Mededeling

Collapse
No announcement yet.

internet explorer reageert niet meer

Collapse
X
  •  
  • Filter
  • Tijd
  • Show
Clear All
new posts

  • internet explorer reageert niet meer

    Mijn internet explorer loopt vandaag al verschillende keren vast.
    Ik heb alle instellingen al gereset zelfs in cash leeggemaakt maar tevergeefs.
    Ik ben nu de harde schijf aan het scannen met mijn virusscanner Kaspersky.
    Wat kan ik nog meer doen ?
    Alvast bedankt

  • #2
    De eerste stap is het uitvoeren van deze richtlijn:

    !!! BELANGRIJK !!!: Lees dit eerst voor je hier een bericht plaatst!

    Post de gevraagde logjes.

    Emphyrio
    Malware Research [email protected] (MBAM) ..... ASAP & Unite Member
    E Dev * McAfee verwijderen. * Ccleaner * E-Peek

    Comment


    • #3
      <?xml version="1.0" encoding="UTF-16" ?>
      <mbam-log>
      <header>
      <date>2015/06/02 20:48:47 +0200</date>
      <logfile>mbam-log-2015-06-02 (20-48-45).xml</logfile>
      <isadmin>yes</isadmin>
      </header>
      <engine>
      <version>2.01.6.1022</version>
      <malware-database>v2015.06.02.05</malware-database>
      <rootkit-database>v2015.06.02.01</rootkit-database>
      <license>free</license>
      <file-protection>disabled</file-protection>
      <web-protection>disabled</web-protection>
      <self-protection>disabled</self-protection>
      </engine>
      <system>
      <osversion>Windows 8.1</osversion>
      <arch>x64</arch>
      <username>Alain</username>
      <filesys>NTFS</filesys>
      </system>
      <summary>
      <type>threat</type>
      <result>completed</result>
      <objects>345933</objects>
      <time>608</time>
      <processes>0</processes>
      <modules>0</modules>
      <keys>0</keys>
      <values>0</values>
      <datas>0</datas>
      <folders>0</folders>
      <files>0</files>
      <sectors>0</sectors>
      </summary>
      <options>
      <memory>enabled</memory>
      <startup>enabled</startup>
      <filesystem>enabled</filesystem>
      <archives>enabled</archives>
      <rootkits>disabled</rootkits>
      <deeprootkit>disabled</deeprootkit>
      <heuristics>enabled</heuristics>
      <pup>enabled</pup>
      <pum>enabled</pum>
      </options>
      <items>
      </items>
      </mbam-log>

      Comment


      • #4
        Dit zijn de 2 malwarebytes logs die vind al niets ik ga verder met stap 3.

        <?xml version="1.0" encoding="UTF-8" ?>
        <logs>
        <record severity="debug" LoggingEventType="1" datetime="2015-06-02T20:42:52.475890+02:00" source="Manual" type="Update" username="SYSTEM" systemname="ASUS-PC" fromVersion="2015.2.25.1" last_modified_tag="ad17e33e-37b9-46a2-8deb-930f4a5c002f" name="Rootkit Database" toVersion="2015.6.2.1"></record>
        <record severity="debug" LoggingEventType="1" datetime="2015-06-02T20:42:52.491516+02:00" source="Manual" type="Update" username="SYSTEM" systemname="ASUS-PC" fromVersion="2015.3.9.1" last_modified_tag="e5f25ba6-bcf5-40c1-a194-2fff1524f411" name="Remediation Database" toVersion="2015.5.13.1"></record>
        <record severity="debug" LoggingEventType="1" datetime="2015-06-02T20:43:02.179252+02:00" source="Manual" type="Update" username="SYSTEM" systemname="ASUS-PC" fromVersion="2015.3.9.5" last_modified_tag="4a1f36ba-e553-4590-a597-97db0ca3fbf4" name="Malware Database" toVersion="2015.6.2.5"></record>
        <record severity="debug" scantype="threat" LoggingEventType="6" starttime="2015-06-02T20:44:54+02:00" datetime="2015-06-02T20:45:12.760562+02:00" source="Manual" type="Scan" username="SYSTEM" systemname="ASUS-PC" last_modified_tag="34ecd63f-ef1f-4777-976f-f396d6a2c10b" duration="18" malwaredetections="0" nonmalwaredetections="0" scanresult="canceled"></record>
        <record severity="debug" scantype="threat" LoggingEventType="6" starttime="2015-06-02T20:48:47+02:00" datetime="2015-06-02T20:58:56.511013+02:00" source="Manual" type="Scan" username="SYSTEM" systemname="ASUS-PC" last_modified_tag="fa6406c1-9c51-4c40-a846-3167eb2e35e7" duration="608" malwaredetections="0" nonmalwaredetections="0" scanresult="completed"></record>
        </logs>

        Comment


        • #5
          # AdwCleaner v4.206 - Logbestand aangemaakt 02/06/2015 op 21:10:56
          # Laatste update 01/06/2015 door Xplode
          # Database : 2015-06-01.1 [Server]
          # Besturingssysteem : Windows 8.1 (x64)
          # Gebruikersnaam : Alain - ASUS-PC
          # Gestart vanuit : C:\Users\Alain\Desktop\adwcleaner_4.206.exe
          # Optie : Verwijderen

          ***** [ Services ] *****


          ***** [ Bestanden / Mappen ] *****

          Map Verwijderd : C:\Users\Alain\Favorites\radio

          ***** [ Geplande taken ] *****


          ***** [ Snelkoppelingen ] *****


          ***** [ Register ] *****


          ***** [ Webbrowsers ] *****

          -\\ Internet Explorer v11.0.9600.17416

          Comment


          • #6
            Dit is geen scan log van MBAM.

            Start MBAM.
            Ga naar Historie > Programmalogboeken.
            Rechts zie je een lijst. Selecteer Scan Log.
            Kies Exporteren > Naar Klembord
            Plak deze log in je volgende posting.

