Mededeling

**dorado** · 26-10-15, 06:04

Paul,
voer de stappen uit in dit bericht zodat je vraag in behandeling kan worden genomen.

**Paul Stam** · 27-10-15, 10:58

Bedankt voor de tip. Ik ben met de stappen bezig.

Defogger en Malwarebytes hebben niets gevonden.

AdwCleaner log:

# AdwCleaner v5.015 - Logbestand aangemaakt 27/10/2015 op 10:50:11
# Laatste update 26/10/2015 door Xplode
# Database : 2015-10-26.2 [Server]
# Besturingssysteem : Windows 7 Ultimate Service Pack 1 (x86)
# Gebruikersnaam : Paul - PAUL-PC
# Gestart vanuit : C:\Users\Paul\Downloads\adwcleaner_5.015.exe
# Optie : Verwijderen
# Ondersteuning : http://toolslib.net/forum

***** [ Services ] *****

***** [ Mappen ] *****

[-] Map Verwijderd : C:\Program Files\DriverTuner
[-] Map Verwijderd : C:\ProgramData\Fighters
[-] Map Verwijderd : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters
[-] Map Verwijderd : C:\Users\Paul\AppData\Local\Rocket
[-] Map Verwijderd : C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\mallpejgeafdahhflmliiahjdpgbegpk
[-] Map Verwijderd : C:\Users\Paul\AppData\Roaming\Fighters
[-] Map Verwijderd : C:\Users\Paul\AppData\Roaming\Mozilla\Firefox\Profiles\iwq3hrcm.default\Extensions\staged\yasearch@y andex.ru
[-] Map Verwijderd : C:\Users\Paul\AppData\Roaming\Mozilla\Firefox\Profiles\iwq3hrcm.default\Extensions\staged\vb@yandex. ru

***** [ Bestanden ] *****

[-] Bestand Verwijderd : C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_mallpejgeafdahhflmliiahjdpgbegpk_0.localstorage

***** [ DLLs ] *****

***** [ Snelkoppelingen ] *****

***** [ geplande taken ] *****

***** [ Register ] *****

[-] Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\AddonsFramework.DLL
[-] Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\ButtonSite.DLL
[-] Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\RegistryHelper.DLL
[-] Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\ScriptHost.DLL
[-] Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{19975B78-1907-4DD6-A437-4C48120F46A4}
[-] Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{544C2426-48FD-4C40-AE3B-31257FF334D0}
[-] Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{562B9316-C08A-444A-9482-62080DD851AE}
[-] Sleutel Verwijderd : HKLM\SOFTWARE\Classes\AppID\{562B9317-C08A-444A-9482-62080DD851AE}
[-] Sleutel Verwijderd : HKCU\Software\Classes\CLSID\{A2DF06F9-A21A-44A8-8A99-8B9C84F29160}
[-] Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{6E993643-8FBC-44FE-BC85-D318495C4D96}
[-] Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{A43DE495-3D00-47D4-9D2C-303115707939}
[-] Sleutel Verwijderd : HKLM\SOFTWARE\Classes\CLSID\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Sleutel Verwijderd : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BA0C978D-D909-49B6-AFE2-8BDE245DC7E6}
[-] Sleutel Verwijderd : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{AFB904C4-C255-4540-B97E-A75A34F1FFB0}
[-] Sleutel Verwijderd : HKCU\Software\Rocket Browser
[-] Sleutel Verwijderd : HKCU\Software\DriverTuner_Init
[-] Sleutel Verwijderd : HKCU\Software\DriverTuner
[-] Sleutel Verwijderd : HKLM\SOFTWARE\systweak
[-] Sleutel Verwijderd : HKLM\SOFTWARE\Fighters

***** [ Internetbrowsers ] *****

[-] [C:\Users\Paul\AppData\Roaming\Mozilla\Firefox\Profiles\iwq3hrcm.default\prefs.js] [Preference] Verwijderd : user_pref("[email protected]", "[{\"name\":\"Freecorder Menu Header\",\"img\":\"hxxp://freecorder.com/fc8/ui/buttons/menu_header.png\",\"width\":225,\"height\":65},{\"name

