #6
            Hallo,

            Wil je zoek.exe nogmaals starten en dan dit script gebruiken ?

            Code:
            emptyfolderscheck;delete
            silentrunnens;
            autoclean;

            Windows 10 opstarten in Veilige Modus

            Comment


            • #7
              Zoekresultaten 2

              Hierbij het tweede log
              Bijgevoegde Bestanden

              Comment


              • #8
                Goed gedaan, is alles weer goed nu?

                Windows 10 opstarten in Veilige Modus

                Comment


                • #9
                  Alles doet het weer prima.
                  Dankjewel Juisterr voor je snelle en effectieve hulp!
                  Geweldig hoe jullie dit doen.

                  Comment


                  • #10
                    Download Delfix by Xplode naar het bureaublad.

                    Dubbelklik op Delfix.exe om de tool te starten.
                    Zet nu vinkjes voor de volgende items:
                    • Activate UAC
                    • Remove disinfection tools
                    • Create registry backup
                    • Purge System Restore
                    • Reset system settings

                    Klik nu op "Run" en wacht geduldig tot de tool gereed is.
                    Wanneer de tool gereed is wordt er een logbestand aangemaakt. Dit hoeft u echter niet te plaatsen.

                    PS. en dank je voor het compliment.

                    Windows 10 opstarten in Veilige Modus

                    Comment

                    Sorry, you are not authorized to view this page
                    Working...
                    X