            Click image for larger version

Name:	MBAMscan1.png
Views:	1
Size:	84,5 KB
ID:	1068307


            Click image for larger version

Name:	MBAMscan2.png
Views:	1
Size:	72,6 KB
ID:	1068308
            Malware Research [email protected] (MBAM) ..... ASAP & Unite Member
            E Dev * McAfee verwijderen. * Ccleaner * E-Peek

            Comment


            • #7
              Malware heeft niets gedetecteerd ik heb in dat mapje die bestanden al verwijderd en uit de prullenbak of ik doe terug een scan maar malware vind in totaal niets.

              Comment


              • #8
                Malwarebytes Anti-Malware
                www.malwarebytes.org


                Error, 2/06/2015 21:12:08, SYSTEM, ASUS-PC, Protection, IsLicensed, 13,
                Protection, 2/06/2015 21:12:08, SYSTEM, ASUS-PC, Protection, Malware Protection, Stopping,
                Protection, 2/06/2015 21:12:08, SYSTEM, ASUS-PC, Protection, Malware Protection, Stopped,

                (end)

                Comment


                • #9
                  E-Peek v 1.9.9.0 ENHANCED 3 © Emphyrio/Onsia Patrick 2013-2015
                  E Dev
                  Run at di 2 jun 2015 21:16
                  .
                  Windows 8.1 (64 bits)
                  C:\Windows [NTFS - Fixed]
                  Default Browser: Internet Explorer
                  Boot mode: Normal boot
                  User logged in: Alain
                  .
                  Java x86: n/a
                  Java x64: n/a
                  .
                  AV : Kaspersky Anti-Virus [Updated - Running]
                  AV : Windows Defender [Updated - Not Running]
                  AS : Kaspersky Anti-Virus [Updated - Running]
                  AS : Windows Defender [Updated - Not Running]
                  FW : Windows firewall
                  .
                  ==================== Files and Folders history =================================

                  Folders Created Last 7 days :

                  30/05/2015 ##### r-h-s-d+a- C:\Program Files\Microsoft Silverlight
                  30/05/2015 ##### r-h-s-d+a- C:\Program Files (x86)\Microsoft Silverlight
                  26/05/2015 ##### r-h-s-d+a- C:\Program Files (x86)\Mozilla Firefox
                  02/06/2015 ##### r-h-s-d+a- C:\Users\Alain\AppData\Local\GWX
                  02/06/2015 ##### r-h-s-d+a- C:\Program Files (x86)\Malwarebytes Anti-Malware
                  02/06/2015 ##### r-h-s-d+a- C:\Program Files (x86)\E Dev

                  Files Modified Last 7 days :

                  02/06/2015 01823174 r-h-s-d-a+ C:\Windows\system32\PerfStringBackup.INI
                  02/06/2015 00805462 r-h-s-d-a+ C:\Windows\system32\perfh013.dat
                  02/06/2015 00722278 r-h-s-d-a+ C:\Windows\system32\perfh009.dat
                  02/06/2015 00161964 r-h-s-d-a+ C:\Windows\system32\perfc013.dat
                  02/06/2015 00135394 r-h-s-d-a+ C:\Windows\system32\perfc009.dat

                  Files Created Last 7 days :