[-] [C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Verwijderd : search.imesh.com_
[-] [C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Verwijderd : search.sweetim.com
[-] [C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Verwijderd : search.imesh.com
[-] [C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Verwijderd : supertoolbar.ask.com
[-] [C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Verwijderd : search.conduit.com_
[-] [C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Verwijderd : search.conduit.com
[-] [C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Verwijderd : ask.com
[-] [C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Verwijderd : tbsearch.ask.com
[-] [C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Verwijderd : qone8
[-] [C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Verwijderd : handbrake.nl.softonic.com
[-] [C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Verwijderd : freemake-video-converter.nl.softonic.com
[-] [C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Web Data] [Search Provider] Verwijderd : nvidia-geforce-driver-vista-7-x32.nl.softonic.com
[-] [C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Verwijderd : hxxp://www.default-search.net/?sid=476&aid=134&itype=n&ver=11471&tm=311&src=hmp
[-] [C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Startup_URLs] Verwijderd : hxxp://start.qone8.com/?type=hp&ts=1397122388&from=ild&uid=395049983_1052514_EC59199D
[-] [C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Verwijderd : lmnbobhffedhdhfpcjkjphcfpeeiocdn
[-] [C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Verwijderd : mallpejgeafdahhflmliiahjdpgbegpk
[-] [C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Extension] Verwijderd : pelmeidfhdlhlbjimpabfcbnnojbboma
[-] [C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences] [Homepage] Verwijderd : hxxp://search.conduit.com/?SearchSource=10&ctid=CT1060933

*************************

:: Winsock instellingen gereset

########## EOF - C:\AdwCleaner\AdwCleaner[C1].txt - [6218 bytes] ##########

**Paul Stam** · 27-10-15, 16:12

DDS text:

DDS (Ver_2012-11-20.01) - NTFS_x86
Internet Explorer: 11.0.9600.18057 BrowserJavaVersion: 11.60.2
Run by Paul at 16:06:30 on 2015-10-27
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.31.1043.18.2815.1693 [GMT 1:00]
.
AV: ESET NOD32 Antivirus 9.0.318.20 *Enabled/Updated* {19259FAE-8396-A113-46DB-15B0E7DFA289}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: ESET NOD32 Antivirus 9.0.318.20 *Enabled/Updated* {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
.
============== Running Processes ================
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Windows\system32\nvvsvc.exe
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe
C:\Program Files\Sony\PlayMemories Home\PMBDeviceInfoProvider.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Common Files\Freemake Shared\ProductUpdater\ProductUpdater.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\PIXELA\Everio MediaBrowser 3\MBCameraMonitor.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Program Files\Google\Update\1.3.28.15\GoogleCrashHandler.exe
C:\Program Files\CCleaner\CCleaner.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Windows\system32\GWX\GWX.exe
C:\Program Files\Glary Utilities 5\Integrator.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k utcsvc
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k SDRSVC
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://planepictures.net/netsearch4.cgi?stype=name&srng=1&srch=Paul+Stam&offset=0&range=25
BHO: Wondershare Video Converter Ultimate 7.1.0: {451C804F-C205-4F03-B48E-537EC94937BF} - c:\programdata\wondershare\video converter ultimate\WSBrowserAppMgr.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre1.8.0_60\bin\ssv.dll
BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - c:\program files\java\jre1.8.0_60\bin\jp2ssv.dll
uRun: [CCleaner Monitoring] "c:\program files\ccleaner\CCleaner.exe" /MONITOR
uRun: [GUDelayStartup] "c:\program files\glary utilities 5\StartupManager.exe" -delayrun
mRun: [ProductUpdater] c:\program files\common files\freemake shared\productupdater\ProductUpdater.exe
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [egui] "c:\program files\eset\eset smart security\egui.exe" /hide /waitservice
dRunOnce: [SPReview] "c:\windows\system32\spreview\SPReview.exe" /sp:1 /errorfwlink:"http://go.microsoft.com/fwlink/?LinkID=122915" /build:7601
StartupFolder: c:\users\paul\appdata\roaming\micros~1\windows\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\device~1.lnk - c:\program files\pixela\everio mediabrowser 3\MBCameraMonitor.exe
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
IE: E&xporteren naar Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} - hxxp://utilities.pcpitstop.com/da2/PCPitStop2.cab
TCP: NameServer = 192.168.1.1
TCP: Interfaces\{FC35F2B5-E27F-45BB-90A5-70A9A70C86C7} : DHCPNameServer = 192.168.1.1
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
Handler: WSWSVCUchrome - {1CA93FF0-A218-44F1 - <orphaned>
AppInit_DLLs= c:\windows\jaksta\ac\x86\jaudcap.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\46.0.2490.80\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
============= SERVICES / DRIVERS ===============
.
R0 BootDefragDriver;BootDefragDriver;c:\windows\system32\drivers\BootDefragDriver.sys [2014-6-3 16064]
R1 eamonm;eamonm;c:\windows\system32\drivers\eamonm.sys [2015-7-14 205800]
R1 GUBootStartup;GUBootStartup;c:\windows\system32\drivers\GUBootStartup.sys [2014-6-3 17472]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\system32\drivers\HWiNFO32.SYS [2014-12-19 23840]
R2 DiagTrack;Diagnostics Tracking Service;c:\windows\system32\svchost.exe -k utcsvc [2009-7-14 20992]
R2 ekrn;ESET Service;c:\program files\eset\eset nod32 antivirus\ekrn.exe [2015-10-9 1971968]
R2 epfwwfpr;epfwwfpr;c:\windows\system32\drivers\epfwwfpr.sys [2015-9-23 131640]
R2 PassThru Service;Internet Pass-Through Service;c:\program files\htc\internet pass-through\PassThruSvr.exe [2013-10-17 166912]
R2 PMBDeviceInfoProvider;PMBDeviceInfoProvider;c:\program files\sony\playmemories home\PMBDeviceInfoProvider.exe [2015-4-17 494592]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2014-4-12 23256]
R3 RTSUER;Realtek USB Card Reader - UER;c:\windows\system32\drivers\RtsUer.sys [2015-9-1 293080]
R3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [2014-6-25 564912]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2014-4-11 103608]
S2 LiveUpdateSvc;LiveUpdate;c:\program files\iobit\liveupdate\LiveUpdate.exe [2015-4-10 2909472]
S2 MBAMService;MBAMService;c:\program files\malwarebytes anti-malware\mbamservice.exe [2014-4-12 1135416]
S3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.sys [2015-9-28 61440]
S3 Andbus;LGE Android Platform Composite USB Device;c:\windows\system32\drivers\lgandbus.sys [2014-7-16 14336]
S3 AndDiag;LGE Android Platform USB Serial Port;c:\windows\system32\drivers\lganddiag.sys [2014-7-16 20736]
S3 AndGps;LGE Android Platform USB GPS NMEA Port;c:\windows\system32\drivers\lgandgps.sys [2014-7-16 20096]
S3 ANDModem;LGE Android Platform USB Modem;c:\windows\system32\drivers\lgandmodem.sys [2014-7-16 25088]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 Freemake Improver;Freemake Improver;c:\programdata\freemake\freemakeutilsservice\FreemakeUtilsService.exe [2015-6-18 108032]