                  02/06/2015 00000000 r-h-s-d-a+ C:\Users\Alain\defogger_reenable

                  ==================== RUNNING PROCESSES =========================================

                  [armsvc] -SYSTEM- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe - (Adobe Systems Incorporated)
                  [audiodg] -LOCAL SERVICE- C:\Windows\System32\audiodg.exe - (audiodg.exe)
                  [avp] -SYSTEM- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\avp.exe - (Kaspersky Lab ZAO)
                  [avpui] -Alain- C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\avpui.exe - (Kaspersky Lab ZAO)
                  [CCleaner64] -Alain- C:\Program Files\CCleaner\CCleaner64.exe - (Piriform Ltd)
                  [csrss] -SYSTEM- C:\Windows\System32\csrss.exe - (csrss.exe)
                  [csrss] -SYSTEM- C:\Windows\System32\csrss.exe - (csrss.exe)
                  [dasHost] -LOCAL SERVICE- C:\Windows\system32\dashost.exe - (Microsoft Corporation)
                  [DTSU2PAuSrv64] -SYSTEM- C:\Program Files\Realtek\Audio\HDA\DTSU2PAuSrv64.exe - (DTS, Inc)
                  [dwm] -DWM-1- C:\Windows\system32\dwm.exe - (Microsoft Corporation)
                  [E-Peek 1.9.9.0] -Alain- C:\Program Files (x86)\E Dev\E-Peek\E-Peek 1.9.9.0.exe - (E Dev)
                  [explorer] -Alain- C:\Windows\Explorer.EXE - (Microsoft Corporation)
                  [GWX] -Alain- C:\Windows\system32\GWX\GWX.exe - (Microsoft Corporation)
                  [HeciServer] -SYSTEM- C:\Program Files\Intel\iCLS Client\HeciServer.exe - (Intel(R) Corporation)
                  [IPROSetMonitor] -SYSTEM- C:\Windows\system32\IProsetMonitor.exe - (Intel Corporation)
                  [jhi_service] -SYSTEM- C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe - (Intel Corporation)
                  [livecomm] -Alain- C:\Program Files\WindowsApps\microsoft.windowscommunicationsapps_17.5.9600.20856_x64__8wekyb3d8bbwe\LiveComm.ex e - (Microsoft Corporation)
                  [lsass] -SYSTEM- C:\Windows\system32\lsass.exe - (Microsoft Corporation)
                  [msiexec] -SYSTEM- C:\Windows\system32\msiexec.exe - (Microsoft Corporation)
                  [NMBgMonitor] -Alain- C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe - (Nero AG)
                  [NMIndexingService] -SYSTEM- C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe - (Nero AG)
                  [NMIndexStoreSvr] -Alain- C:\Program Files (x86)\Common Files\Ahead\Lib\NMIndexStoreSvr.exe - (Nero AG)
                  [nvvsvc] -SYSTEM- C:\Windows\system32\nvvsvc.exe - (NVIDIA Corporation)
                  [nvvsvc] -SYSTEM- C:\Windows\system32\nvvsvc.exe - (NVIDIA Corporation)
                  [nvxdsync] -SYSTEM- C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe - (NVIDIA Corporation)
                  [RAVBg64] -Alain- C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe - (Realtek Semiconductor)
                  [RtkNGUI64] -Alain- C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe - (Realtek Semiconductor)
                  [RuntimeBroker] -Alain- C:\Windows\System32\RuntimeBroker.exe - (Microsoft Corporation)
                  [SearchFilterHost] -SYSTEM- C:\Windows\system32\SearchFilterHost.exe - (Microsoft Corporation)
                  [SearchIndexer] -SYSTEM- C:\Windows\system32\SearchIndexer.exe - (Microsoft Corporation)
                  [SearchProtocolHost] -SYSTEM- C:\Windows\system32\SearchProtocolHost.exe - (Microsoft Corporation)
                  [services] -SYSTEM- C:\Windows\System32\services.exe - (services.exe)
                  [SettingSyncHost] -Alain- C:\Windows\System32\SettingSyncHost.exe - (Microsoft Corporation)
                  [SkyDrive] -Alain- C:\Windows\System32\skydrive.exe - (Microsoft Corporation)
                  [smss] -SYSTEM- C:\Windows\System32\smss.exe - (smss.exe)
                  [spoolsv] -SYSTEM- C:\Windows\System32\spoolsv.exe - (Microsoft Corporation)
                  [sppsvc] -NETWORK SERVICE- C:\Windows\System32\sppsvc.exe - (sppsvc.exe)
                  [System] -N/A- - (System)
                  [taskeng] -SYSTEM- C:\Windows\system32\taskeng.exe - (Microsoft Corporation)
                  [taskhostex] -Alain- C:\Windows\system32\taskhostex.exe - (Microsoft Corporation)
                  [wininit] -SYSTEM- C:\Windows\system32\wininit.exe - (Microsoft Corporation)
                  [winlogon] -SYSTEM- C:\Windows\system32\winlogon.exe - (Microsoft Corporation)
                  [WMIADAP] -SYSTEM- C:\Windows\system32\wbem\WMIADAP.EXE - (Microsoft Corporation)
                  [WmiPrvSE] -NETWORK SERVICE- C:\Windows\system32\wbem\wmiprvse.exe - (Microsoft Corporation)
                  [WmiPrvSE] -SYSTEM- C:\Windows\system32\wbem\wmiprvse.exe - (Microsoft Corporation)
                  [wmpnetwk] -NETWORK SERVICE- C:\Program Files\Windows Media Player\wmpnetwk.exe - (Microsoft Corporation)
                  [WUDFHost] -LOCAL SERVICE- C:\Windows\System32\WUDFHost.exe - (Microsoft Corporation)

                  ==================== IE PAGES ==================================================

                  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\Main
                  Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
                  Local Page = C:\Windows\SysWOW64\blank.htm
                  Default_Page_URL = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
                  Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
                  Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896

                  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes
                  DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

                  HKLM\Software\Wow6432Node\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
                  DisplayName = @ieframe.dll,-12512
                  URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

                  ==================== IE PAGES x64 ==============================================

                  HKLM\Software\Microsoft\Internet Explorer\Main
                  Start Page = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
                  Local Page = C:\Windows\System32\blank.htm
                  Default_Page_URL = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
                  Default_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
                  Search Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896

                  HKLM\Software\Microsoft\Internet Explorer\SearchScopes
                  DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

                  HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
                  DisplayName = @ieframe.dll,-12512
                  URL = hxxp://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

                  ==================== Auto Load =================================================

                  HKLM\Software\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Winlogon
                  Userinit = userinit.exe
                  Shell = explorer.exe

                  ==================== Auto Load x64 =============================================

                  HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon
                  Userinit = C:\Windows\system32\userinit.exe,
                  Shell = explorer.exe

                  ==================== Browsers present ==========================================

                  FIREFOX.EXE
                  Google Chrome
                  IEXPLORE.EXE

                  ==================== Firefox ===================================================

                  FF - ProfilePath - C:\Users\Alain\AppData\Roaming\Mozilla\firefox\Profiles\pnt1e0rp.default-1429096628050

                  FF - Ext: [ 4.5.1.379 ] - extension - [email protected] [ visible: True # active: True]
                  FF - Ext: [ 4.5.1.379 ] - extension - [email protected] [ visible: True # active: True]
                  FF - Ext: [Default 38.0.1 ] - theme - {972ce4c6-7e08-4474-a285-3208198ce6fd} [ visible: True # active: True]

                  FF - Search: [Bing] - C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bing.xml [ hidden: False]
                  FF - Search: [bol.com] - C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\bolcom-nl.xml [ hidden: False]
                  FF - Search: [DuckDuckGo] - C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\ddg.xml [ hidden: False]
                  FF - Search: [Google] - C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\google.xml [ hidden: False]
                  FF - Search: [Marktplaats.nl] - C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\marktplaats-nl.xml [ hidden: False]
                  FF - Search: [Wikipedia (nl)] - C:\Program Files (x86)\Mozilla Firefox\browser\searchplugins\wikipedia-nl.xml [ hidden: False]

                  FF - PlugIn: [Adobe® Flash® Player 17.0.0.169 Plugin] - C:\Windows\system32\Macromed\Flash\NPSWF64_17_0_0_169.dll
                  FF - PlugIn: [Ag Player] - C:\Program Files\Microsoft Silverlight\5.1.40416.0\npctrl.dll

                  FF - prefs.js: user_pref("browser.startup.homepage", "hxxp://www.google.be/");

                  ==================== Google Chrome =============================================

                  GC - Local State Path: C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Local State