S3 fssfltr;fssfltr;c:\windows\system32\drivers\fssfltr.sys [2014-8-30 49856]
S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2014-3-31 1512640]
S3 HTCAND32;HTC Device Driver;c:\windows\system32\drivers\ANDROIDUSB.sys [2015-8-5 25088]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\ieetwcollector.exe [2015-10-13 102912]
S3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys [2014-4-12 51928]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad32v.sys [2015-7-30 42344]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2014-12-12 14848]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [2014-10-17 216280]
S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2014-12-12 49152]
S3 VIAKaraokeService;VIA Karaoke digital mixer Service;c:\windows\system32\ViakaraokeSrv.exe [2014-6-25 27768]
S3 WatAdminSvc;Windows Activation Technologies-service;c:\windows\system32\wat\WatAdminSvc.exe [2014-4-10 1343400]
.
=============== File Associations ===============
.
FileExt: .txt: txtfile=c:\windows\system32\NOTEPAD.EXE %1 [UserChoice]
.
=============== Created Last 30 ================
.
2015-10-27 09:53:03 8985080 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{54fa3717-4784-4d75-99e2-e4fa8899e3f6}\mpengine.dll
2015-10-27 09:46:27 -------- d-----w- C:\AdwCleaner
2015-10-26 18:29:39 -------- d-----w- c:\program files\ESET
2015-10-26 14:59:41 -------- d-----w- c:\program files\iPod
2015-10-26 14:59:40 -------- d-----w- c:\program files\iTunes
2015-10-26 14:53:33 -------- d-----w- c:\program files\PrivaZer
2015-10-25 20:31:29 -------- d-----w- c:\users\paul\appdata\roaming\ESET
2015-10-23 07:48:11 -------- d-----w- c:\users\paul\appdata\local\Programs
2015-10-15 17:10:41 999936 ----a-w- c:\windows\system32\aeinv.dll
2015-10-15 17:10:41 587776 ----a-w- c:\windows\system32\invagent.dll
2015-10-15 17:10:41 423936 ----a-w- c:\windows\system32\devinv.dll
2015-10-15 17:10:41 1120768 ----a-w- c:\windows\system32\appraiser.dll
2015-10-15 17:10:40 62976 ----a-w- c:\windows\system32\acmigration.dll
2015-10-15 17:10:40 615936 ----a-w- c:\windows\system32\generaltel.dll
2015-10-15 17:10:40 23384 ----a-w- c:\windows\system32\CompatTelRunner.exe
2015-10-13 17:47:55 817664 ----a-w- c:\program files\common files\microsoft shared\vgx\VGX.dll
2015-10-13 17:47:52 4527616 ----a-w- c:\windows\system32\jscript9.dll
2015-10-13 17:47:51 10948096 ----a-w- c:\program files\internet explorer\F12Resources.dll
2015-10-13 17:47:50 504832 ----a-w- c:\windows\system32\vbscript.dll
2015-10-13 17:38:56 868864 ----a-w- c:\program files\common files\microsoft shared\ink\tipskins.dll
2015-10-13 17:38:55 348672 ----a-w- c:\program files\common files\microsoft shared\ink\tiptsf.dll
2015-10-13 17:38:55 104448 ----a-w- c:\program files\common files\microsoft shared\ink\TipBand.dll
2015-10-13 17:38:48 544768 ----a-w- c:\program files\common files\microsoft shared\ink\TipRes.dll
2015-10-13 17:38:48 181760 ----a-w- c:\program files\common files\microsoft shared\ink\TabTip.exe
2015-10-13 17:38:45 1498624 ----a-w- c:\windows\system32\ExplorerFrame.dll
2015-10-13 17:36:57 3936192 ----a-w- c:\windows\system32\ntoskrnl.exe
2015-10-13 17:35:49 93696 ----a-w- c:\windows\system32\wudriver.dll
2015-10-13 11:49:19 -------- d-----w- c:\users\paul\appdata\local\CEF
2015-10-04 20:52:45 -------- d-sh--w- C:\found.000
2015-10-02 14:40:50 17314496 ----a-w- c:\program files\common files\microsoft shared\office12\MSO.DLL
2015-10-01 14:51:43 -------- d-----w- c:\users\paul\appdata\roaming\2BrightSparks
2015-09-28 21:22:37 942080 ----a-w- c:\windows\system32\AmRdrIco.icl
2015-09-28 21:22:37 8 ----a-w- c:\windows\system32\CardDetect.bin
2015-09-28 21:22:37 640 ----a-w- c:\windows\system32\VendorCmd0.bin
2015-09-28 21:22:37 61440 ----a-w- c:\windows\system32\drivers\AmUStor.sys
2015-09-28 21:22:37 10240 ----a-w- c:\windows\system32\AmUStor.dll
.
==================== Find3M ====================
.
2015-10-27 10:49:06 170200 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2015-10-16 18:16:04 780488 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2015-10-16 18:16:04 142536 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2015-10-05 08:50:16 51928 ----a-w- c:\windows\system32\drivers\mwac.sys
2015-10-05 08:50:08 94936 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2015-10-05 08:50:04 23256 ----a-w- c:\windows\system32\drivers\mbam.sys
2015-10-01 17:50:53 50176 ----a-w- c:\windows\system32\setbcdlocale.dll
2015-10-01 17:50:35 50688 ----a-w- c:\windows\system32\appidapi.dll
2015-10-01 17:50:35 28160 ----a-w- c:\windows\system32\appidsvc.dll
2015-10-01 17:50:00 96768 ----a-w- c:\windows\system32\appidpolicyconverter.exe
2015-10-01 17:50:00 16896 ----a-w- c:\windows\system32\appidcertstorecheck.exe
2015-10-01 16:53:22 50176 ----a-w- c:\windows\system32\drivers\appid.sys
2015-09-29 03:05:01 3990976 ----a-w- c:\windows\system32\ntkrnlpa.exe
2015-09-29 03:02:09 1308160 ----a-w- c:\windows\system32\ntdll.dll
2015-09-29 02:59:20 172032 ----a-w- c:\windows\system32\wdigest.dll
2015-09-29 02:59:17 65536 ----a-w- c:\windows\system32\TSpkg.dll
2015-09-29 02:59:16 43008 ----a-w- c:\windows\system32\srclient.dll
2015-09-29 02:59:16 400896 ----a-w- c:\windows\system32\srcore.dll
2015-09-29 02:59:13 655360 ----a-w- c:\windows\system32\rpcrt4.dll
2015-09-29 02:59:08 259584 ----a-w- c:\windows\system32\msv1_0.dll
2015-09-29 02:59:04 552960 ----a-w- c:\windows\system32\kerberos.dll
2015-09-29 02:58:57 38912 ----a-w- c:\windows\system32\csrsrv.dll
2015-09-29 02:58:57 36864 ----a-w- c:\windows\system32\cryptbase.dll
2015-09-29 02:58:57 17408 ----a-w- c:\windows\system32\credssp.dll
2015-09-29 02:58:37 69632 ----a-w- c:\windows\system32\smss.exe
2015-09-29 02:58:33 262656 ----a-w- c:\windows\system32\rstrui.exe
2015-09-29 02:58:05 50176 ----a-w- c:\windows\system32\auditpol.exe
2015-09-29 02:53:44 60416 ----a-w- c:\windows\system32\msobjs.dll
2015-09-29 02:53:28 146432 ----a-w- c:\windows\system32\msaudite.dll
2015-09-29 02:49:51 6656 ----a-w- c:\windows\system32\apisetschema.dll
2015-09-29 02:49:50 686080 ----a-w- c:\windows\system32\adtschema.dll
2015-09-29 01:43:28 225792 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2015-09-29 01:43:11 98304 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2015-09-29 01:43:10 124416 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2015-09-25 17:59:08 2955776 ----a-w- c:\windows\system32\wucltux.dll
2015-09-25 17:59:08 174080 ----a-w- c:\windows\system32\wuwebv.dll
2015-09-25 17:58:42 73728 ----a-w- c:\windows\system32\WinSetupUI.dll
2015-09-25 17:58:29 11776 ----a-w- c:\windows\system32\wu.upgrade.ps.dll
2015-09-25 17:58:25 35328 ----a-w- c:\windows\system32\wuapp.exe
2015-09-23 08:30:22 205800 ----a-w- c:\windows\system32\drivers\eamonm.sys
2015-09-23 08:30:22 145512 ----a-w- c:\windows\system32\drivers\ehdrv.sys
2015-09-23 08:30:22 131640 ----a-w- c:\windows\system32\drivers\epfwwfpr.sys
2015-09-16 03:45:19 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2015-09-16 03:45:09 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2015-09-16 03:33:07 62464 ----a-w- c:\windows\system32\iesetup.dll
2015-09-16 03:32:33 47616 ----a-w- c:\windows\system32\ieetwproxystub.dll
2015-09-16 03:32:24 341504 ----a-w- c:\windows\system32\html.iec
2015-09-16 03:31:57 64000 ----a-w- c:\windows\system32\MshtmlDac.dll
2015-09-16 03:23:07 102912 ----a-w- c:\windows\system32\ieetwcollector.exe
2015-09-16 03:23:01 115712 ----a-w- c:\windows\system32\ieUnatt.exe
2015-09-16 03:22:43 620032 ----a-w- c:\windows\system32\jscript9diag.dll
2015-09-16 03:18:00 667648 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2015-09-16 03:10:46 60416 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2015-09-16 02:55:49 1155072 ----a-w- c:\windows\system32\mshtmlmedia.dll
2015-09-16 02:55:45 2052608 ----a-w- c:\windows\system32\inetcpl.cpl
2015-09-16 02:37:26 2011136 ----a-w- c:\windows\system32\wininet.dll
2015-09-15 17:42:14 67520 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2015-09-15 17:42:14 139096 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2015-09-15 17:36:40 15872 ----a-w- c:\windows\system32\sspisrv.dll
2015-09-15 17:36:40 100352 ----a-w- c:\windows\system32\sspicli.dll
2015-09-15 17:36:38 248832 ----a-w- c:\windows\system32\schannel.dll
2015-09-15 17:36:38 22016 ----a-w- c:\windows\system32\secur32.dll
2015-09-15 17:36:35 221184 ----a-w- c:\windows\system32\ncrypt.dll
2015-09-15 17:36:30 1061376 ----a-w- c:\windows\system32\lsasrv.dll
2015-09-15 17:35:49 22528 ----a-w- c:\windows\system32\lsass.exe
2015-09-02 02:48:35 26624 ----a-w- c:\windows\system32\lpk.dll
2015-09-02 02:48:31 70656 ----a-w- c:\windows\system32\fontsub.dll
2015-09-02 02:48:28 10240 ----a-w- c:\windows\system32\dciman32.dll
2015-09-02 02:48:25 34304 ----a-w- c:\windows\system32\atmlib.dll
2015-09-02 01:36:35 2384896 ----a-w- c:\windows\system32\win32k.sys
2015-09-02 01:33:48 299520 ----a-w- c:\windows\system32\atmfd.dll
2015-09-01 12:37:30 293080 ----a-w- c:\windows\system32\drivers\RtsUer.sys
2015-09-01 07:33:17 97888 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2015-08-27 17:58:14 1391104 ----a-w- c:\windows\system32\msxml6.dll
2015-08-27 17:58:14 1241088 ----a-w- c:\windows\system32\msxml3.dll
2015-08-27 17:51:26 2048 ----a-w- c:\windows\system32\msxml6r.dll
2015-08-27 17:51:26 2048 ----a-w- c:\windows\system32\msxml3r.dll
2015-08-12 14:03:38 84240 ----a-w- c:\windows\system32\dns-sd.exe
2015-08-12 14:03:38 72976 ----a-w- c:\windows\system32\dnssd.dll
2015-08-12 14:03:38 50960 ----a-w- c:\windows\system32\jdns_sd.dll
2015-08-12 14:03:38 178960 ----a-w- c:\windows\system32\dnssdX.dll
2015-08-05 18:48:31 5 ----a-w- c:\windows\system32\lMMLDeleteUserData42107612FX.tmp
2015-08-05 17:41:00 751104 ----a-w- c:\windows\system32\schedsvc.dll
2015-08-05 17:40:50 22528 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\jnwppr.dll
2015-08-05 17:40:50 216064 ----a-w- c:\windows\system32\InkEd.dll
2015-08-05 17:40:50 19968 ----a-w- c:\windows\system32\jnwmon.dll
2015-07-30 17:57:31 909824 ----a-w- c:\windows\system32\FntCache.dll
2015-07-30 17:57:30 1987584 ----a-w- c:\windows\system32\d3d10warp.dll
2015-07-30 17:57:30 1251328 ----a-w- c:\windows\system32\DWrite.dll
2015-07-30 13:13:38 103120 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll

**Juisterr** · 27-10-15, 18:46

Schakel eerst de Antivirussoftware uit voordat je zoek.exe download of uitvoert.
Schakel je antivirus- en antispywareprogramma's tijdelijk uit, deze kunnen namelijk de werking van Zoek.exe nadelig beïnvloeden.
(hier en hier) kan je lezen hoe je dat doet.

Download Zoek.exe naar het bureaublad (klik hier voor meer informatie over hoe zoek.exe te gebruiken)

Wanneer Internet Explorer of een andere browser of virusscanner melding geeft dat dit bestand onveilig zou zijn kan je dat negeren, het is namelijk een onterechte waarschuwing.

Dubbelklik vervolgens op Zoek.exe om de tool te starten.
Windows Vista, 7 en 8 gebruikers dienen de tool als "administrator" uit te voeren door middel van de rechtermuisknop en kiezen voor Als Administrator uitvoeren.
Kopieer nu onderstaande code en plak die in het grote invulvenster:
Note: Dit script is speciaal bedoeld voor deze Computer, gebruik dit dan ook niet op andere computers met een gelijkaardig probleem.
Code:
```
emptyfolderscheck;delete
firefoxlook; 
Chromelook; 
CHRdefaults;
autoclean; 
iedefaults;
```
Klik nu op de knop "Run script".
Wacht nu geduldig af tot er een logje opent (dit kan na een herstart zijn als deze benodigd is).
Mocht er geen logje verschijnen, start zoek.exe dan opnieuw en klik op de knop zoek-results.log, de log verschijnt dan alsnog.
Post het geopende logje in het volgende bericht als bijlage.

**Paul Stam** · 28-10-15, 11:28

OK. Ik heb Zoek.exe gedaan

Hier is de log:

Zoek.exe v5.0.0.1 Updated 25-October-2015
Tool run by Paul on wo 28-10-2015 at 10:29:18,17.
Microsoft Windows 7 Ultimate 6.1.7601 Service Pack 1 x86
Running in: Normal Mode Internet Access Detected
Launched: C:\Users\Paul\Downloads\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

28-10-2015 10:30:43 Zoek.exe System Restore Point Created Successfully.

==== Empty Folders Check ======================

C:\Program Files\Common Files\Sony Shared deleted successfully
C:\Users\Paul\AppData\Roaming\dvdcss deleted successfully
C:\Users\Paul\AppData\Local\EmieBrowserModeList deleted successfully
C:\Users\Paul\AppData\Local\EmieSiteList deleted successfully
C:\Users\Paul\AppData\Local\EmieUserList deleted successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-2250932013-3431955326-3080961343-1001\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully
HKEY_USERS\S-1-5-21-2250932013-3431955326-3080961343-1001\Software\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{5C0D11B8-C5F6-4be3-AD2C-2B1A3EB94AB6} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A} deleted successfully

==== Deleting CLSID Registry Values ======================

==== Deleting Services ======================

==== FireFox Fix ======================

ProfilePath: C:\Users\Paul\AppData\Roaming\Mozilla\Firefox\Profiles\iwq3hrcm.default