                  GC - Profile: [Default] Name: Persoon 1 - Shortcut name: - Username:

                  ==================== Google Chrome Profile: Default ============================

                  GC - Prefpath: C:\Users\Alain\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences

                  GC - Homepage: ["hxxps://www.google.be/"]

                  GC - Ext: [ Web Store ] version: 0.2
                  Description: Ontdek fantastische apps, games, extensies en thema's voor Google Chrome.
                  Path: C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\resources\web_store

                  GC - Ext: [ Kaspersky Bescherming ] version: 4.0.9.130
                  Description: Bescherm betalingen, blokkeer gevaarlijke websites en voer gegevens veilig in met deze extensie van Kaspersky Lab
                  Path: dbhjdbfgekjfcfkkfjjmlmojhbllhbho\4.0.9.130_0

                  GC - Ext: [ Bookmark Manager ] version: 0.1
                  Description: Bookmark Manager
                  Path: C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\resources\bookmark_manager

                  GC - Ext: [ Settings ] version: 0.2
                  Description: Settings
                  Path: C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\resources\settings_app

                  GC - Ext: [ Feedback ] version: 1.0
                  Description: User feedback extension
                  Path: C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\resources\feedback

                  GC - Ext: [ CryptoTokenExtension ] version: 0.9.22
                  Description: CryptoToken Component Extension
                  Path: C:\Program Files (x86)\Google\Chrome\Application\43.0.2357.65\resources\cryptotoken

                  GC - Ext: [ Cloud Print ] version: 0.1
                  Description: Cloud Print
                  Path: C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\resources\cloud_print

                  GC - Ext: [ GaiaAuthExtension ] version: 0.0.1
                  Description: GAIA Component Extension
                  Path: C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\resources\gaia_auth

                  GC - Ext: [ Chrome ] version: 0.1
                  Description: Een snelle, eenvoudige en veilige webbrowser voor het moderne internet.
                  Path: C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\resources\chrome_app

                  GC - Ext: [ Chrome PDF Viewer ] version: 1
                  Description:
                  Path: C:\Program Files (x86)\Google\Chrome\Application\42.0.2311.90\resources\pdf

                  GC - Ext: [ Google Network Speech ] version: 1.0
                  Description: Component extension providing speech via the Google network text-to-speech service.
                  Path: C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\resources\network_speech_synthesis

                  GC - Ext: [ Google+ Hangouts ] version: 1.0
                  Description:
                  Path: C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\resources\hangout_services

                  GC - Ext: [ Google Now ] version: 1.2.0.1
                  Description: Integrates Google Now into Chrome.
                  Path: C:\Program Files (x86)\Google\Chrome\Application\41.0.2272.118\resources\google_now

                  ==================== Windows Host File =========================================


                  ==================== BHO =======================================================

                  HKLM\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects
                  {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD}
                  HKCR\CLSID\{4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} Default = Virtual Keyboard Plugin
                  => HKCR\CLSID\{4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD}\InProcServer32 Default = C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\IEExt\ie_plugin.dll

                  {93BC2EA7-2F17-4729-948A-D2E03FFB2412}
                  HKCR\CLSID\{93BC2EA7-2F17-4729-948A-D2E03FFB2412} Default = Content Blocker Plugin
                  => HKCR\CLSID\{93BC2EA7-2F17-4729-948A-D2E03FFB2412}\InProcServer32 Default = C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\IEExt\ie_plugin.dll

                  {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82}
                  HKCR\CLSID\{AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} Default = Safe Money Plugin
                  => HKCR\CLSID\{AB379017-4C03-4E00-8EDF-E6D6AF7CCF82}\InProcServer32 Default = C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\IEExt\ie_plugin.dll

                  ==================== BHO x64 ===================================================

                  HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\Browser Helper Objects
                  {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD}
                  HKCR\CLSID\{4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} Default = Virtual Keyboard Plugin
                  => HKCR\CLSID\{4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD}\InProcServer32 Default = C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\x64\IEExt\ie_plugin.dll

                  {93BC2EA7-2F17-4729-948A-D2E03FFB2412}
                  HKCR\CLSID\{93BC2EA7-2F17-4729-948A-D2E03FFB2412} Default = Content Blocker Plugin
                  => HKCR\CLSID\{93BC2EA7-2F17-4729-948A-D2E03FFB2412}\InProcServer32 Default = C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\x64\IEExt\ie_plugin.dll

                  {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82}
                  HKCR\CLSID\{AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} Default = Safe Money Plugin
                  => HKCR\CLSID\{AB379017-4C03-4E00-8EDF-E6D6AF7CCF82}\InProcServer32 Default = C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\x64\IEExt\ie_plugin.dll

                  ==================== Auto Start Programs =======================================

                  HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run
                  Adobe ARM = "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
                  APSDaemon = "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
                  QuickTime Task = "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

                  HKCU\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Run
                  BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} = "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
                  CCleaner Monitoring = "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
                  GoogleChromeAutoLaunch_AFA022274454018C3582DDB46CDAB4F3 = "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window

                  ==================== Auto Start Programs x64 ===================================

                  HKLM\Software\Microsoft\Windows\CurrentVersion\RunOnceEx
                  RtHDVBg_DTS = "C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe" /DTSU2P
                  RTHDVCPL = "C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s

                  HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\StartupApproved [2 = enabled 3= disabled]
                  Logitech Download Assistant = 2
                  NvBackend = 2
                  RtHDVBg_DTS = 2
                  RTHDVCPL = 2
                  Adobe ARM = 2
                  APSDaemon = 2
                  QuickTime Task = 2
                  SunJavaUpdateSched = 2

                  HKCU\Software\Microsoft\Windows\CurrentVersion\Run
                  BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} = "C:\Program Files (x86)\Common Files\Ahead\Lib\NMBgMonitor.exe"
                  CCleaner Monitoring = "C:\Program Files\CCleaner\CCleaner64.exe" /MONITOR
                  GoogleChromeAutoLaunch_AFA022274454018C3582DDB46CDAB4F3 = "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" --no-startup-window

                  ==================== Extra Items IE ============================================

                  HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AdvancedOptions\ACCELERATED_GRAPHICS @ Text = Accelerated graphics
                  HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AdvancedOptions\ACCESSIBILITY @ Text = Accessibility
                  HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AdvancedOptions\BROWSE @ Text = Browsing
                  HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AdvancedOptions\CRYPTO @ Text = Security
                  HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AdvancedOptions\HTTP @ Text = HTTP settings
                  HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AdvancedOptions\INTERNATIONAL @ Text = International
                  HKLM\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\AdvancedOptions\MULTIMEDIA @ Text = Multimedia

                  HKCU\CLSID\{AB379017-4C03-4E00-8EDF-E6D6AF7CCF82}\InProcServer32
                  => HKCR\CLSID\{4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD}\InProcServer32 {4A66AD60-A03D-4D01-86F0-5F0F7C0EF1AD} = C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\IEExt\ie_plugin.dll
                  => HKCR\CLSID\{93BC2EA7-2F17-4729-948A-D2E03FFB2412}\InProcServer32 {93BC2EA7-2F17-4729-948A-D2E03FFB2412} = C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\IEExt\ie_plugin.dll
                  => HKCR\CLSID\{AB379017-4C03-4E00-8EDF-E6D6AF7CCF82}\InProcServer32 {AB379017-4C03-4E00-8EDF-E6D6AF7CCF82} = C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Virus 15.0.2\IEExt\ie_plugin.dll
                  ==================== Extra Items IE x64 ========================================

                  HKLM\SOFTWARE\Microsoft\Internet Explorer\AdvancedOptions\ACCELERATED_GRAPHICS @ Text = Accelerated graphics
                  HKLM\SOFTWARE\Microsoft\Internet Explorer\AdvancedOptions\ACCESSIBILITY @ Text = Accessibility
                  HKLM\SOFTWARE\Microsoft\Internet Explorer\AdvancedOptions\BROWSE @ Text = Browsing
                  HKLM\SOFTWARE\Microsoft\Internet Explorer\AdvancedOptions\CRYPTO @ Text = Security
                  HKLM\SOFTWARE\Microsoft\Internet Explorer\AdvancedOptions\HTTP @ Text = HTTP settings
                  HKLM\SOFTWARE\Microsoft\Internet Explorer\AdvancedOptions\INTERNATIONAL @ Text = International
                  HKLM\SOFTWARE\Microsoft\Internet Explorer\AdvancedOptions\MULTIMEDIA @ Text = Multimedia

                  ==================== Internet Default Prefix ===================================

                  HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix
                  Default = http://

                  HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\URL\Prefixes
                  WWW = http://

                  ==================== Internet Default Prefix x64 ===============================

                  HKLM\Software\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix
                  Default = http://

                  HKLM\Software\Microsoft\Windows\CurrentVersion\URL\Prefixes
                  WWW = http://

                  ==================== Protocol Hijackers ========================================

                  HKLM\SOFTWARE\Wow6432Node\Classes\PROTOCOLS\Handler\wlpg
                  CLSID = {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324}
                  => SOFTWARE\Classes\\CLSID\{E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324}\InProcServer32 @ Default = Unknown # C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll # MD5 [4cf29c44e072c377b6866c399947e99a]



                  ==================== ShellServiceObjectDelayLoad ===============================

                  HKLM\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
                  WebCheck = {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
                  => HKCR\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED} [CLSID not present]


                  ==================== ShellServiceObjectDelayLoad x64 =========================

                  HKLM\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad
                  WebCheck = {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
                  => HKCR\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED} [CLSID not present]


                  ==================== Extra (Torpig/ConduitSearch) ==============================

                  HKCR\Directory\shellex\CopyHookHandlers\FileSystem @ Default = {217FC9C0-3AEA-1069-A2DB-08002B30309D}
                  => HKCR\CLSID\{217FC9C0-3AEA-1069-A2DB-08002B30309D}\InProcServer32 @ Default = C:\Windows\system32\shell32.dll

                  HKCR\Directory\shellex\CopyHookHandlers\Sharing @ Default = {40dd6e20-7c17-11ce-a804-00aa003ca9f6}
                  => HKCR\CLSID\{40dd6e20-7c17-11ce-a804-00aa003ca9f6}\InProcServer32 @ Default = C:\Windows\system32\ntshrui.dll


                  ==================== DRIVERS and SERVICES ======================================

                  *** Win32OwnProcess ***

                  SERV - R2 - [AdobeARMservice] - Adobe Acrobat Update Service - c:\program files (x86)\common files\adobe\arm\1.0\armsvc.exe
                  SERV - R2 - [AVP15.0.2] - Kaspersky Anti-Virus-service 15.0.2 - c:\program files (x86)\kaspersky lab\kaspersky anti-virus 15.0.2\avp.exe
                  SERV - R2 - [DTSAudioSvc] - DTSAudioSvc - c:\program files\realtek\audio\hda\dtsu2pausrv64.exe
                  SERV - R2 - [Intel(R) Capability Licensing Service Interface] - Intel(R) Capability Licensing Service Interface - c:\program files\intel\icls client\heciserver.exe
                  SERV - R2 - [Intel(R) PROSet Monitoring Service] - Intel(R) PROSet Monitoring Service - c:\windows\system32\iprosetmonitor.exe
                  SERV - R2 - [jhi_service] - Intel(R) Dynamic Application Loader Host Interface Service - c:\program files (x86)\intel\intel(r) management engine components\dal\jhi_service.exe
                  SERV - R2 - [nvsvc] - NVIDIA Display Driver Service - c:\windows\system32\nvvsvc.exe
                  SERV - R2 - [sppsvc] - Software Protection - c:\windows\system32\sppsvc.exe
                  SERV - R2 - [WMPNetworkSvc] - Windows Media Player Network Sharing Service - c:\program files\windows media player\wmpnetwk.exe
                  SERV - R2 - [WSearch] - Windows Search - c:\windows\system32\searchindexer.exe
                  SERV - R3 - [msiserver] - Windows Installer - c:\windows\system32\msiexec.exe
                  SERV - R3 - [NMIndexingService] - NMIndexingService - c:\program files (x86)\common files\ahead\lib\nmindexingservice.exe
                  SERV - S2 - [gupdate] - Google Update-service (gupdate) - c:\program files (x86)\google\update\googleupdate.exe
                  SERV - S2 - [MBAMService] - MBAMService - c:\program files (x86)\malwarebytes anti-malware\mbamservice.exe
                  SERV - S3 - [AdobeFlashPlayerUpdateSvc] - Adobe Flash Player Update Service - c:\windows\syswow64\macromed\flash\flashplayerupdateservice.exe
                  SERV - S3 - [ALG] - Application Layer Gateway Service - c:\windows\system32\alg.exe
                  SERV - S3 - [COMSysApp] - COM+ System Application - c:\windows\system32\dllhost.exe
                  SERV - S3 - [Fax] - Fax - c:\windows\system32\fxssvc.exe
                  SERV - S3 - [FontCache3.0.0.0] - Windows Presentation Foundation Font Cache 3.0.0.0 - c:\windows\microsoft.net\framework64\v3.0\wpf\presentationfontcache.exe
                  SERV - S3 - [gupdatem] - Google Update-service (gupdatem) - c:\program files (x86)\google\update\googleupdate.exe
                  SERV - S3 - [IEEtwCollectorService] - Internet Explorer ETW Collector Service - c:\windows\system32\ieetwcollector.exe
                  SERV - S3 - [Intel(R) Capability Licensing Service TCP IP Interface] - Intel(R) Capability Licensing Service TCP IP Interface - c:\program files\intel\icls client\socketheciserver.exe
                  SERV - S3 - [MozillaMaintenance] - Mozilla Maintenance Service - c:\program files (x86)\mozilla maintenance service\maintenanceservice.exe
                  SERV - S3 - [MSDTC] - Distributed Transaction Coordinator - c:\windows\system32\msdtc.exe
                  SERV - S3 - [NBService] - NBService - c:\program files (x86)\nero\nero 7\nero backitup\nbservice.exe
                  SERV - S3 - [PerfHost] - Performance Counter DLL Host - c:\windows\syswow64\perfhost.exe
                  SERV - S3 - [RpcLocator] - Remote Procedure Call (RPC) Locator - c:\windows\system32\locator.exe
                  SERV - S3 - [SNMPTRAP] - SNMP Trap - c:\windows\system32\snmptrap.exe
                  SERV - S3 - [TrustedInstaller] - Windows Modules Installer - c:\windows\servicing\trustedinstaller.exe
                  SERV - S3 - [vds] - Virtual Disk - c:\windows\system32\vds.exe
                  SERV - S3 - [VSS] - Volume Shadow Copy - c:\windows\system32\vssvc.exe
                  SERV - S3 - [wbengine] - Block Level Backup Engine Service - c:\windows\system32\wbengine.exe
                  SERV - S3 - [WdNisSvc] - Windows Defender Network Inspection Service - c:\program files\windows defender\nissrv.exe
                  SERV - S3 - [WinDefend] - Windows Defender Service - c:\program files\windows defender\msmpeng.exe
                  SERV - S3 - [wmiApSrv] - WMI Performance Adapter - c:\windows\system32\wbem\wmiapsrv.exe

                  *** Win32ShareProcess ***

                  SERV - R2 - [SamSs] - Security Accounts Manager - c:\windows\system32\lsass.exe
                  SERV - S3 - [EFS] - Encrypting File System (EFS) - c:\windows\system32\lsass.exe
                  SERV - S3 - [KeyIso] - CNG Key Isolation - c:\windows\system32\lsass.exe
                  SERV - S3 - [Netlogon] - Netlogon - c:\windows\system32\lsass.exe
                  SERV - S3 - [VaultSvc] - Credential Manager - c:\windows\system32\lsass.exe
                  SERV - S4 - [NetTcpPortSharing] - Net.Tcp Port Sharing Service - c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe

                  *** Others ***

                  SERV - R2 - [Spooler] - Print Spooler - c:\windows\system32\spoolsv.exe
                  SERV - S3 - [UI0Detect] - Interactive Services Detection - c:\windows\system32\ui0detect.exe

                  *** File System Driver ***

                  DRV - R0 - [FileInfo] - File Information FS MiniFilter - C:\Windows\system32\Drivers\FileInfo.sys
                  DRV - R0 - [FltMgr] - FltMgr - C:\Windows\system32\Drivers\FltMgr.sys
                  DRV - R0 - [Mup] - Mup - C:\Windows\system32\Drivers\Mup.sys
                  DRV - R0 - [Wof] - Windows Overlay File System Filter Driver - C:\Windows\system32\Drivers\Wof.sys
                  DRV - R1 - [NetBIOS] - NetBIOS Interface - C:\Windows\system32\Drivers\NetBIOS.sys
                  DRV - R2 - [srv] - Server SMB 1.xxx Driver - C:\Windows\system32\Drivers\srv.sys
                  DRV - R3 - [srv2] - Server SMB 2.xxx Driver - C:\Windows\system32\Drivers\srv2.sys

                  *** Kernel Driver ***

                  DRV - R0 - [ACPI] - Microsoft ACPI-stuurprogramma - C:\Windows\system32\Drivers\ACPI.sys
                  DRV - R0 - [acpiex] - Microsoft ACPIEx Driver - C:\Windows\system32\Drivers\acpiex.sys
                  DRV - R0 - [CLFS] - Common Log (CLFS) - C:\Windows\system32\Drivers\CLFS.sys
                  DRV - R0 - [cm_km_w] - Kaspersky Lab Crypto Module (FDE PDK) - C:\Windows\system32\Drivers\cm_km_w.sys
                  DRV - R0 - [CNG] - CNG - C:\Windows\system32\Drivers\CNG.sys
                  DRV - R0 - [disk] - Stuurprogramma voor schijfstations - C:\Windows\system32\Drivers\disk.sys
                  DRV - R0 - [fvevol] - BitLocker Drive Encryption Filter Driver - C:\Windows\system32\Drivers\fvevol.sys
                  DRV - R0 - [intelpep] - Stuurprogramma voor Intel(R) Power Engine-invoegtoepassing - C:\Windows\system32\Drivers\intelpep.sys
                  DRV - R0 - [kl1] - kl1 - C:\Windows\system32\Drivers\kl1.sys
                  DRV - R0 - [KSecDD] - KSecDD - C:\Windows\system32\Drivers\KSecDD.sys
                  DRV - R0 - [KSecPkg] - KSecPkg - C:\Windows\system32\Drivers\KSecPkg.sys
                  DRV - R0 - [mountmgr] - Mount Point Manager - C:\Windows\system32\Drivers\mountmgr.sys
                  DRV - R0 - [msisadrv] - msisadrv - C:\Windows\system32\Drivers\msisadrv.sys
                  DRV - R0 - [NDIS] - NDIS System Driver - C:\Windows\system32\Drivers\NDIS.sys
                  DRV - R0 - [partmgr] - Partition Manager - C:\Windows\system32\Drivers\partmgr.sys
                  DRV - R0 - [pci] - PCI Bus-stuurprogramma - C:\Windows\system32\Drivers\pci.sys
                  DRV - R0 - [pcw] - Performance Counters for Windows Driver - C:\Windows\system32\Drivers\pcw.sys
                  DRV - R0 - [pdc] - pdc - C:\Windows\system32\Drivers\pdc.sys
                  DRV - R0 - [rdyboost] - ReadyBoost - C:\Windows\system32\Drivers\rdyboost.sys
                  DRV - R0 - [spaceport] - Stuurprogramma voor opslagruimten - C:\Windows\system32\Drivers\spaceport.sys
                  DRV - R0 - [storahci] - Microsoft Standaard SATA AHCI-stuurprogramma - C:\Windows\system32\Drivers\storahci.sys
                  DRV - R0 - [Tcpip] - Stuurprogramma voor TCP/IP-protocol - C:\Windows\system32\Drivers\Tcpip.sys
                  DRV - R0 - [vdrvroot] - Microsoft Virtual Drive Enumerator - C:\Windows\system32\Drivers\vdrvroot.sys
                  DRV - R0 - [volmgr] - Stuurprogramma voor Volumebeheer - C:\Windows\system32\Drivers\volmgr.sys
                  DRV - R0 - [volmgrx] - Dynamic Volume Manager - C:\Windows\system32\Drivers\volmgrx.sys
                  DRV - R0 - [volsnap] - Opslagvolumes - C:\Windows\system32\Drivers\volsnap.sys
                  DRV - R0 - [Wdf01000] - Kernel Mode Driver Frameworks service - C:\Windows\system32\Drivers\Wdf01000.sys
                  DRV - R0 - [WFPLWFS] - Microsoft Windows Filtering Platform - C:\Windows\system32\Drivers\WFPLWFS.sys
                  DRV - R1 - [AFD] - Ancillary Function Driver for Winsock - C:\Windows\system32\Drivers\AFD.sys
                  DRV - R1 - [Beep] - Beep - C:\Windows\system32\Drivers\Beep.sys
                  DRV - R1 - [tdx] - Stuurprogramma voor ondersteuning van NetIO Legacy TDI - C:\Windows\system32\Drivers\tdx.sys
                  DRV - R2 - [tcpipreg] - TCP/IP Registry Compatibility - C:\Windows\system32\Drivers\tcpipreg.sys
                  DRV - S0 - [EhStorClass] - Enhanced Storage Filter Driver - C:\Windows\system32\Drivers\EhStorClass.sys
                  DRV - S0 - [hwpolicy] - Hardware Policy Driver - C:\Windows\system32\Drivers\hwpolicy.sys
                  DRV - S0 - [klelam] - klelam - C:\Windows\system32\Drivers\klelam.sys
                  DRV - S3 - [atapi] - IDE-kanaal - C:\Windows\system32\Drivers\atapi.sys

                  ==================== SvcHost - White Listed ====================================

                  WOW x64 - All Ok

                  ==================== SvcHost x64 - White Listed ================================

                  HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\[email protected]
                  BthHFSrv = ServiceDll = C:\Windows\System32\BthHFSrv.dll [9307a4b743d277c499cda8e19e5687ac]

                  HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\[email protected]
                  DiagTrack = ServiceDll = C:\Windows\system32\diagtrack.dll [9703ec57f5bbb94f89ca80a5d0c12221]



                  ==================== SigCheck x86 Fast =========================================

                  Fast Scan All ok

                  ==================== SigCheck x64 Fast =========================================

                  Fast Scan All ok

                  ==================== Job tasks at C:\Windows\Tasks =============================

                  C:\Windows\Tasks\Adobe Flash Player Updater.job 940 bytes [ 24/02/2015 4:21:19 ]

                  C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 1076 bytes [ 12/11/2014 15:49:23 ]

                  C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 1080 bytes [ 12/11/2014 15:49:23 ]

                  C:\Windows\Tasks\SA.DAT 6 bytes [ 22/08/2013 16:45:54 ]


                  ==================== Job tasks at C:\Windows\system32\Tasks ====================

                  C:\Windows\system32\Tasks\Adobe Acrobat Update Task 3886 bytes [ 26/12/2014 7:00:29 ]
                  => C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe

                  C:\Windows\system32\Tasks\Adobe Flash Player Updater 3828 bytes [ 24/02/2015 4:21:19 ]
                  => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

                  C:\Windows\system32\Tasks\CCleanerSkipUAC 2772 bytes [ 20/01/2015 18:25:32 ]
                  => "C:\Program Files\CCleaner\CCleaner.exe"

                  C:\Windows\system32\Tasks\CreateChoiceProcessTask 3548 bytes [ 6/11/2014 15:07:17 ]
                  => C:\Windows\BrowserChoice\browserchoice.exe

                  C:\Windows\system32\Tasks\GoogleUpdateTaskMachineCore 3816 bytes [ 12/11/2014 15:49:23 ]
                  => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

                  C:\Windows\system32\Tasks\GoogleUpdateTaskMachineUA 4052 bytes [ 12/11/2014 15:49:23 ]
                  => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

                  C:\Windows\system32\Tasks\klcp_update 3676 bytes [ 24/02/2015 17:35:35 ]
                  => "C:\Program Files (x86)\K-Lite Codec Pack\Tools\CodecTweakTool.exe"

                  C:\Windows\system32\Tasks\Microsoft OneDrive Auto Update Task-S-1-5-21-2412395640-1526066635-587417702-1001 3094 bytes [ 6/11/2014 15:51:33 ]
                  => %localappdata%\Microsoft\OneDrive\OneDrive.exe

                  C:\Windows\system32\Tasks\Optimize Start Menu Cache Files-S-1-5-21-2412395640-1526066635-587417702-1001 3596 bytes [ 6/11/2014 14:02:17 ]

                  C:\Windows\system32\Tasks\User_Feed_Synchronization-{7489009E-8F82-4E05-A5CF-5BFA58C3FE51} 3954 bytes [ 6/11/2014 13:59:54 ]
                  => C:\Windows\system32\msfeedssync.exe


                  ==================== Job tasks at C:\Windows\SysWOW64\Tasks ====================

                  There are no .job files found.

                  ==================== End scanning at di 2 jun 2015 21:16 (0 Min 7 Sec ) ========

                  Comment


                  • #10
                    Je doet toch iets fout met MBAM.
                    Ik zal even de standaard procedure meegeven om een scan te doen:
                    .
                    • Start MBAM.
                    • Bij "databaseversie", klik je op "Nu bijwerken".
                    • Klik op "Scan Nu".

                    .
                    Wanneer er geen bedreigingen zijn gedetecteerd klikt u na de scan klik bovenaan op Historie en selecteer Programmalogboeken..
                    Klik op de nieuwste Scan Log.
                    Klik vervolgens op de knop Kopieer naar Klembord.
                    .
                    Wanneer er wel bedreigingen zijn gedetecteerd klikt u na de scan op Acties toepassen.

                    Bij de melding om de computer opnieuw op te starten klikt u op Ja / Yes.
                    Open na de herstart MalwareBytes Anti-Malware en klik bovenaan op Historie en selecteer Programmalogboeken.
                    Klik op de nieuwste Scan Log.
                    Klik vervolgens op de knop Kopieer naar Klembord.
                    .
                    Reageer op je topic en "plak" de mbam log.
                    Malware Research [email protected] (MBAM) ..... ASAP & Unite Member
                    E Dev * McAfee verwijderen. * Ccleaner * E-Peek

                    Comment


                    • #11
                      Malwarebytes Anti-Malware
                      www.malwarebytes.org

                      Scandatum: 2/06/2015
                      Scantijd: 21:22:13
                      Logbestand:
                      Beheerder: Ja

                      Versie: 2.01.6.1022
                      Malware Gegevensbestand: v2015.06.02.05
                      Rootkit Gegevensbestand: v2015.06.02.01
                      Licentie: Gratis
                      Malwarebescherming: Uitgeschakeld
                      Kwaadaardige Website Bescherming: Uitgeschakeld
                      Zelfbescherming: Uitgeschakeld

                      Besturingssysteem: Windows 8.1
                      Processor: x64
                      Bestandssysteem: NTFS
                      Gebruiker: Alain

                      Scantype: Bedreigingsscan
                      Resultaat: Voltooid
                      Objecten Gescand: 345905
                      Verstreken Tijd: 4 m, 39 s

                      Geheugen: Ingeschakeld
                      Opstarten: Ingeschakeld
                      Bestandssysteem: Ingeschakeld
                      Archieven: Ingeschakeld
                      Rootkits: Uitgeschakeld
                      Heuristiek: Ingeschakeld
                      POP: Ingeschakeld
                      POA: Ingeschakeld

                      Processen: 0
                      (Geen kwaadaardige items gedetecteerd)

                      Modules: 0
                      (Geen kwaadaardige items gedetecteerd)

                      Registersleutels: 0
                      (Geen kwaadaardige items gedetecteerd)

                      Registerwaardes: 0
                      (Geen kwaadaardige items gedetecteerd)

                      Registerdata: 0
                      (Geen kwaadaardige items gedetecteerd)

                      Mappen: 0
                      (Geen kwaadaardige items gedetecteerd)

                      Bestanden: 0
                      (Geen kwaadaardige items gedetecteerd)

                      Fysieke Sectoren: 0
                      (Geen kwaadaardige items gedetecteerd)


                      (end)

                      Comment


                      • #12
                        Dit is de juiste

                        Momentje nu .....
                        Malware Research [email protected] (MBAM) ..... ASAP & Unite Member
                        E Dev * McAfee verwijderen. * Ccleaner * E-Peek

                        Comment


                        • #13
                          Heb je dat "vastlopen" met FF en GC ook?
                          Malware Research [email protected] (MBAM) ..... ASAP & Unite Member
                          E Dev * McAfee verwijderen. * Ccleaner * E-Peek

                          Comment


                          • #14
                            Dat moet ik eens na kijken nog niet geprobeerd.

                            Comment


                            • #15
                              Wil het lukken?
                              Malware Research [email protected] (MBAM) ..... ASAP & Unite Member
                              E Dev * McAfee verwijderen. * Ccleaner * E-Peek

                              Comment

                              Sorry, you are not authorized to view this page
                              Working...
                              X