user.js not found
---- FireFox user.js and prefs.js backups ----

prefs_28-10-2015_1041_.backup

==== Deleting Files \ Folders ======================

C:\Users\Paul\AppData\Roaming\freecorder deleted
C:\Users\Paul\.android deleted
C:\Program Files\Common Files\Wondershare deleted
C:\found.000 deleted
C:\Users\Paul\AppData\Roaming\pcouffin.log deleted
C:\Users\Paul\AppData\Roaming\ProductData deleted
C:\Users\Paul\AppData\Roaming\DRPSu deleted
C:\PROGRA~2\Wondershare Video Converter Ultimate deleted
C:\PROGRA~2\ProductData deleted
C:\PROGRA~2\Package Cache deleted
C:\Users\Paul\AppData\Local\Wondershare deleted
C:\Windows\tasks\SLOW-PCfighter-Paul-Notification.job deleted
C:\Windows\system32\tasks\SLOW-PCfighter-Paul-Notification deleted
C:\Windows\system32\GroupPolicy\Machine deleted
C:\Windows\system32\GroupPolicy\User deleted
C:\Windows\system32\GroupPolicy\gpt.ini deleted
C:\Windows\System32\lMMLDeleteUserData42107612FX.tmp deleted
C:\Users\Paul\AppData\Roaming\Mozilla\Firefox\Profiles\iwq3hrcm.default\extensions\staged deleted
C:\Users\Paul\AppData\Roaming\Mozilla\Firefox\Profiles\iwq3hrcm.default\extensions\iobitascsurfingpr [email protected] deleted
"C:\Windows\Installer\365109.msi" deleted

==== Firefox Start and Search pages ======================

ProfilePath: C:\Users\Paul\AppData\Roaming\Mozilla\Firefox\Profiles\iwq3hrcm.default
user_pref("browser.search.defaultenginename", "??????");
user_pref("browser.search.selectedEngine", "??????");

==== Firefox Extensions Registry ======================

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"[email protected]"="C:\ProgramData\Wondershare\Video Converter Ultimate\[email protected]" [04-01-2015 21:09]

==== Firefox Extensions ======================

ProfilePath: C:\Users\Paul\AppData\Roaming\Mozilla\Firefox\Profiles\iwq3hrcm.default
- Undetermined - C:\Program Files\IObit Apps Toolbar\FF
- Wondershare Video Converter Ultimate - C:\ProgramData\Wondershare\Video Converter Ultimate\[email protected]
- DownloadHelper - %ProfilePath%\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
- Search Experiment - %ProfilePath%\extensions\[email protected]

==== Firefox Plugins ======================

Profilepath: C:\Users\Paul\AppData\Roaming\Mozilla\Firefox\Profiles\iwq3hrcm.default
4B2474388CCF6040F05C54EE9941A019 - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll - Java(TM) Platform SE 7 U72
DD463C830B63C3A26F5D48F483045DE2 - C:\Program Files\Java\jre7\bin\dtplugin\npdeployJava1.dll - Java Deployment Toolkit 7.0.720.14
AC7A02A828C74F55AF678033495280AA - C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll - Adobe Acrobat
2EB30FA328771AEF1DB534D29B5645C1 - C:\Program Files\Adobe\Reader 11.0\Reader\browser\nppdf32.dll - Adobe Acrobat
0205ADAFFDDF04F0F69200E5CFB5FFD9 - C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll - Google Earth Plugin
0843C70733E8CA876475123A6601630D - C:\Program Files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL - CANON iMAGE GATEWAY Album Plugin Utility

==== Chromium Look ======================

CookiesOK - Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\afmkbjoakcacgljcdccofbffloabfbni
InformBar - Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\bbcomninkjloljbaklalcpcnacnognje
YouTube - Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Q-shopper - Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmmbaepbpcaahckggammpgolemocfheh
selector is not a valid CSS selector - Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb
Google Search - Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Blur - Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\epanfjkfahimkgomnigadpkobaefekcd
PanicButton - Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\faminaibgiklngmfpfbhmokfmnglamcm
Chrome Web Store Payments - Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Google Slides - Paul\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Paul\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Paul\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Paul\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Paul\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - Paul\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Bookmark Manager - Paul\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\gmlllbghnfkpflemihljekbapjopfjik
Google Wallet - Paul\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Paul\AppData\Local\Google\Chrome\User Data\Profile 1\Extensions\pjkljhegncpnkpknbcohdijeoejaedia
Google Slides - Paul\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aapocclcgogkmnckokdopfmhonfmgoek
Google Docs - Paul\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\aohghmighlieiainnegkcijnfilokake
Google Drive - Paul\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\apdfllckaahabafndbhieahigkjlhalf
YouTube - Paul\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo
Google Search - Paul\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\coobgpohoikkiipiblmjeljniedjpjpf
Google Sheets - Paul\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\felcaaldnbdncclmgdcncolpebgiejap
Google Wallet - Paul\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\nmmhkkegccagdldgiimedpiccmgmieda
Gmail - Paul\AppData\Local\Google\Chrome\User Data\Profile 2\Extensions\pjkljhegncpnkpknbcohdijeoejaedia

==== Chromium Startpages ======================

C:\Users\Paul\AppData\Roaming\Opera Software\Opera Stable\Preferences
"homepage": "http://www.yandex.ru/?win=193&clid=2100767-002",
"startup_urls": [ "http://www.yandex.ru/?win=193&clid=2100767-002" ]

==== Chromium Fix ======================

C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_ads1.msads.net_0.localstorage deleted successfully
C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Local Storage\https_ads1.msads.net_0.localstorage-journal deleted successfully
C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Extensions\bmmbaepbpcaahckggammpgolemocfheh deleted successfully
C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Local Extension Settings\bmmbaepbpcaahckggammpgolemocfheh deleted successfully

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://planepictures.net/netsearch4.cgi?stype=name&srng=1&srch=Paul+Stam&offset=0&range=25"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl\y]
@="http://yandex.ru/search/?win=193&clid=2100771-002&text=%s"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://planepictures.net/netsearch4.cgi?stype=name&srng=1&srch=Paul+Stam&offset=0&range=25"
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchUrl]
"(Default)"="http://search.msn.com/results.asp?q=%s"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"

==== Reset Google Chrome ======================

C:\Users\Paul\AppData\Local\Chromium\User Data\Default\Preferences was reset successfully
C:\Users\Paul\AppData\Local\Chromium\User Data\Default\Preferences_20150908104644.backup was reset successfully
C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Preferences_20150908104640.backup was reset successfully
C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences was reset successfully
C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences.bad was reset successfully
C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Profile 1\Preferences was reset successfully
C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Profile 1\Preferences_20150908104641.backup was reset successfully
C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Profile 1\Secure Preferences was reset successfully
C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Profile 2\Preferences was reset successfully
C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Profile 2\Preferences_20150908104642.backup was reset successfully
C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Profile 2\Secure Preferences was reset successfully
C:\Users\Paul\AppData\Local\Nichrome\User Data\Default\Preferences was reset successfully
C:\Users\Paul\AppData\Local\Nichrome\User Data\Default\Preferences_20150908104643.backup was reset successfully
C:\Users\Paul\AppData\Local\Xpom\User Data\Default\Preferences was reset successfully
C:\Users\Paul\AppData\Roaming\Opera Software\Opera Stable\Preferences was reset successfully
C:\Users\Paul\AppData\Roaming\Opera Software\Opera Stable\Preferences_20150908104648.backup was reset successfully
C:\Users\Paul\AppData\Local\Chromium\User Data\Default\Web Data was reset successfully
C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully
C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Web Data-journal was reset successfully
C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Profile 1\Web Data was reset successfully
C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Profile 2\Web Data was reset successfully
C:\Users\Paul\AppData\Local\Nichrome\User Data\Default\Web Data was reset successfully
C:\Users\Paul\AppData\Roaming\Opera Software\Opera Stable\Web Data was reset successfully
C:\Users\Paul\AppData\Roaming\Opera Software\Opera Stable\Web Data_20150908104648.backup was reset successfully

==== Deleting Registry Keys ======================

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\2729C64061E674C4B8FE8408143740FD deleted successfully
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall\{046C9272-6E16-4C47-8BEF-4880417304DF} deleted successfully
HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Installer\Products\2729C64061E674C4B8FE8408143740FD deleted successfully

==== Empty IE Cache ======================

C:\Users\Paul\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\networkservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Cache found

==== Empty Chrome Cache ======================

C:\Users\Paul\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

No Flash Cache Found

==== Empty All Java Cache ======================

Java Cache cleared successfully

==== C:\zoek_backup content ======================

C:\zoek_backup (files=160 folders=64 286954257 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Paul\AppData\Local\Temp will be emptied at reboot
C:\Windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\Windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\Windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\Windows\Temp successfully emptied
C:\Users\Paul\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied
C:\RECYCLER successfully emptied

==== EOF on wo 28-10-2015 at 11:26:01,96 ======================

**Juisterr** · 28-10-15, 12:45

Hallo Paul,

vertel even hoe het nu gaat aub.

**Paul Stam** · 28-10-15, 14:32

Ik moet eerlijk zeggen dat alles weer prima gaat. Als vanouds. Gelukkig.

**Juisterr** · 28-10-15, 18:44

Download Delfix by Xplode naar het bureaublad.

(Klik bovenstaande afbeelding aan voor een vergroting!)

Dubbelklik op Delfix.exe om de tool te starten.
Zet nu vinkjes voor de volgende items:

Remove disinfection tools
Purge System Restore
Reset system settings

Klik nu op "Run" en wacht geduldig tot de tool gereed is.
Wanneer de tool gereed is wordt er een logbestand aangemaakt. Dit hoeft u echter niet te plaatsen.

**Paul Stam** · 28-10-15, 22:12

Ook dit laatste heb ik nu gedaan.

Alles lijkt weer goed te werken.

Hartelijk dank voor jullie hulp.

Mededeling

Trage computer

Trage computer

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment